Privacy Policy — UPS Protection Sdn Bhd

Controller & Contact

UPS Protection Sdn Bhd is the data controller for personal information collected via this Site. If you have questions about this Privacy Policy, or wish to exercise your rights, please contact us at info@upsprotection.com.

1. Types of Personal Data We Collect

Identity & Contact: name, company, job title, email address, postal address, phone number.
Account & Transaction Data: quote requests, service inquiries, invoices and payment details, where applicable.
Technical & Usage Data: IP address, device identifiers, browser type, operating system, pages viewed and interaction data (logs), and cookies.
Marketing Data: preferences, opt-ins, communication history.
Other: any information you provide through contact forms, email or other communications.

2. How We Collect Your Data

We collect data directly from you when you provide it (e.g., by filling forms or contacting us), automatically via cookies and analytics when you visit our Site, and from third-party service providers where necessary (for example, payment processors or analytics platforms).

3. Purposes of Processing & Legal Basis

We process personal data for the following purposes and legal bases:

To provide services and respond to inquiries: performance of a contract or pre-contractual measures.
To operate and improve the Site: our legitimate business interests in maintaining and improving the Site.
To send marketing communications: with your consent where required or under legitimate interest with opt-out.
To comply with legal obligations: such as tax, accounting, and regulatory requirements.

4. Cookies & Tracking

We use cookies and similar technologies to provide essential site functionality, to measure and improve our Site (analytics), and for marketing purposes. You can set your browser to refuse cookies or to notify you when a cookie is set. Blocking certain cookies may affect Site functionality.

5. Third-Party Services & International Transfers

We use third-party service providers (such as hosting providers, analytics platforms, email and payment processors) who may process data on our behalf. Some of these providers may be located outside Malaysia. When we transfer personal data internationally, we take steps to ensure an adequate level of protection such as using standard contractual clauses or relying on lawful transfer mechanisms.

6. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, to comply with legal obligations, or to resolve disputes. Typical retention periods may be:

Contact and inquiry data: retained for up to 3 years after last contact.
Transactional and billing data: retained for the period required by law (usually 7 years for accounting).
Job application data: retained for up to 12 months unless otherwise agreed.

7. Your Rights

Subject to applicable law (including the PDPA), you have rights to access your personal data, request correction, object to or restrict processing, withdraw consent where consent was given, and request deletion. To exercise these rights, contact us at info@upsprotection.com. We may need to request proof of identity before fulfilling certain requests.

8. Security

We implement reasonable technical and organisational measures designed to protect personal data from accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access. These measures include access controls, encryption where appropriate, and regular security reviews. No transmission over the internet or electronic storage can be guaranteed completely secure.

9. Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to the rights and freedoms of individuals, we will notify affected individuals and relevant authorities in accordance with applicable law.

10. Automated Decision Making

We do not use automated decision-making (including profiling) that produces legal effects concerning you or similarly significantly affects you.

11. Children

Our Site is not intended for use by children under 18. We do not knowingly collect personal data from children; if we learn that we have collected such data we will take steps to delete it.

12. Changes to this Policy

We may update this Privacy Policy from time to time. Material changes will be posted on this page with a new effective date. We encourage you to review this policy periodically.

Contact & Complaints

If you have questions, requests or complaints about how we process personal data, please Contact us. You also have the right to lodge a complaint with the relevant data protection authority.

This policy is provided for general information only and does not constitute legal advice. For full legal compliance, consult a qualified lawyer.