top of page

Privacy Policy

私隱政策聲明

 

私隱條款

閣下的私隱對本公司十分重要。訂立本聲明的目的,是為確立金利信有限公司(「GL」)的承諾保障個人資料私隱的政策及實務,以遵守個人資料(私隱)條例(下稱「該條例」)各項條款及規定。

1. 本公司只會收集我們認為相關而有助於瞭解閣下財務需要及以便本公司營運業務的個人資料。

2. 本公司運用閣下的個人資料以便本公司可以確認、驗證及認證閣下的身份並向閣下提供更佳的客戶服務和產品。

3. 在法律允許的情況下,本公司可能將閣下的個人資料轉交本公司集團其他成員或代理機構。

4. 除非已獲閣下同意,本公司不會向任何外界機構透露閣下的個人資料。

5. 本公司可能隨時被要求向政府部門、司法機構或本公司的監管機構透露閣下的個人資料,然而本公司只會在適當權限下進行。

6. 本公司致力確保閣下在我們的紀錄下的個人資料是準確及最新的。

7. 本公司實行嚴格的網上保安系統,可防止任何人未經授權而取得閣下的個人資料。

8. 本公司會遵守《個人資料(私隱)條例》(第486章)(「條例」)的保障資料原則及相關條文。

 

閣下的私隱對本公司十分重要 本部份列出具體細節,說明本公司將如何處理閣下可能向本公司提供的個人資料。

資料的安全性

1. 本公司一貫致力確保閣下的個人資料受安全保護,不會在未經授權下或意外地被他人取得、使用、修改、披露、處理或清除。為致力保障資料安全,本公司在設施、電子系統及管理方面實施適當措施,以保障閣下的個人資料安全。

2. 本公司將採取一切實際可行的程序,確保客戶的個人資料不會被保留超過必要的時間,而本公司亦會遵守香港特別行政區一切有關保存個人身份資料的法例及監管規定。

 

安全保證

1. 本公司提醒閣下不可將閣下的用戶名稱及/或密碼及/或生物特徵數據及/或私人密碼與他人分享,尤須確保不會與未經授權人士共用或允許其使用此等資料。本公司會盡力維持高度安全標準,以保障閣下的利益。

2. 閣下的用戶名稱、密碼及私人密碼乃閣下所獨有,閣下應嚴守機密。切勿寫下或讓任何人得知此等資料。如閣下認為本身的用戶名稱及/或密碼及/或私人密碼已向第三方洩露、遺失或被盜,又或閣下戶口可能已被進行未經授權的交易,閣下有責任即時通知本公司。

 

以非傳統途徑收集個人資料 本公司於日常營運中可從互聯網上或本公司的流動應用程式(或本公司不時推出的其他流動應用程式)收集個人資料,對此本公司會採納以下的措施:

1. 保安 本公司會按照嚴格的保安及保密標準保障向本公司提供的任何資料,並採用加密法傳輸敏感資料,以保障個人的私隠。

2. 「Cookies」

 

閣下到訪 GL 網站時,網站會作記錄,以分析 GL 網站的訪客人數和一般使用狀況。其中部份資料將透過「Cookies」程式收集,「Cookies」是載有小量資料的檔案,自動儲存於訪客本身電腦所安裝的互聯網瀏覽器,可供 GL 網站日後檢索。 「Cookies」收集的是不記名的集體統計資料,並不包括姓名、地址、及電話、電郵地址等個人聯絡資料。此外,GL 亦可能會使用第三方公司來紀錄 GL 網站流量、和於本網站上的其它活動。目前常見的瀏覽器版本均預設啟動「Cookies」 的功能。如閣下想禁用「Cookies」或被通知「Cookies」的使用,可更改瀏覽器的設定,但更改後可能不可以進入 GL 網站 的某些部份。

3. 更改資料 透過網上設施或流動應用程式向本公司提供的個人資料一經呈交,便未必能於網上或流動應用程式取消、改正或更新。如需要作出取消、改正或更新,閣下應聯絡本公司相關職員。

 

 

4. 保留資料 本公司收集的個人資料會被轉送到本公司相關職員、部門、分行、承包商或服務供應商處理。本公司會使用所有合理程序以確保個人資料的保存時間,不得超過將其保存以貫徹該等資料被使用於或會被使用於的目的(包括任何直接有關的目的)所需的時間,但若法律要求或許可更長的期間,則不在此限。各種個人資料可能有不同的保存時間。

