Home>Privacy Policy

Privacy Policy

BROTHER INTERNATIONAL (MALAYSIA) SDN BHD

  1. This Privacy Policy sets out our practices and policies with respect to your Personal Data (defined below) including its collection, purpose and disclosure (“Privacy Policy”), and this Privacy Policy also serves to give you notice pursuant to the Personal Data Protection Act 2010 and its regulations (collectively referred to as “PDPA”).

    This Privacy Policy covers all units, departments and operations of Brother International (Malaysia) Sdn Bhd (Registration No. 200001027132 (529739-H)), a company incorporated under the laws of Malaysia and having its business address at 02-09, 9th Floor, Menara Symphony No, 5, Jalan Professor Khoo Kay Kim, Seksyen 13, 46200 Petaling Jaya, Selangor Darul Ehsan, Malaysia (“Brother”, “Company”, “we”, “us”, or “our”) and the websites operated by Brother that includes, but is not limited to, sites of the following domains and sub-domains: www.brother.com.my (“Our Website”).

    By continuing to access our Website, communicating with us, opting-in when presented with choices or voluntarily providing your personal data to us, you warrant that you are at least 18 years of age and expressly consent to our collection, storage, use and disclosure of your personal data as described in this Privacy Policy. We do not process any sensitive data and do not process personal data of children under 18 years of age.

    Please refer to our Terms of Use which governs your use and access to our services when you access our Website. Our Terms of Use may be updated occasionally, and you should read and understand the terms and conditions which you shall be bound to by continuing to access our Website, providing your information or engaging in our services.

    Our Website may contain links to other sites or websites. However, please be aware that we, Brother, are not responsible for the content or privacy practices of such other sites or websites (including those of our subsidiaries). We distinguish these 3rd-party sites and websites by methods such as either opening them in a separate browser window or within a frame indicating the area within is not part of Our Website. In these instances, our Privacy Policy herein will not apply. We encourage you to be aware when you leave Our Website and to read the privacy statements of each and every website that you visit.

  2. We know that privacy is an important concern to you.

    In the course of our business and operations, various data and information including personal information that relates directly or indirectly to you, such as your name, NRIC/Passport No, occupation, contact particulars, gender, birth date, addresses (including your email and internet protocol addresses), credit card particulars, bank account numbers, purchase history and all other personal data as defined in the PDPA (collectively referred to as “Personal Data”) was previously, is being and/or may be collected, held, obtained, received, stored and/or processed (as defined in the PDPA) by us or on our behalf.

    Internet of Things (IoT) can be explained as a global network infrastructure, linking physical and virtual objects through the exploitation of data capture and communication capabilities. In the course of your usage of our products and services, we will also receive data and information via various devices and sensors that are connected to other objects, systems or networks (“IoT Data”). In the interests of safeguarding your privacy, we will treat IoT Data the same way as we treat Personal Data, and all references to Personal Data in this Privacy Policy shall include IoT Data.

  3. The Personal Data previously, being and/or that may be collected, obtained and/or received by us are from various sources, including from the following:

      1. From you:

        • when you purchase our products (“Products”) and/or request for services offered by us (“Services”) (for example to place an order or request operational assistance);

        • when you register with us,

        • when you make inquiries or provide us with your feedback,

        • when you visit or use Our Website,

        • When you subscribe to our newsletter;

        • (vi)when you use our devices with IoT functionality, and/or

        • when you otherwise contact, communicate or otherwise deal with us whether in person, by phone, by email, by post or via any means to make enquiries, complaints, suggestions or provide information.

    We may also require you to provide signed consent (including via electronic signing or via call logger and/or recorder software for verbal consent recorded digitally) to enable us to collect personal data from you or third parties. Such consent should only be given after you have read and understood this Privacy Policy.

    • From our authorized distributors, authorized dealers, authorized resellers and/or authorized service centres when/if you contact, communicate or otherwise deal with them.

    • From sources where such information is available or accessible to the public.

    • From sources which are obtained with your consent or legally purchased.

