Privacy policy
OVERVIEW
Hung Fat Tea Company Limited (collectively "we", “us”, the "Company", ”Hung Fat Tea Co.”) respect the privacy rights of visitors to the Company’s website and mobile app and of individuals who participate in, access or sign up to any of the Company's services, activities or online content. We endeavor to ensure that all our collection, transmission, storage and usage of personal data is carried out in compliance with the Personal Data (Privacy) Ordinance, Cap 486 of the laws of the Hong Kong Special Administrative Region (the "PDPO"). By providing your personal data to us, you are consenting to this Privacy Policy.
The term "personal data" shall have the meaning ascribed to it by the PDPO.
APPLICATON OF THE PRIVACY POLICY
This policy applies to the hftea.com.hk website and when you share your personal data with us through our in-store subscriptions, telephone or other voluntary means. The privacy policy does not apply to linked websites other than this website, nor does it apply to persons who are not entrusted or participate in the management of this website.
PURPOSE OF COLLECTION AND USE OF PERSONAL DATA
You need not supply any personal data in order to access the Company’s website. When you participate in, access or sign up to any of the Services, personal data is collected from you to enable us to provide you with the Services. You may decline to provide us with the requested personal data, but in such case we may not be able to provide the Services to you. By submitting your personal data you consent to the use of that data as set out in this Privacy Policy Statement.
Personal data collected from you may be used by the Company for, without limitation:
- identifying you and any accounts you hold with us;
- enabling the provision of the Services to you;
- conducting identity verification and/or credit checks;
- processing of payment instructions or collection of amounts outstanding from you in relation to the provision of the Services;
- enabling us to store your personal data so you do not have to re-enter it each time you purchase a product or renew an insurance product;
- order processing, billing and fulfilment;
- direct marketing of the Services (see section “Direct Marketing” below);
- direct marketing of the products and services of the Company’s business partners (see section “Direct Marketing” below);
- designing services for you;
- conducting research, statistical analysis and behavioral analysis;
- customer profiling and analysing your purchasing preferences;
- enabling you to participate in interactive features of our service, including identifying your friends or individuals, and sharing and communicating with them your shopping experience, when you choose to do so;
- making suggestions and recommendations to you and other users of our Services or goods and services that may interest you or them;
- customising the Company’s website and its content to your particular preferences;
- provisioning of customer services;
- handling your complaints and account enquiries, and handling any claim, action and/or proceedings against the Company or any party;
- fraud prevention and detection;
- auditing purposes;
- making such disclosures as required by applicable laws, rules and regulations;
- any other purposes directly related to the purpose for which the personal data were originally collected.
Types of personal data collected by the Company may include, without limitation:
- Your personal information and contact information such as your name, gender, date of birth, identity card number, telephone number, social media contact, email address, residential address, mailing address, and billing address;
- Your business information such as company name and business title;
- Your account details, including first 6 and last 4 digits of credit card account numbers, or user accounts;
- Your household income range, and personal interest;
- IP address, real-time geographic location data, browser settings, browsing records, and/or other Internet log information of your computer or mobile device.
Shopify
Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.
Payment:
If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
For more insight, you may also want to read Shopify’s Terms of Service here or Privacy Statement here.
CONFIDENTIALITY, DISCLOSURE AND SECURITY OF PERSONAL DATA
All personal data collected and held by the Company will be kept confidential, but where disclosure is necessary for the Company to comply with any statutory obligations or requirements, or for the Company to provide the Services to you or to carry out the original purpose, or a directly related purpose, for which the personal data were collected, those data may be provided to the following parties (whether within or outside Hong Kong):- Competent court of law, law enforcement agencies, or other governmental or statutory authorities, institutions or organisations;
- Company’s associated companies, business partners, contractors, agents, sellers or suppliers of the goods/services, or other service operators, who are involved in the sales and marketing, administration or provision of the Services;
- Company’s business partners including without limitation insurance companies who assess and/or process insurance applications, renewal applications, insurance claims and settlements, provide insurance services for you and/or handle enquiries or complaints
- Any other person under a duty of confidentiality to the Company including a member of its group of companies, IT consultants, data processors, auditors, accountants, or lawyers, which has undertaken to keep such information confidential; and
- Banks, financial institutions, insurance companies, credit card issuing companies or debt collection agencies.
Any questions, comments, suggestions or information other than personal data sent or posted to our website, or any part of the site by you will be considered as voluntarily provided to the Company on a non-confidential and non-proprietary basis. We reserve the right to use, reproduce, disclose, transmit, publish and/or post elsewhere such information freely, including passing it to any associated company for example, in connection with the development and marketing of services and to meet user needs.
THIRD-PARTY SERVICES
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s Terms of Service.
DIRECT MARKETING
From time to time, the Company may use your personal data to send you news, offers, promotions and joint marketing offers and the Company requires your consent for that purpose. We may contact you by email, in-app notifications, social media, text/picture/video message or mail. Your name, email address, contact address, social media contact, date of birth, products and services portfolio information, transaction patterns and behaviors, browsing records, content viewing habits and personal interests held by the Company may be used by the Company in direct marketing of the Services and the following products or services offered by the Company’s business partners.
If you prefer not to receive any direct marketing communications from us or our marketing partners, you can opt out at any time by updating your preferences through your registered account or a unsubscribe link provided. Upon receipt of your request, we shall cease to so use your personal data as soon as possible without charge to you.
Cookies
The Company may set and access cookies on your computer. Cookies are used to provide our system with the basic information to provide the services you are requesting. Cookies can be cleared at any time from your internet browser settings.
LINKS
This Privacy Policy Statement only applies to the Company’s website. Our website may contain links to other sites and pages. By activating a link, such as for example by clicking on the banner of an advertiser, you leave our website and the Company does not exercise control over any personal data or any other information you give to any other entity after you have left our website. Access to and use of such other websites is at your own risk.
YOUR RIGHT TO ACCESS PERSONAL DATA
You have the right of access to or correction of, and to withdraw your consent concerning your Personal Data held by us.
If you have any questions regarding this Privacy Policy, or if you wish to access or change your Personal Data, or withhold the information from us, you may send your request in writing to Hung Fat Tea Co – G/F New York House, 60 Connaught Road Central, Hong Kong; or send email to info@hftea.com.hk.
We reserve the right to charge you a reasonable fee for the processing of any data access request.