loaderimg
image

 

 

Who we are

Our website address is: https://supply2u.com Supply2u is a professional B2B directory platform designed to bridge the gap between businesses seeking reliable sourcing solutions and suppliers looking to expand their market reach.

What personal data we collect and why we collect it

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website. As a business or supplier uploading product showcases, logos, or corporate banners, please ensure your media files are stripped of sensitive location metadata before publication.

Contact forms

When businesses or suppliers use our contact and inquiry forms to connect, manage orders, or communicate, we collect the information submitted in the form fields. This typically includes your name, company name, corporate email address, phone number, and the specific details of your commercial inquiry. We retain this data purely for customer service and business matchmaking purposes; we do not use this operational communication data for unsolicited marketing unless explicitly opted into.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish a directory listing or an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the listing you just edited. It expires after 1 day.

Embedded content from other websites

Articles and supplier listings on this site may include embedded content (e.g. videos, images, articles, maps, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

We use third-party analytics services (such as Google Analytics) to monitor traffic patterns, optimize our search functionality, and analyze user interactions on the platform. These services collect information transmitted by your browser or mobile device, including the pages you visit, search queries used to find suppliers, and other platform activity data. This allows us to continuously improve our matching algorithms and platform layout to support better commercial decisions.

Who we share your data with

To maintain an efficient sourcing ecosystem, your data may be shared in the following instances:

  • Public Directory Visibility: Information that suppliers deliberately input into their public profiles, product showcases, and listings is shared with all visitors and procurement-ready businesses on the platform to support visibility and discovery.
  • Sourcing Connections: When a business initiates an inquiry or order with a supplier, the relevant contact details and message contents are securely shared with that specific party to facilitate commercial engagement.
  • Service Providers: We may share data with trusted third-party vendors who assist with our operations, such as hosting providers, business verification services (to build our verified supplier network), and automated spam detection tools.
  • Legal Obligations: We will share data if required to do so by law or in response to valid requests by public authorities.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users and businesses that register on our website, we store the personal and corporate information they provide in their user profile indefinitely, or until the account is closed. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information to support platform integrity.

Communication data from contact and inquiry forms is kept for as long as necessary to fulfil the relevant business matchmaking services, or to comply with corporate administrative, legal, or audit requirements.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments and new account submissions may be checked through an automated spam detection service. Because Supply2u functions as a central hub connecting separate entities, your inquiries and messaging data are securely routed through our platform infrastructure to the respective registered business or supplier you are actively trying to engage with.

Your contact information

For privacy-specific inquiries, data access requests, or questions regarding our commercial directory practices, you can contact the Supply2u data compliance team at:

Email: admin@supply2u.com

Mailing Address: 23-25, Level 3, Jalan Tengku Ampuan Zabedah F 9/F, Seksyen 9 40100 Shah Alam

 

Data Protection and Security

How We Protect Your Data

At Supply2u, we are committed to safeguarding the commercial, operational, and personal data shared by our network of businesses and suppliers. Because our platform facilitates centralized communication, inquiries, and order management, we employ industry-standard security measures to keep your data safe:

  • Encryption: All data transmitted through Supply2u.com—including communication logs, inquiries, and order management data—is encrypted in transit using Secure Socket Layer (SSL/TLS) technology and encrypted at rest.
  • Access Control: Access to your account data and backend business information is strictly limited to authorized Supply2u personnel who require it to maintain the platform and support your commercial transactions.
  • Verification Security: Information provided to build your status within our “verified supplier network” is stored securely and used solely for authenticating business legitimacy.
  • Platform Monitoring: We continuously monitor our centralized platform to identify, block, and mitigate potential security vulnerabilities or unauthorized access attempts.

What Data Breach Procedures We Have in Place

In the unlikely event of a data security incident, Supply2u has a structured incident response plan to minimize impact and protect our users:

  • Identification and Containment: Our technical team will immediately isolate the affected systems to halt the breach and secure the platform.
  • Investigation: We will conduct a thorough forensic assessment to determine what data was accessed and which businesses or suppliers are affected.
  • Notification: If a breach poses a risk to your business operations or personal data, Supply2u will notify affected account holders via their registered email without undue delay, outlining the nature of the breach and steps they can take to secure their accounts.
  • Regulatory Reporting: We will notify relevant data protection authorities within the legally mandated timeframes based on jurisdiction.

Data Usage and Automation

What Third Parties We Receive Data From

To provide a reliable, efficient sourcing marketplace and maintain our verified supplier network, Supply2u may receive data from the following third-party sources:

  • Business Registries & Verification Services: Public corporate registries or third-party verification vendors to confirm the legal and commercial validity of listing suppliers.
  • Analytics Partners: Data from tools that help us analyze how users discover and interact with the directory, allowing us to optimize search functionality.
  • Referrals: Basic corporate contact information when a business or supplier is recommended to our platform by an existing partner.

What Automated Decision-Making and/or Profiling We Do

Supply2u utilizes automated systems and algorithmic profiling to simplify discovery and support better commercial decisions:

  • Directory Matching and Search Optimization: We use automated profiling based on industry, product listings, and location to display relevant suppliers to procurement-ready businesses.
  • Side-by-Side Comparisons: When businesses compare multiple suppliers, our platform automates data organization to help users evaluate budget, fit, and requirements efficiently.
  • Targeted Visibility: For suppliers, our system uses platform behavior data to present your products to a targeted audience of businesses actively seeking your specific offerings.
  • Note: Supply2u does not engage in automated decision-making that carries legal or similarly significant consequences for your business.

Regulatory and Disclosure Requirements

Industry Regulatory Disclosure Requirements

As a professional directory and B2B sourcing platform, Supply2u complies with applicable national and international data protection laws governing commercial and electronic communications.

  • Commercial Communication Transparency: In accordance with electronic commerce regulations, all inquiries, order updates, and marketing communications sent through our centralized platform clearly identify the sender and provide simple mechanisms for management or opt-outs.
  • Corporate vs. Personal Data: While our platform primarily processes business-to-business (B2B) corporate information, any personal data associated with individual business representatives (such as names, direct corporate emails, and phone numbers) is handled in strict compliance with applicable regional data privacy act (e.g., GDPR, CCPA, or local equivalent laws based on user location).