Privacy Policy

This is an AI Singapore website. AI Singapore is the data controller responsible for the personal information described in this Privacy Policy. ATLAS-Data is an open-source data platform operated by AI Singapore. This Privacy Policy describes how AI Singapore collects, uses, discloses, and protects your information in connection with ATLAS-Data's owned and operated websites, currently available at https://atlas-data.sea-lion.ai (the "Site"), the ATLAS-Data datasets that we host or make available on behalf of our dataset contributors (the "ATLAS-Data Datasets"), and any other products, services, features, or applications provided by AI Singapore (collectively, the "Services").

If you are only browsing this website, we do not capture data that allows us to identify you individually.

1. Information We Collect

a. Information You Provide to Us

When you use or interact with us through our Services, such as when you use our Site or register to receive Datasets from our website, as well as from the devices you use to interact with us, you may provide the following types of information to us:

• Registration information, such as your name, email, information related to your organization (such as the organization name), and any other information you provide in connection with signing up for the Services;
• Rough geolocation (which may be inferred from your IP address);
• Interactions you initiate or otherwise have with the ATLAS-Data team or on our Services (such as when you interact with our search or chatbot functionalities);
• Other information or identifiers you provide to us.

In limited cases, such as where you request access to particular types of ATLAS-Data Datasets, we may request additional documentation to verify your ability to access such Datasets, which may vary based on the circumstances. If you choose not to provide information, we may not be able to provide certain services to you or respond to your requests.

We may use and disclose information that we aggregate (compile to create statistics that cannot identify a particular individual) or de-identify (strip information of all unique identifiers such that it cannot be linked to a particular individual) at our discretion.

To safeguard your personal data, all electronic storage and transmission of personal data are secured with appropriate security technologies.

b. Cookies and Other Technologies

Through our Site, we collect information from your computer or other device by automated means such as cookies, web beacons, local storage, and JavaScript.

This information may include unique browser identifiers, IP address, browser and operating system information, device identifiers, other device information, Internet connection information, as well as details about your interactions with our Site, email or other online property (for example, the URL of the third-party website from which you came, the pages on our Site that you visit, and the links you click on in our Site). In some cases (such as cookies), the tools described here involve storing unique identifiers or other information on your device for later use.

We use cookies and similar technologies for two purposes:

• Strictly necessary cookies — required for the Site to function (for example, maintaining your session and basic security).
• Analytics cookies — help us understand how users interact with the Site so we can improve it. We currently use Google Analytics for this purpose; you can opt out by installing the Google Analytics Opt-out Browser Add-on.
• Where required by applicable law, we will request your consent before placing non-essential cookies on your device, and you may withdraw that consent at any time using the cookie preferences on our Site. Disabling cookies may affect how parts of the Site function for you. For full details, see our Cookie Policy.

c. Information From Third Parties and Certain ATLAS-Data Projects

We act as a vendor with respect to the ATLAS-Data Datasets provided by contributors to the Services.

We may work on voice datasets and other data we receive from contributors. This data includes voice recordings and voluntarily-provided demographic data (such as information that was voluntarily tagged to the recordings, including accent, age, and gender). This dataset, if released, will be without any associated personal information or personal data — the released audio segments are not reasonably linkable by a listener to any individual or device.

Additionally, as part of providing the ATLAS-Data Datasets, we work with data providers to host and/or make available their datasets on our Services, which may include without limitation voice recordings, audio and text data, images, documents, and other information that may relate to individuals. As noted above, we act as a vendor to the provider of these.

We may also receive information from entities, including our service providers, affiliates, and partners such as analytics technology and publicly available sources, such as social media websites.

We may combine the information we collect about you from these various sources and treat it in accordance with this Policy. This Site may contain links to other sites whose data protection and privacy practices may differ from ours. We are not responsible for the content and privacy practices of these other websites and encourage you to consult the privacy notices of those sites.

2. Use of Information

We and our vendors and service providers use the information described above for the following purposes:

• Manage and improve the Services generally;
• Process your registration and verify your information;
• Facilitate access to the Services and to ATLAS-Data Datasets;
• Send you confirmations, updates, security alerts, and support and administrative messages;
• Conduct platform promotion and update marketing activities (including by email or social media) in each case where permitted by applicable law and subject to your right to opt out;
• Conduct business operations such as auditing, security, fraud, abuse prevention, analytics (including with analytics technology), and research and development;
• Analyse your use of the Services (such as understanding interactions on the Site and with the ATLAS-Data Datasets) to understand how our users use the Services and improve the Services, including with the help of analytics technology;
• Protect against, identify, investigate, and respond to misuse of the Services or other unlawful behaviour;
• Address legal requirements;
• Establish, exercise, or defend our legal rights; and
• Create aggregated or de-identified information.

a. Legal Bases for Processing

The laws in certain jurisdictions (such as those in the European Union and United Kingdom) require us to inform you of the "legal bases" on which we process your information. The legal bases for using your information as set out in this Privacy Policy are as follows:

• Where we need to perform the contract we are about to enter into or have entered into with you for the Services;
• Where it is necessary for our legitimate interests (or those of a third party) and our interests and fundamental rights do not override those interests;
• Where we need to comply with a legal or regulatory obligation; and
• Where we have your consent to process your information in a certain way.

