Effective Date: June 5, 2026 Last Updated: June 5, 2026
Last Reviewed: June 5, 2026
Next Review Due: December 5, 2026
About This Policy
This Privacy Policy describes how Iteryze Systems Pte Ltd ("Iteryze Systems," "we," "us," or "our"), a company incorporated in Singapore, collects, uses, discloses, and protects your personal information when you:
Visit our websites, including iteryzesystems.com and any subdomains (collectively, the "Sites")
Respond to our advertisements
Contact us or engage with us as a prospective customer
Use our products and services (the "Services")
Our Services include website design and development, CRM integration and configuration (including GoHighLevel), marketing automation, and AI-powered workflow automation.
By using the Services, you agree to the collection and use of information as described in this Policy.
If you have questions, contact us at [email protected] or +65 8265 4753.
1. Quick Summary
We collect contact information, business information, payment information, and online activity data.
We use it to deliver our Services, market to prospective customers, and operate our business.
We share it with service providers (including any AI providers we engage and our CRM platform), advertising partners, and as required by law.
We do not sell personal information for money. We do share certain information with advertising partners for cross-context behavioural advertising — you can opt out at any time.
We record sales, onboarding, and support calls.
We may use AI tools to help deliver our Services. Where we do, your data may be processed by third-party AI systems. We do not use your data to train third-party AI models.
If you are a client, your customers' data that you provide to us is governed by our Data Processing Agreement (DPA), not this Policy.
You have rights to access, correct, delete, and limit use of your information. See Section 13 to exercise them.
2. Who This Policy Applies To
This Policy applies to:
Prospective and current clients — individuals and businesses who enquire about or use our Services
Website visitors — anyone who visits our Sites
End contacts — individuals whose contact information our clients share with us through the CRM or automation tools
If you are an end contact whose data was uploaded by one of our clients, your primary relationship is with that client. Please refer to their privacy policy for how they handle your data. We process such data as a data processor on behalf of our clients, governed by a Data Processing Agreement.
3. Information We Collect
We collect the following categories of personal information:
CategoryExamplesIdentifiersName, email address, phone number, postal address, IP address, account username, business nameCommercial informationServices purchased, subscription tier, billing historyFinancial informationPayment card information (processed by Stripe), billing addressInternet activityPages visited, links clicked, time on site, referring URL, device and browser dataApproximate geolocationCity and country derived from IP address — we do not collect precise geolocationAudio recordingsSales, onboarding, and support calls (see Section 10)Professional informationJob title, industry, business sizeInferencesInterest in specific services, estimated business stage, fit for our offerings — derived from the aboveSensitive personal informationAccount login credentials, payment card informationAI-processed dataContent submitted through AI-integrated tools or workflows, where such features are in use
We do not knowingly collect: precise geolocation, racial or ethnic origin, religious beliefs, sexual orientation, immigration status, genetic data, biometric data, health information, or information from individuals under 18.
4. How We Collect Your Information
Directly from you — when you fill out a form, book a call, sign up, make a purchase, or contact us
From your device — through cookies, pixels, and similar technologies on our Sites
From advertising platforms — Meta, Google, TikTok, LinkedIn, and other ad networks that deliver our advertising
From service providers — our CRM (GoHighLevel), payment processor (Stripe), analytics tools, and communication platforms
From publicly available sources — business directories, public records, LinkedIn, and similar sources
Through AI-powered tools — where AI-integrated services are in use, content you submit may be processed by our AI providers
5. How We Use Your Information
We use personal information for the following purposes:
Delivering and operating the Services Account creation, billing, CRM configuration, automation setup, website builds, AI workflow integration (where applicable), customer support, and communications about your account.
Sales and marketing Responding to enquiries, following up on leads, sending promotional emails and SMS messages (where you have consented), and retargeting on advertising platforms.
AI-powered services Where we offer AI automation features, your inputs and outputs may be processed by third-party AI providers to generate content, analyse data, or power automated workflows. We do not use your data to train these models. Each provider's use of data is governed by their own data processing agreements with us. See Section 6 for full details.
