We use cookies. For more information on our cookie policy follow this link. By closing this message or continuing to browse the site, you are agreeing to our use of cookies on this device. Close

Privacy Policy

The Body Shop

At The Body Shop Malaysia, we take the protection for your Personal Information (such as name; address; phone number; date of birth; e-mail address; credit card number; gender) very seriously.

We collect Personal Information that you provide to us voluntarily on The Body Shop Malaysia website and its other related channels and process it for the following purposes ("Purposes"):

  • To complete transactions with you and manage your membership of our customer loyalty scheme where applicable;
  • to direct market to you;
  • to understand and analyse our sales, and your needs and preferences;
  • to develop, enhance, market and provide products and services to meet your needs;
  • to enable you to participate in promotions and contests;
  • to enable you to participate in customer research or focus groups;
  • to process exchanges or product returns;
  • to improve our services; and,
  • to respond to requests or complaints.

We may hold or process such Personal Information securely anywhere in the world, for as long as is necessary for the Purposes and we may only share it with franchisees, subsidiaries and subcontractors of The Body Shop Malaysia. We will treat such personal information in accordance with this Policy. This privacy policy covers The Body Shop Malaysia and its website www.thebodyshop.com.my and its related channels. We use Secure Sockets Layer (SSL) technology to protect your credit card information online.

We may communicate with you through a variety of channels, including through our stores, our customer loyalty schemes, and through the internet: website and social media channels like Facebook and Twitter, and through a variety of means such as post, email, phone, fax, or text message, subject to your preference. You may unsubscribe at any time by writing to us in the manner explained in our communications.

We use email to communicate news and special promotions to our members. If you'd rather not receive these messages, you can click the unsubscribe link on the email and you will be unsubscribed from the mail list immediately and without any cost.

The Body Shop Malaysia service is provided to you subject to the The Body Shop Malaysia Website Terms of Use and in accordance with the laws of Malaysia. The Body Shop Malaysia will act in accordance with current Malaysian legislation on personal information protection in this Policy and as far as practicable, aim to meet current Internet best practice.

Any promotions and contests hosted on The Body Shop Malaysia related channels such Facebook are in no way sponsored, endorsed or administered by, or associated with Facebook. You are providing your information to The Body Shop Malaysia for the Purposes of participating in the online activities orchestrated by The Body Shop Malaysia and not to Facebook.

Our web sites make use of cookies as well as beacons to help us provide a better user experience. You may choose to decline cookies if your browser permits, but doing so may affect your use of our Web Site and your ability to access certain features of the site or to engage in transactions.

Table of Contents:

1. Our Approach to Privacy
2. About Information Collection
3. Personal Information
4. Non-Personally Identifiable Information
5. When Is Personal Information Collected and How Is It Used?
6. Customer Consent (Opt In - Unsubscribe)
7. Accuracy of Information
8. Accessing and Updating Personal Information
9. Effective Date and Changes to the Privacy Policy
10. How Do We keep Your Information Secure?
11. Matters specific to the Internet
11.1 Links to Other Websites
11.2 Cookies - Beacons
12. Children
13. Compliance with the Law
14. Contacting Us

 

1. Our Approach to Privacy

1.1. At The Body Shop Malaysia, we recognise that the protection of your Personal Information is a very important principle in building trust and maintaining a good relationship with you. In this Privacy Policy the first person ("we", "our", "us", "ours") denotes The Body Shop Malaysia or any of its subsidiaries all connected to The Body Shop® brand (in short, "The Body Shop") responsible for the collection of the Personal Information and bound by this Privacy Policy. The second person ("you", "your", "yours") denotes you as the customer, or generally the individual providing Personal Information or any other information, being the subject matter of this Privacy Policy.

1.2. This Privacy Policy details our commitments and your rights regarding the Processing of your Personal Information for the use of Purposes as stated above.

1.3. We are responsible for the Personal Information under our control, including Personal Information disclosed by us to a Vendor (often referred to as the data processor). "Vendor" in this Privacy Policy means in relation to Personal Information any person or entity (other than an employee of The Body Shop Malaysia) who Processes the Personal Information on behalf of The Body Shop Malaysia. "Processing", in relation to Personal Information means for example obtaining, recording, holding or using the Personal Information in carrying out any operation or set of operations on the Personal Information including organisation, compilation, retrieval disclosure of the Personal Information for verification Purposes.

1.4. In certain specific instances, this Privacy Policy may also be supplemented by additional policies and terms, or by short Privacy Statements used in connection with particular purpose(s) or on various forms, which we may identify to be applicable.

1.5. We take every measure to provide a comparable level of protection for Personal Information should the information be Processed by a Vendor.

