Name: AI Innovation Malaysia
Address: 9 Jalan Masjid Kapitan Keling, Penang 10200, Malaysia
Telephone: +60 4 4759 3826

1. Introduction

AI Innovation Malaysia ("we," "our," or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website ai-innovation-my.com and use our AI technology services.

Our Privacy Commitment

We adhere to the Personal Data Protection Act 2010 (PDPA) of Malaysia, the General Data Protection Regulation (GDPR) of the European Union, and other applicable privacy laws. Our practices are designed to give you control over your personal information while ensuring we can provide you with exceptional AI technology services.

2. Information We Collect

Personal Information

We collect information you provide directly to us, including but not limited to:

Account Information

• Full name and contact details
• Email address and phone number
• Company name and job title
• Username and password (encrypted)
• Profile picture (optional)

Service Usage Data

• AI service interactions and queries
• Feature usage patterns and preferences
• Content uploads and downloads
• Customer support communications
• Survey responses and feedback

Technical Information

When you visit our website or use our services, we automatically collect certain technical information:

Device Information

• IP address and location data
• Browser type and version
• Operating system
• Device identifiers

Usage Analytics

• Pages visited and time spent
• Click-through rates and interactions
• Referrer URLs and search terms
• Download patterns

Performance Data

• Service response times
• Error rates and debugging info
• Feature performance metrics
• System resource usage

3. How We Use Your Information

We use the collected information for legitimate business purposes related to providing and improving our AI technology services. Our data usage is transparent, purposeful, and compliant with privacy regulations.

Service Provision

Provide access to AI technology platforms and tools
Process and analyze user inputs and data
Generate AI-powered insights and recommendations
Manage user accounts and service access

Business Development

Improve service quality and user experience
Develop new AI features and capabilities
Conduct research and analytics
Optimize performance and reliability

Communication

Respond to inquiries and provide support
Provide educational content and resources
Facilitate community engagement

Security & Compliance

Ensure system security and integrity
Comply with legal obligations
Protect intellectual property rights

4. Information Sharing & Disclosure

Our Privacy Principle

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. Any sharing of your data is limited to specific business needs and always with your privacy protection as our primary concern.

Limited Sharing Scenarios

Service Providers

We work with trusted third-party service providers who help us operate our business:

• Cloud hosting and infrastructure services
• Customer relationship management systems
• Analytics and performance monitoring tools
• Payment processing and billing systems
• Communication and email service providers

Legal Requirements

We may disclose information when required by law or to:

• Comply with legal processes and court orders
• Protect our rights, property, or safety
• Investigate potential violations of our terms
• Prevent fraud or security breaches
• Respond to government requests

Protection Measures

Contractual Safeguards

• Data processing agreements with all vendors
• Strict confidentiality and security clauses
• Limited data access on need-to-know basis
• Regular security audits and assessments
• Immediate contract termination for violations

Data Minimization

• Share only necessary information for each purpose
• Anonymize data when possible
• Use pseudonymization for analytics
• Regular data purging and cleanup
• No sharing for unrelated purposes

5. Data Retention

Retention Philosophy

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this privacy policy, comply with our legal obligations, resolve disputes, and enforce our agreements. Our retention practices are transparent and proportional to the data's sensitivity and intended use.

Account Data

Active accounts: Duration of service

After account closure: 3 years

Legal compliance: 7 years (tax records)

* Certain financial records are retained for legal requirements

Usage Analytics

Website analytics: 26 months

Service logs: 12 months

Performance data: 90 days

* Anonymized after specified periods

Communications

Support inquiries: 5 years

Until opt-out

Legal correspondence: 10 years

* Subject to applicable legal requirements

Data Deletion Rights

You have the right to request deletion of your personal information at any time, subject to certain legal exceptions. When you request deletion:

• We will delete your information within 30 days
• Backup copies may persist for up to 90 days
• Legal obligations may require retention of certain data
• Anonymized data may be retained for research purposes

6. Your Rights & Choices

Your Privacy Rights

As a user of AI Innovation Malaysia services, you have comprehensive rights over your personal information. These rights are protected under Malaysian PDPA, EU GDPR, and other applicable privacy laws.

