Parqua Contact Us

Legal

Privacy Policy

This policy explains how Parqua collects, uses, and protects personal data provided by individuals in connection with our business continuity planning education programmes and website.

Last updated: 28 April 2025  ·  Effective: 28 April 2025

Section 01

Introduction

Parqua is committed to handling personal data with care, transparency, and respect for the individuals whose information we hold. This Privacy Policy sets out the basis on which personal data we collect from you, or that you provide to us, will be processed by us.

This policy applies to data collected through our website at parqua.site, through our online course enrolment process, through workshop registration, and through enquiries submitted via our contact form or by email.

Parqua operates under Malaysian law. Our data handling practices are guided by the Personal Data Protection Act 2010 (PDPA) of Malaysia. If you have questions about this policy or our data practices, please write to us at [email protected].

Section 02

Data We Collect

Personal data you provide directly

  • Name and email address submitted via our contact form
  • Phone number, if provided voluntarily in the contact form
  • Message content submitted through the enquiry form
  • Organisation name and role, if included in an enquiry
  • Payment information for programme enrolment (processed by our payment provider — we do not store card details)

Data collected automatically

  • Browser type, operating system, and device type
  • Pages visited and time spent on pages (via analytics cookies, where consent is given)
  • IP address (anonymised where analytics tools permit)
  • Referring website or search terms

Legal basis for processing

We process personal data on the following bases: consent (where you have given explicit permission, such as for marketing communications); contract performance (where processing is necessary to deliver a programme you have enrolled in); and legitimate interest (for enquiry management and general website improvement).

Retention periods

  • Enquiry form submissions: retained for 24 months, then deleted
  • Enrolment records: retained for 5 years for programme administration
  • Analytics data: retained in aggregate form in line with our analytics provider's policy
  • Financial transaction records: retained for 7 years to meet Malaysian tax record requirements
Section 03

How We Use Personal Data

Service delivery

We use the personal data you provide to respond to enquiries, process enrolments in our business continuity planning education programmes, and deliver programme materials to participants.

Communications

We may contact you by email to respond to an enquiry, confirm an enrolment, or provide programme-related information. We do not send marketing emails without your prior consent. You may withdraw consent for marketing communications at any time by writing to [email protected].

Analytics and website improvement

Where you have consented to analytics cookies, we use aggregated data to understand how our website is used and to improve its content and structure. This data is not used to identify individual visitors.

Data sharing

We do not sell personal data. We share data only where necessary with:

  • Payment processors (for programme enrolments) — bound by their own PCI-DSS compliance
  • Analytics service providers (where consent is given) — data is anonymised and aggregated
  • Malaysian government authorities where required by law

We do not share personal data with any other third parties without your explicit consent.

Section 04

Data Protection Measures

Technical measures

  • Our website uses HTTPS with TLS encryption for all data in transit
  • Personal data held in our systems is stored on access-controlled servers
  • Payment card data is handled by our payment processor and is not stored on our systems

Organisational measures

  • Access to personal data is restricted to staff with a direct need for it in their role
  • Staff who handle personal data are made aware of their obligations under the PDPA 2010
  • Third-party processors are assessed for their data handling practices before engagement

Breach notification

In the event of a data breach affecting your personal data, we will notify affected individuals as soon as reasonably practicable and will report to the relevant Malaysian authority where required by law.

Section 05

Cookies

Our website uses cookies to support its operation and, where you have given consent, to improve your experience. Cookie types used include:

  • Essential cookies: required for the website to function correctly (e.g., consent preference storage)
  • Analytics cookies: used to understand how visitors use the website (only active with consent)
  • Preference cookies: remember settings you have applied (only active with consent)

For full details and to manage your cookie preferences, see our Cookie Policy.

Section 06

Your Rights

Under Malaysia's Personal Data Protection Act 2010, you have the following rights regarding your personal data held by Parqua:

Right of access

You may request a copy of the personal data we hold about you. We will respond within 21 days.

Right of correction

If any personal data we hold is inaccurate or incomplete, you may request that we correct it.

Right to withdraw consent

Where processing is based on your consent, you may withdraw it at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.

Right to prevent processing

You may request that we cease processing your data for direct marketing purposes.

How to exercise your rights

To exercise any of these rights, please write to us at [email protected]. We do not charge a fee for straightforward requests. We may need to verify your identity before responding.

Supervisory authority

If you believe we have not handled your personal data in accordance with the PDPA 2010, you may file a complaint with Malaysia's Department of Personal Data Protection (JPDP), which operates under the Ministry of Digital.

Section 07

Third-Party Links

Our website may contain links to external websites operated by third parties. This policy does not apply to those sites. We are not responsible for the privacy practices of third-party websites and encourage you to read their privacy policies before providing personal data to them.

Section 08

Children's Privacy

Our programmes are designed for working professionals and are not directed at individuals under the age of 18. We do not knowingly collect personal data from anyone under 18. If you believe we have inadvertently collected data from a minor, please contact us at [email protected] so we can delete it promptly.

Section 09

Policy Updates

We may update this Privacy Policy from time to time. When we make changes that affect how we handle your data, we will update the "Last updated" date at the top of this policy and, where the changes are significant, we will notify enrolled participants by email.

Continued use of our website or programmes after a policy update constitutes acceptance of the revised terms.

Section 10

Contact Information

Parqua is the data controller responsible for personal data collected through this website and our programmes.

Parqua

Level 22, Menara Allianz Sentral

203 Jalan Tun Sambanthan, 50470 Kuala Lumpur

Malaysia

Tel: +60 3 2786 4953

Email: [email protected]