Mahutahu?! By Dr. Norlidah

Privacy Policy

Privacy Policy

Introduction Your privacy is very important to us. This policy outlines how we collect, use, and protect your personal information when you use our website https://mahutahubydrnorlidah.com (“Website”).

By providing us with your or your child(ren)’s data, you confirm that you are over 18 years of age.

Mahutahu?! By Dr. Norlidah (“we”, “us”, “our”) is the data controller responsible for your personal data.

Contact Details For any questions about this Privacy Policy or to update your personal information, please contact us at:

  • Email: infomahutahubydrnorlidah@gmail.com

It is important that the information we hold about you is accurate and up to date. Please notify us of any changes.

What Data We Collect and How We Use It We collect and process different types of personal data for specific purposes and based on lawful grounds, as follows:

  1. Communication Data: Includes messages sent via our contact form, email, text, or social media.
    • Purpose: To communicate with you, maintain records, and handle legal matters.
    • Legal Basis: Legitimate interest (responding to inquiries, record-keeping, and legal compliance).
  2. Customer Data: Includes name, title, billing and delivery addresses, email, phone number, purchase details, and payment information.
    • Purpose: To fulfill purchases and maintain records.
    • Legal Basis: Contract performance.
  3. User Data: Includes data on how you use our website, content you post, and interactions with online services.
    • Purpose: To ensure website functionality, maintain security, and optimize user experience.
    • Legal Basis: Legitimate interest (website and business administration).
  4. Technical Data: Includes IP address, login details, browser type, time spent on pages, and interaction history (collected via analytics tracking).
    • Purpose: To analyze website performance and improve marketing strategies.
    • Legal Basis: Legitimate interest (website improvement and business growth).
  5. Marketing Data: Includes your preferences regarding marketing communications.
    • Purpose: To send promotional content and evaluate marketing effectiveness.
    • Legal Basis: Consent or legitimate interest (business growth and marketing strategy).
  6. Sensitive Data: We do not collect sensitive personal data (e.g., ethnicity, religion, health, or political beliefs) or criminal records.

We only use personal data for the purposes collected, unless legally required or permitted otherwise.

How We Collect Your Data We collect personal data through:

  • Direct interactions (e.g., forms, emails, messages).
  • Automated technologies (e.g., cookies, analytics tools).

Marketing Communications Our marketing communications are based on consent or legitimate interests. You may receive marketing emails if you:

  • Have previously purchased from us or inquired about our services.
  • Have explicitly opted in to receive updates.

You may opt out at any time via the unsubscribe link.

Sharing Your Data We may share your data with:

  • Professional advisors (lawyers, accountants, insurers).
  • IT service providers (for website and system management).
  • Third-party software providers (to support our operations).

All third parties are required to handle your data securely and in compliance with legal obligations.

Data Security We implement security measures to protect your personal data from unauthorized access, alteration, disclosure, or loss. Access is restricted to employees and partners who need it for business purposes.

In case of a data breach, we will notify you and relevant authorities as required by law.

Data Retention We retain personal data only as long as necessary for:

  • Fulfilling contractual obligations.
  • Meeting legal, accounting, or regulatory requirements.

Tax-related records are kept for six years. Some anonymized data may be used indefinitely for research purposes.

Your Rights You have rights over your personal data, including:

  • Access: Request a copy of your data.
  • Correction: Request correction of inaccurate data.
  • Deletion: Request deletion of your data (where legally permissible).
  • Objection: Object to data processing for certain purposes.
  • Data Portability: Request transfer of your data to another entity.

To exercise these rights, email us at infomahutahubydrnorlidah@gmail.com.

Changes to This Privacy Policy We may update this policy from time to time. The latest version will always be available on our website.