Privacy · PDPA aware

Privacy Policy

Made Proper is a Singapore-based business and follows the Personal Data Protection Act (PDPA). This page tells you, in plain language, what we collect, why, who we share it with, and how to remove it.

Last updated: 29 May 2026

This Privacy Policy explains how Made Proper collects, uses, discloses, stores and protects personal data.

Made Proper operates from Singapore through madeproper.sg.

For support, contact support@madeproper.sg.

For personal data matters, contact dpo@madeproper.sg.

By visiting madeproper.sg, submitting a form, making payment, uploading content, or using any Made Proper service, you agree to this Privacy Policy.

1. What this policy covers

This policy applies to personal data collected through:

  1. madeproper.sg
  2. Website checkout
  3. Onboarding forms
  4. Contact forms
  5. File uploads
  6. Email and WhatsApp communication
  7. Domain, email, hosting and booking setup
  8. Customer support
  9. Payment and dispute handling
  10. Business outreach

This policy covers customers, website visitors, business contacts, suppliers, and people who communicate with Made Proper.

2. Personal data we may collect

Depending on how you interact with Made Proper, we may collect the following information.

2.1 Customer and contact information

  1. Name
  2. Business name
  3. Public brand name
  4. UEN if applicable
  5. Email address
  6. Phone number
  7. WhatsApp number
  8. Business address
  9. Contact person details
  10. Billing details

2.2 Website onboarding information

  1. Business activity
  2. Services list
  3. Target customers
  4. Style preference
  5. Website goals
  6. Domain preference
  7. Preferred business email
  8. Booking preference
  9. Logo
  10. Photos
  11. Images
  12. Text content
  13. Testimonials
  14. Portfolio examples
  15. Social media links
  16. Existing website links
  17. Reference websites
  18. Other information submitted through onboarding

2.3 Domain, email, hosting and booking setup information

If you choose domain, email, hosting or booking setup, we may collect and process information needed to configure those services.

This may include:

  1. Domain name
  2. Domain registrant type
  3. Business name
  4. UEN
  5. Contact person
  6. Contact email
  7. Mobile number
  8. Business address
  9. Preferred email account name
  10. Booking settings
  11. Availability details
  12. Setup credentials or temporary credentials

For .sg domains, additional verification may be required by SGNIC, registrar or relevant provider. Made Proper will collect only the information needed for the registration or setup process.

2.4 Payment information

Payments may be processed through Stripe or another payment provider.

Made Proper does not store full card numbers.

We may receive payment metadata such as:

  1. Customer name
  2. Customer email
  3. Amount paid
  4. Payment status
  5. Checkout reference
  6. Invoice or receipt details
  7. Refund or dispute status

2.5 Technical information

When you use madeproper.sg, we may collect basic technical information such as:

  1. IP address
  2. Browser type
  3. Device type
  4. Approximate location
  5. Pages visited
  6. Referring page
  7. Date and time of visit
  8. Cookie or session identifiers
  9. Error logs
  10. Security logs

This helps us operate, secure, improve and troubleshoot the website.

2.6 Communication records

We may keep records of communication through:

  1. Email
  2. WhatsApp
  3. Contact forms
  4. Onboarding forms
  5. Support messages
  6. Payment dispute communication
  7. Handover messages

These records help us deliver the service, manage revisions, prove delivery, respond to support requests and handle disputes.

3. Why we collect personal data

We collect, use and disclose personal data for the following purposes.

3.1 To provide Made Proper services

  1. Process orders
  2. Prepare website copy
  3. Build and configure websites
  4. Set up domain records
  5. Set up business email
  6. Set up hosting and SSL
  7. Set up simple booking links where applicable
  8. Upload and arrange customer content
  9. Send previews
  10. Provide handover

3.2 To communicate with you

  1. Confirm orders
  2. Ask for missing information
  3. Send project updates
  4. Send preview links
  5. Send handover details
  6. Respond to questions
  7. Handle support requests
  8. Send service related notices

3.3 To manage payment, refunds and disputes

  1. Process payment
  2. Issue receipts
  3. Handle refunds
  4. Respond to chargebacks
  5. Keep evidence of order, onboarding, approval, production, delivery and handover
  6. Prevent fraud and misuse

3.4 To set up third party services

We may use your information to set up or configure third party services needed to deliver your website.

