Introduction and Scope
Welcome to zorinthavexa's comprehensive privacy policy. This document outlines how we collect, use, process, and protect your personal data when you interact with our budget performance metrics platform. As a Malaysian-based financial technology company, we adhere to the Personal Data Protection Act 2010 (PDPA) and maintain international standards for data protection.
This policy applies to all users of zorinthavexa.org, our mobile applications, and any related services we provide. By using our platform, you acknowledge that you have read, understood, and agree to the practices described in this privacy policy. We believe transparency is crucial when it comes to your personal information, so we've structured this document to be as clear and comprehensive as possible.
Important: If you do not agree with our privacy practices, please do not use our services. We regularly update this policy to reflect changes in our practices and legal requirements, so please review it periodically.
Information We Collect
Personal Information You Provide
We collect information you directly provide when creating an account, using our services, or contacting us for support. This includes your name, email address, phone number, and financial institution details necessary for budget tracking functionality.
- Account registration details including full name, email address, and chosen password
- Contact information such as phone numbers and mailing addresses when provided
- Financial account information you choose to connect for budget analysis
- Communication preferences and customer support interactions
- Survey responses and feedback you provide to improve our services
Automatically Collected Data
Our platform automatically collects certain information about your device and usage patterns to provide optimal performance and security. This technical data helps us understand how our services are being used and identify areas for improvement.
| Data Type | Collection Method | Purpose |
|---|---|---|
| Device Information | Automatic Detection | Platform optimization and security |
| Usage Analytics | Platform Interaction Tracking | Service improvement and feature development |
| Location Data | IP Address Geolocation | Compliance and fraud prevention |
| Session Data | Cookies and Storage | Authentication and personalization |
How We Use Your Information
Your personal data serves specific purposes related to providing and improving our budget performance metrics services. We process your information based on legitimate business interests, contractual obligations, and your explicit consent where required by law.
Primary Service Functions
- Providing access to budget tracking and financial performance analysis tools
- Processing and analyzing your financial data to generate personalized insights
- Maintaining account security and preventing unauthorized access
- Sending important account notifications and service updates
- Providing customer support and technical assistance when needed
Secondary Applications
Beyond core functionality, we may use aggregated and anonymized data for research purposes, platform improvements, and compliance with regulatory requirements. We never share individual user data for secondary purposes without explicit consent.
Data Sharing and Disclosure
zorinthavexa maintains strict controls over data sharing. We do not sell personal information to third parties and only share data in specific circumstances outlined below. Any data sharing arrangements include contractual protections to safeguard your privacy.
Authorized Third-Party Services
We work with carefully vetted service providers who assist in delivering our platform functionality. These partnerships are governed by strict data processing agreements that limit how your information can be used.
- Cloud infrastructure providers for secure data storage and processing
- Financial data aggregators for secure bank account connectivity
- Analytics services that help us understand platform usage patterns
- Customer support tools that enable efficient query resolution
Legal Disclosure: We may disclose personal information when required by Malaysian law, court orders, or regulatory authorities. In such cases, we will notify affected users unless legally prohibited from doing so.
Your Privacy Rights
Under Malaysian data protection law, you have several important rights regarding your personal information. We've designed our platform to make exercising these rights as straightforward as possible.
Access and Portability Rights
You can request a complete copy of your personal data stored on our platform. This includes account information, financial data, and usage history in a structured, commonly used format that allows for easy transfer to other services if desired.
Correction and Update Rights
If you discover inaccuracies in your personal data, you can request corrections through your account settings or by contacting our privacy team directly. We aim to process correction requests within 30 days of receipt.
Deletion and Restriction Rights
You may request deletion of your personal data, subject to certain legal and operational limitations. In some cases, we may need to retain specific information for compliance purposes, but we will clearly explain any restrictions on data deletion.
Data Security and Protection
Protecting your financial data is our highest priority. We employ multiple layers of security measures to prevent unauthorized access, data breaches, and other security incidents.
Technical Safeguards
- End-to-end encryption for all data transmission and storage
- Regular security audits and penetration testing by independent firms
- Multi-factor authentication requirements for account access
- Automated threat detection and response systems
- Secure backup procedures with geographically distributed storage
Operational Protections
Our team undergoes regular privacy and security training. Access to personal data is restricted on a need-to-know basis, and all access is logged and monitored. We maintain detailed incident response procedures to address any potential security issues promptly.
Data Retention and Deletion
We retain personal data only as long as necessary to provide our services and comply with legal obligations. Different types of data have varying retention periods based on their purpose and regulatory requirements.
| Data Category | Retention Period | Deletion Process |
|---|---|---|
| Account Information | Duration of account plus 7 years | Automated deletion after retention period |
| Financial Transaction Data | 7 years from last transaction | Secure deletion with verification |
| Usage Analytics | 3 years from collection | Aggregation then individual deletion |
| Communication Records | 5 years from last contact | Secure archival then deletion |
International Data Transfers
While zorinthavexa operates primarily within Malaysia, some of our service providers may process data in other countries. We ensure that any international transfers comply with Malaysian data protection requirements and include appropriate safeguards.
When data is transferred internationally, we implement standard contractual clauses or rely on adequacy decisions to ensure your data receives equivalent protection. You can request specific information about international transfers affecting your data by contacting our privacy team.
Changes to This Policy
We review and update this privacy policy annually or when significant changes to our practices occur. Material changes will be communicated through email notifications and prominent website notices at least 30 days before implementation.
Minor updates that don't affect your rights or our core practices may be made with shorter notice periods. We encourage you to review this policy periodically to stay informed about how we protect your information.