Access & Portability

Request a copy of your personal data
Export your data in a machine-readable format
View your account activity and history

Correction & Updates

Update your personal information
Correct inaccurate or incomplete data
Modify your communication preferences
Adjust your privacy settings

Restriction & Objection

Restrict processing of your data
Object to certain types of data processing
Withdraw consent where applicable
Opt-out of marketing communications

Deletion Rights

Request permanent deletion of your account
Clear your search and browsing history

Legal Protections

File complaints with data protection authorities
Seek legal remedies for privacy violations
Receive notifications of data breaches
Appeal automated decision-making processes

Platform Controls

Manage cookie preferences
Control data sharing settings
Set communication preferences
Customize privacy and security levels

How to Exercise Your Rights

Online Account Management

• Access your account settings dashboard
• Use our privacy preference center
• Manage communication preferences
• Download your data archive

Direct Contact

• Email: privacy@ai-innovation-my.com
• Phone: +60 4 4759 3826
• Response time: Within 30 days
• No fee for most requests

7. Data Security

Our Security Commitment

We implement industry-leading security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. Our security infrastructure is continuously monitored and updated to maintain the highest protection standards.

Technical Safeguards

AES-256 encryption for data at rest
TLS 1.3 encryption for data in transit
Multi-factor authentication (MFA)
Role-based access control (RBAC)
Regular security patches and updates

Monitoring & Detection

24/7 security operations center (SOC)
Real-time threat monitoring
Automated anomaly detection
Log analysis and forensic capabilities
Vulnerability assessments

Organizational Controls

Employee security training programs
Background checks for key personnel
Strict access policies and procedures
Data classification and handling procedures
Regular security audits and penetration testing

Infrastructure Security

Distributed denial-of-service (DDoS) protection
Web application firewall (WAF)
Network segmentation and isolation
Regular data backups and recovery testing
Physical security for data centers

Security Best Practices for Users

Account Security

• Use strong, unique passwords
• Enable two-factor authentication
• Regularly review account activity
• Log out from shared devices
• Keep contact information updated

Data Protection

• Be cautious with sensitive information
• Report suspicious activities immediately
• Keep software and browsers updated
• Avoid public Wi-Fi for sensitive transactions
• Verify authenticity of communications

Security Incident Response

Detect

Immediate detection of security threats through automated monitoring systems

Respond

Rapid response team activation within 1 hour of threat identification

Recover

Comprehensive recovery and notification within regulatory timeframes

8. Cookies & Tracking Technologies

Cookie Transparency

We use cookies and similar tracking technologies to enhance your browsing experience, analyze website traffic, and provide personalized content. You have full control over these technologies through your browser settings and our cookie preference center.

Essential Cookies

Required for basic website functionality and cannot be disabled:

Security: Protect against CSRF attacks and fraud
Load Balancing: Distribute traffic efficiently
Language Settings: Remember your language preference

Analytics Cookies

Help us understand how visitors interact with our website:

Google Analytics: Page views, session duration, bounce rate
Performance Monitoring: Page load times and errors
User Journey: Navigation paths and conversion funnels

Marketing Cookies

Used to deliver personalized content and advertisements:

Social Media: Enable social sharing and integration
Personalization: Customize content and recommendations

Preference Cookies

Remember your settings and preferences:

Theme Settings: Dark mode, color schemes, layouts
Accessibility: Font size, contrast settings
Content Filters: Personalized content categories

Managing Your Cookie Preferences

Browser Settings

Control cookies through your web browser:

• Chrome: Settings → Privacy and Security → Cookies
• Firefox: Options → Privacy & Security → Cookies
• Safari: Preferences → Privacy → Cookies
• Edge: Settings → Privacy → Cookies

Our Cookie Center

Fine-tune your preferences directly on our website:

This will open our cookie management panel where you can customize your preferences by category.

