Toggle Side Panel

PEOTIES WHOLESOME WAVE

Privacy Policy

Peoties Wholesome Wave is committed to protecting your personal data in accordance with Singapore’s Personal Data Protection Act 2012 (PDPA). This Policy explains what data we collect, why we collect it, how we use it, and your rights

Last updated: January 2026

1. Who We Are

The data controller for the purposes of this Privacy Policy is Peoties Wholesome Wave, operating at peoties.com from Singapore.

2. Data We Collect

2.1 REGISTRATION & ACCOUNT DATA

  • Full name and email address
  • Password (stored in encrypted form, we never store plaintext passwords)
  • Membership status and subscription dates

2.2 PROFILE & SURVEY DATA

  • Wellness interests, areas of expertise, and what you’re seeking from the community (collected via our member survey)
  • Community profile information you choose to provide (display name, bio, profile photo)

2.3 PAYMENT DATA

  • Billing information (name, billing address) collected by Stripe on our behalf
  • Transaction history (amounts, dates, subscription status)
  • Peoties does not store your full card number, payment card data is handled entirely by Stripe, who are PCI-DSS compliant

2.4 USAGE & ACTIVITY DATA

  • Community activity: posts, comments, messages, group participation
  • Event attendance and ticket purchase records
  • Login timestamps and general platform usage patterns

2.5 TECHNICAL DATA

  • IP address, browser type, and device type (collected automatically via server logs)
  • Cookie data (see our Cookie Policy for full details)

3. How We Use Your Data

3.1 PLATFORM OPERATIONS (CONTRACT)

  • To create and manage your membership account
  • To process subscription and event ticket payments via Stripe or PayNow
  • To assign you to wellness circles based on your survey responses
  • To send you transactional emails (payment receipts, membership confirmations)

3.2 COMMUNITY FEATURES (LEGITIMATE INTEREST)

  • To enable community features including news feed, group circles, member directory, and direct messaging
  • To display your profile to other members within the platform

3.3 PLATFORM IMPROVEMENT (LEGITIMATE INTEREST)

  • To monitor platform performance, diagnose technical issues, and improve user experience
  • To moderate content and enforce our Community Guidelines

3.4 COMMUNICATIONS (CONSENT OR LEGITIMATE INTEREST)

  • To send you event reminders, community updates, and platform announcements
  • To send you marketing communications where you have opted in

4. Sharing Your Data

We do not sell your personal data. We share data only with the following trusted parties where necessary to operate the platform:

  • Payment processing (PCI-DSS compliant, based in the US with appropriate data transfer safeguards)
  • Platform infrastructure
  • Form data collection and storage

All third-party processors are engaged under appropriate data processing agreements.

5. Data Transfers Outside Singapore

Some of our service providers (including Stripe) process data outside Singapore. Where this occurs, we ensure appropriate safeguards are in place consistent with the PDPA’s requirements on overseas data transfers, including contractual protections that provide a standard of protection comparable to the PDPA.

6. Data Retention

  • Account and membership data: retained for the duration of your membership plus 3 years after cancellation, unless a longer retention period is required by law
  • Payment records: retained for 7 years in accordance with Singapore’s accounting and tax requirements
  • Community content (posts, messages): retained for the duration of your membership. Upon account deletion, your content will be removed within 30 days
  • Survey data: retained for the duration of your membership to support circle assignment

7. Your Rights Under the PDPA

As a data subject under Singapore’s PDPA, you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Correction — request correction of any inaccurate or incomplete personal data
  • Withdrawal of consent — withdraw consent for non-essential data processing at any time (this will not affect processing carried out before withdrawal)
  • Data portability — request your data in a machine-readable format where technically feasible

To exercise any of these rights, contact us at hello@peoties.com. We will respond within 30 days.

8. Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • SSL/TLS encryption for all data in transit
  • Encrypted password storage
  • Access controls limiting data access to authorised personnel only
  • Regular platform security updates

No system is completely secure. In the event of a data breach that is notifiable under the PDPA, we will notify the Personal Data Protection Commission (PDPC) and affected individuals within the required timeframes.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via the platform or email. Continued use of the platform after the effective date constitutes acceptance of the updated Policy.

10. Contact

For any privacy-related concerns, data access requests, or complaints, contact us at hello@peoties.com
Peoties Wholesome Wave · Singapore