1. Personal data that myFITBOX collects and the method of collection

Depending on how the customer interacts with myFITBOX (online, offline, over the phone, etc.), the various types of information collection is described below.

Personal contact information. This includes any information the customer provide to myFITBOX that would allow myFITBOX to contact the customer such as the customer's name, postal address, e-mail address, social network details, or phone number

Account login informationAny information that is required to give the customer access to  his or her specific account profile. Examples include login ID/email address, screen name, password in unrecoverable form, and/or security question and answer.

Demographic information & interestsAny information that describes the customer's demographic or behavioural characteristics. Examples include date of birth, age or age range, gender, geographic location (e.g. postcode/zip code), favourite products, hobbies and interests, and household or lifestyle information.

Information from computer/mobile deviceAny information about the computer system or other technological device that the customer uses to access the website or apps, such as the Internet protocol (IP) address used to connect the computer or device to the Internet, operating system type, and web browser type and version. If  the customer accesses a myFITBOX website via a mobile device such as a smartphone, the collected information will also include, where permitted,  the customer's phone’s unique device ID, advertising ID, geo-location, and other similar mobile device data.

Websites/communication usage information.  This includes information such as links  that are clicked on, which pages or content that is viewed and for how long, and other similar information and statistics about the customer's interactions, such as content response times, download errors and length of visits to certain pages. This information is captured using automated technologies such as cookies and web beacons, and is also collected through the use of third party tracking for analytics and advertising purposes. The customer has the right to object to the use of such technologies, for further details please see Section 4.

Market research & consumer feedback. Any information that the customer voluntarily shares with myFITBOX about the experience of consuming myFITBOX's products and services.

Consumer-generated content. Any content that the customer creates and shares with myFITBOX on third party social networks or by uploading it to myFITBOX's websites or apps, including the use of third party social network apps such as Facebook or Instagram. This includes photos, videos, personal stories, or other similar media or content. Where permitted, myFITBOX will collect and publish consumer-generated content in connection with a variety of activities, including contests and other promotions, website community features, consumer engagement, and third party social networking.

Third party social network information. Any information that the customer shares publicly on a third party social network or information that is part of your the customer's profile on a third party social network (such as Facebook) and that you the customer allows the third party social network to share with myFITBOX. This includes the customer's basic account information (name, email address, gender, birthday, current city, profile picture, user ID, list of friends) and any other additional information or activities that the customer permits the third party social network to share. myFITBOX receives the customer's third party social network profile information (or parts of it) every time it's downloaded or interacted with a myFITBOX web application on a third party social network such as Facebook, every time the customer uses a social networking feature that is integrated within a myFITBOX site (such as Facebook Connect) or every time the customer interacts with myFITBOX through a third party social network.

Payment and Financial informationAny information that myFITBOX needs in order to fulfil an order, or to make a purchase, such as debit or credit card details (cardholder name, card number, expiration date, etc.) or other forms of payment (if such are made available). myFITBOX and myFITBOX's payment processing provider(s) handle payment and financial information in a manner compliant with Malaysian laws, regulations and security standards.

Photographs or Videos. This includes photographs or videos of the customer taken or recorded during myFITBOX Ground Events

2. Personal data of children

myFITBOX does not solicit or collect personal data from person(s) below the age of 18. If myFITBOX discovers that personal data has been unintentionally collected from a person below 18, that collection of personal data will be removed from myFITBOX's records promptly. However, myFITBOX may collect personal data from a person below the age of 18 years of age from the parent or guardian directly, and with that parent(s) or guardian's explicit consent.

3. Cookies/similar technologies, log files and web beacons 

What are cookies?

Cookies are text files that are placed on your computer by websites that you visit. Cookies are then sent back to the originating website on each subsequent visit, or to another website that recognises that cookie. They are used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the website.

We use the term "cookies" throughout this notice to also cover all similar technologies, such as web beacons SDK, log files and pixel tags.

What types of cookies are used on myFITBOX Websites or apps?

We use the following types of cookies on myFITBOX Websites or apps:

Cookie categories


• Site functionality cookies
These cookies allow the customer to navigate the myFITBOX website and use its features, such as registration, logging in and product favourites. 

