Privacy Policy
Last revised: 12 May 2026
Fernpoint Digital Sdn Bhd (Company Reg. No. 202301042817 (1528466-M)), of Level 16, Menara Hap Seng 2, Plaza Hap Seng, Jalan P. Ramlee, 50250 Kuala Lumpur, Malaysia ("Fernpoint", "we", "us"), operates the website fernpoint.help. This policy explains what personal data we collect, why we collect it, and the choices you have. We process personal data in accordance with the Personal Data Protection Act 2010 of Malaysia ("PDPA").
1. Data we collect
We keep collection deliberately minimal:
- Information you send us. When you submit our contact form, we receive the name, company, email address, phone number and project description you choose to provide.
- Correspondence. If you email or call us, we retain that correspondence and any details it contains.
- Technical data. Our hosting infrastructure records standard server logs — IP address, browser type, pages requested and timestamps — used for security and capacity planning.
- Cookie data. Subject to your consent choices, limited analytics data as described in our Cookie Policy.
We do not collect sensitive personal data, and we ask that you do not include such data in project briefs.
2. Why we process it
We use personal data to respond to enquiries, prepare proposals, perform contracts with clients, maintain our accounts as required by Malaysian law, secure our systems against abuse, and — only where you have consented — understand aggregate website usage.
3. Legal basis and consent
Where processing is not necessary for a contract or legal obligation, we rely on your consent, which you may withdraw at any time by writing to [email protected]. Withdrawal does not affect processing that took place beforehand.
4. Sharing and disclosure
We do not sell, rent or trade personal data. Data may be shared only with: service providers who host our infrastructure or email (bound by confidentiality obligations); professional advisers where genuinely required; and authorities where disclosure is required by Malaysian law. Some providers may store data outside Malaysia; where they do, we require protections consistent with the PDPA.
5. Retention
Enquiry data is kept for up to 24 months after our last exchange, then deleted. Client records connected to contracts are retained for 7 years to satisfy tax and audit obligations. Server logs rotate automatically within 90 days.
6. Security
We apply access controls, encryption in transit, and the principle of least privilege across our systems. No internet transmission is perfectly secure, but we treat your data with the same care we apply to our own client work.
7. Your rights
Under the PDPA you may request access to the personal data we hold about you, request correction of inaccurate data, withdraw consent, and object to processing likely to cause damage or distress. Write to [email protected] or the postal address above; we respond within 21 days.
8. Third-party links
Our site may link to external websites. Their privacy practices are their own, and we encourage you to review their policies.
9. Changes to this policy
We revise this policy when our practices or the law change, and the revision date above is updated accordingly. Material changes will be flagged on this page for 30 days.
10. Contact
Questions about this policy or your data: [email protected] · +60 3-2181 7362 · Level 16, Menara Hap Seng 2, Plaza Hap Seng, Jalan P. Ramlee, 50250 Kuala Lumpur, Malaysia.