邦民日本財務

私隱政策聲明

  1. 引言

    這是邦民日本財務(香港)有限公司(下稱「邦民」)的「私隱政策聲明」(下稱「本聲明」)。訂立本聲明的目的,是為確立邦民有關全力保護其客戶及有關第三方 (下稱「第三方」)的個人資料的私隱,遵守«個人資料(私隱)條例»(下稱「該條例」)下的一切規定行事,以及執行由香港持牌放債人公會就有關該條例而頒布的指引。邦民會遵守該條例及有關的管限原則以及與此相關的有關指引,並將確保其職員遵守本聲明所載的政策以及該條例及與此相關的有關指引下的規定。

  2. 所持個人資料的目的
    2.1 客戶就開立及/或延續貸款戶口、建立及/或延續信貸融通,及/或提供其他財務服務而言,需要不時向邦民提供個人資料及第三方的個人資料。所涉及客戶及第三方的個人資料包括但不限於以下個人資料(下統稱「個人資料」):
    (a) 全名;
    (b) 身份證號碼或旅遊證件號碼,包括身份證及旅遊證件影印本及嵌入其集成電路中的資料;
    (c) 出生日期;
    (d) 居住及/或通訊地址;
    (e) 電話/手提電話號碼;
    (f) 電郵地址;
    (g) 生物特徵數據,包括但不限於面容影像及儲存於具生物識別功能的身份及/或旅遊證件中的生物特徵數據,不論是否以用戶的電子設備或其他方法以生物特徵數據感應模組收集;
    (h) 職業,薪金及收入;
    (i) 家居開支及受養人數目;及
    (j) 邦民認為有需要的其他或再進一步資料。
    2.2 若未能提供該等個人資料,可能會導致邦民無法開立或延續貸款戶口,建立或延續信貸融通,向客戶提供其他財務服務。
    2.3 邦民在通常業務運作中,例如,當客戶以口頭或書面形式與邦民溝通時,亦會透過文書形式或邦民的自動電話系統,由邦民操作及維持的網站(下稱「網站」)及/或行動應用程式(下稱「應用程式」)(視屬何種情況而定)向客戶收集該等個人資料。邦民亦會向第三方,包括客戶因邦民產品及服務的推廣以及申請邦民產品及服務而接觸的第三方服務供應商,收集與客戶有關的個人資料(包括從獲核准加入「信資通」*的信貸資料服務機構(下統稱「信貸資料服務機構」)接收個人資料)。
    *「信資通」是一多家個人信貸資料服務機構模式,由香港銀行公會、香港有限制牌照銀行及接受存款公司公會及香港持牌放債人公會在香港金融管理局的支持下建立。這是新的運作模式,其一目的是讓貸款人得以透過多於一家信貸資料服務機構共用個人信貸資料。
    2.4 客戶及第三方的個人資料可能會用於下列用途:
    (a) 貸款戶口、信貸融通及提供給客戶之其他財務服務之日常運作;
    (b) 在申請信貸時進行的對客戶的信貸調查,及不時進行的定期或特別審查;
    (c) 編制及維持邦民的信貸評分模式;
    (d) 協助其他在香港特別行政區(下稱「香港」)獲核准加入「信資通」的信貸提供者進行信貸調查及追討債務;
    (e) 確保客戶維持可靠信用;
    (f) 設計供客戶使用的財務服務或有關產品;
    (g) 計算邦民與客戶之間的欠款;
    (h) 向客戶追收欠款;
    (i) 按照以下各項,遵守適用於邦民或邦民被預期遵守的有關個人資料披露及使用的責任、規定或安排:
    (A) 在目前或未來於香港境內或境外生效的對其具約束力或適用的任何法律;
    (B) 任何法律、監管、政府、稅務、執法或其他機關,或財務服務供應商的自我監管或行業機構或組織所作出或頒布的,在目前或未來於香港境內或境外生效的任何指引或指導;及
    (C) 因邦民在有關的本地或外地法律、監管、政府、稅務、執法或其他機關,或自我監管或行業機構或組織的管轄範圍內(或與此管轄範圍有關)的財務、商業、業務或其他權益或活動,而由邦民承擔或對邦民施加的與本地或外地法律、監管、政府、稅務、執法或其他機關,或財務服務供應商的自我監管或行業機構或組織之間的任何目前或未來的合約承諾或其他承諾;
    (j) 遵守有關於任何邦民之附屬公司、控股公司、聯營公司或關聯公司(下稱「邦民集團公司」)內的個人資料及資訊共享及/或個人資料及資訊的任何其他使用(有關共享及使用,均依照符合對洗錢、恐怖分子資金籌集或其他不法活動的制裁、防止或偵測的任何邦民集團公司的計劃而進行)的任何責任、規定、政策、程序、措施或安排;
    (k) 使邦民的實際或建議承讓人,或邦民對客戶的權利的參與人或附屬參與人能評核意圖成為轉讓、參與或附屬參與的標的之交易;
    (l) 推廣邦民的財務服務或產品;及
    (m) 與上述各項有關的其他用途。
    就客戶的個人資料而言,在(a)至(k)(含兩者)段中列出的用途及與之相關的任何用途均屬「強制性」用途,意思是如客戶希望使用邦民的服務,客戶必須准許邦民將其個人資料用作該等用途。 在(l)段中列出的用途及與之相關的任何用途均屬「自願性」用途,意思是客戶有權選擇邦民是否可將他們的個人資料用於該等用途,且若客戶不欲邦民將其個人資料用於該等用途,他/她可告知邦民而邦民不會將其個人資料用於該等用途。