 

註:如本條款及細則之中文與英文版本有任何歧義,一概以英文版本為準。 重要通知:閣下如瀏覽本公司網站及其任何頁面,或使用流動應用程式,均應被視作同意上述條款。

致客戶及其他個別人士關於《個人資料(私隱)條例》(「條例」)及《個人信貸資料實務守則》(「守則」)的通知

1. 尊重及保障個人資料之私隱權是GL (「本公司」)的一貫政策。遵守條例不單是本公司管理層所奉行的宗旨,同時更是本公司每位職員的直接責任。本公司將小心保障所有客戶所提供的個人資料的私隱權。本政策聲明清楚訂明有關收集個人資料的目的及如何保障客戶的個人資料。

2. 客戶有權查閱及在適當的時候更正其個人資料。建議客戶注意下列事項。

3. 「資料當事人」一詞,不論於本通知何處提及,包括以下類別的個人: a. 本公司提供的信貸及相關金融服務和產品的申請人或客戶/用戶及/或其被授權人;

b. 基於對本公司負有的責任而出任擔保人、保證人及提供抵押、擔保或任何形式的支持的人士;

c. 任何公司申請人及資料當事人/用戶的董事、股東、高級職員及經理;

d. 任何使用本公司的網站、流動應用程式及其他由本公司提供或認可的電子方式及程序以使用本公司服務的用戶;及

e. 本公司的供應商、承辦商、服務供應商及其他有合約關係的交易對手。

 

 

為免疑問,「資料當事人」不包括任何法人團體。本通知的內容適用於所有資料當事人,並構成其與本公司不時訂立或可能訂立的任何貸款協議及/或任何服務的協議或安排以及合同之條款和條件的一部份。若本通知與貸款協議及/或其他相關服務協議(視乎情況)存在任何差異或分歧,就有關保障資料當事人的個人資料方面一概以本通知為準,而就其餘與使用貸款及/或其他相關服務有關的事項則以貸款協議及/或有關服務協議(視乎情況)為準。本通知並不限制資料當事人在條例下之權利。

4. 資料當事人在開立或延續賬戶、建立或延續本公司信貸或要求本公司提供信貸及相關金融服務和產品時(包括但不限於本公司之信用卡服務等)需不時向本公司提供有關的資料,以作為處理及審批該項申請。

5. 若資料當事人未能向本公司提供該等資料,可能會導致本公司無法開立或延續賬戶,或建立、維持、延續或提供本公司信貸及相關之金融服務和產品。

6. 本公司亦會在日常業務過程中收集資料當事人的資料,用作相關服務(包括審視、重新考慮、評估、檢查、檢視、審查、審計、分析、監控、遵守及確保遵守相關法律、規則及規定)。這些資料包括從獲核准加入多家個人信貸資料服務機構營運模式的信貸資料服務機構(統稱「信貸資料服務機構」)及/或提供電子身份認證服務的承辦商所獲得的資料。

 

7. 資料當事人之資料可能被用於不同的目的,視乎其與本公司的關係性質,其中包括以下目的: a. 評估資料當事人作為信貸及相關貸款服務和相關金融服務及產品的實際或潛在的或持續申請人的優點和適合性,及/或審查、處理及/或批核其申請、續期及/或取消;

b. 提供給資料當事人的服務和信貸設施之日常運作;

c. 在資料當事人申請信貸及時及在每年進行一次或以上的定期或特別賬戶審查時及在(若有必要)進行相應程序(按條例所定義)時,進行信貸調查、作出信用監控或以其他方式管理信用風險。該等審查將協助本公司判斷應否增加、減少或維持資料當事人的信貸額或其他信貸設施及/或服務的限額;

d. 編制及維持本公司的信貸評分系統;

e. 提供信用查詢備考書;

f. 協助其他在香港獲核准加入多家個人信貸資料服務機構模式的信貸提供者(統稱「信貸提供者」)進行信用檢查及追討債務;

g. 確保資料當事人的信用可靠性;

h. 為資料當事人設計信貸設施及相關金融服務和產品;

i. 為推廣服務、產品及其他項目(詳見下述第14段);

j. 計算本公司與資料當事人之間的債項;

