Skip links

Looking for results and a reliable team? Book a FREE consultation.

Book a Consultation
Digital Growth Agency | Seed Light
Legal

Privacy Policy

Last updated: 29 May 2026

This Privacy Policy explains what information Seed Light collects, how we use and protect it, and the choices you have. It also describes how we handle data from Facebook and Instagram when you interact with our pages and automated messaging.

Contents
  1. Who we are
  2. Information we collect
  3. How we use information
  4. Facebook and Instagram data
  5. How we share information
  6. Data retention
  7. How to request data deletion
  8. Data security
  9. Your rights
  10. Cookies and analytics
  11. Children's privacy
  12. Changes to this policy
  13. Contact us

1. Who we are

Seed Light ("we", "us", "our") is a digital agency operated by Gregory Yeoh, based in Penang, Malaysia. We provide web design, marketing, AI, and automation services for small businesses. This policy applies to our website at seed-light.com, our social media pages, and the automated messaging tools we operate on Facebook and Instagram.

2. Information we collect

We collect only the information we need to respond to you and run our services.

Information you give us directly

  • Contact details you submit through forms, email, or direct messages, such as your name, email address, and the contents of your message.
  • Business details you share with us when you enquire about or use our services.

Information from your interactions on Facebook and Instagram

  • The public comment you post on our posts, including the text of that comment.
  • Your platform-assigned user identifier (a scoped ID provided by Meta) so we can reply to you.
  • Your public profile name and the comment, reply, and message identifiers needed to deliver our response.

Information collected automatically

  • Basic technical data when you visit our website, such as browser type, device type, and pages viewed, used to keep the site working and secure.

3. How we use information

We use the information above to:

  • Respond to your comments, messages, and enquiries.
  • Send you the content you requested, such as a guide or resource link, when you comment a keyword on one of our posts.
  • Avoid sending you duplicate messages for the same comment.
  • Provide, maintain, and improve our services.
  • Keep records of our interactions and comply with platform rules and applicable law.

We do not sell your personal information. We do not use the data we collect through Facebook or Instagram to build advertising profiles.

4. Facebook and Instagram data

We operate automated messaging on our Facebook Page and Instagram account using Meta's official Graph API. When you comment a keyword on one of our posts, our system may automatically reply to your comment publicly, like your comment where the platform allows it, and send you a one-time private message containing the resource you asked for.

To do this, and only for this purpose, we process and store the following:

DataWhy we store it
Comment identifier and post identifierTo reply to the correct comment and to avoid responding to the same comment twice
Platform-scoped user identifierTo deliver our reply and private message to you
The keyword matched and the comment textTo send you the correct resource
Timestamp and delivery statusFor our records and to confirm the message was sent

Our use of information received from Meta's APIs follows Meta's Platform Terms and Developer Policies. We only request the permissions needed to operate this feature and we use the data solely to respond to you.

5. How we share information

We share information only in these limited cases:

  • Service providers. Trusted tools that help us operate, such as our website host, email provider, and our self-hosted automation platform. They process data on our behalf under appropriate safeguards.
  • Platforms. Facebook and Instagram, operated by Meta, as required to deliver messages and replies through their APIs.
  • Legal reasons. Where required by law, regulation, or valid legal process, or to protect our rights and the safety of others.

We do not sell or rent your personal information to anyone.

6. Data retention

We keep personal information only as long as needed for the purposes described in this policy. Records related to automated comment and message delivery are kept for up to 24 months, then deleted or anonymized, unless we need to retain them longer to comply with the law or resolve a dispute. You can ask us to delete your data sooner at any time.

7. How to request data deletion

You can ask us to delete the personal information we hold about you, including any data we received through Facebook or Instagram. To make a request, email hello@seed-light.com with the subject line "Data Deletion Request" and include the Facebook or Instagram name or handle you used to comment, so we can locate your records.

We will confirm and complete your request within 30 days. When we delete your data, we remove it from our automation platform's records, including stored comment identifiers, user identifiers, and delivery logs.

8. Data security

We protect your information with reasonable technical and organizational measures. Our automation platform is self-hosted and access-controlled, connections are encrypted in transit, and access credentials are restricted to authorized use. No method of transmission or storage is completely secure, but we work to safeguard your information and review our practices regularly.

9. Your rights

Depending on where you live, you may have the right to access, correct, or delete your personal information, to object to or restrict certain processing, and to withdraw consent. To exercise any of these rights, contact us using the details below. You can also stop interacting with our automated messaging at any time, and you can manage your data on Facebook and Instagram through your account settings on those platforms.

10. Cookies and analytics

Our website may use essential cookies to function and limited analytics to understand how the site is used so we can improve it. You can control cookies through your browser settings. Disabling some cookies may affect how the site works.

11. Children's privacy

Our services are intended for business owners and adults. We do not knowingly collect personal information from anyone under the age of 13, or under the age required by local law. If you believe a child has provided us information, contact us and we will delete it.

12. Changes to this policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, provide additional notice. We encourage you to review this page periodically.

