Privacy Policy

get that bread (“we”, “us”, “the platform”) is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our platform at getthatbread.sg.

This policy complies with Singapore's Personal Data Protection Act 2012 (PDPA). By using get that bread, you consent to the data practices described in this policy.

We collect the following categories of personal data:

• Account information: Name, email address, and password (hashed) when you register an account.
• Profile information: Display name and profile picture if you choose to provide them.
• Campaign data: Project titles, descriptions, images, and other content you submit when creating a campaign.
• Payment information: Billing details and payment method data. We do not store full card numbers — all payment processing is handled by Stripe under their own privacy policy.
• Usage data: IP address, browser type, pages visited, and interaction data collected via our hosting provider (Vercel).
• Communications: Messages you send to us via email or support channels.

We use your personal data to:

• Create and manage your account on the platform.
• Process pledges and campaign payouts securely via Stripe.
• Send transactional emails (pledge confirmations, campaign updates, payout notifications).
• Review campaigns for compliance with our Terms of Service.
• Respond to customer support enquiries.
• Improve our platform and diagnose technical issues.
• Send occasional product updates or announcements. You may opt out of marketing emails at any time.

We do not sell your personal data. We share data only with the following third parties, solely to operate the platform:

• Stripe — payment processing and creator payouts. Subject to Stripe's Privacy Policy.
• Supabase — database and authentication hosting. Data is stored in Supabase-managed infrastructure.
• Vercel — website hosting and deployment. May log anonymised request data.
• Resend — transactional email delivery.

We may also disclose your data if required by law, court order, or government authority in Singapore.

We retain your personal data for as long as your account is active. If you delete your account, we will delete or anonymise your personal data within 30 days, except where we are required to retain it for legal or financial compliance purposes (e.g., transaction records, which may be retained for up to 7 years under Singapore law).

Under Singapore's PDPA, you have the right to:

• Access the personal data we hold about you.
• Correct any inaccurate personal data.
• Withdraw consent for the use of your personal data for any purpose (subject to legal and contractual obligations).

To exercise any of these rights, please email us at support@getthatbread.sg. We will respond within 30 days.

We use session cookies to keep you logged in. These are essential for the platform to function and cannot be disabled. We do not use advertising or tracking cookies.

We take reasonable technical and organisational measures to protect your personal data, including HTTPS encryption, hashed passwords, and row-level security on our database. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

get that bread is not intended for users under 18 years of age. We do not knowingly collect personal data from minors. If you believe a minor has registered on our platform, please contact us immediately.

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a notice on the platform. Your continued use of get that bread after changes take effect constitutes your acceptance of the updated policy.

If you have any questions about this Privacy Policy or wish to exercise your PDPA rights, please contact us at: support@getthatbread.sg