At GOfiz Serviced Workspace ("GOfiz") we respect the privacy and confidentiality of the personal data of our members and others whom we interact with in the course of providing our services as well as of applicants who apply for positions with us. We are committed to implementing policies, practices and processes to safeguard the collection, use and disclosure of the personal data you provide us.

We have developed this Data Protection Notice to assist you in understanding how we collect, use, disclose, process, protect and retain your personal data that is in our possession. We will practice in accordance with such laws (including the Personal Data Protection Act 2010), this Privacy Notice and/or the privacy terms in any agreement(s) that you may have or will enter into with GOfiz.

Personal data refers to any information that can uniquely identify an individual person (a) on its own, or (b) when combined with other information.

We collect your personal data when you:

• Enquire / respond to our range of services via our marketing, promotional campaigns including electronic direct mails;
• Enrol as our members;
• Are referred to us by one of our members and business partners;
• Provide feedback to us on our quality of service;
• Visit our websites and leave behind your contact information; and
• Communicate with us via emails or written correspondences.

The types of personal data we collect about you include:

• Contact information (Name, Address, Phone No., Email Address);
• Personal details (Name, NRIC No., Gender, Date of Birth, Country of Birth, Country of Residence, Nationality, Race/Ethnicity), where applicable; and
• Payment / financial information (Bank Account No., Credit/Debit Card Name, Credit/Debit card No., Card expiry date).

We use the personal data you provide us for one or more of the following purposes:

• Manage and improve our business and operations to serve you better or enhance customer experience;
• Respond to opinions, comments or feedback about our products or services;
• Process and manage membership program;
• Process billing, payment and other credit-related activities;
• Conduct direct marketing and lead generation activities;
• Conduct joint marketing with other companies and service providers;
• Communicate with customers, members and website visitors;
• Analyse the use of our products, services or websites;
• Process employee related activities;
• Process employment passes of clients with the relevant government agencies; and
• Comply with or fulfil legal obligations and regulatory requirements.

We disclose some of the personal data you provide us to the following entities or organisations outside GOfiz in order to fulfil our services to you:

• Email service vendors;
• Event organisers;
• Our data processing and IT services providers to facilitate guest registration;
• Freight / courier services; and
• Government agencies.

Where required to do so by law, we may disclose personal data about you to the relevant authorities or to law enforcement agencies.

We use "cookies" to collect information about your online activity on our website. A cookie is a small text file created by the website that is stored in your computer to provide a way for the website to recognise you and keep track of your preferences. The cookie makes it convenient for you such that you do not have to retype the same information again when you revisit the website or in filling electronic forms.

Most cookies we use are "session cookies", which will be deleted automatically from the hard disk of your computer at the end of the session.

You may choose not to accept cookies by turning off this feature in your web browser. Note that by doing so, you may not be able to use some of the features and functions in our website.

We will take reasonable steps to ensure that the personal data we collect about you is accurate, complete, not misleading and kept up -to-date.

From time to time, we may do a data verification exercise for you to update us on any changes to the personal data we hold about you. If we are in an ongoing relationship with you, it is important that you update us of any changes to your personal data (such as a change in your mailing address).

We have implemented appropriate information security and technical measures (such as data encryption, firewalls and secure network protocols) to protect the personal data we hold about you against loss; misuse; destruction; unauthorised alteration / modification; access; disclosure; or similar risks.

We have also put in place reasonable and appropriate organisational measures to maintain the confidentiality and integrity of your personal data, and will only share your data with authorised persons on a 'need to know' basis.

When we engage third-party data processors to process personal data on our behalf, we will ensure that they provide sufficient guarantees to us to have implemented the necessary organisational and technical security measures, and have taken reasonable steps to comply with these measures.

We have a document retention policy that keeps track of the retention schedules of the personal data you provide us, in paper or electronic forms. We will not retain any of your personal data when it is no longer needed for any business or legal purposes.

We will dispose of or destroy such documents containing your personal data in a proper and secure manner when the retention limit is reached.

You may write in to us to find out how we have been using or disclosing your personal data. Before we accede to your request, we may need to verify your identity. We will respond to your request as soon as possible, and, where possible we will let you know and give you an estimate of how much time we require. We may also charge you a reasonable fee for the cost involved in processing your access request.

If you find that the personal data we hold about you is inaccurate, incomplete, misleading or not up-to-date you may ask us to correct the data. Where we are satisfied on reasonable grounds that a correction should be made, we will correct the data as soon as possible, or within 30 days from the date we received your request.

If you have any query or feedback regarding tis Policy, or any complaint you have relating to how we manage your personal data, you may contact us at: info@gofiz.com.my

Any query or complaint should include, at least, the following details:

• Your full name and contact information; and
• Brief description of your query or complaint.

We treat such queries and feedback seriously and will deal with them confidentially and within reasonable time.

We may update this Data Protection Notice from time to time. We will notify you of any changes by posting the latest Notice on our website. Please visit our website periodically to note any changes.

Changes to this Notice take effect when they are posted on our website.