 

k. 向資料當事人及就資料當事人的責任提供抵押的人士追收欠款;

l. 遵守任何根據本集團就制裁、防範或偵測洗錢、恐怖份子資金籌集或其他非法活動的集團方案中,有關在集團公司內及/或在集團公司的不同部門之間的資料及信息分享及/或有關任何其他資料及信息的使用之任何責任、規定、政策、程序、措施或安排;

m. 使本公司的實質或建議承讓人,或本公司對資料當事人權益的參與人或附屬參與人,能對有關擬進行的轉讓、參與或附屬參與的交易作出評核;

n. 與接受本公司代理的信用卡的商戶及與本公司提供聯名信用卡服務(如有)之實體交換資料;

o. 編製統計資料及資料當事人檔案記錄;

p. 把資料當事人和其他人士的資料作比較以進行信貸調查、資料核實或產生或核實資料,不論有關比較是否為對該資料當事人採取追討行動;

q. 維持資料當事人的信貸記錄或其他記錄,不論資料當事人與本公司是否存在任何關係,以作現在或將來參考用;

r. 確認、驗證及認證資料當事人的身份;

s. 進行、準備和促進與本公司有關的內部和外部審計工作;

t. 對集團公司及/或集團公司之不同部門及/或承包商之間的資料進行內部監控及資料管理;

u. 對任何欺詐、洗錢、恐怖主義資金籌集或其他非法活動進行審查及/或調查,並協助預防、偵查和調查犯罪;及

v. 一切與上述有聯繫、有附帶性或有關的用途。

w. 本公司可能把本公司不時持有的資料當事人的姓名、聯絡方式、產品及服務投資組合資料、交易模式及行為、財務背景及人口統計數據用於直接促銷;

  • x. 下列類別的服務、產品及事項可作促銷: i. 金融、保險、信用卡、預付卡、信貸設施及相關金融服務及產品;

  • ii. 獎賞、客戶忠誠、品牌合作或優惠計劃及相關服務和產品

 

使用資料作直接促銷 本公司擬使用資料當事人的資料作直接促銷及本公司須為此目的取得資料當事人同意(包括資料當事人之不反對表示)。因此,請注意下述:

       -     iii. 本公司的聯名合作夥伴提供之服務和產品(視情況,該等品牌合作夥伴的名稱會在相關服務和產品的申請表上提供);及

  • iv. 本公司的聯營商戶(如有)提供的服務及產品(視情況,該等與個別服務和產品相關的聯營商戶的名稱會在本公司網站上提供); 及

  •  

  • y. 除推廣上述服務、產品及事項外,本公司同時擬提供列明於上述第14(a)段之資料至上述第14(c)段所述的所有或其中任何人士,以用於推廣上述服務、產品及事項,而本公司為此目的須取得資料當事人的書面同意(其中包括資料當事人不反對表示);

  • z. 本公司如按上述第14(d)段將資料提供予其他人士,可能會獲得金錢或其他財產的回報。本公司會在按上述第14(d)段徵求資料當事人同意或不反對表示時,通知資料當事人本公司會否因提供資料予其他人士而獲得任何金錢或其他財產的回報。

 

若資料當事人不同意本公司使用其資料或提供其資料予其他人士,藉以用於以上所述之直接促銷,資料當事人可通知本公司以行使其不同意此安排的權利。

8. 根據條例中的條款及根據條例核准和發出的《個人信貸資料實務守則》,任何資料當事人有權: a. 查核本公司是否持有他的資料及能夠查閱該等資料;

b. 要求本公司改正任何有關他的不準確的資料;

c. 查明本公司對於資料的政策及慣例和獲告知本公司持有的個人資料種類;

d. 應要求獲告知本公司會例行向信貸資料服務機構或收債公司披露的個人資料類別,及獲提供進一步資料,以便向有關信貸資料服務機構或收債公司提出查閱和改正資料的要求;及

e. 對於本公司向信貸資料服務機構提供的任何賬戶資料(為免生疑問,包括任何賬戶還款資料),於悉數清償欠款以終止賬戶時,指示本公司對有關信貸資料服務機構要求從其資料庫中刪除該等賬戶資料,惟是項指示必須於賬戶終止後5年內發出,且該賬戶在賬戶終止之前5年內,並無超過60天的拖欠還款紀錄。賬戶還款資料包括最後一次到期的還款額、最後一次報告期間(即緊接本公司最後一次向信貸資料服務機構提供賬戶資料前不超過31天的期間)所作出的還款額、剩餘可用信貸額、或未償還餘額及欠款資料(即過期欠款額及逾期還款日數、清還過期欠款的日期及全數清還拖欠超過60天欠賬之日期(如有))。

