This Privacy policy explains how we collect, use, and protect personal data across Sentient Spire QCS (core platform), Sentient Spire Advisory, Sentient Spire Exposure Intelligence, and Sentient Spire Mobile Solution. We comply with GDPR, PDPA (Malaysia), and other applicable laws.
Data we process
- Account information (name, email)
- Operational telemetry (logs, device metadata)
- Support interactions (tickets, emails)
We do not intentionally process special category data.
Purposes and legal bases
- Service delivery (Contract)
- Security & fraud prevention (Legitimate interests)
- Communications (Legitimate interests/Consent)
International transfers
If data is transferred outside the EEA, we rely on the EU SCCs (2021/914) and additional safeguards.
Retention
We retain data only as long as necessary for the purposes described and then delete or anonymise (typical log retention: 180 days).
Your rights
You may request access, rectification, deletion, restriction, portability, or object to processing. Submit requests via privacy@xyberteq.com or our online form at /privacy/request.
Cookies
We use essential and analytics cookies. Non-essential cookies are set only after consent through our cookie banner.
Security
Encryption in transit/at rest, role-based access control, monitoring, and incident response protect data.
EU representative and DPO
- EU Representative (Art. 27): to be confirmed (will be published here after appointment)
- Data Protection Officer: privacy@xyberteq.com
Changes
We may update this policy; the newest version will be published at /legal/privacy-policy.