DR's Secret logo

Personal Data Protection Policy



General Information

Best World International Limited and its subsidiaries (collectively, “Best World”, “we”, “us” or “our”) respect the rights you have under the relevant personal data protection laws and regulations. Our personal data protection policy applies to all regions where we do our businesses, unless otherwise specified. Best World collects, uses and discloses your personal data for the purposes as notified to you in our policy or as permitted by law and regulations. We hope by informing you our policy, you will continue to have the peace of mind being our valued customers and business partners. In case of any discrepancies between the English version and any other language version of these Terms, the English language shall apply and prevail.

By browsing DR’s Secret websites, using our services or providing us your personal data through our websites, you agree and consent to the collection, use and disclosure of your personal data as described in our policy. Our policy does not supersede or replace any consents which you may have provided to us previously. We reserve the right to change or update our policy from time to time, and any changes to our policy will become effective when we post the revised policy on our websites. You can check the effective date posted at the bottom of our policy. We encourage you to read our policy whenever you visit our websites to ensure that you keep up-to-date with any changes.

Collection of Personal Data

We collect personal data from you

  • when you browse and/or use any of our services on our websites;
  • when you accept cookies on your devices;
  • when you register for a DR's Secret account on our websites;
  • when you participate in our promotions, quiz or other events;
  • when you carry out transactions on our websites;
  • when you interact with us via phone calls, SMS, messaging apps, face-to-face meetings, social media platforms and emails;
  • when you are contacted by, and respond to, our skin buddy, marketing representatives and/or customer service officers;
  • during CCTV recordings when you visit our stores;
  • during photo or video taking at events; or
  • when you submit your personal data to us for any other reasons.

The types of personal data you may provide to us (depending on the nature of your interaction with us) include: name, gender, contact information (e.g., mobile number, email address or delivery address), real-time geographic location data and any other data which you have provided to us in any form you may have submitted to us, via any other form of interaction. Other personal data that we may collect from you include your skincare concerns, personal description or preferences, shopping behaviours, transaction history, CCTV footages, photographs, videos, information about your device or usage of and interaction with our websites and/or services by automated means using technologies such cookies, web server logs and web beacons etc.

If you provide personal data relating to a third party to us, you represent that you have obtained the consent of the third party to provide us with their personal data for the respective purposes mentioned in our policy.

You should ensure that all personal data submitted to us is accurate and complete.

Purpose for Collection, Use and Disclosure of Personal Data

We collect, use and disclose your personal data for the following purposes:

  • to provide you with the access to and use of our services;
  • to process your DR's Secret account registration;
  • to process your participation in our skin quiz to receive your customized skin care routine;
  • to share your contact details and data (skin score, product recommendation) to our DR’s Secret Skin Buddy;
  • to process your transactions and order shipment;
  • to communicate with you about our products, services, promotions and other events which may be of interest to you;
  • to conduct business analytics and data profiling to improve our websites, products and services provided to you;
  • to post your review or content about the use of our products;
  • to respond to your feedback or complaints;
  • where necessary, for any investigation or proceedings; or
  • to comply with applicable laws and regulations.

We may disclose your personal data to our third parties (within and outside your region of residence) for the above stated purposes.

Use of Cookies

We use cookies on our websites to facilitate your access and use of our services. By browsing and/or using the services on our websites, you consent to our use of cookies to collect information on your online usage data and to improve your online experience. If you turn cookies off, some of our services will not function and transactions may not be completed.

Third Party Web Analytics

We may use third party web analytics services, such as Google Analytics and/or Baidu Tongji, to help us analyse how visitors use our websites. The service providers that administer these services use technologies such as cookies, web server logs and web beacons. The information collected through these means (including IP address) is disclosed to these service providers. They may collect audience data such as age, gender, and interests to better understand the behaviour of our visitors. This process also helps us manage and track the effectiveness of our marketing efforts. We do not combine the information collected with personally identifiable information.

You can prevent analytical tools from recognising you on return visits to our websites by disabling cookies on your browser.

To disable Google Analytics, please download the browser add-on for the deactivation provided by Google at https://tools.google.com/dlpage/gaoptout?hl=en.

More information on the handling of user data by Google can be found in Google Privacy Policy.

To change your data sharing preferences for Baidu, please visit Baidu Privacy Settings page.

You can find out more about how Baidu collects and protect your data in Baidu Privacy Policy.

Third Party Internet-Based Advertising

We may use the services of one or more third party companies for internet-based advertising (also called “targeted advertising”, “remarketing”, or “behavioural advertising”). If we do, these third party advertising companies may also collect information from your activities on our websites as well as other websites to help personalise your experience and provide advertisements targeted to suit your interests and preferences. This means that our ads may appear on participating websites based upon your browsing activities. We may use and allow our third party advertising companies to use the technologies listed above (see “Third Party Web Analytics” section) and other similar technologies.

You may opt out of the automated collection of information by Google and/or Baidu for the purpose of delivering advertisements tailored to your interests, by visiting Google Ad Personalization page and/or Baidu Ad Personalization page.

Retention of Personal Data

Your personal data will be retained for as long as it is necessary to fulfil the purpose for which it is collected for business or legal purposes, or in accordance with applicable laws.

For DR's Secret account user, your personal data will be removed from our system 10 years after you explicitly express your intention in writing to terminate your account or after your account is terminated due to any other reasons. If no transaction has been performed in your account for a continuous period of 10 years, your personal data will be removed from our system immediately.

We do not store your credit card information. The credit card information you provide while transacting with us is solely used for effecting payment from you to us; which may involve third-party financial institutions, who implement industry-standard security mechanism.

Protection of Personal Data

Among several other security control measures, Best World implements the following industry best-practices to ensure your personal data with us are safe:

  • Firewall to protect the systems against unauthorised access from the Internet.
  • Secure Socket Layer (SSL) encryption to secure your data during its transmission over the Internet.
  • Where applicable, advanced antivirus solutions are actively monitoring and protecting Best World systems from the work of malicious software and attacks.

Contacting Us - Withdrawal of Consent, Access and Correction of Personal Data

You may withdraw your consent for the collection, use and/or disclosure of your personal data by sending an email to our Data Protection Officer at the email address below. However, we may not be able to continue providing the services to you if consent is withdrawn and we may need to terminate your existing account with us.

If you would like to change your consent to receive marketing and promotion information from us or access your order history, you can do so by logging into your account.

If you would like to request to access/correct other personal data or if you have any feedback/complaint concerning our Personal Data Protection Policy, you may contact our Data Protection Officer at the email address below.

To assist us in dealing with your request, please provide us with your full name and mobile number.

Email: dpo@my.bwlgroup.com



This policy is effective as of 1 September 2024.