NT
Nilam Tech Contact Us
Legal

Privacy Policy

Nilam Tech Sdn. Bhd. takes the privacy of every individual seriously. This policy sets out how we collect, use, disclose, and safeguard personal data in connection with our AI integration and training services. It is written in plain language and organised by topic so you can read only what is relevant to you.

Last Updated: 15 February 2026  |  Effective Date: 15 February 2026

1. Who We Are

Nilam Tech Sdn. Bhd. (hereinafter "Nilam Tech", "we", "us", or "our") operates from 51 Jalan Datin Halimah, 80100 Johor Bahru, Johor, Malaysia. We provide AI business integration consulting, compliance monitoring solutions, and employee training facilitation. For any privacy-related matters, contact us at [email protected].

2. Scope of This Policy

This policy applies to personal data collected through our website at nilamtech.world, our service inquiry forms, emails, telephone interactions, and in the course of delivering our consulting services. It governs how we handle the data of website visitors, prospective clients, and current clients.

3. Personal Data We Collect

We collect only what is necessary to respond to your enquiries and deliver our services. This may include:

Identity Data

  • Full name
  • Job title and organisation
  • Preferred language

Contact Data

  • Email address
  • Phone number
  • Business address

Technical Data

  • IP address
  • Browser type and version
  • Pages visited and time on site

Communication Data

  • Enquiry messages
  • Service requirements shared
  • Correspondence records

4. How We Collect Personal Data

We receive personal data through the following means:

  • Website forms — when you submit an enquiry, consultation request, or contact form on our website.
  • Direct communication — emails, phone calls, or in-person meetings initiated by you.
  • Analytics tools — website analytics services that collect technical data automatically when you browse our site.
  • Service delivery — data shared with us during the course of a consulting or training engagement.

5. Legal Basis for Processing

We process personal data under Malaysia's Personal Data Protection Act 2010 (PDPA 2010). Our processing activities are based on one or more of the following grounds:

Consent

When you submit a form or accept cookies, you provide consent for specific processing activities. You may withdraw consent at any time.

Contractual Necessity

Processing required to deliver our services to you or to take steps at your request before entering a service agreement.

Legitimate Interests

To improve our website and services, manage our business relationships, and ensure the security of our systems, where these interests are not overridden by your rights.

6. How We Use Your Personal Data

Your data is used for purposes that are compatible with why it was collected, including:

  • Responding to enquiries and providing requested information
  • Delivering consulting and training services as agreed
  • Sending service updates, project correspondence, and invoices
  • Improving website performance and user experience
  • Complying with our legal and regulatory obligations
  • Protecting the security of our systems and data

We do not sell personal data to third parties. We do not use your data for automated decision-making that produces significant legal effects without human review.

7. Data Sharing and Third Parties

We share personal data only when necessary and with appropriate safeguards:

Service Providers

Trusted vendors who assist with website hosting, analytics, email delivery, and payment processing. All are bound by confidentiality obligations.

Analytics Services

We may use Google Analytics or equivalent services to understand website usage patterns. These tools collect anonymised data under their own privacy policies.

Legal Requirements

Regulatory bodies, law enforcement, or courts when required to do so by Malaysian law or lawful order.

8. Data Retention

We retain personal data for as long as is necessary for the purposes stated above, or as required by law:

Enquiry records 24 months from last contact
Client project data 7 years (accounting and legal)
Website analytics data 26 months (aggregated)
Cookie consent records 12 months

After the applicable retention period, data is securely deleted or anonymised.

9. Data Protection Measures

We apply reasonable and appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction, including:

  • HTTPS encryption for all website traffic
  • Access controls limiting data access to authorised staff
  • Regular internal reviews of data handling practices
  • Staff awareness on data protection responsibilities

In the event of a data breach affecting your rights, we will notify you and the relevant authorities as required under PDPA 2010 and any applicable guidelines.

10. Cookies

Our website uses cookies to function and to understand how visitors interact with our content. Essential cookies are necessary for the site to work. Analytics and marketing cookies are optional and used only with your consent. For full details and preference controls, please see our Cookie Policy.

11. Your Rights Under PDPA 2010

As a data subject under Malaysian law, you have the following rights in respect of your personal data:

Right of Access

Request a copy of the personal data we hold about you.

Right of Correction

Ask us to correct inaccurate or incomplete personal data.

Right to Withdraw Consent

Withdraw consent for processing activities based on your consent at any time.

Right to Limit Processing

Request that we stop using your data for direct marketing purposes.

To exercise any of these rights, contact us at [email protected]. We will acknowledge your request within 5 business days and respond substantively within 21 days.

12. Third-Party Links

Our website may contain links to external websites operated by third parties. We are not responsible for the privacy practices of those sites and encourage you to review their policies before providing any personal data.

13. Children's Privacy

Our services are intended for business professionals and organisations. We do not knowingly collect personal data from individuals under the age of 18. If you believe we have inadvertently collected such data, please contact us and we will take steps to remove it promptly.

14. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or regulatory requirements. When we make material changes, we will update the "Last Updated" date at the top of this page. Continued use of our website following any update constitutes acknowledgement of the revised policy.

15. Contact for Privacy Matters

If you have questions about this Privacy Policy or wish to exercise your data rights, please reach out to us:

Nilam Tech Sdn. Bhd., 51 Jalan Datin Halimah, 80100 Johor Bahru, Johor, Malaysia
[email protected]
+60 7-4826 9301