    就第三方的個人資料而言,在(a)至(l)(含兩者)段中列出的用途及與之相關的任何用途均屬「自願性」用途,意思是第三方有權選擇邦民是否可將他們的個人資料用於該等用途,且若第三方不欲邦民將他/她的個人資料用於該等用途,他/她可告知邦民或客戶其意願不要將該等個人資料披露予邦民,而客戶其後不應將該等個人資料提供予邦民,且若邦民知悉第三方不同意邦民就上述用途使用該等個人資料,邦民將不會將該等個人資料用於該等用途。
  3. 個人資料的可能承轉人類別

    邦民會對其持有的有關客戶及第三方的個人資料保密,但邦民可能會把該等個人資料提供給下述各方(不論在香港內外)作第2.4段列出的用途(全部均為強制性用途,惟第2.4(l)段除外):

    (a) 向邦民提供行政、電訊、電腦、付款或其他與邦民業務運作有關的服務的任何代理人、承包人或第三方服務供應者;
    (b) 任何對邦民負有保密責任的其他人,包括已承諾對該資料保密的邦民集團公司成員公司;
    (c) 獲得客戶或第三方(視屬何種情況而定)明示訂明同意的任何人;
    (d) 信貸資料服務機構(包括信貸資料服務機構所使用的任何中央資料庫之經營者),以及(在發生欠賬時)追討欠款公司;
    (e) 邦民有責任或在其他情況下須向其作出「有關披露」的任何人士;而「有關披露」是指:對邦民具約束力或適用的任何法律的規定下的披露;或由任何法律、監管、政府、稅務、執法或其他機關,或財務服務供應商的自我監管或行業機構或組織所作出或頒布的邦民被預期遵守的任何指引或指導下及其所指的任何披露;或依據邦民與本地或外地法律、監管、政府、稅務、執法或其他機關,或財務服務供應商的自我監管或行業機構或組織之間的任何合約承諾或其他承諾的任何披露(以上各項可為於目前或未來在香港境內或境外生效者);
    (f) 用於直接促銷的選定人士(作為自願性用途);
    (g) 邦民為上文第2.4(l)段所載用途而聘用的外部服務供應商(包括但不限於郵寄公司、電訊公司及資訊科技公司);及
    (h) 邦民的任何實際或建議承讓人或邦民對客戶的權利的參與人或附屬參與人或受讓人。
    邦民可根據客戶向邦民或客戶使用之第三方服務供應商所發出的指示,使用邦民的應用程式介面(API)向第三方服務供應商轉移客戶的個人資料,以作邦民或第三方服務供應商所通知客戶的用途及/或客戶根據該條例所同意的用途。
  4. 個人資料的保安