Cookie Duration

Session Cookies: Deleted when you close your browser

Persistent Cookies: Remain for up to 2 years unless deleted

Third-party Cookies: Duration varies by provider (typically 13-24 months)

Important Considerations

Disabling Cookies

If you disable certain cookies, some website features may not function properly:

• You may need to log in repeatedly
• Website personalization will be limited
• Shopping cart items may be lost
• Some content may not display correctly

Mobile Device Considerations

Cookie management varies by mobile device and browser:

• Safari on iOS: Settings → Safari → Privacy
• Chrome on Android: Settings → Privacy → Cookies
• In-app browsers have limited cookie controls
• Consider using our mobile app for better control

9. International Data Transfers

Global Data Flow

AI Innovation Malaysia operates globally, and your personal information may be transferred to and processed in countries other than your own. We ensure that all international data transfers comply with applicable privacy laws and provide appropriate safeguards for your information.

Data Storage Locations

We use multiple data centers to ensure reliability and performance:

Primary Data Centers

Singapore, Malaysia

Main Storage

Backup Facilities

Australia, Japan

Redundancy

Content Delivery

Multiple global locations

Performance

Legal Safeguards

Adequacy Decisions: Transfers to EU-approved countries
Standard Contractual Clauses: EU Commission-approved templates
Binding Corporate Rules: Internal data protection policies
Certification Schemes: ISO 27001, SOC 2 compliance

Third-Party Processors

We work with international service providers who meet our privacy standards:

Cloud Infrastructure

Enterprise cloud platforms with global reach

• AWS (Asia Pacific - Singapore)
• Microsoft Azure (Multiple regions)
• Google Cloud Platform

Analytics & Marketing

Performance and marketing technology partners

• Google Analytics (Global)
• Adobe Analytics
• Various advertising platforms

Compliance Standards

GDPR

EU Compliance

PDPA

Malaysia Compliance

ISO 27001

Security Standard

SOC 2

Service Controls

Your Rights Regarding Transfers

Information Rights

• Learn which countries your data is transferred to
• Understand the safeguards we implement
• Receive copies of relevant data processing agreements
• Be notified of any changes to transfer mechanisms

Control Rights

• Object to transfers to certain countries
• Request data localization where possible
• Withdraw consent for specific transfers
• File complaints with supervisory authorities

Note: Some countries may have different privacy laws than your own. We provide the same level of protection regardless of where your data is processed.

10. Children's Privacy

Child Safety Priority

AI Innovation Malaysia is committed to protecting the privacy of children. Our services are not intended for individuals under the age of 16, and we do not knowingly collect personal information from children without appropriate parental consent.

Age Restrictions

General Services

Minimum age requirement:

16 years

Or age of digital consent in your jurisdiction

Educational Programs

Specialized services may allow:

13-16 years

With verified parental consent

What We Don't Collect

Personal information from children under 16
Sensitive data from minors
Location data from children
Biometric data from minors

Protection Measures

Age verification mechanisms
Parental consent verification
Enhanced data protection for minors
Specialized privacy controls
Limited data retention policies

Educational Context

For educational institutions and programs:

• School-approved educational tools
• Teacher/guardian supervised usage
• Minimal data collection practices
• Educational purpose limitation
• Enhanced parental rights

Parental Rights & Responsibilities

Parent/Guardian Rights

Review your child's information
Request corrections or updates
Request deletion of data
Withdraw consent at any time

How to Exercise Rights

Contact Us Directly

Email: children@ai-innovation-my.com

Subject: Child Privacy Request

Account Dashboard

Manage your child's account settings and data through our parent portal

Reporting & Response

Identify

Report suspected unauthorized collection from children

Investigate

Immediate investigation within 24 hours

Resolve

Delete data and notify within 72 hours

Legal Compliance

COPPA

USA Compliance

GDPR-K

EU Child Protection

PDPA-K

Malaysia Child Protection

Best Practices

Industry Standards

11. Privacy Policy Updates

Continuous Improvement

We regularly update this Privacy Policy to reflect changes in our practices, technology, legal requirements, or business operations. We are committed to keeping you informed about how we protect your privacy and will always notify you of significant changes.