Analytics and improvement Understanding how the Sites and Services are used, diagnosing technical issues, and developing new features.
Advertising measurement Measuring ad performance, building lookalike audiences, and retargeting visitors. This constitutes "sharing" under certain privacy laws — see Section 8.
Quality assurance and training Reviewing call recordings to train our team and improve service quality.
Security and fraud prevention Detecting, investigating, and preventing fraudulent or unauthorised activity.
Legal compliance Complying with applicable laws, court orders, and regulatory requirements across Singapore, Australia, New Zealand, Canada, and the United States.
Business operations Accounting, recordkeeping, audits, and corporate transactions.
6. AI Processing — Additional Disclosures
We may use third-party AI providers to power certain features of our Services. Where AI processing is in use, we will inform you. The providers we may engage include:
ProviderUse CaseData Processing LocationPrivacy PolicyOpenAIText generation, content automation, chat workflowsUnited Statesopenai.com/policies/privacy-policyAnthropicText generation, AI assistants, automation workflowsUnited Statesanthropic.com/privacyGoogle GeminiText and multimodal AI featuresUnited States / Globalpolicies.google.com/privacyVapiAI voice agents and phone automationUnited Statesvapi.ai/privacyRetell AIAI voice calling and conversational agentsUnited Statesretellai.com/privacyElevenLabsAI voice synthesis and audio generationUnited Stateselevenlabs.io/privacy
What this means for your data:
At the date of this Policy, we do not currently use any of the above AI providers in our production Services. This section is provided for transparency as we may engage one or more of these providers in the future.
Where AI features are introduced, we will update this Policy and notify affected users before enabling such features on their accounts.
Content submitted through AI-powered features (prompts, documents, voice inputs) may be transmitted to and processed by the relevant provider.
We have or will have data processing agreements in place with each provider we engage.
None of these providers will use your data to train their models under our enterprise agreements.
We do not make solely automated decisions with legal or similarly significant effects about individuals without human oversight.
If you do not wish your data to be processed by a specific AI provider, contact us at [email protected] and we will discuss available alternatives.
7. Client Data and Data Processing
If you are a client who has provided us with your customers' or contacts' personal information (for example, by uploading a contact list to GoHighLevel or connecting your CRM), the following applies:
You are the data controller for that information.
We are the data processor, acting only on your instructions.
Our handling of that data is governed by our Data Processing Agreement (DPA), which forms part of our service agreement with you.
We do not use client contact data for our own marketing purposes.
We require you to have a lawful basis for sharing that data with us and to have informed your contacts appropriately.
We share personal information with the following categories of recipients:
RecipientPurposeService providers (e.g., GoHighLevel, Stripe, hosting providers, email/SMS senders, analytics providers)To deliver the Services on our behalf under written contractAI providers (as listed in Section 6, where applicable)To power AI-integrated features of the ServicesAdvertising partners (e.g., Meta, Google Ads, TikTok, LinkedIn)To deliver and measure advertisingProfessional advisors (lawyers, accountants, auditors)For legal, accounting, and compliance purposesAcquirersIn connection with a merger, acquisition, financing, or sale of assetsGovernment authoritiesWhen required by law, subpoena, or court order
We do not sell personal information for money.
We do share the following categories with advertising partners for cross-context behavioural advertising (which constitutes a "sale" or "sharing" under certain US state privacy laws):
Identifiers (online identifiers, IP address)
Internet activity (pages visited, ads clicked)
Inferences
You may opt out at any time — see Section 13.
9. Mobile Communications
When you provide your mobile number, you consent to receive SMS messages related to our Services, including account communications and (if you opt in) marketing offers. Your mobile number will not be shared with third parties for their own marketing purposes.
Opt-out: Reply STOP to any message at any time
Help: Reply HELP for support
Frequency: Varies based on your interactions with us
Cost: Standard message and data rates apply per your carrier's terms
Phone numbers may be processed by our SMS provider and CRM (GoHighLevel) solely to deliver messages you have consented to receive.
