This Data Processing Agreement ("DPA") outlines how BumbleByrd Pte. Ltd. processes personal data on behalf of its users in compliance with Singapore's Personal Data Protection Act (PDPA) and applicable privacy regulations.
BumbleByrd processes personal data to provide matchmaking services, including: identity verification through Singpass; compatibility matching and algorithmic recommendations; communication facilitation between matched members; event coordination and management; and concierge service delivery.
BumbleByrd acts as a Data Controller for personal data collected directly from users. We determine the purposes and means of processing. For certain analytics and advertising services, we may engage third-party Data Processors who process data on our behalf under strict contractual obligations.
We implement comprehensive security measures including: AES-256 encryption for data at rest; TLS 1.3 encryption for data in transit; regular penetration testing and security audits; access controls with multi-factor authentication; and compliance with PDPA security obligations.
In the event of a data breach that may affect your personal data, we will notify you and the Personal Data Protection Commission (PDPC) within 3 days as required by the PDPA. We will provide details of the breach, affected data types, and remediation steps taken.
Your data is primarily stored in Singapore. If data is transferred outside Singapore, we ensure equivalent protection through contractual safeguards and compliance with PDPA transfer provisions.
For questions about this DPA or our data processing practices, contact our Data Protection Officer at dpo@lovla.cloud.