Sultan Ismail College Alumni ("SICA") is committed to comply with the Malaysian Personal Data Protection Act (PDPA) 2010 in protecting personal information that has been processed by SICA App. This Privacy Policy informs you about SICA's policy and practices on data privacy matters before you provide your personal data to us when you visit sicalumni.org and/or ismailian.org (the “Site”) or through other methods as stated in the section "Source of your Personal Data" below.

For the purposes of this Privacy Policy:

“You” or any derivation thereof, as used herein refers to the owner of the personal data.

“SICA” referred to as either "Sultan Ismail College Alumni", "the Company", "We", "Us" or "Our" in this Agreement refers to.

“SICA App” refers to Sultan Ismail College Alumni Application.

“Account” means a unique account created for You to access our Service or parts of our Service.

“Website” or “Site” refers to SICA App Website, accessible from sicalumni.org and/or ismailian.org.

“Service” refers to the Website and/or the services that SICA App provides.

“Service Provider” means any natural or legal person who processes the data on behalf of the Company. It refers to third-party companies or individuals employed by the Company to facilitate the Service, to provide the Service on behalf of the Company, to perform services related to the Service or to assist the Company in analyzing how the Service is used.

“Third-party Social Media” refers to any website or any social network website through which a User can log in or create an account to use the Service.

“Personal Data” is any information that relates to an identified or identifiable individual. Generally, the personal data that We collect and process, include but is not restricted to:

Name, Identification number (NRIC), Address, Contact numbers, Personal email address, Photo and images, Nationality, Student’s Gender, Date of birth, Previous qualification, Emergency contact person(s) details, Billing-related information, Employment/occupation.

“Sensitive Personal Data” under the Act and these include, but not restricted to: Race, religion, data relating to health, records of misconduct and disciplinary action, records of criminal offence, family court orders.

This sensitive information shall be treated carefully by the Company and will only be used for specific purposes. It will not be released to a third party without your explicit consent unless it is necessary to protect your vital interests, health, safety, emergency or in the context of Covid-19 crisis.

“Cookies” are small files that Your web browser stores in Your computer, mobile device or any other device by a website, containing the details of Your browsing history on that website.

“Device” means any device that can access the Service such as a computer, mobile phone or a digital tablet.

“Device Information” or “Usage Data” refers to the information We collect when you visit the Site, We automatically collect certain information about Your device, including information about Your web browser, IP address, time zone, and some of the cookies that are installed on Your device. Additionally, as you browse the Site, We collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site.

SICA App collects and processes your Personal Data and Sensitive Personal Data for the purposes as stated in the next section.

The purpose for which personal data is collected and further processed includes, but not restricted to the following:

The provision of all information requested for in the relevant forms of SICA App is mandatory, unless specified otherwise, in enabling us to process Your application/request and offer our Services to you. Any sensitive information shall be treated carefully by SICA App and will only be used for specific purposes. It will not be released to a third party without Your explicit consent unless it is necessary to protect Your vital interests.

Should you fail to provide the said information, the SICA App may be unable to process your request and/or provide you with the relevant services.

To provide and maintain our service and to manage your account

• To manage and respond to enquiries;

• To process application for admission;

• To process applications for any other services provided

• To administer the event fee and other payment;

• To maintain member's personal details, academic and non-academic records;

• To support member's social and emotional wellbeing, and health;

• To provide the relevant administrative support, counselling and pastoral services;

• To care for the medical needs of members;

• To manage and maintain Your account and facility

To contact or provide you with news or any other information

• To contact student’s next of kin in case of emergency;

• To administer the graduation and alumni related events;

• To communicate with others member on any important announcements;

Others

• To collect information for relevant local or international statutory authorities if needed;

• To comply with governmental direction and orders;

• To enable SICA to:

    • ensure the effective management, resourcing, and administration of alumni;

    • fulfil statutory functions and duties and comply with reporting requirements;

    • plan, fund, monitor, regulate and evaluate the alumni’s policies, services and functions;

    • investigate incidents and/or respond to any legal claims against the alumni, including any of its departments.

• For internal functions such as evaluate the effectiveness of marketing, market research, statistical analysis and modelling, reporting, audit and risk management and to prevent fraud;

• Any other purposes related to the smooth running of SICA App.

SICA will keep Your personal data confidential unless you have given the written consent to such disclosure, or it is within the ambit of permitted disclosures under prevailing laws/guidelines or by order of a court. SICA may disclose Your information to the categories of third parties as listed below (not restricted to):

-The Ministry of Education, other relevant public authorities such as government departments/agencies, statutory authorities and industry regulators;

-Malaysian Immigration Department and its appointed agencies;

-The student’s sponsors including his/her parents/guardians;

-Your authorised agents, executor, administrator or legal representative;

-Third parties that provide the internships or attachment placements;

-Professional or accreditation bodies;

-Examination boards;

-Third Parties involved in a merger, acquisition or asset sale;

-Third parties appointed by SICA to provide services, such as but not limited to auditors, lawyers, contractors, printing companies, data processors, pass application agents, other authorised agents, legal representatives, technology providers (to support the development, implementation and maintenance of the online /virtual environment), training organizer, and online classes;

The security of Your Personal Data is important to Us. We ensure that the processing of your personal data is carried out in a secure environment to prevent loss, alteration and destruction and misuse of your personal data. Our standard protocols include

-Application security: traffic encryption, strongly hashed passwords, safeguards against vulnerabilities such as Cross-Site Request Forgery (CSRF), Cross-Site Scripting (XSS), SQL injections, phishing, and others.

-Network security: firewalls and systems to detect suspicious behaviour, stop malicious attempts to gain access, or compromise the resilience of the service.

-Organisational security: access policies, audit logs and confidentiality agreements.

-Physical security: preventing unauthorised access to infrastructure processing personal data.

-Procedural security: IT management processes to minimise the risk of human errors or testing regimes to identify software weaknesses before releasing new features to our cloud services, or policies to ensure data is only processed on instruction from our customers.

 

When sensitive information (such as credit or debit card information) is transmitted to the Site or through the Site, we encrypt the information. When credit card details are collected, we simply pass them on to be processed as required. We never permanently store complete credit card details. We follow generally accepted industry standards to protect the personal information submitted to us, both during transmission and once we receive it.

Please help us keep our records updated by informing us of any changes to your email address and other contact details.

Your data will be processed and stored as long as it is necessary for the purposes described in this Privacy Policy as well as for the purposes of ensuring the security and integrity of SICA App. We will retain and use Your Personal Data to the extent necessary to comply with our legal obligations (for example, if We are required to retain Your data to comply with applicable laws), resolve disputes and enforce our legal agreements and policies.

SICA App will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period, except when this data is used to strengthen the security of to improve the functionality of Our Service, or We are legally obligated to retain this data for longer time periods.

Your information, including Personal Data, is processed in SICA App and in any other places where the parties involved in the processing are located. It means that this information may be transferred to, and maintained on computers located outside of Your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those from Your jurisdiction.

SICA will take all steps reasonably necessary to ensure Your data is treated securely and in accordance with this Privacy Policy and no transfer of Your Personal Data will take place to an organisation or a country unless there are adequate controls in place including the security of Your data and other personal information.

You have the right to access and correct Your personal information held by the SICA under the Personal Data Protection Act ("Act"). We will attempt to keep Your records complete, accurate and up to date. If You have any reason to believe that Your records with us are inaccurate, incomplete or not updated, please notify SICA in a timely manner. If You wish to request for access to, or to correct data held by the SICA or withdraw Your consent to the data processing/use of Your personal data by us, please forward Your request to the website administrator at:

-(601) 2345 6789 (telephone)

-(601) 2345 6789 (fax)

[email protected] (email)

 

SICA reserves the right to charge you an administrative fee for processing any data access request. Any request to exercise Your rights shall be administered as per the Act. Please be informed that pursuant to the Act, Your request may be rejected in certain circumstances.

Although we only process Your personal data for purposes as stated above, in the event that Your personal data is being processed for other purposes (with Your consent), you have the right to request us to stop such processing. However, if you choose not to provide and/or fail to supply us with such personal data (and/or decide not to give Us consent to process Your personal data, including explicit consent for sensitive personal data), We will not be able to perform the contract of enrolment or process Your application for enrolment with us or provide the necessary service to you. Consequently, if you decide not to provide the mandatory information to us, it may necessarily mean that the Contract of Enrolment may have to be terminated or that an offer of a place of enrolment will not be made.

Our Site may contain links to other websites that are not operated/maintained by Us. If You click on a third-party link, You will be directed to that third party’s site. We strongly advise You to review the Privacy Policy of every site You visit.

A link to another website does not constitute an endorsement of the content, viewpoint, accuracy, opinions, policies, products or services of that other website. Once you navigate from this website to another site, You are subject to the terms and conditions of that site, including the provisions of its privacy policy.

This Policy may be reviewed and amended from time to time. We will communicate such changes along with the updated Policy on the SICA App website and/or other appropriate communication means as may be determined by SICA. You are advised to visit the SICA App website on a regular basis to check for any updates and changes on this Notice.