Privacy policy

StatusMatch is committed to protecting and respecting your privacy. As part of our Data Protection Management Programme, we also have set forth this Privacy Policy.

This policy, together with our Terms of Use (https://www.StatusMatch.com/terms) and any other documents referred to in it, sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.

1. Information collection
1.1 In order to provide a better service to you, we may collect and process the following data about you:
(a) information that you provide by filling in forms on our site StatusMatch.com (our site). This includes information provided at the time of registering to use our site, subscribing to our service, posting material or requesting further services. We may also ask you for information at other times, for example in connection with a promotion or when you report a problem with our site;
(b) if you contact us, we may keep a record of that correspondence;
(c) we may also ask you to complete surveys that we use for research purposes, although you do not have to respond to them;
(d) details of transactions you carry out through our site and of the fulfilment of your orders;
(e) details of your visits to our site and the resources that you access.
(f) mobile network, tracking information and other personally identifiable information.
(g) Inferred data.

1.2 We retain personal data permanently or where required by law.

2. Uses made of the information
2.1 The purposes for which information may be used by us in and outside the Singapore include:
(a) ensuring that content from our site is presented in the most effective manner for you and for your computer;
(b) providing you with alerts, newsletter, education materials or information that you requested or signed up to;
(c) carrying out our obligations arising from any contracts entered into between you and us;
(d) allowing you to participate in interactive features of our service, when you choose to do so;
(e) designing and conducting surveys/questionnaires for client profiling/segmentation, statistical analysis, improving and furthering the provision our products and services;
(f) complying with laws and regulations applicable to us or any of our affiliates in or outside the Singapore;
(g) legal proceedings, including collecting overdue amounts and seeking professional advices;
(h) researching, designing and launching services or products including seminars/events/forums;
(i) promoting and marketing services and products subject to your exercise of the opt-out right (please see further details in clause 2.2 below); or
(j) purposes directly related or incidental to the above.

2.2 We intend to use your data in direct marketing and we require your consent (which includes an indication of no objection) for that purpose. In this connection, please note that:
(a) your name, contact details (including address, contact number, email address), products and services information, transaction pattern and behaviour, background and demographic data held by us from time to time may be used by us in direct marketing;
(b) the following classes of services, products and subjects may be marketed in direct marketing:
(i) services and products related to our site and/or our affiliates (including marketing affiliates programs we are a part of);
(ii) reward, loyalty or privileges programmes, promotional offers and related services; and
(iii) invitations to events such as seminars/webinars/tele-seminars, conferences, live programs or events.
(c) We may conduct direct marketing via fax, email, direct mail, telephone and other means of communication or send e-newsletters to you. You may choose not to receive promotional materials, by simply logging into your account and opt-ing out, and we will cease to do so, without charge.

2.3 Shared with loyalty service providers:
(a) Your personal information supplied may be provided to loyalty service providers (eg: airlines, hotels, etc)
(b) Such details provided include full name, email address, loyalty account details, demographic, spend profile, and other data you provided to StatusMatch.


3. Disclosure of your information
3.1 We may also disclose your data, where required, to:
(a) personnel, agents, advisers, auditors, contractors, financial institutions, and service providers in connection with our operations or services;
(b) our overseas offices, affiliates, business partners and counterparts (if any);
(c) persons under a duty of confidentiality to us;
(d) persons to whom we are required to make disclosure under applicable laws and regulations in or outside the Singapore; or
(e) actual or proposed transferees or participants of our services in or outside the Singapore.


