Privacy Policy · MyPoliticians

1. Introduction & Scope

This Privacy Policy explains how MyPoliticians (the “Service”), operated by the individual or entity behind MyPoliticians (the “Operator”, “we”, “us”, or “our”), collects, uses, discloses, and protects personal data when you use the Service. We are committed to handling personal data responsibly and in accordance with the Personal Data Protection Act 2010 of Malaysia (the “PDPA”) and other applicable laws.

MyPoliticians is a political-transparency platform. The public Service does not require you to create an account. We collect only minimal personal data, as described below.

2. Personal Data We Collect

We may collect the following categories of personal data:

Correction-report details. If you choose to submit a “report wrong info” correction, you may optionally provide your name and email address, together with the content of your report. Providing a name and email is optional and used only to process and, where appropriate, follow up on your report.
Server logs. Like most websites, our servers automatically record standard technical information when you visit, such as your IP address, browser type and version, device and operating-system information, referring pages, and the date and time of requests. This is used for security, diagnostics, and to operate the Service.
Analytics & cookies. We may use cookies or similar technologies and basic analytics to understand aggregate usage and improve the Service. See Section 7 for details.

We do not knowingly collect sensitive personal data from users of the public Service, and we ask that you do not submit such data through the report or feedback mechanisms unless it is necessary and relevant to your report.

3. Purpose & Legal Basis (PDPA 2010)

Under the PDPA, we process personal data on the following bases:

Consent. Where you voluntarily provide your name and email when submitting a correction report, you consent to our processing that data for the purpose of handling your report.
Legitimate operation of the Service. We process server-log and technical data as necessary to operate, secure, and maintain the Service.
Public interest and journalistic/political activity. Information about politicians and public officials is processed as publicly available information in the public interest and in a journalistic, political, and civic-transparency context (see Section 5).

4. How We Use Personal Data

We use the personal data we collect to:

receive, assess, and respond to correction reports and feedback;
operate, maintain, secure, and improve the Service;
detect, prevent, and address technical issues, abuse, fraud, or security incidents; and
comply with our legal obligations.

We do not use the optional name and email you submit with a report for marketing, and we do not sell your personal data.

5. Information About Politicians

The core function of the Service is to present information about Malaysian politicians, candidates, and public officials. Such information is compiled from publicly available sources — including Wikipedia, official SPR and Parliament records, DOSM data, and Malaysian news outlets — and relates to individuals acting in their public, official, or political capacity.

We process this information as publicly available data in the public interest, and in a journalistic, political, and civic-transparency context, consistent with the principles of the PDPA. Some of this content is extracted or summarised with the assistance of an AI language model and may contain inaccuracies; we provide source attribution and a “report wrong info” mechanism so that affected individuals and the public can request corrections. Individuals featured on the Service may request a correction or removal of content about them as described in Section 9 and in our Terms of Service.

6. Disclosure & Sharing

We do not sell, rent, or trade your personal data. We may share personal data only in the following limited circumstances:

Service providers. With trusted third-party providers who host our infrastructure, deliver content, or provide analytics or security services on our behalf, and who are permitted to use the data only as necessary to provide those services.
Legal requirements. Where we are required to do so by law, regulation, legal process, or a lawful request by a public authority, or to protect our rights, safety, or property and those of others.

7. Cookies, Logs & Analytics

We may use cookies or similar technologies to operate the Service and to understand aggregate usage patterns. Cookies are small files stored on your device. We aim to keep our use of cookies minimal and limited to what is necessary to run the Service and gather basic, aggregate analytics.

You can control or disable cookies through your browser settings, although some parts of the Service may not function as intended if you do. Server logs, as described in Section 2, are retained for security and diagnostic purposes.

8. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. Correction-report details are retained for as long as needed to process and act on the report and to keep a record of corrections; server logs are typically retained for a limited period for security and diagnostic purposes. When personal data is no longer required, we will take reasonable steps to delete or anonymise it.

9. Your Rights Under the PDPA

Subject to the conditions and exceptions in the PDPA, you have the right to:

request access to the personal data we hold about you;
request correction of inaccurate, incomplete, or outdated data;
withdraw any consent you previously gave (which may affect our ability to act on a report you submitted);
limit the processing of your personal data for direct marketing (noting that we do not use your data for marketing); and
make enquiries or complaints about how we handle your data.

To exercise any of these rights, please contact us using the details in Section 14. We may need to verify your identity before acting on a request.

10. Security

We take reasonable technical and organisational measures to protect personal data against loss, misuse, unauthorised access, disclosure, alteration, and destruction. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

11. Children’s Privacy

The Service is intended for a general audience and is not directed at children. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so that we can take appropriate steps to remove it.

12. International Transfers

We may use hosting and service providers whose servers are located outside Malaysia. Where personal data is transferred outside Malaysia, we take reasonable steps to ensure that it continues to be protected to a standard comparable to that required under the PDPA, and we transfer such data only in accordance with applicable law.

13. Changes to this Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, the Service, or the law. When we do, we will revise the “Last updated” date at the top of this page. We encourage you to review this Policy periodically. Your continued use of the Service after changes take effect constitutes your acceptance of the revised Policy.

14. Contact for Privacy Requests

If you have any questions about this Privacy Policy, or wish to exercise your rights under the PDPA, please contact us at [email protected].