Legal
Privacy Policy
Last Updated: 20 March 2025 | Riang Advisory
1. Introduction
Riang Advisory ("we", "us", "our") is committed to protecting the personal data of individuals who interact with our programmes, website, and communications. This Privacy Policy explains what data we collect, how we use it, and your rights under the Personal Data Protection Act 2010 (PDPA) of Malaysia.
If you have any questions about this policy, please contact us at privacy@{{DOMAIN}}.
2. Data We Collect
We collect personal data through direct interactions with you, including:
- Name and contact information (email address, phone number)
- Information submitted through our contact form or enquiry emails
- Financial information you share during programme sessions (kept strictly confidential)
- Website usage data collected through cookies and analytics tools
- Correspondence records (emails, call notes)
3. Legal Basis for Processing
We process your personal data on the following grounds:
- Consent: When you submit a contact form or enquire about our programmes
- Contractual necessity: To deliver programmes you have enrolled in
- Legitimate interest: To improve our services and respond to enquiries
- Legal compliance: Where required by Malaysian law
4. How We Use Your Data
- To respond to programme enquiries and provide information
- To deliver and administer the programmes you enrol in
- To send relevant communications about your programme or related offerings (with your consent)
- To improve the quality and content of our programmes
- To comply with our legal and regulatory obligations
We do not sell, rent, or trade your personal data to third parties. We do not share personal data with financial product providers or receive referral fees linked to participant data.
5. Data Retention
We retain personal contact information for up to three years following your last interaction with us. Financial information shared during sessions is retained only for the duration of the programme and any included follow-up period, after which it is securely deleted. You may request deletion at any time.
6. Data Protection Measures
- Participant session notes are stored on password-protected devices
- Email communications are encrypted in transit
- Access to personal data is restricted to programme staff with a direct need
- We do not store sensitive financial data in cloud services accessible outside the organisation
- In the event of a data breach, affected individuals will be notified promptly in accordance with PDPA requirements
7. Cookies
Our website uses cookies to understand how visitors engage with our content. For details on how we use cookies and how to manage your preferences, please see our Cookie Policy.
8. Third-Party Services
Our website may use the following third-party services which may process anonymised usage data:
- Google Analytics — website traffic analysis
- Google Maps — location display on our homepage (no personal data transmitted)
We do not use advertising networks or social media tracking pixels by default.
9. Your Rights Under PDPA (Malaysia)
Under the Personal Data Protection Act 2010, you have the right to:
- Access the personal data we hold about you
- Correct inaccurate or incomplete personal data
- Withdraw consent for data processing at any time
- Request that we stop processing your data for direct marketing
- Request deletion of your personal data (subject to legal retention requirements)
To exercise any of these rights, contact us at privacy@{{DOMAIN}}. We will respond within 21 days of your request.
10. Children's Privacy
Our programmes and services are designed for adults aged 18 and above. We do not knowingly collect personal data from individuals under 18 years of age.
11. Third-Party Links
Our website may contain links to external resources. We are not responsible for the privacy practices of those external sites and encourage you to review their privacy policies independently.
12. Changes to This Policy
We may update this Privacy Policy from time to time. The most recent version is always available on this page, with the date of last update shown at the top. Continued use of our services following a policy update constitutes acceptance of the revised policy.
13. Contact for Privacy Matters
Data Controller: Riang Advisory
Address: 5 Jalan Tanjung Tokong, 10470 Tanjung Tokong, Penang, Malaysia
Email: privacy@{{DOMAIN}}
Phone: +60 4-218 9364