This Privacy Policy describes how Linovate Technology Pte. Ltd. ("we," "us," or "our") collects, uses, processes, and protects your personal data, particularly regarding the use of our voice cloning, dubbing, and synthetic media platform at voxshift.site (the "Service"). We are committed to protecting your privacy and complying with the Singapore Personal Data Protection Act 2012 (PDPA) and other applicable data protection laws.
By accessing or using our Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use the Service.
1. Personal Data We Collect
Under the PDPA, "personal data" refers to data, whether true or not, about an individual who can be identified from that data, or from that data and other information to which an organisation has or is likely to have access.
1.1. Account & Profile Information
- Identity Data: Full name, username, title, or alias.
- Contact Data: Email address, physical address, and phone number.
- Authentication Data: Passwords, security questions, and multi-factor authentication details.
1.2. Financial & Transaction Data
- Payment Information: Billing addresses and partial credit card information (processed securely by third-party payment gateways; we do not store full credit card numbers).
- Transaction History: Details about payments to and from you and other details of products or services you have purchased from us.
1.3. Service Usage & Technical Data
- Log Data: IP addresses, browser type, operating system, referring URLs, access times, and pages viewed.
- Device Data: Information about the device used to access the Service, including hardware models, operating systems and versions, unique device identifiers, and mobile network information.
- Usage Data: Information about how you interact with the Service, such as the features used, time spent, and frequency of use.
1.4. Content & Input Data
- User Content: Audio files, video files, text scripts, and images you upload or generate using the Service.
- Consent Documentation: Records of consent obtained from individuals whose voices or likenesses are used, including signed forms, recorded verbal consent, or verification documents.
1.5. Biometric Data (Crucial for Voice Cloning)
Due to the nature of our voice cloning and dubbing services, we collect and process highly sensitive biometric data.
- Voice Data: Audio recordings of voices you upload.
- Voiceprints & Acoustic Models: Mathematical representations, acoustic models, and extracted characteristics (voiceprints) derived from uploaded audio to create synthetic "Voice Models." This is considered sensitive biometric personal data.
2. How We Use Your Personal Data
We process your personal data for the following purposes:
2.1. Providing and Improving the Service
- To operate, maintain, and provide the features of the Service (e.g., generating Voice Models and dubbed content).
- To process payments and manage your account.
- To analyze usage trends and improve the Service's functionality, accuracy, and user experience.
- To improve our machine learning models using aggregated and anonymized data only. Individual Voice Models are isolated and used solely for your account; we do not use your personal voice data for training purposes.
2.2. Security, Compliance, and Forensics
- Identity Verification: To verify your identity and ensure compliance with our Acceptable Use Policy (AUP) and Terms of Service (e.g., confirming consent for high-risk voice cloning).
- Misuse Prevention: To detect, prevent, and investigate fraud, deepfake abuse, unauthorized cloning, and other prohibited activities.
- Provenance & Watermarking: To embed metadata, cryptographic signatures, or watermarks into generated outputs for traceability, as required by law or platform policy.
2.3. Communication
- To send administrative messages, technical notices, security alerts, and support messages.
- To respond to your inquiries and support requests.
- To send promotional communications (you may opt out at any time).
2.4. Legal Obligations
- To comply with applicable laws, regulations, legal processes, or lawful requests from Singapore authorities (e.g., SPF, IMDA) or relevant foreign law enforcement.
- To enforce our agreements, policies, and Terms of Service.
3. Consent and Your Responsibilities
Under the PDPA, we require a lawful basis to process personal data. For our Service, this basis is primarily Consent and Performance of a Contract.
3.1. Your Consent
By using the Service and uploading your own Voice Data, you explicitly consent to the extraction, modeling, and processing of your biometric voiceprint for the purposes described in this policy.
3.2. Third-Party Consent (Your Obligation)
CRITICAL REQUIREMENT:
If you upload Voice Data belonging to another person (living or deceased), you are solely responsible for obtaining their explicit, informed, and documentable consent before uploading their data to our Service.
