Privacy Policy

Last updated: January 2026

1. Who we are

Sunway Medical Centre Sdn Bhd (Company No. 200201008007) is a licensed private hospital operating in Bandar Sunway, Selangor, Malaysia. We comply with the Personal Data Protection Act 2010 (PDPA) and international healthcare privacy standards.

2. What data we collect

• Identity & contact details (NRIC / Passport, name, phone, address, email)
• Medical & clinical information relevant to your care
• Insurance and payment information
• Website usage data (cookies, analytics)

3. How we use it

• To provide, record and bill for clinical & hospital services
• To communicate with you regarding appointments, treatment and follow-up
• To meet legal, regulatory, MOH and insurance obligations
• To improve our services & conduct anonymised research (where consent is given)

4. Sharing your data

We do not sell personal data. We share only where necessary — with your insurer (with consent), referring clinicians, legally authorised regulators (e.g. Ministry of Health), or when required by Malaysian law.

5. Your rights under the PDPA

You have the right to access, correct and limit the processing of your personal data. To exercise these rights, email privacy@sunwaymedical.com.

6. Data retention

Clinical records are retained for a minimum of 7 years from date of last treatment, in line with the Private Healthcare Facilities & Services Act 1998 and good professional practice.

7. Cookies

Our website uses cookies for essential functionality and, with your consent, analytics. You can manage your preferences via your browser settings.

8. Contact us

Questions about privacy? Email privacy@sunwaymedical.com or write to the Data Protection Officer, Sunway Medical Centre, 5 Jalan Lagoon Selatan, Bandar Sunway, 47500 Selangor.