Legal
Privacy Policy
Loft & Fern ("we", "us", "our") is committed to handling personal information responsibly. This policy explains what information we collect, why we collect it, how we use it, and what rights you have in relation to it. We operate under Malaysian law, including the Personal Data Protection Act 2010 (PDPA).
If you have questions about this policy, please contact us at [email protected].
1. Who We Are
Loft & Fern is an interior design studio based at 25 Jalan Medang Serai, Bangsar, 59100 Kuala Lumpur, Malaysia. We provide interior design services including spatial consultations, design packages, and project management support.
2. Information We Collect
We collect personal information in the following ways:
Information you provide directly
- Name, email address, and phone number submitted via our contact form
- Property address or project details shared during consultations
- Messages or correspondence you send us
Information collected automatically
- Website usage data via cookies and analytics tools (see our Cookie Policy)
- Browser type, device information, and pages visited
- IP address and approximate location (city-level)
3. Why We Collect This Information
- To respond to enquiries — when you contact us, we need your details to reply
- To deliver our services — project work requires communication and documentation
- To improve our website — analytics help us understand which content is useful
- To comply with legal obligations — records required for business and tax purposes
The legal basis for processing is primarily your consent (when submitting the contact form), legitimate interests (website operation and service delivery), and contractual necessity (for active clients).
4. How We Use Your Data
Personal data is used solely for the purposes stated above. We do not sell, trade, or transfer your personal information to third parties for their own marketing purposes. We may share limited data with:
- Service providers who operate our website infrastructure or analytics (bound by data processing agreements)
- Contractors or suppliers where necessary to deliver a project you've engaged us for — only with your knowledge
- Regulatory authorities where legally required
5. Data Retention
We keep contact enquiry data for up to 24 months if no active project follows. Active client project records are retained for 7 years following project completion, in line with standard business and tax record requirements. You may request deletion at any time (subject to legal retention obligations).
6. Cookies
Our website uses cookies to improve your experience. For full details, see our Cookie Policy. You can manage your cookie preferences at any time.
7. Your Rights Under Malaysian PDPA
Under the Personal Data Protection Act 2010, you have the right to:
- Access the personal data we hold about you
- Correct inaccurate or outdated personal data
- Withdraw consent for data processing where consent is the basis
- Request that we cease processing your data for direct marketing purposes
To exercise these rights, contact us at [email protected]. We will respond within 21 days.
8. Data Security
We take reasonable steps to protect personal data from unauthorised access, loss, or disclosure. These include access controls, encrypted communication channels, and limited internal access. No transmission over the internet is entirely secure, and we cannot guarantee absolute security.
9. Third-Party Links
Our website may contain links to other sites. We are not responsible for the privacy practices of those sites. We recommend reviewing the privacy policy of any third-party site you visit.
10. Children's Privacy
Our services are intended for adults (18 years and over). We do not knowingly collect personal data from minors. If you believe a minor has submitted information to us, please contact us and we will arrange for its deletion.
11. Changes to This Policy
We may update this policy from time to time. The "Last Updated" date at the top of this page will reflect any changes. Continued use of our website following an update constitutes acceptance of the revised policy. For material changes, we will make reasonable efforts to notify active clients directly.
12. Contact
For any privacy-related questions or requests:
- Email: [email protected]
- Address: 25 Jalan Medang Serai, Bangsar, 59100 Kuala Lumpur, Malaysia
- Phone: +60 3-2201 3847