Pelita

Legal

Privacy Policy

Last Updated: 20 May 2025  •  Effective: 20 May 2025

1. Introduction

Pelita ("we", "us", "our") is a consulting firm based in Kuala Lumpur, Malaysia. We help small businesses understand and adopt practical AI tools at a pace that feels right for them. This Privacy Policy explains how we collect, use, and look after personal information when you visit our website or contact us.

We operate in compliance with the Personal Data Protection Act 2010 (PDPA) of Malaysia, which governs how organisations handle personal data. If you have any questions about how we handle your information, you are welcome to contact us at any time using the details in Section 10.

2. Data We Collect

Information you give us directly

  • Your full name
  • Email address
  • Phone number (optional)
  • The content of messages you send through our contact form

Information collected automatically

  • Browser type and version
  • Pages visited and time spent on each page
  • Referring website (how you arrived at our site)
  • Approximate geographic location (country/city level only, via IP)
  • Cookie identifiers — see Section 5 for details

Legal basis for processing

We process your data on the basis of your consent (when you submit the contact form or accept cookies), legitimate interest (website analytics to improve the site), and contractual necessity (when you engage us for a service).

Data retention

Contact enquiries and associated personal data are held for up to three years after our last interaction, after which they are permanently deleted. Analytics data is retained in aggregated, anonymised form indefinitely. You may request earlier deletion at any time (see Section 6).

3. How We Use Your Data

We use the personal information we collect for the following purposes:

  • Responding to your enquiries and arranging consultations
  • Delivering the services you have engaged us for
  • Sending relevant follow-up communications (where you have consented)
  • Understanding how visitors use our website so we can improve it
  • Meeting legal and regulatory obligations where required

Marketing communications

We do not send unsolicited marketing emails. If at any point we wish to send you a newsletter or similar communication, we will ask for your explicit consent first, and you may withdraw it at any time by contacting us at [email protected].

Third-party sharing

We do not sell, rent, or trade your personal data. We may share information with trusted service providers (such as email hosting or analytics platforms) who assist us in operating the website. These providers are contractually bound to keep your data confidential and use it only as instructed.

4. Data Protection Measures

We take reasonable steps to protect your personal information from unauthorised access, loss, or misuse. These include:

  • Encryption of data in transit using HTTPS/TLS
  • Access controls that limit who within our team can view personal data
  • Regular review of data held and deletion of records no longer needed
  • Use of reputable third-party services with their own security certifications

Breach notification

In the unlikely event of a data breach that affects your personal information, we will notify you promptly if we are legally required to do so, and will take steps to contain and address the incident.

5. Cookies

We use cookies and similar technologies on our website. Cookies are small text files stored on your device that help the site function correctly and allow us to understand how visitors use it.

  • Essential cookies — required for the site to work (session management, security). These cannot be disabled.
  • Analytics cookies — help us understand which pages are most useful. Optional.
  • Preference cookies — remember your choices (such as cookie consent status). Optional.
  • Marketing cookies — used to show relevant content. Optional.

You can manage your cookie preferences at any time on our Cookie Policy page, which includes interactive controls for each category.

6. Your Rights

Under the PDPA and general principles of fair data handling, you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Correction — ask us to correct inaccurate or incomplete data
  • Erasure — request that we delete your personal data (subject to legal retention requirements)
  • Restriction — ask us to limit how we use your data while a dispute is resolved
  • Objection — object to processing based on our legitimate interests
  • Withdrawal of consent — where processing is based on consent, withdraw it at any time without affecting prior processing

To exercise any of these rights, please write to us at [email protected]. We will respond within 21 days.

If you are unhappy with how we handle your data, you may contact the Department of Personal Data Protection (JPDP), Malaysia's supervisory authority for personal data matters.

7. Third-Party Links

Our website may contain links to external websites for your convenience. We are not responsible for the privacy practices of those sites and encourage you to read their privacy policies before sharing any personal information with them.

8. Children's Privacy

Our services are intended for business owners and professionals aged 18 and over. We do not knowingly collect personal data from anyone under 18. If you believe a minor has submitted personal information to us, please contact us so we can delete it promptly.

9. Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The "Last Updated" date at the top of this page will be revised accordingly. We encourage you to check back periodically. Continued use of our website after an update constitutes acceptance of the revised policy.

For significant changes, we will make reasonable efforts to notify regular contacts directly.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please reach out:

We will do our best to address your enquiry in a timely and thorough manner.