General information and scope

This policy explains how Lumendra collects, uses and protects personal data when visitors browse ejenda.club, sign up for paid consultations or donate. It highlights practical scenarios: booking a consultation (we collect contact and payment metadata), subscribing to a newsletter (we collect email and consent records), and donating (we collect donor details required for payment processing). Examples included show how we use minimal data to confirm bookings, invoice clients, and provide follow-up recommendations while retaining records needed for business reconciliation and client support. We aim to be explicit about categories of data collected and the purpose for each processing activity.

25-04-2026 Lumendra, Business ID S1369679A, 844 Sims Avenue, Singapore, 400844 844 Sims Avenue, Singapore, 400844 [email protected]

Definitions used in this policy

Below are concise, scenario-driven definitions to clarify the terms used throughout the privacy policy, with examples showing how each term applies to typical interactions on ejenda.club.

Personal data means any information that can be used to identify an individual directly or indirectly. Example: a session booking form that includes a name, email and company name constitutes personal data because it identifies the client and enables scheduling.
Processing covers any operation performed on personal data, such as collection, storage, analysis, or deletion. Example: compiling anonymized session outcomes from multiple clients to create a case study constitutes processing.
User refers to any person who visits ejenda.club, signs up for the newsletter, books consultations or donates. Example users include a founder booking a pricing workshop and a subscriber receiving a weekly case study digest.
Service means the coaching, consulting, content and donation features provided via ejenda.club under the Lumendra brand. Example: a paid 60-minute consultation and the associated follow-up report are part of the Service.
Cookies are small data files stored on a device to enable site features and analytics. Example: a session cookie that keeps a visitor logged into the booking form to reduce friction during checkout.

What data we collect

We collect data in three main ways: provided directly by users, automatically via site technologies, and from third-party service providers. Each category is paired with practical examples so you know which data is used for bookings, invoicing, or content improvement.

Data you provide directly

When you interact with Lumendra — for example by booking a consultation, subscribing to a newsletter, or donating — you provide data needed to complete the transaction and follow up with relevant materials.

  • Contact details: name, email address and phone number used to confirm appointments and send session summaries.
  • Billing information: billing name, address and payment method metadata (card voucher, last four digits) received via secure payment processors for invoicing and refunds.
  • Profile details: company name, role, industry and brief business description to tailor scenarios and case-based advice during consultations.
  • Communication content: messages and files you upload when preparing for a session, such as slide decks, business snapshots or project briefs.
  • Donation details: donor name and transaction metadata necessary for processing and issuing receipts when applicable.
  • Consent records: timestamps and consent options you select when subscribing to newsletters or accepting cookie preferences.

Data collected automatically

When you visit ejenda.club, our systems automatically collect device and usage data to secure the site, measure performance and improve content. Examples show how analytics help refine case studies and which logs are retained for troubleshooting.

  • Usage data: pages visited, time on page and click patterns used to identify popular case studies and improve user flows.
  • Technical data: IP address, browser type and device identifiers used for security checks, fraud prevention and diagnosing connection issues.
  • Cookies and similar technologies: session cookies to maintain booking forms and persistent cookies to remember preferences.
  • Crash and performance logs: records generated when an error occurs to support technical troubleshooting and improve stability.
  • Referral and campaign data: UTM tags and source identifiers used to evaluate outreach effectiveness for specific case-study campaigns.
  • Aggregated analytics: anonymized summaries used to publish general trends without identifying individual users.

Data received from third parties

We rely on trusted third parties to process payments, send emails and host analytics. Below are common third-party data sources with examples of their use in typical transactions and reporting.

  • Payment processors: transaction status, payer name and anonymized payment vouchers used to complete purchases and issue receipts.
  • Email service providers: delivery status and engagement metrics (opens, clicks) used to measure newsletter performance and refine case-study topics.
  • Analytics platforms: aggregated visitor metrics and event data used to prioritize content improvements and identify practical case studies to expand.

Purposes for processing personal data

We process personal data to deliver services, handle payments, communicate with users, improve content and meet legal obligations. Each purpose is tied to a concrete example or scenario so you can understand how your data is used in practice.

