Introduction

Parann is a content management system (CMS) operated by Portkey Technologies Pte Ltd, a company incorporated in Singapore ("we", "us", "our"). Parann is part of the Metarium software ecosystem. This Privacy Policy explains how we collect, use, disclose, and protect your personal data in accordance with the Personal Data Protection Act 2012 (PDPA) of Singapore.

Parann is currently in private beta. This policy applies to all users of the Parann CMS service.

The Metarium Ecosystem

Parann operates within the Metarium modular software ecosystem:

The ecosystem is modular. As an end user, you access CMS services using a Substrate (SS58) address. You may choose between:

Using a private CMS on a private blockchain provides the highest level of privacy and independence, though infrastructure costs are higher. Different combinations offer different trade-offs between convenience, cost, and privacy.

Personal Data We Collect

We collect the following personal data:

  1. Substrate wallet addresses (SS58) — Used for authentication and access control. This is a public cryptographic identifier, not directly linked to your real-world identity.
  2. Content you upload — Text, binary data, and associated metadata that you store in the CMS.
  3. Technical data — IP addresses, user agent strings, and timestamps recorded with each upload and API request.
  4. Email addresses — If you subscribe to our newsletter. Collected with your explicit consent.
  5. Consent records — Timestamp, IP address, and user agent at the time of newsletter signup, for compliance purposes.

Purposes for Collecting Your Data

We collect and use your personal data for the following purposes:

  1. Authentication and access control — To verify your identity via Substrate cryptographic signatures and manage your role (administrator or scribe).
  2. Content management — To store, organize, and serve content you upload to the CMS.
  3. Service operation — To maintain audit trails, enforce access controls, and ensure service integrity.
  4. Newsletter communications — To send you marketing and product update emails, only after you have confirmed your subscription (double opt-in).
  5. Legal compliance — To comply with applicable laws and regulations, including the PDPA.

Consent

We obtain your consent before collecting personal data:

Data Portability and Third-Party Infrastructure

Your data is portable across infrastructure providers within the Metarium ecosystem. You may migrate between providers at any time — upgrading to more feature-rich infrastructure or downgrading to reduce costs.

The Mummai blockchain supports file and hash registries with custodianship changes, enabling you to transfer custody of your registered assets between parties.

Important: Information that has been processed by any third-party infrastructure cannot be fully deleted from that provider's awareness. While your ongoing data flow moves to your new provider, the previous provider may have observed your data during the period of use. Data exposure is limited to that period, but the provider cannot "unsee" what was processed. We recommend evaluating the privacy implications of your infrastructure choices carefully.

Data Storage and Security

Data Retention

Disclosure to Third Parties

We may share your personal data with:

We do not sell your personal data to third parties.

Cross-Border Data Transfers

Your data may be transferred to and processed in countries outside Singapore where Google Cloud Platform operates its infrastructure. We ensure that any such transfers comply with the PDPA's requirements for cross-border data transfers.

Your Rights Under the PDPA

Under the PDPA, you have the right to:

  1. Access your personal data held by us.
  2. Correct any inaccurate or incomplete personal data.
  3. Withdraw consent for the collection, use, or disclosure of your personal data (note: this may affect our ability to provide the service).
  4. Request information about how your data has been used or disclosed in the past year.

To exercise any of these rights, contact us at hello@portkey.sg.

Data Protection Officer

For questions or concerns about our data protection practices, contact our Data Protection Officer:

Portkey Technologies Pte Ltd
Email: hello@portkey.sg
Website: https://portkey.sg

Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. We encourage you to review this policy periodically.

Effective date: 27 May 2025