Privacy Policy

1. Who We Are

Stronium Sdn Bhd is a technology company based in Kuala Lumpur, Malaysia, providing software development, graph database solutions, and managed hosting services. For the purposes of the PDPA 2010, Stronium is the data user in respect of personal data collected through this website.

2. What Personal Data We Collect

We limit collection to what is reasonably necessary. Depending on how you interact with this website, we may collect:

• Contact information — name, email address, phone number, and company name when you contact us by email or through a contact form.
• Correspondence content — the content of messages or enquiries you send us.
• Technical data — IP address, browser type and version, operating system, referring URL, pages visited, and timestamps, collected automatically by our web server.
• Cookie data — as described in Section 9.

We do not knowingly collect sensitive personal data (such as identification numbers, health data, financial account details, or biometric data) through this website.

3. How We Collect It

• Directly from you — when you email us or submit an enquiry.
• Automatically — through standard web server logs and cookies when you browse this website.

4. Why We Process Your Data & Legal Basis

We process personal data only for the purposes for which it was collected and for compatible purposes. Our purposes and corresponding lawful bases are:

• Responding to enquiries — processing is necessary to take steps at your request prior to, or in the performance of, a contract or service relationship.
• Website operation and security — processing is necessary for our legitimate interests in running a secure, functional website and protecting it against misuse.
• Legal compliance — where we are required to retain or disclose data by Malaysian law.
• Marketing communications — only with your explicit prior consent, and you may withdraw consent at any time.

We will not use your personal data for purposes that are incompatible with those stated above without notifying you first.

5. PDPA 2010 — Seven Principles

As a data user under the Personal Data Protection Act 2010 (Act 709), Stronium adheres to the following seven data protection principles:

6. Sharing Your Data

We do not sell, rent, or trade your personal data. We may share it only in the following limited circumstances:

• Service providers — trusted third-party providers who assist us in operating this website (e.g., web hosting providers), under contractual obligations to protect your data and use it only as instructed.
• Legal requirements — where disclosure is required by Malaysian law, a court order, or a regulatory authority.
• Protection of rights — where reasonably necessary to prevent fraud, protect the safety of any person, or enforce our legal rights.
• Business transfers — in the event of a merger, acquisition, or sale of all or part of our business, personal data may be transferred as part of that transaction. We will notify affected individuals as required by law.

Any third party receiving your data is required to handle it in a manner consistent with this policy and applicable law.

7. How Long We Keep Your Data

We retain personal data only for as long as necessary to fulfil the purpose for which it was collected, after which it is securely deleted or anonymised. In general:

• Enquiry correspondence — retained for up to three (3) years from the date of the last interaction, unless a longer period is required to fulfil a contractual or legal obligation.
• Web server logs — retained for up to ninety (90) days for security and operational purposes, then deleted.
• Cookie data — as described in Section 9.

Where we are required to retain records by Malaysian law (e.g., the Companies Act 2016 or tax regulations), we will retain them for the period required by that law.

8. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include:

• HTTPS encryption for all pages on this website;
• Access controls limiting who within Stronium can access personal data;
• Regular review of our data collection, storage, and processing practices.

No method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security. In the event of a data breach that is likely to adversely affect your rights, we will notify you and the relevant authorities as required by applicable law.

9. Cookies & Tracking

A cookie is a small text file placed on your device by a website to remember preferences or track usage. This website currently uses only essential technical cookies necessary for the website to function correctly (e.g., session management). We do not use advertising or cross-site tracking cookies.

Web server logs automatically record your IP address and browser information each time you visit a page. This information is used solely for security monitoring and aggregate statistical analysis and is not linked to personal identities.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, some features of the site may not function as intended.

If we introduce third-party analytics or advertising cookies in the future, this policy will be updated and you will be given the opportunity to consent before such cookies are placed.

10. Third-Party Links

This website may contain links to third-party websites. We are not responsible for the privacy practices of those sites. We encourage you to read the privacy policy of any website you visit. A link from our website does not constitute an endorsement of that site's privacy practices.

11. Children

This website is not directed at children under the age of 18. We do not knowingly collect personal data from anyone under 18. If you believe we have inadvertently collected data from a minor, please contact us immediately using the details in Section 14 and we will delete it promptly.

12. Your Rights

Under the Personal Data Protection Act 2010 (Malaysia), you have the following rights regarding your personal data held by us:

• Right of access — you may request a copy of the personal data we hold about you.
• Right of correction — you may request that inaccurate or incomplete personal data be corrected.
• Right to withdraw consent — where processing is based on your consent (e.g., marketing communications), you may withdraw consent at any time. Withdrawal does not affect the lawfulness of processing before withdrawal.
• Right to limit processing — you may request that we cease or restrict processing of your data for direct marketing purposes.

To exercise any of these rights, please contact us using the details in Section 14. We will respond within 21 days of receiving a verifiable request, as required by the PDPA 2010. We may ask you to verify your identity before processing your request. There is no fee for a reasonable access or correction request.

If you are not satisfied with our response, you have the right to lodge a complaint with the Department of Personal Data Protection Malaysia (www.pdp.gov.my).

13. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date at the top of this page. For material changes, we will take reasonable steps to notify you (for example, by placing a prominent notice on the website). We encourage you to review this page periodically.

Your continued use of this website after a change to this policy constitutes your acceptance of the updated policy.

14. Contact & Data Subject Requests

For any questions, concerns, or requests relating to this Privacy Policy or your personal data, please contact us:

Stronium Sdn Bhd (672190-H)
E-13A-13 Plaza Mont Kiara, 2 Jalan Kiara
Mont Kiara, 50480 Kuala Lumpur, Malaysia
Email: support@stronium.com
Tel: +60 3 6411 6068

Please mark any data subject request clearly as “Personal Data Request — PDPA 2010” to ensure it is directed to the right person promptly.