Skip to content

Privacy Policy

Last updated: 1 February 2025

1. Introduction

Seringgit Wellness Sdn Bhd (“Seimbang”, “we”, “us”, or “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our website at seimbang.my, our mobile applications, and our telehealth services (collectively, the “Platform”).

This policy is drafted in compliance with the Malaysian Personal Data Protection Act 2010 (PDPA) and its related regulations. By using our Platform, you consent to the collection and use of your personal data as described in this policy.

2. Information We Collect

We collect the following categories of personal data:

Personal identification information: Full name, email address, phone number, date of birth, gender, and mailing address.

Health and medical information: Health assessment responses, medical history, current medications, weight, height, BMI, existing health conditions, allergy information, and physician consultation notes. This is classified as sensitive personal data under the PDPA.

Payment information: Billing address and payment method details. Note that full credit card numbers are processed and stored exclusively by our PCI-compliant payment processor and are never stored on Seimbang servers.

Usage data: Information about how you interact with our Platform, including pages visited, features used, device information, browser type, IP address, and referring URLs.

Communication data: Records of your communications with our medical team, support staff, and coaching team, including WhatsApp messages, emails, and consultation transcripts.

3. How We Use Your Information

We use your personal data for the following purposes:

  • To provide and manage your telehealth consultations, including matching you with an appropriate physician and facilitating medical assessments.
  • To enable your prescribing physician to make informed treatment decisions and create personalised treatment plans.
  • To process and fulfil medication orders through our licensed pharmacy partners.
  • To provide ongoing care, follow-up consultations, progress monitoring, and coaching services.
  • To process your payments and manage your subscription.
  • To communicate with you about your treatment plan, appointment reminders, and service updates.
  • To improve our Platform, services, and user experience through aggregated analytics.
  • To comply with legal and regulatory obligations, including healthcare reporting requirements.
  • To send you health tips and educational content, where you have opted in to receive such communications.

4. Medical Information

Your medical information is classified as sensitive personal data under Section 40 of the PDPA. We apply additional safeguards to protect this data:

  • Medical data is accessible only to your assigned physician, authorised medical staff, and essential personnel directly involved in your care.
  • All medical consultations and records are stored using end-to-end encryption.
  • We do not use your medical information for marketing purposes.
  • Your medical records are retained for a minimum of 7 years in accordance with Malaysian medical record-keeping requirements, after which they are securely deleted.
  • We obtain your explicit consent before collecting and processing any sensitive personal data.

5. Data Sharing

We do not sell your personal data to third parties. We share your information only in the following circumstances:

  • Licensed physicians: Your health and medical data is shared with your assigned physician to provide medical consultations and treatment.
  • Pharmacy partners: Your prescription details and delivery address are shared with our licensed pharmacy partners to fulfil your medication orders.
  • Payment processors: Your billing information is shared with our PCI-compliant payment processor to facilitate transactions.
  • Delivery partners: Your name and delivery address are shared with our logistics partners for medication delivery.
  • Legal requirements: We may disclose your information if required by law, court order, or government authority, or to protect the rights, property, or safety of Seimbang, our patients, or the public.

All third-party service providers are contractually bound to handle your data in accordance with the PDPA and our data protection standards.

6. Data Security

We implement appropriate technical and organisational measures to protect your personal data from unauthorised access, alteration, disclosure, or destruction. These measures include:

  • End-to-end encryption for all medical data and communications.
  • TLS/SSL encryption for all data transmitted between your device and our servers.
  • Regular security audits and vulnerability assessments.
  • Role-based access controls limiting data access to authorised personnel only.
  • Secure data centres with physical access controls.
  • Employee training on data protection and security best practices.

While we take every reasonable precaution to protect your data, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee the absolute security of your information.

7. Your Rights

Under the PDPA, you have the following rights regarding your personal data:

  • Right of access: You may request access to the personal data we hold about you.
  • Right to correction: You may request that we correct any inaccurate or incomplete personal data.
  • Right to withdraw consent: You may withdraw your consent for the processing of your personal data at any time. Please note that withdrawing consent may affect our ability to provide certain services.
  • Right to data portability: You may request a copy of your personal data in a commonly used, machine-readable format.
  • Right to limit processing: You may request that we limit the processing of your personal data in certain circumstances.

To exercise any of these rights, please contact us at contact@seimbang.my. We will respond to your request within 21 days, as required by the PDPA.

8. Cookies

Our Platform uses cookies and similar technologies to enhance your browsing experience, analyse site traffic, and personalise content. Cookies are small text files stored on your device when you visit our website.

Essential cookies: Required for the Platform to function properly, including authentication, session management, and security. These cannot be disabled.

Analytics cookies: Help us understand how visitors interact with our Platform, allowing us to improve our services. These collect anonymised, aggregated data.

Marketing cookies: Used to deliver relevant advertisements and measure campaign effectiveness. These are only set with your consent.

You can manage your cookie preferences through your browser settings. Disabling certain cookies may affect the functionality of our Platform.

9. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by email or through a prominent notice on our Platform prior to the changes taking effect.

We encourage you to review this page periodically for the latest information on our privacy practices. The “Last updated” date at the top of this page indicates when this policy was last revised.

10. Contact

If you have any questions, concerns, or requests regarding this Privacy Policy or our data protection practices, please contact us:

Seringgit Wellness Sdn Bhd
Kuala Lumpur, Malaysia