Privacy Policy

1. Introduction

geenaras is committed to protecting the privacy of individuals who interact with our services. This Privacy Policy explains how we collect, use, disclose, and safeguard personal information in accordance with the Personal Data Protection Act 2010 (PDPA) of Malaysia and applicable data protection regulations.

By engaging with our services or using our website, you acknowledge that you have read and understood this Privacy Policy. If you have questions or concerns about our privacy practices, please contact us at [email protected].

2. Information We Collect

2.1 Personal Information

We collect the following categories of personal information when you engage with our services:

• Contact Information: Name, email address, phone number, business address
• Professional Information: Organization name, job title, industry sector
• Engagement Information: Service inquiries, workshop participation, project requirements
• Communication Records: Email correspondence, meeting notes, feedback provided

2.2 Technical Information

When you visit our website, we may automatically collect:

• IP address and browser type
• Pages visited and time spent on site
• Device information and operating system
• Referring website or source

2.3 Cookies and Similar Technologies

We use cookies and similar tracking technologies to improve user experience and analyze website usage. For detailed information about our cookie practices, please review our Cookie Policy.

3. How We Use Your Information

3.1 Legal Basis for Processing

We process personal information based on the following legal grounds:

• Consent: When you provide explicit consent for specific processing activities
• Contract Performance: To deliver services you have engaged us to provide
• Legitimate Interest: For business operations, service improvement, and communication
• Legal Obligation: To comply with Malaysian laws and regulatory requirements

3.2 Specific Uses

We use your personal information for the following purposes:

• Delivering workshops, custom solutions, and governance frameworks
• Communicating about services, scheduling, and project updates
• Responding to inquiries and providing customer support
• Improving our services and developing new offerings
• Maintaining business records and contract documentation
• Complying with legal and regulatory requirements
• Sending relevant service information and updates (with your consent for marketing)

4. Information Sharing and Disclosure

4.1 Third-Party Service Providers

We may share personal information with third-party service providers who assist in business operations, including:

• Email and communication platforms
• Cloud storage and hosting services
• Payment processors (when applicable)
• Analytics and website optimization tools

These providers are contractually obligated to protect your information and use it only for specified purposes.

4.2 Legal Requirements

We may disclose personal information when required to:

• Comply with Malaysian laws, regulations, or legal processes
• Protect rights, property, or safety of geenaras, our clients, or others
• Respond to government or regulatory inquiries

5. Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

• Client Information: Retained for the duration of the engagement plus seven years for business records compliance
• Inquiry Information: Retained for two years unless an engagement commences
• Website Analytics: Retained for 26 months
• Communication Records: Retained as required for contract performance and legal compliance

6. Data Security

We implement appropriate technical and organizational measures to protect personal information against unauthorized access, alteration, disclosure, or destruction. Security measures include:

• Encryption of data in transit and at rest
• Access controls and authentication requirements
• Regular security assessments and updates
• Staff training on data protection practices
• Secure backup and recovery procedures

7. Your Rights

Under the Personal Data Protection Act 2010 (PDPA) of Malaysia, you have the following rights:

• Access: Request copies of your personal information
• Correction: Request correction of inaccurate or incomplete information
• Withdrawal of Consent: Withdraw consent for processing activities where consent is the legal basis
• Data Portability: Receive your personal information in a structured format (where technically feasible)
• Objection: Object to processing based on legitimate interests
• Complaint: Lodge a complaint with the Personal Data Protection Commissioner of Malaysia

To exercise these rights, please contact us at [email protected]. We will respond to requests within 21 days as required under Malaysian law.

8. International Data Transfers

Your personal information is processed and stored in Malaysia. If we transfer information outside Malaysia, we will ensure appropriate safeguards are in place to protect your information in accordance with PDPA requirements.

9. Children's Privacy

Our services are intended for business and professional use. We do not knowingly collect personal information from individuals under 18 years of age. If we become aware of such collection, we will take steps to delete the information promptly.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. Significant changes will be communicated through our website or direct notification to clients. The "Last Updated" date indicates when changes were last made.

11. Contact Information

For questions, concerns, or requests related to this Privacy Policy or our data practices, please contact: