HomePrivacy Policy

Privacy Policy

Last updated: 4 July 2026

This Privacy Policy explains how Yaeris Digital Services (company registration number 002999014-K), the operator of listing.yaeris.com ("we", "us", "our"), collects, uses, stores, and protects information when you use our AI-ready business directory platform (the "Platform"). This policy is written to comply with Malaysia's Personal Data Protection Act 2010 (PDPA) and applies to all visitors, registered vendors, and administrators of the Platform.

1. Who We Are

Yaeris Digital Services

Registration No: 002999014-K

Registered Address: 33-01, 33rd Floor, Menara Keck Seng, 203 Jalan Bukit Bintang, 55100 Kuala Lumpur, Malaysia

Contact Email: rick.yaeris@gmail.com

2. What Information We Collect

We collect the following categories of information:

  • Account information: name, email address, password (encrypted), and role (vendor or admin), collected when you register through Supabase Auth.
  • Business listing information: business name, description, logo, category, services, software, and website links submitted for your directory listing.
  • Payment and wallet information: wallet top-up amounts, transaction history, and payment confirmation records. Card details themselves are processed directly by Stripe and are never stored on our servers.
  • Usage and click data: click logs on the Direct Website button used to calculate pay-per-click charges, including IP address (stored in hashed form), timestamp, and the business clicked on.
  • Communications: emails you send to us, support requests, and any correspondence relating to your listing or account.
  • Technical data: browser type, device information, and cookies used for basic site functionality and security.

3. How We Use Your Information

We use the information we collect to:

  • Create and manage your vendor account and business listing.
  • Review, approve, or reject listing submissions.
  • Process wallet top-ups and pay-per-click deductions through Stripe.
  • Send transactional emails such as approval notices, rejection reasons, low balance alerts, and payment confirmations via Resend.
  • Maintain the security, integrity, and performance of the Platform.
  • Comply with legal obligations, including tax, accounting, and fraud prevention requirements.
  • Generate directory pages, sitemaps, and AI-readable summaries (llm.txt) from your approved listing content.

4. Legal Basis for Processing

We process your personal data on the following grounds: your consent when you register and submit a listing, the necessity of processing to perform our contract with you as a vendor, and our legitimate interest in operating and securing the Platform. Where required by the PDPA, we will always obtain your consent before processing sensitive personal data.

5. How We Share Your Information

We do not sell your personal data. We share information only with the following categories of service providers, each of whom is contractually required to protect your data:

  • Supabase — database hosting, authentication, and storage.
  • Stripe — payment processing and wallet top-ups.
  • Resend — transactional email delivery.
  • Vercel — website hosting and deployment.

Approved business listing content (name, description, services, software, and public profile details) is published publicly on the directory and may be indexed by search engines and AI crawlers, since public visibility is the core purpose of the Platform.

6. Data Retention

We retain account and listing data for as long as your account remains active. Wallet transaction and click log records are retained for at least seven (7) years to meet accounting and tax obligations under Malaysian law. If you close your account, we will delete or anonymise personal data that we are not legally required to keep within a reasonable period.

7. Data Security

We apply reasonable technical and organisational measures to protect your data, including encrypted connections, database-level Row Level Security (RLS) so vendors can only access their own records, restricted access to administrative functions, and secure handling of payment data entirely through Stripe's PCI-compliant infrastructure. No system is completely secure, and we cannot guarantee absolute security.

8. Your Rights Under the PDPA

Subject to the Personal Data Protection Act 2010, you have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate or incomplete data.
  • Withdraw consent to our processing of your data, understanding this may limit your use of the Platform.
  • Request deletion of your account and associated personal data, subject to our legal retention obligations.
  • Lodge a complaint with the Department of Personal Data Protection (JPDP) Malaysia if you believe your data has been mishandled.

To exercise any of these rights, contact us at rick.yaeris@gmail.com.

9. Cookies

We use essential cookies required for login sessions and basic site functionality. We do not currently use third-party advertising or tracking cookies. If this changes, we will update this policy and request consent where required.

10. International Users

While the Platform is operated from Malaysia, it may be accessed by users and vendors from other countries. By using the Platform, you acknowledge your data may be processed on servers located outside your home country, including through our hosting and payment providers, and that Malaysian data protection standards will apply to our handling of your data.

11. Children's Privacy

The Platform is intended for business use and is not directed at individuals under 18. We do not knowingly collect personal data from minors.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The updated version will be posted on this page with a revised "Last updated" date. Continued use of the Platform after changes take effect constitutes acceptance of the revised policy.

13. Contact Us

If you have questions or concerns about this Privacy Policy or how your data is handled, please contact:

Yaeris Digital Services

33-01, 33rd Floor, Menara Keck Seng, 203 Jalan Bukit Bintang, 55100 Kuala Lumpur, Malaysia

Email: rick.yaeris@gmail.com

This document is a general template based on common practice under Malaysia's Personal Data Protection Act 2010 and does not constitute legal advice. We recommend having it reviewed by a qualified Malaysian lawyer before publishing it live.