 

9. 在賬戶出現任何欠款的情況下,除非欠款金額在由出現拖欠日期起計60天屆滿前全數清還或撇賬(因破產命令除外),信貸資料服務機構所可由全數清還欠款金額之日期起計5年保留賬戶還款資料(請見上述第12(d) 及15(e)段的定義)。

10. 當資料當事人因被頒布破產令而導致賬戶中的任何金額被撇賬,不論賬戶還款資料(請見上述第12(d) 及15(e)段的定義)是否顯示任何超過60天的欠款,信貸資料服務機構可由全數清還欠款金額之日起計5年內或由資料當事人提供證據通知信貸資料服務機構其已獲解除破產令的日期起計5年內(以較先出現者為準),保留賬戶還款資料。

11. 據條例的條款,本公司有權就處理任何查閱資料的要求收取合理費用。

12. 任何關於查閱或改正資料,或索取關於資料政策及慣例或所持有的資料種類的要求,應向下列人士提出:

 

金利信有限公司

香港尖沙咀廣東道30號新港中心第二座1756室

電話:6012 0599

 

13. 本人可隨時以書面形式或以任何其他本公司不時接受的方式通知資料保障主任,選擇不接收本公司的任何直接促銷或訊息,而毋須繳付任何費用。

14. 本公司在考慮任何信貸申請時或不時進行信貸審查時,會從信貸資料服務機構取得關於資料當事人的信貸報告。如資料當事人希望索取該信貸報告,本公司會向其提供有關信貸資料服務機構的詳細聯絡資料。

15. 本私隱政策聲明/本通知會不時更新。請定期瀏覽本公司網站以了解本私隱政策聲明/本通知的最新版本。

16. 如中、英文版本有任何歧義,概以英文版本為準。

 

生效日期:2024年4月

Privacy Policy Statement

 

Security is a top priority for us. The purpose of this Statement is to establish the policies and practices of Golden Leasing Limited’s (“GL”) commitment to protect the privacy of personal data and to act in compliance with the provisions of the Personal Data (Privacy) Ordinance (the “Ordinance”)..

 

  1. We only collect personal information that we believe to be relevant and required to understand your financial needs and to conduct our business. You will be provided with the Notice to Customers and Other Individuals Relating to the Personal Data (Privacy) Ordinance (the “Ordinance”) and the Code of Practice on Consumer Credit Data (the “Code”) issued by the Company before collection of your personal information.

  2. We use your personal information to confirm, verify and authenticate your identity and to provide you with better customer services and products.

  3. We may pass your personal information to our group’s companies or agents, as permitted by law.

  4. We will not disclose your personal information to any external organisation unless we have obtained your consent.

  5. We may be required from time to time to disclose your personal information to governmental or judicial bodies or agencies or our regulators, but we will only do so under proper authority.

  6. We aim to keep your personal information on our records accurate and up-to-date.

  7. We maintain strict internet security systems designed to prevent unauthorised access to your personal information by anyone.

  8. We shall comply with the data protection principles and all relevant provisions under the Personal Data (Privacy) Ordinance (Cap. 486) (the “Ordinance”).

Your Privacy Matters to Us
This section provides specific details of how we treat any personal information you might wish to provide us.

Data Security

  1. We strive at all times to ensure that your personal data will be protected against unauthorised or accidental access, use, modification, disclosure, processing or erasure. We maintain this commitment to data security by implementing appropriate physical, electronic and managerial measures to safeguard and secure your personal data.

  2. All practical steps will be taken to ensure that personal data will not be kept longer than necessary and that we will comply with all statutory and regulatory requirements in the Hong Kong Special Administrative Region concerning the retention of personally identifiable information.

Security Assurance

  1. Please be reminded that you should not share your username and/or password and/or biometric-data or allow access or use of any of them by others. We endeavour to put in place high standards of security to protect your interests.

