Privacy Policy

1. Introduction

Goldenfold ("we", "our", "us") is committed to handling your personal information responsibly. This policy explains what data we collect, why we collect it, how we use it, and your rights under the Personal Data Protection Act 2010 (PDPA) of Malaysia.

If you have questions about this policy, please contact us at [email protected].

2. Data We Collect

We collect personal information in the following circumstances:

• Enquiry and booking forms: name, email address, telephone number, and the content of your message.
• Session registration: name, contact details, and any additional information you provide when registering for a programme.
• Website analytics: aggregated, anonymised data on page visits and browser type, collected via cookies if you have consented.

We do not collect copies of, or information from, any personal financial documents you bring to a records workshop. Those remain in your hands at all times.

3. How We Use Your Data

• To respond to your enquiry and provide information about our programmes.
• To confirm and manage your booking for a session.
• To send session reminders and joining instructions (you may opt out at any time).
• To improve our programmes based on aggregated feedback.
• To comply with legal obligations under Malaysian law.

We rely on your consent or our legitimate interest in running our business as the legal basis for processing your data under the PDPA.

4. Data Retention

We retain booking and contact records for three years from the date of your last interaction with us. After that period, records are securely deleted. Anonymised feedback responses may be retained indefinitely for programme improvement purposes.

5. Sharing of Data

We do not sell, rent, or trade your personal information. We may share data in limited circumstances:

• With service providers who assist us in running our website or communications, under data processing agreements.
• If required by law or regulatory authority in Malaysia.

6. Data Security

We store contact records on password-protected systems and use encrypted email for communications containing personal information. We review our data handling practices regularly and limit access to personal data to staff who need it to carry out their role.

7. Cookies

Our website uses cookies. For full details of the cookies we use and how to manage your preferences, please see our Cookie Policy.

8. Your Rights Under the PDPA

Under Malaysia's Personal Data Protection Act 2010, you have the right to:

• Access the personal data we hold about you.
• Correct inaccurate personal data.
• Withdraw consent to processing where consent is the basis for processing.
• Object to direct marketing communications.
• Request deletion of your data where we no longer have a lawful basis to retain it.

To exercise any of these rights, contact us at [email protected]. We will respond within 21 days.

9. Children's Privacy

Our programmes are intended for adults aged 18 and above. We do not knowingly collect personal data from anyone under 18. If you believe we have done so, please contact us immediately so we can correct it.

10. Third-Party Links

Our website may contain links to official government resources and third-party sites. We are not responsible for the privacy practices of those sites and recommend reading their privacy policies before providing personal data to them.

11. Changes to This Policy

We may update this policy from time to time. The date at the top of this page will reflect any revision. Continued use of our website or services after a change constitutes acceptance of the updated policy.

12. Contact

For privacy-related enquiries: