This Privacy Policy explains how ARIA INTELLIGENCE PTE. LTD. (“Top Prospect,” “we,” “us,” or “our”) collects, uses, discloses, and protects information in connection with the Top Prospect platform available at www.topprospect.net (the “Service”).
1. Who We Are
Top Prospect is operated by:
ARIA INTELLIGENCE PTE. LTD.
91 Bencoolen Street, #12-03 Sunshine Plaza, Singapore 189652
UEN: 202516346D
Contact: support@topprospect.net (also reachable via Telegram @topprospect)
Because we are established outside the European Economic Area (EEA) and the United Kingdom but process personal data of individuals located there, we have appointed an EU/UK representative under Article 27 GDPR / UK GDPR:
You may contact either us or our EU/UK representative on any matter related to the processing of your personal data.
2. Scope and Two Categories of Data We Process
Because of how Top Prospect works, we process two distinct categories of personal data, and our role differs for each:
(a) Customer Account Data — information about the individuals and businesses who register for and administer a Top Prospect account. For this category, Top Prospect is the data controller.
(b) Monitored-Group Data — content and metadata originating from Telegram groups that a customer connects to the Service (messages, usernames, timestamps, and Top Prospect’s AI-generated assessment of whether a message indicates a match to the customer’s specified criteria). For this category, the customer is the data controller and Top Prospect acts solely as a data processor, processing this data only on the customer’s documented instructions, as further described in our Data Processing Agreement (incorporated into our Terms of Service). This Privacy Policy describes our processing of this category only insofar as required for transparency; individuals whose messages are processed should direct data-subject requests to the customer (controller) in the first instance, and we will support the customer in responding to such requests as required by Article 28 GDPR.
3. Customer Account Data We Collect
- Registration data: name, business email address, company name, role, password (hashed).
- Billing data: billing address, tax/VAT identification number, and payment details (processed by our third-party payment processor; we do not store full card numbers).
- Usage data: log-in times, features used, token consumption, support tickets, device and browser information, IP address.
- Communications: correspondence with our support team.
4. Monitored-Group Data We Process (as Processor)
At the customer’s instruction, the Service:
- Connects to Telegram group(s) the customer has been granted access to via the customer’s own authenticated Telegram account;
- Ingests message content and associated metadata (sender identifier, timestamp, group identifier) from those groups;
- Applies automated (AI-based) analysis to identify messages that match customer-defined criteria (keywords and/or semantic patterns);
- Generates and delivers a notification to the customer (via Telegram bot or dashboard) summarizing the matched message, its source, and the reason it was flagged.
We do not use Monitored-Group Data to train general-purpose models, and we do not sell this data. We retain it only for as long as instructed by the customer or as necessary to provide the Service, subject to the retention terms in our Data Processing Agreement.
5. Legal Bases for Processing (EEA/UK Users)
| Purpose | Legal basis |
|---|---|
| Providing and maintaining the Service to our customer (Account Data) | Performance of a contract (Art. 6(1)(b) GDPR) |
| Billing and tax compliance | Legal obligation (Art. 6(1)(c)) |
| Improving and securing the Service | Legitimate interests (Art. 6(1)(f)) |
| Processing Monitored-Group Data | Performed on behalf of, and under the instructions of, the customer (controller); the lawful basis for the underlying processing (e.g., legitimate interest, consent) is determined and must be established by the customer, not Top Prospect |
6. How We Share Data
We share data with:
- Sub-processors: cloud hosting providers, AI/LLM inference providers, and payment processors, each bound by data processing agreements. A current list of sub-processors is available at https://app.topprospect.net/ and customers will be notified of material changes.
- Legal and safety disclosures: where required by law, or to protect the rights, safety, or property of Top Prospect, our customers, or others.
- We do not sell personal data to third parties.
7. International Data Transfers
Account Data and Monitored-Group Data are primarily processed on servers located in Germany, within the EEA. Where data is transferred outside the EEA/UK (for example, to our Singapore headquarters for administrative purposes), we rely on the European Commission’s Standard Contractual Clauses or another valid transfer mechanism, and, where applicable, the UK’s International Data Transfer Addendum.
8. Data Retention
- Account Data is retained for the duration of the customer relationship and for 6 months afterward for legal and accounting purposes.
- Monitored-Group Data is retained according to the retention period configured by the customer (default: 180 days), after which it is deleted or anonymized, unless a longer period is required by law. Customers may delete all Monitored-Group Data at any time using the in-dashboard “Delete All Data” function, which takes effect immediately.
9. Your Rights
Subject to applicable law, you may have the right to access, correct, delete, restrict, or port your personal data, and to object to certain processing. To exercise these rights regarding Account Data, contact us at support@topprospect.net. To exercise rights regarding Monitored-Group Data, please contact the Top Prospect customer (controller) who initiated the monitoring; if you are unable to identify or reach that customer, contact us and we will assist in accordance with our obligations as a processor.
You also have the right to lodge a complaint with your local supervisory authority.
10. Security
We implement technical and organizational measures appropriate to the risk, including encryption in transit, access controls, and regular security review. No system is completely secure, and we cannot guarantee absolute security.
11. Children’s Privacy
The Service is intended for business use by individuals aged 18 and older. We do not knowingly collect personal data from children.
12. Cookies
Our marketing site and dashboard use analytics cookies/similar technologies to understand aggregate site usage (e.g., pages visited, referral source). We do not use cookies for third-party advertising. Where required by applicable law (including the EU/UK ePrivacy rules), analytics cookies are only set after you consent via our cookie banner, and you may withdraw consent at any time through the cookie settings link in the site footer.
13. Changes to This Policy
We will post material changes to this policy on this page and, where required, notify customers directly.
14. Contact
Questions about this Privacy Policy: support@topprospect.net