🔒 Privacy Policy
Q10 Pharmacy Voucher System
Last Updated: March 3, 2026
Effective Date: March 3, 2026
1. Introduction
Q10 Pharmacy ("we", "our", or "us") is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our voucher system, in full compliance with Malaysia's Personal Data Protection Act 2010 (PDPA).
2. What Personal Data We Collect
When you sign up for a voucher, we collect:
- Full Name (as per your IC/NRIC or Passport)
- Phone Number (mobile number for SMS/WhatsApp notifications)
- Voucher Usage Data (voucher code, redemption status, date of use)
- Outlet Information (which Q10 outlet you redeemed at)
We do NOT collect: Email addresses, home addresses, credit card information, or medical records through the voucher system.
3. Why We Collect Your Data (Purpose)
We collect your personal data for these specific purposes:
- To generate and manage your discount vouchers
- To verify your identity at redemption (prevent fraud)
- To send you voucher expiry reminders via browser notifications
- To prevent duplicate voucher claims (one voucher per customer per type)
- To analyze voucher program performance (anonymized data only)
- To comply with legal and regulatory requirements
4. Legal Basis for Processing
We process your personal data based on:
- Your Consent: You explicitly agree to provide your data when signing up
- Contract Performance: To fulfill our voucher offer to you
- Legitimate Interest: To prevent fraud and manage our business operations
5. How We Use Your Data
- Voucher Generation: Create your unique voucher code linked to your phone number
- Verification: Match your phone number with voucher code at redemption
- Notifications: Send browser push notifications 5 days before expiry (if you enabled notifications)
- Analytics: Track total vouchers issued, redemption rates, and outlet performance (anonymized data)
- Customer Support: Staff can look up your voucher if you forget your code
6. How We Store and Protect Your Data
Storage:
- Data stored securely on Cloudflare Workers KV (encrypted cloud storage)
- Servers located in Singapore and Asia-Pacific region
- Access restricted to authorized staff only (password-protected admin panel)
Security Measures:
- ✅ HTTPS encryption for all data transmission
- ✅ Admin dashboard requires password authentication
- ✅ Outlet staff use PIN codes to redeem vouchers (prevents unauthorized redemption)
- ✅ No public access to customer database
- ✅ Regular security audits and updates
7. Who We Share Your Data With
We do NOT sell your data to third parties.
We only share your data with:
- Q10 Staff: Pharmacists and cashiers at our outlets (for voucher verification only)
- Cloudflare: Our cloud infrastructure provider (under strict data processing agreements)
- Legal Authorities: If required by Malaysian law or court order
8. How Long We Keep Your Data
- Active Vouchers: Stored until expiry date + 30 days
- Redeemed Vouchers: Kept for 2 years (for financial records and tax purposes)
- Expired Unused Vouchers: Deleted after 90 days
After these periods, your data is permanently deleted from our systems.
9. Your Rights Under PDPA 2010
You have the following rights:
- Right to Access: Request a copy of your personal data we hold
- Right to Correction: Ask us to correct inaccurate information
- Right to Withdraw Consent: Stop us from processing your data (note: this may prevent voucher use)
- Right to Data Portability: Request your data in a common format
- Right to Complain: Lodge a complaint with the Personal Data Protection Commissioner
10. Browser Notifications
Our voucher pages request permission to send browser notifications. These are:
- Optional: You can decline notification permission
- Limited: Only 1-2 reminders before voucher expiry
- Privacy-Friendly: Notifications are stored locally on your device
- Controllable: You can disable them anytime in browser settings
11. Cookies and Tracking
Our voucher system uses minimal tracking:
- Session Storage: To remember if you dismissed notification prompts (cleared when you close browser)
- Local Storage: To save your voucher code for quick access (only on your device)
- No Third-Party Cookies: We don't use Google Analytics, Facebook Pixel, or other trackers
12. Children's Privacy
Our voucher system is intended for adults (18+). We do not knowingly collect data from children under 18. If we discover we have collected data from a minor, we will delete it immediately.
13. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. Significant changes will be notified via a banner on our website.
14. Data Protection Officer
For privacy matters, you can contact our Data Protection Officer:
Name: Q10 Pharmacy Management
Contact: Visit any Q10 outlet or call the numbers below
⚠️ Important: By signing up for a voucher, you confirm that:
- You have read and understood this Privacy Policy
- You consent to the collection and use of your data as described
- The information you provide is accurate and complete
- You are 18 years old or above
15. Governing Law
This Privacy Policy is governed by the laws of Malaysia. Any disputes arising from this policy shall be subject to the exclusive jurisdiction of the Malaysian courts.
16. Compliance
We comply with:
- Personal Data Protection Act 2010 (PDPA) - Malaysia
- Personal Data Protection Standards issued by the Commissioner
- Industry best practices for data security and privacy
Questions or concerns? Contact us via WhatsApp (011-5681186 / 011-6586090) or visit any Q10 Pharmacy outlet.
← Back to Q10 Pharmacy