Privacy Policy

1. Introduction

lumina fiissca ("we," "our," or "us") operates at No. 78, Jalan Hang Jebat, 75200 Melaka, Malaysia. We provide financial education programs designed to help Malaysians build understanding of personal finance topics relevant to their life circumstances.

This Privacy Policy explains how we collect, use, store, and protect your personal information when you interact with our website, register for programs, or participate in our educational services. We are committed to protecting your privacy and handling your data in compliance with the Personal Data Protection Act 2010 (PDPA) of Malaysia.

By using our services or providing your information, you consent to the practices described in this policy. If you have questions or concerns about how we handle your information, please contact us at [email protected].

2. Information We Collect

2.1 Personal Information You Provide

When you register for our programs or contact us, we collect information that you voluntarily provide, including:

• Name and contact details (email address, phone number)
• Age or age bracket (to determine program suitability)
• General employment status or life stage information (to tailor program content)
• Payment information for program registration
• Any information you include in inquiries or feedback

2.2 Information Collected Automatically

When you visit our website, we may automatically collect certain technical information:

• Device information (browser type, operating system)
• Usage data (pages visited, time spent on site)
• IP address and general location data
• Cookies and similar tracking technologies (see our Cookie Policy)

2.3 Financial Information

We do not collect or store detailed financial information beyond what is necessary for program registration and payment processing. Any financial discussions during programs remain confidential and are not recorded or stored.

3. How We Use Your Information

We use the information we collect for the following purposes:

• Program Delivery: To register you for programs, communicate session details, and provide educational materials
• Communication: To respond to inquiries, send program updates, and provide post-program support
• Payment Processing: To process registration fees and manage payment arrangements
• Program Improvement: To gather feedback and improve our educational offerings
• Legal Compliance: To comply with Malaysian legal requirements and resolve disputes
• Website Functionality: To maintain and improve our website's performance and user experience

We do not use your information for marketing financial products, as we do not sell such products. Any communications we send relate solely to our educational programs and services.

4. Legal Basis for Processing

Under the Personal Data Protection Act 2010 (PDPA), we process your personal data based on the following legal grounds:

• Consent: You have provided explicit consent for us to process your information for specified purposes
• Contract Performance: Processing is necessary to fulfill our obligations under program registration agreements
• Legitimate Interest: We have legitimate business interests in improving our services and communicating with participants
• Legal Obligation: We must process certain information to comply with Malaysian legal and regulatory requirements

5. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share your information only in the following limited circumstances:

• Service Providers: With payment processors and email service providers who assist in program delivery (these providers are bound by confidentiality agreements)
• Legal Requirements: When required by law, court order, or government regulation
• Protection of Rights: To protect our legal rights, property, or safety, or that of our participants

We do not share participant information with financial product providers or marketing organizations.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Secure storage of physical and digital records
• Restricted access to personal information on a need-to-know basis
• Regular security assessments and updates
• Encryption of sensitive data during transmission
• Confidentiality agreements with all staff members

While we take reasonable steps to protect your information, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but remain committed to implementing industry-standard protective measures.

7. Data Retention

We retain your personal information for the following periods:

• Program Registration Data: For the duration of your program participation plus three months for post-program support
• Payment Records: For seven years to comply with Malaysian tax and accounting requirements
• Communication Records: For two years after the last contact
• Website Analytics: For up to 26 months as per standard analytics retention

8. Cookies and Tracking

We use cookies and similar technologies to improve your experience on our website. Cookies are small text files stored on your device that help us:

• Remember your preferences
• Understand how visitors use our site
• Improve site functionality and performance

For detailed information about the cookies we use and how to manage your preferences, please see our Cookie Policy.

9. Your Rights Under PDPA

Under the Personal Data Protection Act 2010, you have the following rights:

• Right to Access: Request a copy of the personal data we hold about you
• Right to Correction: Request correction of inaccurate or incomplete information
• Right to Erasure: Request deletion of your personal data (subject to legal retention requirements)
• Right to Data Portability: Request your data in a structured, commonly used format
• Right to Withdraw Consent: Withdraw consent for data processing at any time (may affect service delivery)
• Right to Object: Object to processing based on legitimate interests
• Right to Lodge Complaint: File a complaint with the Personal Data Protection Commissioner of Malaysia

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within thirty days.

10. Children's Privacy

Our programs are designed for individuals aged 16 and above. For participants under 18, we require parental or guardian consent for program registration. We do not knowingly collect personal information from children under 16 without appropriate parental consent.

11. Third-Party Links

Our website may contain links to external websites or resources. We are not responsible for the privacy practices of these third-party sites. We encourage you to review the privacy policies of any external sites you visit.

12. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. When we make significant changes, we will notify you via email (if provided) or through a notice on our website. The "Last Updated" date at the top of this policy indicates when it was most recently revised. Your continued use of our services after changes become effective constitutes acceptance of the updated policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or how we handle your personal information, please contact us: