§ Legal · Privacy Policy

Privacy Policy

Last updated: 12 May 2026 · Version 1.0

This policy describes how Joy Truepath Pte. Ltd. (UEN 202205336E, registered in Singapore) handles personal data when you visit this website or use our products. We follow Singapore's Personal Data Protection Act 2012 (PDPA).

If you are not yet a customer or registered user and you are only browsing this website, the short version is: we do not collect personal data from you. The longer version follows.

1. Who we are

The data controller is:

• Joy Truepath Pte. Ltd.
• UEN: 202205336E
• Registered office: 362 Upper Paya Lebar Road, #03-08, Da Jin Factory Building, Singapore 534963
• Contact for privacy matters: [email protected]

For PDPA purposes, our designated Data Protection Officer can be reached at the same email address. Mark the subject line Privacy.

2. Scope of this policy

This policy covers:

• Your visit to joytruepath.com and its subpages
• Any direct contact with us (e.g. email to [email protected])

It does not cover the individual product apps we publish (TruePath Office, TruePath Recorder, TruePath VPN, Frameviai Studio). Each product app has, or will have, its own privacy policy with product-specific data handling. When a product launches we link to its specific policy from this page.

3. What we collect on this website

3.1 Information you give us

If you email us at [email protected] we receive your email address, the contents of your message, and any attachments you choose to send. We use this only to respond to you.

3.2 Information collected automatically

Our hosting provider (Vercel Inc.) and our DNS / edge provider (Cloudflare, Inc.) automatically log basic information about visits, including IP address, user agent, timestamp, requested URL, and HTTP response. These logs exist for operational and security purposes (preventing abuse, debugging outages) and are retained for a limited period under those providers' own policies.

We do not, at the time of this version of the policy:

• Set tracking cookies
• Run third-party analytics (Google Analytics, Mixpanel, Amplitude, or similar)
• Use marketing pixels (Meta, LinkedIn, X, etc.)
• Embed third-party advertising
• Sell or share any data with advertising networks

If we later add any of the above, this policy will be updated and the "Last updated" date will reflect the change.

4. Purposes and legal basis

We process the limited data described above for the following purposes:

• To respond to your enquiry, when you contact us directly
• To operate and secure the website, including preventing abuse, fixing errors, and meeting our hosting provider's legitimate operational needs
• To comply with applicable law, including responding to lawful requests from public authorities

Under the PDPA, we rely on your deemed consent (you provide data by emailing us) and on the legitimate interests basis for server logging.

5. Who we share with

We do not sell personal data. We share it only with:

• Hosting and infrastructure providers (currently Vercel and Cloudflare), to the minimum extent technically necessary to serve the site
• Email service providers (Google Workspace) when you email us
• Singapore authorities if we are required by law to disclose

We do not transfer personal data to vendors outside this list without first updating this policy.

6. International data transfers

Our hosting and email providers are based in the United States and operate global infrastructure. By using this website you understand that the limited data described in this policy may be processed outside Singapore. We rely on these providers' own data protection commitments to ensure protection comparable to PDPA standards.

7. Retention

We retain personal data only as long as we need it for the purposes above:

• Email correspondence: as long as needed to resolve and follow up on your enquiry, then archived in our email provider for up to 5 years
• Server logs: as configured by Vercel and Cloudflare under their respective policies, typically days to weeks

8. Your rights under PDPA

If you are an individual whose personal data we hold, you can ask us to:

• Access the personal data we hold about you
• Correct any inaccurate or incomplete personal data
• Withdraw consent for us to use your data
• Make a complaint if you believe we have not handled your data responsibly

Email [email protected] with the subject line PDPA Request. We respond within 30 days. There is no fee for routine requests.

If you are not satisfied with our response, you can lodge a complaint with the Personal Data Protection Commission of Singapore (PDPC) at pdpc.gov.sg.

9. Children

This website is not directed at children under 13. We do not knowingly collect personal data from anyone under 13. If we learn we have, we will delete it.

10. Security

We use HTTPS everywhere, restrict access to our systems on a need-to-know basis, and keep our software up to date. No internet system is perfectly secure, but we take the responsibility seriously.

11. Changes to this policy

We may update this policy when we add features, change vendors, or refine our practices. The "Last updated" date at the top of this page always reflects the current version. Material changes will be flagged on the home page for at least 30 days.

12. Contact

For any privacy question, write to [email protected]. We aim to respond within 5 business days.