Privacy Policy

Last updated: October 4, 2025

1. Introduction

Newy Enterprise ("we," "our," or "us") is committed to protecting your privacy in accordance with Malaysia's Personal Data Protection Act 2010 (PDPA). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with us in any way.

By using our services, you consent to the data practices described in this policy. If you do not agree with our policies and practices, please do not use our services.

2. Information We Collect

2.1 Personal Information

We may collect personal information that you voluntarily provide to us, including but not limited to:

  • Name, email address, phone number, and mailing address
  • Company name, job title, and business information
  • Payment and billing information
  • Communication preferences and marketing preferences
  • Information provided through contact forms, consultations, or support requests

2.2 Automatically Collected Information

When you visit our website, we automatically collect certain information, including:

  • IP address, browser type, and operating system
  • Pages visited, time spent on pages, and navigation patterns
  • Device information and unique device identifiers
  • Cookies and similar tracking technologies
  • Referral sources and search terms

2.3 Third-Party Information

We may receive information about you from third parties, such as business partners, service providers, and publicly available sources, to supplement the information we collect directly from you.

3. How We Use Your Information

We use the information we collect for various purposes in compliance with Malaysia's PDPA, including:

  • Providing and maintaining our digital services (website development, mobile apps, AI automation, digital marketing)
  • Processing transactions and managing payments
  • Communicating with you about our services and responding to inquiries
  • Sending marketing and promotional materials (only with your explicit consent)
  • Providing technical support and customer service
  • Improving our website and services based on user feedback
  • Analyzing usage patterns and trends for service enhancement
  • Preventing fraud and ensuring security of our systems
  • Complying with legal obligations under Malaysian law
  • Maintaining business records as required by Malaysian regulations

4. Information Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except in the following circumstances permitted under Malaysia's PDPA:

  • Service Providers: We may share information with trusted third-party service providers who assist us in operating our website, conducting business, or servicing you, subject to strict confidentiality agreements
  • Legal Requirements: We may disclose information if required by Malaysian law, court orders, or government authorities
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction, with prior notice to affected individuals
  • Protection of Rights: We may disclose information to protect our rights, property, or safety, or that of our users or others, as permitted by law
  • Explicit Consent: We may share information with your explicit written consent for specific purposes
  • Public Interest: We may disclose information when necessary for public interest, national security, or law enforcement purposes as permitted under Malaysian law

5. Data Security

We implement appropriate technical and organizational security measures in compliance with Malaysia's PDPA to protect your personal information against unauthorized access, alteration, disclosure, or destruction. Our security measures include:

  • SSL encryption for data transmission
  • Secure data storage with access controls
  • Regular security audits and updates
  • Employee training on data protection
  • Incident response procedures
  • Regular backup and recovery systems

However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security. We will notify you promptly of any data breaches as required by Malaysian law.

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. For detailed information about our use of cookies, please see our Cookie Policy.

7. Your Rights and Choices

Under Malaysia's Personal Data Protection Act 2010 (PDPA), you have the following rights regarding your personal information:

  • Right to Access: Request access to your personal information that we hold
  • Right to Correction: Request correction of inaccurate, incomplete, or outdated personal information
  • Right to Withdraw Consent: Withdraw your consent for the processing of your personal information at any time
  • Right to Prevent Processing: Request that we stop processing your personal information for direct marketing purposes
  • Right to Data Portability: Request a copy of your personal information in a structured, commonly used format
  • Right to Complain: Lodge a complaint with the Personal Data Protection Commissioner if you believe your rights have been violated

To exercise these rights, please contact us using the information provided below. We will respond to your request within 21 days as required by Malaysian law.

Note: We may charge a reasonable fee for processing your request, as permitted under the PDPA.

8. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, in compliance with Malaysia's PDPA. Our retention periods are as follows:

  • Customer Data: Retained for the duration of our business relationship plus 7 years for legal and tax compliance
  • Marketing Data: Retained until you withdraw consent or for 3 years of inactivity
  • Website Analytics: Retained for 26 months as per standard industry practice
  • Support Records: Retained for 3 years after case closure
  • Financial Records: Retained for 7 years as required by Malaysian tax law

When we no longer need your information, we will securely delete or anonymize it in accordance with PDPA requirements.

9. International Data Transfers

Your information may be transferred to and processed in countries other than Malaysia. We ensure that such transfers comply with Malaysia's PDPA and implement appropriate safeguards to protect your information, including:

  • Standard contractual clauses approved by the Personal Data Protection Commissioner
  • Adequacy decisions by the Commissioner for specific countries
  • Explicit consent from data subjects for specific transfers
  • Binding corporate rules for intra-group transfers

We will only transfer your personal data to countries that provide adequate protection or with appropriate safeguards in place.

10. Children's Privacy

Our services are not intended for children under the age of 13. We do not knowingly collect personal information from children under 13 without parental consent, as required by Malaysia's PDPA. If you believe we have collected information from a child under 13 without proper consent, please contact us immediately so we can take appropriate action.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

Your continued use of our services after any changes constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Newy Enterprise
Email: hello@newy.com.my
Phone: +60 11 2890 8472
Address: Bandar Baru Bangi, Selangor, Malaysia
Website: www.newy.com.my

13. Malaysian Personal Data Protection Act 2010 Compliance

This Privacy Policy is designed to comply with Malaysia's Personal Data Protection Act 2010 (PDPA). Our data processing activities are based on the following principles:

  • Consent: We obtain your explicit consent before processing your personal data
  • Purpose Limitation: We only process personal data for specified, explicit, and legitimate purposes
  • Data Minimization: We collect only the personal data that is necessary for our purposes
  • Accuracy: We take reasonable steps to ensure personal data is accurate and up-to-date
  • Security: We implement appropriate security measures to protect personal data
  • Transparency: We provide clear information about our data processing activities