    邦民的政策為因應個人資料的敏感程度及因擅自查閱或處理所造成的損害程度,確保個人資料獲得適當程度的保護並全面遵守該條例下的規定(尤其是該條例下的第4保障資料原則),以防止個人資料被擅自查閱、處理或作其他用途。為達到適當程度的保安保護,邦民的一貫做法為透過使用保安的儲存設施,以及在資料存置設備實施保安措施,來限制對資料的實體接觸。邦民亦採取措施以確保查閱該等資料的人士具備良好操守、審慎態度及辦事能力。資料只會以保安的方式傳送。

  5. 個人資料的準確性

    邦民的政策為確保由邦民收集及處理的所有個人資料均為準確並全面遵守該條例下的規定(尤其是該條例下的第2保障資料原則)。邦民實施適當的程序以定期核對及更新所有個人資料,以確保有關的資料就被使用或將被使用的目的而言屬準確。倘若邦民所持有的個人資料含有意見陳述,邦民會採取一切合理切實可行的步驟,以確保任何為支持有關意見陳述而獲引述的事實,均屬正確。

  6. 個人資料的收集
    6.1 在收集個人資料的過程中,邦民會向有關個人提供一份「個人資料收集聲明」,向他們述明(當中包括)收集的擬作目的、可能獲轉移個人資料的人士的擬定類別、他們查閱及改正個人資料的權利,以及其他有關資料。
    6.2 就於網上(包括通過網站及/或應用程式 (視屬何種情況而定),「網上」一詞在本聲明應作如此解釋) 收集個人資料而言,邦民會採納以下實務:
    (a) 網上保安
    邦民會按照嚴格的保安及保密標準保障在網上提供給邦民的任何資料;並就互聯網上敏感性資料的傳輸採用加密技術,以保障個人的私隱。
    (b) 網上改正資料
    透過網上設施提供給邦民的個人資料一經呈交,便未必能在網上刪除、改正或更新。客戶如希望刪除、改正或更新該個人資料,便應聯絡邦民有關部門或分行。
    (c) 網上保留資料
    在網上收集的個人資料會被轉移到邦民有關部門或分行處理。個人資料不會保留於邦民網站伺服器的資料庫。
  7. 使用Cookies

    當客戶瀏覽網站及/或使用應用程式時,邦民可能會透過cookies記錄及收集客戶到訪網站及/或使用應用程式的資訊,以及客戶與邦民的網上廣告或連結的互動資料,讓邦民改善其對客戶的服務。

    Cookies是由網站伺服器傳送至網站瀏覽器的小段資訊,這些資料儲存於本機硬碟中,使網站伺服器能於稍後再從網站瀏覽器內讀取。這有助網站保存某特定客戶的特定資料。Cookies被設計成只可讓發出的網站讀取。雖然cookies可能會收集客戶訪問網站及/或應用程式時的特定資訊但不包含個人資料,但cookies不能用作取得客戶的硬碟資料(例如客戶的姓名﹑電郵地址或其他可識別個人身份的資料)。

    大部分網站瀏覽器都預設為接受cookies。如客戶不希望被cookies追蹤,客戶可透過變更其有關網站及/或應用程式的瀏覽器內的設定以選擇「不接受」cookies。但此舉或令客戶可能未能適當地瀏覽網站及/或應用程式的全部或部分內容及其財務服務。

    如需查詢更多詳情,請點擊此處以查看邦民的Cookies政策。

  8. 超連結政策
    8.1 雖然網站及/或應用程式包含超連結或可連接至其他網站/網址,但這並不表示或暗示邦民對該等超連結、連接,或有關該等網站/網址的身份或資料作任何認證、核實、聲明、批核或認可。
    8.2 就該等超連結、連接、與網站及/或應用程式連結或連接的其他網站/網址所提供或附有資訊的內容、供應、準確性或遺漏,邦民明確表明概不負責。
    8.3 一切通往其他網站、網址或資源的超連結或連接,當中之存取及使用風險全由客戶自行承擔。
  9. 查閱資料要求及改正資料要求
    9.1 邦民的政策為按照該條例的規定,依從及處理一切查閱資料及改正資料要求;及讓所有有關職員熟悉有關的規定,以協助提出有關要求的各人士。
    9.2 邦民或會在符合該條例的規定下,就查閱資料要求徵收合理費用。倘若任何提出查閱資料要求的人士要求邦民提供按早前的查閱資料要求提供過的個人資料的額外副本,邦民或會收取費用以全數彌補因提供該額外副本而涉及的行政成本及其他成本。
    9.3 致予邦民的查閱及改正資料的要求,可向資料保障主任或其他相特定指明人員提出。資料保障主任的聯絡方式請參見下面第13段 (資料保障主任的委任)。
  10. 資料保留

