Privacy Policy — Singapore
Last updated: 18 July 2026 · This page sets out how QUIKFORGE LIMITED handles personal data under Singapore's Personal Data Protection Act 2012 (PDPA)
Who we are
Sitetals.com is operated by QUIKFORGE LIMITED (trading as Sitetals), a company incorporated in Hong Kong (BR No. 79555262). Registered office: Unit 2A, 17/F, Glenealy Tower, No.1 Glenealy, Central, Hong Kong S.A.R. Director: Olivier Jobert. Contact: legal@sitetals.com
Sitetals provides compliance scanning services for websites operating in Singapore. Our offering is addressed exclusively to businesses (B2B).
Data Protection Officer (DPO)
Data Protection Officer (DPO). Pursuant to section 11(3) of the Personal Data Protection Act 2012 ("PDPA"), QUIKFORGE LIMITED has designated Olivier Jobert as its Data Protection Officer. In accordance with section 11(5) of the PDPA, the DPO's business contact information is published here: legal@sitetals.com. We respond to access and correction requests as soon as reasonably possible, and where a request cannot be answered within 30 days we will notify you of the time by which we will respond.
What personal data we collect and why
We collect, use and disclose personal data only for purposes that a reasonable person would consider appropriate in the circumstances, and only as notified in this policy (PDPA notification and purpose limitation obligations, ss. 13–20):
- Domain names you submit for scanning — to perform the compliance check you requested.
- Email address — when you order a report, to deliver your access key and invoice.
- Company name and billing address — collected at the time of purchase to issue a compliant invoice.
- Payment data — processed by Stripe. We do not store card numbers.
- Contact-form messages — if you write to us, we process your email address and message to reply. Providing a name is optional; any name you give is used only to address our reply and is never added to invoices.
- Technical logs — we operate on a data-minimised basis and do not retain visitor IP addresses or server access logs. Requests are processed transiently to serve pages and protect the service from abuse.
Providing this data is voluntary, but without it we cannot provide the service or issue an invoice. We do not sell personal data or disclose it for any other party's marketing.
What we do NOT collect
- No analytics tracking (no Google Analytics, no Matomo, no tracking pixels)
- No advertising cookies
- No social media tracking buttons
Cookies
We use only one cookie — a first-party cookie to remember your cookie consent choice. No tracking, no analytics, no third-party cookies. See our Cookie Policy (SG).
Our policies and practices (section 12 PDPA)
We have developed and implemented the data-handling, retention and security practices described in this policy to meet our obligations under the PDPA. Information about our policies and practices, and about our complaint process, is available on request from the DPO. Complaints about our handling of personal data may be addressed to the DPO at legal@sitetals.com.
Data retention (section 25 PDPA)
We cease to retain personal data, or anonymise it, as soon as it is reasonable to assume the purpose of collection is no longer served and retention is no longer necessary for legal or business purposes:
- Free scan results — retained for 90 days for operational purposes, then automatically deleted.
- Paid reports — available for download for up to 24 hours after generation, then deleted from our servers.
- Email addresses and invoicing data — retained for the duration of the contractual relationship plus 10 years to meet legal accounting and record-keeping obligations.
- Contact-form messages — retained until the enquiry is fully resolved, then no longer than necessary.
Protection and overseas transfers (sections 24 and 26 PDPA)
We apply reasonable technical and organisational safeguards against unauthorised access, collection, use, disclosure, copying, modification or disposal of personal data.
This website is hosted on a Hostinger VPS located in Malaysia; hosting is governed by Hostinger's Data Processing Agreement (rev. 2026-04-15), which incorporates contractual data-protection clauses. Payment processing is handled by Stripe, Inc. (USA). Where personal data is transferred outside Singapore, we take contractual and organisational measures to ensure the transferred data is protected to a standard comparable to the PDPA (section 26).
Access and correction (sections 21–22 PDPA)
You may request access to, and correction of, the personal data we hold about you by contacting the DPO at legal@sitetals.com. A reasonable fee may be charged for complying with a data access request, as permitted by the PDPA. We respond to access and correction requests as soon as reasonably possible, and where a request cannot be answered within 30 days we will notify you of the time by which we will respond.
Complaints to the PDPC
If you have concerns about how we handle your personal data that we have not resolved, you may lodge a complaint with the Personal Data Protection Commission (PDPC) at pdpc.gov.sg.