Tiffany Tay
Back to Portfolio

Privacy Policy

Last Updated: June 2, 2025

This Privacy Policy describes how Tiffany Tay ("we", "us", or "our") collects, uses, and discloses your personal information when you visit our website, use our services, or otherwise interact with us. Please read this policy carefully to understand our practices regarding your personal data and how we will treat it.

Contents

Information Collection

We collect several types of information from and about users of our website, including information:

Personal Information

When you visit our website, we may collect personal information that you provide directly to us, such as your name, email address, phone number, and any other information you choose to provide when you:

  • Fill out a contact form
  • Subscribe to our newsletter
  • Request information about our services
  • Apply for job opportunities
  • Participate in surveys or promotions

Usage Information

We automatically collect certain information about your device and how you interact with our website, including:

  • IP address and device identifiers
  • Browser type and version
  • Operating system information
  • Pages you visit and features you use
  • Time spent on pages and navigation patterns
  • Referral sources and exit pages

Location Information

We may collect information about your approximate location based on your IP address or more precise location information if you authorize our website to access your location.

Cookies Usage

Our website uses cookies and similar tracking technologies to collect information about your browsing activities and to distinguish you from other users. This helps us provide you with a good experience when you browse our website and also allows us to improve our site.

Types of Cookies We Use

  • Essential Cookies:

    These cookies are necessary for the website to function properly and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in, or filling in forms.

  • Performance Cookies:

    These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

  • Functionality Cookies:

    These cookies enable the website to provide enhanced functionality and personalization. They may be set by us or by third-party providers whose services we have added to our pages.

  • Targeting Cookies:

    These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant advertisements on other sites.

Cookie Management

Most web browsers allow you to control cookies through their settings preferences. However, if you limit the ability of websites to set cookies, you may worsen your overall user experience. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.allaboutcookies.org.

Data Security

We implement appropriate technical and organizational measures to protect the personal information we collect and process. The measures we use are designed to provide a level of security appropriate to the risk of processing your personal information.

Security Measures

Our security measures include:

  • Encryption of data in transit using SSL/TLS protocols
  • Regular security assessments and vulnerability testing
  • Access controls and authentication procedures
  • Regular backups to prevent data loss
  • Staff training on data protection and security practices

Data Breach Procedures

In the event of a data breach that affects your personal information, we will notify you and the relevant supervisory authority when we are legally required to do so. We will provide information about the breach, the affected data, and steps you can take to mitigate potential negative effects.

While we implement safeguards designed to protect your personal information, no security system is impenetrable. Due to the inherent nature of the Internet, we cannot guarantee that data, during transmission through the Internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others.

Third-party Services

Our website may contain links to third-party websites and services that are not owned or controlled by us. We may also use third-party services to help us provide our services to you.

Third-party Service Providers

We may share your personal information with third-party service providers to help us operate our business and the website or administer activities on our behalf, such as:

  • Analytics providers (e.g., Google Analytics)
  • Email service providers for newsletter distribution
  • Customer relationship management systems
  • Hosting and cloud infrastructure providers
  • Payment processors for any transactions

These third parties have access to your personal information only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Third-party Links

Our website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy policy of every website you visit.

Social Media Features

Our website may include social media features, such as the Facebook Like button or Twitter sharing widgets. These features may collect your IP address and which page you are visiting on our website, and may set a cookie to enable the feature to function properly. Social media features are either hosted by a third party or hosted directly on our website. Your interactions with these features are governed by the privacy policy of the company providing them.

User Rights

Depending on your location and applicable laws, you may have certain rights regarding your personal information. These may include:

Right to Access

You have the right to request copies of your personal information. We may charge a reasonable fee for additional copies.

Right to Rectification

You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.

Right to Erasure

You have the right to request that we erase your personal information, under certain conditions.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal information, under certain conditions.

Right to Object to Processing

You have the right to object to our processing of your personal information, under certain conditions.

Right to Data Portability

You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

How to Exercise Your Rights

If you would like to exercise any of these rights, please contact us using the contact information provided at the end of this policy. We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.

We try to respond to all legitimate requests within one month. Occasionally it may take us longer if your request is particularly complex or you have made a number of requests.

Children's Privacy

Our website is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and you believe your child has provided us with personal information, please contact us. If we discover that a child under 16 has provided us with personal information, we will delete such information from our servers.

International Transfers

Your personal information may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different from the laws of your country.

Specifically, our website servers are located in the United States, and our third-party service providers and partners operate around the world. This means that when we collect your personal information, we may process it in any of these countries.

However, we have taken appropriate safeguards to require that your personal information will remain protected in accordance with this Privacy Policy. These include implementing the European Commission's Standard Contractual Clauses for transfers of personal information between our group companies and third-party service providers and partners, which require all such recipients to protect personal information that they process from the EEA in accordance with European data protection laws.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

For significant changes, we will make reasonable efforts to provide more prominent notice, such as an email notification if you have provided us with your email address.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at:

Address
Tiffany Tay
123 Data Analytics Way
San Francisco, CA 94105
United States

Data Protection Officer

We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this privacy policy. If you have any questions about this privacy policy, including any requests to exercise your legal rights, please contact the DPO using the details set out above.

Supervisory Authority

If you are located in the European Economic Area (EEA), you have the right to make a complaint at any time to your local supervisory authority for data protection issues. We would, however, appreciate the chance to deal with your concerns before you approach the supervisory authority, so please contact us in the first instance.