- You warrant that you have informed the third party of how their voice will be used, cloned, and stored by Linovate Technology Pte. Ltd..
- You must retain proof of this consent and provide it to us immediately upon request.
- Failure to obtain and maintain valid consent is a violation of our Terms of Service and may result in immediate account termination and legal action.
4. Disclosure of Personal Data
We do not sell your personal data. We may share your data under the following circumstances:
| Recipient Category | Purpose of Sharing |
|---|
| Service Providers | Cloud hosting providers, payment processors, and analytics services acting as data intermediaries on our behalf, bound by strict confidentiality agreements. |
| Law Enforcement & Authorities | To comply with lawful subpoenas, court orders, or directives from Singapore authorities (e.g., SPF, IMDA, POFMA Office) or other jurisdictions to investigate fraud, safety threats, or illegal deepfakes. |
| Business Transfers | In connection with a merger, acquisition, reorganization, or sale of assets, subject to confidentiality obligations. |
| Protection of Rights | When necessary to protect the rights, property, or safety of Linovate Technology Pte. Ltd., our users, or the public, including enforcing our AUP. |
5. Data Retention and Destruction
We retain personal data only as long as necessary to fulfill the purposes for which it was collected or to comply with legal, regulatory, or internal policy requirements.
5.1. Retention Periods
- Account Data: Retained for the lifetime of your account.
- Voice Models (Biometric Data): Retained only as long as you actively maintain the Voice Model in your account.
- Generated Outputs & Logs: Retained for a period of 30 days to facilitate forensic tracing, respond to abuse reports, and comply with legal obligations, after which it is anonymized or deleted.
5.2. Data Destruction
- Upon account deletion or a valid erasure request, your Voice Models (voiceprints and acoustic data) are permanently destroyed and cannot be recovered.
- We will cease retaining documents containing personal data, or remove the means by which the personal data can be associated with particular individuals, as soon as it is reasonable to assume that the purpose for which that personal data was collected is no longer being served by retention of the personal data, and retention is no longer necessary for legal or business purposes.
6. Data Security
We implement robust technical and organizational measures to protect your personal data, particularly sensitive biometric data, from unauthorized access, collection, use, disclosure, copying, modification, or disposal.
- Encryption: Voice Data and Voice Models are encrypted at rest and in transit.
- Access Controls: Strict role-based access controls limit employee access to personal data.
- Secure Infrastructure: We utilize industry-standard secure cloud environments and conduct regular security audits.
While we strive to use commercially acceptable means to protect your Personal Data, no method of transmission over the Internet, or method of electronic storage is 100% secure.
7. Cross-Border Data Transfers
Your personal data, including biometric Voice Data, may be transferred to, processed, and stored in servers located outside of Singapore (e.g., in data centers operated by our cloud service providers). We ensure that any overseas transfer complies with the PDPA by ensuring the recipient organization is bound by legally enforceable obligations to provide a standard of protection comparable to that under the PDPA (e.g., via standard contractual clauses).
8. Your Rights Under the PDPA
Under the Singapore PDPA, you have the following rights regarding your personal data:
- Right to Access: You can request information about the personal data we hold about you and how it has been used or disclosed within the past year.
- Right to Correction: You can request corrections to any inaccurate or incomplete personal data.
- Right to Withdraw Consent: You may withdraw your consent for the collection, use, or disclosure of your personal data at any time by providing reasonable notice (e.g., by deleting your account or specific Voice Models). Note that withdrawing consent may prevent you from using certain features of the Service.
To exercise these rights, please contact our Data Protection Officer (DPO) using the contact details below. We may charge a reasonable fee for access requests, which will be communicated to you beforehand.
9. Changes to this Privacy Policy
We may update this Privacy Policy periodically. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Effective Date." Where feasible or required by law, we will communicate significant changes to you directly (e.g., via email or a prominent notice within the Service).
10. Contact Us (Data Protection Officer)
If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact our Data Protection Officer (DPO):
- Email: legal@voxshift.site
- Physical Address: 8 BURN ROAD, TRIVEX, SINGAPORE 369977
- Attention: Data Protection Officer
VoxShift