Privacy Policy

Last updated: 2026

This Privacy Policy explains how Raez Najya Trading ("we", "us", "our"), a business based in Malaysia, handles personal data in connection with the STIFIn Scenario Insights app and related services (the "Service"). Raez Najya Trading is the data controller. Contact: aisyadva.tmx@gmail.com.

1. About the Service

STIFIn Scenario Insights is an educational self-reflection and coaching support tool. It helps users explore personality-style scenarios, communication preferences, leadership reflection, relationship dynamics, and learning prompts for personal development. It does not provide medical advice, mental health or psychological diagnosis, employment screening, legal advice, financial advice, or guaranteed relationship outcomes.

2. Personal data we collect

• Account data: name, email, login credentials.
• Scenario inputs: the situations, questions, and notes you submit for reflection.
• Personality preference inputs: the STIFIn-style preferences and answers you choose to share.
• Usage and device data: pages viewed, features used, IP address, browser and device identifiers.
• Support data: messages and attachments you send to us.
• Order data: we receive limited order metadata (plan, status, customer email) from our payment provider. Card details are collected and stored by the payment provider, not by us.

3. Why we use your data

• To create and operate your account (contract performance).
• To deliver the educational insight and coaching support features (contract performance).
• To provide customer support (contract performance and our legitimate interest in helping you).
• To keep the Service secure and prevent fraud (legitimate interest).
• To improve the Service through analytics (legitimate interest or consent, depending on jurisdiction).
• To send marketing communications, where you have given consent.
• To comply with legal, tax, and regulatory obligations.

4. Payments

Payments are handled by our third-party payment provider (currently Paddle), acting as Merchant of Record. The provider collects payment information directly from you and processes the transaction, tax, and invoicing. We only receive limited order metadata necessary to fulfil your order.

5. Cookies

We use three categories of cookies:

• Essential cookies — required for login, checkout, and security. Always on.
• Analytics cookies — help us understand how the Service is used so we can improve it. Used only with your consent.
• Marketing cookies — used to measure campaigns and show relevant content. Used only with your consent.

You can change your choice at any time by clearing site data in your browser.

6. How we share data

• Service providers who help us run the Service (cloud hosting, email delivery, analytics, customer support).
• Payment provider (Paddle) as Merchant of Record for checkout, billing, tax, and refunds.
• Professional advisers (legal, accounting) where needed.
• Authorities where required by Malaysian law or other applicable law.

7. Data retention

We keep personal data only for as long as necessary for the purposes described above and to comply with legal obligations. When data is no longer needed it is deleted or anonymised. You may request deletion of your account by emailing us.

8. Your rights

Subject to applicable law (including Malaysia's Personal Data Protection Act 2010 and equivalent laws where you live), you may have the right to access, correct, withdraw consent for, or request deletion of your personal data, and to lodge a complaint with the relevant authority. To make a request, email aisyadva.tmx@gmail.com.

9. Security

We use appropriate technical and organisational measures to protect your data, including encryption in transit, access controls, and least-privilege access for staff. No system is fully secure, but we work to maintain a high standard of protection.

10. Changes

We may update this Privacy Policy from time to time. The "Last updated" date above reflects the most recent revision.

11. Contact

Questions about this Policy or your data? Email aisyadva.tmx@gmail.com.