1.1 This Policy statement provides information on the obligations and policies of DREAMCORE in respect of an individual customer’s Personal Data. DREAMCORE undertakes to use reasonable efforts in applying, where practicable, those principles and the processes set out herein to its operations.
1.2 DREAMCORE’s management and members of staff shall use reasonable endeavours to respect the confidentiality of and keep safe any and all Personal Data collected and/or stored and/or disclosed and/or used for, or on behalf of, DREAMCORE. DREAMCORE shall use reasonable endeavours to ensure all collection and/or storage and/or disclosure and/or usage of Personal Data by DREAMCORE shall be done in an appropriate manner and in accordance to the Act and this Policy.
- Contacting the Data Protection Officer
2.1 Where you legitimately request access to and/or correction of Personal Data relating to you which is in the possession and control of DREAMCORE, DREAMCORE shall provide and/or correct that data in a reasonable time and manner in accordance with its standard procedures as stated hereinafter.
2.2 In accordance with the Act, DREAMCORE has established a process for receiving and responding to any query or complaint that may arise with respect to the application of this Act. To ensure that DREAMCORE receives your complaints and enquiries, please send the same via email to firstname.lastname@example.org.
2.3 Should you not wish DREAMCORE to use your Personal Data for any of the purposes listed in Clauses 3.2 to 3.4, or not to receive promotional materials from DREAMCORE, you may opt out by sending a clearly worded email to the email address provided in Clause 2.2. Your request shall be processed within a reasonable time.
- Statement of Practices
Types of Personal Data Collected
Purpose of Collection of Personal Data
3.2 The above Personal Data mentioned in Clause 3.1 is collected for the purposes of processing your application and registration of your membership and to ascertain if you are eligible for discounts, privileges or benefits or other related purposes; to conduct market research and analysis; for direct marketing through voice calls; text messages; email; direct mail and facsimile messages; to notify you of any changes to our policies or services which may affect you; to respond to queries and feedback; for identification and club access; maintaining and updating your membership details; and informing you of new developments, services, promotions of DREAMCORE and other third parties which we are associated with.
Disclosure of Personal Data
3.3 DREAMCORE will not, in any way, disclose your Personal Data unless they are for regulators and law enforcement officials; lawyers; auditors; third party service providers and consultants; third party investors; credit, debit and charge card companies, banks and other entities processing payment; and any agent or subcontractor acting on DREAMCORE’s behalf for the provision of DREAMCORE’s services.
- Transfer of Personal Data Overseas
Your Personal Data may be processed by DREAMCORE in jurisdictions outside of Malaysia. In this event DREAMCORE will comply with the terms of the Act.
- Accuracy of Personal Data
Where possible, DREAMCORE will validate data provided using generally accepted practices and guidelines. This includes the use of check sum verification on some numeric fields such as account numbers or credit card numbers. In some instances, DREAMCORE is able to validate the data provided against pre-existing data held by DREAMCORE. In some cases, DREAMCORE is required to see original documentation before we may use the Personal Data such as with Personal Identifiers and/or proof of address. To assist in ensuring the accuracy of your Personal Data in the possession of DREAMCORE, please inform us of any updates of any parts of your Personal Data by sending a clearly worded email to the DPO at the email address earlier provided.
- Protection of Personal Data
DREAMCORE uses commercially reasonable physical, managerial, and technical safeguards to preserve the integrity and security of your Personal Data and will not knowingly allow access to this data to anyone outside DREAMCORE, other than to you or as described in this Policy. However, DREAMCORE cannot ensure or warrant the security of any information you transmit to DREAMCORE and you do so entirely at your own risk. In particular, DREAMCORE does not warrant that such information may not be accessed, altered, collected, copied, destroyed, disposed of disclosed or modified by breach of any of DREAMCORE’s physical, technical, or managerial safeguards.
- Access and Correction of Personal Data
7.1 In accordance with Clause 2.1 of this Policy, you have the right to:
a) check whether DREAMCORE holds any Personal Data relating to you and, if so, obtain copies of such data; and
- b) require DREAMCORE to correct any Personal Data relating to you which is inaccurate for the purpose for which it is being used.
7.2 DREAMCORE reserves the right to charge a reasonable administrative fee in order to meet your requests under Clause 7.1. Upon payment of the requisite fee, your request shall be processed within a reasonable time.
7.3 If you wish to verify the details you have submitted to DREAMCORE or if you wish to check on the manner in which DREAMCORE uses and processes your Personal Data, DREAMCORE’s security procedures mean that DREAMCORE may request proof of identity before we reveal information. This proof of identity will take the form of full details of name, membership number and NRIC or Passport or FIN number. You must therefore keep this information safe as you will be responsible for any action which DREAMCORE takes in response to a request from someone using your membership details. We would strongly recommend that you do not use the browser’s password memory function as that would permit other people using your terminal to access your personal information.
- Storage and Retention of Personal Data
DREAMCORE will delete, as reasonably possible, or otherwise anonymise any Personal Data in the event that the Personal Data is not required for any reasonable business or legal purposes of DREAMCORE and where the Personal Data is deleted from DREAMCORE’s electronic, manual, and other filing systems in accordance with DREAMCORE’s internal procedures and/or other agreements.
- Change Policy
DREAMCORE reserves the right to alter any of the clauses contained herein in compliance with local legislation and/or to meet its global policy requirements, and for any other purpose deemed reasonably necessary by DREAMCORE. You should look at these terms regularly. If you do not agree to the modified terms, you should inform us as soon as possible of the terms to which you do not consent. Pending such notice, if there is any inconsistency between these terms and the additional terms, the additional terms will prevail to the extent of the inconsistency.
- Governing Law
This Policy is governed by and shall be construed in accordance with the laws of Malaysia. You hereby submit to the non-exclusive jurisdiction of the Malaysia courts.
11.1 This Policy only applies to the collection and use of Personal Data by DREAMCORE. It does not cover third party sites to which we provide links, even if such sites are co-branded with our logo. DREAMCORE does not share your Personal Data with third party websites. DREAMCORE is not responsible for the privacy and conduct practices of these third-party websites, so you should read their own privacy policies before disclosure of any Personal Data to these websites.
11.2 DREAMCORE will not sell your personal information to any third party without your permission, but we cannot be responsible or held liable for the actions of third-party sites which you may have linked or been directed to DREAMCORE’s website.
11.3 DREAMCORE’s websites do not target and are not intended to attract children under the age of 18 years old. DREAMCORE does not knowingly solicit personal information from children under the age of 18 years old or send them requests for personal data.