SME-Point — Sistem Pengurusan Perniagaan & Perakaunan PKS Malaysia
Dasar Privasi ini menerangkan bagaimana [NAMA SYARIKAT PENGENDALI (No. SSM: XXXXXXX)] ("kami") yang mengendalikan platform SME-Point (https://sme-point.my) mengumpul, menggunakan, menyimpan dan melindungi data peribadi anda selaras dengan Akta Perlindungan Data Peribadi 2010 (PDPA).
| Kategori | Contoh |
|---|---|
| Data akaun | Nama, alamat e-mel, kata laluan (disulitkan), gambar profil (jika log masuk Google) |
| Data syarikat | Nama syarikat, no. pendaftaran SSM, TIN, alamat, logo, maklumat hubungan |
| Data perniagaan | Rekod pelanggan, pembekal, invois, sebut harga, transaksi, maklumat pekerja & gaji (untuk modul payroll) |
| Data transaksi langganan | Rekod pembayaran langganan melalui FPX (kami TIDAK menyimpan maklumat kad atau kelayakan perbankan anda) |
| Data teknikal | Alamat IP, jenis pelayar, log akses, kuki sesi |
Kami tidak menjual, menyewa atau berkongsi data peribadi anda kepada mana-mana pihak ketiga untuk tujuan pemasaran.
Data didedahkan hanya setakat perlu untuk mengendalikan perkhidmatan:
| Pihak | Tujuan |
|---|---|
| ToyyibPay / Billplz | Pemprosesan pembayaran FPX (langganan & kutipan invois anda) |
| LHDN (MyInvois) | Penghantaran e-Invois — hanya apabila anda mengaktifkan & menghantar |
| Log masuk Google (jika anda memilih kaedah ini) | |
| Penyedia pengehosan | Penyimpanan data di pelayan yang selamat |
| Pihak berkuasa | Jika dikehendaki oleh undang-undang Malaysia |
Anda berhak untuk:
Untuk melaksanakan hak ini, hubungi kami melalui Helpdesk dalam sistem atau e-mel [EMEL RASMI].
SME-Point menggunakan kuki sesi yang diperlukan untuk log masuk dan keselamatan (perlindungan CSRF). Kami tidak menggunakan kuki penjejakan pihak ketiga untuk iklan.
Kami mungkin meminda Dasar Privasi ini dari semasa ke semasa. Perubahan ketara akan dimaklumkan melalui sistem atau e-mel. Penggunaan berterusan selepas pindaan bermakna anda menerima dasar yang dikemas kini.
[NAMA SYARIKAT PENGENDALI]
[ALAMAT PERNIAGAAN]
E-mel: [EMEL RASMI]
This Privacy Policy explains how [OPERATING COMPANY NAME (SSM No.: XXXXXXX)] ("we"), operator of the SME-Point platform (https://sme-point.my), collects, uses, stores and protects your personal data in accordance with the Personal Data Protection Act 2010 (PDPA) of Malaysia.
We use your data solely to: provide and operate the SME-Point service; process subscription payments; submit e-Invoices to LHDN MyInvois at your instruction; provide technical support; improve security and features; and contact you regarding your account. We do not sell, rent or share your personal data with third parties for marketing purposes.
Data is disclosed only as necessary to operate the service: ToyyibPay/Billplz (FPX payment processing), LHDN (e-Invoice submission when you activate it), Google (login, if chosen), hosting providers (secure data storage), and authorities where required by Malaysian law.
Each company (tenant) is fully segregated — users of other companies cannot access your data. Passwords are hashed, connections are protected by HTTPS/TLS, data is backed up regularly at server level, and staff access is on a need-to-know basis only.
Data is retained while your account is active. After a paid subscription ends, your account reverts to the free plan and data is not deleted. You may request data export and/or permanent deletion via Helpdesk; deletion is carried out within 30 days of confirmation. Certain records may be retained longer where required by law (e.g. tax records).
You have the right to access your personal data, correct inaccurate data, withdraw consent to processing (subject to service requirements), and request deletion. To exercise these rights, contact us via the in-system Helpdesk or email [OFFICIAL EMAIL].
SME-Point uses essential session cookies for login and security (CSRF protection). We do not use third-party advertising/tracking cookies.
We may amend this Privacy Policy from time to time. Material changes will be notified via the system or email. Continued use after amendment constitutes acceptance.
[OPERATING COMPANY NAME]
[BUSINESS ADDRESS]
Email: [OFFICIAL EMAIL]