As long as necessary

• Site analytics cookies
These cookies allow us to measure and analyse how the customer uses the myFITBOX website, apps and mobile platforms, to improve both its functionality and user experience.

90 days

• Customer preference cookies
When browsing on the myFITBOX website, these cookies will remember the customer's preferences (for example, language or location), and other information that is provided to the myFITBOX website.

90 days

• Advertising or targeting cookies
These cookies are used to deliver ads relevant to the customer. This also limits the number of times an ad is seen and measures the effectiveness of myFITBOX's marketing campaigns. myFITBOX will also use the information obtained via these cookies to present the customer with advertisement(s) that may be of interest based on past online behaviour. 

90 days

• Social media cookies
These cookies are used if information is shared using a social media sharing button on the myFITBOX website. This information may be linked to targeting/advertising activities.

90 days

4. Disclosure of your personal data

In addition to the myFITBOX entities mentioned in the data controllers & contact section, the customer's Personal Data is shared with the following types of third party organisations:
Service providers. These are external companies that myFITBOX uses to run business operations (e.g. order fulfilment, payment processing, fraud detection and identity verification, website operation, market research companies, support services, promotions, website development, data analysis, CRC, etc.). Service providers, and their selected staff, are only allowed to access and use the customer's Personal Data on myFITBOX's behalf for the specific tasks that they have been requested to carry out, based on our instructions, and are required to keep the customer's Personal Data confidential and secure.

Third party recipients using Personal Data for legal reasons or due to merger/acquisition. We will disclose the customer's Personal Data to third parties for legal reasons or in the context of an acquisition or a merger

5. Retention of your personal data

The customer's personal data that is collected by myFITBOX and used to provide the customer with a personalised experience will be kept for a duration in accordance with Malaysian laws

6. Disclosure, storage and/or transfer of your personal data

myFITBOX uses the appropriate measures (described below) to keep the customer's Personal Data confidential and secure. Please note, however, that these protections do not apply to information the customer chooses to share in public areas such as third party social networks.

Access to Personal Data.  The customer's personal data will be processed by the authorised staff or agents, on a need to know basis, depending on the specific purposes for which your Personal Data have been collected.

Transfer of Personal Data. Due to the logistical nature of the business, myFITBOX will need to transfer the customer's personal data within myFITBOX, and to third party services as noted above, in connection with the purposes set out in this Privacy Notice. For this reason, myFITBOX will transfer the customer's personal data to other delivery parties in different states that may identical laws and data protection compliance requirements to those residing in Malaysia.

7. Customer's rights

Access to Personal Data. The customer has the right to access, review and request a physical or electronic copy of information held by myFITBOX. These rights can be exercised by way of locating and/or contacting myFITBOX at:

Address : Nietorp Sdn Bhd
6th floor, Bangsaria, 45E, Jalan Maarof, Bangsar, 59100 Kuala Lumpur, Malaysia


Web Form :


Call us at :  +6013 830 2369
Contact Name : myFITBOX Official Care Line

If the request is submitted by a person other than the customer, without providing evidence that the request is legitimately made on the customer's behalf, the request will be rejected. Please note that any identification information provided to myFITBOX will only be processed in accordance with, and to the extent permitted by Malaysian laws.

Additional rights (e.g. modification, deletion of Personal Data). Where provided by law, the customer can (i) request deletion, the portability, correction or revision of Personal Data; (ii) limit the use and disclosure of Personal Data; and (iii) revoke consent to any of myFITBOX's data processing activities.

Please note that, in certain circumstances, myFITBOX will not be able to delete the customer's personal data without also deleting the user account. myFITBOX may be required to retain some facets of the customer's personal data after the requested deletion, to satisfy myFITBOX's legal or contractual obligations.

Where available, the myFITBOX has a dedicated feature which the customer can review and edit the Personal Data that has been provided. Please note that myFITBOX requires the registered customers to verify their identity (e.g. login ID/email address, password) before they can access or make changes to their account information. This helps prevent unauthorised access to the customer's account.

8. Changes to this notice

myFITBOX reserves the right to make changes to its practices and this Notice at any time, please check back frequently to see any updates or changes to myFITBOX's Notice.