快速信息

English 简体中文 Bahasa Melayu

隐私政策

隐私政策

本隐私声明说明了 Gather Care Sdn Bhd(“Gather Care”)如何根据适用的数据保护法律和法规收集、使用和披露您的个人数据。

您的个人数据包括但不限于有关您姓名、性别、地址、身份证号码、电话号码和电子邮件地址的任何信息(“个人数据”),以及与您的健康状况和/或身心状况相关的任何信息(“敏感个人数据”)(统称为“个人数据”)。

您并非必须提供 Gather Care 所请求的个人数据,但若不提供,您将无法参与 GatherCare 计划或由 Gather Care 提供的其他任何计划(“该计划”)。

通过向 Gather Care 提供任何个人数据,即表示您完全理解并明确同意该等个人数据的使用、转移、收集和处理。Gather Care 对这些数据的转移、使用、披露和处理将遵守本隐私声明。

个人数据的收集

Gather Care 通过多种渠道收集您的个人数据。通常(但不限于)包括以下情形:

  • 您自愿或直接提供给 Gather Care
  • 您与 Gather Care 或其代表、附属机构或其他计划参与者互动
  • 您回应我们请求的额外个人数据
  • 您访问 Gathercare 移动应用程序并执行任何交易
  • 您接听并回应我们的电话营销人员

个人数据的使用

Gather Care 可能会出于以下目的使用和处理您的个人数据:

  • 与您沟通
  • 回应您的询问;
  • 用于内部行政目的
  • 向监管和政府机构提供信息以符合法律和政府要求
  • 以便 Gather Care Sdn Bhd 履行其法律义务
  • 处理任何医疗索赔和付款
  • 处理您参与该计划的申请
  • 统计与研究
  • 管理和维护您的账户以及该计划的账户
  • 执行与该计划有关的任何交易
  • 在您参与该计划时,通过移动应用程序或其他渠道向用户公布当月所有医疗索赔信息,包括您的部分姓名、仅显示前8位的身份证号码、入院和出院日期、申请分摊的账单金额和简要病情描述。
  • Gather Care 认为与该计划相关并必要或适当的任何其他目的

个人数据的转移

由于 Gather Care 的技术存储设施和服务器可能位于其他司法管辖区,您的个人数据可能会被传输、存储、使用和处理于马来西亚以外的地区。

Gather Care 不会在未获得您事先同意的情况下,故意向无关第三方披露您的个人数据,除非在以下情况中:

  • 为上述目的披露个人数据
  • 向提供支持或专业服务的外部服务提供商和分包商(包括但不限于移动应用或邮件托管服务、信息技术服务、数据安全咨询服务、营销与推广服务、数据分析、法律服务、会计服务、税务服务、行政服务和数据备份服务)披露数据
  • 与企业重组或重组相关的个人数据披露,包括但不限于合并、收购、资产剥离、整合、联合、合资、成立合作伙伴关系、自愿清算和收购;和/或
  • 当为保护 Gather Care 及/或其管理人员、员工、代理或附属机构的利益、权利、财产或隐私而需要向无关第三方披露个人数据时。

为免生疑问,您在此明确同意 Gather Care 可在需要知道的基础上,或为上述任何目的,将您的个人数据披露给我们的任何管理人员、员工、代理或附属机构。

Data Retention

We retain your Personal Data only for as long as necessary to provide the GatherCare services, to comply with our legal and regulatory obligations, and to resolve disputes. Specific retention periods are:

  • Account profile data (name, contact, login credentials): kept for as long as your account is active. Deleted within 30 days of account closure, except where a longer period is required by law.
  • Carer (member) records, subscription, and payment history: retained for seven (7) years after the carer’s account is closed or the last transaction, in line with Malaysian tax, accounting, and insurance recordkeeping requirements (Income Tax Act 1967, Companies Act 2016, and applicable insurance regulations).
  • Medical claim records and related supporting documents: retained for seven (7) years after the claim is finalised, as required by the insurer (Insurance TPA) and applicable healthcare regulations.
  • Marketing and analytics data (de-identified): retained for up to two (2) years from collection.
  • Support tickets, audit logs, and security records: retained for up to three (3) years for fraud prevention and dispute resolution.

After the applicable retention period, your Personal Data is either permanently deleted or irreversibly anonymised so that it can no longer be linked to you.

Account Deletion and Data Deletion Requests

You may request deletion of your GatherCare account and the Personal Data we hold about you at any time, free of charge, through any of the following channels:

  • In-app: open the GatherCare mobile app → AccountSettingsDelete Account, and confirm the request.
  • Online form: submit a deletion request at https://gathercare.com/en/account-deletion/ .
  • 电子邮件: write to [email protected] from the email address registered to your account, with the subject line "Account Deletion Request".

What happens after you submit a request

  • We will acknowledge your request within 7 business days and complete the deletion within 30 days, subject to the exceptions below.
  • We will permanently delete: your profile, login credentials, carer profile data not subject to regulatory retention, in-app messages, push tokens, marketing preferences, and any uploaded photos or documents not attached to a finalised claim or payment.
  • We will retain the following for the periods stated in the "Data Retention" section above, even after account deletion, where we are legally required to do so: finalised claim records, payment and subscription transaction records, tax and accounting records, and audit/security logs. Data retained under these obligations is access-restricted and is not used for any other purpose.

Reactivation

Once your account is deleted, it cannot be reactivated. To use GatherCare again you will need to register a new account.

If you only want some data removed

If you do not wish to delete your account but want specific Personal Data corrected or removed, please use the channels described in the "Access & Correction Requests and Inquiries" section below.

权利保留

Gather Care 保留随时更改或修改本隐私声明的权利,以确保其与未来发展、行业趋势及法律或监管要求的一致性。当隐私声明有更改时,Gather Care 将更新首页的“最后更新日期”。我们鼓励您定期查看此声明。

访问与更正请求及查询

在适用法律允许的范围内,您可随时申请访问、更正或限制处理您的个人数据,或通过填写下方的联系我们表格,向 Gather Care Sdn Bhd 获取进一步信息。