    邦民的政策,乃採取一切實際可行的步驟以確保個人資料的保存時間不超過將其保存以貫徹該個人資料在被收集時以及為遵守法律法規不時生效的要求被使用於或會被使用於的目的(包括任何直接有關的目的)所需的時間。

  11. 直接促銷

    邦民的政策,乃於收集或使用個人資料以作直接促銷目的時,嚴格依從該條例及與之相關的有關指引下的規定。如無有關客戶及第三方的訂明同意,邦民不會將個人資料用於直接促銷目的。

  12. 遵守該條例

    除上文明述的各點外,就其客戶及第三方的個人資料的收集、處理或使用而言,邦民將全面遵守該條例及與之相關的有關指引下的一切規定。
    為確保遵守該條例及與之相關的有關指引所載的規定,邦民備有:

    (a) 紀錄簿,即該條例第27條所規定的紀錄簿;
    (b) 內部政策及指引以供邦民員工使用及視為指引,其內容關乎對該條例及與之相關的有關指引的遵守事宜。
  13. 資料保障主任的委任
    13.1 邦民已委任資料保障主任,以負責統籌及監察該條例及與之相關的有關指引,以及邦民保障個人資料政策的遵守情況。
    13.2 有關本聲明的問題應發送至資料保障主任, 其聯絡資料如下:
    香港灣仔港灣道18號
    中環廣場12樓
    邦民日本財務(香港)有限公司
    資料保障主任
    傳真號碼:2529-6744
    電話號碼:3199-1199

本聲明的英文及中文版本如出現歧異,概以英文版本為準。

邦民日本財務(香港)有限公司

最後更新日期︰2024年9月



PRIVACY POLICY STATEMENT

  1. INTRODUCTION

    This is the Privacy Policy Statement ("Statement") of Promise (Hong Kong) Co., Limited ("Promise"). The purpose of this Statement is to establish Promise's policies and practices and its commitment to protect the privacy of personal data of its customers and relevant third parties ("Third Parties"), and to act in compliance with all the requirements of the Personal Data (Privacy) Ordinance (the "Ordinance") and implement the guidelines issued by the Licensed Money Lenders Association relating to the Ordinance. Promise will comply with the Ordinance and the relevant governing principles and guidelines in relation thereto and will ensure compliance by its staff with the policies and practices set out in this Statement and the requirements of the Ordinance and the relevant guidelines in relation thereto.

