General privacy information

SoulLabGo collects and processes personal data to provide leadership development resources and related services. This document explains the categories of data we handle, the purposes of processing, and users' rights. The policy is intended to be transparent and factual about how information is managed and protected in our operations in Malaysia.

30-01-2026 SoulLabGo, Business ID 688191468564, Bandar Kulim, 09000 Kulim, Kedah, Malaysia; contact phone +60126174993 Bandar Kulim, 09000 Kulim, Kedah, Malaysia [email protected]

Key definitions

This section defines common terms used in the policy to clarify meaning when we refer to personal data, processing, users, and services offered by SoulLabGo.

Personal data: any information that can identify an individual directly or indirectly, such as name, email address, phone number, professional role, or other identifiers supplied during registration or communication.
Processing: any operation or set of operations performed on personal data, including collection, recording, organization, storage, adaptation, retrieval, consultation, use, disclosure, or deletion.
User: an individual who engages with SoulLabGo services, resources, or communications, including program participants, subscribers, and inquiry contacts.
Service: educational resources, workshops, cohort programs, consulting engagements, digital content, and related communications provided by SoulLabGo.
Cookies: small data files placed on devices when users visit our website to enable site functionality, analytics, and preference management.

Data collection and use

We collect both data provided directly by users and data collected automatically to operate services, respond to inquiries, and improve user experience in a measured, transparent manner.

Data you provide

When you sign up for programs, request information, or communicate with SoulLabGo, you may provide the following categories of personal data:

  • Contact details: name, email address, phone number, and postal address.
  • Professional information: job title, organization name, sector, and leadership level.
  • Program information: preferences, enrollment details, attendance records, and feedback.
  • Payment and billing information required for purchases or registrations, processed via third-party payment providers.
  • Communications: messages, inquiries, and any materials you submit during programs or consultations.
  • Optional profile information: biography, interests, and professional background provided for networking or cohort placement.

Automatically collected data

When you interact with our digital services, we may collect technical and usage data automatically to maintain functionality and improve service delivery.

  • Device and browser information such as device type, operating system, and browser version.
  • Usage data including pages visited, session duration, and interaction patterns on our website.
  • IP address and approximate geolocation data for security and analytics purposes.
  • Cookie identifiers and similar tracking technologies used to remember preferences and measure engagement.
  • Error reports and performance metrics to diagnose technical issues.
  • Analytics data aggregated to assess content relevance and program effectiveness while minimizing personally identifiable information where possible.

Third-party sources

In some cases we supplement user-provided data with information from third-party service providers to support legitimate operational needs.

  • Payment processors and business services for transaction fulfillment.
  • Analytics and hosting providers that assist with site performance measurement and service delivery.
  • Professional referral or verification services when participants provide consent for such checks.

Purposes of processing

We process personal data for clearly defined, limited purposes aligned with delivering SoulLabGo services and complying with legal obligations.

  • Provide and manage leadership development programs and associated administrative tasks.
  • Process registrations, payments, and billing where applicable.
  • Communicate program information, updates, and responses to inquiries.
  • Improve content and delivery by analyzing aggregated usage patterns and feedback.
  • Maintain security, detect fraud, and protect the integrity of our services.
  • Comply with legal and regulatory obligations applicable to our operations.
  • Facilitate cohort placement and peer matching when users opt in to collaborative programs.
  • Retain transaction records and participant histories for administrative accuracy and reporting.

Legal basis for processing

We rely on established legal bases to process personal data. The specific basis depends on the processing activity involved.

  • Performance of a contract: processing necessary to deliver paid or agreed services and manage enrollments.
  • Consent: where you have expressly agreed to specific processing activities, such as marketing communications or optional profiling.
  • Legitimate interests: processing required for business operations, fraud prevention, and service improvement, balanced against individual rights.
  • Legal obligation: processing needed to comply with statutory or regulatory duties.

Applicable data protection principles

Although SoulLabGo operates in Malaysia, we recognize core data protection principles that align with international standards and respect users' rights to access, correction, and deletion where applicable.

  • Right to access: users may request access to personal data we hold about them.
  • Right to rectification: users can request correction of inaccurate or incomplete information.
  • Right to erasure: users may request deletion of personal data where processing is not otherwise justified by law.
  • Right to restrict processing: users can request limitation on how their data is used in certain situations.
  • Right to data portability: where applicable, users can request a machine-readable copy of their data.
  • Right to object: users can object to certain processing activities, including direct marketing, where relevant.

Cookies and similar technologies

Our website uses cookies and related technologies to enable basic functionality, remember preferences, and analyze usage to improve content and services.

Types of cookies include session cookies for navigation, persistent cookies for remembered preferences, and third-party cookies used by analytics providers.

We categorize cookies as essential (site operation), performance (analytics), and functional (user preferences). We do not use cookies for intrusive profiling without consent.

Users can manage cookie preferences through browser settings or any opt-out mechanisms provided on our site. Disabling non-essential cookies may affect some features.

