At Giftmate, we value your privacy and strive to protect your personal data in compliance with the governing laws of the countries we operate in.
In compliance with the Personal Data Protection Act 2010 (“the Act”) and its regulations, this notice is issued to all our valued clients and/or prospective clients. This Notice will inform you of your rights with regards to your personal data that has been/or will be collected and processed by us.
2. Collection of Personal Data
We have collected and will collect your personal data to be processed by us and/or on your behalf in the course of your present or future dealings with Giftmate, its subsidiary(ies), its associated company(ies) (“we”, “our”, “us” or “Company”). Your personal data enables us to achieve the “Purpose” herein that is in connection with our business.
3. Description of Personal Data
- Identity card number;
- Email address;
- Mobile phone number;
- Passport number;
- IP address;
- Images (still/recording)
- Sensitive personal data; and any
- Personally Identifiable Information (PII) defined by international privacy laws or standards
4. Purposes for Collection of Personal Data
Giftmate will use clients’ personal data for the following purposes including but not limited to:
- To fulfil your requests for products and services and to keep you updated about your orders
- Keeping you informed (either via post, telephone, email or SMS service) about our new stores, products, services, upcoming events, or promotions;
- To facilitate your participation in any contests or events
- Where appropriate for market research
- Affiliate marketing initiatives with partners or third-party service provides related to Giftmate
- Analytics, search engine, marketing campaign & CRM (Customer Relationship Management) service providers purely based on Giftmate initiatives for marketing and communication purposes.
5. Sources of Personal Data
We (or our service providers) may collect your information from the following sources including but not limited to: (a) through our stores or otherwise offline, (b) on or through www.goldart.com.my, any of our other websites or applications, (c) when you create an account with us, or otherwise sign up for a service loyalty programme or feature, (d) when you communicate with us via third-party social media sites, (e) when you make purchases from us, (f) when you participate in a contest or other promotion or (g) when you otherwise communicate with us or provide information to us.
Information collected includes but is not limited to your name, contact details, demographic information, date of birth, addresses for billing and other payment information, IP address, details on items purchased, personal preferences, location information (if your device and app settings allow us to collect it), and other information you choose to provide to us.
By accessing or using our services, you signify your consent to the above collection and processing of your personal information.
6. Disclosure of Personal Data
7. Security of Personal Data
Giftmate uses strict procedures and security features to prevent unauthorised access wherever possible. Personal data provided to Giftmate via our website or via any Applications, online credit card transactions are protected during transit using encryption such as Transport Layer Security (TLS). When personal data is stored by Giftmate, we use computer systems with limited access housed in facilities using physical security measures. Data stored in cloud services is in encrypted form including when we utilise third-party storage. The level of security of personal data which is kept in a non-electronic environment is also treated with strict procedures and means.
All direct payment gateways we use adhere to the standards set by PCI-DSS (Payment Card Industry Data Security Standards) as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with an AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
The cookies used by the Website are solely associated with anonymous users and their computers and do not provide personal data on users. Some cookies are used by third parties to provide Giftmate with data on the effectiveness of its engagements and promotions. The cookies used by the Website do not in any way collect personal data that could be used to identify a specific user. In addition, cookies are of a temporary nature, used solely to improve the efficiency of the last transmission. Users may configure their browser to notify them of the reception of cookies and to prevent their installation on their computer.
9. Transfer of Personal Data
We are very serious about providing a comparable level of protection for personal data should the information be processed or used outside Malaysia by our vendors or experts.
10. Marketing and Promotional Purposes
Upon subscribing to our services, you will be receiving marketing and/or promotional emails or calls from us, which includes monthly promotions and information on future events. If you do not wish to receive any promotional news or calls, click the “unsubscribe” link at the bottom of the email and you will be excluded from our newsletters and contacts.
11. Data Subject’s Obligations
It is necessary for Giftmate to collect and to retain clients’ personal data. Therefore, it is also obligatory for clients to supply personal data to us in the most accurate manner. If clients do not provide us with personal data, Giftmate is unable to process personal data on clients’ behalf for the Purpose stated in Clause 4 herein, or effectively render our services to clients, and all relationships created or to be created between us shall then be terminated and ceased to be in effect immediately.
12. The Rights of Data Subject
- To request access to personal data
Clients have the right to request for access to personal data processed by us on with reasonable notice. Access and/or requests can be made through online by filling up the Data Access Request Form or you can walk in to our store.
- To request correction of personal data
Clients have the rights to request for correction and/or update of your personal data that is inaccurate, incomplete or outdated. Correction requests can be made online by filling up the Data Request Form or you can walk in to our store.
- To limit processing of your personal data
Clients are entitled to limit our processing of personal data by expressly withdrawing the consent given previously, in each case, including for direct marketing purposes subject to any applicable legal restrictions, contractual conditions and within a reasonable time period.
14. Acknowledgement and Consent
By communicating, engaging with Giftmate or using the Company’s products and services, you acknowledge that you have read and understood this Notice and agree and consent to the use, processing, disclosure and transfer of your personal data by Giftmate as described in this Notice. Any email Giftmate sends to you will contain an automated unsubscribe link so that you can opt-out of the mailing list. You can also withdraw your consent by written notice or fill in the form on the website.
15. Inquiries and Complaints
Should you require further information about the personal data we hold or the way in which your information is being collected or used which are not answered in this Privacy Notice, please contact or write to us at:
Unit D-7-5, 5th Floor Block D Setiawalk,
Persiaran Wawasan, Pusat Bandar Puchong,
47160 Puchong, Selangor.
Phone: +6012 694 6168