Effective Date: 9 January 2026
Sunshine International Pte. Ltd. (the “Company”, “we”, “us” or “our”) values the protection of your personal data. This Privacy Policy explains how we collect, use, disclose, retain, and protect your personal data when you use the Sunshine Mall mobile application and related services (collectively, the “Services”). It also sets out your rights and how to contact us. This Policy is intended to comply with Singapore’s Personal Data Protection Act 2012 (PDPA).
To provide fruit ordering and delivery services, we collect only the personal data that is necessary and relevant to the Services:
We do not proactively collect or retain technical logs. If minimal logs are generated by our cloud infrastructure, we use them only for security maintenance and retain them for the shortest duration necessary.
We do not proactively request sensitive information unrelated to fruit ordering, such as NRIC/passport numbers or bank card details.
We use your personal data only to the extent reasonably necessary for the following purposes:
Where applicable, we will notify you of the purposes for collecting, using, or disclosing your personal data and obtain your consent before doing so.
You may withdraw your consent at any time via in-app settings and/or by contacting customer service (e.g., requesting that we stop retaining certain information or disabling optional features). Please note that withdrawing consent may affect our ability to provide Services that rely on such data (for example, we may be unable to fulfil deliveries without delivery details). We will process your request within a reasonable time and inform you of the outcome.
We do not sell or rent your personal data, and we do not use your personal data for advertising delivery or cross-app tracking.
We may disclose the minimum necessary personal data in the following situations:
To complete delivery, we may provide them with your name, phone number, delivery address, and necessary order information, and we require them to keep such data confidential and use it only for fulfilment purposes.
We may disclose personal data where required by applicable laws, regulations, law enforcement requests, or regulatory authorities, to the extent permitted or required.
We may also engage trusted service providers to process data on our behalf, and we require them contractually to implement reasonable security measures and to process data only in accordance with our instructions.
We retain personal data only for as long as necessary to fulfil the purposes stated in this Policy, after which we will delete or anonymise it:
Under the PDPA, you may request to:
If you wish to delete your account, please go to [Me] → [Delete Account] and submit your request. We will verify your identity before processing. We will delete personal data associated with your account that is no longer needed and is not required by law to be retained.
We implement reasonable technical and organisational measures to protect personal data, including but not limited to:
We currently store data in Singapore. If cross-border transfers become necessary in the future, we will take steps to ensure recipients provide a standard of protection comparable to the PDPA, and where applicable, obtain your consent.
If a data breach occurs that meets PDPA notification requirements, we will assess the impact and, where required, notify the Personal Data Protection Commission (PDPC) and affected individuals in accordance with applicable requirements.
We may update this Policy from time to time. Material changes will be notified via in-app notices or other reasonable means, and the Effective Date will be updated accordingly.
Data Controller: Sunshine International Pte. Ltd.
Data Protection Officer (DPO) / Privacy Contact: DPO Office
Email: edward@sg-sunshine.com
Tel: +65 8363 1655
Server Location: Singapore