Customer Privacy
How the ERP collects, stores, and uses customer data — plus what buyers see and consent to.
Compliance snapshot
Malaysia PDPA 2010 and Singapore PDPA — customer data is stored in MY-South-East-Asia and access is logged for 365 days.
Privacy settings
What customers see and agree to when they visit the storefront or place an order.
Privacy policyPublished
Linked from the storefront footer and attached to every order confirmation.
Cookie consent bannerOn
GDPR-style banner shown to first-time visitors from restricted regions.
Strictly-necessary cookies only
Disable analytics and marketing cookies until the buyer opts in.
Data sharing opt-outRequired in 3 regions
Let customers request that their data not be shared with ad or analytics providers.
Customer intelligence
Enriched customer profiles
EnabledCombine order history, ring sizes, pickup preferences, and repeat-buy cadence to surface recommendations in the storefront and POS. Enriched attributes are derived from first-party data only and never leave your market region.
- · Last purchased product
- · Preferred metal / karat
- · Average order value
- · Fulfillment preference
Marketing consent
Controls for opting customers into newsletters, SMS, and post-purchase flows.
Email marketing consent
Show a ‘subscribe’ checkbox at checkout and on the sign-up form.
SMS marketing consentSender unverified
Requires a verified sender in Notifications. Only enabled for customers in MY and SG.
Double opt-inRecommended
Send a confirmation email before adding a new subscriber to your marketing list.
Post-purchase consent
After checkout, ask buyers whether they want product-care reminders and restock alerts.
Data storage location
Primary region
Malaysia (Kuala Lumpur)
ap-southeast-5 · Encrypted at rest
Backup region
Singapore
ap-southeast-1 · 4× daily snapshot
Data access & retention
All admin logins are audited. Customer personal data is retained for 7 years after the last order to satisfy Malaysian accounting requirements, then irreversibly anonymised.