Cookie Policy

Effective Date: 14/4/2026

1. INTRODUCTION

Euro Rent A Car Sdn Bhd and its subsidiaries/ associates (hereinafter refereed to “we,” “us,” or “our”) is committed to protecting the privacy and security of our customers / partners personal data (hereinafter referred to “you”, “your” or “yourself”). This Privacy Policy outlines how we collect, use, disclose, and safeguard your information in compliance with the Malaysian Personal Data Protection Act 2010 (PDPA) and, where applicable, the General Data Protection Regulation (GDPR).

2. TYPES OF DATA WE COLLECT

When we provide car rental services or chauffeur services, we collect:

• Identity Data: Legal Full name, NRIC/Passport number, and date of birth.

• Contact Data: Phone number, email address, and residential/billing address.

• Driving Credentials: Driver’s license details (domestic and international).

• Financial Data: Credit/debit card details and payment history where necessary.

• Vehicle Data: GPS location, mileage, and fuel levels (collected via telematics).

• Sensitive Data: Biometric data (if used for identity verification) and health data (if relevant to an accident claim).

3. PURPOSE OF PROCESSING

We process your data for the following reasons:

1. Contractual Necessity: To process your booking, verify your identity, and manage the rental agreement.

2. Legal Obligations: To comply with Malaysian transport laws, tax regulations, and police inquiries.

3. Safety & Security: To track vehicles for theft prevention and roadside assistance.

4. Marketing: To send you promotions (only with your explicit consent).

*4. CROSS-BORDER DATA TRANSFERS *

As we have affiliations Internationally, your personal data may be transferred to, stored at, or processed by our partners or parent companies located in all Global countries we operate in under the brand SIXT Car Rental

• Protective Measures: We ensure that all such transfers are protected by Standard Contractual Clauses (SCCs) or other legal mechanisms that provide a level of data protection equivalent to the PDPA and GDPR.

5. DISCLOSURE TO THIRD PARTIES

We may share your data with:

• Insurance Providers: For coverage and claims processing.

• Regulatory Authorities: JPJ (Road Transport Department), PDRM (Police), or other government bodies.

• Service Providers: Payment gateways and IT hosting services.

• European Affiliates: For seamless booking management if you rent across countries

6. DATA SECURITY AND RETENTION

• Security: We implement technical and organizational measures (encryption, firewalls, and access controls) to prevent unauthorized access. We endeavour to protect your data to the best of our capabilities

• Retention: We only keep your data for as long as necessary to fulfil the rental contract or as required by Malaysian law (typically 7 years for financial records).

7. YOUR RIGHTS

Under the PDPA and GDPR, you have the right to:

• Access & Correct: Request a copy of your data or update inaccuracies.

• Withdraw Consent: Opt-out of marketing communications at any time.

• Data Portability: Request your data in a structured, machine-readable format.

• Right to Erasure: Request the deletion of your data (subject to legal retention requirements).

8. MANDATORY BREACH NOTIFICATION

In the event of a data breach that poses a risk to your rights, we will notify the Malaysian Personal Data Protection Commissioner and yourself within 72 hours of discovery.

If you do not consent to us processing your personal data in the manner aforesaid, please let us know by contacting us at the contact details of our DPO stated below.

9. CONTACT OUR DATA PROTECTION OFFICER (DPO)

If you have questions regarding this policy or wish to exercise your rights, please contact:

Data Protection Officer: Fabian Leo

Email: Fabian@sixt.com.my

Phone: +6012-2381769

________________________________________