Privacy Policy

Introduction

Vantora ("we," "us," or "our") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, disclose, and safeguard your information when you visit our website or engage our services.

We operate in accordance with the Personal Data Protection Act 2010 (PDPA) of Malaysia and other applicable data protection regulations. This policy applies to all personal data we process about individuals who interact with our business.

For questions about this privacy policy or our data practices, please contact us at [email protected].

Information We Collect

Personal Data You Provide

We collect information you voluntarily provide when you:

• Submit contact forms or inquiry requests
• Register for workshops or training sessions
• Enter into service agreements with us
• Subscribe to our communications
• Participate in surveys or feedback requests

This may include: name, email address, phone number, company name, job title, business address, and any other information you choose to provide.

Data We Collect Automatically

When you visit our website, we may automatically collect:

• Device information (IP address, browser type, operating system)
• Usage data (pages visited, time spent, navigation paths)
• Referral source and exit pages
• Cookie data (as described in our Cookie Policy)

Project-Related Data

During service engagements, we may process additional data necessary for project delivery. The specific types of data depend on project requirements and are documented in service agreements. We process this data only as necessary to fulfill our contractual obligations.

How We Use Your Information

We process personal data for the following purposes:

Service Delivery

• Responding to inquiries and providing information about our services
• Delivering contracted AI integration services
• Providing customer support and technical assistance
• Managing workshop registrations and training sessions

Business Operations

• Processing payments and maintaining financial records
• Managing service agreements and contracts
• Maintaining business records for legal and regulatory compliance

Communications

• Sending service-related updates and notifications
• Sharing relevant industry insights and resources (with your consent)
• Requesting feedback about our services

Website Improvement

• Analyzing website usage to improve user experience
• Identifying and fixing technical issues
• Understanding visitor interests and preferences

We rely on the following legal bases for processing: consent, contractual necessity, legal obligations, and legitimate business interests.

Data Sharing and Disclosure

We do not sell personal data. We may share your information with:

Service Providers

We engage third-party companies to support our operations, including:

• Cloud infrastructure providers for data hosting
• Email service providers for communications
• Payment processors for financial transactions
• Analytics services for website usage analysis

These providers are contractually bound to protect your data and use it only for specified purposes.

Legal Requirements

We may disclose information when required by law, regulation, legal process, or governmental request. We will notify you of such disclosures unless prohibited.

Business Transfers

In the event of a merger, acquisition, or sale of assets, personal data may be transferred to the acquiring entity. We will notify affected individuals of any such change.

Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls limiting data access to authorized personnel
• Employee training on data protection practices
• Incident response procedures for potential data breaches

While we take security seriously, no system is completely secure. We cannot guarantee absolute security but commit to maintaining industry-standard protective measures.

Data Retention

We retain personal data only as long as necessary for the purposes described in this policy or as required by law. Retention periods vary based on:

• Active service relationships: duration of engagement plus six years for business records
• Inquiry data: two years from last contact unless consent is withdrawn
• Financial records: seven years as required by Malaysian tax regulations
• Marketing communications: until consent is withdrawn

When data is no longer needed, we securely delete or anonymize it.

Your Rights

Under the PDPA and other applicable laws, you have the following rights regarding your personal data:

Right to Access

You may request confirmation of what personal data we hold about you and obtain a copy of that data.

Right to Correction

You may request correction of inaccurate or incomplete personal data.

Right to Erasure

You may request deletion of your personal data, subject to legal retention requirements.

Right to Withdraw Consent

Where processing is based on consent, you may withdraw that consent at any time.

Right to Object

You may object to processing based on legitimate interests, including for marketing purposes.

Right to Complain

You have the right to lodge a complaint with the Personal Data Protection Commissioner of Malaysia if you believe we have not handled your data appropriately.

To exercise these rights, contact us at [email protected]. We will respond within 21 days as required by the PDPA.

Cookies

We use cookies and similar technologies to enhance your browsing experience and analyze website usage. For detailed information about our cookie practices, please review our Cookie Policy.

You can manage cookie preferences through your browser settings or our cookie consent tool.

Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal data from minors. If we become aware that we have collected data from someone under 18, we will take steps to delete it promptly.

International Data Transfers

We primarily operate within Malaysia. If we transfer personal data internationally, we ensure appropriate safeguards are in place through:

• Standard contractual clauses approved by relevant authorities
• Transfers to countries with adequate data protection laws
• Your explicit consent for the transfer

Changes to This Policy

We may update this privacy policy periodically to reflect changes in our practices or legal requirements. We will notify you of significant changes by:

• Posting the updated policy on our website with a new "Last Updated" date
• Sending email notifications to registered users for material changes
• Displaying prominent notices on our website

Your continued use of our services after policy changes indicates acceptance of the updated terms.

Contact Us

If you have questions, concerns, or requests regarding this privacy policy or our data practices, please contact us: