Privacy Policy — InfraVigil | Cybersecurity Singapore

1. Company Information

INFRAvigil Pte Ltd is a Singapore-incorporated company providing cybersecurity, managed security services, software development, and infrastructure security solutions to organisations worldwide. Our headquarters is located at 2 Kallang Ave, CT Hub 04-04, Singapore 339407, with an additional engineering office in Bangalore, India.

We operate under Singapore's Personal Data Protection Act (PDPA) and align our processes with internationally recognised security and privacy standards. This Privacy Policy describes how we collect, use, disclose, and protect personal and business data when you interact with our websites, products, and services.

2. Information We Collect

We collect information necessary to deliver, secure, and improve our services:

Personal Information

Name, business email, phone number, job title, and organisation details provided during enquiries, onboarding, or service delivery.

Technical Information

IP addresses, device identifiers, browser type, operating system, referring URLs, and security-related telemetry from monitored systems.

Payment Information

Billing name, address, and tax identifiers. Card numbers, CVV, and bank credentials are processed directly by our PCI-DSS compliant payment processors.

Cookies & Analytics

Session cookies, preference cookies, and aggregated analytics used to operate the site, prevent fraud, and improve user experience.

3. How We Use Information

Personal and technical information is used strictly for legitimate business purposes:

Service delivery

Security monitoring

Payment processing

Fraud prevention

Technical support

Compliance obligations

4. Payment Processing

Secure, PCI-DSS compliant payment infrastructure

• All payments are processed through Stripe and PayPal, both PCI-DSS Level 1 certified providers.
• INFRAvigil does not store complete card numbers, CVV codes, or full bank credentials on its own systems.
• Payment data is transmitted using TLS 1.2+ encryption and tokenised at the processor.
• Continuous fraud prevention monitoring is applied to all transactions, including velocity checks and anomaly detection.
• Refunds, disputes, and chargebacks are handled in accordance with the respective processor's terms.

5. Data Protection & Security

Security is the foundation of our business. We apply layered, defence-in-depth controls aligned with industry frameworks such as ISO 27001 and the NIST Cybersecurity Framework:

Encryption

Data encrypted at rest (AES-256) and in transit (TLS 1.2+).

Access Controls

Role-based access, least-privilege provisioning, periodic access reviews.

Monitoring Systems

24x7 SIEM, log aggregation, and behavioural anomaly detection.

Infrastructure Security

Hardened cloud baselines, segmented networks, and vulnerability management.

Authentication

Multi-factor authentication, SSO, and strong password policies.

Audits & Reviews

Periodic penetration testing, code reviews, and compliance assessments.

6. Third-Party Services

To operate efficiently and securely, INFRAvigil engages reputable third-party providers. These providers are bound by contractual data-protection obligations:

Cloud providers (e.g. AWS, Microsoft Azure, Google Cloud)
Payment gateways (Stripe, PayPal)
Analytics and product telemetry services
Infrastructure, CDN, and email delivery vendors

7. User Rights

You have the following rights regarding personal data we hold about you:

To exercise these rights, email admin@infravigil.com. We will respond within timelines required by applicable law.

8. Legal & Compliance

Governing Law. This Privacy Policy is governed by the laws of the Republic of Singapore, including the Personal Data Protection Act 2012 (PDPA).

Policy Updates. We may update this policy from time to time. Material changes will be reflected by an updated "Last updated" date at the top of this page and, where appropriate, additional notice to active customers.

International Data Transfers. Where data is transferred outside Singapore, we take reasonable steps to ensure recipients provide a comparable standard of protection through contractual safeguards.

Limitation of Liability. To the maximum extent permitted by law, INFRAvigil shall not be liable for any indirect, incidental, or consequential damages arising from the use of our services.

9. Contact

For privacy enquiries, data subject requests, or compliance matters, contact our team using the details below:

Singapore (HQ)

INFRAvigil Pte Ltd
2 Kallang Ave, CT Hub 04-04
Singapore 339407
+65 8435 9724
admin@infravigil.com

India Office

INFRAvigil Pte Ltd
No.9, Tank Road, Ulsoor
Bangalore, India-560042
+91 967 703 1970
admin@infravigil.com

Privacy & Data Protection