Privacy Policy


Grand Seiko Asia-Pacific Private Limited (the “Company”, “we”, “our” or “us”) respects your privacy and is committed to protecting your personal data. We ask that you read this Privacy Policy (this “Policy”) carefully as it contains important information about what to expect when we collect personal information about you and how we will manage your personal data in accordance with the Personal Data Protection Act 2010 of Malaysia and the relevant guidelines (collectively, “PDPA”).

The Data We Collect About You

Personal data means any information about an individual from which that person can be identified.

We may collect, use, store, disclose and transfer different kinds of personal data about you which we have grouped together as follows:

  • Identity Data includes first name, maiden name, last name, username or similar identifier, marital status, title, date of birth and gender.
  • Contact Data includes address, email address and telephone numbers.
  • Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
  • Usage Data includes information about how you use our website.
  • Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.

By submitting your personal data to the Company, you agree and consent to the collection, use and/or disclosure of your personal data by the Company for a part or all of the purposes set out in this Policy.

In general, we collect your personal data in several ways, including but not limited to the following:

  • When you apply to register as our member;
  • When you apply to subscribe our e-mail magazines;
  • When you fill up a customer card upon visiting our boutique;
  • When you contact us for enquiries, via your selected mode of communication;
  • When you request us to contact you; and
  • When you submit your personal data to us for employment purposes.

Generally, the Company collects, uses and/or discloses your personal data for the following purposes:

  • Considering and processing your proposal on or application for the above;
  • Providing you with our products and/or services;
  • Responding to your queries and requests;
  • Resolving complaints, and handling requests of and enquiries;
  • Communication and marketing purposes;
  • Internal record keeping; or
  • Employment related purposes (including but not limited to salary, personal income tax. work pass and residential).

In addition, we intend to use your name, contact details, address, and the history of products and/or services obtained by you, held by us from time to time to conduct direct marketing in relation to the products and/or services that may be provided by us, business partners, co-branding partners, third party providers. We will only use your personal data for direct marketing purposes with your consent. You may withdraw your consent, without charge to you, by contacting our Data Protection Officer (see below for details).

Disclosure of Your Personal Data

We may disclose your personal data to the following third parties for the purposes set out in this Policy or for other legitimate purposes:

  • third parties to whom you authorise us to disclose of your personal data;
  • our professional consultants and advisors;
  • our business partners; and
  • our service providers.

When providing such services, these service providers may have access to your personal data. However, we will only provide our service providers with personal data, which is necessary for them to perform their services, and we require them not to use your information for any other purpose. We will ensure that all our service providers keep your personal data secure.

Please note our website may, from time to time, contain links to and from the websites of our business contacts or affiliates. Please note that these websites have their own privacy policies, and we have no control over how they may use your personal data. You should check the privacy policies of third-party websites before you submit any personal data to them.

We may also disclose your information when we believe release is appropriate to comply with the law, enforce our site policies, or protect ours and others’ rights, property, or safety.

Protection of Your Personal Data

The Company will take reasonable measures to protect your personal data against unauthorized access or modification, improper collection, use or disclosure, unlawful destruction or accidental loss. You should be aware, however, that no method of transmission over the internet or electronic storage is 100% secure. While security cannot be guaranteed, we strive to protect the security of the personal data and will constantly review and enhance our information security measures. In the event that we have credible grounds to believe that an incident of personal data breach has occurred, we will take reasonable and expeditious steps in accordance with PDPA. 

Further, we do not sell, trade, or otherwise transfer to third parties your personally identifiable information. This does not include trusted third parties who assist us in operating our website, conducting our business, or servicing you, as long as these parties agree to keep this information confidential.

Data Retention

Your personal data will be retained by the Company for as long as necessary according to our internal policy for the fulfilment of the purposes stated above, or is required to satisfy any legal or business purposes.

