Privacy Policy

1. Introduction

Jelita Plan ("we", "us", "our") is committed to protecting the personal data of individuals who interact with our website and engage our services. This Privacy Policy explains what data we collect, how we use it, how long we retain it, and what rights you have under Malaysia's Personal Data Protection Act 2010 (PDPA).

Our registered address is Unit 12-4, Wisma Cosway, Jalan Raja Chulan, 50200 Kuala Lumpur, Malaysia. For data-related enquiries, contact us at [email protected].

2. Data We Collect

We collect personal data in the following ways:

• Contact form submissions: name, email address, phone number, and any message content you provide.
• Website analytics: anonymised usage data including pages visited, time on site, and browser type, collected via cookies where consent has been given.
• Engagement data: for clients who engage our services, we may process scheduling and workforce data under a separate data processing agreement.

We do not collect sensitive personal data (as defined under PDPA) through our website.

3. Legal Basis for Processing

We process personal data on the following legal bases under the PDPA:

• Consent: for analytics cookies and marketing communications, where you have actively agreed.
• Contractual necessity: where processing is required to fulfil an engagement or respond to a service enquiry.
• Legitimate interest: for basic website security logging and fraud prevention.

4. How We Use Your Data

• To respond to enquiries submitted through the contact form.
• To deliver the advisory services you have engaged us for.
• To improve the usability and performance of our website (analytics, with consent).
• To comply with applicable laws and regulatory obligations in Malaysia.

We do not sell your personal data to third parties. We do not use your data for automated decision-making that produces legal effects.

5. Data Sharing

We may share your data with:

• Service providers: hosting, email, and analytics providers operating under data processing agreements. We select providers who handle data in a manner consistent with Malaysian PDPA obligations.
• Regulatory authorities: where required by law or court order.

We do not transfer personal data outside Malaysia without appropriate safeguards where such transfer is regulated under the PDPA.

6. Data Retention

Contact form submissions are retained for up to 24 months to allow follow-up on enquiries and for record-keeping purposes. Client engagement data is retained for the duration of the engagement plus 12 months, after which it is securely deleted unless a longer period is required by applicable law. Analytics data is retained for 14 months in anonymised form.

7. Cookies

We use cookies to understand how visitors use our website. Essential cookies cannot be disabled. Analytics and preference cookies are only set with your consent. For full details, see our Cookie Policy.

8. Your Rights Under the PDPA

Under Malaysia's Personal Data Protection Act 2010, you have the right to:

• Access the personal data we hold about you.
• Correct inaccurate or incomplete personal data.
• Withdraw consent to processing where consent is the legal basis.
• Request that we cease processing your data for direct marketing purposes.

To exercise any of these rights, contact us at [email protected]. We will respond within 21 working days.

9. Third-Party Links

Our website may contain links to external sites. We are not responsible for the privacy practices of third-party websites and encourage you to review their privacy policies before providing personal data.

10. Children's Privacy

Our services are directed at organisations and HR professionals. We do not knowingly collect personal data from individuals under the age of 18. If you believe we have inadvertently collected such data, please contact us immediately.

11. Data Security

We use standard security measures including encrypted transmission (HTTPS), access controls, and secure storage to protect personal data. In the event of a personal data breach that is likely to affect your rights, we will notify you and, where required, the relevant supervisory authority in accordance with applicable law.

12. Changes to This Policy

We may update this Privacy Policy from time to time. The updated date at the top of this page reflects when changes were last made. Continued use of our website after updates constitutes acceptance of the revised policy.

13. Contact

For any questions about this Privacy Policy or how we handle your personal data:

• Email: [email protected]
• Address: Unit 12-4, Wisma Cosway, Jalan Raja Chulan, 50200 Kuala Lumpur, Malaysia