Datasafe OnlineGet a 30-minute Cyber Risk Review
Datasafe Online · Legal

Privacy Policy

This notice explains how Datasafe Online Sdn Bhd (806418-P) collects, uses, discloses, and protects your personal data in accordance with the Malaysian Personal Data Protection Act 2010 ("PDPA") and applicable data protection laws.

Last updated: 9 June 2026

Datasafe Online Sdn Bhd (“Datasafe”, “we”, “us”, or “our”) is committed to protecting the privacy and security of the personal data entrusted to us. This Privacy Policy applies to personal data we collect through this website, our enquiry and lead forms, and related communications.

1. Who we are

The party responsible for your personal data (the data user under the PDPA) is:

  • Datasafe Online Sdn Bhd (Company No. 806418-P)
  • Unit 20-02-05, Level 20, Tower B, Vertical Business Suite II, Avenue 3, Bangsar South, No. 8, Jalan Kerinchi, 59200 Kuala Lumpur, Malaysia
  • Email: sales@datasafe.com.my
  • Phone: 03-2242 3191

2. Personal data we collect

We collect personal data that you provide directly and data generated automatically when you use the site.

Information you provide

  • Identity and contact details: name, work email, company, job context, and phone number;
  • Enquiry details: the message, challenges, platform interest, organisation size, timeline, and any other information you choose to submit through our forms; and
  • Communications: records of correspondence when you contact us by email, phone, or form.

Information collected automatically

  • Technical data: IP address, browser type, device and operating system, and referring URLs;
  • Usage data: pages viewed, links and buttons clicked, and time spent on the site; and
  • Cookies and similar technologies: as described in our Cookie Policy. Non-essential cookies are only set with your consent.

3. How and why we use your personal data

We process personal data for the following purposes:

  • to respond to your enquiries and provide the cyber risk reviews, consultations, and services you request;
  • to manage our client and prospect relationships, including follow-up and account administration;
  • to operate, secure, maintain, and improve the website and our services;
  • to send service and, where you have consented, marketing communications relevant to enterprise cybersecurity;
  • to measure and understand the effectiveness of our content and campaigns; and
  • to comply with legal, regulatory, and contractual obligations, and to detect and prevent fraud or misuse.

4. Basis for processing

We process your personal data on the basis of your consent (given when you submit a form or accept non-essential cookies), to take steps at your request prior to entering into a contract, for our legitimate business interests in operating and securing our services, and to comply with the law. Where processing relies on consent, you may withdraw it at any time (see Your rights). Providing personal data is voluntary, but if you do not provide the information requested in a form we may be unable to respond to your enquiry.

5. Disclosure of your personal data

We do not sell your personal data. We may disclose it to:

  • Service providers and processors who act on our behalf (for example, website hosting and infrastructure, email delivery, customer-relationship management, and analytics providers) under contracts that require them to protect your data;
  • Our group and platform, including the Abatis365 operating platform, for delivering and supporting the services you request;
  • Professional advisers and authorities where required to comply with law, regulation, legal process, or a lawful government request, or to protect our rights, property, or safety; and
  • Successors in the event of a corporate reorganisation, merger, or acquisition.

6. International transfers

Some of our service providers operate or store data outside Malaysia. Where personal data is transferred outside Malaysia, we take reasonable steps to ensure it is treated securely and in accordance with this Privacy Policy and applicable law.

7. How long we keep your personal data

We retain personal data only for as long as necessary for the purposes set out above, including to meet legal, accounting, or reporting requirements. Enquiry data that does not progress to an engagement is retained for a reasonable period to allow follow-up, after which it is deleted or anonymised.

8. Security

As a cybersecurity company, protecting data is core to what we do. We implement appropriate technical and organisational measures (including encryption in transit, access controls, and monitoring) to protect personal data against loss, misuse, and unauthorised access, alteration, or disclosure. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

9. Your rights

Subject to the PDPA and applicable law, you have the right to:

  • request access to the personal data we hold about you;
  • request correction of inaccurate, incomplete, or out-of-date data;
  • withdraw your consent to our processing of your personal data;
  • limit the processing of your personal data, including for direct marketing; and
  • request information about how your data has been or may be disclosed.

To exercise any of these rights, contact us at sales@datasafe.com.my. We may need to verify your identity before acting on a request, and we will respond within the period required by law. A reasonable fee may apply to data access requests as permitted by the PDPA.

10. Cookies and analytics

We use cookies and similar technologies to operate the site and, with your consent, to analyse usage and support marketing. You can accept or reject non-essential cookies through our consent banner and change your choice at any time. See our Cookie Policy for details.

11. Third-party links

Our site may link to third-party websites and our secure portal. This Privacy Policy does not apply to those sites, and we are not responsible for their privacy practices. Please review their policies before providing personal data.

12. Children

Our website and services are intended for businesses and are not directed at children. We do not knowingly collect personal data from children.

13. Changes to this policy

We may update this Privacy Policy from time to time. The current version is always available on this page, with the “Last updated” date shown above. Material changes will be highlighted where appropriate.

14. Contact and complaints

For any questions, requests, or complaints about this policy or your personal data, contact us at sales@datasafe.com.my (or sales@datasafe.com.my). If you are not satisfied with our response, you may lodge a complaint with the Department of Personal Data Protection (Jabatan Perlindungan Data Peribadi, JPDP), Malaysia.

Notis Privasi (Bahasa Malaysia)

Menurut Akta Perlindungan Data Peribadi 2010, notis ini disediakan dalam Bahasa Malaysia dan Bahasa Inggeris. Sekiranya terdapat sebarang percanggahan, versi Bahasa Inggeris akan diguna pakai.

Datasafe Online Sdn Bhd (806418-P) memproses data peribadi anda (termasuk nama, e-mel, syarikat, nombor telefon, dan butiran pertanyaan) bagi tujuan menjawab pertanyaan anda, menyediakan perkhidmatan keselamatan siber yang diminta, mengurus hubungan pelanggan, menambah baik laman web dan perkhidmatan kami, serta mematuhi kewajipan undang-undang.

Data peribadi anda mungkin didedahkan kepada penyedia perkhidmatan kami (contohnya hos laman web, penghantaran e-mel, dan analitik) dan mungkin dipindahkan ke luar Malaysia dengan perlindungan yang sewajarnya. Pemberian data adalah secara sukarela; namun, tanpa data yang diminta, kami mungkin tidak dapat memproses pertanyaan anda.

Anda berhak untuk mengakses dan membetulkan data peribadi anda, menarik balik persetujuan, dan menghadkan pemprosesan data anda. Untuk berbuat demikian, sila hubungi kami di sales@datasafe.com.my atau 03-2242 3191.