Privacy Policy
1. Introduction
Latentgrove ("we", "us", "our") is committed to handling the personal data of our learners, enquirers, and website visitors with care and transparency. This Privacy Policy explains what personal information we collect, why we collect it, how we use it, and what rights you have in relation to it.
This policy applies to all personal data collected through our website at latentgr.blog, our enquiry and enrolment processes, and our online course delivery platforms. By using our website or enrolling in a course, you confirm that you have read and understood this policy.
Latentgrove is the data controller for the purposes of the Personal Data Protection Act 2010 (PDPA) of Malaysia. Our registered address is 18 Jalan Kerinchi, Bangsar South, 59200 Kuala Lumpur, Malaysia.
Questions about this policy may be sent to [email protected].
2. What Personal Data We Collect
We collect personal data in the following ways:
- Full name, email address, and phone number provided through the enquiry form on our website
- Enrolment information including course selection and payment confirmation
- Messages and questions submitted through our forum or office-hour sessions
- Assignment and project submissions made during the course
- Cookies and similar technologies (see Section 6 and our Cookie Policy)
- Standard web server logs including IP address and browser type
- Analytics data about page visits and interactions
- Contract: processing necessary to deliver the course you enrolled in
- Legitimate interests: improving our curriculum and communicating about your course progress
- Consent: marketing communications, where you have opted in
- Legal obligation: retaining records as required under Malaysian law
- Enquiry data (non-enrolment): deleted after 12 months
- Enrolment and course records: retained for 2 years after course completion
- Completion records: retained for 5 years to support verification requests
- Financial transaction records: retained for 7 years as required under Malaysian law
3. How We Use Your Personal Data
- To respond to enquiries and process enrolments
- To deliver course content, exercise feedback, and office-hour access
- To issue written completion records to graduates
- To publish hosted project pages for Canopy graduates (with explicit consent)
- To send course-related communications including schedules and session recordings
- To improve our curriculum based on aggregate learner feedback
- To send marketing communications about future intakes, only where you have consented
We do not sell personal data to third parties. We do not use personal data to build profiles for advertising purposes.
4. Data Sharing with Third Parties
We share personal data only in the following limited circumstances:
- Course delivery infrastructure: video conferencing and forum platforms used to run live sessions and host the cohort forum. These providers are contractually bound to process data only for the purpose of delivering the service.
- Payment processing: payment gateway providers who handle transaction data. We do not store full card details.
- Analytics: aggregate, anonymised usage data may be processed through analytics services. We do not send identifiable personal data to analytics platforms without consent.
- Legal requirements: where we are required to disclose data under Malaysian law or a valid court order.
5. How We Protect Your Data
- Learner data is stored on servers located in Malaysia
- Access to personal data is restricted to Latentgrove staff with a direct operational need
- Data in transit is encrypted using TLS
- Our systems are reviewed periodically for security vulnerabilities
- In the event of a data breach affecting your personal data, we will notify you and the relevant authority within the timeframe required under Malaysian law
6. Cookies
Our website uses cookies to store your consent preferences and to understand how the site is used. We do not set non-essential cookies without your consent. Full details of the cookies we use and how to manage them are in our Cookie Policy.
7. Your Rights
Under the Personal Data Protection Act 2010 (Malaysia) and applicable data protection principles, you have the following rights:
- Right of access: to request a copy of the personal data we hold about you
- Right to rectification: to request correction of inaccurate or incomplete data
- Right to erasure: to request deletion of your data, subject to legal retention obligations
- Right to withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing
- Right to object: to processing based on legitimate interests, including for direct marketing
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days. If you are not satisfied with our response, you may contact the Department of Personal Data Protection (JPDP) Malaysia.
8. Third-Party Links
Our website and course materials may contain links to external websites. We are not responsible for the privacy practices of those sites. We recommend reviewing their privacy policies before sharing any personal data with them.
9. Children's Privacy
Our courses are designed for adults and are not directed at individuals under the age of 18. We do not knowingly collect personal data from persons under 18. If you believe we have inadvertently collected data from a minor, please contact us at [email protected] and we will delete it promptly.
10. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date at the top of this page. If changes are material, we will notify enrolled learners by email. Continued use of the website or your course after a change constitutes acceptance of the updated policy.
11. Contact
For privacy-related questions or to exercise your rights:
- Email: [email protected]
- Address: 18 Jalan Kerinchi, Bangsar South, 59200 Kuala Lumpur, Malaysia