Privacy Policy
Effective Date: April 21, 2026 · Governing Law: Singapore PDPA 2012 ·
Contents
1.About Us
This Privacy Policy is issued by TokenON Pte. Ltd. (Singapore Unique Entity Number / UEN: 202414657N, business address: 77 High Street, #08-12/13 High Street Plaza, Singapore 179433 · "we", "TokenON").
We operate tokenon.ai and its subdomains, providing AI model aggregation, wallet, and affiliate services. (tokenon.io is the group corporate site operated by an affiliated entity, outside this Policy's scope.)
In processing your personal data, we are the Data Controller / Organisation under PDPA. For data-related enquiries, contact us at contact@tokenon.io.
2.Data We Collect
2.1 Data You Provide
- Account data: email, phone (optional), display name, password (stored as bcrypt hash only)
- Authentication: magic-link email verification or OAuth (GitHub / Google)
- Profile data: avatar, preferred language, notification settings
- Enterprise data (optional): company name, UEN, team list
- Communication data: your support emails / tickets
2.2 Automatically Collected
- Technical: IP (first 3 octets archived), User-Agent, fingerprint, screen, OS
- Usage: path, duration, clicks
- API call metadata (signed-in users): timestamp, model, tokens, source IP — full prompts / completions are NOT stored unless you opt in for debugging
2.3 From Third Parties
- OAuth: email + basic info per your authorised scope (GitHub / Google)
- Payments (future): order status from Alipay / WeChat Pay / Stripe (never card numbers)
- Anti-fraud: disposable email domain blocklists
3.Why We Collect (Purpose)
| Purpose | Data involved | PDPA basis |
|---|---|---|
| Account creation & login | Email, OAuth ID, password hash | §13 Consent + contract |
| Service delivery (AI, wallet, affiliate) | API metadata, wallet, referrals | Contract |
| Fraud prevention | IP, UA, fingerprint, behaviour | §13A Legitimate interests |
| Billing & tax | Top-up / deduction / commission | §21 Legal obligation (SG ITA) |
| Product improvement (aggregate) | De-identified metrics | §13A Legitimate interests |
| Marketing (updates, campaigns) | Email, preferences | §14 Opt-in · unsubscribe anytime |
| Customer service | Tickets, chat | Contract |
4.Legal Basis
We process data under the following PDPA 2012 provisions:
- §13 Consent — ticking our policy at signup
- §13A Legitimate Interests — fraud prevention, audit, platform security
- §14 Opt-in Consent — marketing, non-essential cookies
- §17 Disclosure without consent — where required by Singapore law
5.Who We Disclose To
We do NOT sell your personal data. We disclose to third parties only as follows:
5.1 Data Processors
| Category | Example providers | Data shared |
|---|---|---|
| AI model vendors | OpenAI, Anthropic, Google, xAI, CN vendors | Prompts/completions at call time (per their terms) |
| Cloud infrastructure | Vultr (Singapore / US) | All runtime data (encrypted at rest) |
| Email delivery | Resend / Postmark | Recipient + message body |
| OAuth providers | GitHub, Google | Data within your granted scope |
| Payments (future) | Alipay, WeChat Pay, Stripe | Order amount, user ID (not cards) |
| Anti-fraud | Disposable email checkers | Domain only (no prefix) |
5.2 Legal Disclosure
Under lawful orders from Singapore or other jurisdictions we may be compelled to disclose. Where legally permitted, we will notify you.
6.Cross-Border Transfer
- Singapore — primary database (Vultr SG), under PDPA
- US / EU — AI model calls (OpenAI, Anthropic US)
- Mainland China — CN model vendors and payment processing
7.How Long We Keep It
| Data type | Retention | Reason |
|---|---|---|
| Basic account info | Active + 180 days after deletion | Dispute / undelete window |
| Financial records (top-ups, deductions, commission) | 7 years | SG Companies Act §199 |
| Audit logs (logins, key actions) | 3 years | Anti-fraud + compliance |
| API call metadata | 12 months (aggregated, anonymised) | Product metrics · de-identified |
8.Your Rights (PDPA §21-22)
- Access
- Request a list of personal data we hold about you
- Correction
- Ask us to correct inaccurate information
- Deletion
- On account closure we retain per §7 schedule
- Withdraw consent
- Revoke anytime (may affect service)
- Unsubscribe
- Email footer unsubscribe or contact DPO
- Complaint
- To our DPO first, then to PDPC
To exercise: email contact@tokenon.io — we respond within 30 days (PDPA maximum).
9.Cookie Policy
| Category | Purpose | Required |
|---|---|---|
| Strictly Necessary | Session, CSRF tokens | Required (not disableable) |
| Functional | Language, theme, consent state | Optional · on by default |
| Analytics | Aggregate visits (future) | Optional · off by default |
| Marketing | Attribution (future) | Optional · off by default |
10.Data Security
- Transport — HTTPS (TLS 1.2+) sitewide, HSTS enabled
- Storage — DB encrypted at rest · passwords bcrypt (cost 13) · API keys SHA-256 hashed
- Access control — RBAC · least-privilege · audit logs
- Incident response — material breaches reported to PDPC within 72 hours
11.Minors
TokenON targets users 18 and older. We do not knowingly collect data from under-13s; we will delete any such data found immediately.
12.Policy Changes
- Notice via registered email 30 days before material changes
- "Policy updated" banner on homepage
- Re-consent required where legally mandated
13.Complaints & Disputes
- Step 1 — Contact us:
contact@tokenon.io(written reply within 30 days) - Step 2 — If unsatisfied, complain to Singapore's Personal Data Protection Commission (PDPC): www.pdpc.gov.sg
- Step 3 — Arbitration at Singapore International Arbitration Centre (SIAC) as ultimate venue
14.Contact
TokenON Pte. Ltd.
UEN: 202414657N
Business address: 77 High Street, #08-12/13 High Street Plaza, Singapore 179433
Contact: contact@tokenon.io