GDPR Compliance
Last updated: May 13, 2026
Last updated: May 13, 2026
Hydat Emotional IQ is committed to protecting the privacy and personal data of individuals in the European Union and European Economic Area. This page outlines our compliance with the General Data Protection Regulation (GDPR) and your rights under this regulation.
For the purposes of GDPR, Hydat Emotional IQ is the data controller responsible for your personal data. Our contact details are:
Hydat Emotional IQ
71 Robinson Road, #14-01
Singapore 068895
Email: [email protected]
We process your personal data under the following legal bases:
Processing necessary to perform our contract with you when you enroll in our programs or services.
Processing necessary for our legitimate interests in:
Processing based on your explicit consent, which you may withdraw at any time.
Processing necessary to comply with our legal and regulatory obligations.
You have the right to request access to the personal data we hold about you. We will provide a copy of your data in a commonly used electronic format.
You have the right to request correction of inaccurate or incomplete personal data.
You have the right to request deletion of your personal data in certain circumstances, including:
Note: This right is not absolute and may be limited by legal retention requirements.
You have the right to request that we restrict processing of your personal data in certain situations, such as when you contest the accuracy of the data or object to processing.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.
Where processing is based on consent, you have the right to withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your residence, workplace, or where an alleged infringement occurred.
To exercise any of your rights under GDPR, please contact us at:
Email: [email protected]
We will respond to your request within one month. In complex cases, we may extend this period by two additional months and will inform you of any such extension.
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
When we transfer personal data outside the EEA, we ensure adequate protection through:
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations. Our retention periods are:
We do not engage in automated decision-making or profiling that produces legal effects or similarly significantly affects you.
In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay and within 72 hours of becoming aware of the breach.
Our services are not directed at children under 16. We do not knowingly process personal data of children without parental consent.
We may update this GDPR compliance notice from time to time. We will notify you of material changes by posting the updated notice on our website.
While we are based in Singapore, we have appointed a representative in the European Union as required by GDPR Article 27. For GDPR-related inquiries, you may contact our EU representative at:
Email: [email protected]
If you have questions about our GDPR compliance or wish to exercise your rights, please contact our Data Protection Officer at:
Email: [email protected]