PRIVACY POLICY
BloodGo.com Platform is a Not-for-Profit, pro-bono and Corporate Social Responsibility (CSR) project by MYDOC ASIA SDN. BHD. (Company No. 1180687-H) ("BloodGo", "we" or "us")). Any reference to "you" or "your" in this Privacy Policy ("Policy") means you or any person who accesses and/or uses the Platforms and/or Services on your behalf, whether as a guest or registered user. "Platforms" and "Services" are as defined in the Terms of Use, for Blood Donors, Individual Blood Requesters and Blood Donation Event Organizer.
We ask that you read this Policy carefully as it contains important information about how we will use your personal data pursuant to Personal Data Protection Act 2010 of Malaysia ("PDPA").
- WHAT KIND OF PERSONAL DATA DO WE COLLECT?
- We collect personal data about you that you provide when you use the Platforms and/or Services, including when you submit your donor profile, submit an individual blood request or a blood donation event and/or communicate with us. We also collect information about how you use the Platforms and/or Services including but not limited to usage data, demographic information, traffic sources, platform and browser types via Google Analytics.
- We may monitor your use of the Platforms and/or Services through the use of cookies and similar tracking technologies. For example, we may monitor how many times you visit, which pages you go to, traffic data, location data and the originating domain name of your Internet service provider. Some of these data will be aggregated or statistical, which means that we will not be able to identify you individually.
- If you give us information on behalf of someone else, you are deemed to confirm that the other person has appointed you to act on his/her behalf and has agreed that you can:
- give consent on his/her behalf to the processing of his/her personal data;
- receive on his/her behalf any privacy notice; and
- give consent to the transfer of his/her personal data abroad.
- Personal data that you post to public areas of the Platforms may become publicly available and is no longer considered confidential information. For example, if you submit an individual blood request, or any other interactive areas may be made publicly available and can be viewed by anyone. Your posting to such public areas of the Platforms constitutes consent to share such information publicly, and you are deemed to have consented that such information will be widely disseminated, including via search engines and other tools to locate information online (e.g., Internet archive).
- By providing us with your personal data, you are consenting for us to collect and process your personal data in accordance with this Policy. You confirm that all your personal data is true, accurate and complete, and that none of the personal data provided is misleading or outdated. In the event of any change to your personal data, you will promptly update us.
- HOW DO WE USE YOUR PERSONAL DATA?
- We will use your personal data for the purposes of helping us to provide and support the Platforms and/or Services to you. These purposes include:
- helping us identify you and any accounts you hold with us;
- administration including communicating with you;
- facilitating your use of the Platforms and/or Services;
- processing, administering and giving effect to, your requests;
- research, statistical analysis and behavioural analysis;
- fraud prevention, investigation and detection;
- customising the Platforms and/or Services and its content to your particular preferences;
- notifying you of any changes to the Platforms and/or Services that may affect you;
- providing, improving and developing the Platforms and/or Services; and
- promoting safety and security on and off of the Platforms and/or Services.
- We will use your personal data for the purposes of helping us to provide and support the Platforms and/or Services to you. These purposes include:
- HOW IS YOUR PERSONAL DATA SHARED?
- We may disclose your personal data to:
- people you communicate with on the Platforms and/or Services;
- our vendors and suppliers who provide technical infrastructure services, analyse how the Platforms and/or Services are used, or provide customer service to you;
- our auditors, accountants, lawyers or other professional advisers and/or consultants on a need to know basis;
- law enforcement agencies in connection with any investigation; and/or
- comply with court order or warrant;
- We may disclose your personal data to:
- IS YOUR PERSONAL DATA SECURE ON OUR PLATFORMS?
- We will use technical and organisational measures such as encryption, firewalls and secure socket layer technology to safeguard your personal data, for example:
- access to your personal data is controlled by verifying your mobile number ownership via unique and expirable SMS verification code;
- We store your personal data on secure servers.
- While we will use all commercially reasonable efforts to safeguard your personal data, you acknowledge that the use of the Internet is not entirely secure and for this reason we cannot guarantee the security or integrity of any personal data that are transferred from you or to you via the Internet.
- We disclaim all liability for the theft, loss, or interception of, or unauthorized access or damage to, your data, information, or communications resulting from your use of any aspect of the Platforms and/or Services. By using the Platforms and/or Services, you acknowledge and agree that you understand and assume these risks.
- We will use technical and organisational measures such as encryption, firewalls and secure socket layer technology to safeguard your personal data, for example:
- WHAT ARE YOUR RIGHTS?
- You have a right, under the PDPA, to request access to, request for a copy of and to request a correction of the personal data and to contact us with any inquiries or complaints in respect of your personal data. Subject to our right to rely on any statutory exemptions and/or exceptions to collect, use and disclose your personal data, you have the right at any time to request us to limit the processing and use of your personal data.
- You have a right, under the PDPA, to request access to, request for a copy of and to request a correction of the personal data and to contact us with any inquiries or complaints in respect of your personal data. Subject to our right to rely on any statutory exemptions and/or exceptions to collect, use and disclose your personal data, you have the right at any time to request us to limit the processing and use of your personal data.
- HOW TO CONTACT US WITH QUESTIONS?
- We welcome your feedback and questions. If you wish to contact us, please send an email to [email protected].
We may change or update this Policy from time to time. You should check this Policy occasionally to ensure you are aware of the most recent version that will apply each time you access and/or use the Platforms and/or Services. If we amend this Policy, the amendment will not have any retrospective effect on personal data collected before the revised Policy.
This Policy is issued in both English, Bahasa Malaysia and Chinese Simplified. In the event of any inconsistencies or discrepancies between the English version and the Bahasa Malaysia version, the English version shall prevail.
Last Revised: 16 November 2018