Nestguard Enquire Now

Legal document

Privacy Policy

Last updated: 10 April 2025  ·  Nestguard, Johor Bahru, Malaysia

Nestguard is committed to handling personal information with care and transparency. This policy explains what data we collect, why we collect it, how long we keep it, and what rights you hold in relation to it. It applies to all personal data processed in connection with our legal services and this website.

1. Data Controller

The data controller for personal information processed in connection with Nestguard's services is:

Nestguard
47 Jalan Tun Abdul Razak, 80000 Johor Bahru, Johor, Malaysia
Email: [email protected]
Telephone: +60 7-336 2158

2. Personal Data We Collect

2.1 Information you provide to us

  • Name, email address, and telephone number, submitted through our website enquiry form or by direct contact
  • Employment records, pension statements, and identity documents provided in connection with a legal matter
  • Details of your pension situation and instructions relevant to the service engaged
  • Correspondence between you and Nestguard

2.2 Information collected automatically

  • IP address and browser type, collected via server logs
  • Pages visited and time spent on this website, collected via analytics cookies (where consent is given)
  • Cookie preference data stored in your browser's localStorage

3. How We Use Your Personal Data

We process personal data for the following purposes and on the following legal bases under the Personal Data Protection Act 2010 (Malaysia):

  • To respond to enquiries — Legitimate interest, and consent where data is submitted via the website form
  • To deliver legal services — Contractual necessity, where a service engagement has been agreed
  • To correspond with pension schemes and third parties on your behalf — Contractual necessity and explicit authorisation
  • To maintain records of the legal services provided — Legal obligation and legitimate interest
  • To understand how this website is used — Consent, for analytics cookies only

4. Data Retention

  • Enquiry data (where no engagement follows): deleted or anonymised after 12 months
  • Client matter files: retained for seven years from the close of the matter, in accordance with Malaysian professional practice requirements
  • Website analytics data: retained for 26 months from collection, then deleted
  • Cookie preference data: stored locally in your browser until cleared by you

5. Data Sharing

We do not sell personal data. We share personal data only in the following circumstances:

  • With pension schemes and scheme administrators — where you have authorised us to correspond on your behalf
  • With other parties in a dispute — only to the extent required by the dispute process and with your knowledge
  • With our technology service providers — limited to hosting, email, and analytics services bound by data processing agreements
  • Where required by law — in response to a valid legal process or professional obligation

6. Cookies

This website uses cookies. Essential cookies are necessary for the website to function and are active at all times. Analytics and marketing cookies are activated only with your consent. For full details, please see our Cookie Policy.

7. Your Rights

Under the Personal Data Protection Act 2010 (Malaysia) and applicable data protection principles, you have the following rights:

  • Right of access — to request a copy of the personal data we hold about you
  • Right of correction — to request that inaccurate or incomplete data be corrected
  • Right to withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing
  • Right to object — to processing based on legitimate interest, where your specific circumstances warrant
  • Right to request deletion — subject to our legal retention obligations

To exercise any of these rights, write to us at [email protected]. We will respond within 21 days.

8. Data Security

Client documents and personal data held in connection with a legal matter are stored on access-controlled systems. Physical documents are kept in secured office premises. Electronic correspondence is transmitted over encrypted connections where available. Staff handling client data are subject to professional confidentiality obligations.

In the event of a personal data breach affecting your information, we will notify you and the relevant authority in accordance with applicable requirements.

9. Third-Party Links

This website may contain links to external websites. Nestguard is not responsible for the privacy practices of those websites and we recommend that you review their privacy policies before submitting any personal data to them.

10. Children's Privacy

Our services are intended for individuals aged 18 and above. We do not knowingly collect personal data from anyone under the age of 18. If you believe a minor has submitted data to us, please contact us so we can arrange for its deletion.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be notified via a prominent notice on this website. The date at the top of this page indicates when the policy was last revised. Continued use of our services or this website after a change constitutes acceptance of the updated policy.

12. Contact and Complaints

For questions about this policy or our data handling, write to: [email protected]

If you believe your data protection rights have been infringed, you may lodge a complaint with the Department of Personal Data Protection Malaysia (Jabatan Perlindungan Data Peribadi, JPDP) at www.pdp.gov.my.