Privacy Policy

1. Introduction

Provexa ("we", "us", "our") is committed to protecting the personal data of individuals who interact with our services and website. This Privacy Policy explains what personal data we collect, how we use it, and what rights you have in relation to it.

This Policy applies to all personal data collected through our website at provexax.pro and through our service engagements. It is effective from the date shown above.

Questions about this Policy or our data practices may be directed to: [email protected]

2. Data We Collect

2.1 Information You Provide

We collect personal data that you provide directly when you:

• Submit an enquiry or contact form on our website (name, email address, phone number, and message content)
• Enter into an engagement with us (business details, identification information, and matter-related documentation)
• Correspond with us by email or telephone

2.2 Information Collected Automatically

When you visit our website, we may collect certain technical data automatically, including your IP address, browser type, pages visited, and session duration. This data is used for site performance and security purposes.

2.3 Cookies

We use cookies to support site functionality and understand how visitors use our site. For full details, please see our Cookie Policy.

3. Legal Basis for Processing

We process personal data on the following bases under applicable Malaysian law, including the Personal Data Protection Act 2010 (PDPA):

• Consent — where you have provided your agreement to receive communications or to use cookies
• Contractual necessity — where processing is required to perform a legal services engagement you have entered into with us
• Legitimate interest — for business enquiry management, site security, and internal record-keeping
• Legal obligation — where we are required to retain or process information under Malaysian law

4. How We Use Your Data

We use personal data we hold for the following purposes:

• Responding to enquiries submitted via our contact form
• Providing and managing legal services agreed under a client engagement
• Conflict-checking procedures required by professional conduct rules
• Maintaining records required by Malaysian Bar obligations and applicable law
• Improving the performance and security of our website
• Sending service-related communications where you are a client

We do not use personal data for unsolicited marketing purposes.

5. Data Retention

Personal data collected through website enquiries is retained for up to 24 months from the date of collection unless an engagement is entered into, in which case the relevant matter file is retained in accordance with professional record-keeping obligations — typically seven years from matter close.

Website analytics data is retained for no longer than 26 months in aggregate form.

6. Data Sharing

We do not sell personal data. We may share personal data in the following circumstances:

• With service providers that support our website and operations (for example, analytics providers and hosting services), bound by appropriate data processing agreements
• With courts, regulators, or legal authorities where we are required to do so by law or professional obligation
• With third parties involved in a matter where you have provided explicit consent for us to do so

7. Data Protection Measures

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, or disclosure. These include access controls to client matter files, secure communication channels, and staff awareness of data handling obligations under the PDPA 2010.

In the event of a personal data breach that may affect your rights, we will notify affected individuals in accordance with our obligations under applicable law.

8. Cookies

Our site uses essential cookies required for basic functionality, as well as optional cookies for analytics and preference storage. You can manage your cookie preferences at any time via our Cookie Policy page.

9. Your Rights

Under the Personal Data Protection Act 2010 (Malaysia) and applicable law, you have the following rights in relation to personal data we hold about you:

• Right of access — to request a copy of the personal data we hold about you
• Right to correction — to request that inaccurate or incomplete data be updated
• Right to withdraw consent — where processing is based on your consent, you may withdraw it at any time without affecting prior processing
• Right to limit processing — in certain circumstances, to request restriction of how we use your data
• Right to data portability — to receive your data in a structured, commonly used format where applicable

To exercise any of these rights, please contact us at: [email protected]

You also have the right to lodge a complaint with the Personal Data Protection Commissioner of Malaysia if you believe your data rights have not been respected.

10. Third-Party Links

Our website may contain links to external sites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies separately.

11. Children

Our services are intended for use by businesses and individuals aged 18 and above. We do not knowingly collect personal data from individuals under 18. If we become aware that personal data has been collected from a minor, we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Where changes are material, we will display the updated version on this page with a revised "Last Updated" date. Continued use of our website following such changes constitutes acceptance of the updated Policy.

13. Contact Information

For data protection enquiries or to exercise your rights:

• Email: [email protected]
• Address: 55 Jalan Ampang, 50450 Kuala Lumpur, Malaysia
• Phone: +60 3-4176 8293