NextSword Digital Logo

nextsworddigital

Privacy Policy

NextSword Digital Privacy & Data Protection

Last Updated: February 15, 2025

Our Commitment to Your Privacy

At NextSword Digital, we understand that when you're exploring AI integration for your business, you're sharing sensitive information about your operations, goals, and challenges. This isn't something we take lightly.

We've built our privacy practices around a simple principle: your data belongs to you. We're just the custodians, and we take that responsibility seriously. This policy explains exactly how we handle your information when you work with us or visit our website.

This policy complies with Malaysia's Personal Data Protection Act 2010 (PDPA) and international privacy standards. We're committed to transparency about our data practices because trust forms the foundation of every successful business relationship.

Information We Collect

The information we collect falls into several categories, each serving a specific purpose in delivering our AI integration services:

Business Contact Information

Names, email addresses, phone numbers, job titles, and company details you provide when reaching out to us or scheduling consultations.

Project Requirements

Details about your current business processes, AI integration goals, technical requirements, and operational challenges you share during consultations.

Website Analytics

Information about how you interact with our website, including pages visited, time spent, and general location data (city/region level only).

Communication Records

Content of emails, meeting notes, and project discussions necessary for delivering our services effectively and maintaining project continuity.

We don't collect personal information beyond what's necessary for our business relationship. We never track individual employees within your organization unless they're directly involved in our project communications.

How We Use Your Information

Every piece of information we collect serves a specific purpose in our relationship:

  • Service Delivery: Understanding your business needs to design effective AI integration solutions
  • Project Management: Coordinating implementation timelines, updates, and ongoing support
  • Communication: Keeping you informed about project progress and responding to your questions
  • Technical Support: Troubleshooting issues and providing system maintenance
  • Legal Compliance: Meeting contractual obligations and regulatory requirements
  • Business Operations: Invoicing, payment processing, and maintaining accurate business records

We don't use your information for marketing campaigns, selling to third parties, or any purpose not directly related to our service delivery. If we ever want to feature your success story as a case study, we'll ask for your explicit written permission first.

Your Rights Under Malaysia's PDPA

Malaysian privacy law gives you specific rights regarding your personal data. Here's what you can do and how to exercise these rights:

Access Your Data

Request a copy of all personal information we hold about you. We'll provide this within 21 days in a readable format.

Correct Inaccuracies

Ask us to update or correct any incorrect information. This is especially important for contact details and project requirements.

Limit Processing

Request that we stop using your data for specific purposes while still maintaining our service obligations to you.

Data Portability

Receive your data in a structured format that you can transfer to another service provider if needed.

Withdraw Consent

Remove your consent for data processing where we rely on consent (though this may affect our ability to provide services).

File Complaints

Lodge complaints with the Personal Data Protection Department if you believe we've mishandled your information.

To exercise any of these rights, simply email us at info@nextsworddigital.com with your request. We'll respond within 21 days and guide you through the process.

Data Security Measures

Protecting your information isn't just a legal requirement for us—it's fundamental to maintaining the trust you place in us when sharing your business details.

Technical Safeguards:

  • All data transmission uses SSL/TLS encryption
  • Database encryption for stored information
  • Regular security updates and vulnerability assessments
  • Multi-factor authentication for team access
  • Secure backup systems with encryption

Organizational Measures:

  • Staff training on data protection requirements
  • Access controls limiting who can view client information
  • Regular privacy impact assessments
  • Incident response procedures for potential breaches
  • Annual security audits by third-party specialists

If we ever experience a security incident that affects your data, we'll notify you within 72 hours and explain exactly what happened, what information was involved, and what steps we're taking to address the situation.

Data Sharing and Third Parties

We believe in keeping your information within our organization whenever possible. However, some business operations require working with trusted partners:

Service Providers We Work With:

  • Cloud hosting providers for secure data storage
  • Email service providers for business communications
  • Payment processors for invoicing and transactions
  • Legal advisors for contract and compliance matters

All third-party providers sign data processing agreements that require them to protect your information with the same standards we maintain. They can only use your data for the specific services they provide to us.

We Never Share Data For:

  • Marketing purposes by other companies
  • Sale to data brokers or lead generation services
  • Advertising networks or social media targeting
  • Any purpose unrelated to our direct service delivery

The only exception would be legal requirements—such as court orders or regulatory investigations—where we're legally compelled to disclose information. If this happens, we'll notify you unless legally prohibited from doing so.

Data Retention and Deletion

We don't keep your information indefinitely. Our retention practices balance your privacy rights with business and legal requirements:

Active Project Data: Maintained throughout our working relationship and for 12 months afterward to support any ongoing needs or questions.

Communication Records: Kept for 3 years to maintain project history and support potential future collaboration.

Financial Records: Retained for 7 years as required by Malaysian tax and business law.

Website Analytics: Anonymized after 24 months and permanently deleted after 5 years.

When data reaches its retention limit, we don't just delete files—we use secure deletion methods that make information unrecoverable. You can also request earlier deletion of information that's no longer needed for active service delivery.

If you decide to end our business relationship, we'll work with you to determine what information should be immediately deleted versus what needs to be retained for legal compliance.

International Data Transfers

As a Malaysia-based company, we primarily store and process your data within Malaysia or other countries with adequate data protection laws. However, some of our technology partners operate internationally:

When We Transfer Data:

  • Cloud storage with providers that maintain Asian data centers
  • Backup services that may replicate data across secure international locations
  • Communication tools for project collaboration

Any international transfers are protected by:

  • Standard contractual clauses approved by privacy authorities
  • Adequacy decisions recognizing strong privacy protections
  • Additional safeguards like encryption and access controls

If you have specific requirements about data location—perhaps due to your industry regulations—let us know during our initial discussions. We can work with you to structure our services accordingly.

Cookies and Website Technology

Our website uses standard web technologies to function properly and provide you with relevant information:

Essential Cookies: Required for basic website functionality, including security features and contact form operations.

Analytics Cookies: Help us understand which content is most valuable to visitors so we can improve our resources and information.

Preference Cookies: Remember your choices about language settings or accessibility features.

We don't use advertising cookies, social media tracking pixels, or other invasive tracking technologies. Your browser settings can control cookie acceptance, though some website features may not work properly if essential cookies are disabled.

Our analytics are configured to respect privacy—we can't identify individual visitors, only general patterns about how people use our site to find information about AI integration services.

Privacy Questions and Concerns

We understand that privacy policies can feel overwhelming. If you have questions about how we handle your information, or if you want to exercise any of your privacy rights, we're here to help.

Privacy Officer
info@nextsworddigital.com
Phone
+60380790888
Office Address
No 121-1st Floor, JALAN PUSAT KOMERSIAL SAUJANA 3 PUSAT KOMERSIAL SAUJANA, 2 HEIGHTS, 70300 Seremban, Negeri Sembilan, Malaysia

We commit to responding to all privacy inquiries within 21 days and working with you to address any concerns about our data practices.

This Privacy Policy is effective as of February 15, 2025, and reflects our current data handling practices and legal obligations.