Privacy Policy

Where Security and Privacy Matter

This page explains how VPS Malaysia collects, uses, protects, shares and retains personal data when you use our website, services, support channels, recruitment process and business communications.

Contact VPS Malaysia Visit Knowledgebase
SSL
DPO
PDPA
GDPR
PDPA Malaysia data protection alignment
GDPR EU privacy-rights framework considered
SSL Encrypted data transfer for sensitive submissions
72h Breach reporting target after awareness

Overview

What this policy covers

This privacy notice refers to VPS Malaysia, a company registered in Malaysia. It describes how we collect, store, transfer, use or otherwise process personal data and information that does not identify you.

We are committed to protecting privacy and confidentiality. Except where described in this policy, we do not share, sell or disclose information collected through our website to third parties.

VPS Malaysia has appointed a Data Protection Officer responsible for ensuring this policy is followed. Privacy-rights requests and questions can be raised through our established contact channels.

Personal Data

Data categories we may collect

These categories are reorganised into a scan-friendly table so customers can quickly see what may be processed.

Category Examples
Identity Name, title, date of birth, age, images and identifiers you provide.
Contact Email address, telephone number and communication details.
Recruitment CV, education, qualifications, references and hiring-related information.
Sensitive Data such as race, beliefs, health, biometric data or criminal conviction information where relevant to onboarding.
Transaction Order, payment and transaction information from you or payment providers.
Technical IP address, browser, location setting, device, operating system and site-access technology data.
Marketing Marketing preferences, communication preferences and responses to service communications.
Anonymous Aggregated statistical or demographic data that does not identify an individual.

Collection Points

When we collect information

  • Account registration
  • Orders and transactions
  • Newsletter subscriptions
  • Surveys and forms
  • Live chat
  • Support tickets
  • Feedback about products or services

Use Cases

How information may be used

  • Personalise website experience and relevant product options.
  • Improve the website, service experience and support response.
  • Process transactions and provide ordered services.
  • Run contests, promotions, surveys or other website features.
  • Request feedback, ratings and service reviews.
  • Follow up after live chat, email or phone inquiries.

Protection Layer

How visitor information is protected

Security controls are presented as operational layers instead of a long paragraph.

Regular scans for security holes and known vulnerabilities.

Malware scanning on a regular basis.

Restricted access to systems containing personal information.

Confidentiality requirements for authorised personnel.

SSL encryption for sensitive or credit information.

Third-party payment gateway processing; transactions are not stored or processed on VPS Malaysia servers.

Processing Basis

Why we process information

Where a basis is no longer relevant, processing should stop.

Contract

We process information needed to provide services, fulfil terms and give service suggestions or advice.

Consent

We process certain information when you browse, request information or provide contact details, until consent is withdrawn or no longer reasonably exists.

Legal obligation

We may process or disclose information when required by law, court order, warrant or authorised legal request.

Vital interest

We may process information where essential to protect life or another natural person.

Public interest

We may process information where required for a task carried out in the public interest or official authority vested in us.

Specific Uses

Recruitment, communication, complaints and partners

Job Applications

Recruitment information may be kept for up to one year. If you are employed, employment-related information may be used during employment and kept for five years after employment ends before deletion or destruction.

Communications

When you contact us by phone, website or email, we record the information needed to reply and may keep identifiable communication details to provide consistent service.

Complaints

Complaint information is used to resolve the issue. We may share relevant details with another person only where reasonably required and at our discretion.

Affiliates and Partners

Affiliate or business partner information is used only for the requested service or contractual purpose, and confidentiality is expected to be reciprocal.

Cookies

Website cookies and automated systems

Cookies are small text files placed by your browser. Some last only for a session, while others may last longer. Browser settings can delete, prevent or limit cookies.

Our website uses cookies operated by our server software and by third-party services we use. If cookie consent is declined, cookies are not used for the visit except to record that choice where needed.

  • Track how the website is used.
  • Record whether specific site messages have been seen.
  • Keep signed-in sessions active.
  • Record answers to surveys and questionnaires while they are completed.

Disclosure

Sharing, hosting location and third-party services

Rule Policy position
No sale of identifiable data We do not sell, trade or transfer personally identifiable information unless advance notice is provided.
Operational providers Hosting partners and service providers may assist with website, business or user-service operations if they keep information confidential.
Legal and safety reasons Information may be released to comply with law, enforce site policies or protect rights, property or safety.
Non-identifiable data Non-personally identifiable visitor information may be shared for marketing, advertising or other purposes.
International processing The website is hosted in Cyberjaya, Selangor, and outsourced services may process data outside Malaysia or the European Union.

Data Subject Rights

Your privacy rights

Requests to access, edit or delete identifiable information are verified before action is taken.

Be informed

Know what data is collected, why it is used, how long it is kept and whether it is shared.

Access

Request a copy of personal information we hold about you.

Rectification

Ask us to correct inaccurate or incomplete data.

Erasure

Ask us to erase personal data in applicable circumstances.

Portability

Request transfer of data we hold about you to another company.

Restrict processing

Ask us to limit how we use your personal data.

Object

Challenge certain processing activities, including direct marketing.

Automated decisions

Ask about automated processing if you believe data is being processed unlawfully.

Access and Removal

Review, update or remove information

You may request review or update of personally identifiable information that we hold. Requests for copies of information not available on the website can be made through our contact channels. Removal requests may limit the service we can provide.

Accuracy

Your duty to inform us of changes

It is important that personal data held by VPS Malaysia is accurate and current. Please inform us if your personal data changes.

Breach and Complaints

How to complain or report a data breach

  1. Report suspected breach or policy violation through support.
  2. We verify the issue and follow the data breach notification procedure.
  3. Where a breach has occurred, formal reporting is targeted within 72 hours of awareness.
  4. Users may be notified by email and in-site notification within one business day where required.

If a dispute is not settled, the policy states an intention to attempt good-faith resolution through mediation or arbitration.

Retention

How long personal data is kept

Except where otherwise stated, personal data is kept only as long as required for these purposes:

  • Provide the services requested.
  • Comply with law, including tax-authority requirements.
  • Support a claim or defence in court.

Encryption

Data sent between us

SSL certificates verify our identity to your browser and encrypt data you provide. You can check for a closed padlock or other trust mark in the browser address bar.

Email Compliance

CAN-SPAM and marketing email practices

Email addresses may be used to respond to inquiries, process orders, send service updates and provide related product or service information.

Do not use false or misleading subjects or email addresses.

Identify advertising messages in a reasonable way.

Include the physical address of the business or site headquarters.

Monitor third-party email marketing services for compliance if used.

Honour opt-out and unsubscribe requests quickly.

Allow unsubscribe through the link at the bottom of emails and promptly remove users from correspondence.

Review

Policy review and questions

VPS Malaysia may update this privacy notice when necessary. The applicable terms are those posted on the website on the day you use it.

Google AdSense is not enabled on the referenced policy. If you have questions about the privacy policy, contact VPS Malaysia through the website contact channels.

Contact VPS Malaysia