Processing of Personal Information in Malaysia
For the purposes of processing your Personal Information in Malaysia, we will follow the Data Privacy Principles and Regulations of the Personal Data Protection Act 2010 ('PDPA') and subsidiary legislation. Please note that the following provisions will apply to you if you are a Data Subject (resident or citizen) in Malaysia, in addition to Infosys Global Privacy Statement.
Cross Border Transfer of Data
In general, Infosys Limited, domiciled in Bangalore, is the data controller processing your Personal Information. We may transfer your personal data outside Malaysia to third parties including countries where the data protection legislation may differ from that of Malaysia.
As per the obligation called out under the Data Protection law in Malaysia, when we transfer your personal information to Infosys group companies and service providers outside Malaysia, Infosys as the transferring organization will take your consent and will remain accountable for the protection of your personal information and ensuring compliance with the applicable legislation, using contractual or other means to ensure that the personal data will not be processed in a manner that would contravene the PDPA. Additionally, we shall also take all the necessary steps to ensure confidentiality and security of the transferred data.
Your Data Subject Rights in Malaysia
As a Data Subject located in Malaysia, you are entitled to the following rights:
- The right to be informed about the processing of your personal data.
- The right to access your personal data that is being processed.
- The right to correct the personal data, if it is inaccurate, incomplete, misleading, or outdated, subject to certain conditions.
- The right to opt-out of the processing of your personal data.
If you are a resident of Malaysia and you wish to exercise your data subject rights as called out above, please refer to section on exercising ‘Your Rights’ in the Infosys Global Privacy Statement.