Appcellen.
Talk to an expert

Privacy Policy

Privacy Policy

Last updated: 3 June 2026

1. Introduction

Appcellen Technologies Sdn. Bhd. ("Appcellen", "we", "us" or "our") respects your privacy and is committed to protecting personal data in accordance with the Personal Data Protection Act 2010 of Malaysia ("PDPA").

This Privacy Policy explains how we collect, use, disclose, store and safeguard personal data when you visit our website at https://www.appcellen.com, contact us, or otherwise interact with us in connection with our technology consulting, software development, cloud, AI and managed IT services.

By using our website or submitting your information to us, you acknowledge that you have read and understood this Privacy Policy. If you do not agree, please do not use our website or provide personal data to us.

2. Data controller

The data controller responsible for your personal data is:

Appcellen Technologies Sdn. Bhd.
BO1-A-9-08, Menara 2, KL Eco City, 3, Jln Bangsar, 59200 Kuala Lumpur WP, Malaysia
Email: [email protected]

For privacy-related enquiries, requests or complaints, please contact us using the details above. We will respond within a reasonable timeframe and in line with applicable law.

3. Personal data we collect

Depending on how you interact with us, we may collect the following categories of personal data:

  • Identity and contact data — name, job title, company name, email address, telephone number and mailing address.
  • Enquiry and communications data — information you provide when you complete our contact form, send us email, request a proposal, attend a meeting or otherwise communicate with us.
  • Business and project data — details about your organisation, industry, technology requirements, budget range or project scope that you choose to share during sales or discovery conversations.
  • Technical and usage data — IP address, browser type, device information, referring URLs, pages viewed, date and time of access, and similar analytics data collected through cookies or similar technologies.
  • Marketing preferences — your choices regarding newsletters, event invitations or other communications from us.

We do not intentionally collect sensitive personal data (such as health, biometric or religious information) through this website. Please do not submit such information unless we specifically request it and explain how it will be used.

4. How we collect personal data

We collect personal data through:

  • Direct interactions — when you fill in forms on our website, email us, call us, meet us at events or engage with our team.
  • Third-party form services — our contact form is powered by Smart Contact, which processes submissions on our behalf. Data you submit through the form is transmitted to us for the purpose of responding to your enquiry.
  • Automated technologies — cookies, server logs and analytics tools that operate when you browse our website.
  • Professional referrals — where a client, partner or vendor introduces you to us with your knowledge or consent.

5. Purposes and legal basis for processing

We use personal data for the following purposes:

  • To respond to enquiries, schedule consultations and provide information about our services.
  • To prepare proposals, statements of work, contracts and deliver professional services you request.
  • To manage client relationships, support, billing and account administration.
  • To operate, maintain, secure and improve our website and digital communications.
  • To send service-related notices, updates and — where permitted — marketing communications about Appcellen products, events or insights. You may opt out of marketing at any time.
  • To comply with legal, regulatory, tax and accounting obligations.
  • To establish, exercise or defend legal claims and protect our rights, property and security.

Under the PDPA, we process personal data based on your consent, where necessary to perform a contract with you, where required by law, or where processing is necessary for our legitimate business interests — provided those interests are not overridden by your rights.

6. Disclosure of personal data

We do not sell your personal data. We may share personal data with:

  • Service providers and subprocessors — hosting providers (including Cloudflare), email and communication tools, CRM systems, form providers, analytics vendors, cloud infrastructure partners and IT support providers who process data on our instructions and under appropriate confidentiality and security obligations.
  • Professional advisers — lawyers, accountants, auditors and insurers where reasonably necessary.
  • Business transfers — in connection with a merger, acquisition, restructuring or sale of assets, subject to appropriate safeguards.
  • Authorities — where required by applicable law, court order or governmental request.

Where personal data is transferred outside Malaysia, we take reasonable steps to ensure that recipients provide a standard of protection comparable to that required under the PDPA, including contractual safeguards where appropriate.

7. Cookies and similar technologies

Our website may use cookies and similar technologies to enable core functionality, remember preferences, measure traffic and improve user experience. Cookies are small text files stored on your device.

Types of cookies we may use include:

  • Strictly necessary cookies — required for the website to function.
  • Analytics cookies — help us understand how visitors use the site so we can improve content and performance.
  • Functional cookies — remember choices you make, such as language or form preferences.

You can control cookies through your browser settings. Disabling certain cookies may affect website functionality. Where required by law, we will obtain your consent before placing non-essential cookies.

8. Data retention

We retain personal data only for as long as necessary to fulfil the purposes described in this policy, unless a longer retention period is required or permitted by law.

Typical retention periods include:

  • Sales enquiries — up to 24 months from last contact, unless a business relationship is established.
  • Client and project records — for the duration of the engagement and thereafter as required for legal, tax, warranty and dispute-resolution purposes.
  • Website logs and analytics — generally up to 12 months, unless a security investigation requires longer retention.

When personal data is no longer needed, we securely delete or anonymise it.

9. Security

We implement appropriate technical and organisational measures designed to protect personal data against unauthorised access, alteration, disclosure, loss or destruction. These measures include access controls, encryption in transit where supported, secure hosting environments and staff confidentiality obligations.

No method of transmission over the internet or electronic storage is completely secure. While we strive to protect your personal data, we cannot guarantee absolute security.

10. Your rights under the PDPA

Subject to applicable law, you may have the right to:

  • Request access to personal data we hold about you.
  • Request correction of inaccurate or incomplete personal data.
  • Withdraw consent to processing where consent is the legal basis (without affecting the lawfulness of processing before withdrawal).
  • Request limitation of processing in certain circumstances.
  • Object to processing based on legitimate interests, where applicable.
  • Lodge a complaint with the relevant data protection authority in Malaysia.

To exercise any of these rights, contact us at [email protected]. We may need to verify your identity before responding. We will handle requests within the timeframes required by law.

11. Third-party websites

Our website may contain links to third-party websites, platforms or services (for example, client portals, partner tools or social media). We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies before providing personal data to them.

12. Children's privacy

Our website and services are directed at businesses and professionals. We do not knowingly collect personal data from individuals under 18 years of age. If you believe we have inadvertently collected such data, please contact us and we will take steps to delete it.

13. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements or business operations. The "Last updated" date at the top of this page indicates when the policy was last revised. Material changes will be posted on this page. We encourage you to review this policy periodically.

14. Contact us

If you have questions about this Privacy Policy or how we handle personal data, please contact:

Appcellen Technologies Sdn. Bhd.
BO1-A-9-08, Menara 2, KL Eco City, 3, Jln Bangsar, 59200 Kuala Lumpur WP, Malaysia
Email: [email protected]