If you have any questions or requests about this Privacy Policy or your personal data, please contact us at the email above.

This Privacy Policy applies to personal data processed by LyncLab in connection with:

• public-facing website interactions (marketing site),
• platform and dashboard usage,
• pilot/demo portal usage at app.lync-lab.com,
• customer/prospect engagement and support operations.

Our Services may be used by both business users and public/self-serve users.

Depending on your interaction with us, we may collect:

We collect personal data from:

1. Directly from you (forms, account registration, onboarding, support requests, correspondence)
2. Automatically (logs, telemetry, and future cookies/tracking technologies)
3. Business interactions (sales team interactions, partner referrals, and CRM workflows)
4. Service operations (billing records, platform activities, dashboard usage)

We process personal data for purposes including:

• operating, administering, and improving the Services;
• account creation, authentication, and user access control;
• service delivery, dashboard functionality, and pilot/demo access;
• handling enquiries, support tickets, and communications;
• sales and customer relationship management (including CRM workflows);
• newsletters and product/service updates (subject to applicable consent/preferences);
• billing, invoicing, and financial administration;
• analytics, monitoring, troubleshooting, and security operations;
• legal, regulatory, audit, and compliance obligations;
• establishing, exercising, or defending legal rights.

Depending on the context, we rely on one or more of the following legal bases:

• consent (e.g., newsletter/marketing where required),
• contractual necessity (e.g., providing requested services),
• legitimate interests (e.g., service security, product improvement, fraud prevention),
• legal obligation (e.g., recordkeeping, compliance, lawful requests).

We may disclose personal data to:

• authorized LyncLab personnel under internal data governance controls;
• infrastructure and cloud service providers;
• professional advisers, auditors, insurers, and legal counsel (as needed);
• regulators, law enforcement, courts, or authorities where required by law;
• counterparties in a merger, acquisition, financing, or restructuring (subject to safeguards).

We do not sell personal data.

Current key infrastructure subprocessors include:

• DigitalOcean (hosting/infrastructure)
• Google Cloud Platform (GCP) (cloud services/infrastructure)

We may update subprocessors from time to time in line with business and operational needs.

Personal data may be stored or processed outside Malaysia.

Where cross-border processing occurs, we apply safeguards such as:

• restricted access controls,
• contractual/vendor commitments,
• organizational and technical controls, including anonymization/pseudonymization where appropriate.

We retain personal data for standard business and compliance periods, based on:

• the purpose for which data was collected,
• contractual needs,
• legal/regulatory obligations,
• dispute resolution and enforcement needs.

Typical retention approach (unless stricter legal requirements apply):

• lead/contact and CRM records: up to 24 months after last meaningful interaction,
• customer/account and contract records: for contract duration and up to 7 years thereafter (for tax/audit).

Subject to applicable law (including the PDPA), you may have rights to:

• access personal data we hold about you,
• correct inaccurate or incomplete personal data,
• withdraw consent (for processing based on consent),
• object to processing or request deletion (where recognized by applicable law and subject to exceptions).

To exercise these rights, please contact us at [email protected]. We may require identity verification before processing requests.

We implement technical and organizational measures designed to protect personal data, including:

• access controls and authentication,
• encryption in transit (HTTPS/TLS),
• security monitoring and logging,
• vendor security assessments.

No system is 100% secure. We cannot guarantee absolute security of data transmitted over the internet.

We may use cookies and similar technologies to:

• ensure site functionality (essential cookies),
• analyze usage and performance (analytics),
• remember preferences.

You can manage cookie preferences through your browser settings.

We may update this Privacy Policy from time to time.

Changes are effective upon posting the revised version.

Please check the “Last Updated” date at the top of this page.

For any enquiries regarding this Privacy Policy or our data practices: