Privacy Policy

Effective date: 01 Jan 2022
Last updated: 01 Jan 2026

KOLBridge (“KOLBridge”, “we”, “us”, or “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, store, and protect personal data when you visit our website [your domain] (the “Site”) or interact with us.

This policy applies to personal data collected through the Site, our marketing activities, and communications with us.

Who we are

KOLBridge is a cross-border e-commerce services company headquartered in Singapore, with offices in Singapore, Kuala Lumpur and Bangkok, serving clients across Singapore, Malaysia, Thailand, Vietnam, the Philippines, and Indonesia.

What personal data we collect

Depending on how you use our Site and services, we may collect:

A. Data you provide to us

  • Contact details (e.g., name, email address, phone number, company name, job title)
  • Inquiry details (e.g., the message you submit, services you’re interested in, budget/requirements you share)
  • Business information (e.g., company website, category, markets, platform presence, approximate sales ranges—if you provide them)
  • Creator/KOL application details (if applicable): social handles, audience demographics, performance metrics you choose to share, payout preferences, and verification information (where needed)

B. Data collected automatically

  • Device and usage data: IP address, browser type, device identifiers, pages viewed, time spent, referring URLs
  • Cookies and similar technologies: to enable core site functions, analytics, and marketing (see Section 7)

C. Data from third parties (where applicable)

Partners or platforms you authorize us to work with (e.g., marketplace performance exports or campaign reporting)

Publicly available information (e.g., your company website or social profile)

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

How we use your personal data

We collect, use, and disclose personal data for purposes such as:

  1. Responding to inquiries and communicating with you
  2. Providing services you request (e.g., eCommerce consulting, marketplace operations, content strategy/ops, warehousing/fulfillment, AI commerce/AEO advisory)
  3. Onboarding and managing client relationships, including contracting, billing, and account administration
  4. Creator/KOL recruitment and matching (where relevant), including verification, campaign operations, and payout administration
  5. Improving our Site (analytics, troubleshooting, security monitoring)
  6. Marketing and updates about our services, events, insights, or offerings (where permitted)
  7. Compliance and protection: meeting legal obligations and protecting our rights, users, and operations (fraud prevention, security)

We will notify you of the purposes at or before the point of collection and only use personal data for purposes that a reasonable person would consider appropriate in the circumstances, unless otherwise required or permitted by law.

Legal basis / consent (where applicable)

Where required, we will seek your consent before collecting, using, or disclosing your personal data.

You may withdraw your consent at any time by contacting our DPO. Withdrawal of consent may affect our ability to provide certain services to you.

Who we share your personal data with

We do not sell personal data. We may share personal data with:

  • Service providers (acting on our instructions) such as website hosting, analytics, CRM, email delivery, form plugins, customer support tools, and cloud storage
  • Operational partners supporting delivery (e.g., fulfillment/logistics partners) when needed for your engagement
  • Professional advisers (lawyers, auditors, consultants) as necessary
  • Authorities or third parties where required by law or to protect rights and safety

Where we engage service providers, we take reasonable steps to require them to protect personal data and use it only for the services they provide to us.

International transfers

As a cross-border business, your personal data may be transferred to, stored in, or accessed from locations outside your country (for example, where our offices, teams, or cloud service providers operate).

When we transfer personal data internationally, we take reasonable steps to ensure it receives a comparable standard of protection.

Cookies and analytics

We may use cookies and similar technologies for:

  • Essential functions (site security, load balancing, form submissions)
  • Analytics (understanding traffic and improving content)
  • Marketing (measuring campaign effectiveness, retargeting—if enabled)

You can control cookies through your browser settings and, where implemented, our cookie banner/consent manager.

Data retention

We retain personal data only as long as necessary for the purposes described in this policy, including:

  • Inquiries/leads: typically up to [12–24] months after last interaction
  • Client records: for the duration of the engagement and as required for legal/accounting purposes
  • Analytics data: retained per tool settings (often 14–26 months)
  • Security logs: retained for a reasonable period for monitoring and incident response

We may retain data longer where required by law or for legitimate business purposes (e.g., dispute resolution).

Third-party links

Our Site may contain links to third-party sites (e.g., social platforms). We are not responsible for the privacy practices of those sites. Please review their privacy policies.

Children’s privacy

Our Site and services are not directed to children under 13 (or the applicable age in your jurisdiction). We do not knowingly collect personal data from children.

Security

We implement reasonable administrative, technical, and physical safeguards to protect personal data from unauthorized access, use, disclosure, alteration, or loss. However, no method of transmission over the internet is completely secure.

Your rights and choices

Depending on applicable law, you may have the right to:

  • Request access to personal data we hold about you
  • Request correction of inaccurate or incomplete data
  • Withdraw consent for certain uses (e.g., marketing)
  • Request deletion (where applicable and not legally restricted)

To make a request, contact our DPO

Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be posted on this page with the revised “Last updated” date.

Scroll to Top