Version: 2.0
Last Updated: [03/Jul/2023]
1.1 The purpose of this document (“Privacy Policy” or “Policy”) is to inform you of how Genting TauRx Diagnostic Centre Sdn. Bhd. (Registration No.: 201201034698 (1019179-U)) (“GTD”) and its subsidiary GT Diagnostics (UK) Limited and any other subsidiary of GTD from time to time (collectively or individually, as applicable, “us”, “we” or “our“) collect and manage Personal Data (as defined below) based on your interactions with us, including on our websites, or in connection with our products, services, licensing of software or mobile applications (collectively, our “Offering”). GTD is a private limited company incorporated and based in Malaysia with its registered address at 14th Floor, Wisma Genting, Jalan Sultan Ismail, 50250 Kuala Lumpur, Malaysia. GT Diagnostics (UK) Limited is a company incorporated in England whose place of business is at 395 King Street, Aberdeen, AB24 5RP, United Kingdom.
1.2 Please take a moment to read this Privacy Policy, together with any other privacy policy that we may provide on specific occasions when we collect your Personal Data, so that you know and understand (among others):
• the types of Personal Data we may collect;
• how Personal Data is collected by us;
• why we need your Personal Data and how we use it;
• steps we take to protect your Personal Data; and
• the choices you are provided with respect to the use of your Personal Data.
1.3 By accessing our websites, interacting with us, submitting information to us, or signing up for or using any of our Offering, you agree and consent to us, as well as our representatives and/or agents, will be collecting, using, processing, disclosing, sharing and storing your Personal Data, and disclosing such Personal Data to relevant third parties in the manner set forth in this Privacy Policy.
1.4 Our websites and mobile applications also may contain links to third party websites and mobile applications. We do not endorse and have no responsibility for the content of third-party websites, mobile applications or resources, even if you access them via a link on our websites or mobile applications. You should review the privacy policies of any third-party websites before providing any information.
2.1 In this Privacy Policy, “Personal Data” refers to any information about an individual who can be identified (a) from that information; or (b) from that information and other information which is in our possession. It does not include data where the identity of individual has been removed (i.e. anonymized data).
2.2 Examples of Personal Data include but are not limited to your name, date of birth, passport or other identification number, telephone number(s), mailing address, email address and personal health information collected by us from your use of our Offering. We may not be able to provide our Offering to you if you choose not to provide any of your Personal Data to us or to provide only some of your Personal Data to us.
If you are a health care professional, we may request additional Personal Data related to our professional interaction with you, so as to facilitate our interaction with you based on your professional expertise and opinion.
2.3 You should ensure that all Personal Data submitted to us is complete, accurate, true and correct. Failure on your part to do so may result in our inability to provide you with the Offering you have requested, or delays in providing you with the Offering you have requested, or responding to your queries or processing your request or purchase of our Offering.
2.4 If you provide us Personal Data of anyone other than yourself, you must have their prior consent to provide us their Personal Data and you must ensure that they understand how we collect, use, process, share, disclose and store Personal Data as set out in this Privacy Policy.
2.5 Although we try to provide reasonably adequate information concerning our policy relating to Personal Data, this Privacy Policy is not an exhaustive list of all situations or scenarios concerning Personal Data. Please approach us via email at gtddataprotection@gtdiag.com if you need clarification about a specific situation.
3.1 If you are accessing our website or requesting for, purchasing or using our Offering from the United States of America, click here
3.2 If you are accessing our website or requesting for, purchasing or using our Offering from the European Union or the United Kingdom, click here.
3.3 If you are accessing our website or requesting for, purchasing or using our Offering from any other country, click here.
3.4 Capitalized terms used in the supplemental privacy policy and not otherwise defined, shall have the same meaning assigned to it in this Privacy Policy.
3.5 The supplemental privacy policy is to be read together with this Privacy Policy. Reference to “Privacy Policy” or “Policy” in this Privacy Policy or the supplemental privacy policy refers to both policies. In the event of any inconsistency between this Privacy Policy and the supplemental privacy policy, the terms of the supplemental privacy policy shall prevail.
4.1 The length of time in which we will store your Personal Data will differ depending on the purpose for which we have collected and are processing your Personal Data.
4.2 The criteria used to determine our retention periods include: (i) the length of time we have an ongoing relationship with you; (ii) whether there is a legal obligation to which we are subject; or (iii) whether retention is advisable in light of our legal position (such as in regard to the enforcement of any website or mobile application terms of use, license agreement, applicable statutes of limitations, litigation or regulatory investigations).
4.3 We will securely dispose of or anonymize Personal Data which we can reasonably determine is no longer needed and we do not generally hold on to Personal Data “just in case”.
5.1 We implement and maintain reasonable security appropriate to the nature of the Personal Data that we collect, use, retain, transfer or otherwise process.
5.2 However, there is no perfect security, and reasonable security is a process that involves risk management rather than risk elimination. While we are committed to maintaining a reasonable information security program, no such program can be perfect; in other words, all risks cannot reasonably be eliminated.
5.3 We also have procedures to deal with any suspected data security breach. However, data security incidents and breaches can occur due to factors that cannot reasonably be prevented. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
6.1 We do not knowingly collect any Personal Data from any children (minors) without the prior, verifiable consent of a parent or guardian. If you are a parent or guardian and you are aware that your child (minor) has provided us with their Personal Data, please contact us via email at gtddataprotection@gtdiag.com.
6.2 The parent or guardian of a child (minor) has the right, upon request, to view the information provided by the minor and require that it be deleted. All children (minors) should seek their parent’s or guardian’s permission prior to using or disclosing any Personal Data to us. If you are providing us with Personal Data of children (minors), you represent that you have the appropriate authority to do so, and that you can demonstrate such authority to us upon request.
7.1 We may use cookies, pixel tags, web beacons and other similar tracking technologies (“tracking technologies”) to automatically collect information through our websites. Tracking technologies are essentially small data files, such as those used by Google Analytics, placed on your computer, tablet, mobile phone, or other devices that record certain pieces of information when you visit our websites. We may use these tracking technologies for website analytics, to help identify irregular behavior, prevent fraudulent activity and improve security, as well as making it possible for you to save your preferences and help us understand how you interact with our websites. You may set your browser to notify you when you receive a cookie. Many web browsers also allow you to block cookies. For more information, see our Cookie Policy (available here: https://www.hipal-app.com/cookie-policy/). Where information we collect through cookies qualifies as Personal Data, our Privacy Policy applies to the collection and use of such Personal Data.
8.1 Do Not Track (“DNT”) is a privacy preference that users can set in certain web browsers. Please note that we do not respond to or honor DNT signals. We will observe the Global Privacy Control signal.
9.1 We will review and update this Policy from time to time. If changes are made, we will update the Policy and reflect the date of such modification in the date above.
10.1 If there is a conflict between the English version and the national language version of this Privacy Policy, the English version shall prevail, to the extent of the discrepancy.
Want to keep informed? For updates on HiPAL Pro, please sign up to our mailing list.
