Effective date: 16 July 2026
This Cookie Policy explains how Xyberteq Innovations Sdn Bhd (formerly Peranti Technologies Sdn Bhd), Company No. 201701035190 (1249361-M), a company registered in Kuala Lumpur, Malaysia (“Xyberteq”, “we”, “us” or “our”), uses cookies and similar technologies on our marketing websites at www.xyberteq.com (English) and ms.xyberteq.com (Bahasa Melayu) (together, the “Website”).
It should be read together with our Privacy Policy, which describes in full how we collect, use, disclose and protect personal data. This Cookie Policy is designed to meet our obligations under the Malaysian Personal Data Protection Act 2010, as amended by the Personal Data Protection (Amendment) Act 2024 (the “PDPA”), and, where they apply to visitors located in the European Economic Area (“EEA”) or the United Kingdom, the EU General Data Protection Regulation (GDPR) and the ePrivacy Directive (and their national implementations).
1. What are cookies?
Cookies are small text files that a website places on your device (computer, tablet or mobile phone) when you visit it. They are widely used to make websites work, to make them work more efficiently, and to provide information to the owners of the site.
In this policy, references to “cookies” also include similar technologies such as pixels, tags, software development kits (SDKs), local storage and session storage, which perform comparable functions. Cookies may be:
- First-party cookies – set by the Website you are visiting (xyberteq.com); or
- Third-party cookies – set by a domain other than the one you are visiting, for example an analytics or marketing provider.
Cookies may also be classified by how long they last:
- Session cookies – temporary cookies that are deleted when you close your browser; and
- Persistent cookies – cookies that remain on your device for a set period or until you delete them.
2. Our current use of cookies
Xyberteq is a business-to-business cybersecurity vendor, and this Website is a corporate marketing site. We deliberately keep our use of cookies to a minimum.
At present, the Website uses only strictly necessary, first-party cookies and equivalent local storage. These are limited to essential functions such as maintaining your session and remembering your cookie-consent preferences. We do not currently deploy any analytics, statistics or marketing/advertising cookies or trackers, and we do not use third-party advertising networks or cross-site tracking.
We may in future introduce optional analytics or marketing technologies (for example Google Analytics 4 (GA4) and Google Tag Manager (GTM)). If and when we do, those non-essential cookies will be loaded only after you have given your prior opt-in consent through our on-site cookie controls, and this policy and the cookie table below will be updated accordingly.
3. Categories of cookies we use (and may use)
The table below describes the categories of cookies used on the Website. Categories marked as currently active reflect our present practice; categories marked as anticipated will only be activated in future, behind consent, as described above.
| Category | Status | Purpose | Examples | Consent required? |
|---|---|---|---|---|
| Strictly Necessary | Active (always on) | Essential for the Website to function and to deliver services you have requested. They enable core functionality such as page navigation, load balancing, security, and remembering the cookie choices you have made. The Website cannot function properly without them. | Session identifier (session cookie); cookie-consent / preference-storage cookie recording your choices; security and anti-abuse tokens. | No – exempt from consent (essential). |
| Preferences (Functional) | Active where applicable | Allow the Website to remember choices that change how it behaves or looks, such as your preferred language (English at www.xyberteq.com or Bahasa Melayu at ms.xyberteq.com). | Language / locale preference; display preferences. | Yes, where the preference is not strictly necessary to provide a service you have requested. |
| Statistics (Analytics) | Anticipated – not currently used | Help us understand how visitors interact with the Website by collecting and reporting information anonymously or pseudonymously, so we can improve content and performance. | Google Analytics 4 (GA4) / Google Tag Manager (GTM) – to be added in future behind opt-in consent; none are currently in use. | Yes – prior opt-in consent. |
| Marketing (Advertising) | Anticipated – not currently used | Used to track visitors across websites in order to display advertising that is relevant and engaging, and to measure campaign effectiveness. | None are currently in use — no advertising or marketing cookies are set at present – to be added in future behind opt-in consent, if at all. | Yes – prior opt-in consent. |
A detailed, up-to-date inventory of the specific cookies in each category (name, provider, purpose and duration) is available through the “Cookie Settings” control on the Website. At present the Website sets only strictly-necessary and preference cookies: xi_consent (stores your cookie choices; first-party; up to 12 months), pll_language (remembers your language selection; first-party; up to 12 months), and — for signed-in administrators only — standard WordPress session cookies. No analytics or marketing cookies are currently set.
4. Legal basis for using cookies
Strictly necessary cookies do not require your consent. For visitors in Malaysia, we rely on these cookies because the processing is necessary to deliver the service or online transaction you have requested and to operate a secure and functional website; the PDPA does not provide a general “legitimate interest” ground, and we do not rely on one. For visitors in the EEA/UK, the storing of, and access to, these cookies is exempt from consent under the ePrivacy Directive as strictly necessary to provide a service you have requested, and any related processing of personal data relies on our legitimate interests under Article 6(1)(f) GDPR in operating a secure and functional website.
All non-essential cookies – including Preferences (where not strictly necessary), Statistics and Marketing cookies – are used only where you have given your prior, freely given, specific, informed and unambiguous opt-in consent. This reflects the requirements of the ePrivacy Directive and Article 6(1)(a) GDPR for EEA/UK visitors, and the notice-and-consent principles of the PDPA for visitors in Malaysia. Consent is requested through our cookie banner and “Cookie Settings” control before any such cookie is set, and you can change or withdraw it at any time (see Section 7).
5. The contact / briefing form
The Website provides a contact and briefing request form through which you may voluntarily submit your name, work email address, company name and message. This form is processed on our behalf by FormSubmit.co, which forwards your submission to us by email. Use of the form is not dependent on non-essential cookies. The processing of the personal data you submit through the form – including the lawful basis, retention and your rights – is described in our Privacy Policy. Any additional third-party processors we engage are identified as none; we do not currently engage additional third-party processors.
