Privacy Policy — General Statement

VisiNowExec operates VisiNowExec.info and is committed to handling personal data responsibly in the context of providing vision-planning services for directors and founders. This policy explains what data we collect, why we collect it, how we use it, and the choices available to individuals. The policy is oriented toward practical examples and scenarios—illustrating how typical founder interactions, workshop enrollments, and advisory engagements lead to specific data flows and retention decisions. We describe common cases such as onboarding a company for a facilitated workshop, sharing anonymised case-study extracts, and performing analytics to improve session formats. The goal is to be transparent about everyday processing activities while describing safeguards and rights applicable to users located in Malaysia and other jurisdictions.

2026-02-25
VisiNowExec (Business ID 568309945283), Jalan Prima Tropika Barat 2, Taman D'Alpinia, 40000 Cyberjaya, Selangor, Malaysia
Jalan Prima Tropika Barat 2, Taman D'Alpinia, 40000 Cyberjaya, Selangor, Malaysia
[email protected]

Definitions

To make the policy easier to read, we define key terms used throughout. These definitions reflect typical scenarios directors and founders encounter when engaging with vision-planning services.

Personal data means any information that identifies or can be used to identify an individual, such as name, email address, telephone number, job title, or information linked to an individual in the context of workshop participation or advisory services.
Processing covers any operation performed on personal data, including collection, storage, analysis, sharing with service providers, anonymisation for case studies, or deletion.
User refers to a director, founder, participant, or other individual who engages with VisiNowExec services, registers for events, or contacts us for information.
Service refers to VisiNowExec offerings such as workshops, advisory sessions, templates, case studies, and online resources provided via VisiNowExec.info.
Cookies are small data files placed on devices to support functionality, remember preferences, measure engagement with our learning materials, and improve user experience across session-based scenarios.

Information We Collect

We collect information in ways that mirror common engagement scenarios: account creation for workshop participants, registration for events, communications with advisors, and automated data collection from site interactions. Examples accompany each category to show practical implications for directors and founders.

Data You Provide Directly

When signing up for programs, contacting advisors, or submitting materials for case analysis, users provide information that lets us deliver services and document interactions for follow-up or reporting.

  • Identity details: name, role (e.g., director, founder), company name used when registering for workshops or advisory engagements.
  • Contact data: email address and telephone number for scheduling and confirmations.
  • Engagement details: workshop selections, submitted strategic documents, feedback forms and case materials used for scenario exercises.
  • Payment and billing information where applicable, limited to details necessary for invoicing and transaction records.
  • Communications: messages platform with advisors, notes from sessions, and consent preferences regarding communications.
  • Optional profile details: industry sector, company size, and strategic priorities to enable tailored examples and relevant case studies.

Automatically Collected Data

When users interact with VisiNowExec.info or join online sessions, certain technical data is collected automatically to improve service delivery and understand usage patterns across typical director/founder journeys.

  • Technical device data: IP address, browser type, and device identifiers used for session management and security checks.
  • Usage data: pages visited, materials downloaded (case studies, templates), time spent on pages to assess which scenarios and formats are most helpful.
  • Event logs: timestamps of logins, workshop attendance records, and interaction markers from online exercises.
  • Analytics data: aggregated metrics used to refine workshop formats and prioritize practical scenarios.
  • Cookie-derived preferences that remember presentation settings and consent choices.
  • Error reports and performance data used to diagnose issues with delivery of online sessions or materials.

Third-Party Sources

In some cases we receive data from third parties to support service delivery or to enrich user-provided information in ways that clarify case contexts for workshops.

  • Service providers handling payments, email delivery, and video conferencing who receive limited data necessary to perform those services.
  • Analytics and hosting providers that process aggregated usage metrics and technical logs.
  • Professional advisors or partners who assist with anonymised case-study evaluation under confidentiality arrangements.

How We Use Your Information

We process data for specific, limited purposes tied to real engagement scenarios such as delivering workshops, supporting advisory sessions, and improving practical content based on usage patterns.

  • To provide and administer services requested by directors and founders (e.g., workshop delivery, advisory sessions, access to templates).
  • To communicate about bookings, schedules, follow-ups, and materials related to specific engagements.
  • To prepare anonymised case studies and scenario examples that help other leaders learn from comparable decisions.
  • To process payments and issue invoices where a service or paid resource is provided.
  • To analyze usage patterns and improve formats, content, and workshop exercises using aggregated insights.
  • To detect and prevent security incidents, fraud, or misuse of our platform and services.
  • To comply with legal obligations or to respond to lawful requests from public authorities.
  • To manage business operations, such as maintaining records of engagements and reporting for management review.

Legal Bases for Processing

Our processing relies on legal bases that align with typical engagement scenarios and the expectations of professional users, such as performance of a contract, consent for marketing, legitimate interests for platform operation, and compliance with legal obligations.

Cookies and Similar Technologies

We use cookies and similar technologies to support functionality, remember preferences, measure engagement with case materials, and analyze site performance in real-world usage scenarios.

Types include session cookies, persistent cookies, and third-party cookies used by analytics and video hosting services that power workshops and resource delivery.

Categories include strictly necessary cookies for site operation, performance and analytics cookies for improving content, and preference cookies that remember display settings and consent choices.

You can manage cookie preferences through your browser settings and, where provided, our cookie preference tool on VisiNowExec.info. Disabling certain cookies may affect functionality such as workshop video playback or login persistence.

View our Cookie Policy for detailed controls and examples of cookies used in workshop and advisory scenarios.

Sharing and Disclosure

We share personal data only as necessary for service delivery or when required by law. Common sharing scenarios are described below with practical examples.

  • Service providers: payment processors, video conferencing and hosting platforms, email delivery partners who facilitate workshops and communications.
  • Professional advisors and partners who collaborate on anonymised case analyses under confidentiality terms.
  • Legal and compliance: disclosures required to comply with legal processes or to respond to government requests.
  • Corporate transactions: in the event of a sale, merger, or reorganization, data may be transferred as part of the transaction but subject to confidentiality and contractual limits.
  • Analytics providers that aggregate usage statistics to help us refine practical workshop formats.
  • Marketing platforms where consent has been provided to receive communications about new case studies and programs.

International Transfers

Some processing activities involve service providers located outside Malaysia. When data is transferred internationally, we take steps to ensure appropriate protections are in place and that transfers are limited to necessary processing.

Safeguards include contractual protections, data minimisation, encryption during transfer, and selecting providers who meet recognised privacy standards. Transfers are limited to the extent necessary to support workshop delivery, hosting, or analytics.

Data Retention

Retention periods vary according to the type of data and the reasons for processing, with practical retention windows aligned to typical engagement cycles and compliance obligations.

Account and profile information is retained for the duration of your active engagement plus a reasonable archival period to support record-keeping and potential re-engagement.

Communications, workshop notes, and advisory session records are retained for a period necessary to manage the engagement, typically up to three years unless a longer retention period is required by law.

Technical logs and analytics are retained in aggregated or pseudonymised form to support product improvements; raw logs are kept only as long as needed for security and performance diagnostics.

When retention periods expire or when individuals request deletion and no legal basis to retain exists, we delete or anonymise personal data in line with operational needs and legal obligations.

Security Measures and Safeguards

We implement administrative, technical, and physical safeguards appropriate to the sensitivity of the information and the risk to individuals. Security measures are chosen to reflect practical threat scenarios associated with online workshops, document sharing, and advisor communications.

  • Encryption in transit using TLS for all web traffic and encryption at rest for sensitive records where applicable.
  • Access controls and role-based permissions limiting internal access to data strictly to those supporting a specific engagement or operational function.
  • Regular security reviews, vulnerability assessments, and incident response procedures with documented steps for containment and notification where required.

