General Privacy Statement
This Privacy Policy explains how Solvanya collects, uses, stores and shares personal data in the course of providing insurance consulting and policy selection services. We describe the types of data we process, the purposes of processing, how long data is kept, and the rights available to individuals. Our practices are designed to align with applicable data protection requirements in Singapore and internationally where relevant. For questions contact our Data Protection Officer.
Key Definitions
This section defines terms used in the policy to make it easier to understand what types of information we refer to and how we process data.
Data We Collect
We collect data that is necessary to deliver our services, respond to inquiries, support applications and comply with legal obligations. Data may be provided directly by users or collected automatically when interacting with our website.
Data You Provide
When you engage with Solvanya or request services, you may provide the following categories of information:
- Identity details: full name, date of birth and contact information (email, phone, address).
- Insurance-related information: existing policy details, beneficiary details, medical history and claims history where required for underwriting.
- Business information: revenue range, premium payment preferences, bank or card details for payment processing when required.
- Identification documents and verification data where necessary to complete applications and meet regulatory checks.
- Communications and preferences including consent choices and marketing opt-ins.
- Any other information you share in forms, emails, calls or document uploads relevant to consulting and policy placement.
Automatically Collected Data
We and our service providers collect technical and usage data automatically when you use our website and services to maintain functionality and improve performance.
- Log data such as access times, pages viewed and referrer URLs.
- Technical data including IP address, browser type, device model and operating system.
- Analytics data on site usage patterns to improve interface and content relevance.
- Cookie identifiers and similar tracking vouchers for session management and preferences.
- Aggregate or anonymised data derived from personal data for reporting and service improvement.
- Location data where explicitly permitted or necessary for service delivery (coarse location inferred from IP).
Third-Party Sources
We may supplement information you provide with data from trusted third parties when necessary to deliver services or verify information.
- Insurers and underwriters for policy placement, underwriting and claims purposes.
- Payment processors and banking partners to complete transactions securely.
- Verified public sources and identity verification providers where permitted by law.
How We Use Personal Data
We use personal data to deliver and improve our services, meet legal obligations, and maintain operational integrity. Specific purposes include:
- Assessing client needs and preparing personalised insurance recommendations.
- Comparing and sourcing policy options from insurers to present appropriate choices.
- Facilitating applications, underwriting submissions and supporting claims processes.
- Processing payments and managing billing and refunds.
- Maintaining records to meet regulatory and contractual obligations.
- Communicating service updates, appointment details and necessary operational notices.
- Analysing service usage to improve product offerings and website experience.
- With consent, sending marketing communications about services, events and offers.
Legal Basis for Processing
Where relevant, we rely on lawful bases for processing personal data such as performance of a contract and legitimate interests. We seek consent for marketing communications.
- Performance of a contract: to deliver consulting services and handle applications when you engage us.
- Legitimate interests: to maintain security, improve services and prevent fraud, balanced against user rights.
- Consent: for marketing communications and certain optional tracking where you have agreed.
- Legal obligation: to comply with regulatory checks, anti-funds laundering and reporting duties.
Your Data Rights
If you are entitled to protections under GDPR or similar frameworks, you may exercise the following rights. We have procedures to respond to requests in a reasonable timeframe.
- Right of access: request confirmation of whether we process your data and obtain a copy of personal data we hold.
- Right to rectification: request correction of inaccurate or incomplete information.
- Right to erasure: request deletion of personal data where retention is no longer necessary and no legal basis to retain exists.
- Right to restriction of processing: request limitation of processing in certain circumstances.
- Right to data portability: request a machine-readable copy of data you provided in a structured format.
- Right to object: object to processing based on legitimate interests or for direct marketing purposes.
Sharing and Disclosure
We share personal data only as necessary to provide services, comply with law, and support operational needs. Third parties are contractually required to protect data.
- Insurers and reinsurance partners for underwriting, policy issuance and claims administration.
- Payment processors, billing providers and business institutions for transactions.
- Regulatory authorities, auditors and law enforcement where required by law.
- Trusted service providers such as identity verification and secure document storage vendors.
