Privacy
Privacy Policy
Learn how Blackstone Consultancy Sdn Bhd collects, uses, stores, discloses, transfers, and protects personal data.
Effective Date: 1 January 2026
Business Name: Blackstone Consultancy Sdn Bhd
Website: www.blackstoneconsultancy.com.my
Email: info@blackstoneconsultancy.com.my
Business Location: 1st Floor Lot 1905, Block 10, Jalan Tun Ahmad Zaidi Adruce, 93150 Kuching, Sarawak, Malaysia
This Privacy Policy explains how Blackstone Consultancy Sdn Bhd collects, uses, stores, discloses, transfers, and protects personal data when you visit our website, contact us, engage our services, submit information to us, or interact with our AI, automation, consulting, software, digital, and related services.
By using our website, communicating with us, submitting your personal data, engaging our services, approving a proposal, or making payment, you acknowledge that you have read and understood this Privacy Policy.
1. Who We Are
Blackstone Consultancy Sdn Bhd provides AI, automation, consulting, technology, digital transformation, software, website, chatbot, workflow automation, and related business services.
For the purposes of this Privacy Policy, “we,” “us,” or “our” refers to Blackstone Consultancy Sdn Bhd.
“You” refers to website visitors, clients, prospective clients, business contacts, vendors, partners, representatives of companies, and other individuals who interact with us.
2. Personal Data We Collect
We may collect personal data directly from you, from your company, from public sources, from third-party platforms, or through our website and business systems.
The personal data we collect may include:
Name Company name Job title Email address Phone number Business address Billing and payment information Project requirements Messages, enquiries, and communications with us Meeting notes and call details Website form submissions Information provided during consultations Login or access details you provide for project work Technical data such as IP address, browser type, device type, pages visited, referral source, and website usage data Marketing preferences Any files, documents, data, images, customer information, business information, or materials you provide to us for a project
We may also collect personal data contained in project materials, datasets, CRM records, automation workflows, chatbot conversations, website forms, analytics reports, customer lists, or other business systems that you provide to us.
3. Sensitive Personal Data
We do not intentionally request sensitive personal data unless it is necessary for a specific project or legal purpose.
Sensitive personal data may include information relating to health, religion, political opinions, biometric data, financial account details, identification documents, passwords, private keys, or other highly confidential information.
You should not send us sensitive personal data unless we have specifically requested it and appropriate handling measures have been agreed.
4. How We Collect Personal Data
We may collect personal data when you:
Visit our website Fill in a contact form Email, call, message, or WhatsApp us Book a consultation Request a quotation or proposal Sign up for updates or marketing Engage us for a project Provide access to your platforms, software, or systems Send us project files or business data Attend a meeting, training, or consultation Interact with our AI tools, chatbots, forms, automations, or digital systems Make payment or request invoicing Communicate with us through third-party platforms such as email, CRM tools, social media, analytics tools, or messaging platforms
5. Purposes for Using Personal Data
We may use personal data for the following purposes:
To respond to enquiries To provide quotations, proposals, and service information To onboard clients To provide AI, automation, consulting, software, digital, and related services To build, configure, test, and maintain systems, workflows, chatbots, websites, dashboards, integrations, and automations To manage client relationships To communicate about projects To schedule meetings and consultations To prepare contracts, invoices, receipts, and payment records To process payments and manage billing To provide support, updates, maintenance, and troubleshooting To improve our website, services, internal processes, and customer experience To conduct analytics, reporting, quality control, and security monitoring To send service updates, announcements, and marketing communications where permitted To comply with legal, accounting, tax, regulatory, and business obligations To protect our legal rights, business interests, systems, users, and clients To investigate fraud, misuse, security incidents, or breaches of our terms To train our team and document project requirements To use AI-assisted tools for drafting, automation, analysis, summarisation, coding, workflow building, testing, and service delivery
6. Legal Basis and Consent
Where required by law, we will process your personal data with your consent.
We may also process personal data where it is necessary to perform a contract with you, take steps before entering into a contract, comply with legal obligations, protect our rights, manage our business, provide our services, or for other purposes permitted under applicable law.
You may withdraw your consent at any time by contacting us at:
info@blackstoneconsultancy.com.my
However, withdrawing consent may affect our ability to provide certain services, respond to your enquiries, complete a project, or maintain our business relationship with you.
7. AI Tools and Automated Systems
As an AI and automation agency, we may use artificial intelligence systems, automation platforms, cloud tools, APIs, software providers, and other technology services to deliver our services.
This may include using AI tools to assist with:
Workflow automation Chatbot setup Data organisation Document drafting Content generation Code generation Research support Business analysis Customer support design Process improvement Website and software development Testing and troubleshooting
Where project work requires the use of third-party AI or cloud tools, information you provide to us may be processed by those tools for the purpose of delivering the service.
We will take reasonable steps to avoid sharing unnecessary personal data with AI tools. You should not provide confidential, sensitive, or personal data for AI processing unless it is necessary for the project and you have the right to provide it.
Unless otherwise agreed in writing, we do not intentionally use your confidential client data to train our own public AI models.
8. Client Data Provided for Projects
If you provide us with personal data relating to your customers, employees, users, leads, suppliers, or other individuals, you confirm that:
You have the legal right to provide that data to us You have obtained any required consent or provided any required notice The data was collected lawfully The data is accurate and relevant for the project Sharing the data with us does not breach any law, contract, privacy policy, or third-party rights
We will process such data only as reasonably necessary to provide the agreed services, unless otherwise required by law or agreed in writing.
For projects involving significant personal data processing, we may require a separate data processing agreement, security arrangement, or written project-specific data handling instructions.
