Privacy Policy

Privacy Policy (PDPA)

This policy explains how HalalBizs collects, uses, and protects your personal data in line with Malaysia's Personal Data Protection Act 2010 (PDPA).

1. Data we collect

Account details (name, email, phone), delivery addresses, order and payment metadata (we do not store full card numbers), device/usage data, and content you submit (reviews, messages, support tickets).

2. How we use it

To process and deliver orders, prevent fraud, provide support, personalise recommendations and search, operate loyalty/affiliate/subscription features, and meet legal/tax obligations (including e-invoicing).

3. Sharing

We share the minimum necessary with the relevant seller (to fulfil your order), payment and logistics providers, and government authorities where legally required. We do not sell your personal data.

4. Retention

We keep data only as long as needed for the purposes above or as required by law (e.g. tax/e-invoice records).

5. Your rights

You may access, correct, or request deletion of your personal data, and withdraw consent for marketing, by contacting support. Some data must be retained to meet legal obligations.

6. Security

Data is transmitted over TLS and access is restricted. Backups are encrypted and access-controlled.

This is baseline copy pending review by qualified Malaysian legal counsel.