  2. PURPOSES OF THE PERSONAL DATA HELD
    2.1 From time to time, it is necessary for customers to supply Promise with their personal data and personal data about Third Parties in connection with the opening and/or continuation of loan accounts, the establishment and/or continuation of credit facilities, and/or provision of other financial services. Such personal data of customers and Third Parties shall include but are not limited to the following (collectively "personal data"):
    (a) full name;
    (b) identity card number or travel document number including copies of the identity card and travel document and data embedded in the integrated circuits in such documents;
    (c) date of birth;
    (d) residential and/or correspondence address(es);
    (e) telephone/mobile phone number(s);
    (f) email address;
    (g) biometric data including but not limited to facial image(s) and data embedded in biometrically enabled identity and/or travel documents whether obtained through a biometric sensor module on the user's electronic devices or otherwise;
    (h) occupation, salary and income;
    (i) household expenses and number of dependents; and
    (j) such other or further data as Promise deems necessary.
    2.2 Failure to supply such personal data may result in Promise being unable to open or continue loan accounts, or establish or continue credit facilities, or provide other financial services to customers.
    2.3 It is also the case that such personal data are collected from customers in the ordinary course of business of Promise, for example, when customers communicate orally or in writing with Promise, by means of documentation, via the automated telephone system, the website ("Website") and / or the mobile apps ("Apps") operated and maintained by Promise (as the case may be). Promise will also collect personal data relating to customers from third parties, including third party service providers with whom a customer interacts in connection with the marketing of Promise's products and services, and in connection with a customer's application for Promise's products and services (including receiving personal data from credit reference agencies approved for participation in Credit Data Smart* (collectively "credit reference agencies")).
    * "Credit Data Smart" is the Multiple Credit Reference Agencies (MCRA) Model developed by the Hong Kong Association of Banks, the Hong Kong Association of Restricted License Banks and Deposit-taking Companies (DTCA), and the Hong Kong S.A.R. Licensed Money Lenders Association Limited, with the support of the Hong Kong Monetary Authority. It is a new operating model for, among others, enabling lenders to share and use consumer credit data through more than one credit reference agency.
    2.4 The purposes for which the personal data of customers and Third Parties may be used are as follows:
    (a) the daily operation of loan accounts, credit facilities and other financial services provided to customers;
    (b) conducting credit checks against the customers upon an application for credit and when regular or special reviews are conducted from time to time;
    (c) creating and maintaining Promise's credit scoring models;
    (d) assisting other credit providers in the Hong Kong SAR ("Hong Kong") approved for participation in Credit Data Smart to conduct credit checks and collect debts;
    (e) ensuring ongoing creditworthiness of customers;
    (f) designing financial services or related products for customers' use;
    (g) determining amounts owed to or by customers;
    (h) collection of amounts outstanding from customers;
    (i) complying with obligations, requirements or arrangements for disclosing and using personal data that apply to Promise or that it is expected to comply with according to:
    (A) any law binding or applicable to it within or outside Hong Kong existing currently or in the future;
    (B) any guidelines or guidance given or issued by any legal, regulatory, governmental, tax, law enforcement or other authorities, or self-regulatory or industry bodies or associations of financial services providers within or outside Hong Kong existing currently or in the future; and
    (C) any present or future contractual or other commitment with local or foreign legal, regulatory, governmental, tax, law enforcement or other authorities, or self-regulatory or industry bodies or associations of financial services providers that is assumed by or imposed on Promise by reason of its financial, commercial, business or other interests or activities in or related to the jurisdiction of the relevant local or foreign legal, regulatory, governmental, tax, law enforcement or other authority, or self-regulatory or industry bodies or associations;
    (j) complying with any obligations, requirements, policies, procedures, measures or arrangements for sharing personal data and information within any subsidiaries, holding companies, associated companies or affiliates of Promise ("Promise Group Companies") and/or any other use of personal data and information in accordance with any group-wide programmes for compliance with sanctions or prevention or detection of money laundering, terrorist financing or other unlawful activities;
    (k) enabling an actual or proposed assignee of Promise, or participant or sub-participant in Promise's rights in respect of customers to evaluate the transaction intended to be the subject of the assignment, participation or sub-participation;
    (l) marketing financial services or products of Promise; and
    (m) other purposes relating to each of the above.
    In relation to personal data of customers, the purposes listed in paragraphs (a) to (k) (inclusive) and any purposes related thereto are "obligatory" purposes, meaning that customers must permit Promise to use their personal data for these purposes if they wish to use Promise's services. The purposes listed in paragraph (l) and any purposes related thereto are "voluntary" purposes, meaning that customers have a choice whether Promise can use their personal data for these purposes and if a customer does not want Promise to use his/her personal data for those purposes, he/she can tell Promise and Promise will not use his/her personal data for those purposes.

    In relation to personal data of Third Parties, the purposes listed in paragraphs (a) to (l) and any purposes related thereto are "voluntary" purposes, meaning that Third Parties have a choice whether Promise can use their personal data for these purposes and if a Third Party does not want Promise to use his/her personal data for these purposes, he/she can tell Promise or the customer of his/her wish not to disclose such personal data to Promise, and the customer shall not thereafter provide such personal data to Promise and Promise will not use his/her personal data for those purposes if Promise is aware that Third Party does not consent to the use of such personal data for such purposes.
  3. CLASSES OF POSSIBLE TRANSFEREES OF THE PERSONAL DATA

    Personal data held by Promise relating to a customer and a Third Party will be kept confidential but Promise may provide such personal data to the following parties (whether within or outside Hong Kong) for the purposes set out in paragraph 2.4 (all obligatory purposes except paragraph 2.4(l)):

