Privacy Policy

Last Updated: 15 September 2025

About Magic

Magic Platform Pte. Ltd. (“Magic,” “we,” “our,” or “us”) is a Singapore-based technology company that builds and operates community-centric booking and management platforms for boutique studios and wellness providers.

Magic develops both:

The Magic platform (including our Admin Portal and website www.yourmagic.co), and
Branded apps for our studio partners to allow their members to make bookings, payments and interact directly with their fitness service providers via applications (iOS and Android) listed under our Client's brand name.

While these apps may carry the branding of our studio partners, Magic remains the developer, operator, and data controller responsible for collecting, storing, and processing your personal data. This Privacy Policy explains how we handle your personal data in compliance with the Personal Data Protection Act 2012 (PDPA) of Singapore.

By using our apps or services, you agree to the practices described in this Privacy Policy.

1. How We Collect Your Data
If your fitness or wellness service provider is a studio partner (our Client or End User), you may be directed to a Magic-powered platform (such as a branded app or booking portal) when you:

Sign up as a member,
Make a booking, or
Purchase products or services.

In these cases, Magic collects and processes personal data on behalf of the studio partner to enable them to deliver their services to you.
We may collect personal information from you directly, from your studio provider, or automatically through your device when you interact with our services.

2. Data We Collect
The data we may collect includes:

Identity & Contact Data: Name, title, date of birth, nationality, gender, email, phone, postal/billing/shipping addresses.
Financial & Transaction Data: Purchase history, payment details, invoices.
Health & Fitness Data (with your consent where required): weight, body measurements, medical history, pregnancy status, medication, performance statistics (e.g., heart rate, running times, weights lifted).
Account & Profile Data: Membership details, booking history, preferences, staff and instructor details (for studios).
Device & Technical Data: IP address, device identifiers, operating system, browser, geolocation, referral website, usage statistics.
Marketing Data: Marketing and communication preferences.

We do not collect or store full credit card details. We partner with trusted payment gateway providers such as HitPay to process payments securely. Please review their respective privacy policies for more information about how they handle your card details.

3. Purpose and Use of Data

The purposes for which we collect and use your personal information depend on your interaction with us, but may include:

Providing services to Clients and End Users, including access to our software platform.
Managing relationships with Clients and End Users, including:
- Administrative and billing processes.
- Informing them about updates to our services.
Processing information on behalf of Clients and End Users, including:
- Collecting profile images.
- Scheduling classes, workshops, and appointments.
- Facilitating online bookings.
- Managing memberships (sign-ups, cancellations, changes).
- Facilitating automatic billing and payments.
- Supporting marketing activities.
- Enabling check-in to facilities.
- Tracking fitness and health data (with consent).
- Providing payroll services.
Responding to requests, complaints, and enquiries.
Managing, planning, and administering programmes, events, and competitions.
Informing you of activities, events, and services.
Researching, developing, and expanding our platform and services.
Recruitment processes.

4. Use and Disclosure of Data

For Clients and End Users
If you are a Client or End User (e.g., a studio partner), we may use and disclose your personal data where necessary to deliver our services, including sharing data with service providers relevant to the services you have engaged us for.

For Members and App Users
If you are a Member of one of our Clients or a user of a branded Magic-powered app, we may use and disclose your personal data where this is reasonably necessary for, and relevant to, the delivery of our services to our Clients.

Disclosure to Service Providers
We may disclose your data to contractors and service providers engaged by us to provide services, including:

Data processing and analysis.
Customer satisfaction surveys.
IT services and support.
Cloud hosting and website maintenance.
Marketing, printing, and communications.
Market research.

We may also share data with related or affiliated companies, provided that PDPA-comparable protection standards are met.

Administrative and Management Purposes
We may also use and disclose personal data for administrative, management, and operational purposes, such as:

Billing, payments, and debt recovery.
Monitoring and evaluating services.
Quality assurance and improvement.
Statistical analysis and reporting.
Training staff and contractors.
Risk management and legal compliance.
Responding to subpoenas or regulatory obligations.
Seeking professional advice (e.g., insurers, consultants, legal advisers).

Other Uses
We may use and disclose your data for other purposes explained at the time of collection, or as otherwise permitted under the PDPA.

5. Subprocessors
Magic may engage carefully selected subprocessors to support our services. These subprocessors may only access personal data as necessary to perform their functions and must comply with PDPA obligations.
Examples include:

HitPay – payment processing.
SendGrid – email delivery.
AWS / cloud providers – hosting and storage.

We will update this Privacy Policy if there are material changes to our subprocessor engagements.

6. Your Rights
Under the PDPA, you may:

Access your personal data.
Correct inaccuracies in your data.
Request deletion of your data in certain cases.
Withdraw consent for processing (which may limit your access to services).