1.6. By providing your Personal Information, you consent to the collection and use or otherwise Processing (including disclosure) of your Personal Information in the manner and for the Purposes described in this Privacy Policy.

1.7. By providing your Personal Information, you consent to the collection and use or otherwise Processing (including disclosure) of your Personal Information in the manner and for the Purposes described in this Privacy Policy.

2. About Information Collection

2.1. We communicate with you through a variety of means and channels, including through our stores, our customer loyalty schemes, through the internet (via our information or selling web sites and other related digital channels) and whether by post, email, phone, fax, or text messaging on your mobile phone, although we do generally note that our preferred means of communication is email which has the least impact on the environment. Such communications may involve giving to you, as well as receiving information from you. Some of the information that we receive is personally identifiable information (as defined in section 3 below), while some information (particularly information collected through your access of our web sites) is non-personally identifiable information (as described in section 4 below). This Privacy Policy is primarily concerned with the Processing of Personal Information.

2.2. We provide you with information that explains why the Personal Information is needed and how the Personal Information will be processed.

3. Personal Information

3.1. We at The Body Shop Malaysia limit the amount and type of information that we collect to that which is necessary for the identified Purposes and do not collect your Personal Information unless you (directly or indirectly) provide it to us voluntarily.

3.2. Although the precise details of the Personal Information collected will vary according to the specific purpose, we may typically collect the following Personal Information from or in relation to you:

  • name;
  • address;
  • phone numbers(s);
  • date of birth;
  • email address;
  • gender;
  • identity card number or passport number

4. Non-Personally Identifiable Information

4.1. Where we collect information through our Web Sites, as is the case with many other web sites, we automatically collect certain non-personal information regarding web site use that does not identify you. Examples include the Internet Protocol (IP) address of your computer, the IP address of your Internet Service Provider, the date and time you access the web site, the internet address of the web site from which you linked directly to our Web Site, the operating system you are using, the sections of the web site you visit, the web site pages read and images viewed, and the content you download from our Web Site.

4.2. We may use non-personal information to compile tracking information reports regarding site user demographics, site traffic patterns, and site purchases. None of the tracking information in the reports can or will be connected to the identities or other Personal Information of individual users.

4.3. In this way, your visit to our Web Site will be logged; however, you will remain anonymous to us unless you specifically choose to share information with us. We use this information about the way in which our customers use our Web Site to better understand which features are most popular and best meet the needs of our visitors.

5. When Is Personal Information Collected and How Is It Used?

5.1. We at The Body Shop Malaysia collect Personal Information for the following purposes ("Purposes"):

5.1.1. to complete transactions with you and to administer sales and to manage/verify your membership with our customer loyalty scheme (if you become a member);

5.1.2. to direct market to you;

5.1.3. to understand and analyse our sales, and your needs and preferences;

5.1.4. to develop, enhance, market and provide products and services to meet your needs;

5.1.5. to enable you to participate in promotions and contests;

5.1.6. to enable you to participate in customer research or focus groups;

5.1.7. to process exchanges or product returns;

5.1.8. to improve our services;

5.1.9. to respond to requests or complaints

5.1.10. to enable you to participate in our customer loyalty schemes and manage your membership thereof.

5.2. We only keep Personal Information for as long as is necessary to satisfy the specified Purposes, for which it was collected. We retain Personal Information in accordance with our own guidelines, procedures and principles and in line with applicable legislation.

5.3.We may disclose your Personal Information to other subsidiaries within The Body Shop Malaysia group of companies or to a Vendor as explained in section 1.3 above. These subsidiaries will treat your Personal Information as confidential, in accordance with this Privacy Policy and with all applicable Data Protection legislation and will process such Personal Information only for the Purposes and within the terms set out herein.

5.4. We may disclose your Personal Information if we are required to do so by law or requirement of a competent authority.

5.5. In addition to the above, we may from time to time work on specific initiatives with carefully selected third party companies/organisations (outside of The Body Shop Malaysia) to share opportunities with you. If we do this, we will inform you at the time of such initiatives that, if you decide to submit any Personal Information, it will be shared with those selected companies/organisations and we will only do so with your prior consent.

5.6. You will always be given the opportunity to consent (opt in) to your information being shared pursuant to section 5.5, and the selected companies/organisations will be sufficiently identified to allow you to make an informed decision. If you do consent (opt in) and subsequently visit such companies'/organisations' websites, we cannot control how they use or otherwise process any Personal Information you provide directly to them. We always encourage you to check their sites' terms and conditions and privacy policy before you give out any Personal Information.

5.7. If you do consent (opt in) to receive these communications you may unsubscribe at any point in the future by contacting us as provided at section 6.4 below.