    (a) any agent, contractor or third party service provider who provides administrative, telecommunications, computer, payment or other services to Promise in connection with the operation of its business;
    (b) any other person under a duty of confidentiality to Promise including a member of the Promise Group Companies which has undertaken to keep such information confidential;
    (c) any person with the express prescribed consent of customers or Third Parties (as the case may be);
    (d) credit reference agencies (including the operator of any centralized database used by credit reference agencies), and, in the event of default, debt collection agencies;
    (e) any person to whom Promise is under an obligation or otherwise required to make disclosure under the requirements of any law binding on or applying to Promise, or any disclosure under and for the purposes of any guidelines or guidance given or issued by any legal, regulatory, governmental, tax, law enforcement or other authorities, or self-regulatory or industry bodies or associations of financial services providers with which Promise is expected to comply, or any disclosure pursuant to any contractual or other commitment of Promise with local or foreign legal, regulatory, governmental, tax, law enforcement or other authorities, or self-regulatory or industry bodies or associations of financial services providers, all of which may be within or outside of Hong Kong and may be existing currently or in the future;
    (f) as a voluntary purpose, selected persons for use in direct marketing;
    (g) external service providers (including but not limited to mailing houses, telecommunication companies and information technology companies) that Promise engages for the purpose set out in paragraph 2.4(l) above; and
    (h) any actual or proposed assignee of Promise or participant or sub-participant or transferee of Promise's rights in respect of the customers.
    Promise may, in accordance with the instructions from customers of Promise or third party service providers engaged by the customers, transfer the personal data of customers to third party service providers using the Application Programming Interfaces (API) of Promise for the purposes notified to customers by Promise or third party service providers and/or as consented to by the customers in accordance with the Ordinance.
  4. SECURITY OF PERSONAL DATA

    It is the policy of Promise to ensure an appropriate level of protection for personal data in full compliance with the requirements under the Ordinance, particularly Data Protection Principle 4 of the Ordinance in order to prevent unauthorized access, processing or other use of the personal data, commensurate with the sensitivity of the personal data and the harm that would be caused by such unauthorized access or processing. It is the practice of Promise to achieve appropriate levels of security protection by restricting physical access to data using secure storage facilities, and incorporating security measures into equipment in which data are held. Measures are taken to ensure the integrity, prudence, and competence of persons having access to personal data. Data are only transmitted by secure means.

  5. ACCURACY OF PERSONAL DATA

    It is the policy of Promise to ensure accuracy of all personal data collected and processed by Promise in full compliance with the requirements of the Ordinance, particularly Data Protection Principle 2 of the Ordinance. Appropriate procedures are implemented to provide for all personal data to be regularly checked and updated to ensure that such data are accurate having regard to the purposes for which those data are or are to be used. In so far as personal data held by Promise consist of statements of opinion, all reasonably practicable steps are taken to ensure that any facts cited in support of such statements of opinion are correct.

  6. COLLECTION OF PERSONAL DATA
    6.1 In the course of collecting personal data, Promise will provide the individuals concerned with a Personal Information Collection Statement informing them of, amongst other things, the proposed purposes of collection, proposed classes of persons to whom the personal data may be transferred, their rights to access and correct the personal data, and other relevant information.
    6.2 In relation to the collection of personal data on-line (including through the Website and/or the Apps, as the case may be, and "on-line" is interpreted as such in this Statement), the following practices are adopted:
    (a) On-line Security
    Promise will follow strict standards of security and confidentiality to protect any information provided to Promise on-line. Encryption technology is employed for sensitive data transmission on the Internet to protect individuals' privacy.
    (b) On-line Correction
    Personal data provided to Promise through an on-line facility, once submitted, may not be deleted, corrected or updated on-line. Customers should approach relevant departments or branches of Promise if they wish to delete, correct and/or update such personal data.
    (c) On-line Retention
    Personal data collected on-line will be transferred to Promise's relevant departments or branches for processing. Personal data will not be retained in the web server's database of Promise.
  7. USE OF COOKIES

    Promise may record and collect information on customers' visits to the Website and/or use of the Apps, and their interactions with Promise's on-line advertisements and links while on the Website and/or the Apps through the use of cookies, to help Promise improve its services.

