Privacy Policy

Effective Date: 6 May 2026

1. Introduction and company information

This Privacy Policy explains how HarbourMic Podcast Studio (“we”, “us”, “our”) collects, uses, discloses, stores, and protects personal data in connection with our podcast-studio services, including studio bookings, recording sessions, editing services, production support, client communications, website enquiries, and related business operations.

HarbourMic Podcast Studio is committed to handling personal data in accordance with the Singapore Personal Data Protection Act 2012 (“PDPA”) and other applicable laws in Singapore.

Company details:
HarbourMic Podcast Studio
8 Shenton Way, #24-03, Singapore 068811
Email: [email protected]
Phone: +65 6884 7291

2. Data collection and processing

We may collect and process the following categories of personal data, depending on your interactions with us:

• Identification and contact details: name, email address, phone number, company name, job title, billing address, and other contact information.
• Booking and service information: preferred dates and times, studio requirements, project details, recording preferences, guest information, and service history.
• Payment and transaction data: payment status, invoice details, and limited billing information necessary to process transactions. We generally do not store full card details unless handled by a payment service provider.
• Communications: enquiries, feedback, correspondence, call records, and messages sent through our website, email, phone, or messaging platforms.
• Technical and usage data: IP address, browser type, device information, log data, cookies, analytics data, and website interaction data.
• Media and production content: audio recordings, video recordings, photographs, transcripts, show notes, and related production files created or supplied during our services.
• Marketing preferences: consent choices, subscription preferences, and responses to promotional communications.

We may collect personal data directly from you, from your authorised representatives, from business partners, from payment processors, from our website and digital tools, and from publicly available sources where permitted by law.

Where you provide personal data relating to another individual, you confirm that you have the authority or consent to do so and that the individual has been informed of this Privacy Policy where required.

3. Purpose of data processing

We process personal data for the following purposes:

• to respond to enquiries and provide quotations;
• to manage studio bookings, recording sessions, and related services;
• to deliver podcast production, editing, and post-production services;
• to communicate with clients, guests, vendors, and other stakeholders;
• to issue invoices, process payments, and manage accounts;
• to maintain internal records, administration, and business operations;
• to improve our services, website, workflows, and customer experience;
• to send service-related notices and, where permitted, marketing communications;
• to comply with legal, regulatory, tax, accounting, and contractual obligations;
• to protect our rights, property, staff, clients, and studio premises;
• to detect, prevent, and investigate fraud, misuse, security incidents, or unlawful activity.

4. Legal basis for processing

Under the PDPA, we generally rely on one or more of the following grounds to process personal data:

• Consent: where you have given consent for a specific purpose, including marketing communications where required.
• Deemed consent: where your conduct or the circumstances indicate that you have voluntarily provided personal data for a reasonable purpose.
• Contractual necessity: where processing is necessary to enter into or perform a contract with you or to take steps at your request before entering into a contract.
• Legitimate interests / business improvement: where permitted under the PDPA, including fraud prevention, service improvement, and internal administration, provided such interests do not override your rights and interests.
• Legal obligation: where processing is necessary to comply with applicable laws, regulations, court orders, or lawful requests by authorities.

Where required by law, we will seek your consent before collecting, using, or disclosing your personal data for a purpose not otherwise permitted under the PDPA.

5. Data sharing and third parties

We may disclose personal data to third parties only where necessary and lawful, including:

• service providers assisting with hosting, cloud storage, website operations, analytics, communications, CRM, scheduling, and IT support;
• payment processors, banks, and accounting or invoicing service providers;
• freelancers, editors, engineers, producers, and other contractors engaged to support our services;
• business partners, clients, guests, or collaborators involved in a project, where necessary to deliver the service;
• professional advisers such as lawyers, auditors, insurers, and accountants;
• government authorities, regulators, law enforcement agencies, or courts, where required or permitted by law;
• any other party with your consent or at your direction.

We require third parties that process personal data on our behalf to protect it appropriately and to use it only for authorised purposes. However, where third parties act as independent data controllers, their own privacy policies may apply.

6. Data transfer to third countries

Some of our service providers or collaborators may be located outside Singapore. As a result, your personal data may be transferred to, stored in, or accessed from jurisdictions outside Singapore.

Where such transfers occur, we will take reasonable steps to ensure that the recipient provides a standard of protection to personal data comparable to that under the PDPA, including through contractual safeguards, due diligence, and other appropriate measures permitted by law.

7. Storage duration

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required or permitted by law.

• Client and booking records: generally retained for the duration of the business relationship and for a reasonable period thereafter.
• Financial and accounting records: retained for the period required under applicable tax, accounting, and regulatory requirements.
• Project files and media content: retained according to project needs, contractual arrangements, and storage policies, unless you request deletion and we are not required to retain them.
• Marketing data: retained until you unsubscribe, withdraw consent, or we determine the data is no longer needed.
• Website logs and analytics data: retained for a limited period for security, troubleshooting, and performance analysis.

When personal data is no longer required, we will take reasonable steps to delete, destroy, or anonymise it in a secure manner.

8. User rights (access, rectification, erasure, restriction, data portability, objection)

Subject to applicable law, you may have the right to:

• Access the personal data we hold about you and information about how it has been used or disclosed;
• Rectify inaccurate or incomplete personal data;
• Request erasure of your personal data in certain circumstances, subject to legal and contractual retention obligations;
• Restrict or object to certain processing activities, where applicable under law;
• Request data portability in relation to personal data that you have provided to us, where applicable and technically feasible;
• Object to direct marketing communications at any time.

To exercise any of these rights, please contact us using the details provided below. We may need to verify your identity before responding. We will respond within a reasonable time and in accordance with the PDPA and other applicable laws.

9. Withdrawal of consent

Where we rely on your consent to process personal data, you may withdraw that consent at any time by contacting us. Upon receiving your request, we will stop processing the relevant personal data for the purpose(s) to which the withdrawal applies, unless we are entitled or required by law to continue processing.

Please note that withdrawing consent may affect our ability to provide certain services, such as booking management, project delivery, or marketing communications.

10. Right to complain

If you have concerns about how we handle your personal data, you may contact us first so that we can investigate and address your concern.

You also have the right to lodge a complaint with the Personal Data Protection Commission (“PDPC”) in Singapore if you believe that your personal data has been handled in a manner that does not comply with the PDPA.

11. Data security

We implement reasonable administrative, technical, and physical safeguards designed to protect personal data against unauthorised access, collection, use, disclosure, copying, modification, disposal, or similar risks.

• access controls and role-based permissions;
• password protection and secure authentication measures;
• secure storage and backup procedures;
• network and device security measures;
• confidentiality obligations for staff and contractors;
• periodic review of security practices and vendor arrangements.

However, no method of transmission over the internet or method of electronic storage is completely secure. While we strive to protect your personal data, we cannot guarantee absolute security.

12. Contact information

If you have any questions, requests, or complaints regarding this Privacy Policy or our handling of personal data, please contact:

HarbourMic Podcast Studio
8 Shenton Way, #24-03, Singapore 068811
Email: [email protected]
Phone: +65 6884 7291

13. Changes to privacy policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. Any updated version will be posted on our website or otherwise made available to you, and the revised policy will take effect from the stated effective date or as otherwise indicated.

We encourage you to review this Privacy Policy periodically to stay informed about how HarbourMic Podcast Studio protects your personal data.