  4. The purpose for which the Personal Data was, is or will be collected and further processed is :

    • to serve you (including but not to limited to providing our Services and/or to register your Product that is under warranty),

    • to better understand your preferences and to seek to enhance your overall experience with our Products, Services and/or Our Website,

    • to act on, process and/or respond to your complaints, inquiries, feedback, applications, interests or requests, and/or to otherwise contact/communicate with you,

    • to commence, proceed with or carry out any investigation, inquiry, recovery or other proceedings,

    • to create profiles and/or to carry out analysis, statistics, market research and/or surveys to further develop our Products, Services and/or Our Website,

    • to inform you of our latest Products, Services, special deals and/or promotions that we feel may interest you (collectively referred to as “Updates”); however out of respect for your privacy, we present to you the option to elect not to be informed of the Updates (please see paragraph 7 below),

    • for our record keeping purposes,

    • to comply with the law and/or for such purpose as may be permitted by the law, and/or

    • for such other purposes that are ancillary or incidental to the above.

    If you do not supply us with your Personal Data that we describe as obligatory or mandatory, or if you limit such obligatory or mandatory Personal Data, then we may be unable to or be unable to continue to act on, respond to, process or proceed with your matter, or to provide you with our Services.

  5. We may share, disclose and/or make available or accessible your Personal Data to the following persons/parties (within or outside Malaysia) for the purposes in paragraph 4 above:

    • to our officers (including directors) and employees, and to companies and entities within the ‘Brother’ group of companies (including our parent and subsidiary companies) and their respective officers and employees,

    • to our data processors, professional advisors and/or service providers (including service providers carrying out our marketing activities and/or surveys, and/or providing us with outsourced data storage),

    • to our authorized distributors, authorized dealers, authorized resellers and/or authorized service centres,

    • to your agents, authorised/legal representatives, guarantors, indemnifiers and/or any other person/party providing any security for your obligations to us,

    • to our insurers, and/or

    • to the government and/or such authority, body, entity, court, tribunal, person or party that we are required in law to disclose to.

    Subject to this Privacy Policy and save where permitted by the law, please be assured that we do not disclose, sell or make your Personal Data available to other persons or companies without your consent.

    Please be informed that there may be occasions where we share with our partners and advertisers, aggregated demographic information that is anonymous and that is not linked to any personally identifiable information. For example we may, on a periodic basis, present information such as the number of visitors, areas of interest, relationship to Brother, etc.

  6. We may transfer and/or store your Personal Data at a place outside Malaysia. However, please be assured that we take all reasonable precautions and measures to keep your Personal Data confidential and to protect and safeguard your Personal Data in accordance with the law. Your Personal Data is protected both online and off.

    When you enter Personal Data in Our Website, that information is encrypted and is protected with the SSL (Secure Sockets Layer) encryption software. While on a secure page in Our Website, such as our registration form, the lock icon on the bottom of Web browsers such as Microsoft Internet Explorer becomes locked, as opposed to un-locked, or open, when users are just ‘surfing’.

  7. You are entitled:

    • to request access to and to request correction of your Personal Data where your Personal Data is inaccurate, incomplete, misleading or not up-to-date,

    • to withdraw your consent to the processing (as defined in the PDPA) of your Personal Data whether generally or for specific purposes,

    • to limit the processing of your Personal Data (including personal data relating to other persons who may be identified from that Personal Data), and/or

    • to elect not to be informed of the Updates.

    For any of the above, or if you have questions, concerns, inquiries, complaints or if you require any clarification regarding this Privacy Policy and/or your Personal Data, please contact us by:

    (a)

    calling our telephone number: (603) 7884 9999, or

    (b)

    emailing to: dpo@brother.com.my, or

    (c)
    writing to:

    Data Protection Officer, Nicholas Cheong

    Brother International (Malaysia) Sdn Bhd (200001027132 (529739-H))

    02-09, 9th Floor, Menara Symphony No, 5, Jalan Professor Khoo Kay Kim, Seksyen 13, 46200 Petaling Jaya, Selangor

  8. While you can ask for the deletion of your Personal Data in accordance with the PDPA and to contact us with any enquiries or complaints in respect of your Personal Data, we may or shall:

    1. charge a prescribed fee for processing your request for access or correction and shall respond within 21 days from the date of data access request; and

    2. reserve the right to refuse your request to access and/or make any corrections to your Personal Data for legitimate reasons and for reasons permitted under the law, taking into account the administrative costs involved to process such request. If we refuse to comply with such request, we will inform you of our refusal and the reason for our refusal.