    Cookies are small pieces of data transmitted from a web server to a web browser. Cookies data are stored on a local hard drive such that the web server can later read back the cookies data from a web browser. They are useful for allowing a website to maintain certain information on a particular customer and are designed to be read only by the website that provides them. While specific information about a customer's visit to the Website and/or use of any of the Apps, but no personal data, may be collected via cookies, cookies cannot be used to retrieve data (such as a customer's name, e-mail address or other personally identifiable information) from a customer's hard drive.

    Most web browsers are initially set up to accept cookies. If a customer does not want to be tracked by cookies, the customer can choose to 'not accept' cookies by changing the settings within the customer's browser in relation to the Website and/or the Apps. However, by doing so the customer may not be able to access all or part of the Website and/or the Apps and other financial services properly.

    For more details, please click here for Promise's Cookies Policy.

  8. HYPERLINK POLICY
    8.1 The availability of hyperlinks or connections to other sites / addresses at the Website and/or the Apps does not mean or imply any authentication, verification, representation, approval or endorsement by Promise of such hyperlinks, connection, or the identity or information relating to such sites / addresses.
    8.2 Promise expressly disclaims any responsibility for such hyperlinks, connections, the contents, availability, accuracy or omission of information at other sites/addresses linked to or found on the sites/addresses that link to or from the Website and/or the Apps.
    8.3 All hyperlinks or connection to other sites, addresses or resources are accessed and used at customers' own risk.
  9. DATA ACCESS REQUESTS AND DATA CORRECTION REQUESTS
    9.1 It is the policy of Promise to comply with and process all data access and correction requests in accordance with the provisions of the Ordinance, and for all staff concerned to be familiar with the requirements for assisting individuals to make such requests.
    9.2 Promise may, subject to the Ordinance, impose a reasonable fee for complying with a data access request. If a person making a data access request requires an additional copy of the personal data that Promise has previously supplied pursuant to an earlier data access request, Promise may charge a fee to cover the full administrative and other costs incurred in supplying that additional copy.
    9.3 Data access and correction requests to Promise may be addressed to the Data Protection Officer ("DPO") whose contact details can be found at paragraph 13 (Appointment of DPO) below or other person as specifically advised.
  10. DATA RETENTION

    It is the policy of Promise to take all practical steps to ensure that personal data are not kept longer than is necessary for the fulfilment of the purposes (including any directly related purposes) for which the personal data are or are to be used at the time of the collection and for compliance with the legal and regulatory requirements in force from time to time.

  11. DIRECT MARKETING

    It is the policy of Promise strictly to follow the requirements of the Ordinance and the relevant guidelines in relation thereto when collecting or using personal data for direct marketing purposes. Promise will not use personal data for direct marketing purpose without the prescribed consent of relevant customers and Third Parties.

  12. COMPLIANCE WITH THE ORDINANCE

    Apart from the above specifically mentioned points, Promise will fully comply with all requirements of the Ordinance and the relevant guidelines in relation thereto regarding the collection, handling, or use of personal data of its customers and Third Parties. The following are maintained by Promise to ensure compliance with the Ordinance and the relevant guidelines in relation thereto:

    (a) a log book as provided for in section 27 of the Ordinance; and
    (b) internal policies and guidelines on compliance with the Ordinance and the relevant guidelines in relation thereto for use by and guidance to Promise's staff.
  13. APPOINTMENT OF DPO
    13.1 To co-ordinate and oversee compliance with the Ordinance and the relevant guidelines in relation thereto, and the personal data protection policies of Promise, a DPO has been appointed by Promise.
    13.2 Inquiries regarding this Statement should be addressed to the DPO, whose contact details are as follows:
    The Data Protection Officer
    Promise (Hong Kong) Co., Limited
    12/F., Central Plaza,
    18 Harbour Road, Wanchai,
    Hong Kong
    Facsimile number: 2529-6744
    Telephone number: 3199-1199

In the event of any inconsistency between the English and Chinese versions of this Statement, the English version will prevail.

