Sable Loom
Contact

Privacy Policy

Last Updated: January 20, 2026

Introduction

Sable Loom ("we", "our", or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit our website sableloom.biz or engage our consulting services.

This policy is designed to comply with the Personal Data Protection Act 2010 (PDPA) of Malaysia and other applicable data protection regulations. By using our services or website, you consent to the data practices described in this policy.

Information We Collect

Personal Information

We collect personal information that you voluntarily provide when you contact us, request our services, or engage with our website. This may include your name, email address, phone number, business name, job title, and any other information you choose to provide in inquiry forms or communications.

Automatically Collected Information

When you visit our website, certain information about your device and browsing activity may be automatically collected. This includes IP address, browser type, operating system, referring URLs, pages viewed, time spent on pages, and access times.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience and analyze website usage. For more detailed information about our use of cookies, please refer to our Cookie Policy.

How We Use Your Information

We process your personal information for the following purposes:

  • To respond to your inquiries and provide information about our consulting services
  • To communicate with you regarding potential or ongoing consulting engagements
  • To deliver consulting services that you have contracted us to provide
  • To send administrative information, such as updates to our terms and policies
  • To improve our website functionality and user experience
  • To analyze website usage patterns and optimize our digital presence
  • To comply with legal obligations and protect our legal rights
  • To prevent fraud and maintain the security of our systems

The legal basis for processing your data includes your consent, performance of contractual obligations, compliance with legal requirements, and our legitimate business interests.

Data Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share your information in the following circumstances:

Service Providers

We may engage third-party companies and individuals to facilitate our services, provide services on our behalf, or assist us in analyzing website usage. These service providers have access to your personal information only to perform specific tasks and are obligated not to disclose or use it for other purposes.

Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities, such as court orders or government agencies.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal information may be transferred as part of that transaction. We will notify you via email or prominent notice on our website of any such change in ownership or control of your personal information.

Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit using SSL/TLS protocols
  • Secure storage systems with restricted access controls
  • Regular security assessments and updates to our systems
  • Employee training on data protection and confidentiality
  • Monitoring and logging of system access

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security but remain committed to maintaining the highest standards of data protection.

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When determining retention periods, we consider the nature of the information, potential risks from unauthorized use or disclosure, the purposes for which we process the information, and applicable legal requirements. Once your information is no longer needed, we securely delete or anonymize it.

Your Rights

Under the Personal Data Protection Act 2010 and other applicable regulations, you have certain rights regarding your personal information:

Right to Access

You have the right to request access to the personal information we hold about you. We will provide you with a copy of your data in a commonly used format.

Right to Correction

You may request correction of inaccurate or incomplete personal information we hold about you.

Right to Erasure

You may request deletion of your personal information, subject to certain legal exceptions where we are required to retain data.

Right to Object

You have the right to object to processing of your personal information for direct marketing purposes or where processing is based on legitimate interests.

Right to Withdraw Consent

Where we rely on your consent to process personal information, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing prior to consent withdrawal.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within the timeframe required by applicable law.

Third-Party Links

Our website may contain links to third-party websites or services that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We encourage you to review the privacy policy of every site you visit.

Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can delete such information.

International Data Transfers

Your information may be transferred to and maintained on computers located outside of Malaysia where data protection laws may differ. By providing your information, you consent to such transfers. When we transfer data internationally, we implement appropriate safeguards to protect your information in accordance with this Privacy Policy and applicable law.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. When we make changes, we will update the "Last Updated" date at the top of this policy.

If we make material changes to how we treat your personal information, we will notify you by email (if you have provided an email address) or through a prominent notice on our website. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Sable Loom

12 Jalan Gaya, 88000 Kota Kinabalu, Sabah, Malaysia

Email: [email protected]

Phone: +60 88-7432 6198

Supervisory Authority

If you believe we have not addressed your concerns adequately, you have the right to lodge a complaint with the Personal Data Protection Department of Malaysia or other relevant supervisory authority in your jurisdiction.