Legal
Privacy Policy
How we collect, use, and protect your personal data.
Last updated: 26 June 2026
MECIP ("MECIP", "we", "us", or "our") is committed to protecting the privacy and personal data of everyone who visits our website or engages with us. This Privacy Policy explains what personal data we collect, how we use and protect it, who we share it with, and the rights you have over it.
We process personal data in accordance with Malaysia's Personal Data Protection Act 2010 ("PDPA"). Where we process the personal data of individuals located in the European Economic Area ("EEA") or the United Kingdom, we also seek to comply with the General Data Protection Regulation ("GDPR") and equivalent UK data protection law.
1. Who We Are
MECIP is an engineering and integrated solutions provider based in Malaysia. For the purposes of the PDPA, and as the "data controller" under the GDPR, MECIP determines how and why your personal data is processed.
Address: Lot 10B, Tingkat 1&2, Bangunan PMINT, Bandar Baru Kertih, 24300 Kemaman, Terengganu, Malaysia.
Email: connect@mecip.com.my
2. Personal Data We Collect
We may collect and process the following categories of personal data:
Information you provide to us
When you submit our contact form or otherwise contact us, we collect the details you choose to give us, which may include your name, email address, company name, phone number, your area of service interest, and the content of your message.
Information collected automatically
When you visit our website, our hosting and security providers automatically record certain technical information for security, performance, and abuse prevention, such as your IP address, browser type and version, device information, approximate location, referring pages, and the date and time of access. We also use cookies and similar technologies as described in ourCookie Policy.
3. How We Use Your Personal Data & Legal Basis
We use personal data for the following purposes:
| Purpose | Legal basis (PDPA / GDPR) |
|---|---|
| To respond to your enquiries and communicate with you | Your consent (PDPA); consent / steps prior to a contract (GDPR Art. 6(1)(a)/(b)) |
| To operate, secure, and improve our website (including spam and bot prevention) | Our legitimate interests in running a safe, functional website (GDPR Art. 6(1)(f)) |
| To comply with legal, regulatory, and record-keeping obligations | Compliance with a legal obligation (GDPR Art. 6(1)(c)) |
We will only use your personal data for the purposes for which it was collected, unless we reasonably consider that we need to use it for a compatible reason, or where we are otherwise permitted or required by law.
4. Disclosure & Third-Party Service Providers
We do not sell or rent your personal data. We may share it with trusted third-party service providers ("data processors") who help us operate our website and respond to you, and who are only permitted to process personal data on our instructions. These currently include:
- Cloudflare, Inc. — website hosting, content delivery, and bot protection (Cloudflare Turnstile) for our contact form.
- Resend — delivery of contact-form submissions to our inbox by email.
- Google Fonts — serving the website's typefaces (this may involve your IP address being processed by Google to deliver fonts).
We may also disclose personal data where required by law, court order, or a regulatory authority, or to establish, exercise, or defend our legal rights.
5. International Data Transfers
Some of our service providers process data on servers located outside Malaysia and outside the EEA. Where personal data is transferred internationally, we take reasonable steps to ensure it is protected by appropriate safeguards (such as the service provider's contractual commitments and recognised transfer mechanisms) and is treated consistently with this Policy and applicable law.
6. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including to respond to your enquiry, to maintain business records, and to satisfy any legal, accounting, or reporting requirements. When personal data is no longer required, we will securely delete or anonymise it.
7. How We Protect Your Data
We apply reasonable technical and organisational measures to protect personal data against loss, misuse, unauthorised access, disclosure, or alteration. This includes encrypted connections (HTTPS), access controls, and using reputable service providers. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.
8. Your Rights
Under the PDPA, you have the right to:
- request access to the personal data we hold about you;
- request correction of inaccurate, incomplete, or out-of-date personal data;
- withdraw your consent to our processing of your personal data;
- limit the processing of your personal data; and
- enquire about how your personal data has been or may be disclosed.
If you are located in the EEA or UK, the GDPR also gives you the right to:
- rectification or erasure ("right to be forgotten") of your personal data;
- restriction of, or objection to, our processing;
- data portability (to receive your data in a structured, machine-readable format); and
- lodge a complaint with your local data protection supervisory authority.
To exercise any of these rights, please contact us atconnect@mecip.com.my. We may need to verify your identity before responding. Withdrawing consent will not affect the lawfulness of processing carried out before withdrawal, and may mean we are unable to respond to your enquiry.
9. Cookies
Our website uses cookies and similar technologies. For full details of what we use and how to manage your preferences, please see ourCookie Policy.
10. Children's Privacy
Our website is intended for a business and professional audience and is not directed at children. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can remove it.
11. Third-Party Links
Our website may contain links to external websites and social media platforms that we do not operate or control. This Policy does not apply to those third-party sites, and we encourage you to review their privacy policies.
12. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for legal reasons. The "Last updated" date at the top indicates when it was last revised. We encourage you to review this page periodically.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
MECIP
Lot 10B, Tingkat 1&2, Bangunan PMINT, Bandar Baru Kertih, 24300 Kemaman, Terengganu, Malaysia
Email: connect@mecip.com.my