How ATTIM collects, uses, discloses, and safeguards your personal data under Malaysia's Personal Data Protection Act 2010, as amended in 2024.
The Association of Tourism Training Institutes of Malaysia (ATTIM) is committed to protecting the personal data of our members, course registrants, website visitors, and all other individuals who interact with us. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data in accordance with Malaysia's Personal Data Protection Act 2010 (PDPA), as amended by the Personal Data Protection (Amendment) Act 2024, and any subsidiary regulations made thereunder.
By using our website, submitting a membership or course registration application, or otherwise providing your personal data to ATTIM, you acknowledge that you have read and understood this Privacy Policy.
The data controller responsible for your personal data is:
We collect different categories of personal data depending on your relationship with ATTIM:
When you apply for or renew ATTIM membership, we may collect:
When you register for any ATTIM training programme, we may collect:
When you submit a query via our contact form, we collect your name, email address, and the content of your message.
When you subscribe to our newsletter, we collect your email address only.
We process your personal data for the following purposes and on the following legal grounds:
| Purpose | Legal Basis (PDPA 2010 / 2024) |
|---|---|
| Membership administration and renewal | Contractual necessity; legitimate interests |
| Course enrolment, delivery, and certification | Contractual necessity; legal obligation |
| Industry communications and newsletters | Consent |
| Responding to enquiries and complaints | Legitimate interests |
| Compliance with legal and regulatory requirements | Legal obligation |
We retain your personal data only for as long as is necessary for the purpose it was collected, or as required by law:
Upon expiry of the applicable retention period, personal data will be securely deleted or anonymised.
Under Malaysia's Personal Data Protection Act 2010 (as amended 2024), you have the following rights in relation to your personal data:
To exercise any of these rights, please contact us at info@attim.org.my. We will respond within 21 days as required under the PDPA.
Our website uses essential session cookies solely to maintain your browsing session (e.g. keeping you logged in to the member portal). These cookies are strictly necessary for the operation of the site and are automatically deleted when you close your browser.
We do not use any third-party tracking, analytics, or advertising cookies. No cookie data is shared with external advertising networks or data brokers.
ATTIM does not sell, rent, or trade your personal data to any third party. Your data may be disclosed only in the following limited circumstances:
All third-party service providers engaged by ATTIM are contractually required to handle personal data in accordance with the PDPA 2010 (as amended 2024).
We may update this Privacy Policy from time to time to reflect changes in law, our data practices, or organisational structure. Material changes will be communicated via a notice on our website homepage. The date at the top of this page indicates when the policy was last revised.
Last updated: May 2025
For any questions, concerns, or requests relating to this Privacy Policy or your personal data, please contact our Privacy Officer:
Email: info@attim.org.my
Post: Privacy Officer, ATTIM, Lot 1-5-1, Wisma Prima Peninsular,
Jalan Setiawangsa 11, Taman Setiawangsa, 54200 Kuala Lumpur, Malaysia.