Privacy Policy

2.1 Information You Provide

• Account credentials and profile information
• Professional and business information
• User preferences and settings
• Feedback, support requests, and communications
• Payment and billing information (where applicable)

2.2 Information Automatically Collected

• Usage data and analytics for service improvement
• Data that enables our services to serve their purpose of helping users connect to better candidates faster
• Technical information about your devices and browsers
• Performance metrics and error logs
• Session information for security and functionality

2.3 Information We Do NOT Collect

• Personal messages or private communications (unless explicitly authorized)
• Financial information beyond what's necessary for billing
• Sensitive personal information beyond what you explicitly authorize

3.1 Primary Uses

• Provide and improve our products and services
• Personalize your user experience
• Ensure security and prevent fraud
• Provide customer support and technical assistance
• Comply with legal and regulatory requirements

3.2 Data Processing Principles

• We only process data that is necessary for our services
• All processing is based on legitimate business interests and user consent
• We do not use your data for unauthorized purposes
• We maintain transparency about all data processing activities

4.1 Storage Locations

• Local storage on your devices (for client-side applications)
• Secure cloud servers with industry-standard encryption
• Regional data centers for optimal performance and compliance

4.2 Security Measures

• Industry-standard encryption protocols (AES-256, TLS 1.3)
• Multi-factor authentication and secure access controls
• Regular security audits and vulnerability assessments
• Comprehensive incident response and disaster recovery plans

5.1 No Third-Party Data Sharing

• We do NOT share your personal data with third parties
• We do NOT sell your information to advertisers or data brokers
• We do NOT allow unauthorized third-party access to your data
• All data processing is performed by JOM IT Technologies only

5.2 Service Providers

• We may use trusted service providers for essential functions
• All providers are bound by strict data protection agreements
• They cannot use your data for their own purposes
• We maintain oversight of all third-party data processing

5.3 Legal Requirements

• We may disclose information only when required by law
• We will notify you of any legal requests unless prohibited
• We will challenge overly broad or inappropriate requests

6.1 Retention Periods

• Active account data: Retained while your account is active
• Inactive account data: Retained for reasonable periods for business purposes
• Usage logs: Retained for security and debugging purposes
• Deleted data: Permanently removed within specified timeframes

6.2 Your Rights

• Right to Access: View all data we have about you
• Right to Rectification: Correct inaccurate information
• Right to Erasure: Delete your data at any time
• Right to Portability: Export your data in standard formats
• Right to Restrict Processing: Limit how we use your data

7.1 PDPA Compliance

• We fully comply with Malaysia's Personal Data Protection Act
• We have appointed a Data Protection Officer
• We maintain comprehensive data protection policies and procedures
• We conduct regular privacy impact assessments

7.2 International Compliance

• We comply with applicable privacy laws in all jurisdictions where we operate
• We implement appropriate safeguards for international data transfers
• We respect local privacy rights and cultural considerations
• We maintain compliance with GDPR requirements for EU users

7.3 Regulatory Cooperation

• We cooperate with privacy regulators and authorities
• We maintain records of all data processing activities
• We conduct regular compliance audits and assessments
• We promptly address any regulatory concerns or findings

8.1 JOM Smart Search Chrome Extension

• Local and secure cloud data storage with industry-standard encryption
• LinkedIn data extraction for purposes of improving user's network management
• No tracking of browsing behavior outside LinkedIn

8.2 JOM Recruit Platform

• Secure handling of candidate and employer information
• Role-based access controls for sensitive data
• Audit trails for all data access and modifications
• Compliance with employment and recruitment privacy laws

8.3 JOM Professional Networking Tools

• Professional profile data management
• Connection and networking feature privacy controls
• Business intelligence without compromising individual privacy
• Secure data sharing between authorized users

10.1 Transfer Safeguards

• All international data transfers use appropriate safeguards
• We use standard contractual clauses approved by relevant authorities
• We ensure adequate protection in recipient countries
• We maintain records of all international transfers

10.2 Data Localization

• You can choose to store your data in specific geographic regions
• We respect data sovereignty requirements
• We provide transparency about data storage locations

11.1 Consent Management

• You can withdraw consent for data processing at any time
• You can modify your privacy preferences across all products
• You can opt out of optional data collection features
• All consent is freely given and can be easily withdrawn

11.2 Privacy Controls

• Centralized privacy dashboard for all products
• Granular privacy settings for different data types
• Easy-to-use privacy management tools
• Transparent data usage reporting

12.1 Incident Response Plan

• We have a comprehensive incident response plan
• We will notify you within 72 hours of any data breach
• We will provide detailed information about the breach and its impact
• We will take immediate steps to contain and remediate any breach

12.2 Notification Requirements

• We will notify affected users and relevant authorities as required by law
• We will provide guidance on protecting your information
• We will offer identity protection services if appropriate
• We will maintain transparency throughout the response process

13.1 Built-in Privacy

• Privacy is integrated into all products and features from the start
• We minimize data collection to what is absolutely necessary
• We use privacy-enhancing technologies wherever possible
• We regularly review and improve our privacy practices

13.2 Default Privacy Settings

• All privacy settings default to the most protective options
• Users must actively opt-in to data sharing features
• Sensitive features require explicit user consent
• Privacy is the default, not an afterthought

14.1 Privacy Inquiries

14.2 Response Times

• We will respond to privacy inquiries within 30 days
• Urgent requests will be addressed within 72 hours
• We provide multiple contact methods for accessibility
• We offer support in multiple languages where possible

15.1 Policy Updates

• We may update this policy to reflect changes in our practices or legal requirements
• We will notify you of any material changes at least 30 days in advance
• You will be required to accept updated policies to continue using our services
• Previous versions of the policy will be archived and available upon request

15.2 Notification Methods

• In-product notifications for policy changes
• Email notifications for significant updates
• Clear summaries of what has changed
• Easy access to both old and new policy versions

16.1 Internal Enforcement

• We have internal procedures for handling privacy complaints
• We conduct regular privacy audits and assessments
• We maintain a privacy incident reporting system
• We provide training to all employees on privacy requirements

16.2 External Dispute Resolution

• You can file complaints with relevant privacy authorities
• We participate in alternative dispute resolution programs
• We maintain relationships with privacy advocacy organizations
• We are committed to resolving disputes fairly and promptly