Privacy Policy

1. Introduction

Benvo Furniture Sdn. Bhd. (“Company”, “we”, “our”, or “us”) values your privacy and is committed to protecting your personal data. This Privacy Policy outlines how we collect, use, disclose, and safeguard customer information in compliance with the Personal Data Protection Act 2010 (PDPA) of Malaysia.

This policy applies to all personal data processed through our Enterprise Resource Planning (ERP) system, which supports our operations in sales, finance, logistics, procurement, and customer management.

2. Collection of Personal Data

We collect personal data directly from customers, suppliers, and business partners through various channels, including:

• Online and offline transactions
• Customer service interactions
• Registrations, orders, and warranty claims
• Our ERP system

The types of personal data collected may include (but are not limited to):

• Full name, NRIC or passport number
• Contact details (phone, email, address)
• Payment and billing information
• Purchase and order history
• Preferences and feedback

3. Purpose of Processing Personal Data

• Business Transactions – to process sales, payments, deliveries, and after-sales services.
• Customer Support – to respond to inquiries, requests, or complaints.
• ERP Operations – to ensure accurate record-keeping and seamless integration of business functions.
• Compliance & Legal Requirements – to comply with applicable laws, regulations, and government directives.
• Marketing & Promotions – to provide updates on products, services, promotions, and loyalty programs (with consent).

4. Disclosure of Personal Data

Your personal data may be shared with:

• Internal departments within Benvo Furniture Sdn. Bhd. for operational purposes
• Third-party service providers (e.g., IT, logistics, payment processors)
• Regulatory and governmental authorities, where required by law
• Business partners for joint promotions, subject to customer consent

We ensure that all third parties receiving personal data comply with strict confidentiality and data protection standards.

5. Security of Personal Data

We implement appropriate technical and organizational measures to protect personal data within our ERP system, including:

• Encryption and secure access controls
• Restricted user access based on roles and responsibilities
• Regular audits and monitoring of system activities
• Data backup and recovery protocols

6. Retention of Personal Data

Personal data will be retained for as long as it is necessary to fulfill the purposes outlined in this policy or as required by law. Once no longer required, data will be securely deleted or anonymized.

7. Access and Correction Rights

Under the PDPA, customers have the right to:

• Request access to their personal data
• Correct or update inaccurate or outdated information
• Withdraw consent for certain processing activities

Requests may be directed to our Data Protection Officer (DPO) using the contact details below.

8. Transfer of Personal Data

If personal data is transferred outside Malaysia for storage or processing (e.g., via cloud hosting of the ERP system), we will ensure that adequate safeguards are in place to maintain data protection standards consistent with the PDPA.

9. Customer Obligations

To help us keep your personal data accurate and up to date, you are encouraged to:

• Provide complete and accurate information
• Update us when your details change

11. Updates to This Policy

We reserve the right to update this Privacy Policy from time to time to reflect changes in legal requirements, business practices, or our ERP system. Updates will be published on our official communication channels.