Privacy Policy

Effective date: 2026-06-13 | Last updated: 2026-06-13

1. Introduction

This Privacy Policy ("Policy") describes how Apipie Tech Sdn. Bhd. ("Apipie", "we", "us", or "our"), the operator of apipietech.com (the "Site"), collects, uses, discloses, and safeguards personal information about you when you visit, register, place an order, or otherwise interact with the Site or our services. It also describes the rights you may have in relation to your personal information and how to exercise them.

By using the Site, you acknowledge that you have read and understood this Policy. If you do not agree with the practices described, please do not use the Site.

2. Personal Information We Collect

We collect personal information directly from you, automatically through your use of the Site, and from authorised third-party sources.

2.1 Information You Provide Directly

  • Account details: name, email address, password, telephone number, country of residence.
  • Order details: billing and shipping address, items purchased, quantities, gift messages.
  • Payment details: we do not store full card numbers on our servers; payment data is transmitted directly to our payment processors (Razorpay, Stripe, Revenue Monster, PayPal). We retain the last four digits and the card type solely for receipt and refund identification.
  • Customer-service correspondence: the content of emails, chats, and call records that you send to us.
  • Marketing preferences: your subscription state for email newsletters and promotional notifications.

2.2 Information We Collect Automatically

  • Device data: IP address, browser type and version, operating system, device identifiers, language settings.
  • Usage data: pages viewed, items added to cart, search terms, referring URL, time spent on pages, click paths.
  • Cookies and similar technologies: see Section 7.

2.3 Information from Third Parties

  • Payment processors: transaction confirmations, fraud-risk signals, chargeback notifications.
  • Shipping carriers: delivery confirmations and exception events.
  • Analytics and advertising partners: aggregated audience insights.
  • Social-login providers (if used): your public profile data as authorised by you.

3. Legal Bases for Processing

Where the European General Data Protection Regulation (GDPR) or similar laws apply, we rely on the following legal bases:

  • Performance of a contract — to process and fulfil orders, manage your account, and provide customer service.
  • Legitimate interests — to operate, secure, and improve the Site; prevent fraud; conduct internal analytics; communicate operational updates.
  • Consent — for non-essential cookies, marketing communications, and other purposes that require your affirmative opt-in.
  • Legal obligation — to comply with tax, accounting, anti-money-laundering, and other regulatory requirements.

4. How We Use Your Information

  • Process orders, payments, shipments, returns, exchanges, and refunds.
  • Create and maintain your account; authenticate logins; recover lost credentials.
  • Send transactional communications (order confirmations, shipping updates, refund notices).
  • Provide customer support and respond to inquiries.
  • Send marketing communications, where you have opted in.
  • Personalise product recommendations and on-site content.
  • Detect, investigate, and prevent fraud, chargebacks, abuse, and security incidents.
  • Conduct internal research and analytics to improve product range, pricing, logistics, and user experience.
  • Comply with applicable laws, regulations, court orders, and lawful government requests.
  • Enforce our Terms and Conditions and other agreements.

5. Sharing of Personal Information

We share personal information only with the categories of recipients listed below, and only to the extent necessary for the stated purpose.

  • Service providers: payment processors, shipping carriers, customs brokers, cloud-hosting providers, analytics platforms, customer-service tools, anti-fraud services, and email-delivery providers.
  • Suppliers and dropshipping partners: limited shipping data so they can prepare and dispatch your order.
  • Professional advisers: lawyers, auditors, and accountants under duties of confidentiality.
  • Regulators and law enforcement: when required by applicable law or to protect our rights, property, or safety, or that of others.
  • Corporate transactions: in the event of a merger, acquisition, restructuring, or sale of assets, personal information may be transferred as part of that transaction, subject to standard confidentiality protections.

We do not sell or rent personal information to third parties for their independent marketing purposes.

6. International Data Transfers

Because we operate a global cross-border marketplace, your personal information may be transferred to, stored, and processed in countries other than the one in which you reside, including Malaysia, the United States, the European Economic Area, and other jurisdictions where our service providers operate. Where required by law, we implement appropriate safeguards for such transfers, including the use of Standard Contractual Clauses, supplementary measures, and assessments of the destination country's data-protection regime.

7. Cookies and Similar Technologies

We use cookies, web beacons, pixel tags, local storage, and similar technologies for the following purposes:

  • Strictly necessary cookies — keep your cart contents, allow checkout, maintain session security. These cannot be disabled without breaking the Site.
  • Functional cookies — remember language, currency, and display preferences.
  • Analytics cookies — aggregated statistics about how visitors use the Site so we can improve it.
  • Advertising cookies — measure the effectiveness of marketing campaigns and, where you have consented, deliver personalised advertising.

Most browsers allow you to refuse or delete cookies through your browser settings; doing so may degrade some Site features.

8. Your Rights

Depending on the laws of your jurisdiction, you may have the following rights:

  • Access — request a copy of the personal information we hold about you.
  • Rectification — ask us to correct inaccurate or incomplete data.
  • Deletion / Erasure — ask us to delete your data, subject to legal retention requirements.
  • Restriction — ask us to restrict the processing of your data in certain circumstances.
  • Portability — receive your data in a structured, commonly used, machine-readable format.
  • Objection — object to processing based on legitimate interests, including direct marketing.
  • Withdrawal of consent — withdraw any consent you have previously given, without affecting the lawfulness of prior processing.
  • Complaint to a supervisory authority — lodge a complaint with the data-protection authority of your country.

To exercise any of these rights, contact us at apipie.co@gmail.com. We will respond within the timeframe required by applicable law (typically within thirty days).

9. California Residents

If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide additional rights, including the right to know which categories of personal information we have collected, sold, or disclosed; the right to delete personal information; the right to correct inaccurate information; the right to limit use and disclosure of sensitive personal information; and the right not to be discriminated against for exercising these rights. To submit a verifiable consumer request, contact us at apipie.co@gmail.com.

10. Data Retention

We retain personal information for as long as necessary to fulfil the purposes set out in this Policy, comply with our legal obligations (typically seven years for tax records), resolve disputes, and enforce our agreements. When personal information is no longer required, we securely delete or anonymise it.

11. Children's Privacy

The Site is not directed to children under the age of sixteen, and we do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us so we can promptly delete it.

12. Data Security

We maintain organisational, technical, and physical safeguards designed to protect personal information against unauthorised access, alteration, disclosure, and destruction. These measures include encryption in transit (TLS), restricted internal access on a need-to-know basis, regular security reviews, and partnerships with PCI DSS-compliant payment processors. No system is perfectly secure; we cannot guarantee the absolute security of information transmitted over the internet.

13. Third-Party Links

The Site may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies before providing any personal information.

14. Changes to This Policy

We may update this Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will indicate the date of the most recent revision at the top of the Policy and, where the changes are material, provide additional notice through the Site or by email. Your continued use of the Site after the effective date constitutes acceptance of the updated Policy.

15. Contact Us

Apipie Tech Sdn. Bhd. (Company No. 202201020560)
8330 Rush Street, Rosemead, CA, United States
Email: apipie.co@gmail.com / apipietech@gmail.com
Phone (MY): +60 12-221 1992
Phone (US): +1 307-206-8544