Privacy Policy
This Privacy Policy describes how BizMaxEko collects, uses, stores and discloses personal data in connection with the website BizMaxEko.info and related services that provide economic growth guidance for executives. The policy applies to visitors, subscribers and clients who use our analytical reports, workshops, dashboards and advisory briefings. Practical cases and scenarios appear throughout to show how data is handled in typical interactions — for example, registering for an executive briefing, downloading a country growth playbook, or participating in a benchmarking survey. Our contact details: BizMaxEko, 2, Jalan Melati Square, Bandar Baru Nilai, 71800 Nilai, Negri Sembilan, Malaysia; phone +60120502203.
Definitions
This section defines key terms used in the policy so readers can follow examples and case scenarios. Definitions are written to be clear for executives and corporate contacts using BizMaxEko services.
Data Collection
We collect data in three main ways: data you provide directly, data collected automatically, and data received from third parties. Below we outline typical items collected in each category and practical reasons tied to service scenarios — for example, running a secure webinar, processing payment for a report, or preparing a country-specific briefing based on submitted benchmarking data.
Data You Provide
When interacting with BizMaxEko (forms, registrations, purchases, surveys, or direct correspondence), you may supply personal and business information necessary to deliver the requested service. Example: submitting a request for a tailored growth scenario requires company profile and contact details.
- Contact details: name, work email, direct phone number and business mailing address used to deliver materials and schedule briefings.
- Professional and company information: job title, company name, company registration number, industry sector and company size to enable targeted benchmarking and scenario building.
- Account and access details: username, password (stored securely) and account preferences for registered users and corporate portals.
- Transaction and billing information: billing name and address, invoicing details and payment confirmation records required for purchases of reports and paid workshops.
- Submitted content and project data: materials you upload, survey responses, project briefs and contractual documents provided as part of an advisory engagement.
- Communications and feedback: correspondence, support requests and testimonials provided during service delivery or follow-up consultations.
Automatically Collected Data
When you visit BizMaxEko.info or interact with our online services, we automatically collect technical and usage data to operate and improve the platform and secure access to resources. Typical uses include troubleshooting webinar access, measuring engagement with executive briefings, and preventing fraudulent transactions.
- IP address and approximate location (city level) used to detect suspicious access patterns and to localize content for regional audiences.
- Device and browser information, operating system, screen resolution and device identifiers used for compatibility and security checks.
- Cookies and similar identifiers that track session activity, preferences and consent choices to maintain user sessions and improve the site experience.
- Usage data such as pages viewed, time spent on content, downloads and feature interactions used for analytics and product improvement.
- Referral and campaign data such as the source that directed a visitor to BizMaxEko.info, used to evaluate outreach and event registrations.
- Error logs and diagnostic information recorded to resolve technical issues during events like live workshops or dashboard access.
Third-Party Data Sources
We may receive personal data about individuals from third-party sources to enrich business profiles, verify information, or process payments. Third-party transfers are limited to providers necessary to deliver the requested service, and examples are given to illustrate typical scenarios.
- Analytics providers and marketing platforms that supply aggregated engagement metrics and campaign performance data used to optimize content and invitations to briefings.
- Payment processors and invoicing services that provide payment status and transaction confirmations needed to complete purchases of reports and workshops.
- Publicly available registries and professional networks (for example corporate registries or professional profile services) used to validate company information when preparing benchmarking scenarios.
Purposes of Processing
We process personal data for specific, stated business purposes that support the delivery of analytical services for executives. Each purpose below includes an example scenario showing how data is used in practice without overstatement of outcomes.
- To provide contracted services such as reports, dashboards and workshops (e.g., preparing a bespoke growth opportunity analysis after receiving company profile data).
- To administer accounts and allow access to subscription services (e.g., enabling a corporate user to access a private benchmarking dashboard).
- To process payments, invoices and manage billing records for purchased reports and events.
- To communicate with users about service updates, event logistics and materials requested by executives or their delegates.
- To personalize content and recommendations on BizMaxEko.info, for example surfacing regional scenario briefs based on stated industry and company size.