5.8. Where we need to collect your Personal Information for a purpose about which we have not previously informed you and that is not set out in this Privacy Policy, we will endeavour to notify you and obtain your consent before such collection, or in the event that this is not practicable, as soon thereafter as is reasonable. We will however only use your Personal Information for a purpose that has been specified prior to its use or where the Processing of your Personal Information is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract or Processing is necessary for other legal purposes.

6. Customer Consent (Opt In - Unsubscribe)

6.1. Opt In: We at The Body Shop Malaysia will not use your Personal Information for a purpose that has not previously been specified, unless we have previously obtained your consent or unless such purpose is required by law.

6.2. Consent to provide Personal Information is not a condition for our selling a product to you, unless the information requested is required to fulfill an explicitly specified and legitimate purpose.

6.3. In particular we will generally seek your explicit prior consent (opt in) before sending to you marketing communications (see 5.1.2 above) unless the exception stated in section 6.6 below applies.

6.4. Unsubscribe: At any time, you can withdraw your consent to our collection, use or disclosure (generally Processing) of your Personal Information by writing to us in the prescribed manner (whether by email or fax, etc), as specified in our communications to you, or in relevant forms that you might have signed (e.g. for our customer loyalty scheme). If you have any concerns whatsoever, with regard to the unsubscribe functionality that we make available to you, pursuant to this section, please contact us at the address or medium shown in section 14 of this Privacy Policy.

6.5. If you have previously opted into receiving commercial communications from us pursuant to 6.3 above, while also becoming a member of our loyalty scheme, should your membership to such scheme comes to an end for whatever reason, we will not take this to imply an automatic request to unsubscribe, and we will assume that we have your continued consent, unless you specifically unsubscribe, as is provided for in section 6.4.

6.6. Similar Products or Services (Soft-opt-in): In certain jurisdictions, it is permissible to send commercial communications by email even in the absence of explicit prior consent (opt-in) where the recipient's details have been collected in connection with the sale or negotiation for sale of products or services, irrespective of the conclusion of a contract, provided always that the sender’s identity is clearly stated and an unsubscribe option is given. This is usually referred to as the "Similar Products or Services exception", or as the "Soft-opt-in rule". Where this rule applies we may rely on it in order to send to you marketing communications that we think may be of interest to you, but we will make sure that this is made clear and that you are given the opportunity up-front to opt out from receiving such communications from us, whilst you will also always be given the opportunity to subsequently unsubscribe pursuant to section 6.4.

7. Accuracy of Information

7.1. We at The Body Shop Malaysia keep Personal Information as accurate, complete and up-to-date as necessary, taking into account its use and the interests of our customers.

7.2. You are responsible for informing us about changes to your Personal Information and for ensuring that such information is accurate and current.

8. Accessing and Updating Personal Information

8.1. Dependant on the legislation, some customers have a qualified right to access, rectify, delete, or object (to the processing of) your Personal Information stored by us and to receive an account of its use and disclosure. Where there is no such right provided by law, we may still allow access to such information. We recommend that all customer requests for access to Personal Information held by The Body Shop Malaysia be made in writing, although we will not impose a formal requirement in this regard. However, we may require you to provide us with additional information reasonably necessary for us to satisfy your request.

8.2. We amend the Personal Information contained in our database or elsewhere as required when an individual successfully demonstrates the inaccuracy or incompleteness of the Personal Information. An amendment may involve the correction, deletion or addition of information and notification to third party to whom the data have been disclosed. However, we may be unable to amend past purchase information or return transaction information.

9. Effective Date and Changes to the Privacy Policy

9.1. This Privacy Policy is effective as of 13 April 2012.

9.2. We reserve the right to change our Privacy Policy from time to time. If we decide to change our Privacy Policy, we will post those changes on our Homepage, indicating “Updated” where Privacy Policy is mentioned, so our users are always aware of what information we collect from them, how we use it, and under what circumstances, if any, we disclose this information to third parties. "Homepage” in this Privacy Policy means the homepage of the Web Site. "Web Site" in this Privacy Policy means the corporate web site of The Body Shop Malaysia (currently located at the following URL: http://www.thebodyshop.com.my) or any other related web site channels operated by The Body Shop Malaysia. Should you continue to use our services after our Privacy Policy changes you will be bound by those changes.

9.3. If at any point we decide that we wish to use Personal Information for any purpose other than, or in addition to the Purpose(s) listed in this policy (section 5 above) or from that stated at the time this information was collected, we will notify you by way of an email, unless we do not have your email address, in which case we will use any other means of communication available to us depending on the contact details that you have provided to us. We will only proceed with such use, if we receive your consent with respect to such additional Purposes (not previously communicated, or not previously included in this Privacy Policy.

