Pelangi Synapse Contact Us

Legal Document

Privacy Policy

How Pelangi Synapse collects, uses, and protects the personal data you share with us.

Last Updated: 5 May 2025 Jurisdiction: Malaysia

Contents

  1. 1. Introduction
  2. 2. Data We Collect
  3. 3. How We Use Your Data
  4. 4. Data Protection Measures
  5. 5. Cookies
  6. 6. Your Rights
  7. 7. Third-Party Links
  8. 8. Children's Privacy
  9. 9. Policy Updates
  10. 10. Contact
01

Introduction

Pelangi Synapse ("we", "us", "our") is committed to handling the personal data of our clients and website visitors with care and transparency. This Privacy Policy describes the types of information we collect, the purposes for which we use it, the measures we take to protect it, and the rights you hold as a data subject.

This policy applies to all personal data processed through our website at pelangisynapse.info and through our client engagement process. It is written in accordance with the Personal Data Protection Act 2010 (PDPA) of Malaysia.

If you have questions about this policy at any time, you are welcome to contact us at [email protected].

02

Data We Collect

We collect personal data through direct interactions (contact forms, email, telephone) and through your use of this website. The categories of data we may hold include:

Information You Provide

  • Name and contact details — provided when you submit our enquiry form or correspond with us by email or phone.
  • Business information — company name, role, and relevant operational context shared during an engagement.
  • Project details — information about your organisation's processes and data flows, shared in the course of a scoped engagement.

Information Collected Automatically

  • Usage data — pages visited, time spent, and navigation patterns, collected via analytics tools.
  • Technical data — IP address, browser type, device type, and operating system.
  • Cookie data — as described in Section 5 below.

Legal Basis for Processing

Consent

Where you have given us express consent — for example, when submitting an enquiry form.

Contract

Where processing is necessary to deliver services agreed under a client engagement.

Legitimate Interest

Where we have a reasonable business interest, such as improving our website and services.

Retention

Enquiry data is retained for up to 24 months. Client engagement data is retained for up to 5 years from project completion for record-keeping and professional accountability purposes. You may request earlier deletion; see Section 6.

03

How We Use Your Data

We use personal data only for the purposes for which it was collected, or for purposes that are directly compatible with those. Our primary uses are:

  • Responding to enquiries and arranging initial consultations.
  • Delivering scoped AI advisory and integration services.
  • Maintaining written records of project decisions, as agreed with clients.
  • Sending service-related communications — including check-in meeting notes and closing briefs.
  • Understanding how our website is used in order to improve it.
  • Meeting our legal and professional obligations.

Marketing Communications

We do not send unsolicited marketing emails. If you express interest in receiving occasional updates from us, we will ask for your explicit consent and will provide a simple means to withdraw it at any time.

Data Sharing

We do not sell, rent, or trade personal data to third parties. We may share limited data with trusted service providers (hosting, analytics, payment processing) who process data on our behalf and are bound by appropriate confidentiality and data protection terms. We may also disclose data where required by Malaysian law or a competent authority.

04

Data Protection Measures

We take reasonable and appropriate organisational and technical measures to protect personal data from loss, unauthorised access, disclosure, or misuse.

Technical Measures

  • TLS encryption on all website connections
  • Access controls on systems holding personal data
  • Regular review of third-party service security

Organisational Measures

  • Data access limited to personnel who need it
  • Confidentiality obligations for all team members
  • Periodic review of data handling practices

In the event of a personal data breach that is likely to affect your rights and interests, we will notify affected individuals without undue delay and, where required, report to the relevant Malaysian authority.

05

Cookies

Our website uses cookies — small text files stored on your device — to support basic functionality and to understand how visitors use the site. We use the following categories:

Essential

Required for the site to function. Cannot be disabled. Includes session management and security tokens.

Analytics

Help us understand which pages are most useful. Enabled only with your consent.

Preferences

Remember your settings and consent choices between visits. Enabled with your consent.

Marketing

Used for advertising measurement. Enabled only with explicit consent.

You can review and adjust your cookie preferences at any time on our Cookie Policy page.

06

Your Rights

Under the Personal Data Protection Act 2010 (Malaysia), you have rights in relation to the personal data we hold about you. These include:

Right of Access
You may request a copy of the personal data we hold about you. We will respond within the timeframe required by applicable law.
Right to Rectification
If data we hold is inaccurate or incomplete, you may request that we correct it.
Right to Erasure
You may request deletion of your personal data where we no longer have a lawful reason to hold it. Note that we may need to retain certain records to meet legal obligations.
Right to Withdraw Consent
Where processing is based on consent, you may withdraw that consent at any time by contacting us. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.
Right to Object
You may object to processing carried out on the basis of legitimate interest. We will cease processing unless we have compelling legitimate grounds that override your interests.

To exercise any of these rights, please write to us at [email protected]. We may need to verify your identity before processing a request. If you are not satisfied with our response, you may lodge a complaint with the Department of Personal Data Protection Malaysia (JPDP).

07

Third-Party Links

Our website may contain links to external sites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies before sharing any personal data with them. The presence of a link does not constitute endorsement.

08

Children's Privacy

Our services are directed at organisations and business professionals. We do not knowingly collect personal data from individuals under the age of 18. If you believe a minor has submitted personal data through our website, please contact us and we will take appropriate steps to remove it.

09

Policy Updates

We may revise this policy from time to time to reflect changes in our practices or in applicable law. When we make material changes, we will update the "Last Updated" date at the top of this page. We encourage you to review this policy periodically.

Continued use of our website following an update constitutes your acknowledgement of the revised policy.

10

Contact

For questions, data access requests, or concerns regarding this policy, please contact our data team:

Pelangi Synapse

[email protected]

Jalan Lagoon Selatan 12A, 47500 Subang Jaya, Selangor, Malaysia

+60 17 539 8264