10. Call Recording
We record sales, onboarding, and support calls for quality assurance, team training, recordkeeping, and dispute resolution. At the start of each call, we provide verbal notice that the call is being recorded. By continuing the call after this notice, you consent to being recorded.
If you do not wish to be recorded, please inform us at the start of the call.
Recordings are stored securely, accessible only to authorised personnel and our service providers, and retained as described in Section 11.
11. Data Retention
We retain personal information for as long as necessary to provide the Services, fulfil the purposes described in this Policy, comply with legal and accounting obligations, resolve disputes, and enforce our agreements.
Data TypeRetention PeriodCustomer account recordsWhile account is active, and thereafter as needed for legal, accounting, or legitimate business purposesMarketing leadsIndefinitely, until you request deletion or opt outBilling and tax recordsAt least 7 years (required by Singapore law and most jurisdictions we operate in)Call recordingsIndefinitely, for training, quality assurance, and dispute resolutionWebsite analytics (identifiable)Up to 26 monthsCookiesSession-only or up to 13 months, depending on typeAI interaction logsAs directed by our agreements with AI providers; typically not retained beyond the session
You may request deletion at any time as described in Section 13. After deletion, we may retain limited information necessary to comply with legal obligations, resolve disputes, prevent fraud, and enforce our agreements.
12. Cookies and Tracking Technologies
We use cookies, pixels, software development kits, and similar technologies to:
Keep you logged in and remember your preferences (essential)
Measure traffic and performance (analytics — including Google Analytics)
Deliver and measure advertising (Meta Pixel, Google Ads, and similar)
Managing cookies:
Cookie settings: Click the "Cookie Settings" link in our website footer to accept, reject, or customise cookies.
Browser settings: Most browsers allow you to block or delete cookies.
Global Privacy Control (GPC): Enabling GPC in your browser tells us to opt you out of sharing for advertising purposes. We honour this automatically for applicable visitors.
Industry opt-outs: optout.aboutads.info and optout.networkadvertising.org
We do not use session replay technology on our Sites.
13. Your Privacy Rights
Your rights depend on where you reside. We honour the following rights for residents of Singapore, Australia, New Zealand, Canada, and applicable US states:
RightWhat it meansRight to accessObtain a copy of the personal information we hold about youRight to correctFix inaccurate or outdated personal informationRight to deleteRequest deletion of your personal informationRight to portabilityReceive your data in a portable, machine-readable formatRight to withdraw consentWithdraw consent for processing based on consent, including marketingRight to opt out of sale/sharingStop us from sharing your data for cross-context behavioural advertisingRight to object to AI processingRequest that your data not be submitted to AI providersRight to non-discriminationWe will not deny services or charge different rates for exercising your rights
We will acknowledge your request within 10 business days and respond within 30 days (extendable by a further 30 days with notice). The first request in any 12-month period is provided at no charge.
To protect your information, we will verify your identity before fulfilling any request. You may designate an authorised agent with written, signed authorisation.
14. Jurisdiction-Specific Disclosures
14.1 Singapore — Personal Data Protection Act (PDPA)
We comply with Singapore's Personal Data Protection Act 2012 (PDPA) and the obligations of the Personal Data Protection Commission (PDPC).
We collect, use, and disclose personal data only with your knowledge and consent, or as permitted by law.
We have appointed a Data Protection Officer (DPO). Contact: [email protected]
Individuals in Singapore have the right to access and correct their personal data held by us.
We implement reasonable security arrangements to protect personal data in our possession.
In the event of a data breach that results in, or is likely to result in, significant harm to affected individuals, we will notify the PDPC and affected individuals as required under the PDPA Notification of Data Breaches regulations.
We may transfer personal data outside Singapore only to countries with comparable data protection standards or under contractual protections.
14.2 Australia — Privacy Act 1988
We comply with the Australian Privacy Act 1988 and the Australian Privacy Principles (APPs).
Individuals in Australia have the right to access and correct their personal information.
We will not use or disclose personal information for direct marketing unless you have consented or it is impractical to obtain consent, and we include an opt-out in every marketing communication.
We may disclose personal information overseas (including to the United States for AI processing where applicable). We take reasonable steps to ensure overseas recipients handle your information consistently with the APPs.
Complaints may be directed to our DPO at [email protected] or to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
14.3 New Zealand — Privacy Act 2020
We comply with the New Zealand Privacy Act 2020 and the Information Privacy Principles (IPPs).
Individuals in New Zealand have the right to access and correct their personal information.
We will notify the Privacy Commissioner and affected individuals of any privacy breach that has caused, or is likely to cause, serious harm.
Complaints may be directed to [email protected] or to the Office of the Privacy Commissioner at privacy.org.nz.
14.4 Canada — PIPEDA and Provincial Laws
We comply with the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy laws.
We collect, use, and disclose personal information only with consent or as permitted by law.
Individuals in Canada have the right to access their personal information and to challenge its accuracy.
We may transfer personal information outside Canada for processing, including to the United States. Such transfers are made under contractual protections.
Complaints may be directed to [email protected] or to the Office of the Privacy Commissioner of Canada at priv.gc.ca.
14.5 United States — State Privacy Laws
We comply with applicable US state privacy laws including the California Consumer Privacy Act / CPRA (California), Colorado Privacy Act, Connecticut Data Privacy Act, Virginia Consumer Data Protection Act, Texas Data Privacy and Security Act, Oregon Consumer Privacy Act, and other state laws with comprehensive consumer privacy protections.
In the past 12 months, we have:
Collected the categories of personal information listed in Section 3
Disclosed for a business purpose to service providers and professional advisors
Shared for cross-context behavioural advertising with advertising partners (see Section 8)
Not sold personal information for monetary consideration
Not knowingly collected or sold personal information of consumers under 16
California residents may also request information about disclosures made for direct marketing purposes under California's Shine the Light law by emailing [email protected].
We do not offer financial incentives in exchange for personal information.
We honour the Global Privacy Control (GPC) signal as a universal opt-out for residents of California, Colorado, Connecticut, and other states recognising GPC.
Appeals: If we deny your privacy rights request and you reside in Virginia, Colorado, Connecticut, Texas, or Oregon, you may appeal by emailing [email protected] with the subject line "Appeal." We will respond within 45 days (Virginia, Connecticut, Oregon) or 60 days (Colorado, Texas).
15. International Data Transfers
We are headquartered in Singapore. Our service providers, including any AI providers we may engage, are primarily located in the United States.
When we transfer personal information outside of your country of residence, we take steps to ensure that your information receives an adequate level of protection, including through:
Contractual protections (including standard contractual clauses where applicable)
Data processing agreements with all third-party providers
Selecting providers that maintain robust security and privacy standards
By using our Services, you acknowledge that your data may be transferred to and processed in Singapore, the United States, and other countries.
16. Data Security
We implement reasonable administrative, technical, and physical safeguards to protect personal information, including:
Encryption in transit (TLS) and at rest where applicable
Access controls and role-based permissions
Vendor due diligence and contractual security requirements
Regular review of security practices
No method of transmission over the internet is 100% secure. We cannot guarantee absolute security, but we will notify you and relevant authorities of any breach as required by applicable law.
17. Children's Privacy
Our Sites and Services are not directed to individuals under 18. We do not knowingly collect personal information from anyone under 18. If you believe we have collected information from a person under 18, contact [email protected] and we will delete it promptly.
18. Third-Party Links
Our Sites may contain links to third-party websites and services. This Policy does not apply to those third parties. We encourage you to read their privacy policies before providing them with your information.
19. Changes to This Policy
We may update this Privacy Policy from time to time. The "Last Updated" date at the top reflects the most recent change. If we make material changes, we will notify you by posting a notice on the Sites or by email. We review this Policy at least every six months.