- To perform analytics and product improvement, using aggregated or anonymized information to refine methodologies and workshop formats.
- To comply with legal obligations and manage disputes or contribute when required by applicable law or regulatory request.
- To support research and aggregated benchmarking shared with clients in anonymized form to illustrate sector trends while removing personally identifying details.
Legal Bases for Processing
Where applicable, we rely on recognized lawful bases for processing personal data. Depending on the service and jurisdiction this may include consent, performance of a contract, legitimate interests, and compliance with legal obligations. Examples are provided for clarity.
- Consent: When you opt in to newsletters, marketing materials or optional profiling surveys, we process data based on your consent. Example: subscribing to an industry update email list.
- Contract performance: Processing necessary to provide a service you requested, such as delivering a purchased report or fulfilling a consulting engagement.
- Legitimate interests: Processing to maintain security, prevent fraud, improve services and perform analytics where these interests are balanced against individual rights. Example: analyzing access logs to detect unusual login attempts.
- Legal obligations: Processing required to comply with laws and regulatory requirements, such as retaining tax records for statutory periods.
GDPR and International Rights
Although BizMaxEko is based in Malaysia, we recognize that some users may be located in the EU/EEA. This section outlines rights that mirror the EU General Data Protection Regulation (GDPR) to help executives and organizations understand available options. Use cases show how a right may be exercised in practice.
- Right of access: You may request confirmation of whether we process your personal data and obtain a copy of data we hold about you. Example: an EU-based executive requesting a copy of their registration and engagement records.
- Right to rectification: If personal data we hold is inaccurate or incomplete, you can request correction, for example updating a job title or contact number before a scheduled briefing.
- Right to erasure: In certain circumstances you may request deletion of personal data. Example: removing personal contact details from marketing lists when they are no longer relevant.
- Right to restrict processing: You may ask that we limit processing of certain personal data while a dispute is resolved, such as during review of benchmarking submissions.
- Right to data portability: Where applicable, you may request a machine-readable copy of personal data you provided for direct transfer to another data controller.
- Right to object: You may object to processing based on legitimate interests or for direct marketing; we will evaluate and respond consistent with applicable law.
Data Sharing and Disclosure
BizMaxEko shares personal data only for legitimate business purposes described here and in cases required by law. Typical sharing scenarios include engaging service providers to host dashboards, coordinating events with venue partners, or responding to lawful requests from authorities. Each sharing case is aligned with the need to protect confidentiality and minimize personal data exposure.
- Service providers: hosting, cloud storage, analytics, email distribution and CRM platforms that process data on our behalf to deliver services (e.g., delivering reports or webinar streaming).
- Payment and billing processors that handle invoices and transaction confirmations for purchased content and events.
- Professional advisors such as auditors, legal counsel or business advisors engaged to provide business services to BizMaxEko.
- Event partners and venues for in-person workshops where attendee lists and logistical details are shared to coordinate services.
- Acquirers or counterparties in the event of a merger, acquisition, corporate reorganization or sale of assets, where transfer of business records is necessary for continuity of services.
- Law enforcement, courts or regulators when required by law, legal process or to protect the rights, property or safety of BizMaxEko, our users or others.
International Transfers
Personal data may be transferred to and processed in jurisdictions outside Malaysia where third-party service providers operate. Transfers are limited to what is necessary to deliver services such as cloud hosting, analytics or payment processing. Example: storing encrypted backups in a regional data center to maintain availability for international clients.
When transfers occur, BizMaxEko implements appropriate safeguards such as standard contractual clauses, technical measures like encryption, access controls, and data minimization. We assess third-party providers and require contractual commitments to protect personal data consistent with this policy.
Data Retention
We retain personal data only as long as necessary to fulfill the purposes described in this policy, to meet legal and regulatory requirements, and to resolve disputes. Retention practices consider the type of data and the context in which it was collected.
Account and client records are generally retained for the duration of the active relationship and for up to seven years after account closure where necessary for tax, accounting and contractual recordkeeping consistent with Malaysian business practices.
