Privacy Policy

Last updated: 25 March 2026

UX Strategist ("we", "our", or "us") respects your privacy. This policy explains how we handle your information when you use our Business Reality Diagnostic at uxstrategist.org, in compliance with Malaysia's Personal Data Protection Act 2010 (PDPA).

  1. Information We Collect

    We collect only what's necessary to deliver your diagnostic:

    • Assessment responses: Used to calculate your Continuity Score and Sunk Cost Intensity to determine your operational bottlenecks
    • Email address: Collected after payment to deliver your report
    • Payment data: Processed securely by Stripe (we never store card details)
    • Usage & Behavioral data: We use Microsoft Clarity to capture how you use and interact with our website through behavioral metrics, heatmaps, and session replays. This helps us identify usability friction and improve our diagnostic tools. All personal and sensitive text on screen is masked before being sent to Clarity.

    Note: Your assessment answers are never sold, rented, or shared in identifiable form.

  2. How We Use Your Information

    Your data is used exclusively to:

    • Generate your personalised Reality Report
    • Deliver your report via email
    • Process refund requests fairly
    • Improve diagnostic accuracy through aggregated, anonymous data

  3. Data Retention (PDPA Compliant)

    • Paid assessments: 24 months (for ongoing report access, support, and financial record-keeping)
    • Unpaid assessments: 30 days (to allow session recovery and payment completion)
    • After retention: Personal identifiers permanently deleted; anonymized patterns retained for research

    You may request early deletion by submitting a support request

  4. Third-Party Processors & International Transfers

    We use trusted third-party services that may transfer data outside of Malaysia. These providers maintain PDPA-equivalent protection standards:

    • Stripe (Payment Processing): Securely processes your payments. We never store your credit card details on our servers.
    • Microsoft Clarity (Analytics): Website usage data is captured using first and third-party cookies and other tracking technologies to determine the popularity of our pages and identify UX issues. For more information about how Microsoft collects and uses your data, visit the Microsoft Privacy Statement.

  5. Your PDPA Rights

    You may request:

    • Access to your submitted responses to assessment questions
    • Correction of inaccurate personal data you provided
    • Deletion of your submitted data before the retention period ends

    Note: Professional interpretations, analyses, and consultation outputs generated by UX Strategist are service deliverables provided upon payment. These are not considered personal data subject to access requests under PDPA.

    Requests are processed within 21 days. Contact Support

    In the unlikely event of a data breach affecting your information, we will notify you within 72 hours.

  6. Contact

    Questions about your data? Submit a Support Request

By providing your email after payment, you consent to receiving your Reality Report and necessary service communications. Your assessment responses are processed under PDPA's "necessary for contract performance" basis.