Policy Privacy
POLICY OF PRIVACY & DATA PROTECTION
MainCodes 27th Sdn Bhd respects the privacy of individuals with regards to Personal Data. This privacy policy is prepared and formulated in accordance with the Personal Data Protection Act 2010 (“the Act”). For the purpose of this privacy policy, “Personal Data” is committed to processing your personal data within the ambit of the Act.
Scope of the Act
The Act primarily aims to regulate the collection, holding, processing and use of Personal Data in commercial transactions and also to prevent malicious use of personal information. This Act plays a crucial role in safeguarding the interest of individuals and makes it illegal for anyone, be it corporate entities or individuals, to sell personal information or allow such use of the data by third parties.
The Act only applies to the processing of personal data in respect of “commercial transactions”. A commercial transaction is widely defined as any transaction of a commercial nature, whether contractual or not which includes any matters relating to the supply or exchange of goods or services, agency, investments, financing, banking and insurance. There must be a commercial element in the processing of the personal data to attract the application of the said Act.
What Personal Data Do We Collect?
27th App will collect certain Personal Data when you sign up with 27th App as a 27th User and any additional information required from time to time in connection with the provision of services, obtaining of feedback or conducting of surveys related to 27th App. In addition to the above, there are certain Personal Data collected when you use the 27th App for the purposes stated above.
The Personal Data which 27th App may collect are as follows:
- (1) Name
- (2) IC, Passport, MyKid and Birth Certificate number
- (3) Gender
- (4) Age
- (5) Address
- (6) Telephone number
- (7) E-mail address
- (8) Language preferences
- (9) Profession & Income range
What Steps Are Taken to Safeguard the Security and Safety of Your Personal Data?
27th App is required under the Act to protect and safeguard your Personal Data by taking practical steps to implement security measures thereto, i.e. to protect your Personal Data from any loss, misuse, modification, unauthorized or accidental access or disclosure, alteration or destruction. 27th App has assigned specific responsibilities to address privacy and security related manners and enforce our internal policies and guidelines through an appropriate selection of activities, including proactive and reactive risk management, training and assessments. 27th App takes
How Long Do We Retain Your Personal Data?
The Personal Data shall not be kept for longer than is necessary. Whilst the Act does not stipulate the time frame allowed for storage of your Personal Data, 27th App shall destroy and/or permanently delete your Personal Data once it is no longer required for the purpose for which it was processed.
Your Rights
The Act accords five (5) rights to individuals to safeguard their Personal Data as listed below:
(1) The Right of Access Personal Data
Subject to the provisions of the Act, you have the right to access your Personal Data and/or to correct your Personal Data with 27th App should you believe that the Personal Data provided is incorrect, outdated, inaccurate or incomplete. You may access your Personal Data at the contact particulars provided below
(2) The Right to Correct Personal Data
You may request for the Personal Data provided to be deleted and/or corrected if the data is inaccurate, incomplete, misleading or not up-to-date at the contact particulars provided below. The integrity of the Personal Data which is collected is a crucial element in the Act. 27th App shall take reasonable steps to ensure that the Personal Data is accurate, complete, not misleading and kept up-to-date.
(3) The Right to Withdraw Consent
The consent which you have granted in respect of the processing of your Personal Data may not necessarily endure forever, as you may by notice in writing to the contact particulars provided below withdraw the consent granted. 27th App shall cease processing of your Personal Data upon receipt of your notice. You are entitled to withdraw your consent at any time. 27th App shall be required to obtain your explicit consent in the event that “Sensitive Personal Data” is being processed by 27th App and “Sensitive Personal Data” shall include medical history, political opinions, religious beliefs and commission or alleged commission of any offense.
(4) The Right to Prevent Processing for the Purposes of Direct Marketing
27th App shall process your Personal Data in strict adherence to the consent which you have granted in respect of the processing of your Personal Data. As such, 27th App shall never process data for purposes of direct marketing where such purpose has not been identified and consent has not been obtained from you.
Should you receive marketing materials from 27th App via short messaging service (SMS), e-mails, telephone and/or by post and you wish to discontinue such receipt of marketing information, you may provide 27th App with a “opt out” notice to remove/delete your Personal Data from 27th App’s database. Once an “opt out” notice has been received from you, 27th Appshall within a reasonable time remove/delete your Personal Data from our database.
(5) The Right to Prevent Processing which is likely to cause Damage or Distress
We reiterate that the 27th App shall process your Personal Data only where you have granted your consent for the processing of your Personal data for the above stated purposes only. You have the absolute right to prevent the processing of your Personal Data where your consent has not been obtained for such specific purposes and such processing of your Personal Data will cause or is likely to cause substantial unwarranted damage or distress to you or another person.
Change/Amendments to this Privacy Policy
27th App may from time to time change this Privacy Policy. However, if the changes made are material, 27th App will post a notice advising of such change at the beginning of this Privacy Policy and use reasonable means to communicate to you such change within twenty one (21) days from such change.