Privacy Policy

Last updated: 5 January 2025

1. Who we are

Prezytion ("Prezytion", "we", "our", "us") is a digital advisory and training company operating remotely with a focus on Malaysia, Singapore and the United Kingdom.

For any questions about this privacy policy or how we handle your personal data, you can contact us via our website contact form at https://prezytion.com/contact.php

2. Scope and legal basis

This policy explains how we collect, use, disclose, and protect personal data when you visit our website, interact with our content, attend our events, or use our services.

We aim to comply with applicable data protection laws, including Malaysia's Personal Data Protection Act 2010 (PDPA), Singapore's Personal Data Protection Act 2012 (SG PDPA), and the UK General Data Protection Regulation (UK GDPR), where they apply to our activities.

3. Types of data we collect

We may collect and process the following categories of personal data:

Contact and identification data

Name, email address, phone number, organization, job title, country, and any information you voluntarily provide when you contact us, download content, or register for events.

Professional and engagement data

Information about your role, interests, areas of focus (e.g., FinOps, AI governance, cybersecurity) and your interactions with our training and advisory services.

Usage and analytics data

Information about how you use our website, such as pages viewed, links clicked, duration of visits, and referring websites, typically collected through cookies and similar technologies.

Technical data

IP address, browser type and version, device identifiers, operating system, and basic configuration information needed to deliver and secure our services.

4. How we collect your data

We collect personal data in the following ways:

Directly from you

When you fill in forms on our website, request information, register for webinars or training, download materials, or communicate with us by email or other channels.

Automatically

When you access our website, certain usage and technical data are collected automatically through cookies, logs, and similar technologies (see "Cookies and similar technologies" below).

From third parties

Where lawful, we may receive professional contact details from event partners, referral partners, or public professional platforms (such as business networking sites) in a strictly B2B context.

5. Why we use your data and our legal bases

We use your personal data for the purposes below. Where UK GDPR applies, the corresponding legal bases are indicated.

To respond to enquiries and provide services

Purpose: To respond to your questions, provide proposals, deliver training or advisory services, and manage our relationship with you or your organization.

Legal basis (UK): Performance of a contract or taking steps at your request prior to entering into a contract; legitimate interests in operating and growing our business.

To send relevant updates and marketing

Purpose: To send you insights, event invitations, and information about our services that may be relevant to your professional role and interests.

Legal basis (UK): Consent (where required) or legitimate interests in B2B relationship-building, always respecting your right to opt-out at any time.

To improve our website and services

Purpose: To understand how visitors interact with our website and content, to improve usability, and to prioritise topics that matter to our audience.

Legal basis (UK): Legitimate interests in maintaining and improving our services and online presence; where required for non-essential cookies, consent.

To protect our rights and comply with laws

Purpose: To prevent misuse of our website, secure our systems, respond to legal requests, and comply with record-keeping or regulatory obligations.

Legal basis (UK): Legal obligation; legitimate interests in protecting our business, users, and systems.

6. When we share your data

We do not sell your personal data.

We may share your data, to the extent necessary, with the following categories of recipients:

Service providers and processors

For example, hosting providers, email and CRM platforms, webinar tools, analytics providers, and professional advisors who assist us in delivering our services.

Business partners and event collaborators

Where you register for a joint event or initiative, we may share relevant registration information with the named partner, in line with what is described at the point of registration.

Authorities and legal recipients

Where we are required or permitted to do so by law, regulation, or court order, we may disclose data to regulatory or law enforcement authorities.

In each case, we require appropriate confidentiality and data protection commitments from our service providers and partners.

7. International data transfers

Given our remote operations and use of cloud-based tools, your personal data may be transferred to and processed in countries other than the one in which you are located.

Where required by law (for example under UK GDPR), we implement appropriate safeguards such as standard contractual clauses or rely on adequacy regulations to ensure an equivalent level of protection for your personal data.

8. Data retention

We retain personal data only for as long as reasonably necessary to fulfil the purposes described in this policy, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements.

As a general guideline (subject to legal requirements and operational needs):

  • Enquiry and contact form data: up to 24 months after our last meaningful interaction with you.
  • Client and training records: for the duration of the engagement and for up to 7 years afterward, in line with typical contractual and legal limitation periods.
  • Marketing contact details: until you opt out or we determine that the data are no longer accurate or relevant.

9. Your rights

Your rights depend on the laws that apply to you, but may include:

Right to access

To request confirmation as to whether we process your personal data and to receive a copy of that data, subject to lawful limitations.

Right to rectification

To request correction of inaccurate or incomplete personal data.

Right to erasure

To request deletion of your personal data, where there is no overriding legitimate reason for us to retain it.

Right to restriction and objection

To request that we restrict certain processing or to object to processing carried out under legitimate interests, including direct marketing.

Right to withdraw consent

Where we rely on consent, you may withdraw it at any time; this will not affect processing carried out before withdrawal.

Additional UK/EEA rights

If UK GDPR or EU GDPR applies to you, you may also have the right to data portability and to object to certain automated decision-making, where relevant.

To exercise your rights, please contact us using the details in section 1. We may need to request specific information to help us verify your identity and process your request securely.

You also have the right to lodge a complaint with a data protection authority, such as:

  • The Personal Data Protection Commissioner in Malaysia.
  • The Personal Data Protection Commission in Singapore.
  • The Information Commissioner's Office (ICO) in the United Kingdom.

10. Cookies and similar technologies

Our website uses cookies and similar technologies to:

  • Enable core site functionality and security.
  • Understand how visitors use our site and to improve content and navigation.

Where non-essential cookies (for example, analytics or marketing cookies) are used and consent is required by law, you will be given an opportunity to accept or reject them.

You can also control cookies through your browser settings; disabling some cookies may affect your experience of the site.

If you would like more detail about the specific cookies we use, their purpose, and duration, please refer to our cookie notice (if available) or contact us.

11. Data security

We implement appropriate technical and organisational measures designed to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.

These measures are proportionate to the risks posed by our processing and are reviewed periodically in light of evolving threats and best practices.

12. Third-party links

Our website may contain links to third-party websites or services that are not operated by us.

If you follow a link to any third-party site, their own privacy policies will govern their use of your data, and we are not responsible for their practices.

13. Changes to this policy

We may update this privacy policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors.

When we make material changes, we will update the "Last updated" date at the top of this page, and may also provide additional notice where required by law.