Privacy Policy

Last updated: April 2026

1. Who We Are

Chop Chop PO ("we", "us", "our") is a SaaS tool that helps Singapore food and consumer goods suppliers automate the processing of purchase orders from retailers. We are an independent tool and are not affiliated with, endorsed by, or partnered with any retailer including NTUC FairPrice, Sheng Siong, or Cold Storage.

2. What Data We Collect

Account data: Your email address (used for authentication via magic link).

Business data: Product mappings, outlet mappings, and output format configurations that you create within the tool.

Purchase order data: When you upload a PO PDF, we extract the text content to process it. The original PDF file is temporarily stored for up to 90 days for troubleshooting purposes, then automatically deleted.

Usage data: Processing history (dates, file counts, item counts), credit transactions, and activity logs for service operation and support.

Technical data: IP addresses and browser user agents are collected in activity logs for security monitoring and fraud prevention. IP addresses are retained for up to 90 days.

Payment data: Payments are processed by Stripe. We do not store credit card numbers. We store only your Stripe customer ID and subscription status.

3. How We Use Your Data

Your data is used solely to provide the Chop Chop PO service:

  • Processing your purchase orders and generating output files
  • Storing your product and outlet mappings for future use
  • Managing your account, subscription, and credits
  • Providing customer support and troubleshooting
  • Improving the service (aggregated, anonymized usage analytics only)

We do not sell, share, or provide your data to other customers or third parties for marketing purposes.

4. AI Processing

Chop Chop PO uses AI (Anthropic's Claude) to extract data from your purchase order PDFs. When you upload a PO, the extracted text content (including item codes, quantities, prices, and delivery details) is sent to Anthropic's API for processing. This involves cross-border data transfer to Anthropic's servers in the United States. Anthropic's commercial API does not use customer data for training AI models. We do not send your data to any other AI service.

5. Data Storage & Security

Your data is stored in Supabase (PostgreSQL) with encryption at rest and in transit. All API communications use HTTPS. Access to your data is restricted to your authenticated account.

Uploaded PDF files are stored securely and automatically deleted after 90 days.

6. Data Isolation

Each user's data is isolated at the database level using Row Level Security (RLS) policies. Your product mappings, outlet mappings, and processing history are never visible to other users.

7. PDPA Compliance

We comply with Singapore's Personal Data Protection Act (PDPA). Purchase orders may contain personal data such as names and addresses in delivery details. This data is processed solely for the purpose of generating your output file and is not used for any other purpose.

You may request access to, correction of, or deletion of your personal data by contacting us at support@chopchoppo.com.

8. Data Retention

  • Account data: Retained while your account is active. Deleted within 30 days of account closure.
  • Product/outlet mappings: Retained while your account is active.
  • Uploaded PDF files: Automatically deleted after 90 days.
  • Processing history: Retained for 12 months, then archived.

9. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Export your product and outlet mappings (available via CSV export in the app)
  • Cancel your subscription at any time

10. Contact Us

For any privacy-related queries, contact us at support@chopchoppo.com.