Privacy Policy
This policy explains how iSaff handles institution, user, and community records. It is written as a practical product policy and may be updated as the platform grows.
Information we collect
We collect account details, institution profiles, operational records, uploaded documents, billing status, and usage information needed to provide the service.
How we use information
We use data to run the platform, secure accounts, provide support, improve product reliability, and generate reports requested by authorized users.
Institution data
Each institution manages its own records. Access is controlled by user roles, and tenant records are separated at the application level.
Service providers
We may use infrastructure, email, AI, analytics, or payment providers where needed to operate the service. These providers only receive data required for their function.
Retention and deletion
Institution administrators may request exports or deletion support. Some records may be retained where required for security, billing, legal, or audit reasons.
Contact
For privacy questions, contact hello@isaff.my.