016-222 5400 info@wawasanoccuhealth.com Mon–Fri: 9AM – 5PM
Legal

Privacy Policy

Last Updated: February 2026

1. Introduction

Wawasan KVL Occuhealth Sdn. Bhd. (Registration No. 202201047929) ("we", "us", "our") is committed to protecting the privacy and personal data of our clients, patients, and website visitors in accordance with the Malaysian Personal Data Protection Act 2010 (PDPA).

This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you use our occupational health services or visit our website.

2. Personal Data We Collect

We may collect and process the following categories of personal data:

2.1 Personal Identification Information

  • Full name, MyKad/passport number, date of birth, gender, nationality
  • Contact details including phone number, email address, and residential address
  • Employment details including employer name, job title, and employee ID

2.2 Medical and Health Information

  • Medical history, current medications, and allergies
  • Physical examination findings and test results (blood tests, urine analysis, audiometry, spirometry, vision tests, chest X-ray results)
  • Fitness-to-work assessments and medical certificates (OGUK, Marine, DOSH, JPJ)
  • Drug and alcohol testing results
  • Vaccination records

2.3 Technical Information

  • IP address, browser type, and device information when visiting our website
  • Website usage data through cookies and analytics tools

3. How We Collect Your Data

We collect personal data through the following means:

  • Directly from you when you fill out patient registration forms, consent forms, or our online booking form
  • From your employer when corporate medical services are arranged on your behalf
  • Through medical examinations and diagnostic tests conducted at our clinic
  • Through third-party laboratories processing your test samples
  • Automatically through cookies when you browse our website

4. Purpose of Data Processing

We process your personal data for the following purposes:

  • Medical Services: To conduct medical examinations, assessments, and testing as requested
  • Regulatory Compliance: To prepare medical reports and certificates required by DOSH, OGUK, Jabatan Laut Malaysia, JPJ, and other regulatory bodies
  • Appointment Management: To schedule, confirm, and manage your appointments
  • Communication: To respond to your enquiries and provide appointment reminders
  • Corporate Services: To coordinate medical services with your employer and provide corporate health reports
  • Quality Assurance: To maintain service quality and clinical standards
  • Legal Obligations: To comply with applicable healthcare regulations and legal requirements
  • Business Operations: To manage billing, invoicing, and administrative functions

5. Consent

By using our services, you consent to the collection and processing of your personal data as described in this policy. For medical examinations arranged by your employer, consent is typically obtained through:

  • The patient registration and consent form completed at our clinic
  • Your employer's referral letter authorising the examination
  • Implied consent when you voluntarily present for the examination

You may withdraw your consent at any time by contacting us in writing. However, withdrawal of consent may affect our ability to provide certain services.

6. Disclosure of Personal Data

We may share your personal data with the following parties:

  • Your Employer: Fitness-to-work status and medical certificates as required for occupational health compliance (detailed clinical findings are not disclosed without your specific consent)
  • Regulatory Bodies: DOSH, OGUK, Jabatan Laut Malaysia, JPJ, and other authorities as required by law
  • Third-Party Laboratories: For processing diagnostic tests and samples
  • Healthcare Providers: For referrals or specialist consultations when medically necessary
  • Insurance Companies: Only with your written consent or as required by law
  • Legal Authorities: When required by court order or legal proceedings

We do not sell or rent your personal data to any third party for marketing purposes.

7. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • Secure storage of physical medical records in locked facilities
  • Access controls limiting data access to authorised personnel only
  • Secure electronic systems with password protection and encryption
  • Staff training on data protection and confidentiality obligations
  • Regular review of security practices and procedures

8. Data Retention

We retain your personal data for the following periods:

  • Medical Records: Minimum 7 years from the date of last treatment, or longer if required by specific regulations
  • DOSH Medical Surveillance Records: 30 years as required under occupational health regulations
  • OGUK and Marine Medical Records: For the duration required by the respective regulatory bodies
  • Drug Testing Records: As required by the Medical Review Officer (MRO) guidelines
  • Administrative Records: 7 years for financial and billing records

After the retention period, personal data will be securely destroyed or anonymised.

9. Your Rights Under PDPA

Under the Malaysian Personal Data Protection Act 2010, you have the following rights:

  • Right of Access: You may request access to your personal data held by us
  • Right of Correction: You may request correction of inaccurate or incomplete personal data
  • Right to Withdraw Consent: You may withdraw consent to the processing of your data
  • Right to Prevent Processing: You may request that we stop processing your data in certain circumstances

To exercise any of these rights, please contact us using the details provided below. We will respond to your request within 21 days.

10. Cookies

Our website uses cookies to improve your browsing experience. Cookies are small text files stored on your device that help us understand how visitors interact with our website. We use:

  • Essential Cookies: Required for the website to function properly
  • Analytics Cookies: To understand visitor behaviour and improve our website

You can control cookies through your browser settings. Disabling cookies may affect some website functionality.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal data.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Updates will be posted on this page with a revised date. We encourage you to review this policy periodically.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal data, please contact us:

  • Company: Wawasan KVL Occuhealth Sdn. Bhd.
  • Phone: +6016-222-5400
  • Email: info@wawasanoccuhealth.com
  • Address: No. 47, Jalan Utas 15/7, Seksyen 15, 40200 Shah Alam, Selangor
GET COMPLIANT

Schedule Your Corporate Medical Assessment DOSH-Compliant Services in Shah Alam

From pre-employment screenings to offshore medicals, get your workforce certified by an MSc-qualified Occupational Health Doctor. Fast turnaround, professional reports.

Book Appointment Now 016-222 5400