Privacy Policy

APIPIE TECH SDN. BHD. (Company Registration No. 202201020560 / 1466257-D) (hereinafter referred to as “APIPIESHOP”, “we”, “us”, or “our”) respects your privacy and is committed to protecting the personal data of every visitor, user, and customer of our Website at https://apipietech.com and of the services we offer. This Privacy Policy explains, in clear and reasonable detail, what personal data we collect, why we collect it, how we use and share it, how long we retain it, the rights you have over your data, and how you can exercise those rights.
This Privacy Policy is designed to comply with the Personal Data Protection Act 2010 of Malaysia (“PDPA”), and, where applicable, to align with principles found in international data protection frameworks such as the European Union’s General Data Protection Regulation (“GDPR”). Please read it carefully. By using our Website or Services, you acknowledge that you have read and understood this Privacy Policy.

1. Data Controller

The entity responsible for processing your personal data in connection with the Website and Services is:

APIPIE TECH SDN. BHD.

Registered Address: 18, Sunway Montana, Desa Melawati 53100, Kuala Lumpur, Malaysia

Company Registration Number: 202201020560 (1466257-D)

Data Protection Contact: apipie.co@apipietech.com

Phone: +60 12-221 1992

2. Personal Data We Collect

We collect personal data in several different ways. The type of data collected depends on how you interact with our Website and which Services you use. For clarity, we have grouped the data into categories below.

2.1 Data You Provide Directly to Us

  • Account Registration Information: name, email address, mobile phone number, business name, company registration details, password, and billing information.
  • Order & Transaction Information: products or services purchased, order history, invoices, shipping addresses, payment method metadata (we do not store full card numbers or CVV).
  • Communication Records: the content of emails, contact form submissions, WhatsApp messages, support tickets, phone call notes, and any other correspondence between you and our team.
  • Content You Upload: business materials, product descriptions, images, logos, credentials, or other files you submit for us to process as part of providing a Service.
  • Survey & Feedback Data: responses to customer surveys, reviews, testimonials, and other voluntary input.

2.2 Data Collected Automatically When You Use the Website

  • Device & Technical Information: IP address, device type, operating system, browser type and version, language preference, time zone, and screen resolution.
  • Usage Data: pages visited, time and duration of visits, navigation paths, links clicked, search queries within the site, referring URL, and performance data.
  • Cookies & Similar Technologies: session cookies, persistent cookies, analytics identifiers, and advertising identifiers (see Section 7 below).

2.3 Data Received From Third Parties

  • Payment Processors: transaction confirmation, payment status, fraud risk scores, and limited payment method information.
  • Analytics & Marketing Partners: aggregated audience insights, attribution data, and advertising performance data.
  • Social Media & Platform APIs: where you connect a third-party account to our Services, limited profile data as permitted by the platform and authorized by you.
  • Verification & Fraud Prevention Providers: identity verification and risk assessment results, where required.

3. Purposes of Processing & Legal Bases

We only process your personal data for clearly defined purposes and where we have a valid legal basis under applicable law. The main purposes include:

  • Providing & Administering the Services: to create and manage your Account, process Orders, deliver the Services you have purchased, provide technical support, and issue invoices. (Legal basis: performance of a contract.)
  • Payment Processing & Fraud Prevention: to process payments securely and detect or prevent fraudulent, abusive, or unauthorized activity. (Legal basis: performance of a contract and legitimate interests.)
  • Customer Service & Communication: to respond to your enquiries, resolve issues, and keep you informed about your Account and Orders. (Legal basis: performance of a contract and legitimate interests.)
  • Improvement of Services: to analyze how our Website and Services are used, to troubleshoot bugs, to measure performance, and to develop new features. (Legal basis: legitimate interests.)
  • Marketing & Promotions: to send you newsletters, promotional offers, service updates, and relevant marketing information. (Legal basis: consent, where required, or legitimate interests for existing customers, subject to your right to opt out.)
  • Legal & Regulatory Compliance: to comply with applicable laws, tax obligations, anti-money-laundering rules, court orders, and valid requests from competent authorities. (Legal basis: legal obligation.)
  • Protection of Rights: to establish, exercise, or defend legal claims and to protect the safety, rights, and property of APIPIESHOP, our users, and the public. (Legal basis: legitimate interests.)

4. How We Share Your Data

We do not sell your personal data to third parties. We only share personal data where it is necessary for the purposes described above, and always with appropriate safeguards in place. The main categories of recipients are:

  • Service Providers & Sub-processors: payment processors, cloud hosting providers, email delivery providers, analytics providers, logistics partners, telecommunications carriers, and professional advisors (legal, accounting). Each is contractually required to process data only according to our instructions and to maintain appropriate security.
  • Third-Party Platforms You Connect: where the Service requires interaction with a third-party platform (e.g., social media, live-streaming platforms, marketplaces, payment acquirers), data will be shared only to the extent necessary to deliver the Service.
  • Government Authorities & Regulators: where we are legally compelled to do so, or where disclosure is necessary to comply with valid legal process.
  • Corporate Transactions: in connection with a merger, acquisition, restructuring, financing, or sale of business assets, data may be transferred as part of the transaction, subject to confidentiality protections and continued application of this Privacy Policy.
  • With Your Consent: for any other purpose with your prior, informed, and revocable consent.