3. Disclosure of Information

We may disclose your information as follows:

• To vendors and service providers: We disclose information to companies that provide services to us, such as for data storage, analytics, security, fraud prevention, and marketing. We may engage a vendor to help us host or operate any aspect of the Services, including any mechanism through which we send or receive communications, such as our email systems and our Site.
• To analytics providers: We disclose information about you to our analytics provider to help us better understand your use of the Services and customise the Services. You may opt out of having Google Analytics use your information for analytics by installing the Google Analytics Opt-out Browser Add-on.
• To affiliates: We may disclose information to current or future parents, subsidiaries, affiliates, and other organisations under common control or ownership with AI Singapore.
• To dataset participants: As part of providing the ATLAS-Data Datasets, we may disclose datasets containing voice recordings and other information to approved users and researchers who have registered to access the ATLAS-Data Datasets in accordance with our terms of use. In some cases, dataset contributors may require certain basic information (such as name, affiliation, and contact information) prior to allowing other users to access their dataset.
• In connection with legal matters: We may disclose information when we believe disclosure is appropriate due to a subpoena or similar investigative demand, a court order, or other request from a law enforcement or government agency, or as otherwise required by law.
• For the protection of AI Singapore and others: We may disclose information when we believe disclosure is appropriate in connection with efforts to investigate, prevent, or take other action regarding illegal activity, suspected fraud or other wrongdoing; to protect and defend the rights, property or safety of our organisation, our employees, our partners, or others; and to enforce our contracts.
• In connection with mergers or acquisitions: We may disclose information to an entity that acquires all or any part of our assets or in a merger or acquisition, or in connection with due diligence for a proposed transaction.
• In other situations: We may also disclose your information in other situations where legally permitted, including in order to perform tasks or services that you have requested.

We may use and disclose appropriately aggregated or de-identified information for any purpose.

a. Privacy Disclosures for Specific Jurisdictions

European Economic Area, United Kingdom and Switzerland

We process "personal data," as that term is defined in the European Union's General Data Protection Regulation ("GDPR").

Your rights under the GDPR: If you are located in the European Economic Area ("EEA"), U.K., or Switzerland, you have the right to lodge a complaint to the Supervisory Authority in your jurisdiction. Contact details for Supervisory Authorities are available at ec.europa.eu/justice/data-protection/bodies/authorities.

If you are located in the EEA, U.K., or Switzerland, you have the following rights:

• Right of access and portability. The right to obtain access to your personal data or request transmission of your personal data to a third party.
• Right to rectification. The right to obtain rectification of your personal data where that personal data is inaccurate or incomplete.
• Right to erasure. The right to obtain the erasure of your personal data in certain circumstances, such as where the data is no longer necessary in relation to the purposes for which it was collected or processed.
• Right to restriction. The right to obtain the restriction of the processing undertaken by us on your personal data in certain circumstances, such as where the accuracy of the personal data is contested by you, for a period enabling us to verify the accuracy of that personal data.
• Right to object. You have the right to object to the processing of your personal data based on our legitimate interests at any time. We will no longer process the personal data, unless there are compelling legitimate grounds for our processing that override the interests, rights, and freedoms of the data subject, or the processing serves the purpose of asserting, exercising, or defending legal claims. You also have the right to object at any time to the use of your personal data for direct marketing.
• Right to withdraw consent. If we are processing your personal data based on your consent, you have the right to withdraw your consent at any time.

If you wish to exercise one of these rights, please contact us using the contact details at the end of this Privacy Policy.

Singapore

We process personal data in accordance with the Personal Data Protection Act 2012 ("PDPA"). If you are located in Singapore, you have the following rights, subject to the exceptions and conditions set out in the PDPA:

• Right of access. The right to request information about the personal data we hold about you and, on request, how it has been used or disclosed by us in the year preceding your request.
• Right of correction. The right to request that we correct an error or omission in your personal data.
• Right to withdraw consent. The right to withdraw any consent you have previously given for our collection, use or disclosure of your personal data, on giving reasonable notice. Withdrawal may affect our ability to continue providing certain Services to you.
• Right to data portability. Where the relevant provisions of the PDPA are in force, the right to request transmission of certain personal data to another organisation in a commonly used machine-readable format.

To exercise any of these rights, please contact our Data Protection Officer using the contact details below.

4. Your Rights and Choices

a. Cookies and Other Similar Technologies

You can make certain choices regarding the use of cookies and similar technologies. If you replace, change, upgrade or reset your browser or device, or delete your cookies, or if you use a browser that automatically clears your cookies, you may need to update your choices again.

As mentioned above, you may be able to set your browser to refuse certain types of cookies, or to alert you when certain types of cookies are being used. Some browsers offer similar settings for HTML5 local storage and other technologies too. However, if you block or otherwise reject all cookies, local storage, JavaScript or other technologies, certain websites may not function as expected.

We do not respond to browser-based Do Not Track signals, but where required by applicable law we will honour Global Privacy Control (GPC) signals received from your browser.

b. Rights Regarding Your Information

Depending on where you live, your local laws (including those in the European Union, United Kingdom, Singapore and elsewhere) may provide you certain rights regarding your information, including:

• Right to know the categories and specific pieces of personal information we have collected, used, or disclosed;
• Right to delete, correct, or update your personal information;
• Right to prevent the processing of your information for direct marketing purposes (including any direct marketing processing based on profiling, if any);
• Right to restrict the way that we process and disclose certain information about you;
• Right to object to certain processing of your personal information;
• Right to revoke your consent for the processing of your personal information;
• Right to be free from discrimination for exercising your rights; and
• Right to data portability.

Please note: Your rights and our responses will vary based on your state or country of residency. You may be located in a jurisdiction where we are not obligated, or are unable, to fulfil a request. In such a case, your request may not be fulfilled.

We will take reasonable steps to verify your identity and requests, including by verifying your account information, residency or the email address you provide. If you are an authorised agent submitting a request on behalf of another individual, we may require proof of your written authorisation before processing the request.

Certain information may be exempt from such requests under applicable law, such as information we retain for legal compliance and to secure, provide and audit our Services.

We may need certain information in order to provide the Services to you; if you ask us to delete it, you may no longer be able to use the Services.

5. International Data Transfer

We are headquartered in Singapore. Information we collect may be transferred to, stored in, and processed in countries other than the country in which you are located, including in countries where we or our third-party service providers operate. As a result, your personal information may be subject to the laws of those countries, including disclosure to governments, courts, or law enforcement or regulatory agencies, pursuant to the laws of such countries.

Where personal information is transferred to third-party processors who handle it solely on our behalf, we take appropriate measures to ensure those parties protect your information in accordance with this Privacy Policy, the Personal Data Protection Act 2012 of Singapore ("PDPA"), and, where applicable, the EU/UK General Data Protection Regulation ("GDPR"), including by entering into Standard Contractual Clauses or relying on other lawful transfer mechanisms.

6. Data Retention

We keep your information until we determine it is no longer necessary for the purposes described in this Privacy Policy and we are no longer legally required to retain it. Indicative retention periods:

• Registration and account data: for as long as your account is active, plus up to 12 months after deactivation;
• Dataset access logs and audit records: up to 3 years for security and compliance purposes;
• Analytics data: typically up to 26 months in aggregated form; and
• Support correspondence: up to 2 years from the date of last contact.

7. Protection of Information

To help protect personal information, we have put in place physical, technical, and administrative safeguards. However, no such safeguards are 100 percent effective. Therefore, we cannot assure you that data that we collect under this Privacy Policy will never be used or disclosed in a manner that is inconsistent with this Privacy Policy.

In the event of a data breach that is likely to result in significant harm to affected individuals, we will notify the Personal Data Protection Commission of Singapore and, where required, the affected individuals, in accordance with the PDPA. Where the GDPR applies, we will also notify the relevant Supervisory Authority within 72 hours of becoming aware of a notifiable breach.

8. Children

The Services are not directed to children under the age of 13 (or the equivalent minimum age in the relevant jurisdiction). We do not knowingly collect personal information from children without appropriate consent. If you believe a child has provided personal information to us, please contact us so we can investigate and, if appropriate, delete it.

9. Updates and Changes to This Policy

We may update this Privacy Policy from time to time, such as to reflect changes in our practices or for legal reasons. We will post those changes here or on a similarly accessible page. We encourage you to review this Policy periodically.

10. Contacting Us

If you have any questions or comments regarding our privacy policy and practices, or to submit a request or complaint, please contact us using the details below.

Data Controller: AI Singapore

Address: 61 Nanyang Drive, Academic Building North Basement 3 (ABN-B3a-01), S637335

Email: [email protected]