Privacy Policy

The data controller responsible for your personal information is:

We may collect the following categories of personal data:

• Contact & Identification Data: Full name, company name, job title, email address, phone number — provided when you complete our contact form, request a consultation, or correspond with us.
• Business Information: Nature of your business, industry, project requirements, and operational details shared during enquiries or service engagements.
• Technical Data: IP address, browser type and version, time zone, device type, operating system, and page interaction data collected automatically via server logs and cookies.
• Communication Records: Records of email, phone, and WhatsApp communications you initiate with us.

We do not collect sensitive personal data (as defined under the PDPA) unless specifically required for a contracted engagement and with your explicit consent.

We use your personal data for the following purposes:

• To respond to enquiries and provide requested information about our services
• To prepare proposals, quotations, and project scopes
• To deliver contracted IT services, software development, or infrastructure projects
• To send service-related communications (project updates, support notifications)
• To improve and maintain our website and digital presence
• To comply with legal obligations under Malaysian law
• To conduct internal analysis and improve business operations

We will not use your data for unsolicited marketing without your prior consent.

We process your personal data on the following legal grounds:

• Consent — where you have submitted a form or opted in to communications
• Contractual necessity — to fulfil obligations under a signed service agreement
• Legitimate interests — to respond to business enquiries and improve our services
• Legal compliance — where required by Malaysian law or regulatory authority

We do not sell, trade, or rent your personal data to third parties. We may share information with:

• Trusted service providers — cloud hosting, email delivery, and analytics vendors operating under confidentiality agreements
• Project subcontractors — only where necessary for service delivery and bound by equivalent data protection obligations
• Regulatory authorities — where required by law, court order, or government directive

All third-party processors are contractually required to handle personal data in compliance with the PDPA 2010.

We retain personal data only as long as necessary for the purpose it was collected:

• Enquiry and pre-sales data: up to 24 months from last contact
• Active client records: duration of engagement plus 7 years (in compliance with Malaysian company records requirements)
• Website analytics: up to 26 months

Upon expiry, data is securely deleted or anonymised.

Our website uses cookies to improve your browsing experience. Cookie types we may use include:

• Strictly necessary cookies — required for the website to function
• Analytics cookies — to understand how visitors interact with our site (e.g. Google Analytics)
• Preference cookies — to remember settings or language preferences

You may disable cookies through your browser settings; however, some features of the website may not function correctly as a result.

As a data subject under the PDPA 2010, you have the right to:

• Request access to personal data we hold about you
• Request correction of inaccurate or incomplete data
• Withdraw consent to processing (subject to legal constraints)
• Request the cessation of processing that is causing or likely to cause damage or distress
• Lodge a complaint with the Personal Data Protection Commissioner of Malaysia

To exercise any of these rights, contact us at hello@wimsolution.com. We will respond within 21 days.

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include encrypted data transmission (TLS/HTTPS), access controls, and regular security reviews. For full details, see our Security Standards.

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those sites. We recommend reviewing their respective privacy policies before providing any personal data.

We may update this Privacy Policy from time to time to reflect changes in law, technology, or business practice. The revised policy will be posted on this page with an updated effective date. Continued use of our website following such changes constitutes acceptance of the revised policy.

For any questions, requests, or concerns about this Privacy Policy or our data handling practices, please contact our Data Protection Officer: