Privacy Policy

Your privacy matters to us. This policy explains how celestivonexusara collects, uses, and protects your personal information when you use our financial control platform.

Effective Date: January 1, 2025 | Last Updated: March 15, 2025

Information We Collect

celestivonexusara collects various types of information to provide you with our comprehensive financial control services. Understanding what information we collect helps you make informed decisions about using our platform.

Personal Information: This includes your name, email address, phone number, and postal address that you provide when creating an account or contacting our support team.

Financial Information: We collect bank account details, transaction history, and financial goals that you choose to share with our platform to provide personalized financial insights.

Usage Data: We automatically collect information about how you interact with our platform, including page views, feature usage, and session duration.

Device Information: We gather technical information about your device, including IP address, browser type, operating system, and device identifiers.

Communication Records: We maintain records of your communications with our customer support team and any feedback you provide about our services.

How We Use Your Information

Your information enables us to deliver personalized financial control services and continuously improve our platform. We use your data responsibly and only for legitimate business purposes that benefit your experience.

Purpose	Data Used	Legal Basis
Account Management	Personal information, login credentials	Contract performance
Financial Analysis	Financial data, transaction history	Legitimate interest
Platform Improvement	Usage data, feedback	Legitimate interest
Customer Support	Contact information, support history	Contract performance
Security Monitoring	Device information, access logs	Legitimate interest

Data Sharing and Disclosure

We maintain strict control over your personal information and only share it in specific circumstances that are necessary for our service delivery or legally required. Your trust is fundamental to our business relationship.

Third-Party Service Providers

We work with carefully selected third-party service providers who help us deliver our financial control services. These providers are contractually bound to protect your information and can only use it for the specific services they provide to us.

Banking Partners: We share necessary financial information with authorized banking partners to process transactions and provide account connectivity services.

Technology Providers: Cloud storage, analytics, and security service providers receive limited data to support our platform infrastructure and performance monitoring.

Legal Compliance: We may disclose your information when required by law, court order, or to protect our rights and the safety of our users.

Business Transfers: In the event of a merger, acquisition, or asset sale, your information may be transferred as part of the business transaction.

Your Privacy Rights

You have comprehensive rights regarding your personal information. We respect these rights and provide easy ways for you to exercise them. Understanding your rights helps you maintain control over your data.

Access Right: You can request a copy of all personal information we hold about you. We'll provide this information in a clear, readable format within 30 days of your request.

Correction Right: If you notice any inaccuracies in your personal information, you can request corrections through your account settings or by contacting our support team.

Deletion Right: You can request the deletion of your personal information, subject to certain legal and business requirements. We'll delete your data within 60 days of a valid request.

Portability Right: You can request your personal information in a structured, machine-readable format to transfer to another service provider.

Objection Right: You can object to certain types of data processing, including direct marketing communications and automated decision-making.

Data Security Measures

Protecting your financial information is our top priority. We implement multiple layers of security to safeguard your data from unauthorized access, alteration, or disclosure.

Bank-Level Security

Our security infrastructure meets and exceeds banking industry standards. We use the same encryption and security protocols that major financial institutions rely on to protect sensitive customer data.

Encryption: All data transmission uses TLS 1.3 encryption, and stored data is encrypted using AES-256 encryption standards.

️

Access Controls: We implement strict access controls with multi-factor authentication and role-based permissions for all team members.

Monitoring: Our security systems continuously monitor for suspicious activities and potential security threats.

Regular Audits: We conduct quarterly security audits and penetration testing to identify and address potential vulnerabilities.

Data Retention

We retain your personal information only for as long as necessary to provide our services and comply with legal requirements. Our retention periods are designed to balance your privacy rights with business and legal obligations.

Data Type	Retention Period	Reason
Account Information	5 years after account closure	Regulatory compliance
Financial Data	7 years after last transaction	Legal requirements
Usage Analytics	2 years from collection	Service improvement
Support Communications	3 years from resolution	Quality assurance
Marketing Preferences	Until withdrawal of consent	User preference

International Data Transfers

As a Malaysian-based company serving customers globally, we may transfer your personal information across borders to provide our services effectively. We ensure appropriate safeguards are in place for all international transfers.

When we transfer your data to countries outside Malaysia, we use standard contractual clauses approved by relevant data protection authorities. These contracts require the receiving parties to protect your information to the same standards we maintain.

Data Protection Standards

All international transfers comply with the Malaysian Personal Data Protection Act 2010 and other applicable data protection regulations. We regularly review and update our transfer mechanisms to ensure continued compliance.

Cookies and Tracking

We use cookies and similar tracking technologies to enhance your experience on our platform. These technologies help us understand how you use our services and allow us to personalize your experience.

Essential Cookies: Required for basic platform functionality, including authentication and security features.

Analytics Cookies: Help us understand user behavior and improve our platform performance.

Preference Cookies: Remember your settings and preferences for a personalized experience.

️

Functional Cookies: Enable advanced features and enhanced functionality based on your usage patterns.

Children's Privacy

Our financial control platform is designed for adults who can make informed financial decisions. We do not knowingly collect personal information from children under 18 years of age.

If we discover that we have collected personal information from a child under 18, we will immediately delete that information from our systems. Parents or guardians who believe their child has provided us with personal information should contact us immediately.

Changes to This Policy

We regularly review and update this privacy policy to reflect changes in our practices, services, and legal requirements. Material changes will be communicated through email notifications and prominent notices on our platform.

We encourage you to review this policy periodically to stay informed about how we protect your information. Your continued use of our platform after policy changes indicates your acceptance of the updated terms.

Regulatory Compliance

celestivonexusara operates in compliance with the Malaysian Personal Data Protection Act 2010 and other applicable data protection regulations. We maintain active compliance monitoring and regularly update our practices to meet evolving regulatory requirements.

Regulatory Oversight

Our privacy practices are subject to oversight by the Malaysian Personal Data Protection Department and other relevant regulatory bodies. We cooperate fully with regulatory inquiries and maintain transparent reporting on our data protection practices.

Contact Our Privacy Team

Questions about this privacy policy or your personal information? Our dedicated privacy team is here to help.

Email: privacy@celestivonexusara.sbs
Phone: +60 3 8011 0389
Address: CT-08-12, Level 8, Corporate Tower
Jalan SS15/4G, Subang Square Business Centre
47500 Subang Jaya, Selangor, Malaysia

We typically respond to privacy inquiries within 48 hours and resolve most requests within 30 days.