Privacy Policy
Last updated: 18 July 2026
Avar Systems (“Avar Systems”, “we”, “us” or “our”) operates the website avarsystems.com (the “Site”). This Privacy Policy explains how we collect, use, disclose, and protect personal data in accordance with the Singapore Personal Data Protection Act 2012 (“PDPA”) and its regulations and advisory guidelines.
“Personal data” means data, whether true or not, about an individual who can be identified from that data, or from that data together with other information to which we have or are likely to have access.
1. Personal data we collect
We collect personal data that you voluntarily provide to us, and limited technical data generated when you use the Site:
- Contact and enquiry data — name, email address, phone number, company name, region, and the description of your project or needs, when you submit any form on the Site or provide details to our chat assistant.
- Chat assistant data — the messages you exchange with our website chat assistant, including a transcript of the conversation, which is stored together with any contact details you provide during the chat.
- Technical data — information sent automatically by your browser, such as IP address, browser type, device information, pages visited, and the page from which an enquiry was submitted. Our hosting provider may log this data for security and performance purposes.
We do not knowingly collect personal data from individuals under 13 years of age, and the Site is not directed at children.
2. Purposes for which we use personal data
We collect, use, and disclose personal data for the following purposes:
- responding to your enquiries and providing the information or consultation you have requested (including scheduling discovery calls);
- sending you a confirmation email acknowledging your enquiry;
- assessing your requirements and preparing proposals or estimates;
- performing and administering any agreement we enter into with you or your organisation;
- maintaining our business records, including records of leads and enquiries;
- improving the Site, our chat assistant, and our services;
- protecting the Site against fraud, abuse, and security threats; and
- complying with applicable laws, regulations, and requests from public authorities.
Where we wish to use your personal data for a purpose not listed above, we will notify you of that purpose and, where required by the PDPA, obtain your consent.
3. Consent
By submitting your personal data through a form on the Site or providing it to our chat assistant, you consent to our collection, use, and disclosure of that data for the purposes described in this Policy. Under the PDPA, you may also be deemed to consent where you voluntarily provide personal data for a purpose that is reasonable in the circumstances.
You may withdraw your consent at any time by contacting our Data Protection Officer (see Section 11). We will process withdrawal requests within a reasonable time, inform you of the likely consequences of withdrawal, and thereafter cease to collect, use, or disclose your personal data for the relevant purposes, subject to any legal or contractual requirements to retain it.
4. Marketing messages and the Do Not Call provisions
If you provide us with a Singapore telephone number, we will not send you telemarketing messages or make telemarketing calls to that number unless we have your clear and unambiguous consent, or are otherwise permitted to do so, in accordance with the Do Not Call provisions of the PDPA. Any marketing emails we send will comply with the Spam Control Act 2007, will identify us as the sender, and will contain a working unsubscribe facility. Transactional messages (such as an acknowledgement of your enquiry) are not marketing messages.
5. Disclosure of personal data
We do not sell personal data. We disclose personal data only:
- to our service providers (data intermediaries) who process data on our behalf as described in Section 6;
- to our personnel and advisers who need it to respond to your enquiry or provide services;
- where required or authorised by law, court order, or a public agency exercising its lawful functions; or
- in connection with a business or asset transaction (such as a merger or acquisition), subject to appropriate safeguards.
6. Our service providers and international transfers
The Site and our enquiry-handling systems are operated using reputable third-party providers, which act as our data intermediaries:
- Vercel — website hosting and serverless infrastructure;
- Supabase — secure database in which enquiry and lead records are stored (hosted in the Asia-Pacific (Singapore) region); and
- Resend (when enabled) — delivery of confirmation and notification emails.
Some of these providers may process data on servers located outside Singapore. Where personal data is transferred outside Singapore, we take steps to ensure, in accordance with Section 26 of the PDPA, that the recipient is bound by legally enforceable obligations to provide the transferred data a standard of protection comparable to that under the PDPA (including contractual data-processing terms).
7. Protection of personal data
We make reasonable security arrangements to protect personal data in our possession or control against unauthorised access, collection, use, disclosure, copying, modification, disposal, or similar risks. These include encrypted transmission (HTTPS), access controls restricting database access to authorised systems and personnel, and secrets management for system credentials. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
8. Accuracy and retention
We take reasonable steps to ensure that personal data we collect is accurate and complete, particularly where it may be used to make a decision affecting you or disclosed to another organisation. We retain personal data only for as long as necessary for the purposes for which it was collected, or as required for legal or business purposes, after which it is deleted or anonymised. Enquiry records that do not lead to an engagement are periodically reviewed and removed.
9. Access and correction
You may request access to the personal data we hold about you, and information about how it has been used or disclosed within the past year, or request correction of any error or omission. Requests should be made in writing to our Data Protection Officer (Section 11). We will respond as soon as reasonably possible and, in any case, within the timeframes contemplated by the PDPA. We may charge a reasonable fee for access requests where permitted, and will inform you of any fee before processing the request. Where we refuse a request on a ground permitted by the PDPA, we will notify you of the reasons.
10. Data breach notification
If a data breach affecting your personal data occurs that is likely to result in significant harm to you, or is of a significant scale, we will assess and notify the Personal Data Protection Commission (“PDPC”) and, where required, affected individuals, in accordance with the Data Breach Notification obligations under Part 6A of the PDPA.
11. Data Protection Officer
We have designated a Data Protection Officer (“DPO”) to oversee our compliance with the PDPA. For any questions, requests, or complaints relating to personal data, contact:
Data Protection Officer, Avar Systems
Email: dpo@avarsystems.com
If you are not satisfied with our response, you may lodge a complaint with the Personal Data Protection Commission at www.pdpc.gov.sg.
12. Cookies and similar technologies
The Site is largely cookie-free. We do not use advertising or cross-site tracking cookies. Local browser storage is used only for the operation of the Site (for example, temporarily retaining enquiry details you have submitted so they are not lost). Third-party content delivery networks used to serve fonts and scripts may receive standard technical request data (such as your IP address) in order to deliver those files.
13. Third-party links
The Site may contain links to third-party websites. We are not responsible for the privacy practices of those websites, and this Policy does not apply to them. We encourage you to review the privacy policies of any website you visit.
14. Changes to this Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The updated version will be posted on this page with a revised “Last updated” date. Your continued use of the Site after changes are posted constitutes acknowledgement of the updated Policy.
15. Governing law
This Privacy Policy is governed by and construed in accordance with the laws of the Republic of Singapore, including the PDPA.