Privacy Policy

Personal Information

We may collect personal information you provide directly or via authentication services, such as:

• Name and email address (obtained via Google login for authentication).
• Your designated role or position (e.g., Penyelaras Bestari, Juruteknik).
• The name of your School or Organization (e.g., SMK St. Saribas, PPD Betong).
• Information provided when requesting access or support.

Non-Personal Information

PTISBetong does not actively collect non-personally identifiable usage data like IP addresses or detailed browser logs for tracking individual users. Standard server logs necessary for security and operations may be maintained by our hosting provider (Supabase).

We utilize your collected information strictly for operational purposes:

• Authentication: To securely verify your identity and grant access using Google Authentication.
• Platform Operation: To maintain, operate, and improve the functionality and usability of the PTISBetong platform.
• ICT Management: To facilitate the core purpose of tracking, monitoring, and managing ICT assets and data across schools in the Betong division.
• Communication: To send essential system notices, updates, or announcements related to platform operations or required actions.
• Support: To respond to your inquiries or support requests.
• Compliance: To adhere to applicable laws, regulations, and Education Department directives.

All data is securely stored using Supabase (leveraging PostgreSQL and secure storage solutions). We implement industry-standard security measures including access controls, encryption (in transit and at rest), and regular reviews. However, no system is impenetrable, and absolute security cannot be guaranteed.

We do not sell, rent, or trade your personal data.

Information sharing is limited to:

• Internal Operations: Within the PPD Betong ICT unit and authorized personnel for necessary operational tasks.
• Legal Requirements: When required by law, court order, or governmental request.
• Safety & Protection: If necessary to prevent harm, fraud, or protect the rights and safety of users or the public.

We rely on essential third-party services:

• Google Authentication: Handles secure login. Review Google's Privacy Policy.
• Supabase: Provides database and backend infrastructure. Review Supabase's Privacy Policy.

These services have their own privacy practices.

We use essential cookies primarily for authentication (maintaining your login session) and core site functionality. We do not use cookies for broad user tracking or advertising. You can manage cookie preferences in your browser, but disabling essential cookies may impair site functionality.

Your information is retained only as long as necessary for operational purposes, to maintain your account access, or as required by educational regulations or laws. Data no longer needed will be securely deleted or anonymized.

Subject to Malaysian law (like the PDPA), you may have rights to:

• Request access to your personal data held by us.
• Request correction of inaccurate data.
• Request deletion of your data (within legal and operational constraints).

To exercise these rights, please use the contact information provided.

This policy may be updated periodically. We will revise the "Last Updated" date at the top. We encourage you to review this page occasionally for any changes. Continued use after updates constitutes acceptance.

PTISBetong is intended for use by authorized educational staff and is not directed at children under 13. We do not knowingly collect data from children under 13. If such collection is discovered, the data will be promptly deleted.

This Privacy Policy is governed by and construed in accordance with the laws of Malaysia. Any disputes shall be subject to the jurisdiction of Malaysian courts.