4. Cookies
4.1 Our website uses cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our site. By continuing to browse the site, you are agreeing to our use of cookies.
4.2 A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree. Cookies contain information that is transferred to your computer's hard drive.
4.3 We use the following cookies:
(a) Strictly necessary cookies. These are cookies that are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website, use a shopping cart or make use of e-billing services.
(b) Analytical/performance cookies. They allow us to recognise and count the number of visitors and to see how visitors move around our website when they are using it. This helps us to improve the way our website works, for example, by ensuring that users are finding what they are looking for easily.
(c) Functionality cookies. These are used to recognise you when you return to our website. This enables us to personalise our content for you, greet you by name and remember your preferences (for example, your choice of language or region).
(d) Targeting cookies. These cookies record your visit to our website, the pages you have visited and the links you have followed. We will use this information to make our website and the advertising displayed on it more relevant to your interests. We may also share this information with third parties for this purpose.
4.4 Please note that third parties (including, for example, advertising networks and providers of external services like web traffic analysis services) may also use cookies, over which we have no control. These cookies are likely to be analytical/performance cookies or targeting cookies.
4.5 We may use the following third party web analytic services on the website. The service providers that administer these services use technologies such as cookies, web server logs and web beacons to help us analyse how visitors use the website. The information collected through these means (including IP address) is disclosed to these service providers, who use the information to evaluate use of the website. These analytic services may use the data collected to contextualise and personalise the marketing materials of their own advertising network.

Google Analytics
4.6 Google Analytics is a web analysis service provided by Google Inc. ("Google"). Google's ability to use and share information collected by Google Analytics is in accordance with their policies: https://policies.google.com/technologies/partner-sites
4.7 You can prevent Google's collection and processing of data by using the Google Ads Settings page or downloading and installing their browser plug-in (https://tools.google.com/dlpage/gaoptout).
4.8 You block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site.

5. Security
5.1 All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using SSL technology. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
5.1 All information you provide to us is stored on our secure servers.
5.2 Payment transactions and other website StatusMatch transactions are encrypted using SSL/TLS technology.
5.3 Where we have given you a password you are required to change the password after the first login.
5.4 When you create a password, it must be at least 8 characters long. We ask that you follow good practice in regards to password creation - such as not re-using passwords, using a combination of letters and numbers to keep your password in a safe place.
5.5 As part of our commitment to IT and information security, the Loyalty Data Co Pte Ltd information security management system is certified by TÜV SÜD PSB Pte Ltd according to ISO 27001. This is done in order to appropriately protect from loss of confidentiality, integrity, and availability. For more information please contact [email protected]

5.6 Deliberate use of scanning tools, website vulnerability assessment tools, and conducting penetration testing without permission is prohibited and against website terms of use.

5.7 If a vulnerability has been found, please contact [email protected] for our Responsible Disclosure Policy.

6. Identification
For the purpose of identification, we process personal identification data provided by you (including your name, contact number, email address) as part of implementing our Data Protection Management Programme.

Status Match uses a third-party global identity and fraud verification vendor, Mastercard. For the purpose of fraud detection, we use the information you give us (including your name, address, email address, phone number), in order to match the information with information Mastercard has collected from other sources and stored in its database. To facilitate verification of future transactions through Status Match or other vendors, Mastercard may update its database to reflect that the information you provided to Status Match and we shared with Mastercard Ekata matched information in its database. Mastercard may also update its database to include new information you provided to Status Match and we shared with Mastercard, which was not previously found in Mastercard’s database. You can review Mastercard’s privacy policy or for fulfilling requests for EU citizens, please see their Mastercard Ekata Privacy Policy.

Status Match uses a fully automated eKYC identity verification platform, shufti pro or sumsub for the purpose of identification. The process of identification with these providers involves a process which includes a “selfie check”. After completion of the process, these providers transmit to us your identification data including a copy of the identification document used as part of the check. This data is saved in our secure servers based in the United States. These are processed exclusively for the purpose of fulfilling legal, regulatory and transactional obligations. For the purpose of continuing verification, such as in the event that KYC identity verification platform is changed, this data is kept. If you are an EU citizen, please see Status Match contact persons below for our contact information in regards to your rights (see “Your consent and rights” section).
Note that requests, including withdrawal of consent/data deletion requests, may be refused if we are unable to reasonably identify the person making the request is the person in question, or if identity verification is not undertaken.

7. Data transfers
We may hold your data on servers Singapore, United States of America and any other territories as we see fit from time to time. We may also transfer your data to our overseas offices or to any people listed at clause 3.1 above, who may be located in or outside of the Singapore.

