At AIBIP (operated by Ava Semarak Berhad), we treat your business logic as your most valuable intellectual property. This policy outlines our commitment to protecting the “Secret Sauce” of your business within the Passport Manager (the “Portal”).

1. Our Role: Logic Infrastructure, Not AI Engine

AIBIP provides a Logic Infrastructure Layer. We do not provide AI generation services, and we do not “read” your data to provide insights. Our role is strictly limited to:

• Compiling: Organizing your inputs into the machine-readable AIBIP schema.

• Hosting: Providing a secure, stable URL for your Passport Files.

• Verification: Acting as a trusted anchor to verify that your Passport is the “Canonical Source of Truth.”

2. The “No-AI-API” Guarantee

Unlike standard SaaS applications, the AIBIP Passport Manager does not connect to any third-party AI APIs (e.g., OpenAI, Google, Anthropic).

• Zero Ingestion: We never transmit your data to an external AI for processing.

• Zero Training: Your proprietary business logic, WAPs, and PDPs are never used to train, fine-tune, or improve any Large Language Model (LLM).

• Grounding Control: You retain 100% control over which AI engine sees your data. You choose when to download your Passport File or provide your URL to an AI service of your choice.

3. Data Classification: Your Signal vs. Your Secrets

We distinguish between the data you intend for the world to see and the data you use to run your business:

• Public Identity Data (BIP/PSP): Information you explicitly designate for public discovery is made available to AI engines and search engines via your public URL.

• Private Business Logic (WAP/CAP/PDP, BMP, EIP): Your internal workflows, audit rules, and tribal knowledge are encrypted at rest and are never made public. Access to this data is restricted solely to your authorized Portal users.

4. Information We Collect

• Account & Billing: Basic contact info and payment details required for your subscription.

• Infrastructure Metadata: System logs to ensure the security and performance of your hosted Passport URLs.

• Passport Content: The text, documents, and rules you input to generate your Passport Files.

5. Data Ownership & Sovereignty

• Total Ownership: You retain full ownership and copyright over all logic, tribal knowledge, and business rules compiled through our Portal.

• Local Hosting: Data is hosted on secure, enterprise-grade infrastructure. In accordance with Malaysian digital sovereignty standards, we prioritize regional hosting for our Southeast Asian clients.

• Data Portability: You can download your structured Passport Files (JSON/Schema format) at any time.

6. Security Protocols

Your business logic is stored in a secure “Passport Vault” utilizing:

• End-to-End Encryption: All data is encrypted using AES-256 during storage and SSL during transmission.

• Access Control: You define the user permissions within your Passport Manager to prevent unauthorized internal access.

• Immutable Logs: We maintain a timestamped log of all changes made to your Passports for your internal auditing purposes.

7. Compliance with PDPA (Malaysia)

Ava Semarak Berhad is a Malaysian entity. We comply with the Personal Data Protection Act 2010 (PDPA). While our primary focus is on protecting Business Logic, we apply identical security and consent standards to any Personal Data processed during account management.

8. Retention & Deletion

• Active Use: We retain your data for as long as your subscription is active.

• Account Closure: If you close your account, your public URLs are immediately deactivated. Your private logic is held in an encrypted archive for 90 days (to prevent accidental data loss) before being permanently purged from our servers.

9. Contact Our Data Protection Team

For questions regarding the security of your business logic or to exercise your data rights:

Email: hello@aibip.com.my
Office: 29A-0702, The Maritime Suites, Persiaran Karpal Singh 2, 11600, Jelutong, Penang.