E-LMK

This privacy policy applies to use of the E-LMK portal and services—that is, the Liquor Licence System operated by or on behalf of the Royal Malaysian Customs Department (RMCD). It is intended to explain what categories of personal data may be processed, the purposes of processing, reasonable safeguards, and users’ rights under Malaysian law. It does not replace legal advice; for specific matters, refer to the responsible officer or official RMCD channels.

For the purposes of Act 709, RMCD (through its designated system administration) acts as the data user in respect of personal data collected through E-LMK for official departmental purposes. The scope covers browser access, account sign-in, submission of liquor-licence-related applications, registration or management of authorised officer accounts, official communications through the system, and other interactions recorded by the application.

Categories of personal data that may be processed include, as applicable: name; national registration or other identity document numbers; email address and telephone number; business or premises address; company or applicant entity details; supporting documents required by law or RMCD procedures; and technical metadata relating to user sessions (for example brief IP address, browser type, timestamps) for security and audit purposes.

Personal data is processed for lawful, explicit purposes including: receiving, reviewing, and processing liquor licence applications and related matters; managing workflows and internal review according to role and data scope; sending notifications or official communications about applications; supporting audit, investigation, and legal compliance obligations; producing aggregated statistics where individuals are not identified unless required or permitted by law; preventing misuse, fraud, and unauthorised access; and maintaining the integrity of official RMCD records.

Processing is carried out on appropriate lawful bases under Malaysian law, including compliance with legal obligations, performance of public tasks, protection of legitimate interests of data subjects and third parties where necessary, and consent where consent is required for the nature of the transaction.

RMCD does not sell personal data to third parties for commercial purposes. Disclosure to other agencies or public authorities, or to contractors bound by confidentiality and data-processing instructions from RMCD, is made only to the extent required by law, court order, or for permitted official purposes, with appropriate safeguards.

Data is retained for as long as necessary to fulfil the stated purposes, including record-retention periods under RMCD policy and legal requirements. Reasonable technical and organisational measures—such as role-based access control, encryption in transit where appropriate, backups, and audit trails—are used to protect data against loss, unauthorised access, unlawful alteration, or disclosure.

Data subjects have the right to enquire about processing of their personal data and, where the law allows, to request correction of inaccurate data, restriction or objection to certain processing, or to lodge a complaint with the Personal Data Protection Commissioner, subject to procedures and exemptions under Act 709. For E-LMK-related requests, use official channels designated by RMCD (for example email or post to the officer identified in your official correspondence).

This site may use session cookies or similar technologies needed for secure sign-in and session handling. Server and application logs may be recorded for security, troubleshooting, and compliance; such information is handled according to the principle of minimum necessary personal data.

If the portal displays links to external sites, this privacy policy applies only to the E-LMK service. Third-party sites have their own privacy policies; users should read those terms before providing any personal data.

RMCD may update this policy from time to time to reflect changes in law, system operations, or good practice. The current version will be shown on this page with the update date. Continued use after updates may signify acceptance of the revised policy subject to applicable law.