Privacy Policy

Privacy Policy

Kedah Islamic Asset Management Berhad (KIAM, “we”, “us”, “our”) operates the platform at kiam.com.my (the “Site”) and related services (collectively, “Services”). We take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and protect your personal data, and your rights in relation to that data.

Contact

If you have questions or concerns about this Privacy Policy or your personal data, contact us at ask@kiam.com.my.

Amendments

We may amend, revise, or update this Privacy Policy from time to time without prior notice. The latest version will be published on the Site. Your continued use after changes indicates acceptance of the updated policy.

Information We Collect

We collect various information when you use our Site or Services, including but not limited to:

  • Personal identifiers: name, date of birth, identity number, passport, etc.

  • Contact data: address, phone number, email address.

  • Financial & employment data: employment status, income, financial statements.

  • Corporate data: business name, registration number, shareholders, directors.

  • Verification documents: identity proofs, address proofs, financial documents.

  • Usage data: logs, cookies, IP address, device identifiers, browsing behavior.

Cookies & Tracking

We may use cookies and similar technologies (e.g. web beacons, pixel tags) to collect standard internet log data and visitor behavior. You can disable cookies in your browser settings, but some features of the Site may not work properly without them.

Use of Your Information

We use your personal data for the following purposes:

  • Provide, maintain, and operate our Services.

  • Verify your identity and prevent fraud, money laundering, or other illicit activity.

  • Conduct credit or background checks and risk assessment.

  • Communicate updates, notices, promotions, and service changes.

  • Personalize your experience and improve our Services.

  • Conduct market research and analytics.

  • Fulfill legal and regulatory obligations.

Updating & Correcting Your Information

You have the right to request access to, correction of, or deletion of your personal data. If information is inaccurate or incomplete, you may submit a request in writing. We may require verification documents to confirm changes. We reserve the right to decline fraudulent or malicious requests.

Disclosure of Information

We do not sell or trade your personal data. However, we may disclose your information in the following circumstances:

  • To comply with legal obligations, regulatory investigations, or court orders.

  • To enforce our terms, recover rights, or protect safety, rights, or property of KIAM or others.

  • To service providers, auditors, agents, trustees, payment processors, or partners who assist us, subject to confidentiality commitments.

  • In the event of a merger, acquisition, reorganization, or sale of assets (with prior notice and confidentiality safeguards).

Third-Party Links

The Site may contain links to third-party websites. This Privacy Policy does not cover those sites. We are not responsible for their privacy practices. Please review their privacy notices separately.

Security

We implement technical, administrative, and organizational measures designed to secure your data from unauthorized access, disclosure, alteration, or destruction. Although we strive to protect your data, no method is completely secure.

Data Retention

We retain personal data as long as necessary to fulfill the purposes described above, or as required by law. When no longer needed, we delete or anonymize data in a secure manner.

Legal Basis & Consent

To the extent required under applicable law, processing of your personal data is based on:

  • Your consent, where applicable;

  • Performance of a contract or provision of Services;

  • Compliance with legal obligations;

  • Legitimate interests, where not overridden by your rights or interests.

Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access your personal data;

  • Correct or update your data;

  • Delete your data (subject to legal retention requirements);

  • Object to or restrict processing;

  • Withdraw consent (if processing is consent-based);

  • Request data portability, where applicable.

Children & Minors

We do not knowingly collect personal data from individuals under 18 years old. If you become aware that such data has been provided to us, contact us to request deletion.

Cross-Border Transfers

We may transfer your personal data to jurisdictions outside Malaysia for processing or storage. In such cases, we ensure adequate data protection measures or legal safeguards (e.g. contracts, standard clauses) are in place.

Retention and Disposal

We retain personal data only for as long as necessary for the purposes listed, or as required by law. Afterward, we securely destroy or anonymize the data.

Changes to This Privacy Policy

We reserve the right to change this Privacy Policy from time to time. Changes take effect when posted. Continued use after changes indicates acceptance.

Developed and Maintained by Ifcon Technology Sdn Bhd