  2. You should safeguard your unique username and password by keeping them secret and confidential. Never write them down or share these details with anyone. If you think any of your username and/or password has been disclosed to a third party, is lost or stolen or if unauthorised activities may have been conducted, you are responsible for informing us immediately.

Collection of Personal Information through Non-conventional means
We shall also collect personal data on-line or our Mobile Application and such other Mobile Applications as we may from time to time launch) in the course of our business, the following practices are adopted:

  1. Security
    We will follow strict standards of security and confidentiality to protect any information provided to the Company. Encryption technology is employed for sensitive data transmission to protect individuals’ privacy.

  2. Cookies
    Your visit to GL’s Website will be recorded for preparation of analysis on the number of visitors to the GL’s Website and general statistics on usage patterns of the GL’s Website. Some of this information will be gathered through the use of "Cookies". Cookies are small bits of information that are automatically stored on your web browser in your computer that can be retrieved by GL’s Website. Information collected by Cookies is anonymous aggregated research data, and contains no name or address information or any information that will enable anyone to contact you via telephone, e-mail or any other means. From time to time, GL’s may also work with third parties to research certain usage and activities on parts of the GL’s Website on behalf of GL’s using Cookies and/ or anonymous identifiers.

Most web browsers are initially set to accept Cookies. If you would prefer, your browser may be set to disable Cookies. However, by disabling Cookies, you may not be able to take full advantage of GL’s Website.

  1. Correction
    Personal data provided to us through an on-line facility or Mobile Application, once submitted, may not be deleted, corrected or updated on-line or Mobile Application. If deletion, correction and updates are needed, you should approach our relevant officers.

 

  1. Retention
    Personal data collected will be transferred to relevant members of our staff, departments, branches, contractors or service providers for processing. We shall take all reasonably practical steps to ensure that personal data will not be retained in our systems’ database for a period longer than is necessary for the fulfilment of the purposes (or any directly related purpose) for which the data is or is to be used, unless the retention is otherwise permitted or required by law. Different retention periods may apply to the various kinds of personal data collected.

Note: In case of discrepancies between the English and Chinese versions of these terms and conditions, the English version shall prevail.


IMPORTANT: By accessing this web site and any of its pages and by using APP you are agreeing to the terms set out above.

Notice to Customers and Other Individuals Relating to the Personal Data (Privacy) Ordinance (the “Ordinance”) and the Code of Practice on Consumer Credit Data (the “Code”)

  1. It is the policy of Golden Leasing Limited (“the Company“) to respect and safeguard the privacy of an individual’s personal data. Compliance with the Ordinance is not only the prime objective of the management but also direct responsibility of every staff member of the Company. The Company shall preserve the confidentiality of all information provided by customers. This policy statement stipulates the purpose of the data collection and customer’s data protection.

  2. Customer always has the right to access his personal data and update it whenever appropriate. Customer is advised to take note of the following.

  3. The term “data subject(s)”, wherever mentioned in this Notice, includes the following categories of individuals:-

    1. applicants for or customers/users of credit facilities and related financial services and products and so forth provided by the Company and/or their authorized signatories;

    2. sureties, guarantors and parties providing security, guarantee or any form of support for obligations owed to the Company;

    3. directors, shareholders, officers and managers of any corporate applicants and data subjects/users;

    4. users of the Company’s Website, Mobile Application and any other electronic means and procedures as provided or approved by the Company to access to the services of the Company; and

    5. suppliers, contractors, service providers and other contractual counterparties of the Company.

For the avoidance of doubt, “data subjects” shall not include any incorporated bodies. The contents of this Notice shall apply to all data subjects and form part of the terms and conditions of the Loan Agreement and/or the agreement or arrangement and any contracts for services that the data subjects have or may enter into with the Company from time to time. If there is any inconsistency or discrepancy between this Notice and the Loan Agreement and/or any other relevant service agreement (as the case may be), this Notice shall prevail insofar as it relates to the protection of the data subjects’ personal data and the Loan Agreement and/or such other relevant service agreement (as the case may be) shall prevail in respect of the remaining aspects all of which concerning the use of loan and/or other relevant services. Nothing in this Notice shall limit the rights of the data subjects under the Ordinance.

  1. From time to time, it is necessary for data subjects to supply the Company with data in connection with the opening or continuation of accounts and the establishment, maintenance or continuation of credit facilities or provision of credit facilities and related financial services and products which include but are not limited to credit card services.

