KYC Management Limited (“KYC Management”) and/or their related entities (together “us”, “our” or “we”) respect your privacy and are committed to protecting your personal data. This Privacy Policy will inform you as to how we look after your personal data and your privacy rights. This Privacy Policy aims to give you information on how KYC Management collects and processes your personal data through your use of this website.
This policy applies across all websites that we own and operate and all services we provide, including our Know your client (“KYC”) solution products, and any other websites or services we may offer to the professionals firms, including but not limited to accounting firms, company secretarial firms and law firms (collectively, “Professional Firms”) and the clients of the Professional Firms (“End-clients”). For the purpose of this Privacy Policy, we’ll just call them our ‘services’.
By using our services, you acknowledge and agree that this Privacy Policy may be updated or amended from time to time, and at any time, at the sole discretion of KYC Management. You agree to be bound by the terms and provisions under this Privacy policy as the same may be amended from time to time. KYC Management will provide prior electronic notice to you in the case of an amendment to this Privacy Policy. Use of our services following any such amendments will be deemed to be confirmation that you accept those amendments.
We use cookies on this website. Information on our cookie policy is set out below.
Where KYC Management is the “processor” or “data processor” (as the case may be) of your personal data, it is subject to applicable data protection laws and regulations, which may include, but not be limited to, the European Union Regulation 2016/679 and the Personal Data Privacy Ordinance (Chapter 486 of the laws of Hong Kong) (“Ordinance”, and collectively, the “Applicable Data Protection Laws”). You may wish to visit the official website of the Office of the Privacy Commissioner for Personal Data for more information about this Ordinance.
In case of any question or comment in respect of this Privacy Policy, please contact:
By post:
Privacy Officer
KYC Management Limited
Unit 1601, 16/F, 118 Connaught Road West
Sheung Wan
Hong Kong
By email:
privacy@kyc.management
By telephone:
+852 6551 2538
It is our policy to protect the privacy of users of this website (our “Website”). When you visit our websites or use our service, we collect your personal data (by “personal data”, we mean information about you or which can be used to ascertain your identity). For example, we may collect some information about you when you visit the website because your internet provider address needs to be recognised by our server. You will also be invited to provide some information about yourself on various pages of the website.
Any personal data collected from you on the website will only be used for the specific purposes mentioned at the time of collection or for the purposes of providing you with any services you’ve requested, or for purposes directly related to those specific purposes and/or in the below Personal Information Collection Statement.
We may collect your personal data in a number of ways, for example:
We may collect the following categories of personal data about you:
(i) Performance of a contract
We may process your personal data because it is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract.
In this respect, we may use your personal data for the following:
(ii) Legal obligations
We may also process your personal data for our compliance with a legal obligation which we are under, or for compliance with a legal obligation which the Professional Firms are under.
In this respect, we may use your personal data for the following:
For End-clients:
Obligatory purposes
If the End-clients and/or the Professional Firms do not want KYC Management to use his personal data for any of the purposes listed in paragraphs 4.1 to 4.6 below (inclusive), KYC Management will not be able to provide the services requested. All kinds of personal data about the End-clients and the Professional Firms will be used for:
4.1 the provision of services to the End-clients and the Professional Firms in accordance with the instructions of the End-clients and the Professional Firms and as KYC Management may otherwise deem appropriate or necessary;
4.2 designing services or related products for the use of the End-clients and the Professional Firms;
4.3 collection of outstanding fees from the Professional Firms;
4.4 meeting the requirements of the Professional Firms in accordance with applicable laws and regulations in Hong Kong to conduct client identification and verification and to make disclosure under the requirements of any law, guideline, code of practice or practice direction binding on, or applicable to, the Professional Firms or any of its branches or associated firms or offices including, but not limited to, any such law, guideline, code or practice direction relating to anti-money laundering and anti-terrorism;
4.5 purposes specifically provided for in any particular service offered by KYC Management;
4.6 purposes directly related to any of the above;
Voluntary purpose
The name and contact details (including but not limited to office address, telephone number and email address) provided by the End-client and the Professional Firm to KYC Management will be used for:
4.7 marketing KYC Management’ own services and/or related products.
If an End- client and/or the Professional Firm does not want KYC Management to use his/its personal data for the purposes mentioned in paragraph 4.7 above, he/it may write to or email the contact details at the end of this statement, indicating his/its decision and/or return a copy of this statement to us.
IMPORTANT NOTES about KYC Management marketing:
All marketing in relation to KYC Management services and related products to Representatives is sent to them in their official capacity as representatives of the client business for whom they work or represent and not in their individual capacity.
5.1 any other branch or associated firm or office of KYC Management;
5.2 a government agency such as the Hong Kong Police, the Hong Kong Customs and Excise Service, the Hong Kong Immigration Service and the Independent Commission against Corruption, if KYC Management knows or suspects that any person is engaged in drug trafficking, terrorism or any other serious crime or handling the proceeds of crime or that any property constitutes terrorist property; in this case, the obligation to report to the authorities may override KYC Management’ confidentiality obligations;
5.3 any actual or proposed assignee of KYC Management or transferee of KYC Management’ rights in respect of the End-clients and the Professional Firms or any company which takes over, or is negotiating the take-over of, the business of KYC Management or into which KYC Management is merged;
5.4 to third party service providers which provide administrative, technology, marketing or other services to KYC Management in relation to its business operations.
KYC Management will not transfer data relating to a client to a third person for that person’s marketing activities.
7.1 check whether KYC Management holds data about him/her and may request access to such data;
7.2 request KYC Management to correct any data relating to him/her which are inaccurate;
7.3 request KYC Management to specify its policies and practices in relation to data and to be informed of the kind of personal data held by KYC Management;
7.4 request KYC Management to cease using his/her personal data for its marketing purposes.
9.1 for access to data or correction of data;
9.2 for information regarding policies and practices and kinds of data held are to be addressed IN WRITING to our Privacy Officer via the communication methods as set out in the section headed “How to contact us”.
We may share your personal data with or transfer it to the following parties:
We would like to use your name and contact details to send you marketing materials about our services and/or related products but we must obtain the consent (or an indication of no objection) of people who become our clients or staff before we can do so. If you do not want to receive our marketing materials, please send an email stating this to privacy@kyc.management. More information about this can be found in the above Personal Information Collection Statement.
We will retain your personal data for as long as is considered necessary for the purpose for which it was collected (including as required by the Applicable Data Protection Laws). In particular:
Our Website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connects may allow third parties to collect or share data about you. We do not control these websites, plug-ins or applications and are not responsible for any breach of their privacy policies or the Applicable Data Protection Laws. We encourage you to read the privacy policies of every website you visit when you go to those websites, plug-ins or applications.
Your personal data will generally be kept confidential and will not be disclosed to any other person without your consent. However, your data will be used (and disclosed) to third parties for the purposes for which they were collected. Your personal data may also be disclosed where we are required to do so by law. Please also refer to the above Personal Information Collection Statement as appropriate, for details.
Security is a priority for us when it comes to your personal data. We’re committed to protecting your personal data and have appropriate technical and organisational measures in place to make sure that happens. We have implemented an information security program that contains administrative, technical, and physical controls that are designed to safeguard your personal data and to ensure your personal data are not subject to unauthorised access.
KYC Management would like to make sure you are fully aware of all of your data protection rights under the Applicable Data Protection Laws. Every user is entitled to the following:
The right to access - You have the right to request us for copies of your personal data. We may charge you a small fee for this service.
The right to rectification - You have the right to require us to correct any personal data we hold about you that you believe is inaccurate. You also have the right to request us to complete the personal data you believe is incomplete.
The right to erasure - You have the right to require us to erase your personal data, under certain conditions.
The right to restrict processing - You have the right to require us to restrict the processing of your personal data, under certain conditions.
The right to object to processing - You have the right to object to us relating to the processing of your personal data, under certain conditions.
The right to data portability - You have the right to require us to transfer the data that we have collected to another organisation, or directly to you, under certain conditions.
The right to cease processing your data - To require that we cease processing your personal data if the processing is causing you damage or distress.
Please note that the above rights are not absolute, and we may be entitled to refuse requests where exceptions apply.
To find out more about your rights, please refer to the relevant data protection governmental body or regulatory authority (as the case may be) in the place where you are located.
If you have any questions about how we use your personal data, or you wish to exercise any of the rights set out above, please contact us via any of the contact details listed above.
If you are not satisfied with how we are processing your personal data, you can make a complaint with us directly via the contact details above, and/or to the relevant data protection governmental body or regulatory authority (as the case may be) in the place where you are located.
We may transfer, store, or process your personal information in locations outside the jurisdiction in which you are based (“Jurisdiction”). Where the countries to which your personal information is transferred do not offer an equivalent level of protection for personal information to the laws of the Jurisdiction, we will ensure that appropriate and reasonable safeguards and security measures are put in place.
Where we transfer your personal information from the Jurisdiction, we will only do so in compliance with any applicable data protection laws and regulations.
For individuals in the European Economic Area (EEA), this means that your data may be transferred outside of the EEA. Where your personal data is transferred outside the EEA, it will only be transferred to countries that have been identified as providing adequate protection for EEA data, or to a third party where we have approved transfer mechanisms in place to protect your personal data.
To find out more about transfers by us of your personal data outside the Jurisdiction or any countries concerned, please contact our Privacy Officer via any of the contact details as set out in the above section headed “How to contact us”.
A cookie is a small text file which is placed onto your device (e.g. computer, smartphone or other electronic device) when you use our website. We use cookies on our website. These help us recognise you and your device for authentication purposes. Further, we may monitor the traffic data and the location data of our users.
We place strictly necessary cookies on your browser to ensure that our website delivers you information speedily, securely and optimally. You must accept these cookies to be able to access our website.
You may refuse the use of cookies or withdraw your consent at any time by selecting the appropriate settings on your browser. Please note that removal of cookies may affect your use and experience of our website.
By continuing to use our website without changing your privacy settings, you are agreeing to our use of cookies.
For further information on cookies generally, including how to control and manage them, visit the guidance on cookies published in www.aboutcookies.org or www.allaboutcookies.org.