Get A Quote

Privacy Policy

Last Updated: 22 January 2026

  1. Introduction and Statutory Compliance

    1. Status of Notice

      This Personal Data Protection Notice is issued by Infinix Marketing (hereinafter referred to as “the Company,” “we,” “us,” or “our”) in accordance with the Personal Data Protection Act 2010 (PDPA). This Notice serves to inform you of our practices regarding the collection, storage, and processing of personal data belonging to our clients, website visitors, and potential business partners.

    2. Acceptance of Terms

      By interacting with our website, engaging our search engine optimization (SEO) services, or providing information through digital channels such as WhatsApp and email, you acknowledge that you have read and understood the terms of this Notice.

    3. Data Roles

      We operate as a “Data User” (as defined under the PDPA) when handling your business information for our own records and as a “Data Processor” when managing data on your behalf during the course of SEO and analytics implementations.

  2. Types of Personal Data Collected

    1. Identifiable Information

      In the course of our commercial transactions, we collect a variety of identifiable information which includes, but is not limited to, your full name, company registration details (SSM), business address, email, and phone number.

    2. Acceptance of Terms

      As an SEO service provider, we require specific technical data to perform our duties effectively. This necessitates the collection of website administrative login credentials, Google Search Console tokens, and Google Analytics access.

    3. Automated Metadata

      We automatically collect technical metadata such as IP addresses, browser types, and session activity through cookies to improve our service delivery and analyze website performance.

    4. Financial Information

      We may also collect financial data, including bank account details and tax information, strictly for the purposes of billing, transaction verification, and compliance with the Stamp Act 1949.

  3. Purposes and Legal Basis for Processing

    1. Operational Fulfillment

      The primary purpose of processing your data is to facilitate the delivery of our digital marketing and SEO services, including keyword optimization, technical website audits, and performance reporting.

    2. Integrity Due Diligence

      Beyond service delivery, we process data for Integrity Due Diligence to evaluate potential business relations and ensure compliance with anti-money laundering standards and regulatory guidelines.

    3. Relationship Management

      We utilize your contact information for relationship management, responding to inquiries, and providing updates on SEO industry trends, service enhancements, or upcoming marketing events.

    4. Contractual Necessity

      Our processing is grounded in contractual necessity and legal obligations under Malaysian law. Failure to provide mandatory information may result in our inability to provide the requested services or maintain a professional business relationship.

  4. Disclosure and International Data Transfers

    1. Confidentiality and Third-Party Sharing

      Your personal data is treated with strict confidentiality and will not be sold to third parties. However, we may disclose your information to authorized third-party service providers, such as cloud storage vendors, SEO software platforms (e.g., SEMrush or Ahrefs), and professional advisers including auditors or legal counsel, strictly on a need-to-know basis.

    2. Cross-Border Transfers

      Due to the global nature of digital marketing tools and cloud infrastructure, your data may be transferred to and maintained on servers located outside of Malaysia.

    3. Safeguards

      In such instances, we take reasonable steps to ensure that the data is afforded a level of protection comparable to the requirements of the PDPA through robust service level agreements and security audits.

  5. Data Security, Retention, and User Rights

    1. Technical Security

      We implement appropriate technical and organizational measures, including Secure Socket Layer (SSL) encryption, to protect your data against unauthorized access, accidental loss, or unlawful destruction.

    2. Retention Periods

      We retain your data only for as long as necessary to fulfill the purposes outlined in this Notice. Typically, we maintain client records for twenty-four months following the termination of service, and financial records for seven years to comply with statutory tax and accounting regulations.

    3. Access and Correction Rights

      Under the PDPA, you retain the right to request access to your data, seek corrections for inaccuracies, or withdraw your consent for marketing communications.

    4. Contact for Inquiries

      All such requests or complaints regarding your personal data should be directed to our designated Data Protection Officer via our official email at [Insert Email Address].