Privacy Policy

Last Updated: February 2026

1. Introduction

This Privacy Policy sets out how QBYT SDN. BHD. ("we", "us", "our") collects, uses, stores, and protects your personal data in accordance with the Personal Data Protection Act 2010 (PDPA) of Malaysia and other applicable laws.

By using our website and services, you agree to be bound by this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our services.

2. About Us

QBYT SDN. BHD. is a technology company based in Sabah, Malaysia, specializing in:

  • Custom software development (ERPNext, Frappe, Laravel, Next.js)
  • IT consulting and digital transformation
  • Training and capacity building
  • Technical support and system maintenance

3. Personal Data

"Personal Data" refers to any information that relates directly or indirectly to an individual who can be identified from that information. This includes but is not limited to:

  • Name (as per identity card or passport)
  • Identity card (IC) or passport number
  • Contact information (phone number, email address, mailing address)
  • Date of birth, age, gender, nationality
  • Company name, designation, and occupation
  • Payment and billing information
  • IP address, browser type, and usage data
  • Any other information you provide to us

4. Your Consent

By providing your personal data to us, you consent to:

  • The collection, use, processing, storage, and disclosure of your personal data as described in this Privacy Policy
  • The transfer of your personal data to third-party service providers as necessary for our business operations

If you provide personal data of third parties to us, you warrant that you have obtained the required consent from those individuals for us to process their personal data.

5. Collection of Personal Data

We may collect your personal data when you:

  • Contact us through our website, email, or phone
  • Request a quote, consultation, or information about our services
  • Engage us for services (development, consulting, training, support)
  • Subscribe to our newsletter or blog updates
  • Attend our training programs, workshops, or events
  • Visit our website (through cookies and analytics)
  • Provide feedback, testimonials, or participate in surveys

6. Use of Personal Data

We may use your personal data for the following purposes:

  • To provide you with the services you have requested
  • To process and manage your inquiries, requests, and service agreements
  • To communicate with you regarding our services, updates, and relevant information
  • To send you newsletters, blog updates, and marketing materials (with your consent)
  • To process payments and manage billing
  • To improve our services and website user experience
  • To conduct market research, analytics, and business development
  • To comply with legal and regulatory requirements
  • To protect our rights, property, and legal interests
  • For any other purpose with your explicit consent

7. Disclosure of Personal Data

We may disclose your personal data to the following parties when necessary:

  • Service Providers: Third-party vendors who assist us in providing services (e.g., cloud hosting providers, payment gateways, email service providers)
  • Business Partners: Partners involved in delivering our services
  • Professional Advisors: Lawyers, accountants, auditors, and consultants
  • Government Authorities: Regulatory bodies, law enforcement agencies, or courts when required by law
  • Corporate Transactions: In the event of a merger, acquisition, or sale of business assets

We ensure that all third parties who receive your personal data are bound by confidentiality obligations and data protection requirements.

8. Security of Personal Data

We implement appropriate technical and organizational security measures to protect your personal data from:

  • Unauthorized access, use, or disclosure
  • Accidental loss, damage, or destruction
  • Unlawful processing

Our security measures include:

  • Secure data storage and encryption
  • Access controls and authentication
  • Regular security audits and updates
  • Employee training on data protection

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security.

9. Retention of Personal Data

We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

  • For the duration of our business relationship
  • As required by applicable laws and regulations
  • For legal, accounting, or reporting requirements
  • To resolve disputes and enforce our agreements

Once the retention period expires, we will securely delete or anonymize your personal data.

10. Your Rights

Under the Personal Data Protection Act 2010 (PDPA), you have the following rights:

10.1 Right to Access

You have the right to request access to your personal data held by us and information about how we process it.

10.2 Right to Correction

You have the right to request correction of any inaccurate, incomplete, or outdated personal data.

10.3 Right to Withdraw Consent

You may withdraw your consent for us to process your personal data at any time. However, this may affect our ability to provide certain services to you.

10.4 Right to Data Portability

You may request a copy of your personal data in a commonly used electronic format.

10.5 Right to Lodge a Complaint

If you believe we have not handled your personal data properly, you may lodge a complaint with the Personal Data Protection Commissioner of Malaysia.

11. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to:

  • Improve website functionality and user experience
  • Analyze website traffic and usage patterns
  • Provide personalized content and advertisements

You can control cookie settings through your browser. However, disabling cookies may affect your experience on our website.

12. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these external sites. We encourage you to review their privacy policies before providing any personal data.

13. International Data Transfers

Your personal data may be transferred to and stored in countries outside Malaysia for processing. We ensure that such transfers comply with applicable data protection laws and that adequate safeguards are in place.

14. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If you are a parent or guardian and believe your child has provided us with personal data, please contact us.

15. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. The "Last Updated" date at the top of this page indicates when the policy was last revised.

We encourage you to review this Privacy Policy periodically. Your continued use of our services after any changes constitutes your acceptance of the updated policy.

16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact us:

QBYT SDN. BHD.
Sabah, Malaysia
Email: privacy@qbyt.my
Website: Contact Form

17. Governing Law

This Privacy Policy is governed by the laws of Malaysia. Any disputes arising from this policy shall be subject to the exclusive jurisdiction of the Malaysian courts.

Note: This Privacy Policy complies with the Personal Data Protection Act 2010 (PDPA) of Malaysia and represents our commitment to protecting your privacy and personal data.