Your Rights

Depending on applicable law, users may have rights to access, correct, restrict, or delete personal data, and to lodge complaints. We describe these rights with examples of how they apply in common founder/director scenarios.

  • Access: request a copy of personal data we hold about you, for example participant registration details and workshop attendance records.
  • Rectification: request correction of inaccurate or incomplete information such as role or company details used in case materials.
  • Erasure: request deletion of personal data when retention is no longer necessary for the purposes collected and no legal obligations require continued storage.
  • Restriction: request that processing be limited while a dispute about accuracy or lawful processing is resolved.
  • Objection: object to processing based on legitimate interests where an individual considers their rights outweigh the processing purpose, for example in marketing scenarios.
  • Data portability: request a machine-readable copy of personal data you provided for transfer to another service provider where technically feasible.
  • Complaint: lodge a complaint with the relevant supervisory authority if you are not satisfied with our response to a rights request or our handling of personal data.
  • Withdraw consent where processing is based on consent, with clear instructions and case examples showing how withdrawal affects ongoing planning engagements.

Access, Correction and Deletion Requests

VisiNowExec provides mechanisms for directors and founders to request access, correction, restriction or deletion of their personal data. Requests should include identification and a concise description of the records or actions requested. For practical scenarios we provide sample request templates and a checklist to ensure faster processing.

[email protected]

We aim to acknowledge requests within 7 business days and resolve routine requests within 30 days. Complex requests tied to third-party data or contractual obligations may require additional time; we will communicate expected timelines and next steps in those scenarios.

Data Protection and Applicable Regulatory Standards

Although VisiNowExec operates in Malaysia and follows the Personal Data Protection Act (PDPA), we align procedures with international best practices for data protection. This section explains core rights and compliance measures in practical terms, using director-level case studies to illustrate how data handling decisions are made and documented.

  • Right to access personal data we hold and explanations of processing purposes, illustrated by a founder request scenario with step-by-step logs.
  • Right to rectification, including examples where strategic planning notes were corrected following contributor feedback.
  • Right to erasure when retention is no longer justified, explained with a case where archived coaching files were removed after agreed retention periods.
  • Right to restrict processing in defined circumstances, demonstrated through a board member’s temporary restriction request tied to a confidential transaction.
  • Right to data portability for transferable records such as strategy roadmaps and contact lists in common machine-readable formats.
  • Right to object to certain processing, with illustrative scenarios and the operational impact on ongoing engagement deliverables.

For concerns about data handling, you may contact the Personal Data Protection Commissioner, Malaysia. We document supervisory interactions and provide case summaries of any regulatory correspondence relevant to our clients’ data during strategic engagements.

Marketing Communications

VisiNowExec sends marketing and educational updates about vision planning services, workshops and case studies. Communications are tailored to the interests directors and founders indicate during onboarding. Every marketing message includes an explanation of why you received it and how it relates to your professional profile.

To stop receiving marketing messages, follow the unsubscribe link in any email or contact our privacy team. Unsubscribe requests are processed within 5 business days; we will retain minimal contact details to respect your contact preferences and prevent re-enrollment.

Children and Minors

Our services are intended for adults involved in executive leadership and company founding activities. We do not knowingly collect personal data from children under 18. If we become aware of such data in client-submitted materials, we follow documented procedures to remove it promptly and notify the submitting party.

Third-Party Links and Services

VisiNowExec may link to or integrate with trusted third-party tools for scheduling, payments and analytics. These third parties have their own privacy practices. We provide configuration examples and due-diligence summaries that show the data shared and mitigation steps taken in typical director-level scenarios.

Policy Updates

We review and update this privacy information periodically to reflect operational or regulatory changes. Substantive updates affecting clients will be communicated by email with a summary of changes and effective date, and major policy changes will include case explanations illustrating practical impacts.