9. Disclosure of Personal Data
We may disclose personal data where necessary to provide our services, operate our business, comply with law, or protect our rights.
This may include disclosure to:
Our directors, employees, team members, and authorised personnel Contractors, freelancers, consultants, and technical specialists Cloud hosting providers AI model providers and automation platforms Software, CRM, analytics, and communication tools Email, messaging, and collaboration platforms Payment processors and banks Accountants, auditors, lawyers, insurers, and professional advisers Government authorities, regulators, enforcement bodies, or courts where required Business partners or service providers involved in delivering a project Potential buyers, investors, or successors in the event of a business sale, merger, restructuring, or transfer
We do not sell your personal data.
10. Third-Party Services
Our website and services may use third-party platforms such as hosting providers, analytics tools, payment services, email platforms, CRM systems, automation tools, AI model providers, social media platforms, calendar tools, and communication tools.
These third parties may process personal data according to their own terms, privacy policies, and security practices.
We are not responsible for the privacy practices of third-party websites, platforms, or tools that we do not control.
11. Cross-Border Transfer of Personal Data
Some of our service providers, software platforms, AI tools, hosting providers, cloud systems, or contractors may be located outside Malaysia.
This means your personal data may be transferred to, stored in, or processed in countries outside Malaysia.
Where we transfer personal data across borders, we will take reasonable steps to ensure that the data is protected in accordance with applicable law, including through appropriate contractual, technical, organisational, or security measures where required.
12. Cookies and Website Tracking
Our website may use cookies and similar technologies to improve website performance, remember user preferences, analyse traffic, improve user experience, and support marketing or security features.
Cookies may collect information such as browser type, device type, IP address, pages visited, time spent on pages, referral source, and general website usage patterns.
You can disable cookies through your browser settings. However, some website features may not function properly if cookies are disabled.
We may use analytics tools to understand how visitors use our website. These tools help us improve our content, services, and website experience.
13. Marketing Communications
We may use your contact details to send updates, newsletters, service announcements, offers, educational content, or marketing communications where permitted by law.
You may opt out of marketing communications at any time by contacting us at:
info@blackstoneconsultancy.com.my
Even if you opt out of marketing, we may still send you important non-marketing communications, such as project updates, invoices, legal notices, security notices, or service-related messages.
14. Data Security
We take reasonable administrative, technical, and organisational steps to protect personal data from loss, misuse, unauthorised access, disclosure, alteration, or destruction.
These steps may include access controls, password protection, secure cloud systems, limited access permissions, internal confidentiality practices, and other security measures appropriate to the nature of the data.
However, no method of transmission over the internet, cloud storage, email, messaging platform, or digital system is completely secure. We cannot guarantee absolute security.
You are responsible for keeping your own passwords, accounts, devices, and access credentials secure.
15. Data Retention
We retain personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy.
This may include retaining data to:
Provide services Complete projects Manage client relationships Resolve disputes Maintain business records Comply with tax, accounting, legal, and regulatory obligations Enforce agreements Protect our rights and interests Maintain security and audit records
When personal data is no longer required, we will take reasonable steps to delete, anonymise, archive, or securely dispose of it, unless we are required or permitted to keep it for a longer period.
16. Your Rights
Subject to applicable law, you may have the right to:
Request access to your personal data Request correction of inaccurate or incomplete personal data Withdraw consent for processing Object to direct marketing Request that we stop or limit certain processing Request deletion of personal data where legally permitted Request information about how your personal data is used Request data portability where applicable and technically feasible Raise a complaint about how your personal data is handled
To exercise your rights, contact us at:
info@blackstoneconsultancy.com.my
We may need to verify your identity before processing your request. We may also refuse or limit a request where permitted by law, such as where the request is unreasonable, affects the rights of others, relates to confidential business information, or conflicts with legal obligations.
17. Accuracy of Personal Data
You are responsible for ensuring that the personal data you provide to us is accurate, complete, and up to date.
Please contact us if your personal data changes or if you believe that any information we hold about you is inaccurate.
18. Personal Data of Other Individuals
If you provide us with personal data about another person, you confirm that you have the authority to do so and that the person has been informed about how their personal data may be used.
This may include personal data relating to employees, customers, users, leads, suppliers, business partners, or representatives.
19. Children and Minors
Our services are primarily intended for businesses, organisations, and adults.
We do not knowingly collect personal data from children or minors without appropriate consent from a parent, guardian, or authorised person where required by law.
If you believe a child or minor has provided personal data to us without proper consent, please contact us so we can take appropriate action.
20. Links to Other Websites
Our website, proposals, emails, or digital materials may contain links to third-party websites or platforms.
We are not responsible for the privacy practices, content, security, or policies of third-party websites. You should review their privacy policies before submitting personal data to them.
21. Data Breaches
If we become aware of a personal data breach affecting your personal data, we will take reasonable steps to investigate, contain, and respond to the incident.
Where required by law, we will notify the relevant authority and/or affected individuals in accordance with applicable legal requirements.
22. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, technology, business operations, or privacy practices.
The updated version will be posted on our website with a revised effective date. Your continued use of our website or services after the updated Privacy Policy is posted means you acknowledge the updated policy.
23. Contact Us
For questions, requests, complaints, or concerns about this Privacy Policy or how we handle personal data, contact:
Blackstone Consultancy Sdn Bhd
Email: info@blackstoneconsultancy.com.my
Website: www.blackstoneconsultancy.com.my
Address: 1st Floor Lot 1905, Block 10, Jalan Tun Ahmad Zaidi Adruce, 93150 Kuching, Sarawak, Malaysia