September 1, 2025
1.1 This Privacy Policy ("Policy") describes how SV Tech Cloud Pte Ltd, a company incorporated in Singapore ("Yuko", "we", "us", or "our") collects, uses, discloses, and protects information in connection with the Yuko application and related services ("Service"), including our website at https://yuko.so("Website").
1.2 This Policy applies to merchants ("Merchant", "you", or "your") who use our Service to manage customer reviews, loyalty programs, referral systems, and membership features on e-commerce platforms including WooCommerce and Shopify.
1.3 This Policy should be read in conjunction with our Terms and Conditions, available at https://yuko.so/terms, and our Data Processing Agreement ("DPA"), available at https://yuko.so/terms/data-processing-agreement/(collectively, the "Agreement").
1.4 By accessing or using our Service or Website, you acknowledge that you have read, understood, and agree to the collection, use, and disclosure of your information as described in this Policy. If you do not agree with this Policy, you must not use our Service or Website.
1.5 We may update this Policy from time to time. We will notify you of any material changes by posting the updated Policy on our Website with a new effective date. Your continued use of the Service after any changes indicates your acceptance of the updated Policy.
We collect information in the following ways:
When you register for an account, use our Service, or communicate with us, you may provide us with:
(a) Account Information: Your name, email address, password, business name, business address, telephone number, and other registration details;
(b) Business Information: Information about your e-commerce store, including store name, store URL, industry, and business type;
(c) Payment Information: Billing address, payment card details (processed by our third-party payment processors), and transaction history;
(d) Communication Data: Information contained in your communications with us, including support requests, feedback, and survey responses;
(e) Profile Information: Any additional information you choose to add to your account profile.
When you connect your e-commerce platform (such as Shopify or WooCommerce) to our Service, we may collect:
(a) Store Information: Store name, store URL, owner name, business address, email address, phone number, timezone, currency, and platform plan details;
(b) Product Information: Product catalogue data, including product names, descriptions, images, prices, SKUs, and categories;
(c) Order Information: Order history, order numbers, order values, products purchased, and order status;
(d) Customer Information: Your customers’ names, email addresses, phone numbers, shipping addresses, purchase history, order values, customer tags, and other customer attributes as provided by your platform.
When you or your customers use our Service, we automatically collect:
(a) Usage Data: Information about how you interact with our Service, including features used, pages visited, actions taken, time spent on pages, and click patterns;
(b) Device Information: Device type, operating system, browser type and version, screen resolution, device identifiers, and language settings;
(c) Log Data: IP addresses, access times, referring URLs, error logs, and other diagnostic data;
(d) Location Data: General geographic location based on IP address;
(e) Cookies and Similar Technologies: Information collected through cookies, pixels, web beacons, and similar tracking technologies (see Section 8 below).
If you connect third-party services to our Service, we may receive information from those services, including:
(a) Email Marketing Platforms: Subscriber lists, campaign data, and engagement metrics (e.g., Klaviyo, Mailchimp);
(b) Analytics Services: Website traffic data, conversion data, and audience insights (e.g., Google Analytics);
(c) Social Media Platforms: Social profile information and engagement data when you connect social accounts;
(d) Other Integrations: Data from other third-party applications you choose to integrate with our Service.
Through your use of our Service, we process information about your customers, including:
(a) Review Data: Customer reviews, ratings, photos, videos, and other user-generated content submitted through our review features;
(b) Loyalty Data: Points balances, tier status, rewards earned, redemption history, and loyalty program activity;
(c) Referral Data: Referral codes, referral relationships, successful referrals, and referral rewards;
(d) Membership Data: Membership status, subscription details, membership benefits, and membership activity;
(e) Customer Identifiers: Names, email addresses, and other identifiers necessary to provide the Service.
We use your information to:
(a) Create and manage your account;
(b) Provide, operate, and maintain the Service;
(c) Process transactions and send related information;
(d) Connect your e-commerce platform and third-party integrations;
(e) Enable the Reviews, Loyalty, Referral, and Membership features;
(f) Provide customer support and respond to your inquiries.
We use your information to:
(a) Understand how you use the Service and identify areas for improvement;
(b) Develop new features, products, and services;
(c) Conduct research, analysis, and testing;
(d) Monitor and analyse usage patterns and trends;
(e) Personalise and optimise your experience with the Service.
We use your information to:
(a) Send service-related communications, including account notifications, technical notices, updates, security alerts, and support messages;
(b) Send marketing and promotional communications about our products, services, and events (where permitted by law and subject to your preferences);
(c) Respond to your comments, questions, and requests;
(d) Provide information you request from us.
We use your information to:
(a) Protect the security and integrity of the Service;
(b) Detect, investigate, and prevent fraudulent, unauthorised, or illegal activity;
(c) Verify accounts and user identity;
(d) Enforce our Terms and Conditions and other policies.
We use your information to:
(a) Comply with applicable laws, regulations, and legal processes;
(b) Respond to lawful requests from public and governmental authorities;
(c) Protect our rights, privacy, safety, or property, and that of our users and third parties;
(d) Pursue available remedies or limit damages we may sustain.
We may aggregate and anonymise information collected through the Service for analytics, benchmarking, research, and service improvement purposes. Such aggregated and anonymised data does not identify you or your customers personally and may be used and disclosed for any purpose.
If you are located in the European Economic Area ("EEA"), United Kingdom ("UK"), or another jurisdiction that requires a legal basis for processing personal data, we process your information based on the following legal grounds:
(a) Performance of Contract: Processing necessary to perform our contract with you (i.e., the Terms and Conditions) and to provide the Service;
(b) Legitimate Interests: Processing necessary for our legitimate interests, such as improving the Service, preventing fraud, and marketing our products, provided these interests are not overridden by your data protection rights;
(c) Consent: Processing based on your consent, which you may withdraw at any time;
(d) Legal Obligation: Processing necessary to comply with our legal obligations.
We share your information with third-party service providers who perform services on our behalf, including:
(a) Cloud hosting and infrastructure providers;
(b) Payment processors and billing services;
(c) Email and communication service providers;
(d) Analytics and monitoring services;
(e) Customer support tools;
(f) Security and fraud prevention services.
These service providers are contractually obligated to protect your information and use it only for the purposes for which it was disclosed. A list of our sub-processors is available at https://yuko.so/terms/supplementary-terms-for-integrations/.
We share information with your connected e-commerce platform (Shopify, WooCommerce, etc.) as necessary to provide the Service and enable integrations.
If you enable third-party integrations, we share information with those third parties as necessary to enable the integration and provide the requested functionality.
If we are involved in a merger, acquisition, financing, reorganisation, bankruptcy, or sale of our assets, your information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have regarding your information.
We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency). We may also disclose your information to:
(a) Comply with legal obligations;
(b) Protect and defend our rights or property;
(c) Prevent or investigate possible wrongdoing in connection with the Service;
(d) Protect the personal safety of users of the Service or the public;
(e) Protect against legal liability.
We may share your information with third parties when you have given us your consent to do so.
We may share aggregated or anonymised information that does not directly identify you with third parties for research, marketing, analytics, and other purposes.
6.1 Your information may be transferred to, stored, and processed in countries other than your country of residence, including Singapore and other countries where we or our service providers operate.
6.2 If you are located in the EEA or UK, we ensure that transfers of personal data to countries outside the EEA or UK are protected by appropriate safeguards, such as:
(a) Standard Contractual Clauses approved by the European Commission or UK Information Commissioner's Office;
(b) Transfers to countries that have been deemed to provide an adequate level of data protection;
(c) Other legally approved transfer mechanisms.
6.3 For more information about international data transfers and the safeguards we use, please contact us at [email protected].
7.1 We retain your information for as long as your account is active or as needed to provide you with the Service.
7.2 We may retain your information for a longer period where necessary to:
(a) Comply with our legal, regulatory, tax, accounting, or reporting obligations;
(b) Resolve disputes and enforce our agreements;
(c) Protect against fraudulent or illegal activity;
(d) Maintain backup copies for disaster recovery purposes.
7.3 When we no longer need to retain your information, we will securely delete or anonymise it in accordance with our data retention policies and applicable law.
7.4 Upon termination of your account, we will retain your data for a period of thirty (30) days, during which you may request an export of your data. After this period, we may delete your data in accordance with our retention policies.
Cookies are small text files that are placed on your device when you visit a website. We use cookies and similar tracking technologies (such as pixels, web beacons, and local storage) to collect information about your use of our Service and Website.
(a) Essential Cookies: These cookies are necessary for the Service to function properly. They enable core functionality such as security, authentication, and accessibility. You cannot opt out of these cookies.
(b) Analytics Cookies: These cookies help us understand how visitors interact with our Service by collecting and reporting information anonymously. They help us improve the Service.
(c) Functional Cookies: These cookies enable enhanced functionality and personalisation, such as remembering your preferences and settings.
(d) Marketing Cookies: These cookies are used to track visitors across websites and display relevant advertisements. They may be set by us or by third-party advertising partners.
You can manage your cookie preferences through your browser settings. Most browsers allow you to refuse or accept cookies, delete existing cookies, and set preferences for certain websites. Please note that disabling cookies may affect the functionality of the Service.
Some browsers have a "Do Not Track" feature that signals to websites that you do not want your online activity tracked. Our Service does not currently respond to "Do Not Track" signals.
9.1 We implement appropriate technical and organisational measures to protect your information against unauthorised access, alteration, disclosure, or destruction.
9.2 Our security measures include:
(a) Encryption of data in transit using TLS/SSL;
(b) Encryption of sensitive data at rest;
(c) Access controls and authentication mechanisms;
(d) Regular security assessments and penetration testing;
(e) Employee training on data protection and security;
(f) Incident response and breach notification procedures.
