LEGAL
Privacy Policy
Last Updated: 10 June 2025 · Effective Date: 10 June 2025
1. Introduction
Cedar Ledger ("we", "us", "our") is committed to handling personal information with care. This Privacy Policy explains what personal data we collect through our website and services, how we use it, how we protect it, and what rights you have in relation to it.
Cedar Ledger is the data controller for personal data collected through this website. We are based at Level 6, Wisma Perkasa, Jalan Tun Razak, 25200 Kuantan, Pahang, Malaysia.
This policy applies to personal data collected via our website (https://cedarled.cyou) and through our enquiry and registration processes. If you have questions, contact us at [email protected].
2. Personal Data We Collect
We collect the following categories of personal data:
- Enquiry data: name, email address, telephone number (if provided), and any information included in the message field of the contact form.
- Session registration data: name, contact details, and programme-related information necessary to administer a session or programme booking.
- Technical data: IP address, browser type, device type, and pages visited, collected automatically by our hosting and analytics services.
- Cookie data: see Section 5 and the Cookie Policy for details.
Legal basis for processing: Enquiry and registration data is processed on the basis of your consent (submitting the form) and, where a programme has been booked, the performance of a contract. Technical data is processed on the basis of our legitimate interest in operating and improving the website. Cookie data is processed on the basis of your consent where required.
Retention: Enquiry data is retained for up to 12 months from the date of enquiry, or longer if it leads to a programme booking, in which case it is retained for the duration of the programme plus 36 months. Technical and analytics data is retained for up to 26 months.
3. How We Use Personal Data
- To respond to enquiries submitted through the contact form
- To administer programme enrolments and session bookings
- To send programme-related communications (materials, schedules, follow-up)
- To improve our website and services using aggregated analytics data
- To comply with legal obligations under Malaysian law
We do not use your personal data for marketing communications without explicit consent. We do not sell or share your personal data with third parties for their marketing purposes.
4. How We Protect Personal Data
We take reasonable technical and organisational measures to protect personal data against unauthorised access, disclosure, alteration and destruction. These include:
- HTTPS encryption for all website traffic
- Access controls limiting personal data access to authorised personnel
- Regular review of data handling practices
- In the event of a data breach affecting your personal data, we will notify you as required by applicable Malaysian law
5. Cookies
Our website uses cookies for essential site functions and, with your consent, for analytics purposes. Your cookie preferences are stored in your browser's local storage. For full details of the cookies we use and how to manage your preferences, see the Cookie Policy.
6. Your Rights
Under the Personal Data Protection Act 2010 (Malaysia) and applicable data protection principles, you have the following rights in relation to your personal data:
- Right of access: to request a copy of the personal data we hold about you
- Right of correction: to request that inaccurate data is corrected
- Right to limit processing: to request that we limit the use of your data in certain circumstances
- Right to withdraw consent: where processing is based on consent, you may withdraw it at any time
- Right to lodge a complaint: you may lodge a complaint with the Department of Personal Data Protection Malaysia (JPDP) if you believe your rights have been violated
To exercise any of these rights, contact us at [email protected]. We will respond within 21 days.
7. Third-Party Links
Our website may contain links to external websites, including referral resources for qualified professionals by category. We are not responsible for the privacy practices of those websites. We recommend reading the privacy policy of any site you visit via a link from our website.
8. Children's Privacy
Cedar Ledger's services are intended for adults aged 18 and over. We do not knowingly collect personal data from persons under 18. If you believe we have inadvertently collected such data, contact us at [email protected] and we will delete it promptly.
9. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the Last Updated date at the top of the document. Continued use of the website after the effective date of a revised policy constitutes acceptance of the changes. For significant changes, we will take reasonable steps to notify affected individuals directly.
10. Contact for Data-Related Enquiries
For all questions, requests or concerns relating to personal data and privacy, contact Cedar Ledger's data privacy contact at:
Cedar Ledger
Level 6, Wisma Perkasa, Jalan Tun Razak, 25200 Kuantan, Pahang, Malaysia
[email protected]+60 9 748 3162