Privacy
Privacy, Data & Cookie Policy
This Privacy, Data & Cookie Policy ("Policy") is published by NurseNet Asia (M) Sdn. Bhd. (SSM 202501028075 (1629487-D)), with its registered address at T3-13A-11, Icon City, Jalan SS8/2, Sunway City, 47300 Petaling Jaya, Selangor DE, Malaysia. Privacy-related correspondence may be sent to info@nursenet.my.
This Policy is governed by the laws of Malaysia. Any dispute arising out of or relating to this Policy or the processing of personal data in connection with the NurseNet platform may be subject to the jurisdiction of the Courts of Kuala Lumpur, Malaysia. This document is version 1.0, effective 8 May 2026, published in English.
NurseNet takes into account the following regulatory and legal frameworks, including without limitation:
- Personal Data Protection Act 2010 (Malaysia)
- Personal Data Protection (Amendment) Act 2024
- Applicable Malaysian Commercial and Consumer Laws
Introduction
NurseNet Asia (M) Sdn. Bhd. ("NurseNet", "we", "our", or "us") is committed to protecting the privacy, confidentiality, integrity, and security of personal data processed through the NurseNet platform and related services. This Privacy, Data & Cookie Policy explains how personal data is collected, processed, stored, disclosed, protected, and managed in accordance with applicable Malaysian laws and operational requirements.
Scope of Policy
1.1Application
This Policy applies to all users, members, visitors, speakers, partners, contractors, and individuals interacting with the NurseNet platform, websites, applications, events, communications, and educational services.
1.2Acceptance
By accessing or using the NurseNet platform, users acknowledge and consent to the collection, processing, use, storage, disclosure, and management of personal data as described in this Policy.
Legal and Regulatory Basis
2.1PDPA Compliance
NurseNet processes personal data in accordance with the Personal Data Protection Act 2010 (Malaysia) and applicable amendments, including principles relating to notice, disclosure, security, retention, access, integrity, and consent.
2.2Commercial Processing
Personal data is processed for lawful commercial, operational, educational, administrative, compliance, security, communication, and platform management purposes.
Categories of Personal Data Collected
3.1Identity Information
NurseNet may collect names, professional details, registration numbers, workplace information, job titles, profile details, and related identification information.
3.2Contact Information
NurseNet may collect email addresses, phone numbers, mailing addresses, and communication preferences.
3.3Account and Authentication Information
NurseNet may collect account credentials, login records, authentication logs, access timestamps, device identifiers, and security-related metadata.
3.4Payment and Transaction Information
NurseNet may process billing records, payment confirmations, transaction references, vouchers, order histories, and financial metadata associated with purchases.
3.5Educational and Attendance Information
NurseNet may process attendance logs, course participation data, CPD-related information, certificates, engagement analytics, assessment-related metadata, and educational interaction records.
3.6Technical and Device Information
NurseNet may collect browser type, IP address, operating system, session identifiers, cookies, access patterns, performance diagnostics, crash logs, analytics information, and usage behaviour.
Methods of Collection
4.1Direct Collection
Personal data may be collected directly through registrations, purchases, memberships, forms, support requests, surveys, events, communications, or voluntary submissions.
4.2Automated Collection
Certain technical data may be collected automatically through cookies, analytics tools, session monitoring systems, server logs, and related technologies.
4.3Third-Party Collection
NurseNet may receive information from integrated service providers, payment processors, event platforms, authentication providers, or operational partners.
Purposes of Processing
5.1Operational Purposes
Personal data may be processed for account creation, course delivery, attendance verification, certificate issuance, customer support, communications, membership management, and platform administration.
5.2Security and Fraud Prevention
Data may be processed to detect fraud, abuse, impersonation, unauthorized access, misuse of certificates, intellectual property violations, or suspicious activity.
5.3Analytics and Improvement
NurseNet may process data to improve services, optimize performance, understand user behaviour, enhance platform functionality, and improve educational delivery.
5.4Marketing and Communication
NurseNet may use personal data to communicate updates, promotions, educational announcements, membership information, platform notices, or operational notifications, subject to applicable laws and user preferences.
5.5Compliance and Regulatory Purposes
Personal data may be processed to comply with legal obligations, professional requirements, regulatory standards, audits, law enforcement requests, or governmental directives.
Cookies and Tracking Technologies
6.1Use of Cookies
NurseNet may use cookies, pixels, tags, analytics technologies, session identifiers, and similar tools to improve functionality, maintain sessions, personalize experiences, monitor performance, and analyze platform usage.
