Watchlist
← Back

Privacy Policy

Last updated: 13/05/2026

1. Who we are

Watchlist is operated by Uniq Labs Pte. Ltd., a company registered in Singapore. We act as the data controller for personal data collected through this site, in line with the Singapore Personal Data Protection Act (PDPA) and, where applicable, the UK General Data Protection Regulation (UK GDPR) and EU GDPR.

2. What we collect

  • Request data: the free-text query you submit, the country selected, your name, WhatsApp number and email address.
  • AI processing data: structured categorisation of your query (category, location, urgency) produced by automated classification.
  • Payment data: processed by Stripe. We never see or store your card number or CVV. We see the amount, status, email, and a unique session ID returned by Stripe.
  • Technical data: IP address, browser and device info via standard server logs and anonymised analytics.

3. Lawful basis

We process your personal data on the following bases:
  • Performance of the Service you have requested.
  • Our legitimate interest in maintaining service quality and security.
  • Compliance with applicable tax and record-keeping laws.

4. How we use your data

  • To carry out the search you asked for.
  • To share your name and phone number with third-party providers we match you with.
  • To communicate with you about your request via WhatsApp and email.
  • To confirm card payment against your request via Stripe webhook.
  • To improve our service (anonymised analytics only).

5. AI processing

We use Anthropic's Claude API to categorise your query into structured fields. Your query text is sent to Anthropic for this purpose under Anthropic's commercial terms. Anthropic does not train models on data submitted via their API.

6. Who we share data with

  • Matched third-party providers: your first name and phone number only, after a match is confirmed.
  • Stripe: payment amount, your email, and a unique session ID. Stripe is PCI-DSS certified.
  • Anthropic: your query text, for AI categorisation only.
  • Our hosting and analytics providers: Vercel and Upstash.
  • No one else. We do not sell, rent, or trade personal data.

7. International transfers

Our parent company and hosting providers operate globally. Where data transfer happens, we rely on standard contractual clauses or other approved transfer mechanisms to ensure equivalent protection.

8. Retention

We keep request data for 24 months for service delivery, dispute resolution, and to comply with applicable tax record-keeping rules. You can request earlier deletion at any time (see Section 10).

9. Security

We use industry-standard security including HTTPS, encrypted storage, access controls, and strong admin authentication.

10. Your rights

You have the right to access, rectify, erase, restrict, or object to the processing of your personal data, and the right to data portability. To exercise these rights, email gavin@uqlabs.coor reach out on the WhatsApp thread we used to coordinate your request. We respond within one month.

11. Cookies

We use a single session cookie to keep you logged in to the admin area (administrators only). We use anonymous, aggregate analytics. We do not use advertising cookies or cross-site tracking.

12. Contact

Email gavin@uqlabs.cofor any privacy-related question.