Yes Dental Clinic ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information in compliance with the Personal Data Protection Act 2010 (PDPA) of Malaysia.

1. Information We Collect

We may collect the following types of personal data from you:

• Personal Identification Information: Name, contact details (phone number, email address), identification card/passport numbers.
• Medical Information: Dental and medical records, health history, and treatment plans.
• Payment Information: Billing details, payment methods, and transaction history.
• Website Usage Data: Browser type, IP address, and pages accessed on our website.

2. How We Collect Your Data

We collect your personal data through:

• Direct interactions: When you fill out forms, contact us, or visit our clinic.
• Online submissions: Through our website or email communications.
• Third parties: With your consent, we may collect data from authorized third parties such as insurance providers.

3. Purpose of Data Collection

Your personal data is collected for the following purposes:

• To provide dental services and manage your treatment.
• To schedule appointments and send reminders.
• To process payments and manage billing.
• To comply with legal and regulatory obligations.
• To improve our services through feedback or website analytics.

3.1. Disclosure of Personal Data

We will not disclose your personal data to third parties without your explicit consent unless required by law. Examples include:

• Sharing with healthcare professionals for continuity of care.
• Providing records to regulatory authorities as mandated by law (e.g., Malaysian Dental Council or Ministry of Health).
• Complying with court orders or legal investigations.

3.2. Security Measures

We implement strict security measures to protect your personal data:

• Access control: Only authorized personnel can access sensitive information.
• Technical safeguards: Use of encryption, secure storage systems, and firewalls.
• Regular audits: Periodic reviews of our data protection practices.

3.3. Your Rights

Under the PDPA, you have the following rights:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request corrections to inaccurate or incomplete data.
• Withdrawal of Consent: Opt-out of non-essential uses of your data (e.g., marketing).

To exercise these rights, please contact us using the details provided below.

3.3.0. Retention of Data

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy or as required by law. Once no longer needed, we will securely delete or anonymize your information.

3.3.1. Cookies and Website Analytics

When you visit our website, we may collect non-personal technical information such as browser type and pages visited to improve user experience. You can manage cookie preferences through your browser settings.

3.3.2. Updates to This Privacy Policy

This Privacy Policy may be updated periodically to reflect changes in legal requirements or our practices—the latest version will always be available on our website.