6. International and cross-border data transfers
Some current or future cookie and form-processing providers – for example FormSubmit.co, and any future analytics or marketing providers such as Google (GA4/GTM) – may process data on servers located outside Malaysia, including in jurisdictions that may not provide the same level of data protection as your own.
Where we transfer personal data across borders, we do so in accordance with the cross-border transfer requirements of the PDPA (as amended by the Personal Data Protection (Amendment) Act 2024) and, for personal data protected by the GDPR, on the basis of an adequacy decision or appropriate safeguards such as the European Commission’s Standard Contractual Clauses, together with any supplementary measures that may be required. Further details of our transfer safeguards and the specific recipients are set out in our Privacy Policy and are marked as our hosting, web-application-firewall and form-delivery providers (currently GoDaddy in Singapore, and Sucuri and FormSubmit.co in the United States) where applicable.
7. How to manage or withdraw your consent
You are in control of the non-essential cookies used on your device. You can manage or withdraw your consent at any time, and withdrawing consent is as easy as giving it. Strictly necessary cookies cannot be switched off because the Website depends on them.
7.1 On-site “Cookie Settings” control
You can review the categories of cookies and grant, refuse or withdraw your consent for any non-essential category at any time using the “Cookie Settings” control on the Website (available from the cookie banner and via the link in the site footer). Any change you make takes effect immediately and is remembered by the consent-preference cookie described in Section 3.
7.2 Browser controls
Most web browsers also allow you to control cookies through their settings – for example, to block or delete cookies, or to warn you before a cookie is stored. Please note that if you block strictly necessary cookies, parts of the Website may not function correctly. You can usually find these controls in the “Privacy” or “Cookies” section of your browser settings, including:
- Google Chrome – Settings → Privacy and security → Cookies and other site data
- Mozilla Firefox – Settings → Privacy & Security → Cookies and Site Data
- Apple Safari – Settings/Preferences → Privacy
- Microsoft Edge – Settings → Cookies and site permissions
For more general information about cookies and how to manage them, you may wish to visit your browser provider’s help pages.
8. Your data protection rights
Where cookies collect information that constitutes personal data, that data is handled in accordance with the seven Personal Data Protection Principles under the PDPA – the General, Notice and Choice, Disclosure, Security, Retention, Data Integrity and Access Principles – and, where applicable, the GDPR.
Subject to the conditions and exceptions in the applicable law, you have the right to:
- Access the personal data we hold about you and be informed of how it is processed;
- Correct or rectify inaccurate, incomplete or out-of-date personal data;
- Withdraw your consent at any time, including consent to non-essential cookies;
- Data portability – to receive certain personal data in a structured, commonly used format (a right recognised under the GDPR and introduced under the Personal Data Protection (Amendment) Act 2024, and which under the PDPA is subject to guidelines issued by the Commissioner and to technical feasibility);
- Erasure of your personal data (“right to be forgotten” under the GDPR);
- Restrict or object to processing, including profiling and direct marketing, in the circumstances provided by the GDPR; under the PDPA you also have the right to require us to stop processing your personal data for purposes of direct marketing (Section 43), and to prevent processing that is likely to cause you damage or distress (Section 42); and
- Lodge a complaint with the relevant supervisory authority – in Malaysia, the Personal Data Protection Commissioner (Department of Personal Data Protection / Jabatan Perlindungan Data Peribadi); in the EEA/UK, your local data protection authority.
The Personal Data Protection (Amendment) Act 2024 also strengthens data-subject protection through mandatory data breach notification to the Commissioner (and, where the breach is likely to cause significant harm, to affected individuals) and the mandatory appointment of a Data Protection Officer for the classes of data controller prescribed by the Commissioner. Where we are required to appoint a Data Protection Officer, their contact details appear in Section 12. We have not appointed a separate Data Protection Officer; you may contact us on any data-protection matter using the details in Section 12.
To exercise any of these rights, please contact us using the details in Section 12. How to exercise your rights in full is explained in our Privacy Policy.
9. Data retention
Cookies are retained for the durations described in the cookie inventory available through the “Cookie Settings” control. Personal data associated with cookies and with form submissions is retained only for as long as necessary for the purposes for which it was collected, in accordance with the PDPA Retention Principle and, where applicable, the GDPR. Specific retention periods are set out in our Privacy Policy and are marked as 24 months pending confirmation.
10. Language of this notice
In line with Section 7(3) of the PDPA, this notice is made available in both the English and Bahasa Melayu languages. The English version is published at www.xyberteq.com and the Bahasa Melayu version at ms.xyberteq.com. In the event of any inconsistency between the two versions, both the English and Bahasa Melayu versions are equally authentic.
11. Changes to this Cookie Policy
We may update this Cookie Policy from time to time to reflect changes in the cookies we use, in technology, or in legal and regulatory requirements – for example, when we introduce analytics or marketing cookies behind consent. Any changes will be posted on this page with a revised effective date, and, where the changes are material, we will seek fresh consent where the law requires it.
12. Contact us
If you have any questions about this Cookie Policy, our use of cookies, or your personal data, or if you wish to exercise any of your rights, please contact us:
Xyberteq Innovations Sdn Bhd (formerly Peranti Technologies Sdn Bhd)
Company No. 201701035190 (1249361-M)
Kuala Lumpur, Malaysia
Data protection / Privacy enquiries
Email: info.sec@xyberteq.com
Tel: +603 2083 0133
Web: www.xyberteq.com
For full details of how we handle personal data, please see our Privacy Policy.