Privacy Policy
Last Updated: 10 June 2025 | Effective Date: 10 June 2025
This Privacy Policy explains how Tensorhaus ("we", "us", "our") collects, uses and protects personal information provided to us through our website and in connection with our course programmes. We operate in accordance with the Personal Data Protection Act 2010 (PDPA) of Malaysia.
1. Data Controller
The data controller responsible for your personal information is:
Tensorhaus
30 Jalan Raja Chulan, 50200 Kuala Lumpur, Malaysia
Email: [email protected]
Phone: +60 3-2091 6473
2. Information We Collect
2.1 Information you provide directly
- Full name — collected when you submit an enquiry form or enrol in a course
- Email address — used for course communication and administrative contact
- Phone number — collected if you choose to provide it in the enquiry form
- Course-related information — including submission files and exercise responses as part of course delivery
2.2 Information collected automatically
- Browser type and version, operating system, and device type
- Pages visited on our website, time of visit, and referring URL
- Cookie data as described in our Cookie Policy
- Analytics data through services such as Google Analytics (where you have consented)
3. Legal Basis for Processing
We process personal data on the following bases under the PDPA and general data protection principles:
- Consent: Where you have explicitly agreed to the collection and use of your data, for example by submitting the enquiry form
- Contractual necessity: Where processing is required to deliver the course you have enrolled in
- Legitimate interests: For operational improvements, communications about course content, and site analytics — where these interests do not override your rights
4. How We Use Your Information
- To respond to enquiries and provide information about our courses
- To process enrolments and manage course delivery including tutor assignments and scheduling
- To send cohort communications — start dates, materials, schedule reminders and assessments
- To issue written records of course completion
- To improve our website and course materials using anonymised analytics data
- To comply with legal obligations under Malaysian law
We do not use your personal information for unsolicited marketing without your explicit consent. You may opt out of non-essential communications at any time by contacting [email protected].
5. Data Sharing
We do not sell personal data. We may share data with:
- Course tutors and mentors: who receive learner names, submission files and contact details for course administration
- Service providers: such as email delivery services, cloud hosting providers and analytics tools, who are contractually bound to process data only on our instructions
- Legal authorities: where disclosure is required by Malaysian law or a valid court order
6. Data Retention
We retain personal data for the following periods:
- Enquiry form data — 12 months from date of last contact
- Enrolment and course records — 5 years from course completion, to support the written records of completion we issue
- Analytics data — aggregated and retained for up to 26 months; raw session data is not retained
- Communication records — 2 years from the end of a course
After these periods, data is deleted or anonymised.
7. Data Security
We take reasonable technical and organisational steps to protect personal data against unauthorised access, alteration, disclosure or destruction. These include:
- HTTPS encryption for all data in transit on our website
- Access controls that limit personal data to staff with a course delivery need
- Regular review of data handling practices within course administration systems
- Data breach notification to affected individuals and to the relevant authority within a reasonable timeframe where required
8. Cookies
We use cookies on our website. Essential cookies are required for the site to function. Optional cookies (analytics and preference) are only placed with your consent. For full details, see our Cookie Policy.
9. Your Rights
Under the PDPA and applicable data protection principles, you have the right to:
- Access: Request a copy of the personal data we hold about you
- Correction: Ask us to correct inaccurate or incomplete data
- Erasure: Request deletion of data we no longer have a legal basis to hold
- Objection: Object to processing based on legitimate interests
- Withdrawal of consent: Where processing is based on consent, withdraw it at any time without affecting the lawfulness of prior processing
To exercise these rights, email [email protected] with your name and a description of your request. We will respond within 21 days.
If you believe your data has been mishandled, you may raise a complaint with the Department of Personal Data Protection Malaysia (JPDP) — the relevant supervisory authority under the PDPA.
10. Third-Party Links
Our website may contain links to external sites. We are not responsible for the privacy practices of those sites and recommend reviewing their policies directly. Clicking a third-party link takes you outside our control.
11. Minimum Age
Our courses are intended for adults aged 18 and over. We do not knowingly collect personal data from anyone under 18. If you believe a minor has submitted data to us, contact [email protected] and we will delete it.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated by email to enrolled learners and noted on this page with an updated date. Continued use of the website or enrolment in courses after the effective date of a revised policy constitutes acceptance of the updated terms.
13. Contact
For any questions about this policy or your personal data:
Tensorhaus — Data Privacy
30 Jalan Raja Chulan, 50200 Kuala Lumpur, Malaysia
Email: [email protected]
Phone: +60 3-2091 6473