  9. Take note that once your data is erased, you may not be able to continue using our Services or any benefits that we offer on our Website. We take the responsibility of the management and security of your Personal Data. We follow the following key principles of data protection, which require the Personal Data to be:

    1. Processed lawfully, fairly and in a transparent manner;

    2. Collected for specified and legitimate purposes;

    3. Adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;

    4. Accurate and kept up to date, that we take every reasonable step to ensure that Personal Data that are inaccurate are processed, erased or rectified without unreasonable delay;

    5. Kept for no longer than is necessary for the purposes for which the Personal Data are processed; and

    6. Processed in a manner that ensures appropriate security of the Personal Data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.

    In order to protect your Personal Data against accidental, unlawful or unauthorized access, Brother acting as a data controller and data processor, will implement appropriate technical or organisational measures to protect the confidentiality and security of the personal data that we collect and process which may include but not limited to the following:

    1. Where applicable, online credit card transactions are protected during transit using secured encryption;

    2. Personal Data stored on the Websites using third party cloud services are in encrypted form; and

    3. Personal Data and/or signed consent forms kept physically are treated with strict procedures and means.

    Brother shall take all reasonable steps to ensure that all Personal Data and sensitive personal data (if collected) is destroyed or permanently deleted when no longer required for the above-mentioned Purposes and prepare a disposal schedule for inactive data within 24-month period.

  10. In the event of a Personal Data breach that is likely to result in significant harm or risk to the rights and interests of data subjects, we will take immediate action in accordance with the PDPA and applicable guidelines. This includes but not limited to:

    1. (a)Notification to the Commissioner We will notify the Personal Data Protection Commissioner as soon as practicable and no later than 72 hours from the occurrence, providing chronology of events, details of the breach, its potential impact, and remedial measures taken to mitigate the breach and to address the affected data subjects along with contact details of our appointed data protection officer.

    2. (b)Notification to Affected Individuals Where required, we will inform affected data subjects not later than 7 days after the initial notification to the Commissioner, outlining:

      1. The nature of the breach and the types of personal data involved.
      2. Potential consequences and risks arising from the breach.
      3. Recommended steps that affected individuals can take to protect themselves.
      4. Measures we have taken to mitigate the impact and prevent future occurrences.

    3. (c)Communication Channels Notifications will be made via appropriate and effective channels, such as email, phone calls, or public notices, depending on the severity of the breach and the contact information available.

    4. (d)Record-Keeping We will maintain a record of all data breaches for at least 2 years from the date of notification to the Commissioner, including investigations, risk assessments, notifications, and remedial actions, to comply with legal obligations and continuously improve our data protection measures.

  11. Where you furnish or supply us with Personal Data you are deemed to have understood, agreed and consented to the collection, holding, obtaining, receipt, storage, processing and/or use of your Personal Data as set out in this Privacy Policy, and where you furnish or supply us with Personal Data that relates to any other individual, we assume that you have procured the said individual’s agreement and consent for the collection, holding, obtaining, receipt, storage, processing and/or use of the said individual’s Personal Data as set out in this Privacy Policy.

  12. We reserve the right at any time and from time to time to amend our Privacy Policy. We will post our latest Privacy Policy (as amended) on Our Website. Please view our Privacy Policy on Our Website from time to time for our current/latest Privacy Policy.

  13. In accordance with Section 7(3) of the PDPA, this Privacy Policy is issued in both English and Bahasa Malaysia. In the event of any discrepancies or inconsistencies arising between the English and Malay versions, the English version shall apply and prevail.