top of page

Privacy Policy

Privacy Notice and Personal Data Protection Policy

The Church of St. Francis of Assisi (SFA) ("the Church," "we," "us," or "our") respects your privacy and is committed to protecting your personal data in accordance with the Personal Data Protection Act 2010 (PDPA) of Malaysia.

This Privacy Policy explains how SFA collects, uses, discloses, and safeguards your personal data when you visit our website (www.sfa.org.my), register as a parishioner, participate in our ministries, or engage with our services.

1. Personal Data We Collect

We may collect the following types of personal data from parishioners, volunteers, donors, and website visitors:

  • Identity Data: Name, NRIC/Passport number, date of birth, gender, marital status, and nationality.

  • Contact Data: Residential address, email address, and telephone/mobile numbers.

  • Sacramental & Religious Data: Baptismal records, confirmation records, marriage records, and parish census information.

  • Financial Data: Bank account details, credit card information, or e-wallet details used strictly for processing donations, tithes, or mass offerings.

  • Technical Data: IP address, browser type, and operating system collected automatically through cookies when you visit our website.

 

2. How We Collect Your Data

We collect your personal data through the following methods:

  • When you complete forms for parish registration, catechism, sacraments (Baptism, Confirmation, Matrimony), or RCIA.

  • When you make a donation, pledge, or mass offering.

  • When you sign up to volunteer for a church ministry or event.

  • When you communicate with the SFA Parish Office via email, phone, or in person.

  • Through CCTV recordings when you visit the church premises (for security purposes).

 

3. Purpose of Data Collection

The personal data you provide will be processed for the following purposes:

  • Pastoral Care & Administration: To maintain SFA’s parish census and register you for sacraments and catechism classes.

  • Communication: To send you parish updates, newsletters, event invitations, and important announcements.

  • Financial Processing: To process and acknowledge your tithes, pledges, donations, and mass offerings.

  • Ministry Coordination: To organize volunteer rosters, BEC (Basic Ecclesial Community) activities, and ministry work.

  • Legal Compliance: To comply with any legal or regulatory requirements applicable to religious organizations in Malaysia, including directives from the Archdiocese of Kuala Lumpur.

 

4. Disclosure of Personal Data

SFA maintains strict confidentiality regarding your personal data. We will not sell or rent your data to third parties. However, we may disclose your personal data to:

  • The Archdiocese of Kuala Lumpur: For overarching pastoral, administrative, and sacramental record-keeping.

  • Authorized Service Providers: Third-party vendors who assist us with IT support, web hosting, data storage, and payment processing, all of whom are bound by confidentiality agreements.

  • Law Enforcement or Regulatory Bodies: If legally required to do so under Malaysian law.

 

5. Data Security and Protection

We implement reasonable administrative, technical, and physical security measures to protect your personal data from unauthorized access, accidental loss, alteration, or disclosure. All physical records are kept securely in the Parish Office, and digital records are protected by passwords, restricted access and encryption.

 

6. Retention of Personal Data

We will only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, or as required for legal, historical, or canonical documentation (e.g., Sacramental registers are kept permanently in the archives). Data that is no longer required will be securely destroyed or anonymized.

 

7. Website Cookies

Our website (www.sfa.org.my) may use cookies to improve user experience. Cookies are small files stored on your device that help us analyze website traffic and remember your preferences. You can choose to disable cookies through your web browser settings, though this may limit certain functionalities of the SFA website.

 

8. Your Rights Regarding Your Personal Data

Under the PDPA, you have the right to:

  • Request Access: You may request a copy of the personal data we hold about you.

  • Request Correction: You may update or correct any inaccurate or incomplete personal data.

  • Withdraw Consent: You may withdraw your consent for SFA to process your personal data for specific communications (e.g., opting out of SMS or email newsletters). Please note that withdrawing consent may affect our ability to provide you with certain pastoral services.

 

9. Contact Us

If you have any questions about this Privacy Policy, wish to update your records, or want to exercise your rights under the PDPA, please contact SFA's Parish Office:

Church of St. Francis of Assisi

7th Mile, Jalan Cheras,

43200 Cheras, Selangor, Malaysia.

Phone: +603-9080 6973 / 016-325 8236

Email: stfrancisassisi@archkl.org

Office Hours: Mon - Fri (9:00 AM - 5:00 PM)

This policy was last updated on: June 2026

bottom of page