How we protect your corporate data and maintain the highest standards of financial security and legal compliance.
Mogu (operated by Metora Data Science Sdn Bhd) is committed to maintaining the highest standards of data privacy and transparency for our clients. This policy outlines how we collect, process, and safeguard your financial and corporate information when you utilize our e-Invoicing middleware and SST compliance services. We prioritize a non-disruptive, secure environment that ensures your business meets the 2024 IRBM (LHDN) mandate without compromising data integrity.
All data processing activities performed through the Mogu portal are strictly governed by and construed in accordance with the laws of Malaysia. Specifically, we ensure that every transaction and piece of metadata processed through our system complies with the Malaysian Personal Data Protection Act 2010 (PDPA) and Malaysian data sovereignty laws.
We collect information necessary to facilitate seamless LHDN MyInvois integration and automated tax filing. This includes:
Corporate Identity: Tax Identification Numbers (TIN), Business Registration Numbers (BRN), and official company names.
Transaction Data: Information extracted from PDF and Excel invoices, such as line items, buyer details, and tax computations.
Contact Information: Names, corporate emails, and phone numbers provided via inquiry or consultation forms.
Mogu employs enterprise-grade security protocols to protect sensitive financial landscapes.
Encryption: All data is protected using 256-bit encryption during transmission and storage.
Access Controls: We implement robust metadata management and role-based access controls to prevent unauthorized access or fraud.
7-Year Retention: In accordance with Malaysian legal record-keeping requirements, Mogu maintains an auditable trail of all validated invoices for a period of seven years.