Privacy Policy

1. Information We Collect

Dronify Malaysia collects various types of information to provide and improve our drone mapping services:

1.1 Personal Information

When you contact us or request services, we may collect:

• Name and contact details (email, phone number, address)
• Company name and job title
• Project requirements and specifications
• Payment information (processed securely through third-party providers)
• Communication preferences

1.2 Technical Information

We automatically collect certain information when you visit our website:

• IP address and location data
• Browser type and version
• Device information and operating system
• Website usage patterns and analytics
• Cookies and similar tracking technologies

1.3 Project Data

During service delivery, we may collect:

• Site location coordinates and boundaries
• Aerial imagery and survey data
• Environmental and infrastructure information
• Client-provided maps and documentation

2. How We Use Your Information

We use collected information for the following purposes:

2.1 Service Delivery

• Planning and executing drone mapping projects
• Processing and analyzing survey data
• Delivering project reports and deliverables
• Providing technical support and consultation

2.2 Business Operations

• Processing payments and managing accounts
• Communicating about projects and services
• Improving our services and website functionality
• Marketing relevant services (with your consent)
• Complying with legal and regulatory requirements

2.3 Analytics and Improvement

• Understanding website usage patterns
• Optimizing user experience
• Developing new services and features
• Performance monitoring and quality assurance

3. Data Protection and Security

We implement comprehensive security measures to protect your information:

3.1 Technical Safeguards

• SSL encryption for data transmission
• Secure data storage with access controls
• Regular security audits and updates
• Firewall protection and intrusion detection
• Encrypted backups and disaster recovery

3.2 Administrative Safeguards

• Access limited to authorized personnel only
• Staff training on data protection practices
• Confidentiality agreements with employees
• Regular privacy and security training

3.3 Physical Safeguards

• Secure facilities with restricted access
• Equipment protection and monitoring
• Secure disposal of physical documents
• Environmental controls for data centers

4. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your browsing experience:

4.1 Types of Cookies

• Essential Cookies: Required for website functionality
• Analytics Cookies: Help us understand website usage
• Marketing Cookies: Used for targeted advertising (with consent)
• Preference Cookies: Remember your settings and preferences

4.2 Cookie Management

You can control cookies through your browser settings. Note that disabling certain cookies may affect website functionality. We respect "Do Not Track" signals where technically feasible.

4.3 Third-Party Tracking

We may use third-party analytics services like Google Analytics to understand website usage. These services have their own privacy policies and data collection practices.

5. Information Sharing and Disclosure

We may share your information in the following circumstances:

5.1 Service Providers

• Cloud storage and hosting providers
• Payment processing companies
• Data processing and analytics services
• Professional advisors (lawyers, accountants)

5.2 Legal Requirements

• Compliance with court orders or legal processes
• Regulatory reporting requirements
• Protection of rights, property, or safety
• Investigation of fraud or security incidents

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, customer information may be transferred as part of the business transaction, subject to appropriate confidentiality protections.

6. Third-Party Services

Our services may integrate with or rely on third-party providers:

6.1 Cloud Services

• Amazon Web Services (AWS) for data storage
• Google Cloud Platform for data processing
• Microsoft Azure for backup and analytics

6.2 Software and Tools

• Mapping and GIS software providers
• Customer relationship management (CRM) systems
• Communication and collaboration platforms
• Project management and file sharing services

6.3 Third-Party Privacy

These third parties have their own privacy policies and data handling practices. We select providers with appropriate privacy and security standards and enter into data processing agreements where required.

7. Data Retention

We retain information for different periods based on the type of data and business needs:

7.1 Retention Periods

• Project Data: 7 years from project completion
• Financial Records: 7 years for tax and audit purposes
• Marketing Data: Until consent is withdrawn
• Website Analytics: 26 months (Google Analytics default)
• Email Communications: 3 years or as needed for business purposes

7.2 Data Disposal

When data is no longer needed, we securely delete or anonymize it using industry-standard methods to prevent unauthorized recovery.

8. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

8.1 Access and Portability

• Request access to personal information we hold
• Receive information in a portable format
• Obtain copies of data processing records

8.2 Correction and Update

• Request correction of inaccurate information
• Update your contact preferences
• Complete incomplete data records

8.3 Deletion and Restriction

• Request deletion of personal information (subject to legal obligations)
• Restrict processing for specific purposes
• Object to processing based on legitimate interests

8.4 Marketing Preferences

• Opt out of marketing communications at any time
• Update communication preferences
• Withdraw consent for data processing

9. International Data Transfers

As we operate in Malaysia and may use international service providers, your data may be transferred across borders:

9.1 Transfer Safeguards

• Adequate protection mechanisms for international transfers
• Standard contractual clauses with overseas providers
• Compliance with Malaysian Personal Data Protection Act
• Due diligence on data protection standards in destination countries

9.2 Data Localization

Where possible and practical, we store Malaysian client data within Malaysia or in jurisdictions with equivalent data protection standards.

10. Children's Privacy

Our services are designed for business and professional use. We do not knowingly collect personal information from children under 18 years of age. If you believe we have inadvertently collected such information, please contact us immediately for removal.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, or legal requirements:

11.1 Notification Process

• Updated policy posted on our website with new effective date
• Email notification for significant changes (where we have your email)
• Prominent notice on website for material changes
• Opportunity to review changes before continued service use

11.2 Consent to Changes

Continued use of our services after policy updates constitutes acceptance of the revised terms. If you disagree with changes, please contact us to discuss your concerns or discontinue service use.

12. Regulatory Compliance

We comply with applicable privacy and data protection laws, including:

12.1 Malaysian Laws

• Personal Data Protection Act 2010 (PDPA)
• Communications and Multimedia Act 1998
• Computer Crimes Act 1997

12.2 International Standards

• ISO 27001 information security standards
• Industry best practices for data protection
• Client-specific compliance requirements where applicable

13. Contact Information

For questions about this Privacy Policy or to exercise your privacy rights, please contact us: