Enjoy complimentary delivery within Malaysia for orders of RM350 and above          Get 10% OFF with your first purchase, Use coupon code FIRST10

0
  • No products in the cart.
Total:RM0.00

PRIVACY POLICY

Last Updated: 18th January 2026

A
1. INTRODUCTION

A

Ally Bay Natural Beauty & Health [Company No.: 201803360520 (PG0461054-A)] respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, disclose, and safeguard your personal data when you visit or interact with our website www.allybay.com.my (“Website”), make a purchase, subscribe to our mailing list, or engage with us through any communication channels. This Privacy Policy is prepared in accordance with the Personal Data Protection Act 2010 (PDPA). For this policy, Ally Bay Natural Beauty & Health is the “data controller,” responsible for determining how your personal data is processed.

Contact Details
Company Name: Ally Bay Natural Beauty & Health
Address: C-3-1, Vantage Desiran Tanjung, Jalan Tanjung Tokong, 10470 Tanjung Tokong, Penang, Malaysia
Email: askme@allybay.com.my

To ensure your personal data is accurate and up to date, please notify us of any changes by emailing: askme@allybay.com.my

A

2. HOW WE COLLECT YOUR PERSONAL DATA

A

We collect your personal data in the following ways:

A

(a) Information You Provide Directly
This includes any data you submit when you create an account on our website, complete a purchase, send inquiries or feedback, request assistance, or communicate with us via email, telephone, text messaging, social media platforms, or online forms.

A

(b) Information Collected Automatically
We may automatically gather certain technical and usage data through cookies, log files, analytics tools, and other tracking technologies. These tools help us better understand user behaviour, diagnose technical issues, enhance website functionality, and personalise your browsing experience.

A

(c) Children’s Privacy
Our website is not intended for individuals under the age of 18, and we do not knowingly collect personal data from minors. If we discover that information has been provided by a person under 18 without parental or legal guardian consent, we will promptly delete it. By submitting your personal data, you confirm that you are at least 18 years old.

A
3. PURPOSES OF PROCESSING YOUR PERSONAL DATA

A

The purposes of collecting and processing  your personal data:-

a) To process, manage, verify, and complete your purchase transactions
b) To process and verify payment information
c) To deliver goods and/or services purchased
d) To maintain transaction and purchase records
e) To provide marketing, promotional, and product information
f) To analyse purchasing patterns, preferences, and overall customer behaviour
g) To manage and verify membership or loyalty programmes (where applicable)
h) To send updates on products, rewards, promotions, news, or events
i) To process product returns, warranty claims, and exchanges
j) To respond to complaints, inquiries, or customer service requests
k) To improve our Website, services, and customer experience
l) To comply with legal, regulatory, tax, and audit requirements
m) To prevent fraud or misuse of services

A

Types of Personal Data Collected

Depending on the purpose of the interaction, we may collect your name, address, phone number, email address, delivery and billing details, purchase and transaction information, payment details (processed securely through authorised third-party payment providers), as well as any communication records related to inquiries, feedback, or service requests.

A

Sensitive Personal Data

We do not collect sensitive data such as race, ethnicity, religion, political opinions, health information, or criminal records.

A
4. USE AND DISCLOSURE OF PERSONAL DATA

A

We may share your personal data with authorised internal personnel, service providers supporting our operations (including IT services, website hosting, analytics, logistics, and payment processing), professional advisers such as lawyers, auditors, bankers, and insurers, government or regulatory authorities where required by law, and business partners or third-party vendors involved in fulfilling orders or providing related services. Only the information necessary for each purpose is disclosed, and all parties are required to handle your data in compliance with applicable data protection laws. Aggregated and non-identifiable information may also be used for analytics, performance monitoring, and service enhancements.

A
5. DATA SECURITY

A

We implement appropriate technical and organisational measures to protect your personal data, including restricted access controls, secure servers, encrypted systems, and cybersecurity tools designed to prevent unauthorised access, disclosure, or alteration. While we take all reasonable steps to safeguard your information, no method of data transmission or storage over the Internet can be guaranteed as completely secure. By using our website and providing your personal data, you acknowledge that such transmission is undertaken at your own risk.

A
6.  PERSONAL DATA RETENTION

A

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, as well as to comply with legal, tax, audit, or regulatory obligations. In accordance with applicable tax laws, certain customer information, including identity details, financial records, and transaction data, must be preserved for a minimum of seven (7) years. Once retention is no longer required, your data will be securely deleted or anonymised.

A
7. INTERNATIONAL DATA TRANSFERS

A

Your data may be stored or processed on servers located outside Malaysia when using international service providers (e.g., payment gateways, cloud hosting). All transfers are conducted with adequate safeguards in accordance with PDPA requirements.

A
8. THIRD-PARTY LINKS

A

Our Website may contain links to third-party websites, plug-ins, or applications. We are not responsible for the privacy practices, content, or security of these external sites. We recommend reviewing their privacy policies before providing any personal information.

A
9. EMAIL MARKETING & COMMUNICATION PREFERENCES

A

We may send you marketing communications if you have made a purchase from us, subscribed to our mailing list, or provided consent to receive promotional updates. You may opt out of marketing emails at any time by clicking the “Unsubscribe” link included in our messages or by contacting us at askme@allybay.com.my. Please note that unsubscribing will not affect the delivery of essential service-related or transactional communications required to manage your orders or account.

A
10. YOUR RIGHTS UNDER THE PERSONAL DATA PROTECTION ACT

A

Under the Personal Data Protection Act (PDPA), you have the right to request access to your personal data, seek corrections of inaccurate or outdated information, withdraw consent for processing, restrict certain types of processing where applicable, and opt out of marketing communications at any time. All requests must be submitted in writing to askme@allybay.com.my. Please note that a reasonable administrative fee may apply for data access requests as permitted by law.

A
11. COOKIES AND TRACKING TECHNOLOGIES

A

We also use cookies and similar tracking technologies to enhance your browsing experience, including analytical, performance, and functional cookies. These help us understand website usage, improve performance, and support essential features. You may disable cookies through your browser settings; however, doing so may affect certain functions or features of the Website.

A
12. TRADEMARK POLICY

A

The name Ally Bay Natural Beauty & Health, including all related trademarks, service marks, logos, product names, brand identifiers, and associated intellectual property, are owned exclusively by Ally Bay Natural Beauty & Health and are protected under the Trademarks Act 2019 and other applicable intellectual property laws of Malaysia. The use of our website, services, or access to this Privacy Policy does not grant any licence, right, or permission to use our trademarks without prior written consent. References to our trademarks within this Privacy Policy are for identification and informational purposes only. They are separate from matters relating to the collection, processing, and protection of personal data, which are governed by the Personal Data Protection Act 2010. Any unauthorised use, reproduction, or misrepresentation of our trademarks is strictly prohibited

A

13. CHANGES TO THIS PRIVACY POLICY

A

We may update this Privacy Policy from time to time. Any revisions will include a new “Last Updated” date and take effect once posted on our Website. We encourage you to review this page periodically.