1.1 This is the personal data protection policy (“Personal Data Protection Policy”) of Malaysian Mosaics Sdn Bhd (“Company”, “we”, “us”, or “our”).
1.2 To process, administer and/or manage your relationship with us, we will necessarily need to collect, use, disclose and/or process your personal data. This Personal Data Protection Policy applies to personal data about you and/or individuals (customers, vendors, distributors, suppliers, service providers, business partners) provided by you, possessed by us or that we obtain about you, whether now or in the future. We will only process your personal data in accordance with the Personal Data Protection Act 2010, the applicable regulations, guidelines, orders made under the Personal Data Protection Act 2010 and any statutory amendments or re-enactments made of the Personal Data Protection Act 2010 from time to time (collectively referred to as the “PDPA”) as well as this Personal Data Protection Policy.
1.3 If you are a corporate entity, references to the term “you” and “your” shall also include your employees, representatives and agents.
1.4 The PDPA requires us to inform you of your rights in respect of your personal data that is being processed or that is to be collected and further processed by us and the purposes for the data processing. The PDPA also requires us to obtain your consent to the processing of your personal data. In light of the PDPA, we are committed to protecting and safeguarding your personal data.
1.5 By providing your personal data to us and/or continuing access to our website (“Site”), you declare that you have read and understood this Personal Data Protection Policy and agree to us processing your personal data in accordance with the manner as set out in this Personal Data Protection Policy.
1.6 We reserve the right to modify, update and/or amend this Personal Data Protection Policy from time to time with reasonable prior notice to you. We will notify you of any amendments via announcements on the Site or other appropriate means. Please check the Site from time to time to see if there are amendments to this Personal Data Protection Policy. Any amendments to this Personal Data Protection Policy will be effective upon notice to you. By continuing to communicate with us, use our services, purchase our products and/or access to the Site after being notified of any amendments to this Personal Data Protection Policy, you will be treated as having agreed to and accepted those amendments.
1.7 It is necessary for us to collect and process your personal data. If you do not provide us with your personal data, or do not consent to this Personal Data Protection Policy or any amendments to this Personal Data Protection Policy, we may not be able to render all services to you and you may be required to terminate your relevant agreement with us and/or stop accessing or using the Site.
2.1 The term “personal data” means any information in our possession or control that relates
directly or indirectly to an individual to the extent that the individual can be identified or are identifiable from that and other information in our possession such as name, address, telephone number, NRIC No, date of birth, email address, etc. The types of personal data collected depend on the purpose of collection. We may “process” your personal data by way of collecting, recording, holding, storing, using and/or disclosing it.
2.2 Your personal data may be collected from you during your course of dealings with us in any way or manner including pursuant to any transactions and/or communications made from/with us. We may also collect your personal data from a variety of sources, including without limitation, at any meetings, events, seminars, conferences, talks, road shows, customer satisfaction surveys organised and/or sponsored by us, as well as from publicly available sources.
2.3 In addition, we may also receive, store and process your personal data which are provided or made available by any third parties, credit reference bodies, regulatory and law enforcement authorities, for reasons including delivery of our products and/or services, performance of conditions of agreements and/or to comply with our legal and regulatory obligations.
3.1 The personal data as provided/furnished by you to us or collected by us from you or through such other sources as may be necessary for the fulfilment of the purposes at the time it was sought or collected, may be processed for the following purposes (collectively referred to as the “Purposes”):
individuals;
and you agree and consent to us using and processing your personal data for the Purposes in the manner as identified in this Personal Data Protection Policy. If you do not consent to us processing your personal data for one or more of the Purposes, please notify us at the contact details below.
3.2 We will seek your separate consent for any other purposes which do not fall within the categories stated above.
3.3 We may also be collecting from sources other than yourself, personal data about you, for one or more of the above Purposes, and thereafter using, disclosing and/or processing such personal data for one or more of the above Purposes.
The collection of your personal data by us may be mandatory or voluntary in nature depending on the Purposes for which your personal data is collected. Where it is mandatory for you to provide us with your personal data, and you fail or choose not to provide us with such data, or do not consent to the above or this Personal Data Protection Policy, we may not be able to effectively provide our products and/or services or otherwise deal with you, if at all.
We will not sell, rent, transfer or disclose any of your personal data to any third party without your consent. However, we may disclose your personal data to the following third parties, for one or more of the above Purposes:
We take it that all personal data provided by you is accurate and complete, and that none of it is misleading or out of date. You will promptly update us in the event of any change to your personal data.
7.1 To the extent that the applicable law allows, you have the right to request for access to, request for a copy of, request to update or correct, your personal data held by us. We may charge a small fee (such amount as permitted by the PDPA) to cover the administration costs involved in processing your request to access your personal data. Notwithstanding the foregoing, we reserve our rights to rely on any statutory exemptions and/or exceptions to collect, use and disclose your personal data.
7.2 You have the right at any time to request us to limit the processing and use of your personal data (for example, requesting us to stop sending you any marketing and promotional materials or contacting you for marketing purposes).