Communications, support messages and correspondence are typically retained for up to three years for reference and quality assurance related to service delivery, unless a longer retention period is required by law or for legitimate business purposes.
Security and access logs, diagnostic records and technical logs are retained for security monitoring and incident response purposes, commonly for a period of 12 months, unless a longer period is necessary to contribute a specific incident.
When data is no longer needed, we either securely delete or anonymize it. Deletion processes depend on the storage medium and may involve overwriting, encrypted deletion or secure disposal of physical media. Example: anonymizing benchmarking inputs so they can be reused in aggregated industry studies without identifying contributors.
Security Measures
BizMaxEko employs a mix of technical, organizational and operational measures to protect personal data. Measures include encryption in transit and at rest, role-based access controls, periodic security assessments, staff training and an incident response plan. Practical examples include a secure portal for distributing confidential executive reports and two-factor authentication for administrative accounts.
- Encryption of data in transit using TLS and encryption at rest for sensitive databases.
- Role-based access controls and least-privilege authorizations for staff and third-party providers.
- Regular security assessments, vulnerability scanning and a documented incident response procedure.
User Rights
Users have rights to access, correct or request restrictions on their personal data. To exercise rights, contact us using the details below. We typically respond to requests within 30 days and will provide information on any follow-up steps and reasonable verification required to confirm identity.
- Right of access: request a copy of personal data we hold about you and information on how it is processed.
- Right to rectification: request correction of inaccurate or incomplete personal data.
- Right to erasure: request deletion of personal data where legal conditions are met.
- Right to restrict processing: request temporary limitation of processing while a matter is reviewed.
- Right to object: object to processing based on legitimate interests or to direct marketing.
- Right to data portability: request a structured, machine-readable copy of personal data provided by you, where applicable.
- Right to withdraw consent: if processing is based on consent, you may withdraw that consent for future processing.
- Right to lodge a complaint with a supervisory authority: if you believe your rights are not respected you may contact the relevant data protection authority for guidance; BizMaxEko will cooperate with lawful inquiries.
Data access and control requests
Executives and authorized representatives may request access, correction, deletion or portability of personal data held by BizMaxEko. Requests should describe the information sought and provide proof of identity. We review each request against applicable law and internal records, using case-based checks such as verifying recent transaction details or consultancy engagement records to ensure proper authorization before taking action.
We aim to acknowledge receipt of a rights request within 7 business days and to complete routine requests within 30 days where feasible. Complex requests may require additional time; in such scenarios we will provide an updated timeline and an explanation of the steps being taken based on the specific case and data sources involved.
Marketing communications and opt-in choices
BizMaxEko uses marketing communications to share research, case studies, scenario planning invitations, and service updates relevant to executive economic growth guidance. Contacts who opt in will receive messages by email, SMS or postal mail as appropriate to the channel selected during signup. Messages include practical case summaries and invitations to live scenario workshops tailored to leadership needs.
To stop marketing messages, follow the unsubscribe link in any email or reply STOP to SMS messages. You may also contact our office at +60120502203 or write to our address to request removal from marketing lists. Processing will be handled within a reasonable timeframe and applied to future communications.
Children and minors
BizMaxEko’s services and communications are intended for adult executives and authorized representatives. We do not seek to collect personal data from children under 18. If we learn that we have collected information from a minor without proper authorization, we will take steps to delete that data in accordance with applicable law and the case-specific facts of the situation.
Links to third-party sites
Our site and materials may link to third-party websites, tools and partner portals used for analytics, case studies or scenario workshops. These links are provided for convenience and illustration of practical examples; BizMaxEko is not responsible for third-party privacy practices. We recommend reviewing the privacy policies of any external site before submitting personal data during a case study or interactive scenario.
Changes to this privacy notice
We periodically update our privacy notice to reflect operational changes and new case-study methodologies. When updates are material, BizMaxEko will post a revised version and highlight significant changes via our communications channels. For leadership teams using our ongoing advisory services, we may provide scenario-specific notices explaining how updates affect current engagements.