隐私政策
Conzlab Biz & Tech Consultancy (“Conzlab”, “we”, “us”, or “our”) is committed to protecting the privacy and security of personal data. This Privacy Policy explains what personal data we collect, how we use it, who we share it with, and your rights in relation to that data when you use our website, services, or communicate with us.
This policy applies to data collected through our website, applications, emails, phone calls, and any other communications or services we provide.
- We collect only the data needed to provide our services, improve our website, and communicate with you.
- We do not sell personal data.
- You can contact us to access, correct, restrict, or delete your personal data.
- We use technical and organizational measures to protect your data, but no internet transmission is completely secure.
We collect the following categories of personal data:
a. Information you provide directly
- Contact details: name, company name, email address, phone number, job title.
- Communication content: messages, enquiries, support tickets, and other content you submit.
- Application/Careers data: CVs, cover letters, and recruiter notes if you apply for a job.
- Payment information: where applicable and only to the extent needed to process payments (note: we recommend using a PCI-compliant payment provider; Conzlab does not store full card details unless explicitly stated).
b. Information collected automatically
- Technical data: IP address, browser type/version, operating system, device identifiers.
- Usage data: pages visited, time and duration, clickstream data, referrer URL.
- Cookies and tracking technologies (see Section 7).
c. Information from third parties
- Public or third-party sources (e.g., business directories, social media profiles) if you interact with us through those channels.
- Service providers and partners (e.g., CRM tools, analytics vendors) that process data on our behalf.
We process personal data for the following purposes:
- To provide and manage services: onboarding, implementation, training, support, billing, contract fulfilment.
- To communicate: respond to enquiries, send confirmations, service messages, and updates.
- To improve our services and website: analytics, performance monitoring, and product improvement.
- To marketing (where permitted): newsletters, event invitations, product updates — only with consent if required by law. You can opt out at any time.
- To hire and manage staff: recruitment and human-resources processes.
- Security and legal compliance: fraud detection, legal requests, enforcement of terms, and protection of rights.
Where applicable law requires, we rely on one or more legal bases for processing personal data, such as:
- Performance of a contract (e.g., providing consulting or implementation services).
- Legitimate interests (e.g., improving services, fraud prevention, security, direct business communications).
- Consent (e.g., marketing communications, cookies beyond strictly necessary).
- Legal obligation (e.g., tax, regulatory or legal requests).
We may share personal data with:
- Service providers and processors who support our operations (e.g., hosting providers, CRM, email, analytics, payment processors). They process data under our instructions and contractual safeguards.
- Professional advisors (legal, accounting) where needed and confidential.
- Third parties in connection with business transactions (merger, acquisition, asset sale) — with notice and contractual safeguards.
- Legal or regulatory authorities when required by law or to protect rights, safety, or property.
We do not sell your personal data.
We use cookies and similar technologies to improve site functionality and analyze usage. Cookies may be:
- Strictly necessary cookies: required for site functionality.
- Performance and analytics cookies: help us understand site use (may include third-party analytics).
- Functional cookies: remember preferences and improve UX.
- Marketing cookies (optional): used for advertising, only when consent is provided.
You can manage cookie preferences via your browser settings and our cookie banner (if available). Disabling certain cookies may affect site functionality.
We may transfer personal data to service providers or affiliates located in other countries. When data is transferred internationally, we use safeguards such as standard contractual clauses, data processing agreements, or ensure transfers comply with applicable law.
We retain personal data only as long as necessary for the purposes described in this policy, including legal, tax, and accounting requirements. Typical retention periods:
- Client data: for the duration of the business relationship and for [X] years afterwards for recordkeeping and legal compliance.
- Recruitment data: for the duration of recruitment processes and up to [X] months afterwards for unsuccessful applicants (unless consented otherwise).
- Marketing data: until you unsubscribe or withdraw consent.
Replace [X] with your chosen retention periods according to law.
We implement reasonable technical and organizational measures to protect personal data against accidental loss, unauthorized access, disclosure, or alteration. These measures include access controls, encryption where appropriate, secure hosting, and staff training.
While we strive to protect data, no system is perfectly secure. If an incident affects your data, we will notify you and relevant authorities as required by law.
Depending on your jurisdiction, you may have rights including:
- Access: request a copy of your personal data.
- Correction: request correction of inaccurate or incomplete data.
- Erasure (Right to be forgotten): request deletion of data subject to legal limits.
- Restriction: request processing limits in certain circumstances.
- Portability: request your data in a structured, machine-readable format.
- Objection: object to processing based on legitimate interests or for direct marketing.
- Withdraw consent: where processing is based on consent, you may withdraw it.
To exercise these rights, contact us using the details in Section 15. We may request identity verification and will respond within applicable legal timeframes.
Our services are not directed to children under the age of 16 (or the applicable age in your jurisdiction). We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us to request removal.
Our website may link to third-party websites. This Privacy Policy does not apply to those sites. We recommend you read each third party’s privacy policy before providing personal data.
We may update this Privacy Policy periodically. Significant changes will be posted on the site with an updated “Effective date.” Continued use of our services after the effective date constitutes acceptance of the updated policy.
For questions, requests, or concerns about this Privacy Policy or your personal data, contact:
Data Protection Officer / Privacy Team
Conzlab Biz & Tech Consultancy
Email: [[email protected]]
Phone: [+6011-1928-8120]
Address: [02-14, BLOK B, PERMAS CITY, KAWASAN PERDAGANGAN PERMAS UTARA, Jalan Permas Utara, Bandar Baru Permas Jaya, 81750 Masai, Johor Darul Ta'zim, Malaysia]
If you are in a jurisdiction with a data protection authority (e.g., GDPR), you may also have the right to lodge a complaint with your supervisory authority.
- Marketing consent clause: By providing your contact details you agree to receive marketing messages (you may opt out at any time).
- Client portal access: If we provide a secure client portal, separate terms and security measures apply.
- Integrations: List major platforms you integrate with (e.g., CRM, cloud host) if you want transparency.