Privacy Policy
Your privacy is important to us. Learn how we collect, use, and protect your information when you use MAGCOM's communication platform.
Last updated: December 2024
1. Information We Collect
We collect information necessary to provide and improve our services. This includes:
A. Personal Information You Provide:
- • Identity & Contact Data: Name, email address, phone number, company information, and job title.
- • Account Data: Profile information, user preferences, and communication settings.
- • Financial Data: Payment and billing information required for transactions.
- • Support Data: Customer support inquiries, feedback, and other communications with us.
B. Information We Collect Automatically:
- • Usage & Device Data: Device information, operating system, unique identifiers, IP address, and general location information.
- • Log & Analytics Data: Log files, usage patterns, communication metadata, API usage data, and other analytics to help us understand how our services are used.
- • Cookies & Tracking Technologies: Information collected through cookies and similar technologies to help our platform function and to personalize your experience.
2. How We Use Your Information & Our Legal Basis
We only process your personal data when we have a valid legal reason. Here is how we use your data and the legal basis we rely on for each activity:
| Purpose of Processing | Types of Data Used | Legal Basis (under GDPR) |
|---|---|---|
| To Provide Our Services | Identity, Account, Financial | Performance of a Contract with you. |
| To Manage Your Account | Identity, Account, Usage | Performance of a Contract; Legitimate Interest to manage our user base. |
| To Process Payments | Identity, Financial | Performance of a Contract. |
| To Improve Our Platform | Usage, Log & Analytics | Legitimate Interest to develop and improve our services. |
| To Provide Customer Support | Identity, Support, Account | Performance of a Contract; Legitimate Interest to assist our users. |
| To Send Service Communications | Identity, Account | Performance of a Contract; Legitimate Interest to inform you of updates. |
| For Marketing & Promotions | Identity, Contact, Usage | Consent (which you can withdraw at any time). |
| To Ensure Security & Prevent Fraud | All Categories | Legitimate Interest to protect our platform and users; Legal Obligation. |
| To Comply with Legal Obligations | All Categories | Legal Obligation. |
3. Your Data Protection Rights
You have specific rights regarding your personal data under applicable laws like GDPR and PDPA. These include:
- • The Right of Access: To request a copy of the personal data we hold about you.
- • The Right to Rectification: To request the correction of inaccurate or incomplete data.
- • The Right to Erasure ("Right to be Forgotten"): To request the deletion of your data under certain conditions.
- • The Right to Restrict Processing: To request that we limit how we use your data.
- • The Right to Data Portability: To receive your data in a portable format.
- • The Right to Object: To object to our processing of your data, especially for direct marketing.
To exercise any of these rights, please see Section 9: "How to Exercise Your Rights & Contact Us."
4. Specific Provisions for Users in Malaysia (PDPA)
- • Notice and Choice: This Privacy Policy serves as your formal notice regarding the processing of your personal data. Providing your data is voluntary; however, without it, we may not be able to provide our full services.
- • Disclosure to Third Parties: Your data may be disclosed to our affiliate companies, third-party service providers (e.g., payment gateways, cloud partners), and as required by law to regulatory authorities. We ensure all third parties are bound by strict confidentiality agreements.
- • Language of This Policy: In accordance with the PDPA, this policy is available in both English and Bahasa Malaysia. You can select your preferred language using the language toggle on our website.
5. Data Sharing and Disclosure
We do not sell your personal information. We only share it in the following limited circumstances:
- • With Service Providers: With trusted vendors who assist us in operating our platform (e.g., hosting, payment processing), under strict data processing agreements.
- • For Legal Reasons: If required by law, court order, or to protect the rights and safety of our company and users.
- • In Connection with a Business Transfer: In connection with a merger, acquisition, or sale of assets, your data may be transferred.
- • With Your Consent: For any other purpose with your explicit consent.
6. Data Security, Retention, and International Transfers
- • Data Security: We implement appropriate technical and organizational measures (including end-to-end encryption, regular security audits, and staff training) to protect your data against unauthorized access, alteration, or destruction.
- • Data Retention: We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal and accounting requirements. For example, account data is kept while your account is active, while billing data is kept for 7 years.
- • International Data Transfers: As a global company, your information may be processed in countries other than your own. We ensure appropriate safeguards (like Standard Contractual Clauses) are in place to protect your data in accordance with this policy and applicable laws.
7. Data Breach Procedures
In the event of a data breach, we have procedures to detect, investigate, and contain it. If a breach is likely to result in a high risk to your rights and freedoms, we will notify you and the relevant supervisory authorities (such as the Data Protection Commissioner under PDPA) without undue delay and within the 72-hour timeframe required by GDPR.
8. Changes to This Privacy Policy
We may update this policy from time to time. The "Last Updated" date at the top will indicate the latest revision. We encourage you to review this policy periodically.
9. How to Exercise Your Rights & Contact Us
If you have questions about this policy or wish to exercise any of your data protection rights, please contact our Data Protection Officer (DPO):
Email: [email protected]
We will respond to your request within one month, as required by law.
Disclaimer: This document is a comprehensive draft intended to align with GDPR and PDPA principles. It is not a substitute for professional legal advice. You must have this policy reviewed by a qualified legal professional familiar with Malaysian and international law before publishing to ensure it is fully compliant and tailored to your specific business operations.
By using MAGCOM, you agree to our Terms of Service and this Privacy Policy.