Your trust is our foundation

Name: NutriHarmoni
Address: Level 15, Menara 3, Petronas Tower, Kuala Lumpur City Centre, 50088 Kuala Lumpur, Malaysia
Telephone: +60 3-2383 1234

We practice radical transparency about your data. This policy explains exactly what we collect, why we need it, and how we protect your privacy during every consultation and interaction with NutriHarmoni.

Questions? Contact our team

How we handle your personal data

At NutriHarmoni, we only collect information that directly supports your nutritional journey. When you book a consultation, we ask for your name, email, and preferred appointment time to schedule your session securely. For deeper personalization, you may choose to share dietary preferences, health goals, or medical history—but this is always optional and shared with explicit consent.

We never sell your data to third parties. All information is stored on encrypted servers, accessible only to our nutritionists during your active consultation period. Once your package concludes, you can request full data deletion at any time.

Real-world scenario: A busy Kuala Lumpur office worker books a lunch-break consultation. We store her email and availability for 48 hours to confirm the slot. After the session, her notes are anonymized for internal methodology refinement—her identity remains private.

Encryption Status

AES-256 Active

Data Retention: Session-based

Access: Consultant-only

3rd Parties: None

Privacy Pillars

Consent First

Every piece of data is collected with explicit opt-in. You control what you share and can revoke access anytime.

Secure Storage

Hosted on Malaysia-compliant servers with enterprise-grade encryption. Regular security audits ensure safety.

No Sale Policy

We do not sell, trade, or rent your personal information to advertisers or data brokers. Period.

Your Rights (PDPA Compliance)

Under Malaysia's Personal Data Protection Act, you have the right to access, correct, and delete your data. We provide a clear process for all requests within 30 days.

Technical Specifics & Data Flow

Here's precisely what happens to your data from the moment you engage with NutriHarmoni:

• Booking: Your name, email, and preferred time are encrypted in transit (TLS 1.3) and at rest.
• Consultation: Session notes are anonymized. If you consent, anonymized data may be used to refine our methodology, but never linked to your identity.
• Post-Consultation: You may opt-in to receive follow-up resources. These are sent via our secure email provider and you can unsubscribe in one click.
• Retention: Raw personal data is deleted 90 days after your final session, unless you request earlier deletion.

Process Note: We use a ticket-based system for data requests. This ensures accountability and a clear audit trail for compliance.

Infrastructure: Our data centers are ISO 27001 certified.

Quote

"We built our systems assuming a breach could happen. That's why minimization is our default."

— NutriHarmoni CTO

0

Data Breaches to Date

30 Days

Max Response Time

Business & Partner Lens: Key Questions

For partners, employers, or any stakeholder evaluating our privacy posture.

Where is NutriHarmoni's data hosted?

Primarily on AWS Singapore regions (AP-Southeast-1), chosen for robust security and proximity to our user base. All data is encrypted at rest and in transit. We do not host in jurisdictions with weak data protection laws.

What happens if there's a data breach?

We have a documented incident response plan. Impacted users are notified within 72 hours. We engage independent forensics, patch vulnerabilities immediately, and report to the Malaysian Communications and Multimedia Commission (MCMC) if required.

Can we audit your compliance?

Yes. For corporate clients or partners, we can provide a Data Processing Agreement (DPA) and share our latest security audit summary under NDA.

Do you use my data for AI training?

No. Your personal conversations and health data are never used to train generative AI models. If we ever use AI for internal tooling (e.g., anonymized pattern detection), it will be opt-in only.

How do you handle minor data?

We do not knowingly collect data from individuals under 18. If a minor is using our service (e.g., with parental consent), we require guardian approval for data processing.

What's your cookie policy?

We use strictly necessary cookies for session management and analytics (anonymized). You can manage preferences via our cookie banner. For details, see our Cookie Policy.

Need a copy of your data or have privacy concerns?

Reach out to our Data Protection Officer directly. We aim to respond to all privacy inquiries within 5 business days.

Contact Us Terms of Service

NutriHarmoni • Level 15, Menara 3, Petronas Tower, Kuala Lumpur City Centre, 50088 Kuala Lumpur, Malaysia

Phone: +60 3-2383 1234 • Email: [email protected] • Mon-Fri: 9:00-18:00