Orion CRM Logo

PRIVACY POLICY - Orion CRM

Effective date: April 10, 2025

Auctus Labs, a trading name of SOFTWARENEST ENTERPRISE (SSM Registration No: 202303215238 (003524653-X)), a sole proprietorship registered in Malaysia ("we," "us," or "our"), is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Orion CRM software-as-a-service platform (the "Service"). Our registered address is No 5-3-2, Blok C, Jalan 3/50, Diamond Square Commercial Centre, Off Jalan Gombak, 53000 Kuala Lumpur.

Please read this Privacy Policy carefully. By using the Service, you consent to the data practices described in this policy.

1. Information We Collect

We collect information in the following ways:

a. Information You Provide to Us:

  • Account Information: When you register for an account, we collect information such as your name, email address, company name (if applicable), and password.
  • Payment Information: If you subscribe to paid features of the Service, we (or our third-party payment processors) may collect payment and billing information. We do not store full credit card numbers ourselves.
  • Communications: If you contact us directly (e.g., for customer support), we may receive additional information about you such as your name, email address, phone number, the contents of the message and/or attachments you may send us, and any other information you may choose to provide.

b. Information We Collect Automatically When You Use the Service:

  • Log Data: Like most websites and technology services delivered over the Internet, our servers automatically collect information when you access or use our Services and record it in log files. This log data may include the Internet Protocol (IP) address, browser type and settings, the date and time the Services were used, information about browser configuration and plugins, language preferences, and cookie data.
  • Device Information: We may collect information about your device, including type of device, operating system, device settings, application IDs, unique device identifiers, and crash data.
  • Usage Information: We collect information about how you use our Service, such as the features you use, the content you view or engage with, and the actions you take.
  • Cookies and Similar Technologies: We use cookies and similar tracking technologies to track the activity on our Service and hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

c. Customer Data You Input into Orion CRM:

  • As part of using Orion CRM, you will input data about your own customers, leads, and contacts ("Customer Data"). This Customer Data is owned by you. We process this data on your behalf as a data processor, solely to provide the Service as described in our Terms of Service. We do not use your Customer Data for our own purposes, such as marketing or selling to third parties.

2. How We Use Your Information

We use the information we collect (excluding your Customer Data, which is used as described in section 1.c and our Terms of Service) for various purposes, including:

  • To provide, operate, maintain, and improve our Service.
  • To process your transactions and manage your account.
  • To respond to your comments, questions, and requests, and provide customer service and support.
  • To send you technical notices, updates, security alerts, and administrative messages.
  • To monitor and analyze trends, usage, and activities in connection with our Service for service improvement.
  • To detect, prevent, and address technical issues, fraud, or security concerns.
  • To comply with legal obligations and enforce our Terms of Service.
  • We DO NOT sell your personal information to third parties.
  • We DO NOT use your personal information or Customer Data for targeted advertising or marketing purposes unrelated to the Service, unless we have obtained your explicit opt-in consent for specific marketing communications from us.

3. How We Share Your Information

We may share information we collect (excluding your Customer Data, which is shared only as necessary to provide the Service or as legally required) in the following circumstances:

  • Service Providers: We may share your information with third-party vendors, consultants, and other service providers who need access to such information to carry out work on our behalf (e.g., payment processors, hosting providers, analytics providers for service improvement). These providers are authorized to use your personal information only as necessary to provide these services to us.
  • Compliance with Laws and Law Enforcement Requests; Protection of Our Rights: We may disclose your information to a third party if (a) we believe that disclosure is reasonably necessary to comply with any applicable law, regulation, legal process or governmental request, (b) to enforce our agreements, policies and terms of service, (c) to protect the security or integrity of our Service, (d) to protect ourselves, our other customers, or the public from harm or illegal activities, or (e) to respond to an emergency which we believe in good faith requires us to disclose information to assist in preventing the death or serious bodily injury of any person.
  • Business Transfers: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company. We will notify you of such a change in ownership or transfer of assets by posting a notice on our website.
  • With Your Consent: We may share your information with third parties when we have your explicit consent to do so.
  • Aggregated or De-identified Data: We may share aggregated or de-identified information, which cannot reasonably be used to identify you, for various purposes, including for business or research purposes.

We DO NOT sell your personal information or Customer Data to third parties for their marketing purposes.

4. Data Security

We implement reasonable administrative, technical, and physical security measures to protect your personal information from unauthorized access, use, alteration, and disclosure. However, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

5. Data Retention

We will retain your personal information for as long as your account is active or as needed to provide you with the Service, and as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. We will retain Customer Data according to your instructions, including any applicable terms in the Terms of Service, or as required by applicable law.

6. Your Data Protection Rights

Depending on your location and applicable law, you may have certain rights regarding your personal information, including:

  • The right to access, correct, update, or request deletion of your personal information.
  • The right to object to processing of your personal information, ask us to restrict processing of your personal information, or request portability of your personal information.
  • If we have collected and processed your personal information with your consent, then you can withdraw your consent at any time.

To exercise any of these rights, please contact us at [Your Contact Email Address]. We will respond to your request in accordance with applicable law.

7. International Data Transfers

Your information, including personal data, may be transferred to, and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction. If you are located outside Malaysia and choose to provide information to us, please note that we transfer the data, including Personal Data, to Malaysia and process it there. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.

8. Children's Privacy

Our Service is not directed to individuals under the age of 18 (or the relevant age of majority). We do not knowingly collect personal information from children under 18. If we become aware that a child under 18 has provided us with personal information, we will take steps to delete such information.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us:

By email: [email protected]

By mail: SOFTWARENEST ENTERPRISE, No 5-3-2, Blok C, Jalan 3/50, Diamond Square Commercial Centre, Off Jalan Gombak, 53000 Kuala Lumpur.