Privacy Policy
Last Updated: 12 May 2025 | Effective Date: 12 May 2025
This policy explains how Pellucid Owl Sdn Bhd ("Pellucid Owl", "we", "us", "our") collects, uses, and protects personal data. It applies to our website at pelluci.blog and to all services we provide. We operate in compliance with Malaysia's Personal Data Protection Act 2010 (PDPA).
1. Data We Collect
We collect personal data through the following means:
- Contact forms: Name, email address, and optionally phone number and message content when you submit an enquiry.
- Service delivery: Customer feedback data you provide for analysis (which may contain personal information belonging to your customers).
- Website analytics: Usage data including pages visited, device type, browser, and approximate location (via analytics cookies where consent is given).
- Communications: Email correspondence and any information you share directly with our team.
Legal basis: We process personal data on the basis of your consent (for marketing and analytics), contractual necessity (for service delivery), and legitimate interests (for improving our services and responding to enquiries).
Retention: Contact form data is retained for up to 24 months. Client feedback data submitted for analysis is deleted within 30 days of project completion unless a longer period is agreed in writing. Analytics data is retained for up to 14 months.
2. How We Use Your Data
- Responding to enquiries submitted through our contact form
- Delivering the feedback analysis services you have commissioned
- Sending service-related communications (project updates, report delivery, session scheduling)
- Improving our website and services based on aggregated usage patterns
- Meeting legal and regulatory obligations under Malaysian law
We do not sell or rent personal data to third parties. We do not send marketing emails without explicit consent.
3. Data Sharing
We may share personal data with the following categories of third parties:
- Hosting and infrastructure providers: For website operation and secure data storage.
- Analytics providers: For website usage analysis (only where cookie consent is granted).
- Professional advisors: Legal and accounting professionals where required.
- Regulatory authorities: Where required by law or court order.
All third-party service providers we engage are required to handle personal data in a manner consistent with applicable data protection law.
4. Data Protection Measures
- Data transmitted via our website is encrypted using TLS (HTTPS).
- Access to personal data is restricted to staff members who require it for their role.
- Client feedback data is stored in access-controlled environments and deleted on project completion.
- We conduct internal reviews of data handling practices periodically.
- In the event of a data breach involving personal data, we will notify affected parties and relevant authorities in accordance with PDPA 2010 requirements.
5. Cookies
Our website uses cookies for essential functionality, analytics, and preference storage. Essential cookies cannot be disabled as they are necessary for the website to operate. Analytics and marketing cookies are only placed with your consent.
For full details on cookies we use and how to manage your preferences, please see our Cookie Policy.
6. Your Rights
Under Malaysia's Personal Data Protection Act 2010, you have the following rights regarding your personal data:
- Right to access: Request a copy of the personal data we hold about you.
- Right to correction: Request correction of inaccurate or incomplete personal data.
- Right to withdraw consent: Withdraw consent for processing where consent was the legal basis, without affecting the lawfulness of prior processing.
- Right to limit processing: Request that we cease processing your data for certain purposes.
- Right to lodge a complaint: You may raise a complaint with the Department of Personal Data Protection Malaysia (JPDP) if you believe your data has been handled in breach of PDPA 2010.
To exercise any of these rights, contact us at [email protected]. We will respond within 21 days.
7. Third-Party Links
Our website may contain links to external websites. We are not responsible for the privacy practices or content of those sites. We encourage you to review the privacy policies of any external sites you visit.
8. Children's Privacy
Our services are intended for business users aged 18 and above. We do not knowingly collect personal data from individuals under 18. If you believe a minor has submitted personal data to us, please contact us at [email protected] and we will take appropriate steps to remove it.
9. Policy Updates
We may update this policy from time to time. Changes will be published on this page with a revised "Last Updated" date. For material changes, we will notify active clients directly. Continued use of our website after any update constitutes acceptance of the revised policy.
10. Contact for Data Enquiries
For any questions about this policy or your personal data, please contact: