Privacy Policy

Fieldbase is a product of Inginit Pte. Ltd. This policy explains what data we collect, why we collect it, how we store and protect it, and the rights you have over it.

1. Who we are

Fieldbase is operated by Inginit Pte. Ltd. ("Inginit", "we", "us", "our"), a private limited company. References in this policy to "Fieldbase" mean both the marketing website at thefieldbase.com and the Fieldbase platform when made available.

Registered office (Singapore):

Inginit Pte. Ltd.
14 Robinson Road, #08-01A
Far East Finance Building
Singapore 048545

United States office:

7522 Campbell Rd, Suite 113 #437
Dallas, Texas 75248, USA

India office:

B Wing, 5th Floor, Ackruti Trade Centre
MIDC, Andheri East
Mumbai 400093, India

For any privacy-related question or to exercise your rights, contact our Data Protection Officer at [email protected].

2. Scope of this policy

This policy applies to personal data we collect through:

  • The Fieldbase marketing website (thefieldbase.com)
  • The Fieldbase platform (when made available to you)
  • Direct communications you send us by email

Inginit's wider compliance documentation, including certifications and sub-processor lists, is published at the Inginit trust center.

3. What data we collect

3.1 Marketing site (thefieldbase.com)

  • Email address — only when you voluntarily submit the early access form. We do not collect email addresses passively.
  • No cookies or analytics tracking at this time. If we add privacy-respecting analytics in the future (such as Plausible or a similar cookieless tool), we will update this policy and provide controls before doing so.
  • Server logs kept by our hosting provider may include your IP address for the limited purpose of security and abuse prevention. These logs are retained for short, standard windows and are not used for marketing.

3.2 Fieldbase platform

  • Account information — email, name, organisation, and authentication credentials.
  • Project content — the survey specifications you upload, the code you author, design files, and configuration.
  • Respondent data — survey responses collected by your projects. For respondent data, you are the data controller and Fieldbase acts as a data processor on your behalf.
  • Usage telemetry — basic operational data needed to run the platform (sign-in events, error logs). Where used for product improvement, this telemetry is aggregated and anonymised.

4. Lawful bases for processing (GDPR Article 6)

We rely on the following lawful bases:

  • Consent — for early access list communications and any optional marketing.
  • Contract — to provide the Fieldbase platform to paying customers.
  • Legitimate interests — for security, abuse prevention, and basic operation of the service.
  • Legal obligation — where applicable (tax, accounting, lawful requests).

You can withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.

5. How we use your data

  • To contact you about Fieldbase early access (only if you submit the form)
  • To provide and improve the Fieldbase platform when you become a customer
  • To respond to inquiries you send us
  • To meet legal, tax, and accounting obligations

We do not sell your personal data. We do not use your survey content, your respondent data, or the code you author to train AI models.

6. Data retention and anonymisation

  • Early access emails are kept until you withdraw consent or until the early access programme ends, whichever is earlier. You can request removal at any time.
  • Account data is kept for the duration of your subscription plus a reasonable grace period (typically 30 days) to allow account recovery, then deleted.
  • Respondent data is retained according to the terms of your project; you control deletion.
  • Anonymised aggregates — usage statistics that have been irreversibly stripped of identifiers (such as "X surveys created this month") may be retained indefinitely for product improvement. This data cannot be linked back to you.
  • Backups — deletion requests are honoured in live systems immediately and propagated to backups within standard retention windows.

7. How we store and protect your data

  • Data is encrypted in transit and at rest.
  • Project data is partitioned by tenant; one customer's data is never accessible to another.
  • Inginit is certified under ISO 27001 and aligned with GDPR. Full details on the Inginit trust center.
  • Access to production systems is restricted to authorised personnel and audited.

8. Sub-processors and third-party services

We rely on a small number of vendors to deliver the service — typically for cloud hosting, email delivery, customer support, and infrastructure. The current list of sub-processors is maintained on the Inginit trust center and is also available on request to enterprise customers under a Data Processing Addendum (DPA).

9. International data transfers

Where personal data is transferred outside the European Economic Area, the United Kingdom, or other regions with data-export restrictions, we use Standard Contractual Clauses (SCCs) or other legally recognised transfer mechanisms.

10. Cookies

The Fieldbase marketing site (thefieldbase.com) does not currently set any cookies. The Fieldbase platform uses only essential cookies needed for authentication and session management; these do not require consent under GDPR. If we ever add non-essential cookies, we will request consent first and update this policy.

11. Your rights

Under the GDPR, UK GDPR, and similar laws (including the CCPA), you have the right to:

  • Access the data we hold about you
  • Rectification — request correction of inaccurate data
  • Erasure — request deletion of your data
  • Restriction of processing
  • Data portability — receive your data in a structured, machine-readable format
  • Objection to processing based on legitimate interests
  • Withdraw consent at any time
  • Non-discrimination for exercising your CCPA rights
  • Opt out of any future sale or sharing of personal information (we currently do neither)

To exercise any of these rights, email [email protected]. We will respond within the timeframes required by applicable law (typically 30 days under the GDPR).

12. Complaints

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with your local data protection authority. EU/UK residents can contact their national supervisory authority — for example, the Information Commissioner's Office in the UK.

13. Children's data

Fieldbase is a B2B research platform and is not directed to children under 16. We do not knowingly collect personal data from children.

14. Changes to this policy

We may update this policy from time to time. Material changes will be communicated by email (where we have your address) or through a notice on this site. The "Last revised" date at the top reflects the most recent update.

15. How to contact us

For privacy-related queries, data subject requests, or any questions about this policy:

Email: [email protected]
Postal:

Inginit Pte. Ltd.
Attn: Data Protection Officer (DPO)
14 Robinson Road, #08-01A
Far East Finance Building
Singapore 048545