7.3 In addition, you also have the right, by notice in writing, to inform us on your withdrawal (in full or in part) of your consent given previously to us subject to any applicable legal restrictions, contractual conditions and a reasonable duration of time for the withdrawal of consent to be effected. However, your withdrawal of consent could result in certain legal consequences arising from such withdrawal. In this regard, depending on the extent of your withdrawal of consent for
us to process your personal data, it may mean that we will not be able to continue with your existing relationship with us or the contract that you have with us will have to be terminated.
Any of your personal data provided to us is retained for as long as the purposes for which the personal data was collected continues; your personal data is then destroyed or anonymised from our records and system in accordance with our retention policy in the event your personal data is no longer required for the said purposes unless its further retention is required to satisfy a longer retention period to meet our operational, legal, regulatory, tax or accounting requirements.
9.1 We are committed to ensuring that your personal data is stored securely. In order to prevent unauthorised access, disclosure or other similar risks, we endeavour, where practicable, to implement appropriate technical, physical, electronic and procedural security measures in accordance with the applicable laws and regulations and industry standard to safeguard against and prevent the unauthorised or unlawful processing of your personal data, and the destruction of, or accidental loss, damage to, alteration of, unauthorised disclosure of or access to your personal data.
9.2 We will make reasonable updates to its security measures from time to time and ensure the authorised third parties only use your personal data for the Purposes set out in this Personal Data Protection Policy.
9.3 The Internet is not a secure medium. However, we will put in place various security procedures with regard to the Site and your electronic communications with us. All our employees and data processors, who have access to, and are associated with the processing of your personal data, are obliged to respect the confidentiality of your personal data.
9.4 Please be aware that communications over the Internet, such as emails/webmails are not secure unless they have been encrypted. Your communications may be routed through a number of countries before being delivered – this is the nature of the World Wide Web/Internet.
9.5 We cannot and do not accept responsibility for any unauthorised access or interception or loss of personal data that is beyond our reasonable control.
10.1 To the extent that you have provided (or will provide) personal data about your family members, spouse, other dependents and/or other individuals, you confirm that you have explained to them that their personal data will be provided to, and processed by, us and you represent and warrant that you have obtained their consent to the processing (including disclosure and transfer) of their personal data in accordance with this Personal Data Protection Policy.
10.2 In respect of minors (i.e. individuals under 18 years of age) or individuals not legally competent to give consent, you confirm that they have appointed you to act for them, to consent on their behalf
to the processing (including disclosure and transfer) of their personal data in accordance with this Personal Data Protection Policy.
Our information technology storage facilities and servers may be located in other jurisdictions outside of Malaysia. This may include, but not limited to, instances where your personal data may be stored on servers located outside Malaysia. In addition, your personal data may be disclosed or transferred to entities located outside Malaysia or where you access the Site from countries outside Malaysia. Please note that these foreign entities may be established in countries that might not offer a level of data protection that is equivalent to that offered in Malaysia under the laws of Malaysia. You hereby expressly consent to us transferring your personal data outside of Malaysia for such purposes. We shall endeavour to ensure that reasonable steps are taken to procure that all such third parties outside of Malaysia shall not use your personal data other than for that part of the Purposes and to adequately protect the confidentiality and privacy of your personal data.
12.1 External links
(a) If any part of the Site links you to other websites, those websites do not operate under this Personal Data Protection Policy and we do not accept any responsibility or liability arising from those websites.
(b) Likewise, if you subscribe to an application, content or a product from our strategic partner and you subsequently provide your personal data directly to that third party, that personal data will be subject to that third party’s privacy/personal data protection policy (if they have such a policy) and not to this Personal Data Protection Policy.
(c) We recommend you to read and understand the privacy/personal data protection statement/policy posted on those other websites in order to understand their procedures for collecting, processing, using and disclosing personal data and before submitting your personal data to those websites.
12.2 Cookies
(a) We employ an industry standard technology called “cookies”. The cookie is a small piece of information stored on the hard drive of your computer or device for record-keeping purposes, and is used by us to track your visits to the Site. Cookies may be used to save your preferences for your ease and convenience when using the Site. Third party advertising networks may issue their separate cookies to your hard drive when serving advertisements.
(b) The type of anonymous click stream data collected by us through the cookies may include your Internet Protocol address, web browser software, date and time of visit to the Site, and whether your requests (including search requests and clicking on links to parts of the Site) were met with successfully. All such information collected through cookies are not
personal data and you cannot be identified from this information. Such information is only used for the purpose of managing and creating a better user experience, analysing the traffic on the Site and to identify areas for improvement on the Site.
(c) The use of cookies is now an industry standard, and you will find them used on most major websites. Most browsers are initially set up to accept cookies. If you prefer, you can reset your browser either to notify you when you have received a cookie, or to refuse to accept cookies. You should understand that certain features on the Site will not function properly if you set your browser to not accept cookies.
If you have any questions about this Personal Data Protection Policy, or have any further queries, or data access or correction request in respect of your personal data, you may contact us at the contact details below:
Personal Data Protection Officer
Address: No.18, Jalan 19/1, Seksyen 19, 46300 Petaling Jaya, Selangor Darul Ehsan, Malaysia.
Contact No.: +603-2023 8118 / 8119
Fax No.: 03-20278113 Email Address: pdpo@mmosaics.com
Last Updated on 1 October 2014