Compliance

PDPA Compliance

This page is maintained by Frandevia Glory Sdn. Bhd. to explain how SYIFTA aligns with Malaysia's Personal Data Protection Act 2010.

General principle

Personal data is processed with your consent and for a lawful purpose disclosed at the point of collection.

Notice & choice

You are told what we collect, why we collect it, and to whom it may be disclosed.

Disclosure & security

Data is shared only for the disclosed purpose. We use encryption, access controls and audit logs.

Retention & access

Data is retained only as long as necessary. You may access, correct or withdraw consent at any time.

Data we hold

For professionals: name, contact details, professional registration, credentials, certifications, shift history and payout information. For facilities: entity details, licensed contact persons, shift records and billing information.

How we use it

To operate SYIFTA — verifying credentials, matching shifts, issuing digital contracts, processing payments and complying with our legal obligations under Malaysian law.

Third parties

We use vetted service providers (hosting, payments) that are contractually bound to protect your data and process it only on our instructions. We do not sell personal information.

Your PDPA rights

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Withdraw consent for further processing (subject to legal exceptions).
  • Limit the processing of your data in certain circumstances.

Contact our data team

Email frandeviaglory@gmail.com with the subject "PDPA request". We aim to respond within 21 days.

This page is app-owned editable content, not a certification. SYIFTA is not a regulator and this document does not constitute legal advice.