8. Your consent and rights
8.1 By using our service, making an application or visiting our website, you consent to the collection and use of your information and other activities as outlined in this policy.

8.2 You may exercise your opt-out right by notifying us if you wish to object to the use of your personal data for direct marketing purposes. Please send requests for such objections, access to data, correction of data, information regarding policies and practices and kinds of data held, questions or complaints to [email protected]. Individuals residing in the European Economic Area may choose to contact our EU representative [email protected]
8.3 For those under the GDPR, you have these rights:
8.3.1 Right to access: You may request information about the data stored about you, its origin, recipients or categories of recipients to whom the data is disclosed, as well as the purpose of the storage. (Art. 15 GDPR)
8.3.2 Right to rectification: You have a right to rectification and/or completion vis-à-vis the controller if the personal data processed concerning you are inaccurate or incomplete. (Art. 16 GDPR)
8.3.3 Right to deletion: You can demand that we delete the personal data relating to you. However, there is no right to deletion if legal, supervisory or other sovereign storage obligations are opposed or the storage serves the assertion, exercise or defense of legal claims. (Art. 17 GDPR)
8.3.4 Right to restriction of processing: You may, under certain conditions (disputed accuracy, unlawful processing, cessation of the purpose of processing or lodging an objection), request the restriction of the processing of personal data concerning you. (Art. 18 GDPR)
8.3.5 Right to data transfer: You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format. (Art. 20 GDPR)
8.3.6 Right to object: You have the right to object on the basis of Article 6(1)(e) or (f) EU GDPR. We will then no longer process your data unless there are compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or the processing is for the establishment, exercise or defence of legal claims. (Art. 21 GDPR)
8.3.7 Right to complain to the supervisory authority: You have the right to complain (Art. 77 GDPR) to a supervisory authority if you are of the opinion that the processing of personal data is not carried out lawfully.
8.3.8 We may refuse a request or charge an administrative fee to process a request if we determine the request to be manifestly unfounded or excessive as per Article 12(5) of the GDPR.

9. StatusMatch Contact
If you have any query or feedback regarding this Notice, or any complaint you have relating to how we manage your personal data, you may contact our Data Protection Officer (DPO) at: [email protected].

Any query or complaint should include, at least, the following details:
Your full name and contact information
Brief description of your query or complaint

Before we accede to your request, we may need to verify your identity by checking your NRIC or other legal identification document such as passport or drivers’ licence. We will respond to your request as soon as possible, or within 30 days from the date we receive your request. If we are unable to do so within the 30 days, we will let you know and give you an estimate of how much longer we require. We may also charge you a reasonable fee for the cost involved in processing certain requests such as your access request.

Loyalty Data Co Pte Ltd
[email protected]

c/o Privacy-SM Team
531A Upper Cross Street
#04-95 Hong Lim Complex
Singapore, 051531

Individuals residing in the European Economic Area may contact our EU Representative at:

EU Representative
[email protected]
c/o Loyalty Data Co
Verdener Landstraße 4
31623 Drakenburg
Niedersachsen, Germany

10. Changes to our privacy policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the latest Notice on our website. Please visit our website periodically to note any changes.

11. Sub Processors

Company Description Country
Amazon Web Services Cloud service provider USA
AWS Singapore Cloud service provider Singapore
Cloudflare Cloud service provider USA
Cookie Script Cookie consent management UK
Freshworks/Freshdesk Customer support USA
G-Suite Communication, document storage USA
Google Analytics Analytics tracking USA
Google Cloud Services Cloud service provider USA
IP2Location Identity validation USA
Mailgun Email / CRM USA
Mastercard Identity validation USA
Microsoft 365 Document management USA
Openphone Customer communication USA
ShuftiPro Identity validation UK
Slack Internal communications USA
Stripe Payment processing USA
SumSub Identity validation UK
Weglot Language translation France


Changes to this Notice take effect when they are posted on our website.