13. Contact us

If you have questions about this policy or how we handle your information, contact us:

Seed Light

Operated by Gregory Yeoh

Penang, Malaysia

Email: hello@seed-light.com

rt" content="width=device-width, initial-scale=1.0"> Privacy Policy | Seed Light
Seed Light
Legal

Privacy Policy

Last updated: 29 May 2026

This Privacy Policy explains what information Seed Light collects, how we use and protect it, and the choices you have. It also describes how we handle data from Facebook and Instagram when you interact with our pages and automated messaging.

Contents
  1. Who we are
  2. Information we collect
  3. How we use information
  4. Facebook and Instagram data
  5. How we share information
  6. Data retention
  7. How to request data deletion
  8. Data security
  9. Your rights
  10. Cookies and analytics
  11. Children's privacy
  12. Changes to this policy
  13. Contact us

1. Who we are

Seed Light ("we", "us", "our") is a digital agency operated by Gregory Yeoh, based in Penang, Malaysia. We provide web design, marketing, AI, and automation services for small businesses. This policy applies to our website at seed-light.com, our social media pages, and the automated messaging tools we operate on Facebook and Instagram.

2. Information we collect

We collect only the information we need to respond to you and run our services.

Information you give us directly

  • Contact details you submit through forms, email, or direct messages, such as your name, email address, and the contents of your message.
  • Business details you share with us when you enquire about or use our services.

Information from your interactions on Facebook and Instagram

  • The public comment you post on our posts, including the text of that comment.
  • Your platform-assigned user identifier (a scoped ID provided by Meta) so we can reply to you.
  • Your public profile name and the comment, reply, and message identifiers needed to deliver our response.

Information collected automatically

  • Basic technical data when you visit our website, such as browser type, device type, and pages viewed, used to keep the site working and secure.

3. How we use information

We use the information above to:

  • Respond to your comments, messages, and enquiries.
  • Send you the content you requested, such as a guide or resource link, when you comment a keyword on one of our posts.
  • Avoid sending you duplicate messages for the same comment.
  • Provide, maintain, and improve our services.
  • Keep records of our interactions and comply with platform rules and applicable law.

We do not sell your personal information. We do not use the data we collect through Facebook or Instagram to build advertising profiles.

4. Facebook and Instagram data

We operate automated messaging on our Facebook Page and Instagram account using Meta's official Graph API. When you comment a keyword on one of our posts, our system may automatically reply to your comment publicly, like your comment where the platform allows it, and send you a one-time private message containing the resource you asked for.

To do this, and only for this purpose, we process and store the following:

DataWhy we store it
Comment identifier and post identifierTo reply to the correct comment and to avoid responding to the same comment twice
Platform-scoped user identifierTo deliver our reply and private message to you
The keyword matched and the comment textTo send you the correct resource
Timestamp and delivery statusFor our records and to confirm the message was sent

Our use of information received from Meta's APIs follows Meta's Platform Terms and Developer Policies. We only request the permissions needed to operate this feature and we use the data solely to respond to you.

5. How we share information

We share information only in these limited cases:

  • Service providers. Trusted tools that help us operate, such as our website host, email provider, and our self-hosted automation platform. They process data on our behalf under appropriate safeguards.
  • Platforms. Facebook and Instagram, operated by Meta, as required to deliver messages and replies through their APIs.
  • Legal reasons. Where required by law, regulation, or valid legal process, or to protect our rights and the safety of others.

We do not sell or rent your personal information to anyone.

6. Data retention

We keep personal information only as long as needed for the purposes described in this policy. Records related to automated comment and message delivery are kept for up to 24 months, then deleted or anonymized, unless we need to retain them longer to comply with the law or resolve a dispute. You can ask us to delete your data sooner at any time.

7. How to request data deletion

You can ask us to delete the personal information we hold about you, including any data we received through Facebook or Instagram. To make a request, email hello@seed-light.com with the subject line "Data Deletion Request" and include the Facebook or Instagram name or handle you used to comment, so we can locate your records.

We will confirm and complete your request within 30 days. When we delete your data, we remove it from our automation platform's records, including stored comment identifiers, user identifiers, and delivery logs.

8. Data security

We protect your information with reasonable technical and organizational measures. Our automation platform is self-hosted and access-controlled, connections are encrypted in transit, and access credentials are restricted to authorized use. No method of transmission or storage is completely secure, but we work to safeguard your information and review our practices regularly.

9. Your rights

Depending on where you live, you may have the right to access, correct, or delete your personal information, to object to or restrict certain processing, and to withdraw consent. To exercise any of these rights, contact us using the details below. You can also stop interacting with our automated messaging at any time, and you can manage your data on Facebook and Instagram through your account settings on those platforms.

10. Cookies and analytics

Our website may use essential cookies to function and limited analytics to understand how the site is used so we can improve it. You can control cookies through your browser settings. Disabling some cookies may affect how the site works.

11. Children's privacy

Our services are intended for business owners and adults. We do not knowingly collect personal information from anyone under the age of 13, or under the age required by local law. If you believe a child has provided us information, contact us and we will delete it.

12. Changes to this policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, provide additional notice. We encourage you to review this page periodically.

13. Contact us

If you have questions about this policy or how we handle your information, contact us:

Seed Light

Operated by Gregory Yeoh

Penang, Malaysia

Email: hello@seed-light.com