These may include payment processing, hosting, domain registration, DNS, business email, file uploads, storage, analytics, security and booking tools.

3.5 To improve and protect our service

We may use technical and usage information to:

  1. Improve website performance
  2. Fix bugs
  3. Prevent spam
  4. Protect accounts
  5. Prevent fraud
  6. Detect abuse
  7. Improve onboarding
  8. Understand which pages and services are useful

3.6 To comply with legal and business requirements

We may process personal data to:

  1. Comply with law
  2. Keep business records
  3. Respond to lawful requests
  4. Protect legal rights
  5. Enforce our Terms of Use
  6. Meet accounting and tax record needs
  7. Handle complaints and disputes

4. Consent

By submitting information to Made Proper, you consent to Made Proper collecting, using and disclosing your personal data for the purposes described in this policy.

If you submit information about another person, you confirm that you have authority or consent to provide that information.

You may withdraw consent by contacting dpo@madeproper.sg.

If you withdraw consent, Made Proper may not be able to continue providing certain services. Some information may still be retained where required for legal, accounting, dispute, security or business record purposes.

5. Accuracy of information

You are responsible for providing accurate, complete and current information.

This is especially important for:

  1. Domain registration
  2. .sg domain verification
  3. Business email setup
  4. Billing
  5. Contact details
  6. Website content
  7. Regulated business claims
  8. Credentials or licence related claims

If information provided is inaccurate, the website, domain, email or booking setup may be delayed, rejected, suspended or configured wrongly.

6. Who we may share personal data with

We do not sell personal data.

We may share personal data only where needed to deliver the service, operate the business, comply with law, or protect our rights.

Recipients may include:

  1. Stripe or payment processors
  2. Vercel or hosting providers
  3. Lark, Zoho, Google Workspace, Microsoft 365 or email providers
  4. Domain registrars
  5. SGNIC or domain registry services
  6. Cal, Calendly or booking providers
  7. Cloud storage and file upload providers
  8. Analytics and security providers
  9. Email and communication providers
  10. Professional advisers such as accountants, lawyers or compliance advisers
  11. Authorities where required by law
  12. Banks, payment processors or card networks for refunds, fraud checks or disputes

We share only the information reasonably needed for the relevant purpose.

7. Third party providers

Made Proper uses third party providers to deliver parts of the service.

These providers have their own terms, privacy policies, security practices, retention rules and data locations.

Examples include:

  1. Payment provider
  2. Hosting provider
  3. Domain registrar
  4. Business email provider
  5. Booking provider
  6. File upload or storage provider
  7. Analytics provider
  8. Security provider

Made Proper is not responsible for the privacy practices of third party websites or providers, but we try to use reputable providers suitable for the service.

8. Overseas transfer of personal data

Some third party providers may process or store data outside Singapore.

By using Made Proper services, you understand that personal data may be transferred outside Singapore where necessary to deliver the service.

Made Proper will take reasonable steps to ensure that overseas transfers are made in a way consistent with applicable data protection requirements.

9. Cookies and analytics

madeproper.sg may use cookies, session storage, analytics tools or similar technologies for:

  1. Website operation
  2. Security
  3. Checkout flow
  4. Form submission
  5. Error logging
  6. Performance monitoring
  7. Basic analytics

We may collect anonymous or aggregated traffic information such as page views, country level location, device type and browser type.

If we use advertising pixels, retargeting tools, or third party marketing cookies in the future, we will update this policy and, where required, provide consent controls.