Types of Updates

Routine Updates

• Clarification of existing practices
• Updated contact information
• Minor language improvements
• Correction of typos or errors

Significant Changes

• New data collection practices
• Changes to data sharing policies
• New service features
• Legal compliance updates

Material Changes

• New purposes for data processing
• Additional third-party sharing
• Significant security practice changes
• Changes to your rights

Notification Methods

Email Notification

Direct email to registered users for significant and material changes

Website Banner

Prominent notice on our website homepage

In-App Notifications

Push notifications within our mobile and web applications

RSS/Newsletter

Updates included in our regular communications

Notice Periods

Routine Updates: Immediate

7 days advance

Material Changes: 30 days advance

Emergency Updates: As soon as possible

Your Choices & Rights

Review Period

Feedback Opportunity

30 days to review and comment on material changes

Discussion Period

Open dialogue about significant changes

Acceptance Options

Continued Use

Continue using services indicates acceptance

Account Closure

Close account if you don't agree with changes

Policy Version History

Version	Date	Changes
2.1	December 2024	Enhanced international transfer details
2.0	September 2024	Major update for GDPR compliance
1.5	June 2024	Cookie policy and children privacy sections

12. Contact Us

Contact Methods

Phone

+60 4 4759 3826

Email

info@ai-innovation-my.com

Website

ai-innovation-my.com

Business Hours

Monday - Friday 9:00 - 18:00

Saturday 9:00 - 13:00

Sunday

All times are in Malaysia Standard Time (MST)

Specialized Contact Points

Privacy Inquiries

Questions about this Privacy Policy

privacy@ai-innovation-my.com

Data Subject Requests

Access, correction, or deletion requests

datarequest@ai-innovation-my.com

Children's Privacy

Child privacy and parental consent

children@ai-innovation-my.com

Security Concerns

Security incidents and vulnerabilities

security@ai-innovation-my.com

Response Timeframes

General Inquiries 24-48 hours

Privacy Requests 30 days

Security Issues 1-4 hours

Children's Privacy 72 hours

Regulatory Information

Data Protection Authorities

Malaysia

Department of Personal Data Protection (JPDP)

Registration: PDPA-2024-AI-001

European Union

Various Member State Supervisory Authorities

GDPR Compliance Reference: EU-GDPR-AI-2024

Filing a Complaint

If you believe we have not adequately addressed your privacy concerns, you have the right to file a complaint with the relevant data protection authority in your jurisdiction.

We encourage you to contact us first to resolve any issues, but you always have the option to escalate to regulatory authorities.

Visit Our Office

We welcome the opportunity to discuss our privacy practices with you in person. Please note that appointments are recommended for privacy discussions.

How to Schedule

• Email: privacy@ai-innovation-my.com
• Phone: +60 4 4759 3826
• Minimum 24-hour notice required

Office Location

Address:

9 Jalan Masjid Kapitan Keling

Penang 10200, Malaysia

Nearby Landmarks:

Kapitan Keling Mosque
George Town Heritage Zone
Penang State Museum

Privacy Policy

Table of Contents

1. Introduction

Our Privacy Commitment

2. Information We Collect

Personal Information

Account Information

Service Usage Data

Technical Information

Device Information

Usage Analytics

Performance Data

3. How We Use Your Information

Service Provision

Business Development

Communication

Security & Compliance

4. Information Sharing & Disclosure

Our Privacy Principle

Limited Sharing Scenarios

Service Providers

Legal Requirements

Protection Measures

Contractual Safeguards

Data Minimization

5. Data Retention

Retention Philosophy

Account Data

Usage Analytics

Communications

Data Deletion Rights

6. Your Rights & Choices

Your Privacy Rights

Access & Portability

Correction & Updates

Restriction & Objection

Deletion Rights

Legal Protections

Platform Controls

How to Exercise Your Rights

Online Account Management

Direct Contact

7. Data Security

Our Security Commitment

Technical Safeguards

Monitoring & Detection

Organizational Controls

Infrastructure Security

Security Best Practices for Users

Account Security

Data Protection

Security Incident Response

Detect

Respond

Recover

8. Cookies & Tracking Technologies

Cookie Transparency

Essential Cookies

Analytics Cookies

Marketing Cookies

Preference Cookies

Managing Your Cookie Preferences

Browser Settings

Our Cookie Center

Cookie Duration

Important Considerations

Disabling Cookies

Mobile Device Considerations

9. International Data Transfers

Global Data Flow

Data Storage Locations

Legal Safeguards

Third-Party Processors

Cloud Infrastructure

Analytics & Marketing

Compliance Standards

Your Rights Regarding Transfers

Information Rights

Control Rights

10. Children's Privacy