Privacy Policy
Last Updated: 12 May 2025 · Synapseed · 67 Jalan Telawi 2, Bangsar Baru, 59100 Kuala Lumpur, Malaysia
This policy describes how Synapseed collects, uses, and protects personal data in connection with its website and cohort programmes. It applies to visitors to this website and participants enrolled in Synapseed programmes. By submitting an enquiry or enrolling in a programme, you acknowledge that you have read this policy.
1. Data Controller
The data controller responsible for personal data collected through this website and through programme enrolment is Synapseed, operating from 67 Jalan Telawi 2, Bangsar Baru, 59100 Kuala Lumpur, Malaysia. For data-related enquiries, contact: [email protected]
Synapseed processes personal data in accordance with the Personal Data Protection Act 2010 (PDPA) of Malaysia and applicable data protection principles.
2. What Personal Data We Collect
We collect personal data in the following contexts:
- Enquiry and contact forms: name, email address, phone number (optional), and message content.
- Programme enrolment: name, email address, phone number, payment information (processed via third-party payment gateway), and background information you provide during enrolment assessment.
- Website usage: analytics data (pages visited, session duration, browser type) collected via cookies, where consent is given.
- Project submissions: code and written work submitted as part of cohort assignments. This may contain personal information you include.
3. Legal Basis for Processing
Personal data is processed on the following bases:
- Contract: to administer enquiries and to deliver cohort programmes to enrolled participants.
- Legitimate interest: to improve the website and programme delivery; to respond to enquiries.
- Consent: for optional analytics cookies and for any direct marketing communications, which are only sent where you have opted in.
- Legal obligation: where required by Malaysian law, including tax and financial record-keeping obligations.
4. How We Use Personal Data
- Responding to enquiries and assessing programme fit
- Administering cohort enrolment, schedules, and communications
- Processing payments and issuing invoices
- Delivering written code review and programme feedback
- Improving website content and programme structure using aggregated analytics data
- Complying with legal and financial record-keeping requirements in Malaysia
We do not use personal data for automated decision-making that produces legal or similarly significant effects.
5. Data Sharing
We do not sell personal data. We share data only in the following limited circumstances:
- Payment processors: FPX and participating Malaysian banks for payment processing. We do not store card details.
- Analytics providers: where cookies are accepted, aggregated usage data may be processed by a third-party analytics service.
- Legal requirements: where disclosure is required by Malaysian law or regulation.
6. Data Retention
We retain personal data for the following periods:
- Enquiry data (not resulting in enrolment): 12 months from last contact
- Programme participant records: 7 years from completion date, in line with Malaysian financial record-keeping requirements
- Project submissions and feedback: for the duration of the programme, then archived for 2 years before deletion
- Analytics data: 26 months, then anonymised or deleted
7. Data Protection Measures
Synapseed takes reasonable technical and organisational steps to protect personal data:
- Data transmitted via this website is encrypted using TLS
- Access to participant records is limited to staff directly involved in programme delivery
- Payment data is handled by PCI-DSS compliant third-party processors — Synapseed does not store payment card details
- In the event of a data breach affecting personal data, affected individuals will be notified in accordance with Malaysian PDPA requirements
8. Cookies
This website uses cookies for essential functionality and, where consent is given, for analytics. See our Cookie Policy for detailed information about which cookies are used and how to manage your preferences.
9. Your Rights
Under the Personal Data Protection Act 2010 (Malaysia), you have the following rights in relation to your personal data:
- Access: to request a copy of the personal data we hold about you
- Correction: to request correction of inaccurate or incomplete data
- Withdrawal of consent: to withdraw consent for optional processing (e.g. analytics cookies) at any time
- Erasure: to request deletion of personal data, subject to legal retention requirements
- Portability: to receive data you have provided in a commonly used format
- Complaint: to lodge a complaint with the Department of Personal Data Protection (JPDP) Malaysia
To exercise any of these rights, contact us at [email protected]. We will respond within 21 days.
10. Third-Party Links
This website may contain links to external websites. Synapseed is not responsible for the privacy practices of third-party sites. We recommend reviewing the privacy policies of any external sites you visit.
11. Children's Privacy
Synapseed's programmes are intended for participants aged 18 and over. We do not knowingly collect personal data from individuals under 18. If we become aware that personal data of a minor has been submitted, we will delete it promptly.
12. Changes to This Policy
This policy may be updated from time to time. The "Last Updated" date at the top of this page will reflect the most recent revision. Enrolled participants will be notified of material changes by email. Continued use of the website or participation in programmes following any update constitutes acceptance of the revised policy.