TalentBridge HR Logo
TalentBridge HR Logo

Legal Info

Privacy Policy

Effective Date: 22 March 2026

NeuroVibes ("we", "us", "our") is committed to protecting the personal data of individuals who interact with our platform and services. NeuroVibes is a product developed and operated by Appvantage and MindVibes. This Privacy Policy explains how we collect, use, disclose, and protect personal data in accordance with the Personal Data Protection Act 2012 (PDPA) of Singapore and its subsidiary regulations.

1. Who We Are

NeuroVibes is a neuroscience-informed workforce readiness assessment platform, developed and operated by Appvantage and MindVibes. Our platform measures physiological, cognitive, and psychological indicators to help organisations understand the capacity of their workforce to perform and adapt in an AI-shaped environment.

2. Personal Data We Collect

We may collect the following categories of personal data:

  • Identity and Contact Data: Your name, email address, job title, and organisation, collected when you submit an enquiry, register for a service, or complete a form on our website.

  • Assessment Data: Physiological, cognitive, and psychological data collected during NeuroVibes assessments. This may include biometric indicators, attention and focus metrics, and stress or cognitive load markers. This data is collected from Participants only with their explicit informed consent, on behalf of Client organisations.

  • Usage Data: Information about how you interact with our website, including IP address, browser type, pages visited, and session duration, collected automatically via cookies and analytics tools.

  • Communications Data: Records of correspondence with us, including emails and contact form submissions.

3. How We Collect Personal Data

We collect personal data:

  • Directly from you when you submit enquiries, sign up for services, or communicate with us.

  • From Client organisations, who are responsible for obtaining valid Participant consent before engaging NeuroVibes to collect assessment data.

  • Automatically through cookies and similar technologies when you browse our website.

4. Purposes for Collection, Use, and Disclosure

We collect and use personal data for the following purposes:

  • To provide and deliver our workforce assessment Services.

  • To communicate with you regarding your enquiries or service engagement.

  • To generate assessment reports and insights for Client organisations.

  • To improve our platform, methodologies, and service quality.

  • To comply with legal and regulatory obligations under Singapore law.

  • To send marketing communications where you have provided consent to receive them. You may withdraw consent at any time by contacting us at the details below.

We will not use your personal data for purposes other than those stated above unless we obtain your further consent or are required to do so by law.

5. Consent and Sensitive Personal Data

Assessment data collected by NeuroVibes — including biometric and psychological indicators — constitutes sensitive personal data. We collect such data only with the explicit, informed consent of Participants. Before participating in any assessment, Participants will be provided with a clear explanation of what data is collected, how it is used, and to whom it may be disclosed.

Participants have the right to withdraw consent at any time by notifying us or the Client organisation. Withdrawal of consent will not affect the lawfulness of any processing carried out prior to withdrawal, but it may mean we are unable to continue providing certain services.

6. Disclosure of Personal Data

We do not sell or rent personal data to third parties. We may share personal data in the following circumstances:

  • Client organisations: Assessment reports and insights relating to their own Participants, in line with the agreed service scope.

  • Service providers: Third-party vendors who support our operations (e.g., cloud infrastructure, data analytics, payment processing). These providers are contractually required to protect your data and may only use it for the specific purpose of performing services for us.

  • Legal and regulatory authorities: Where required by applicable Singapore law, court order, or in response to valid requests from public authorities.

Where personal data is transferred outside Singapore, we take steps to ensure that adequate protection is in place as required under the PDPA, including the use of contractual protections consistent with the PDPC's model clauses.

7. Data Protection Measures

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, disclosure, alteration, or destruction. These include:

  • Encrypted data storage on secure server infrastructure.

  • HTTPS encryption for all data transmitted via our website and platform.

  • Role-based access controls to limit who can access personal data internally.

  • Regular security assessments and vulnerability reviews.

While we take all reasonable steps to protect your personal data, no method of transmission over the internet or electronic storage is entirely secure. If you have reason to believe your interaction with us is no longer secure, please contact us immediately.

8. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable law or contract. Assessment data is retained in accordance with the terms of the relevant Client agreement and deleted or anonymised upon expiry of the agreed retention period. We do not retain personal data beyond what is reasonably necessary.

9. Your Rights Under the PDPA

Under the Personal Data Protection Act 2012 (Singapore), you have the right to:

  • Access the personal data we hold about you.

  • Correct any inaccurate or incomplete personal data.

  • Withdraw consent to the collection, use, or disclosure of your personal data, subject to legal or contractual limitations.

To exercise any of these rights, please contact us using the details in Section 12 below. We will respond to your request within 30 calendar days.

10. Data Breach Notification

In the event of a data breach that is notifiable under the PDPA — that is, a breach likely to result in significant harm to affected individuals or that affects 500 or more individuals — we will notify the Personal Data Protection Commission (PDPC) and affected individuals in accordance with our obligations under the PDPA, within the prescribed timeframe.

11. Cookies

Our website uses cookies to improve your browsing experience and collect usage analytics. You may manage your cookie preferences through your browser settings at any time. Please note that disabling certain cookies may affect the functionality of our website.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. Any updates will be posted on this page with a revised effective date. We encourage you to review this page periodically to stay informed about how we protect your personal data.

13. Contact Us

If you have any questions, concerns, or requests relating to this Privacy Policy or our data practices, or if you wish to exercise your rights under the PDPA, please contact us at:

NeuroVibes
Singapore
hello@neurovibes.co

Go to the Homepage