Detailed cookie information and settings

Data sharing and disclosure

We share personal data only as necessary for the purposes described and with service providers subject to confidentiality and data protection obligations.

  • Third-party service providers who perform functions such as payment processing, hosting, and analytics.
  • Professional advisors and auditors when required to support legal or regulatory duties.
  • Organizational partners for program delivery where participants have opted in to shared activities.
  • Law enforcement or regulatory authorities when disclosure is required by law.
  • Aggregated or de-identified data may be shared for research or improvement of services without identifying individuals.
  • Data recipients are contractually bound to use information only for specified purposes and to maintain appropriate safeguards.

International data transfers

Personal data may be transferred to service providers or partners located in other jurisdictions to enable program delivery or analytics. Transfers are managed with attention to applicable data protection requirements.

Where transfers occur, we use contractual safeguards, assessment of recipient practices, and recommended security measures to maintain appropriate protection for personal data.

Data retention

We retain personal data only as long as reasonably necessary for the purposes described, subject to legal and administrative requirements.

Account and profile information is retained for the duration of an active relationship and archived records are kept for administrative purposes for a defined period thereafter.

Communications and messages are retained while needed to respond to inquiries and for a reasonable period to address follow-up, disputes, or record-keeping needs.

System logs and technical records are retained for a period that balances troubleshooting needs and privacy considerations, then purged or aggregated.

When data is no longer required, we delete or anonymize it in a manner consistent with operational, legal, and security obligations.

Security measures

SoulLabGo implements administrative, technical, and physical safeguards intended to protect personal data against unauthorized access, misuse, or disclosure. Measures are periodically reviewed and adjusted to address evolving risks.

  • Access controls and role-based permissions to limit data access to authorized staff.
  • Encryption of data in transit and where applicable at rest, along with secure backup procedures.
  • Regular security assessments, software updates, and incident response planning to address vulnerabilities promptly.

Your data rights

Users can exercise rights concerning their personal data by contacting SoulLabGo. Requests are handled in line with legal requirements and reasonable verification procedures.

  • To request access, correction, or deletion of personal data, contact our privacy team at the address below with sufficient information to locate the records.
  • To object to processing or request restriction, submit a clear description of the request and the grounds for it; we will evaluate and respond within a reasonable timeframe.
  • Right to rectification: You may request corrections to inaccurate or incomplete personal data we hold about you. We will update records after verifying the request to maintain data accuracy.
  • Right to erasure: Where applicable, you may request deletion of personal data when retention is no longer necessary or processing lacks a lawful basis, subject to legal and operational exceptions.
  • Right to restriction of processing: You may request that we limit how we process your personal data in specific circumstances, for example while a dispute over accuracy is being resolved.
  • Right to data portability: Where processing is based on consent or contract and uses automated means, you may request a copy of your personal data in a commonly used, machine-readable format.
  • Right to object: You may object to processing based on legitimate interests or direct marketing; we will stop processing for those purposes unless we have a valid lawful basis to continue.
  • Right to withdraw consent: If you have provided consent for a specific processing activity, you may withdraw that consent at any time. Withdrawal will not affect processing that occurred prior to the withdrawal.

How to make a privacy rights request

To exercise any privacy rights listed above, contact our data protection lead by email at [email protected] or by postal mail to Bandar Kulim, 09000 Kulim, Kedah, Malaysia. Include your name, Business ID 688191468564, a description of the request, and a copy of an identity document if needed to verify identity. We will acknowledge receipt and may request additional information to process the request securely.

[email protected]

We aim to respond to privacy rights requests typically within 30 calendar days of receipt. In complex cases or where additional verification is required, we may extend the response period to 60 calendar days and will inform you of any extension and its reason.

Marketing and communications

We may send information about events, learning resources, and services relevant to spiritual development for leaders if you opt in. Marketing messages are based on your preferences and lawful bases for processing. You can adjust your communication preferences at any time or opt out of promotional emails using the unsubscribe controls included in each message.

To unsubscribe from marketing emails, use the unsubscribe link in any email or email [email protected] with the subject line 'Unsubscribe'. Processing of unsubscribe requests will be completed without undue delay; transactional or operational notices may still be sent as required.

Children and young persons

SoulLabGo services are designed for adult learners and leaders. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without appropriate consent, we will take reasonable steps to delete that information in accordance with applicable law.

Third-party links and services

Our website and materials may contain links to third-party websites, tools, or content operated by others. Those third parties have their own privacy practices and policies. SoulLabGo is not responsible for the content or privacy practices of those external sites. Review third-party privacy policies before providing personal data.

Changes to this privacy notice

We review and update our privacy notice periodically to reflect changes in law, practice, or our services. The effective date of this version is 07-05-2026. Material updates will be published on SoulLabGo.digital and, where appropriate, communicated by email or in-product notification.

Amina Rahman
Lead Facilitator · SoulLabGo
Available 4.9 860
If you request a callback, our team will propose available times by email to arrange a short consultation.