6.2Types of Cookies
Cookies used may include essential cookies, authentication cookies, security cookies, analytics cookies, preference cookies, and performance optimization cookies.
6.3Analytics and Tracking Services
NurseNet may use analytics and tracking technologies including website analytics, conversion tracking, performance monitoring, behavioural analysis, and campaign measurement systems.
6.4Third-Party Cookies
Certain cookies or tracking technologies may be operated by third-party providers for analytics, infrastructure, communications, advertising measurement, or service optimization purposes.
6.5Cookie Management
Users may modify browser settings to restrict, block, or remove cookies, although doing so may affect platform functionality, authentication, personalization, or service performance.
Third-Party Services and Data Processors
7.1Infrastructure Providers
NurseNet may utilize third-party infrastructure, hosting, storage, analytics, communication, payment, authentication, email, cloud, or operational service providers.
7.2Examples of Providers
Third-party providers may include cloud infrastructure providers, payment gateways, analytics providers, communication systems, authentication providers, and educational delivery systems.
7.3Third-Party Responsibilities
While NurseNet implements reasonable safeguards when engaging third parties, NurseNet does not control all external systems, networks, or infrastructure operated independently by third-party providers.
Data Storage, Security and Protection
8.1Security Measures
NurseNet implements reasonable technical, organizational, administrative, and operational safeguards designed to protect personal data from unauthorized access, misuse, disclosure, destruction, alteration, or loss.
8.2Access Restrictions
Access to personal data may be restricted to authorized personnel, contractors, administrators, or service providers with legitimate operational requirements.
8.3No Absolute Security Guarantee
While NurseNet takes reasonable measures to protect personal data, no digital platform, transmission method, cloud environment, or electronic storage system can be guaranteed to be completely secure.
Data Retention
9.1Retention Principle
Personal data shall generally be retained only for as long as reasonably necessary to fulfil operational, educational, legal, compliance, administrative, security, or business purposes.
9.2Extended Retention
Certain records, including certificates, transaction records, attendance logs, fraud investigations, or regulatory documentation, may be retained for extended durations where reasonably necessary.
9.3Deletion and Archiving
NurseNet reserves the right to archive, anonymize, restrict, or delete data in accordance with operational requirements, legal obligations, security policies, or platform management practices.
User Rights
10.1Access Rights
Users may request access to personal data processed by NurseNet subject to verification requirements, legal limitations, operational constraints, and applicable laws.
10.2Correction Rights
Users may request corrections to inaccurate, incomplete, outdated, or misleading personal data.
10.3Withdrawal of Consent
Where legally applicable, users may withdraw consent for certain processing activities, subject to operational, contractual, legal, or compliance limitations.
10.4Marketing Preferences
Users may opt out of non-essential promotional communications, subject to operational or transactional communication requirements.
Cross-Border Data Transfers
11.1International Services
Certain third-party systems or infrastructure providers utilized by NurseNet may process or store information outside Malaysia.
11.2Transfer Safeguards
Where reasonably practicable, NurseNet seeks to ensure that external providers implement appropriate safeguards, security measures, and compliance standards.
AI-Assisted Systems and Automation
12.1Operational AI Usage
NurseNet may utilize AI-assisted systems, automation technologies, analytics engines, recommendation systems, educational enhancement tools, and workflow automation solutions.
12.2AI Limitations
AI-assisted systems may generate incomplete, inaccurate, probabilistic, outdated, or imperfect outputs. Users remain responsible for exercising independent judgment and professional discretion.
Children and Sensitive Information
13.1Professional Audience
NurseNet is primarily intended for professional, educational, and adult audiences.
13.2Sensitive Data
Users should avoid submitting unnecessary sensitive personal data unless specifically required for lawful operational purposes.
Breach Management and Incident Response
14.1Security Incidents
NurseNet may investigate, manage, contain, disclose, or respond to suspected data breaches, cybersecurity incidents, misuse events, or unauthorized access situations.
14.2Regulatory Cooperation
NurseNet reserves the right to cooperate with regulators, law enforcement agencies, courts, or authorized authorities where required by law or reasonably necessary.
Policy Updates and Amendments
15.1Right to Amend
NurseNet reserves the right to update, revise, replace, or amend this Policy at any time without prior notice.
15.2Continued Use
Continued use of the Platform following updates constitutes acknowledgment and acceptance of the revised Policy.
Contact Information
16.1Privacy Enquiries
Questions, requests, notices, or concerns relating to privacy, data protection, or this Policy may be directed to info@nursenet.my.