1. Introduction
Appewise Sdn Bhd (Company No. 1231972-D) (“Appewise”, “we”, “our” or “us”) respects your privacy and is committed to protecting the personal information you provide when you use our application (the “Application”). This Privacy Policy sets out how we collect, use, store (or not store) and protect your personal data in compliance with the Personal Data Protection Act 2010 (“PDPA”) in Malaysia.

By registering with or using the Application, you accept and consent to the practices described in this Privacy Policy.

2. Scope and Applicability
This policy applies to all users of the Application, whether you are registering, using it temporarily, or engaging in transactions. It covers two possible modes of operation:

  • Mode A: We collect and store certain personal data for service provision (storage mode).

  • Mode B: We do not collect or retain personal data (no-storage mode).
    In cases where Mode A applies, the storage, use and protection sections below apply. In Mode B, the “No Data Stored” sections apply instead.

3. Types of Information Collected (Mode A – Storage)
When operating in storage mode, we may collect the following types of personal data:

  • Identification information: full name, date of birth, NRIC/passport number or other government ID, gender, nationality.

  • Contact information: address (home and/or business), telephone number(s) (mobile, fixed, office), fax, e-mail address.

  • Device and system information: IP address, operating system, hardware device type, browser type, platform, timestamps (date/time of use), duration of usage of the Application.

  • Service usage information: the status of services subscribed by you, preferences and interests, how you use the Application.

  • Transaction and subscription information: what you’ve purchased or subscribed to via the Application (note: payment card/bank account details are not collected by us; such payment information is handled by third-party payment gateways).

  • Optional supporting documents: in certain cases, we may require supporting documentation such as utility bills (indicating full name/address) for verification purposes.

4. No Data Stored (Mode B)
If we operate in the no-data-stored mode, we do not collect or store any of the personal identifiers listed above. We may collect only minimal technical or session data (such as device type, browser version, session duration) which cannot be used to identify you personally, solely for the purpose of ensuring the Application functions correctly. This data is erased immediately after your session ends or no later than the shortest period required for functionality.

5. Payment Processing
In either mode, payments made via the Application are processed by authorised third-party payment gateway providers. We do not directly collect or store your credit card or bank account information. Any such details are handled by the payment gateway and subject to its own privacy and security practices.

6. How We Use Your Data (Mode A)
When operating in storage mode, we may use your personal data for the following purposes:

  • To verify your identity, register your account and fulfil your requests for products/services.

  • To administer and manage your account, including charging/billing, facilitating payments, tracking service status.

  • To communicate with you regarding the Application, service updates, support queries, notifications or changes in features.

  • To monitor and improve our products/services, including analysing usage, conducting quality assurance, system upgrades and staff training.

  • To detect, prevent and investigate fraudulent or illegal activity.

  • To comply with laws, regulations or legal processes, and to defend or respond to claims against us.

  • To conduct marketing activities or research (subject to your consent where required by law).

7. Data Storage, Retention & Security (Mode A)

  • Your personal data is stored in our systems or via our authorised service providers in secure environments.

  • We retain data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law or regulatory obligations, after which data will be securely disposed of or anonymised.

  • We implement appropriate technical and organisational security measures, including but not limited to: encryption of data in transit and at rest, access controls (role-based access), multi-factor authentication for internal systems, audit logging, backups, regular vulnerability assessments and staff confidentiality obligations.

  • We do not sell or rent your personal data to third parties. Disclosure only occurs in limited circumstances as described below.

8. Use of Minimal Technical Data (Mode B)
If we are operating in no-data-stored mode, the minimal session or device-type data collected is used purely to improve performance or troubleshoot the Application. We do not link this minimal data to your identity, and it does not constitute personal data under PDPA.

9. Disclosure of Your Personal Information (Mode A)
We may disclose your personal data only under the following circumstances:

  • To law enforcement agencies, government or regulatory bodies where required by law or legal process.

  • To our agents, contractors, service providers or professional advisers who assist us in providing the Application, subject to confidentiality agreements and ensuring that they only use the data for the purposes we specify.

  • With your explicit consent.

  • To other parties only if you have requested or authorised us to do so, or in connection with fraud prevention, system security or other cases where disclosure is lawful and necessary.
    In the no-data-stored mode (Mode B), such disclosures do not apply because we retain no personal data.

10. Your Obligations
You confirm that the information you provide is accurate and complete, and you agree to update us when the information becomes incorrect or out of date (if in storage mode). If you provide personal data of other individuals (for example family members, business partners), you warrant that you have obtained their consent and have informed them of this Privacy Policy.

11. Your Rights
You have rights under the PDPA including:

  • The right to request access to your personal data held by us.

  • The right to correct or update your data.

  • The right to withdraw your consent (where applicable) or request deletion of your data (subject to legal obligations).
    To exercise these rights, please contact us via our Feedback/Contact channel, quoting your User ID (where applicable), full name, email address, contact number and specifying your request. We will respond within 21 days of receiving your request. We may charge a reasonable processing fee to recover administrative costs.

12. Changes to the Policy
We reserve the right to update or amend this Privacy Policy from time to time (e.g., due to changes in legislation or enhancements in our services). The most recent version will be made available on our website or via the Application. By continuing to use the Application after such changes are posted, you accept and consent to the revised Policy.

13. Contact Details
If you have any questions, concerns or complaints about this Privacy Policy or how we handle your personal data, please contact us at:
Appewise Sdn Bhd (Company No. 1231972-D)
Website/Contact link: https://appewise.com/contact.html