Ariz Global — Training and Consulting

PRIVACY

Privacy Notice

This notice explains how Ariz Global Training and Consulting processes your personal data in accordance with Malaysia's Personal Data Protection Act 2010 (PDPA), as amended.

1. Data we collect

Account details (name, email, phone), your placement and assessment results, course enrolments and progress, attendance, payment records (gateway transaction references — we never store full card numbers), messages, and certificates you earn.

2. How we use it

To provide the learning platform: placement and recommendations, course access, live classes and attendance, assessments and grading, payments and receipts, certification, and to contact you about your account. Marketing messages are sent only with your consent, which you can withdraw at any time.

3. Legal basis & consent

We process service-essential data on the basis of performing our contract with you and your consent, recorded at sign-up. You may manage or withdraw optional (e.g. marketing) consent in Settings.

4. Sharing & processors

We use trusted processors strictly to operate the service: Supabase (hosting/database), the payment gateway (Razorpay Curlec, for FPX/DuitNow/e-wallet/card processing), Zoom (live classes), and email/WhatsApp providers for notifications. We do not sell your personal data.

5. Data retention & residency

We keep personal data only as long as necessary for the purposes above or as required by law (for example, financial records for tax compliance). Data is hosted in a Southeast-Asia region.

6. Your rights

You may access and export your data, request correction, withdraw consent, and request erasure. Use the tools in Settings (Download my data, manage consent, request deletion). Erasure requests are reviewed by an administrator; records we are legally required to keep are retained.

7. Security & breach handling

Access is governed by row-level security and role-based controls; administrators use two-factor authentication. Sensitive actions are recorded in an audit log. In the event of a personal-data breach, we will assess and notify affected individuals and authorities as required by the PDPA.

8. Contact

For privacy questions or to exercise your rights, contact us through the details on arizglobal.my.