  2. Failure to supply such data may result in the Company being unable to open or continue accounts or establish, maintain, continue or provide credit facilities, credit card services and related financial services and products.

 

  1. It is also the case that data are collected from data subjects in the ordinary course of business for the purpose of processing of new or renewal of credit card application or services (including reviewing, re-considering, assessing, examining, inspecting, scrutinizing, auditing, analysing, monitoring complying and ensuring compliance with laws, rules and regulations), or writing cheques, depositing money or effecting transactions, either application in person, through telephone, internet, Mobile Application. This includes information obtained from credit reference agencies approved for the participation in the Multiple Credit Reference Agencies Model (“credit reference agencies”) and/or contractors providing electronic identity authentication services.

 

  1. The purposes for which the data relating to the data subjects may be used will vary depending on the nature of the data subjects’ relationship with the Company, they may include the following:-

    1. assessing the merits and suitability of the data subjects as actual or potential or continued applicants for loan, credit facilities, credit card services and related financial services and products (including without limitation personal loan(s) and/or  reviewing, processing and/or approving their applications, renewals and cancellations;

    2. the daily operation of the services and credit facilities provided to the data subjects;

    3. conducting credit checks, exercising credit control or otherwise managing credit risks at the time of application for loan and at the time of regular or special reviews which normally will take place one or more times each year and, where necessary, carrying out matching procedures (as defined in the Ordinance). The Company undertakes these reviews to determine whether the existing amount of loan or other credit facilities and/or services provided by the Company to the data subject(s) should be increased, decreased or where appropriate remained unchanged;

    4. creating and maintaining the Company’s credit scoring models;

    5. providing reference;

    6. assisting other credit providers in Hong Kong approved for participation in the Multiple Credit Reference Agencies Model (“credit providers”) to conduct credit checks and collect debts;

    7. ensuring ongoing credit worthiness of data subjects;

    8. designing credit facilities and related financial services and products for data subjects’ use;

    9. marketing services, products and other subjects (please see further details in Paragraph 14 below);

    10. determining amounts of indebtedness owed to or by the data subjects;

    11. collection of amounts outstanding from the data subjects and those providing security for the data subjects’ obligations;

    12. complying with any obligations, requirements, policies, procedures, measures or arrangements for sharing data and information within the Group Companies and/or between different departments within a Group Company and/or any other use of data and information in accordance with any group-wide programmes for compliance with sanctions or prevention or detection of money laundering, terrorist financing or other unlawful activities;

    13. enabling an actual or proposed assignee of the Company, or participant or sub-participant of the Company’s rights in respect of the data subjects to evaluate the transaction intended to be the subject of the assignment, participation or sub-participation;

    14. exchanging information with merchants accepting credit cards and/or prepaid cards distributed by the Company;

    15. compiling statistical information and data subject profiles;

    16. comparing data of the data subjects or other persons for credit checking, data verification or otherwise producing or verifying data, whether or not for the purpose of taking action against the data subjects;

    17. maintaining a credit history or otherwise, a record of data subjects (whether or not there exists any relationship between data subjects and the Company) for present and future reference;

    18. confirming, verifying and authenticating the identities of the data subjects;

    19. conducting, preparing and facilitating internal and external auditing in respect of the Company;

    20. exercising internal control and managing of data by the Group Companies and/or between different departments within a Group Company and/or contractors;

    21. conducting review and/or investigation on any fraudulent, money laundering, terrorist financing or other unlawful activities and assisting in the prevention, detection and investigation of crime; and 

    22. purposes incidental, associated or relating thereto.

 

USE OF DATA IN DIRECT MARKETING
The Company intends to use the data subject’s data in direct marketing and the Company requires the data subject’s consent (which includes an indication of no objection) for that purpose. In this connection, please note that:-

  1. the name, contact details, products and services portfolio information, transaction pattern and behaviour, financial background and demographic data of the data subject held by the Company from time to time may be used by the Company or any other Group Companies in direct marketing;

  2. the following classes of services, products and subjects may be marketed:

    1. financial, insurance, credit card, prepaid card, credit facilities and related financial services and products;

    2. reward, loyalty, co-branding or privileges programmes and related services and products;

    3. services and products offered by the Company’s co-branding partners (the names of such co-branding partners can be found in the application form(s) for the relevant services and products, as the case may be);

