Privacy Policy

1. Introduction

Amanah Legal (referred to in this policy as "we", "us", or "our") is committed to protecting the personal data of individuals who engage with our services or visit our website. This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and your rights in relation to that data.

This policy applies to personal data collected through our website at amanahlleer.live, via email, telephone, and through the course of client engagements. For questions about this policy, contact us at [email protected].

2. Data Controller

The data controller is Amanah Legal, 15-3, Menara Amanah, Jalan Sultan Ismail, 50250 Kuala Lumpur, Wilayah Persekutuan, Malaysia. We process personal data in accordance with the Personal Data Protection Act 2010 (Malaysia) ("PDPA").

3. Personal Data We Collect

We collect the following categories of personal data:

• Identity data: Full name, NRIC or passport number (where required for registration purposes), director/shareholder identity information
• Contact data: Email address, telephone number, business and residential address
• Engagement data: Details of your corporate matter, instruction documents, correspondence, and file notes
• Technical data: IP address, browser type, pages visited, and session duration collected via website analytics
• Financial data: Bank account details and payment records where applicable to billing

We collect data directly from you when you submit an enquiry form, communicate with us by email or telephone, or engage us for professional services.

4. Legal Basis for Processing

We process your personal data on the following lawful bases:

• Consent: Where you have provided consent via our contact form or cookie preference controls
• Contract performance: Where processing is necessary to perform our professional services engagement
• Legal obligation: Where processing is required under Malaysian law, including AML/CFT obligations under AMLATFPUAA 2001
• Legitimate interest: For website analytics, security monitoring, and service improvement purposes

5. How We Use Your Personal Data

• To provide corporate formation, registration, and restructuring services
• To communicate with you regarding your matter or enquiry
• To comply with our legal and regulatory obligations, including client due diligence
• To maintain accurate records for professional and accounting purposes
• To improve our website and understand how visitors use our content
• To send service-related communications (not marketing without consent)

6. Data Retention

Client matter files are retained for a minimum of seven years following matter completion, consistent with the Limitation Act 1953 and our professional indemnity requirements. Website enquiry data not resulting in an engagement is held for a maximum of 12 months. Analytics data is held for 26 months in aggregated, anonymised form.

7. Data Sharing

We do not sell personal data. We share personal data only in the following circumstances:

• Regulatory authorities: SSM, MIDA, or other bodies as required by the engagement or by law
• Professional referral partners: Tax advisors, auditors, or bankers where you have instructed us to coordinate with them
• IT service providers: Secure cloud storage and document management providers under data processing agreements
• Legal requirements: Where disclosure is required by a court order or applicable legislation

8. Data Security

We implement appropriate technical and organisational measures to protect personal data, including encrypted document transmission, access-controlled client file systems, and staff data handling protocols. In the event of a personal data breach that poses risk to data subjects, we will notify affected individuals within a reasonable timeframe as required by the PDPA and applicable guidelines.

9. Cookies

Our website uses cookies for functional, analytics, and preference purposes. You can manage your cookie preferences at any time via our Cookie Policy page. Essential cookies required for basic website operation cannot be disabled.

10. Your Rights Under the PDPA

Under the Personal Data Protection Act 2010 (Malaysia), you have the following rights:

• Right to access your personal data held by us
• Right to correct inaccurate or incomplete personal data
• Right to withdraw consent where processing is based on consent
• Right to prevent processing for marketing purposes
• Right to lodge a complaint with the Personal Data Protection Commissioner

To exercise any of these rights, contact us in writing at [email protected]. We will respond within 21 days of a valid written request.

11. Third-Party Links

Our website may contain links to third-party websites including SSM, MIDA, and other regulatory bodies. This Privacy Policy does not apply to those external sites. We recommend reviewing the privacy policies of any third-party websites you visit via links from our pages.

12. Children's Privacy

Our services are directed at adults and businesses. We do not knowingly collect personal data from individuals under the age of 18. If we become aware that personal data has been submitted by a minor, we will take steps to delete it promptly.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with a revised "Last Updated" date. Continued use of our website or services after such changes constitutes acceptance of the updated policy. Material changes will be communicated via email to existing clients.

14. Contact for Data Enquiries

Amanah Legal
15-3, Menara Amanah, Jalan Sultan Ismail, 50250 Kuala Lumpur, Malaysia
Email: [email protected]
Phone: +60 3-7846 2391