Your Rights

You have the following rights in accordance with applicable laws and regulations:

  • Access. You have the right to obtain from us confirmation as to whether or not personal data concerning you is being processed, and, where that is the case, to request access to the personal data. You have the right to obtain a copy of the personal data undergoing processing. In this regard, please be informed that we are entitled to charge a fee to recover the costs directly related to the access of the personal data for the time and effort spent by us in responding to the same, and will let you know the amount accordingly.
  • Correction. You have the right to have incomplete or inaccurate personal data that we process about you corrected.
  • Erasure. You have the right to request that we delete personal data that we process about you, except we are not obliged to do so if we need to retain such data in order to comply with a legal obligation or to establish, exercise or defend legal claims.
  • Restriction. You have the right to restrict our processing of your personal data where you believe such data to be inaccurate; our processing is unlawful; or that we no longer need to process such data for a particular purpose unless we are not able to delete the data due to a legal or other obligation or because you do not wish for us to delete it.
  • Portability. You have the right to obtain personal data we hold about you, in a structured, electronic format, and to transmit such data to another data controller, where this is (1) personal data which you have provided to us, and (2) if we are processing that personal data based on your consent or to perform a contract with you.
  • Objection. Where the legal justification for our processing of your personal data is our legitimate interest, you have the right to object to such processing on grounds relating to your situation. We will abide by your request unless we have compelling legitimate grounds for the processing which override your interests and rights, or if we need to continue to process the data for the establishment, exercise, or defence of a legal claim.
  • Withdrawing Consent. If you have consented to our processing of your personal data, you have the right to withdraw your consent at any time, free of charge. In the event that you withdraw your consent to the Company accordingly, the Company shall cease to retain, use and/or disclose your personal data within 30 days upon receiving your withdrawal request. However, please note that once consent is withdrawn, it may not be possible for us to accomplish the purposes as set out in this Policy, and hence, we may be unable to continue providing the requisite services to you.

If you wish to exercise any of the rights set out above, please contact the Data Protection Officer (the contact information provided below)

Compilation of Sensitive Personal Data

There may be circumstances that may be required to process your sensitive personal data. In that regard kindly note that the explicit consent provided towards the processing of your personal data shall also deem to be consent provided for the processing of your sensitive personal data as well. Notwithstanding the foregoing, the Company may process sensitive personal data for the following circumstances without having to obtain separate permission:

  • for the execution or claim of rights or obligation under the law against an individual in the regards of employment;
  • to protect your interests or other person, where the truth cannot be granted by the individual or his representative or is impossible for us to obtain permission in a normal and reasonable manner;
  • to protect your interests of an individual or other person, where the permission by the individual or his representative is deliberately not granted;
  • for medical purposes – under the custody of a professional in the field of healthcare or a person who has the same confidentiality responsibility with professionals in the field of healthcare;
  • for any relevant legal action;
  • to seek legal advice;
  • to create, carry or defend the rights under the law;
  • to administer the system of legal justice;
  • to carry out any function given to a person by or under the law;
  • other purposes perceived by the authorities; or
  • the information contained in personal data has been publicly known as a result of an individual’s actions and in such instance, we will not be required to obtain the individual’s permission in respect of such personal data.

Transfer of Personal Data Abroad

It may be necessary, that for any of the purposes under this Policy to transfer your personal data to locations outside Malaysia, including but not limited to Singapore, whereby the Company is located.  As a result of this, your personal data may be disclosed or transferred to entities and/or stored in any place outside Malaysia or in any country where you access our website, including but not limited to Singapore.

Please be informed that such entities may be established in countries that may not offer the level of data protection which is equivalent to the law in Malaysia. You hereby clearly give us permission to transfer and store your personal data to any place outside Malaysia. However, we will always strive to ensure that all third parties outside Malaysia will not use or process your personal data other than for the intended purposes and in accordance with this Policy and while upholding the confidentiality and privacy of your personal data properly.

Changes to The Policy

We may update this Policy at from time to time. We reserve the right to modify, add or remove portions of this Policy. If we decide to change this Policy, we will post an alert on the homepage of this website.

Contact Information

If you have any queries or comments on this Policy or the use of your personal data, or if you wish to lodge a privacy-related complaint, please contact Grand Seiko Asia-Pacific Data Protection Officer at