10. How Do We keep Your Information Secure?

10.1. We at The Body Shop Malaysia protect Personal Information against loss or theft, as well as unauthorized access, disclosure, copying, use or modification with security safeguards appropriate to the sensitivity of the Personal Information, regardless of the format in which it is held.

10.2. We use various methods to safeguard Personal Information. They include:

10.2.1. physical measures: locked filing cabinets, restriction of access to offices, and company alarm systems.

10.2.2. technical tools: passwords and encryption, using generally industry best practices. Only authorized personnel with user ID and password from The Body Shop Malaysia have access to the information.

10.2.3. organisational controls: confidentiality agreements, limiting access on a need-to-know basis, staff training and security clearances.

10.3. Online security is also a priority. The Body Shop Malaysia incorporates security measures such as encryption and authentication tools to protect your Personal Information from unauthorized use. Firewalls are utilised to protect our servers and network from unauthorised users accessing and tampering with files and other information that we store.

10.4. We use Secure Sockets Layer (SSL) technology to protect your information online. Upon entering the checkout page your computer will begin communicating with our server in secure mode.

10.5. While The Body Shop Malaysia cannot guarantee that loss, misuse or alteration of data will not occur; The Body Shop Malaysia makes reasonable efforts to prevent such unfortunate occurrences.

10.6. You must remember to log off from The Body Shop Malaysia Membership and exit the browser window after use to disable any unauthorized party access. It is your responsibility at any time, not to divulge your personal user ID and password to any third party.

11. Matters specific to the Internet

11.1. Links to Other Websites

11.1.1. The Web Site or any of The Body Shop Malaysia various other Web Sites may contain links to other third party owned and operated web sites or internet resources. When you click on one of those links you are contacting another web site or internet resource. We have no responsibility or liability for or control over those other web sites or internet resources or their collection, use and disclosure (processing) of your Personal Information.

11.1.2. We encourage you to read the privacy policies of those other sites to learn how they collect and use information about you.

11.2. Cookies - Beacons

11.2.1. Our Web Site(s) make use of cookies as well as web beacons.

11.2.2. Cookies are small text files generated when you visit our Web Site(s) or use our online services that reside on your computer and can uniquely identify your browser. We use two types of Cookies: (a) a Session Cookie is used whilst you are viewing the web site and expire after you leave the web site. (b) a Registration Cookie is a small file that is generated when you register (log on) onto the web site and remains on the computer you registered from and is used to recognise you when you register (log on) again to the web site using the same computer. We use cookies on our Web Site to allow you to set your individual preferences and to help us provide a better user experience.

11.2.3. Cookies also help us to study traffic patterns on our Web Site, store user preferences and track user trends on our Web Site, so that we can understand which parts of our Web Site are popular and make browsing an even more rewarding experience for our users. We may also use cookies when you register on-line for services or information.

11.2.4. You may choose to decline cookies if your browser permits, but doing so may affect your use of our Web Site and your ability to access certain features of the site or to engage in transactions.

11.2.5. Tracking tags/Beacons: Each web page in our Web Sites contains tracking pixels that allow us to follow your progress through the various pages within the web site. This information is then aggregated (de-personalised) before being analysed.

12. Children

12.1. We will never knowingly collect or solicit Personal Information from individuals under the age of eighteen (18) without first obtaining verifiable parental consent. If you are under the age of 18 you should not provide information to us. If we become aware that a person under 18 has provided Personal Information to us without verifiable parental consent (as may be the case where the information is provided via one of our Web Site), we will remove such Personal Information from our files.

13. Compliance with the Law

13.1. The Body Shop Malaysia has procedures in place in order to receive and respond to enquiries about The Body Shop’s policies and practices relating to its handling of Personal Information. Any complaint or enquiry should be made in writing and addressed as shown in section 14 below.

13.2. The Body Shop investigates all complaints. Requests will be forwarded to the appropriate personnel. If the complaint is found to be justified, The Body Shop will take appropriate measures to resolve the matter, including, if necessary, amending its policies and practices.

14. Contacting Us

14.1.If there are any questions or concerns regarding this Privacy Policy or the data collection practices outlined herein, please contact us as follows:
By Email:
marketing.my@thebodyshop.com.my

By Mail:
Privacy Policy Enquiries,
Rampai-Niaga Sdn Bhd,
5 USJ 10/1C Subang Jaya,
Petaling Jaya 47610 Selangor,
Malaysia

Contact Us:
Tel: 603 5632 4313
Fax: 603 5632 4317

14.2. You are reminded not to send via unencrypted means (such as email) sensitive information such as passwords, credit card information etc. If you wish to unsubscribe, please refer to paragraph 6.4 above.