IPPT Plan

Privacy Policy

Last Updated: 20 June 2025

We collect minimal data, use it only to deliver your training plan, and delete it after 30 days.

1. Introduction

IPPT Plan ("we", "us", or "our") is committed to protecting your personal data in accordance with the Personal Data Protection Act 2012 (PDPA) of Singapore. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using our Service, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use our Service.

2. Data We Collect

2.1 Personal Data

We collect the following personal data that you provide directly:

  • Name: Used to personalize your training plan
  • Age: Required to calculate appropriate IPPT standards (must be 16-60)
  • Gender: Required for IPPT scoring calculations
  • Email address: Used to deliver your PDF training plan

2.2 Fitness Data

You may optionally provide:

  • Current 2.4km run time
  • Current push-up count (1 minute)
  • Current sit-up count (1 minute)

2.3 Payment Data

Payment information is processed directly by Stripe. We do NOT collect or store:

  • Credit card numbers
  • Bank account details
  • Other financial information

We only receive confirmation of successful payment and a transaction reference from Stripe.

2.4 Technical Data

We collect minimal technical data required for service operation:

  • Timestamp of purchase

We do NOT use cookies for tracking or analytics purposes.

3. How We Use Your Data

We use your personal data exclusively for the following purposes:

3.1 Service Delivery

  • Generate your personalized IPPT training plan using our proprietary system
  • Create your PDF document with your name
  • Send the PDF to your email address

3.2 Transaction Processing

  • Process your payment through Stripe
  • Send payment confirmation
  • Maintain transaction records for tax purposes

3.3 Customer Support

  • Respond to your support inquiries
  • Resolve delivery issues
  • Handle payment-related problems

3.4 Legal Compliance

  • Comply with Singapore tax requirements
  • Respond to legal requests from authorities
  • Protect our legal rights

3.5 Internal Analytics (Anonymized)

  • Understand usage patterns (aggregated and anonymized)
  • Improve our training plan generation system
  • Enhance service quality

4. Data Sharing & Disclosure

4.1 We DO NOT

  • Sell your personal data to third parties
  • Share your data for marketing purposes
  • Use your data for advertising

4.2 Limited Sharing

We share your data ONLY with:

Service Providers:

  • Stripe: Payment processing (they receive your email and payment amount)
  • Email Service Provider: To deliver your PDF (they receive your email and name)
  • Training Plan Generation Service: To create your personalized plan (they receive your fitness data to create customized recommendations)

Legal Requirements:

  • When required by Singapore law
  • To comply with court orders or legal proceedings
  • To protect our rights or safety

5. Data Retention

Data TypeRetention PeriodReason
Personal & Fitness Data30 days after deliverySupport purposes
Payment Records7 yearsTax compliance (IRAS requirements)
Email (service announcements)Until opt-outImportant service updates only

After the retention period, data is permanently deleted from our systems.

6. Your Rights Under PDPA

Under Singapore's Personal Data Protection Act, you have the following rights:

6.1 Access Rights

  • Request access to your personal data we hold
  • Receive a copy of your data in a readable format
  • Know how your data has been used

6.2 Correction Rights

  • Request correction of inaccurate data
  • Update incomplete information

6.3 Withdrawal of Consent

  • Withdraw consent for data processing at any time
  • Note: This may affect our ability to provide support

6.4 How to Exercise Your Rights

To exercise any of these rights, email us at: team.ipptplan@gmail.com

We will respond to your request within 30 days as required by PDPA.

7. Data Security

We implement appropriate security measures to protect your personal data:

7.1 Technical Measures

  • Industry-standard encryption (TLS/SSL) for data in transit
  • Encrypted storage for data at rest
  • Secure servers with restricted access
  • Regular security updates and patches

7.2 Data Breach Notification

We will notify affected users and PDPC within 72 hours if a data breach occurs.

8. International Data Transfers

Your data may be transferred outside Singapore for processing:

  • Plan Generation: Third-party services for plan generation (may be located in USA)
  • Payment Processing: Stripe servers (various locations)
  • Email Delivery: Email service provider servers (location depends on provider selected)

We ensure that any international transfer complies with PDPA requirements and that adequate protection measures are in place.

9. Marketing Communications

9.1 Opt-In Only

We will NEVER send you marketing emails unless you explicitly opt-in.

9.2 Service Emails

We may send essential service emails (non-marketing) for:

  • PDF delivery
  • Payment confirmation
  • Critical service updates
  • Legal or safety notices

9.3 Unsubscribe

Every marketing email (if you opt-in) will contain a clear unsubscribe link.

10. Cookies & Tracking

We use minimal cookies:

  • Essential cookies for site functionality only
  • NO analytics or tracking cookies currently implemented
  • NO third-party advertising cookies
  • NO behavioral tracking

If we implement analytics in the future, we will update this policy and obtain your consent.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. For significant changes, we may notify you via email.

12. Contact Information

For privacy-related inquiries or to exercise your rights: