This Privacy Policy ("Policy") explains the manner in which your personal information collected from or provided by you is processed, disclosed and safeguarded.

We are committed to ensuring your personal information is protected. We pledge to fully comply with the requirements of the Personal Data Protection Act 2010 ("PDPA"). The following discloses our information and gathering and dissemination practices.

  1. The Application of this Policy
    This Policy applies to personal data and information in any form, whether electronic or written, regarding guests and other individuals who enters into transaction with us. The Policy conveys our commitment to protect your personal information.

  2. Our collection of Personal Information
    The term "personal data" in this Policy refers to personal information which is capable of identifying you as an individual. You can visit our website without providing any personal data or information. When we need to collect personal data from you to provide you with a particular service, we will ask you to voluntarily supply us with the information we need.

  3. Types of Personal Information we collect
    The types of personal data that we process include but not limited to:

    • your name and address, contact information, Identity Card/Passport and Visa information;
    • guest stay information, date of arrival and departure, goods and services purchased, special requests made, observations about your service preferences, telephone numbers dialed and faxes and telephone messages received;
    • your credit card details, bank account details, email address, profile or password details and any frequent flyer or travel partner programmed affiliation;
    • any information necessary to fulfill special requests;
    • your reviews and opinions about our services;
    • Information shared with third party social media websites and services through our site (such as Facebook/Twitter) will be governed by their privacy policies.
    • Information that is gathered through registration that you specifically give us;

  4. Our commitment to Data Security
    To maintain the accuracy of your personal data, as well as preventing unauthorized access to and ensuring the correct use of your personal data, we have carried out appropriate physical, electronic and managerial measures to safeguard and secure the personal data we collect. These measures are subject to ongoing review and monitoring. Whilst we make every effort to protect your personal data, no security measures can guarantee that your personal data and information will not be subject to interference, misuse or hacking and we shall not be responsible for any loss, misuse or alteration arising as a result of such incidents.

  5. How we use your information and whom we may disclose it to
    The information that we collect about you is used to help you access the services or acquire the goods that we provide more easily. We will use reasonable endeavors to keep the information we collect from you confidential. We do not sell, rent, loan, trade or lease your personal data stored in our database to any third parties. We may disclose the personal information, other information or data we collect from you if:

    • disclosure of information to our service providers, agents or business partners and affiliates that we work with in connection with our business;
    • in circumstances where we believe that disclosure is required under the law, to cooperate with regulators or law enforcement authorities; or to enforce our Terms of Use or other agreements; or to protect our rights, property or safety of us, our customers or others. The foregoing includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk protection;
    • In the event that we or substantially all of its assets are acquired by or merged with another, your personal information may become subject to a different privacy policy;
    • We may contract with third parties who do analysis and development on our behalf. We may share your information with such a third party provided that such third party uses the information only to perform services as requested by us and agrees to maintain the information as strictly confidential.
    • We may also use your information to send you promotional material, which you may find of interest. If you do not wish to receive any such material you may simply choose to "unsubscribe" from our mailing lists or inform our Personal Data Protection Officer in writing and no further material will be sent to you.

  6. Rights of Access and Correction
    You have the right to request to access and correct your Personal Data in our records (subject always to exemptions provided under the PDPA or other laws).

    You may request for access to or correction of your Personal Data or limit the processing thereof by submitting your written request to us via :
    StarCity Hotel Alor Setar
    No. 88, Jalan Pintu Sepuluh,
    05100 Alor Setar,
    Kedah Darul Aman.
    Tel : +604-7355 888
    Fax : +604-7355 999
    Email :

    We reserve the right to impose a reasonable administrative fee for access of your Personal Data by you as permitted under the Personal Data Protection Act.

  7. Storage of data
    Any personal information that we collect about customers including email addresses will be kept in a database. We will take all steps reasonably necessary to ensure that the database is treated securely and in accordance with this Privacy Policy Statement, and to protect against unauthorized access to or unauthorized alteration, disclosure or destruction of data.

  8. Links to Third Party Website
    The Websites may contain links to third parties' websites. Please note that we are not responsible for the collection, use, maintenance, sharing or disclosure of data and information by such third parties. If you provide information directly to such sites, the privacy policy and terms of service on those sites are applicable and we are not responsible for the information processing practices or privacy policies of such sites.

  9. Consequences of Refusal / Failure to Provide Personal Data
    The Personal Data provided to us are wholly voluntary in nature. However should your refusal or failure to provide the Personal Data results in the following, we shall not be held liable for any of the consequences arising therefrom:

    1. the inability of parties to formalize and/or carry out the relevant agreement or transaction in relation to our product and/or services;
    2. the inability for us to provide you with the information, notices, services and/or products requested;
    3. the inability for us to update you with the latest promotion, product and/or services and obtaining your feedbacks on our products and/or services;
    4. the inability of the relevant third parties to provide product and/or services to you on our behalf.

  10. Third party consent
    In the event you have provided personal data of third parties (e.g. your emergency contact person, authorized representatives) to us, we rely on you to and deem that you have sufficiently obtained the prior consent of such third parties to allow us to process their personal data in relation to the Purpose and you have advised them to read our Personal Data Protection Notice and Policy.

Changes to our Personal Data Protection Policy

We may, from time to time, without prior notice to you, be required to change our Personal Data Protection Policy to comply with or be consistent with changes in the applicable law and regulations as well as our business operations or policies. As such, we encourage you to check our Personal Data Protection Policy at our website from time to time.