    4. services and products offered by the Company’s affiliated merchants (if any) (the names of such affiliated merchants can be found on the Company’s website for the relevant services and products, as the case may be); and

    5. donations and contributions for charitable and/or non-profit making purposes;

  3. in addition to marketing the above services, products and subjects itself, the Company also intends to provide the data described in Paragraph 14(a) above to all or any of the persons described in Paragraph 14(c) above for use by them in marketing those services, products and subjects, and the Company requires the data subject’s written consent (which includes an indication of no objection) for that purpose;

  4. the Company may receive money or other property in return for providing the data to the other persons in Paragraph 14(d) above and, when requesting the data subject’s consent or no objection as described in Paragraph 14(d) above, the Company will inform the data subject if it will receive any money or other property in return for providing data to the other persons.

If a data subject does not wish the Company to use or provide to other persons his/her data for use in direct marketing as described above, the data subject may exercise his/her opt-out right by notifying the Company.

  1. Under and in accordance with the terms of the Ordinance and the Code approved and issued under the Ordinance, any data subject has the right:-

    1. to check whether the Company holds data about him and of access to such data;

    2. to require the Company to correct any data relating to him which is inaccurate;

    3. to ascertain the Company’s policies and practices in relation to data and to be informed of the kind of personal data held by the Company;

    4. to be informed on request which items of data are routinely disclosed to credit reference agencies or debt collection agencies, and be provided with further information to enable the making of an access and correction request to the relevant credit reference agencies or debt collection agencies; and

    5. in relation to any account data (including, for the avoidance of doubt, any account repayment data) which has been provided by the Company to credit reference agencies, to instruct the Company, upon termination of the account by full repayment, to make a request to the credit reference agencies to delete such account data from its database, as long as the instruction is given within five years of termination and at no time was there any default of payment in relation to the account, lasting in excess of sixty (60) days within five years immediately before account termination. Account repayment data include amount last due, amount of payment made during the last reporting period (being a period not exceeding thirty-one (31) days immediately preceding the last contribution of account data by the Company to credit reference agencies), remaining available credit or outstanding balance and default data (being amount past due and number of days past due, date of settlement of amount past due, and date of final settlement of amount in default lasting in excess of sixty (60) days (if any)).

  2. In the event of any default of payment relating to an account, unless the amount in default is fully repaid or written off (other than due to a bankruptcy order) before the expiry of sixty (60) days from the date such default occurred, the account repayment data (as provided in Paragraphs 12(d) and 15(e) above) may be retained by the credit reference agencies until the expiry of five (5) years from the date of final settlement of the amount in default.

  3. In the event any amount in an account is written-off due to a bankruptcy order being made against the data subject, the account repayment data (as provided in Paragraphs 12(d) and 15(e) above) may be retained by the credit reference agency, regardless of whether the account repayment data reveal any default of payment lasting in excess of sixty (60) days, until the expiry of five (5) years from the date of final settlement of the amount in default or the expiry of five (5) years from the date of discharge from a bankruptcy as notified by the data subject with evidence to the credit reference agencies, whichever is earlier. 

  4. In accordance with the terms of the Ordinance, the Company has the right to charge a reasonable fee for the processing of any data access request.

  5. The person to whom requests for access to data or correction of data or for information regarding policies and practices and kinds of data held are to be addressed is as follows:
    Flat/Rm 1756, 17/F, Silvercord Tower 2, 30 Canton Road, Tsim Sha Tsui, Kowloon, Hong Kong
    Telephone: 6012 0599

  6. I may, at any time and without charge, choose not to receive any direct marketing or message from the Company by informing the Data Protection Officer in writing or through the customer service hotline of the Company, visiting any branches of the Company or in any other manner as may be acceptable by the Company from time to time.

  7. The Company may have obtained a credit report on or access the database of the data subject from credit reference agencies in considering any application for credit or conducting credit reviews from time to time. In the event that the data subject wishes to access the credit report, the Company will advise the contact details of the relevant credit reference agencies.

  8. This privacy policy statement / this Notice may be updated from time to time and you are advised to visit the Company’s website regularly for the latest version of this privacy policy statement / this Notice.

  9. In case of discrepancies between the English and Chinese versions, the English version shall prevail.

 

Last updated: 22 April 2024

bottom of page