Privacy Policy

Effective Date: 2 August 2013  •  Last Updated: 12 August 2025

PDPA (Malaysia) Transparency Security

This Privacy Policy explains how Lotus’s (“we”, “our”, “us”) collects, uses, stores, and protects your personal information when you interact with our websites, mobile apps, and services. We comply with the Personal Data Protection Act 2010 (PDPA) and other applicable laws.

1) Information We Collect
  • Identity: name, NRIC/passport, date of birth, gender.
  • Contact: email, phone, billing/shipping address.
  • Account: login credentials, loyalty details, preferences.
  • Transactions: orders, payment method, refunds, vouchers.
  • Technical: IP, device/browser data, cookies, analytics.
  • Marketing: opt-in status, campaign interactions.
2) How We Collect Your Data
  • Account creation and profile updates.
  • Purchases in-store or online, delivery & order tracking.
  • Newsletter sign-ups, contests, surveys, customer service chats/calls.
  • Cookies and similar technologies when you browse our services.

Where required, we will seek your consent before collecting or processing certain personal data.

3) How We Use Your Data
  • Process and fulfil orders; provide delivery and returns.
  • Manage accounts, loyalty programs, and customer support.
  • Personalise content, offers, and communications (with consent).
  • Improve our website, apps, products, and user experience.
  • Detect and prevent fraud; ensure network and information security.
  • Comply with legal, regulatory, and tax obligations.
4) Sharing Your Information

We do not sell your personal data. We may share it with:

  • Service providers (payments, delivery, IT, analytics, marketing).
  • Affiliates/partners for joint services or loyalty programs.
  • Authorities when required by law or to protect our rights.

All third parties are bound by contracts to process data securely and only for specified purposes.

5) Data Security

We use administrative, technical, and physical safeguards to protect personal data. While we strive for the highest standards, no method of transmission or storage is completely secure.

6) Data Retention

We retain personal data only as long as necessary for the purposes described above or as required by law (e.g., accounting and regulatory requirements).

7) Your Rights (PDPA)
  • Access the personal data we hold about you.
  • Request correction of inaccurate or incomplete data.
  • Withdraw consent for specific processing activities.
  • Request deletion, subject to legal and contractual constraints.

To exercise your rights, please contact us (see “Contact Us”). We may need to verify your identity before processing the request.

8) Cookies & Tracking

Cookies help us remember your preferences and measure performance. You can manage cookies via your browser settings; disabling some cookies may affect site functionality.

9) International Data Transfers

If personal data is processed outside Malaysia, we implement appropriate safeguards (e.g., contractual clauses) to ensure an equivalent level of protection.

10) Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be posted on this page with the revised “Last Updated” date.

11) Contact Us

Email lotusshelpline@lotuss.com.my Phone 1300 13 1313 Address Level 3, No.3, Jalan 7A/62A, Bandar Menjalara, 52200 Kuala Lumpur, Malaysia

By using our services, you acknowledge that you have read and understood this Privacy Policy.