Skip to main content Skip to page footer
Contact

Data privacy

Data protection statement from HA ASEAN Sdn. Bhd.

 

1. Policy Statement

HA ASEAN Sdn. Bhd. is committed to ensuring the protection, privacy, and security of personal data in accordance with the Personal Data Protection Act 2010 (PDPA) of Malaysia. This policy outlines our commitment to responsible data handling, compliance with applicable laws, and safeguarding the interests of individuals whose personal data we process. 

2. Scope 

This policy applies to all employees, contractors, and third parties who collect, process, or handle personal data on behalf of HA ASEAN Sdn. Bhd. It covers all forms of personal data, regardless of the medium in which it is stored or processed.

3. Data Collection and Processing

  • Personal data shall only be collected for lawful and specified purposes as defined by the PDPA. 
  • Individuals will be informed of the purpose for which their data is collected, and their consent will be obtained when necessary.
  • Data collected shall be adequate, relevant, and not excessive.

4. Consent

  • HA ASEAN Sdn. Bhd. will obtain explicit and informed consent from individuals before collecting or processing their personal data. 
  • Individuals shall have the right to withdraw their consent at any time. 

5. Data Security

  • Appropriate technical and organisational measures shall be in place to protect personal data from unauthorised access, disclosure, alteration, and destruction. 
  • Regular security assessments and risk management practices shall be conducted. 

6. Data Retention and Disposal 

  • Personal data will be retained only for the duration necessary to fulfil the purpose for which it was collected, or as required by applicable laws. 
  • Data will be securely disposed of when it is no longer needed or upon request by the individual.

7. Data Subject Rights

  • Individuals have the right to access, correct, delete, or restrict the processing of their personal data. Requests shall be handled promptly and in compliance with the PDPA. 
  • Individuals shall be informed of their rights regarding their personal data.

8. Cross-Border Data Transfers

  • International transfers of personal data will be conducted in compliance with the PDPA's requirements and data protection laws of the receiving country, if applicable.

9. Training and Awareness

  • HA ASEAN Sdn. Bhd. will provide training to employees and contractors on data protection policies and best practices. 
  • Awareness programs will be conducted regularly to ensure all personnel understand their responsibilities. 

10. Compliance and Monitoring

  • Regular audits and assessments will be conducted to ensure compliance with this policy and the PDPA. 
  • Non-compliance will be addressed through appropriate measures.

11. Review and Updates

  • This policy will be reviewed and updated regularly to remain in alignment with changes in data protection laws and business needs. 

12. Documentation and Records 

  • Records related to data processing activities, including consent forms, data processing records, and breach notifications, will be maintained as required by the PDPA. 

13. Consequences of Non-Compliance

  • Non-compliance with this policy may result in disciplinary action, up to and including termination of employment of contractual relationship, as well as legal consequences as defined by applicable laws. 

 

This Data Protection Policy is an integral part of HA ASEAN Sdn. Bhd.'s commitment to data privacy and protection. All employees, contractors, and third parties are expected to familiarise themselves with and adhere to this policy.