Privacy Policy

1.1. In this Privacy Policy:

• “Personal Data” and “Processing” have the meanings given in the Personal Data Protection Act 2010 of Malaysia (“PDPA”).
• “Platform” means the Dapor mobile application.
• “We”, “us”, “Our” means Waymaker Technologies Sdn. Bhd. (Company Registration No. 202301020497 (1514419-D)).
• “You” means Users (customers) and Vendors (caterers).

3.1. We collect only the data necessary to facilitate connections and verify accounts:

• Identity Data: Name, username, and profile picture.
• Contact Data: Mobile phone number (Required for OTP authentication and "Contact Seller" redirection).
• Location Data: The state/area you manually type into your profile (e.g., "Subang Jaya") to help Users find local Vendors. We do not use GPS tracking.
• Vendor Documentation: For Vendors, we collect business documentation (e.g., SSM Registration, Halal Certificates, GMP Certificates) for the purpose of verification badges.
• Device Permissions: To upload photos (profiles/certificates), the App may request access to your device’s Camera or Photo Gallery. You may deny this, but you will not be able to upload images.
• Technical Data: IP address, device ID, and crash logs (collected automatically via tools like Firebase to fix bugs and ensure security).

4.1. We Process your Personal Data to:

• Connect Parties: To generate the "Contact Seller" link that redirects the User to the Vendor's WhatsApp.
• Search & Sorting: To display relevant Vendors to Users based on the manual location entered.
• Trust & Safety: To review Vendor certificates and assign "Verified" badges where appropriate.
• Security: To verify identity via SMS/OTP during sign-up to prevent spam/bot accounts.
• System Notifications: To send you important app updates (e.g., Terms updates or security alerts).

5.1. The Handoff: When you click "Contact Seller", the Platform redirects you to the WhatsApp application installed on your device.

5.2. No Liability for WhatsApp:

• Once you leave Dapor and enter WhatsApp, your data is governed by WhatsApp’s Privacy Policy.
• We do not have access to your chat history. We cannot mediate disputes, verify promises made in chat, or recover lost messages.

6.1. To Counterparties (Users & Vendors):

• Users: Your phone number is disclosed to the Vendor implicitly when you initiate the WhatsApp chat.
• Vendors: Your profile information (Name, Phone, Area) and Certificates (Halal/GMP) are displayed publicly to Users.
• Verification Disclaimer: We review certificates to ensure they appear valid at the time of submission. However, we do not conduct daily on-site inspections. We are not liable if a Vendor’s operational standards fall below the certified requirements after our review.

6.2. To Service Providers:

• Cloud Infrastructure: We use third-party providers (e.g., cloud storage and database services) to securely host your account data.
• SMS Gateways: We use third-party SMS providers to deliver your login OTPs.

6.3. Legal Requirements: We may disclose your data to law enforcement or regulatory authorities if required by a court order or valid legal request (e.g., for fraud investigation).

8.1. We retain your Dapor profile data as long as your account is active.

8.2. If you request account deletion, your profile will be removed from our live database.

* Note: Deleting your Dapor account does not delete the chat history on your (or the Vendor's) personal WhatsApp, as we do not control that data.

9.1. The Platform is intended for individuals aged 18 and above. We do not knowingly collect data from minors.

11.1. In accordance with the PDPA, this Policy is issued in English and Bahasa Malaysia. In the event of conflict, the English version prevails.