- Analytics providers to measure and improve user experience using aggregated or pseudonymised data.
- Legal and professional advisers when necessary to respond to disputes or legal requirements.
International Transfers
Some service providers and insurers we work with operate outside Singapore. Where data is transferred internationally we take steps to ensure appropriate protections are in place and transfers are lawful.
Safeguards may include contractual data protection clauses, standard contractual clauses where applicable, and data minimisation. We assess third parties before sharing data and limit transfers to necessary purposes.
Data Retention
We retain personal data only as long as required for the purpose it was collected and to meet legal, regulatory and contractual obligations.
Account and client records are retained for the duration of the business relationship and for a period thereafter as required by applicable laws and industry practice, typically several years for regulatory record-keeping.
Communications such as emails and support correspondence are retained for operational reference and dispute resolution in line with record retention schedules.
System logs and analytics data are retained in aggregated or pseudonymised form for performance monitoring; raw logs are retained for security and troubleshooting for a limited period.
When retention periods expire or data is no longer needed, we securely delete or anonymise the information. You can request deletion subject to legal and contractual limitations.
Data Security and Confidentiality
At Solvanya we treat client data as a core asset. We apply industry-standard technical and organizational measures to protect personal and policy-related information from unauthorized access, disclosure, alteration or destruction. Our approach balances robust security controls with practical workflows so you receive tailored senior insurance advice without unnecessary friction. We limit access to information strictly to authorized staff and partners who need it to provide advice, compare products, or administer your plan.
- Encryption in transit and at rest for sensitive records and communications related to policy selection and client profiles.
- Role-based access controls and regular access reviews to ensure only trained advisors and administrators can view personal data.
- Regular vulnerability assessments, secure backups, and incident response procedures to reduce downtime and preserve data integrity.
User Rights and Requests
You have specific rights over your personal data. Solvanya supports these rights in a clear, accessible way so you can manage how we handle your information when arranging insurance advice or services.
- Right of access — request a copy of personal data we hold about you and the purposes of processing.
- Right to rectification — ask us to correct inaccurate or incomplete information related to your profile or policies.
- Right to erasure — request deletion of personal data when retention is no longer necessary and no overriding legal basis exists to keep it.
- Right to restrict processing — request limits on how we process your data in specific circumstances (e.g., while a dispute is resolved).
- Right to data portability — where applicable, receive a machine-readable copy of data you provided and transmit it to another provider.
- Right to object — object to processing based on legitimate interests or direct marketing at any time.
- Right to withdraw consent — withdraw any consent you previously gave for processing personal data, without impacting lawfulness of prior processing.
- Right to lodge a complaint — you may contact the personal data protection authority in Singapore if you are not satisfied with our response.
How to Submit a Rights Request
To exercise any of the rights above, please send a clear request to our data protection contact with your name, contact details, and a description of the request. We may ask for identification to verify your identity and protect your account. Requests are handled promptly while ensuring appropriate safeguards for privacy and security.
We aim to respond to rights requests within 30 days of receipt. If more time is required due to complexity or volume, we will inform you and provide a timeline for completion.
Marketing Communications
Solvanya may use your contact details to send relevant updates about senior insurance options, product comparisons and local workshops in Singapore. Marketing messages will be based on your communication preferences and relevant services for seniors and retirees.
You can opt out of marketing at any time by using the unsubscribe link in emails, updating preferences in your account, or contacting us directly at +6580251503 or [email protected].
Children's Privacy
Our services are focused on adults seeking senior insurance advice. We do not knowingly collect personal data from children under 16. If we become aware we have collected data from a child, we will take steps to delete it as soon as possible.
Links to Third-Party Sites
Our website may link to insurer, government or partner sites for policy details and external tools. Those sites have their own privacy policies; Solvanya is not responsible for their content or practices. Always review third-party policies before submitting personal information.
Changes to This Policy
We may update our privacy practices to reflect regulatory changes, new services, or security improvements. Material changes will be posted on our site with an updated effective date and, when appropriate, communicated directly to affected clients.