Short version: We only collect information you give us (like your name and email when you contact us). We don't sell your data. We don't spam you. You can ask us to delete your data any time.
1. Who We Are
CoreMLM Software is an MLM software company based in Malaysia. We provide a web-based platform for network marketing businesses to manage their members, commissions, e-wallets, and downlines.
This Privacy Policy applies to our website (coremlmsoftware.com) and the services we provide. When we say "we", "us", or "CoreMLM", we mean CoreMLM Software, Malaysia.
We are committed to protecting your personal data in accordance with the Personal Data Protection Act 2010 (PDPA) of Malaysia.
2. What Data We Collect
We only collect data that is necessary to provide our service or respond to your enquiry. Here's exactly what we collect and when:
When you fill out our contact or demo form:
- Your first and last name
- Your email address
- Your WhatsApp number (if you provide it)
- Your MLM plan type and approximate member count (if you select them)
- Any message or notes you type into the form
When you visit our website:
- Basic server log data — your IP address, browser type, pages visited, and time of visit. This is standard for all websites and is stored automatically by our web server.
When you use CoreMLM software (as a client):
- Business account details — company name, admin contact, and configuration preferences
- Your members' data is stored within your own instance of the software. We process this data on your behalf as a data processor, and you remain the data controller for your members' information.
We do not collect payment card details directly. Any payments are handled through third-party payment processors with their own security and privacy standards.
3. How We Use Your Data
We use the information we collect for these specific purposes only:
- To respond to your enquiry — when you fill out our contact form or message us on WhatsApp, we use your contact details to reply to you
- To provide and manage the software service — for clients using CoreMLM, we use your account information to set up, configure, and maintain your software instance
- To send you relevant updates — if you are an existing client, we may occasionally contact you about important system updates, security notices, or service changes. You can opt out of non-essential communications at any time.
- To improve our website — anonymised visitor data helps us understand which pages are useful and fix any technical issues
- To comply with legal obligations — if required by Malaysian law or a lawful authority
We do not use your data for automated profiling, targeted advertising, or any purpose beyond what's listed above.
4. Who We Share It With
We do not sell your personal data. We do not trade or rent it. We only share it in these limited situations:
- Service providers — we may use trusted third-party tools for hosting (e.g. cloud server providers) or email communication. These providers only process your data to deliver the service and are bound by confidentiality agreements.
- Legal requirements — if we are required by Malaysian law, a court order, or a regulatory authority to disclose data, we will do so.
- Business transfer — in the unlikely event that CoreMLM is sold or merged with another company, your data may be transferred as part of that transaction. We would notify you beforehand.
Outside of the above, your data stays with us.
5. How We Store & Protect It
Your data is stored on secure servers. We take reasonable technical and organisational measures to protect your personal information from unauthorised access, loss, misuse, or disclosure. These include:
- Encrypted data transmission (HTTPS/SSL) on our website and software
- Access controls — only authorised personnel can access client data
- Regular software and security updates on our servers
- Passwords are hashed and never stored in plain text
No method of transmission over the internet is 100% secure. While we work hard to protect your data, we cannot guarantee absolute security. If you have concerns about a specific data point, please contact us directly.
6. How Long We Keep It
We keep your personal data only for as long as it is needed:
- Enquiry / contact form data — kept for up to 2 years, or until you ask us to delete it
- Active client account data — kept for the duration of your subscription plus 6 months after contract end
- Server log data — typically kept for 90 days then automatically deleted
- Financial records — kept for 7 years as required by Malaysian law (Companies Act)
After these periods, data is securely deleted or anonymised.
7. Your Rights Under PDPA 2010
Under Malaysia's Personal Data Protection Act 2010, you have the following rights regarding your personal data:
- Right to access — you can request a copy of the personal data we hold about you
- Right to correction — if any of your data is inaccurate or incomplete, you can ask us to correct it
- Right to withdraw consent — you can withdraw your consent to us processing your data at any time. This won't affect any processing already done before your withdrawal.
- Right to limit processing — you can ask us to stop using your data for certain purposes (for example, marketing communications)
To exercise any of these rights, simply contact us using the details at the bottom of this page. We will respond within 21 days as required under the PDPA.
There is no charge to exercise your rights. We will never penalise you for making a request about your data.
8. Cookies
Our website uses minimal cookies. A cookie is a small file stored on your device that helps the website remember certain information.
We use:
- Essential cookies — these are required for basic website functions (e.g. remembering your preferences during a session). You cannot opt out of these without disabling the website.
- Analytics cookies — if we use analytics tools in future, we will update this policy and ask for your consent. Currently, we do not use third-party tracking or advertising cookies.
You can control cookies through your browser settings. Disabling cookies may affect some features of the website.
9. Third-Party Links
Our website may contain links to third-party websites or services (for example, WhatsApp). We are not responsible for the privacy practices of those websites. We encourage you to read their privacy policies before providing any personal information to them.
10. Children's Privacy
CoreMLM is a business software product intended for adults and business owners only. We do not knowingly collect personal data from anyone under the age of 18. If you believe a minor has submitted personal data to us, please contact us immediately and we will delete it.
11. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. If the changes are significant, we will notify active clients directly by email.
We encourage you to check this page occasionally to stay informed. Continuing to use our website or services after a change means you accept the updated policy.
This policy was last reviewed in May 2025 and complies with Malaysia's Personal Data Protection Act 2010 (PDPA).
Back to Home
