Privacy Policy

1. Introduction

Bio-Tech Wellness Lab ("we," "us," "our," or "Company") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our wellness services.

We comply with the Personal Data Protection Act (PDPA) in Singapore and the General Data Protection Regulation (GDPR) for users in the European Union. Please read this policy carefully to understand our practices.

2. Information We Collect

Personal Information You Provide:

• Name, email address, phone number
• Billing and shipping addresses
• Payment information (processed securely)
• Health and wellness questionnaire data
• Account login credentials
• Communication preferences

Information Collected Automatically:

• IP address and browser type
• Device information and operating system
• Pages visited and time spent on site
• Referring URL and navigation patterns
• Cookies and similar tracking technologies
• Analytics data from Google Analytics

Third-Party Information:

• Information from payment processors
• Data from social media platforms (if connected)
• Information from marketing partners

3. How We Use Your Information

We use the personal data we collect for various purposes:

• Processing and fulfilling your orders and transactions
• Providing customer service and technical support
• Sending promotional emails and wellness newsletters (with consent)
• Personalizing your experience on our website
• Improving our products, services, and marketing efforts
• Analyzing website usage and performance
• Complying with legal obligations and regulations
• Detecting and preventing fraud and security incidents
• Providing personalized wellness recommendations
• Conducting research and statistical analysis

4. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Contract: To fulfill our obligations under the service agreement
• Consent: When you explicitly agree to certain processing activities
• Legal Obligation: To comply with Singapore PDPA and other applicable laws
• Legitimate Interests: For our business operations and customer service improvements
• Vital Interests: To protect your health and safety in wellness services

5. How We Share Your Information

We may share your information with:

• Service Providers: Payment processors, shipping partners, and hosting providers
• Business Partners: Selected wellness and health partners (with consent)
• Legal Authorities: When required by law or to protect our rights
• Affiliates: Our related companies for service improvement

6. Data Retention

We retain your personal data as follows:

• Account information: For the duration of your account plus 3 years
• Transaction records: 7 years (for tax and legal compliance)
• Marketing data: Until you unsubscribe or withdraw consent
• Website analytics: 26 months from collection date
• Support communications: 2 years after last contact

When data is no longer needed, we securely delete or anonymize it.

7. Your Rights and Choices

GDPR Rights (EU Residents):

• Right to Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate information
• Right to Erasure: Request deletion of your data ("Right to be Forgotten")
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in portable format
• Right to Object: Opt-out of certain processing activities
• Right to Lodge a Complaint: Contact your local data protection authority

PDPA Rights (Singapore Residents):

• Right to access your personal data
• Right to correct your personal data
• Right to request cessation of marketing messages
• Right to withdraw consent for data processing

All Users:

• Manage communication preferences in your account
• Opt-out of marketing emails using unsubscribe links
• Delete your account and associated data
• Disable cookies in your browser settings

8. Cookie Policy

We use cookies and similar technologies for:

• Essential Cookies: Required for website functionality
• Analytics Cookies: To understand user behavior
• Marketing Cookies: For targeted advertising (with consent)
• Preference Cookies: To remember your choices

You can control cookies through your browser settings. See our separate Cookie Policy for detailed information.

9. Data Security

We implement comprehensive security measures to protect your information:

• SSL/TLS encryption for data transmission
• Secure data storage with access controls
• Regular security audits and penetration testing
• Employee data protection training
• Incident response procedures
• Compliance with payment card industry (PCI) standards

While we employ strong security measures, no system is completely secure. We urge you to protect your account password and report suspicious activity immediately.

10. Children's Privacy

Our services are not directed to children under 13 years old. We do not knowingly collect personal information from children. If we discover we have collected information from a child under 13, we will delete it immediately. Parents or guardians who believe their child has provided information should contact us at privacy@bricklayergold.com

11. International Data Transfers

Your data may be transferred to and processed in countries other than Singapore, including countries that may not have the same data protection laws. By using our services, you consent to such transfers. For EU residents, we ensure adequate safeguards such as:

• Standard Contractual Clauses (SCCs)
• Data Processing Agreements
• Privacy Shield compliance (where applicable)

12. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices. We encourage you to review their privacy policies before providing your information.

13. Changes to This Privacy Policy

We may update this policy periodically to reflect changes in our practices, technology, or legal requirements. We will notify you of significant changes via email or by posting the updated policy on our website with an updated "Last Updated" date.

14. Contact Us