10. File uploads and customer content

When you upload logos, photos, documents or other files, Made Proper may store, process, resize, edit, compress, upload and publish them for the purpose of delivering your website.

You should not upload files containing personal data, confidential information, regulated information, private customer information, medical information, financial information, or sensitive material unless it is necessary and you have authority to do so.

You are responsible for ensuring that you have the right to use all files and content submitted to Made Proper.

11. NRIC, FIN and high risk identifiers

Made Proper does not collect NRIC, FIN, passport number or similar national identification numbers unless required for a specific lawful or necessary purpose, such as domain registration or provider verification.

Where such information is required, we will use it only for that purpose and will not use it for marketing.

We will avoid collecting full NRIC or FIN where a less sensitive identifier is sufficient.

12. Data retention

Made Proper keeps personal data only for as long as reasonably necessary for the purposes described in this policy, unless a longer period is required or permitted by law.

Typical retention periods:

  1. Customer project records may be kept for the duration of the relationship plus up to 7 years for business, tax, accounting, legal and dispute purposes.
  2. Prospect or enquiry records may be kept for up to 12 months after last contact unless there is a business reason to retain them longer.
  3. Payment and invoice records may be kept as required for accounting, tax, audit and dispute purposes.
  4. Domain, email and hosting setup records may be kept for as long as needed to support the service or deal with provider issues.
  5. Security logs may be kept for a limited period unless needed for investigation or protection.
  6. Aggregated analytics data that does not identify a person may be kept indefinitely.

When personal data is no longer needed, we will delete, anonymise or securely dispose of it where practical.

13. Protection of personal data

Made Proper takes reasonable steps to protect personal data against unauthorised access, collection, use, disclosure, copying, modification, disposal or similar risks.

Measures may include:

  1. Access controls
  2. Password protection
  3. Limited internal access
  4. Secure third party providers
  5. Encryption where available
  6. Account handover procedures
  7. Data minimisation
  8. Deletion or anonymisation where practical
  9. Separation of support access where practical

No online system is completely secure. You should avoid sending highly sensitive information unless required.

14. Data breach handling

If Made Proper becomes aware of a data incident, we will assess it and take reasonable steps to contain, investigate and respond.

Where required by law, we will notify affected individuals and relevant authorities.

15. Your rights

Subject to applicable law, you may request to:

  1. Access personal data we hold about you
  2. Correct inaccurate personal data
  3. Withdraw consent
  4. Ask how your data has been used or disclosed
  5. Request deletion where legally and practically possible

To make a request, email dpo@madeproper.sg with the subject line Personal Data Request.

We may need to verify your identity before responding.

We will respond within a reasonable period. Some requests may be refused or limited where allowed by law, including where retention is required for legal, accounting, dispute, security or business record purposes.

16. Marketing and outreach

Made Proper may contact businesses using publicly available business contact information, business directories, public websites, social media pages, referrals, or previous communications.

If we send business outreach, we will aim to identify Made Proper clearly and provide a way to opt out.

If you do not want to receive further marketing or outreach messages, email support@madeproper.sg with the subject line Unsubscribe.

We will add you to a suppression list.

For Singapore telephone numbers, Made Proper will take steps to comply with applicable Do Not Call rules where required.

17. Children and minors

Made Proper services are intended for businesses and adults.

We do not knowingly collect personal data from children for website purchase or onboarding.

If you believe a child has submitted personal data to Made Proper, contact dpo@madeproper.sg.

18. Links to other websites

madeproper.sg may link to third party websites, including payment, hosting, email, domain, booking, social media and customer websites.

Made Proper is not responsible for the privacy practices or content of third party websites.

19. Changes to this policy

Made Proper may update this Privacy Policy from time to time.

The latest version will be published on madeproper.sg.

The date at the top shows when it was last updated.

20. Contact

For support:

support@madeproper.sg

For personal data matters:

dpo@madeproper.sg

Website:

madeproper.sg