Saffronix Get in Touch
Legal

Privacy Policy

Last updated: 12 May 2025  ·  Saffronix Sdn Bhd  ·  Kuala Lumpur, Malaysia

Saffronix is committed to handling the personal data of our clients, website visitors, and enquirers with care and transparency. This policy explains what data we collect, why we collect it, how it is used, and what rights you have in relation to it. It applies to data collected through our website and in the course of delivering our F&B data insight services.

If you have any questions about this policy or how your data is handled, please contact us at [email protected].

1. Data We Collect

Information you provide directly

When you complete a contact form, send an email, or enquire about a service, we may collect your name, email address, phone number, and the content of your message. We collect only what you choose to provide.

Client outlet data

As part of delivering our services, clients submit sales records, POS exports, or stock data relating to their outlets. This data belongs to the client and is processed solely for the purposes of the agreed engagement. It is not retained beyond project completion.

Website usage data

We may collect anonymised data about how visitors use our website — pages visited, time on page, and similar — through analytics cookies, subject to your cookie preferences. No personally identifiable information is collected through analytics unless you provide it directly.

2. How We Use Your Data

  • To respond to your enquiries and discuss service options
  • To deliver the data insight service you have engaged us for
  • To communicate project updates, deliverables, and follow-up during the engagement
  • To understand how our website is used and improve its content (analytics, where consented)
  • To meet our legal and regulatory obligations under Malaysian law

We do not use your personal data for automated decision-making or profiling. We do not send unsolicited marketing communications. The legal basis for processing is consent (where you submit a form) or legitimate interest (where we communicate as part of an agreed engagement).

3. Data Sharing

We do not sell personal data. We do not share personal data with third parties for marketing purposes. Data may be shared in the following limited circumstances:

  • Service delivery: Members of the Saffronix team who require access to complete your engagement.
  • Legal requirement: Where we are required to disclose information by Malaysian law or a valid legal order.
  • Analytics providers: Anonymised website usage data may be processed by third-party analytics tools, subject to your cookie consent.

Client outlet data (sales records, POS exports) is never shared outside the Saffronix team involved in your engagement, and is deleted after project close.

4. Data Retention

Contact enquiry data is retained for up to 12 months after the last communication, after which it is deleted. Client outlet data (submitted as part of a service engagement) is deleted within 30 days of project completion unless you have agreed to a different arrangement in writing. Website analytics data is retained in anonymised form for up to 26 months.

5. Data Security

We take reasonable steps to protect personal data from unauthorised access, loss, or misuse. These include:

  • Access to client data is limited to team members directly involved in the engagement
  • Files shared with us are stored in password-protected environments during the project
  • Client data is deleted promptly after project close
  • In the event of a data breach affecting your information, we will notify you without undue delay

6. Cookies

Our website uses cookies to support basic site functionality and, where consented, to understand how the site is used. Essential cookies are necessary for the site to work and cannot be declined. Optional cookies (analytics, preferences) are only placed with your consent. You can review and change your cookie preferences at any time via our Cookie Policy page.

7. Your Rights

Under the Personal Data Protection Act 2010 (PDPA) of Malaysia, you have the following rights in relation to personal data we hold about you:

  • Right of access: You may request a copy of the personal data we hold about you.
  • Right to correction: You may ask us to correct inaccurate or incomplete data.
  • Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time.
  • Right to object: You may object to processing based on legitimate interest where it conflicts with your interests.
  • Right to erasure: You may request deletion of your data where there is no longer a lawful basis for retention.

To exercise any of these rights, contact us at [email protected]. We will respond within 21 days. You may also raise concerns with the Department of Personal Data Protection (JPDP) of Malaysia.

8. Third-Party Links

Our website may contain links to external sites. We are not responsible for the privacy practices of those sites and recommend reviewing their policies separately.

9. Children's Privacy

Our services are directed at business operators and professionals. We do not knowingly collect personal data from individuals under 18 years of age. If you believe we have received data from a minor, please contact us so we can delete it promptly.

10. Policy Updates

We may update this policy from time to time. The date at the top of this page reflects when it was last revised. Continued use of our website or services after changes are posted constitutes acceptance of the updated policy.

Contact — Data Enquiries

For any questions about this policy or how your data is handled, reach us through the following:

[email protected]
+60 3-2095 7264
Unit 7-3, Plaza Damansara, Jalan Medan Setia 1, 50490 Kuala Lumpur, Malaysia