5. International Data Transfers

Because cross-border commerce is inherently international, your personal data may be transferred to, processed in, or stored in countries outside Malaysia, including countries whose data protection laws may differ from those of Malaysia. When we transfer personal data internationally, we take reasonable steps to ensure appropriate safeguards are in place, such as using reputable service providers that implement recognized security standards, and entering into data processing agreements with contractual obligations to protect your data.

6. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including the provision of Services, the satisfaction of legal, accounting, or reporting requirements, and the resolution of disputes.

  • Account & Transaction Data: retained for the life of your Account plus up to seven (7) years thereafter, to meet tax and accounting obligations under Malaysian law.
  • Support Communications: retained for up to three (3) years after the last contact.
  • Marketing Data: retained until you withdraw consent or unsubscribe, plus a reasonable period for record-keeping.
  • Website Analytics: typically retained in aggregated or pseudonymized form for up to 26 months.

Once the retention period has expired and no legal exception applies, we will securely delete or anonymize the relevant personal data.

7. Cookies & Similar Technologies

Our Website uses cookies and similar technologies to deliver functionality, analyze usage, and support marketing. The main categories of cookies we use are:

  • Strictly Necessary Cookies: essential for the Website to function, including login, security, and shopping cart features. These cannot be disabled without breaking core functionality.
  • Performance & Analytics Cookies: help us understand how visitors use the Website so we can improve it. Data is usually aggregated and anonymized.
  • Functional Cookies: remember preferences such as language and region.
  • Marketing & Advertising Cookies: used to deliver relevant ads on our Website and on third-party platforms, and to measure campaign performance.

You can manage your cookie preferences through your browser settings and, where offered, through our on-site cookie preference tool. Please note that disabling certain cookies may impair the functionality of the Website.

8. Your Rights

Subject to applicable law, you have the following rights in relation to your personal data:

  • Right of Access: to obtain confirmation of whether we process your personal data and to request a copy of that data.
  • Right of Correction: to request that inaccurate or incomplete personal data be corrected or completed.
  • Right of Erasure: to request the deletion of your personal data where it is no longer needed for the purposes collected or where you have withdrawn consent, subject to legal retention obligations.
  • Right to Restrict Processing: to request that we limit the processing of your personal data in certain circumstances.
  • Right to Data Portability: where applicable, to receive the personal data you provided to us in a structured, commonly used, machine-readable format.
  • Right to Object: to object to the processing of your personal data for direct marketing purposes or where processing is based on our legitimate interests.
  • Right to Withdraw Consent: where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.
  • Right to Lodge a Complaint: with the Personal Data Protection Department of Malaysia or the appropriate supervisory authority in your jurisdiction.

To exercise any of these rights, please send a request to apipie.co@apipietech.com, including sufficient information for us to verify your identity and locate your data. We will respond within the timeframe required by applicable law, typically within thirty (30) days.

9. Marketing Communications

With your consent, where required, we may send you marketing communications about our Services, promotions, and industry news. You may opt out at any time by (a) clicking the “unsubscribe” link in any of our marketing emails, (b) updating your communication preferences in your Account, or (c) writing to us at apipie.co@apipietech.com. Even after you opt out of marketing, we may still send you transactional or administrative messages related to your Account or Orders.

10. Data Security

We implement appropriate technical and organizational measures designed to protect personal data against unauthorized access, accidental loss, alteration, disclosure, or destruction. These measures include, where appropriate, encryption in transit (TLS/HTTPS), access controls, secure data storage, regular software updates, audit logging, staff training, and vendor due diligence.

However, no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee absolute security. If we become aware of a personal data breach that is likely to result in risk to your rights and freedoms, we will notify the relevant supervisory authority and affected users as required by applicable law.

11. Children’s Privacy

Our Services are intended for business users and adult consumers. We do not knowingly collect personal data from children under the age of eighteen (18). If you believe that a child has provided personal data to us, please contact us immediately at apipie.co@apipietech.com and we will take appropriate steps to delete the data.

12. Third-Party Links

Our Website may contain links to third-party websites, plugins, or applications. Clicking on those links may allow third parties to collect or share data about you. We do not control these third-party sites and are not responsible for their privacy practices. We encourage you to read the privacy policy of every website you visit.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. The “Last updated” date at the top of this document indicates the date of the most recent revision. For material changes, we will provide additional notice (for example, by email or prominent banner on the Website). Your continued use of the Website after such changes take effect constitutes acceptance of the revised policy.

14. Contact Us About Privacy

If you have any questions, concerns, requests, or complaints regarding this Privacy Policy or our data practices, please contact us at:

APIPIE TECH SDN. BHD.

18, Sunway Montana, Desa Melawati 53100, Kuala Lumpur, Malaysia

Email: apipie.co@apipietech.com

Phone: +60 12-221 1992

We take all privacy enquiries seriously and will do our best to resolve any issue promptly and fairly.