  • Provision of services: scheduling and conducting consultations, delivering follow-up reports and tailored playbooks.
  • Payment processing and invoicing: completing transactions, issuing receipts and fraud detection with examples of refund procedures.
  • Communications: sending booking confirmations, session reminders and content updates relevant to your selected topics.
  • Content improvement: using aggregated analytics to select new case studies and refine existing playbooks.
  • Legal and regulatory compliance: maintaining records for accounting and tax purposes specific to Singapore operations.
  • Security and fraud prevention: monitoring access patterns and logs to detect unusual activity and protect user accounts.
  • Customer support: reviewing communication history to resolve service issues and provide contextual guidance.
  • Research and development: anonymized analysis of session outcomes to produce better scenario-based frameworks without identifying individuals.

Legal bases for processing

We rely on applicable legal bases depending on the processing activity. For each activity we note the practical rationale, such as contract performance for consultations or legitimate interests for fraud prevention.

  • Contract performance: processing necessary to arrange and provide paid consultations and deliverables.
  • Legal obligation: processing required for business record-keeping and tax reporting under Singapore law.
  • Legitimate interests: processing for site security, fraud prevention and content improvement where such interests do not override user rights.
  • Consent: where applicable, such as marketing emails and non-essential cookies, obtained and recorded at the point of consent.

GDPR and similar rights

Although Lumendra operates from Singapore, we respect internationally recognized data protection principles. This section explains how GDPR-style rights apply in practical terms and provides step-by-step examples for submitting requests.

  • Right of access: request a copy of personal data we hold; we provide a clear extract and contextual examples of stored records.
  • Right to rectification: how to correct inaccuracies in contact or billing details and examples of typical corrections.
  • Right to erasure: scenarios where deletion is possible (for example, when no legal retention requirement exists) and the practical implications for ongoing bookings.
  • Right to restriction: how to temporarily limit processing while a dispute is resolved, illustrated by a case where a client contests an invoice.
  • Right to data portability: exporting your provided data in a commonly used format for transfer to another service.
  • Right to object: objecting to certain processing such as direct marketing, with instructions and examples of expected outcomes.

Cookies and similar technologies

We use cookies to enable core site functionality, remember preferences and collect anonymized analytics. Below we explain common cookie types and how they apply in practice when you book a consultation or browse case studies.

Types include essential session cookies for booking forms, functional cookies for remembering language or preferences, and analytics cookies to track aggregated usage patterns without exposing individual identities.

Categories: Essential (required for service delivery), Functional (improve user experience), Analytics (measure and improve content), and Marketing (used for outreach if consented). Example: disabling analytics cookies will not prevent booking but may limit personalized content recommendations.

You can manage cookie preferences through the cookie banner or browser settings. Example instructions explain how to keep essential cookies while disabling analytics and marketing cookies to limit tracking.

Full cookie details and management options at ejenda.club/cookie-policy

Sharing data with third parties

We share limited data only with service providers necessary for delivering services (e.g., payment processors, email platforms). Examples explain what is shared for a booking, a refund, or a donation receipt.

  • Payment service providers: share payer name, amount and transaction reference strictly to process payments and refunds.
  • Email delivery platforms: share recipient email and minimal metadata to send confirmations and follow-ups.
  • Accounting and legal advisors: limited invoicing data may be shared for compliance or audits when required by law.
  • Analytics providers: share aggregated and pseudonymized usage data to improve site performance and content selection.
  • Where required by law: disclosure to competent authorities in response to lawful requests with an example scenario involving tax inquiries.
  • Business transfers: in case of sale or restructuring, necessary customer records may be transferred; an example outlines how affected users will be notified.

International data transfers

Some service providers operate outside Singapore. When data is transferred internationally, we rely on contractual safeguards and industry-standard protections. Example: a payment gateway based outside Singapore processes card vouchers under strict contracts limiting use to payment-related functions.

Safeguards include data processing agreements, standard contractual clauses where applicable, and ensuring third parties meet reasonable security standards; practical examples show how a payment voucher is handled without exposing full card details.

Data retention and deletion

We retain personal data only as long as required for the purpose collected and to satisfy legal or accounting obligations. This section gives retention examples tied to invoices, messages and logs.

Account and booking records are retained for a minimum period required for business reconciliation and tax reporting in Singapore, typically for up to seven years in line with standard accounting practice.

Transactional messages and uploaded files related to a session are kept for the duration necessary to support ongoing services and to resolve disputes; routine deletion policies and example timelines are provided.

Security and performance logs are retained for a limited period (for example, 90 days) unless needed for an contribute, such as a fraud review where longer retention may apply.

When personal data is no longer needed, we securely delete or anonymize it. Example: anonymized case insights derived from multiple clients may be kept indefinitely after removing identifiers.

Security measures

Lumendra implements administrative, technical and physical measures to protect data. Examples include encrypted backups for stored records, TLS for data in transit, role-based access controls for staff, and routine vulnerability scans. For high-risk scenarios such as payment handling, we rely on certified payment partners so card data is not stored on our servers. Incident response procedures and example escalation paths are documented for suspected breaches.

  • Encryption in transit (TLS) for all site connections and encrypted backups for stored records.
  • Restricted access controls and auditing: staff access limited to business need and logged for accountability.
  • Third-party security checks: using providers that meet recognized security standards and periodic reviews.

Your rights and how to exercise them

At Lumendra we respect individual privacy rights and provide clear options for accessing, correcting, or deleting personal data. The following rights explain how you can manage your information related to blog subscriptions, consultation bookings, and donations. Descriptions emphasize practical steps backed by case scenarios and examples from past requests.

  • Right to Access: You can request a copy of personal data Lumendra holds about you, including consultation notes and donation records. Example: a client requested their coaching session summaries to compare progress across quarters.
  • Right to Rectification: If your contact details or billing information are incorrect, you may request corrections. Scenario: an entrepreneur updated their company name after incorporation and Lumendra amended invoice records accordingly.
  • Right to Erasure: You may request deletion of data that Lumendra no longer needs for the purposes it was collected for, subject to legal obligations and record-keeping requirements. Practical case: removing a newsletter subscriber who left Singapore and no longer used our services.
  • Right to Restrict Processing: You can ask Lumendra to limit how your data is used while a dispute is resolved. Example: a user contested a billing entry and requested temporary restriction until clarification.
  • Right to Data Portability: Where technically feasible, Lumendra can provide your personal data in a commonly used, machine-readable format to allow transfer to another service. Scenario: a client moved to an alternative coaching platform and exported session history.
  • Right to Object to Processing: You may object to certain data uses, such as profiling or direct marketing. Case: a subscriber chose to opt out of promotional emails but maintained access to paid resources.
  • Right to Withdraw Consent: If you previously consented to specific processing, you can withdraw consent at any time for future processing. Practical note: withdrawing consent does not affect processing completed prior to withdrawal when lawful basis applies.
  • Right to Lodge a Complaint: If you believe Lumendra has mishandled your data, you may contact us or file a complaint with the relevant Singapore authorities. Example: a donor questioned payment record accuracy and Lumendra provided clarifying documentation within our standard response timeline.

How to Make a Rights Request

To exercise any privacy right, submit a request including your name, email, and a clear description of the action you want (access, correction, deletion, restriction, portability, objection, withdrawal). Include relevant examples or supporting documents to speed up verification. Requests related to donations or paid consultations should reference the transaction date or invoice number where possible.

[email protected]

We aim to acknowledge requests within 5 business days and provide a substantive response within 30 calendar days. For complex requests that require extended verification, we will inform you of the expected timeline and provide interim updates. Typical scenarios and case notes are used to validate requests efficiently.

Marketing Communications

Lumendra sends newsletters, event notices, and promotional offers about paid consultations and blog resources to consenting subscribers. Communications focus on practical case studies, frameworks, and actionable steps rather than vague claims. Marketing messages include clear information on content type and relevance to business coaching in Singapore.

You can unsubscribe from marketing emails at any time using the link at the bottom of our emails or by contacting [email protected]. Unsubscribing stops promotional emails but does not affect transactional messages such as booking confirmations or donation receipts.

Children's Privacy

Lumendra's services and content are intended for adults and business owners. We do not knowingly collect personal data from children under 16. If we become aware of personal data collected from a minor, we will take steps to delete it and, where appropriate, notify the requester with practical information on next steps.

Links to Third-Party Sites

Our blog and resource pages may link to external tools, partners, or donation platforms. These links are provided for convenience and illustrative case materials; Lumendra is not responsible for the privacy practices of external sites. Before sharing personal data with a third party, review their privacy policy and consider the practical implications.

Changes to this Privacy Policy

Lumendra may update privacy practices to reflect changes in services, case-handling procedures, or legal requirements. When substantive changes occur, we will post the updated policy on ejenda.club and note the effective date. We include examples explaining how changes affect common scenarios, such as booking modifications or donation processing.

Contact Information

For privacy inquiries, requests, or questions about data handling related to the Lumendra blog, paid consultations, or donations, contact: Lumendra, 844 Sims Avenue, Singapore, 400844; Email: [email protected]; Phone: +6581919536; Business ID: S1369679A.