**Personal Data Protection Act**
**PRIVACY NOTICE**
1. **Introduction**
In compliance with the Personal Data Protection Act 2010 (“the Act”) and its regulations, this notice is issued to all our valued clients and/or prospective clients. This Notice will inform you of your rights regarding your personal data that has been and/or will be collected and processed by us.
2. **Collection of Personal Data**
We collect and will continue to collect your personal data to be processed by us and/or on your behalf in the course of your present or future dealings with Stratus Technologies (M) Sdn Bhd, its subsidiaries, and associated companies (“we,” “our,” “us,” or “Company”). Your personal data enables us to achieve the “Purpose” connected with our business.
3. **Description of Personal Data**
The types of personal data we collect include:
– Name
– Identity Card number
– Gender
– Email address
– Mobile phone number
– Passport number
– IP address
– Images (still or video recordings)
– Sensitive personal data and any Personal Identifiable Information (PII) as defined by international privacy laws or standards
– Phone call recordings
– Credit card, debit card, or banking details
4. **Purposes of Collection of Personal Data**
We use client data for the following purposes, including but not limited to:
– Verifying your identity
– Processing your application for our services, if relevant
– Managing network, servers, or software
– Maintaining system security (including against security breaches)
– Detecting and stopping fraudulent or harmful activities
– Verifying creditworthiness
– Processing credit card payments
– Administering our services, including analytics, billing, and performance monitoring
– Responding to your inquiries (billing, complaints, or general inquiries)
– Optimizing services through planning, maintenance, or training
– Complying with regulatory requirements
– Handling legal challenges and investigations
– Providing data as required to suppliers, researchers, or authorities
– Contacting you through various channels for customer support, sharing information, enhancing relationships, informing you about new products or services, or obtaining feedback
– As permitted by law or regulation
5. **Sources of Personal Data**
We may obtain client personal data from the following sources, including but not limited to:
– Communication with us, office visits, service subscriptions, program participation, surveys, registrations, or other interactions
– Other sources where consent has been provided for disclosure or as permitted by law
6. **Disclosure of Personal Data**
We may disclose client personal data to other subsidiaries within our group. These subsidiaries will treat your personal data as confidential, in line with this Privacy Policy and all applicable data protection laws, and will only process such data for the purposes outlined. We take measures to ensure a comparable level of protection when personal data is processed by vendors, commonly referred to as “data processors,” and are committed to adhering to the Personal Data Protection Act 2010, including its guidelines and policies.
7. **Security of Personal Data**
We implement strict procedures and security measures to prevent unauthorized access. Personal data provided through our website or applications, including online credit card transactions, is protected by encryption such as Transport Layer Security (TLS). Data stored in our systems or in cloud storage is encrypted, with access limited to secure facilities. Non-electronic data is also safeguarded with strict security measures.
8. **Use of Cookies**
Cookies used by our website are associated with anonymous users and their computers and do not store personal data. Some cookies are utilized by third parties to provide us with insights on the effectiveness of engagements and promotions. Cookies are temporary and used solely to improve user experience. Users may configure their browsers to notify them of cookies and prevent their installation.
9. **Transfer of Personal Data**
We prioritize the security of personal data and ensure a comparable level of protection when such data is processed or stored outside of Malaysia by our vendors or partners.
10. **Marketing and Promotional Purposes**
Upon subscribing to our services, you may receive marketing or promotional emails or calls, including updates on monthly promotions and future events. If you wish to opt-out, you may click the “unsubscribe” link in emails to remove yourself from our marketing list.
11. **Data Subject’s Obligations**
It is necessary for us to collect and retain personal data. Therefore, clients are required to provide accurate information. If personal data is not provided, we may be unable to process your data or provide services, resulting in the termination of all relationships created with us.
12. **Rights of Data Subjects**
– **To Request Access**: Clients have the right to request access to personal data processed by us with reasonable notice. Access requests can be made via email at [email protected]
– **To Request Correction**: Clients have the right to request correction or updates to their personal data. Correction requests can be made via email at [email protected].
– **To Limit Processing**: Clients can limit the processing of their personal data by withdrawing consent, subject to legal restrictions and contractual conditions, within a reasonable time frame.
13. **Changes to Privacy Policy**
We reserve the right to amend this Privacy Policy periodically without prior notice. We advise clients to regularly check our website for the latest version of this Privacy Notice at www.stratustech.asia