Security Policy

Last Updated : Oct 2025

Introduction
At Web Temple ("We," "Us," "Our"), we are committed to maintaining the security of our customers' data and services. This Security Policy outlines the measures we take to protect the integrity, confidentiality, and availability of information stored or processed through our services. By using our services, you agree to the terms outlined in this Policy.

1. Scope of Policy

   1. Covered Systems:

      • Hosting infrastructure

      • Managed services

      • Larvee application products

      • Customer data stored or processed through our systems

   2. Exclusions:

      • Security of systems or data managed solely by customers

      • Third-party systems or applications not controlled by us

2. Security Measures

   1. Access Controls:

      • Multi-factor authentication (MFA) is required for administrative access to critical systems.

      • Role-based access control (RBAC) ensures employees only access data necessary for their role.

   2. Encryption:

      • Data in transit is secured using industry-standard encryption protocols (e.g., HTTPS, TLS).

      • Sensitive data at rest is encrypted using AES-256 or equivalent standards.

   3. Firewall and Network Security:

      • Firewalls are configured to block unauthorized access to systems.

      • Intrusion detection and prevention systems (IDPS) monitor and mitigate suspicious activities.

   4. Regular Audits:

      • Internal security audits are conducted quarterly to identify vulnerabilities.

      • Compliance checks ensure adherence to applicable regulations (e.g., GDPR, PDPA).

3. Incident Response

   1. Detection:

      • Systems are monitored 24/7 for potential security breaches.

   2. Response Plan:

      • Immediate containment and mitigation of threats.

      • Notification to affected customers within 72 hours of confirmed breaches.

   3. Post-Incident Review:

      • After addressing an incident, a root cause analysis is performed.

      • Mitigation strategies are updated to prevent recurrence.

4. Customer Responsibilities

   1. Account Security:

      • Customers must use strong passwords and enable MFA where available.

      • Report any suspected unauthorized access immediately to Get in Touch Form.

   2. Secure Practices:

      • Regularly update software and applications to the latest versions.

      • Avoid sharing sensitive account credentials with unauthorized parties.

5. Third-Party Providers

   1. Vendor Assessments:

      • Third-party providers are assessed for their security measures before integration.

   2. Data Protection Agreements:

      • Contracts with third-party providers include provisions to ensure data security and compliance.

6. Policy Amendments

   1. Updates:

      • This Policy may be updated to address new security threats or compliance requirements. Customers are advised to review this Policy on our website periodically to stay informed of any changes.

      • While not obligated, we may provide notifications of significant updates as a gesture of goodwill.

Contact Us
For questions or concerns about this Security Policy, contact us at:

• Get in Touch Form (via our website)
• Phone: +603 7958 2808 (Malaysia), +65 9777 2808 (Singapore)
• Mobile & Messenger App: +6019 354 2808 (Malaysia), +65 9777 2808 (Singapore)

Acknowledgment
By using our services, you acknowledge that you have read, understood, and agree to this Security Policy.