9.3 While we take reasonable measures to protect your information, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee the absolute security of your information.
9.4 You are responsible for maintaining the confidentiality of your account credentials and for any activity that occurs under your account.
Depending on your location and applicable law, you may have the following rights regarding your personal information:
(a) Access: The right to request access to the personal information we hold about you;
(b) Correction: The right to request correction of inaccurate or incomplete personal information;
(c) Deletion: The right to request deletion of your personal information, subject to certain exceptions;
(d) Data Portability: The right to receive a copy of your personal information in a structured, commonly used, and machine-readable format;
(e) Restriction: The right to request that we restrict the processing of your personal information;
(f) Objection: The right to object to our processing of your personal information;
(g) Withdraw Consent: The right to withdraw your consent at any time, where we rely on consent as the legal basis for processing.
To exercise any of these rights, please contact us at [email protected]. We will respond to your request within the timeframes required by applicable law.
You may opt out of receiving marketing communications from us by:
(a) Clicking the "unsubscribe" link in any marketing email;
(b) Updating your communication preferences in your account settings;
(c) Contacting us at [email protected].
Please note that even if you opt out of marketing communications, we may still send you service-related communications.
You may request deletion of your account by contacting us at [email protected]. Upon account deletion, we will delete or anonymise your information in accordance with Section 7.
11.1 When you use our Service to collect and process your customers' personal data, you act as the data controller (or equivalent under applicable law), and we act as the data processor on your behalf.
11.2 As a data controller, you are responsible for:
(a) Ensuring that you have a valid legal basis for collecting and processing your customers' personal data;
(b) Providing appropriate privacy notices to your customers;
(c) Obtaining any necessary consents from your customers;
(d) Responding to data subject requests from your customers;
(e) Complying with all applicable data protection laws.
11.3 You must ensure that your use of the Service and your collection of customer data complies with all applicable laws, including the Personal Data Protection Act 2012 (Singapore), GDPR, UK GDPR, CCPA, and any other applicable data protection laws.
11.4 You must maintain a privacy policy on your website that accurately describes your data practices, including your use of our Service to collect customer reviews, operate loyalty programs, manage referrals, and provide membership features.
12.1 Our Service is not directed to individuals under the age of eighteen (18), and we do not knowingly collect personal information from children.
12.2 If you are a Merchant, you represent that you will not use the Service to knowingly collect personal information from children without verifiable parental consent where required by law.
12.3 If we become aware that we have collected personal information from a child without appropriate consent, we will take steps to delete that information.
If you are located in Singapore, you have rights under the Personal Data Protection Act 2012 ("PDPA"), including:
(a) The right to access your personal data;
(b) The right to correct your personal data;
(c) The right to withdraw consent for the collection, use, or disclosure of your personal data.
To exercise these rights or make a complaint, please contact our Data Protection Officer at [email protected].
If you are located in the EEA or UK, you have additional rights under the GDPR or UK GDPR, including the rights described in Section 10. You also have the right to lodge a complaint with your local supervisory authority.
For the purposes of the GDPR, our legal basis for processing is set out in Section 4.
If you are a California resident, you have certain rights under the California Consumer Privacy Act ("CCPA") and California Privacy Rights Act ("CPRA"), including:
(a) Right to Know: The right to know what personal information we collect, use, disclose, and sell;
(b) Right to Delete: The right to request deletion of your personal information;
(c) Right to Opt-Out: The right to opt out of the sale or sharing of your personal information;
(d) Right to Non-Discrimination: The right not to be discriminated against for exercising your privacy rights;
(e) Right to Correct: The right to correct inaccurate personal information;
(f) Right to Limit: The right to limit the use and disclosure of sensitive personal information.
Categories of Personal Information Collected: We collect the categories of personal information described in Section 2, which may include identifiers, commercial information, internet or network activity information, and professional or employment-related information.
Sale or Sharing of Personal Information: We do not "sell" personal information as defined under the CCPA. We may share personal information with third parties for targeted advertising purposes. You may opt out of such sharing by contacting us at [email protected].
To exercise your rights under the CCPA/CPRA, please contact us at [email protected] submit a request through our Website.
14.1 Our Service may contain links to third-party websites, services, or applications that are not operated by us.
14.2 We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access through our Service.
14.3 This Policy does not apply to any third-party websites, services, or applications, even if they are accessible through our Service.
15.1 We may update this Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.
15.2 We will notify you of any material changes by:
(a) Posting the updated Policy on our Website with a new effective date;
(b) Sending an email to the address associated with your account; or
(c) Providing notice through the Service.
15.3 Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated Policy.
15.4 We encourage you to review this Policy periodically to stay informed about how we protect your information.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:
SV Tech Cloud Pte Ltd
Email: [email protected]
Address: 160 Robinson Road, Singapore
Website: https://yuko.so
For data protection inquiries or to exercise your privacy rights, please email [email protected] the subject line "Privacy Request".