To exercise these rights, contact us at business@chargedbymagic.com.

7. Security Measures
We apply technical and organisational measures to safeguard data, including:

Encryption of sensitive information.
Restricted access controls.
Regular audits and reviews.

However, no system is completely secure, and you accept this risk when using online services.

8. Data Retention
We retain personal data only as long as needed for service delivery or legal requirements. Data no longer needed will be securely deleted or anonymised.

9. Cross-Border Transfers
Data is stored primarily in Singapore. If transferred overseas, we ensure compliance with PDPA and require comparable standards of protection.

10. Branded Apps
Although some Magic-powered apps are branded for our studio partners (e.g., Pace, Grounded Spaces), Magic Platform Pte. Ltd. remains the developer and data controller responsible for handling your personal data.

11. Updates to This Policy
We may update this Privacy Policy from time to time. The “Effective Date” will always reflect the latest version. Material updates may also be communicated through our apps or websites.

12. Contact Us
Magic Platform Pte. Ltd.
Email: business@chargedbymagic.com

Privacy Policy

Last Updated: 15 September 2025 About Magic Magic Platform Pte. Ltd. (“Magic,” “we,” “our,” or “us”) is a Singapore-based technology company that builds and operates community-centric booking and management platforms for boutique studios and wellness providers. Magic develops both:

The Magic platform (including our Admin Portal and website www.yourmagic.co), and

Branded apps for our studio partners to allow their members to make bookings, payments and interact directly with their fitness service providers via applications (iOS and Android) listed under our Client's brand name.

Sign up as a member,

Make a booking, or

Purchase products or services.

Identity & Contact Data: Name, title, date of birth, nationality, gender, email, phone, postal/billing/shipping addresses.

Financial & Transaction Data: Purchase history, payment details, invoices.

Health & Fitness Data (with your consent where required): weight, body measurements, medical history, pregnancy status, medication, performance statistics (e.g., heart rate, running times, weights lifted).

Account & Profile Data: Membership details, booking history, preferences, staff and instructor details (for studios).

Device & Technical Data: IP address, device identifiers, operating system, browser, geolocation, referral website, usage statistics.

Marketing Data: Marketing and communication preferences.

Providing services to Clients and End Users, including access to our software platform.

Managing relationships with Clients and End Users, including:

Administrative and billing processes.

Informing them about updates to our services.

Processing information on behalf of Clients and End Users, including:

Collecting profile images.

Scheduling classes, workshops, and appointments.

Facilitating online bookings.

Managing memberships (sign-ups, cancellations, changes).

Facilitating automatic billing and payments.

Supporting marketing activities.

Enabling check-in to facilities.

Tracking fitness and health data (with consent).

Providing payroll services.

Responding to requests, complaints, and enquiries.

Managing, planning, and administering programmes, events, and competitions.

Informing you of activities, events, and services.

Researching, developing, and expanding our platform and services.

Recruitment processes.

Data processing and analysis.

Customer satisfaction surveys.

IT services and support.

Cloud hosting and website maintenance.

Marketing, printing, and communications.

Market research.

We may also share data with related or affiliated companies, provided that PDPA-comparable protection standards are met. Administrative and Management Purposes We may also use and disclose personal data for administrative, management, and operational purposes, such as:

Billing, payments, and debt recovery.

Monitoring and evaluating services.

Quality assurance and improvement.

Statistical analysis and reporting.

Training staff and contractors.

Risk management and legal compliance.

Responding to subpoenas or regulatory obligations.

Seeking professional advice (e.g., insurers, consultants, legal advisers).

HitPay – payment processing.

SendGrid – email delivery.

AWS / cloud providers – hosting and storage.

We will update this Privacy Policy if there are material changes to our subprocessor engagements. 6. Your Rights Under the PDPA, you may:

Access your personal data.

Correct inaccuracies in your data.

Request deletion of your data in certain cases.

Withdraw consent for processing (which may limit your access to services).

To exercise these rights, contact us at business@chargedbymagic.com. 7. Security Measures We apply technical and organisational measures to safeguard data, including:

Encryption of sensitive information.

Restricted access controls.

Regular audits and reviews.

We may also share data with related or affiliated companies, provided that PDPA-comparable protection standards are met.

Administrative and Management Purposes
We may also use and disclose personal data for administrative, management, and operational purposes, such as:

We will update this Privacy Policy if there are material changes to our subprocessor engagements.

6. Your Rights
Under the PDPA, you may:

To exercise these rights, contact us at business@chargedbymagic.com.

7. Security Measures
We apply technical and organisational measures to safeguard data, including: