Last updated: May 05, 2026
Welcome to Graceful Hands Malaysia. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and web platform available at https://gracefulhandsmy.com.
We are committed to protecting your privacy and ensuring the security of your personal information. Please read this privacy policy carefully to understand our practices regarding your personal data.
Organization: Graceful Hands Malaysia
Address: NO. 31, Jalan Kedondong, Ampang Hilir, 55000 Kuala Lumpur, Wilayah Persekutuan Kuala Lumpur
Email: auranga.biz@gmail.com
Phone: +91-733768 0905 / +60-034265 3231
Our school management system collects and processes the following types of personal information:
• Full names and personal details
• Contact addresses and phone numbers
• Academic records and performance data
• Attendance records
• Photographs captured via the device camera for identification purposes
• Parent/guardian contact information
• Personal and professional details
• Contact information
• Employment records
• Attendance and leave records
• Salary and payment information
• Camera: The app requests access to the device camera to capture live profile photographs of students and employees during registration. The camera is used only when the user actively initiates the action and is never used in the background. Captured images are securely uploaded to our servers and used solely for identification and institutional record purposes.
• Storage: Storage access is limited and used only when necessary to upload documents selected by the user. The app does not access files without user action.
The app does not collect personal data in the background without user interaction.
Users have full control over when photos and documents are captured or uploaded through the app, and no data is collected without user action.
• Login credentials and authentication data
• Device FCM (Firebase Cloud Messaging) registration token
• App usage patterns and preferences
• Language preferences stored in cookies
We use the collected information for the following purposes:
• Managing daily school operations and activities
• Student enrollment, attendance, and academic record keeping
• Employee management and payroll processing
• Sending push notifications for important updates
• Managing complaints and inquiries
• Fee collection and financial record keeping
• Transport and examination management
• Generating student and employee identification cards
• Maintaining school calendar, routines, and schedules
• Inventory and resource management
Storage Location: All data is securely stored in MySQL databases hosted on Amazon Web Services (AWS) RDS.
Security Measures:
• Role-based access control system
• JWT token-based authentication
• All data transmission between the app and our servers is secured using HTTPS (TLS encryption).
• Regular security updates and monitoring
• Access restricted to authorized personnel only
Data Retention: Data is retained only for as long as necessary to fulfill institutional, legal, and academic record requirements.
We share limited data with trusted third-party service providers:
• Firebase (Google): Used for push notifications. Device identifiers such as FCM tokens are processed to deliver notifications. No personal content data is shared with Firebase.
• GoDaddy Email Services: Used for sending transactional emails.
• Amazon Web Services (AWS): Used for secure data storage and hosting of application data including images and records.
These providers process data only on our behalf and under strict confidentiality agreements.
These third-party services have their own privacy policies, and we encourage you to review them.
Our services are designed for educational institutions and involve the collection of information from minors. We are committed to protecting children's privacy and comply with applicable laws regarding the collection and use of information from children under 18 years of age.
We collect and process children's data only under the authorization of the educational institution and with consent from parents or legal guardians where required by applicable laws.
You have the following rights regarding your personal information:
• Access: Request access to your personal data
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal data (subject to legal requirements)
• Objection: Object to certain processing of your data
• Portability: Limited data export capabilities as per institutional policies
To exercise these rights, please contact us at auranga.biz@gmail.com or call +91-733768 0905 / +60-034265 3231.
If you wish to delete your account and all associated data, you can request account deletion by:
Option 1: Send an email to auranga.biz@gmail.com with subject line "Account Deletion Request" including your registered email/phone and user ID.
Option 2: Call us at +91-733768 0905 / +60-034265 3231 during business hours (9 AM - 5 PM MYT, Monday to Friday).
Option 3: Contact your school administrator directly to initiate the deletion request.
Data Deleted: Upon account deletion, we will remove your personal profile information, login credentials, and associated activity data. Some information may be retained for legal compliance, audit purposes, or as anonymized records for academic history (if applicable to your institution's policy).
Processing Time: Account deletion requests are typically processed within 15-30 business days.
You can request deletion of specific data collected through this app without deleting your entire account. This includes:
• Activity History: App usage logs, login history, and session data
• Transaction History: Fee payment records, expense records (where applicable)
• Images and Videos: Profile photos, uploaded documents, and media files
• Notification History: Push notification logs and preferences
• Device Information: FCM tokens and device registration data
How to Request Partial Data Deletion:
Send an email to auranga.biz@gmail.com with subject line "Data Deletion Request" and specify:
1. Your registered email/phone and user ID
2. The specific type(s) of data you want deleted (e.g., "activity history", "uploaded images")
3. Any specific date range (if applicable)
Processing Time: Partial data deletion requests are typically processed within 7-15 business days.
Note: Some data may be retained for legal compliance, academic records, or institutional requirements even after a partial deletion request.
Our application uses:
• Cookies: To store language preferences and user settings
• Local Storage: To maintain login sessions and application state
• JWT Tokens: For secure authentication and session management
You can manage cookie preferences through your browser settings, though this may affect app functionality.
We do not sell personal data under any circumstances.
We do not use personal data for advertising or marketing purposes, nor do we share data with third parties for advertising. We may share information only in the following circumstances:
• With your explicit consent
• To comply with legal obligations
• To protect the rights and safety of students, staff, and the institution
• With authorized educational authorities as required by law
• With service providers who assist in our operations (under strict confidentiality agreements)
We may update this Privacy Policy from time to time. We will notify users of any significant changes by:
• Posting the new Privacy Policy on our application
• Sending notifications through the app
• Updating the "Last updated" date at the top of this policy
Continued use of our services after changes constitute acceptance of the updated policy.
This Privacy Policy is governed by and construed in accordance with the laws of Malaysia, including the Personal Data Protection Act 2010 (PDPA). Any disputes arising from this policy shall be subject to the exclusive jurisdiction of the courts of Kuala Lumpur, Malaysia.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Email: auranga.biz@gmail.com
Phone: +91-733768 0905 / +60-034265 3231
Address: Graceful Hands Malaysia, NO. 31, Jalan Kedondong, Ampang Hilir, 55000 Kuala Lumpur, Wilayah Persekutuan Kuala Lumpur
We will respond to your privacy-related inquiries within 5 days of receipt.