Privacy Policy &
Data Stewardship

At Indus Data Strategy, we provide specialized strategic data consultancy. To deliver these services, we collect information that identifies you or relates to your corporate identity. This includes professional contact details, organizational roles, and technical metadata required for analytics planning.

We do not collect sensitive personal data unless strictly necessary for the performance of a contract or to comply with Malaysian regulatory requirements. Most of our data intake occurs through direct consultation, secure portal uploads, or official communication channels.

The primary driver for data processing is the architectural development of your enterprise systems. We use your data to:

• Design and implement robust data architecture tailored to your specific organizational constraints.
• Execute performance audits on existing analytics planning systems to identify latency or security vulnerabilities.
• Maintain ongoing communication regarding project milestones, technical support, and statutory updates.

Our security protocols are modeled on international standards and strictly adhere to the Personal Data Protection Act (PDPA) 2010 of Malaysia. We employ end-to-end encryption for data in transit and rigorous access controls for data at rest.

Data residency is centered in Malaysia, utilizing tier-three data centers with 24/7 monitoring. We do not transfer personal data outside of Malaysia unless specifically requested by the client for global systems integration, and only after ensuring equivalent protection levels are met in the destination jurisdiction.

Under the PDPA, you maintain the right to access, correct, or withdraw consent for the processing of your personal data.