Siemens Healthineers Data Privacy Notice (Malaysia)
Version: August 2020
Depending on the nature of your interaction with us, some examples of Personal Data which we may collect from you include your name, identification card number, contact information such as your address, email address or telephone number, nationality, gender, date of birth, marital status, photographs and other audio-visual information, employment information and financial information such as credit card numbers, debit card numbers or bank account information.
Processing of your personal data
Siemens Healthineers processes your personal data as part of your use of our websites and online services as described in the following:
Use of the websites
When using our websites, Siemens Healthineers processes information (which may be technically generated and automatically sent to us by your browser or device, e.g. IP address, device type, browser type, pages visited, date and time of the request) and include your Personal Data to the extent that there is a compelling necessity, the collection, use and disclosure for communication to take place and will be performed in accordance with the Personal Data protection legal framework in Malaysia.
We process this information in order to enable you to visit the websites, to improve and accelerate the presentation of the websites, to adapt and prepare the information offered for specific target groups and to design the websites according to user preferences.
Subscription of information and participation in surveys
You can subscribe to various information (e.g. our newsletters) or provide us with comments and feedback by participating in surveys. Siemens Healthineers processes the Personal Data that you provide, e.g. contact information such as first and last name, e-mail address, telephone number or comments.
Siemens Healthineers uses this Personal Data to contact you and provide the requested information, to process your comments and feedback and to adapt and prepare the information offered for specific target groups.
Use of contact forms and chatbots
You can contact us directly via contact forms and chatbots on our website and in particular provide your contact details. Siemens Healthineers processes the contact information you provide (which may include Personal Data), such as your first and last name, e-mail address or telephone number, as well as information you provide in a support request, in order to respond to and clarify your contact or request.
On our websites you may provide your Personal Data to register for various Siemens Healthineers Online Services, for example to access technical documents of our products or to exchange information in user forums.
Siemens Healthineers processes the Personal Data that you have entered when using the Siemens Healthineers Online Services for example when registering or logging in, such as your first and last name, e-mail address, telephone number, comments or forum posts.
Siemens Healthineers processes your Personal Data,
- to provide the services and features of the Online Services and to manage your use; or to enable you to use the services and features of the Online Services;
- to verify your identity and enable user authentication;
Processing of Personal Data related to your business relationship with Siemens Healthineers
In the context of a business relationship with Siemens Healthineers, we process Personal Data of contact persons at customers, interested parties, sales partners, suppliers and partners.
The legal basis for the processing is your consent and/or in connection with the performance of a contract or where it is necessary for compliance with any legal obligation. Explicit consent will be obtained for processing of any Sensitive Personal Data.
Links to other websites
Recipient and disclosure of personal data
Siemens Healthineers works with its affiliated companies and external services providers and may therefore transfer your Personal Data outside of Malaysia for the purposes described above to:
- other Siemens Healthineers and Siemens Group companies;
- suppliers and service providers to enable such parties to perform functions on our behalf and under our instructions in order to carry out the purposes identified above. These may include, amongst others, infrastructure and IT service providers (for IT maintenance activities, processing enquiries, administration of user identities) and third party consultants who support us in the course of our business.
- courts, arbitration tribunals, authorities or legal advisors, if this is necessary to comply with applicable law or to assert, exercise or defend against legal claims.
As a global company, Siemens Healthineers also has affiliates in countries around the world. The applicable law in some of these countries do not guarantee the same level of data protection as Malaysia (“Third Countries”).
In the event that the recipients of your Personal Data are located in Third Countries, Siemens Healthineers will take other measures, such as introducing legally enforceable contractual obligations where the recipient is also bound to comply with data protection laws and regulations, to ensure that your Personal Data continues to receive a standard of protection that is at least comparable to that provided under local law .
For example, we may share your Personal Data with affiliates of Siemens Healthineers in Third Countries where they may be required to be implemented the binding corporate rules of Siemens for the protection of Personal Data (Binding Corporate Rules, "BCR"). You can find further information about the Siemens BCR here.
Further information and a copy of the implemented measures can be obtained upon request from the Siemens Healthineers Data Privacy Organization (see contact information under "Contact").
Storage and security
Siemens Healthineers typically retains and processes your Personal Data related to marketing activities for as long as you accept marketing communications from us. You have the right to opt out of receiving direct marketing subscriptions or participating in market research conducted by Siemens Healthineers and/or its affiliates. We will securely delete such data in accordance with applicable law upon request.
For Personal Data that we collect and process for other purposes, Siemens Healthineers will typically retain such Personal Data for as long as it is necessary to fulfil the purpose or until you revoke your consent or object to the processing and there is no other legal basis or overriding legitimate reasons for the processing.
To the extent that Siemens Healthineers needs to process your Personal Data in order to fulfil a legal obligation (such as retention obligations under tax or commercial laws) or the processing is necessary for the establishment, exercise or defense of legal claims, Siemens Healthineers stores your Personal Data until the legal obligation is fulfilled or the legal claims have been asserted.
To protect your Personal Data against accidental or unlawful destruction, loss, use, or alteration and against unauthorized disclosure or access, we use adequate physical, technical and organizational security measures.
According to the applicable data privacy laws, you have the right – provided that the respective legal requirements are fulfilled – to:
- obtain access to your Personal Data processed by Siemens Healthineers as well as other information,
- obtain the correction of your inaccurate Personal Data processed by Siemens Healthineers,
- withdraw consent and obtain from Siemens Healthineers confirmation of the erasure of your Personal Data processed by Siemens Healthineers,
- obtain from Siemens Healthineers restriction of processing of your Personal Data,
- opt out of receiving direct marketing subscriptions or participating in market research conducted by Siemens Healthineers and/or its affiliates
If you have given Siemens Healthineers your consent to process your Personal Data, you have the right to withdraw your consent at any time with effect for the future, i.e. your withdrawal does not affect the legality of the processing carried out based on the consent prior to the withdrawal. After withdrawal, Siemens Healthineers may only process your Personal Data to the extent that Siemens Healthineers can base the processing on another legal basis.
If you wish to exercise any of your rights, please contact the Siemens Healthineers Data Privacy Organization (see contact information under "Contact").
Contact for questions and complaints, data protection officer
The Data Protection Officer of Siemens Healthineers and the Siemens Healthineers Data Privacy Organization provide support in all questions relating to data privacy as well as questions, comments, concerns or complaints. The Data Protection Officer and the Siemens Healthineers Data Privacy Organization may be contacted via our portal ´Let us know - Data Privacy´.
If you wish to access your Personal Data or exercise any of your rights in relation to your Personal Data held by Siemens Healthcare Sdn. Bhd., please send a written request to:
The Data Privacy Officer
Siemens Healthcare Sdn. Bhd.
Level 16 - Wing1 & 2, CP Tower,
No 11, Jalan 16/11,
Pusat Dagang Seksyen 16,
46350 Petaling Jaya,
Selangor Darul Ehsan, Malaysia
The Siemens Healthineers Data Protection Officer and the Siemens Healthineers Data Privacy Organization will always use best efforts to address and remedy your request or complaint. In addition to contacting the Data Protection Officer of Siemens Healthineers and the Siemens Healthineers Data Privacy Organization, you may also contact the Department of Personal Data Protection under the Ministry of Communications and Multimedia Malaysia here.