Promise (Hong Kong) Co., Limited

Last Updated Date: September 2024



Cookies政策

為讓閣下有更好的網上體驗,閣下瀏覽邦民網站(下稱「網站」)時及/或使用任何邦民移動應用程式(下稱「應用程式」)時之紀錄將被用作統計分析及診斷網站及/或應用程式出現的問題,以改善網站及/或應用程式之穩定性。閣下訪問網站及/或使用應用程式時,網站及/或應用程式透過cookies收集上述若干資訊以及若干關於閣下、閣下使用的瀏覽器、裝置及喜好等一般資訊,而該等資料可能會包含閣下訪問網站及/或應用程式時的特定資訊(該等資料及資料,下稱「使用資料」)但不包含個人資料。如閣下繼續使用網站及/或應用程式,閣下將被視為同意邦民在閣下的電腦及/或流動裝置上放置cookies。如閣下不希望被cookies追蹤,請參閲以下「管理Cookies設定」的部分。

Cookies是什麼?
Cookies是由網站伺服器傳送至瀏覽器的小段資訊,這些資訊儲存於電腦硬碟中,使網站伺服器能於稍後再從瀏覽器內讀取。雖然cookies可能會收集使用資料,但cookies不能用作取得閣下的硬碟資料(例如閣下的姓名﹑電郵地址或其他可識別個人身份的資料)。

Cookies的用途
當閣下瀏覽網站及/或使用應用程式時,邦民使用不同類型的cookies以用作下述的不同用途:

(1) 必要的cookies讓邦民知悉閣下有否啟動cookies設定,並暫時容許資訊在網站及/或應用程式的不同頁面之間傳遞,使閣下無須反覆輸入該等資訊。
(2) 功能性cookies協助邦民在閣下每次到訪網站及/或應用程式時識別閣下,從而讓邦民記錄閣下的喜好設定及其他資料,並且為閣下提供更個人化之網站及/或應用程式內容。
(3) 分析性/性能cookies幫助邦民收集統計資料,例如首次到訪及重覆到訪網站及/或應用程式的數量。邦民會使用這些資料了解閣下如何使用網站及/或應用程式,從而改善網站及/或應用程式的設計,使其更簡單易用。
(4) 目標性/廣告cookies記錄閣下到訪網站及/或應用程式的資訊及閣下對邦民的網上廣告的回應,並追蹤閣下曾經瀏覽的網頁及/或應用程式和點擊的連結,讓邦民提供最可能令閣下感興趣的網上廣告。
(5) 第三方cookies可由邦民或由第三方代表邦民儲存於閣下的裝置內。這些cookies會由規模大且著名的廣告網絡及外部服務供應商,包括但不限於Google或Facebook等管理。邦民或會將收集到的若干資料,如關於閣下、閣下使用的瀏覽器、裝置及喜好等資訊,以及閣下與網站及/或應用程式的互動資訊,分享予有關的第三方作若干用途,包括瞭解網站及/或應用程式用戶(包括人口統計及行為模式)及分析閣下如何使用網站及/或應用程式,從而為閣下提供個人化的網上廣告及內容等,而該等資訊屬於匯總及匿名的資料。邦民並不會透過使用第三方cookies,收集或分享可識別閣下身份的資料。這些cookies可能是分析性/性能或目標性/廣告cookies。

管理Cookies設定
大部分網站瀏覽器都預設為接受cookies。如閣下不希望被cookies追蹤, 閣下可以透過修改網絡瀏覽器及/或流動裝置的設定而選擇「不接受」cookies(包括必要的cookies)。但閣下明白此舉或令閣下可能未能適當地瀏覽網站及/或應用程式的全部或某些部分。

有關如何進行此項操作的更多資料,請參考閣下的互聯網瀏覽器及/或流動裝置的「說明」或「設置」選項進行設定。



Cookies Policy

To provide you with a better online experience, your visits to Promise's website ("the website") and/or use of any of Promise's mobile apps ("the Apps") will be recorded to compile statistical reports and diagnose problems with the website and/or the Apps to improve their stability. Some of this information, together with some general information about you, your browser, device and interests, will be gathered through the use of cookies when visiting the website and/or using the Apps and such data may include specific information about your visit to the website and/or use of the Apps (such data and information, "use data") but no personal data. By continuing to use the website and/or the Apps, you will be deemed to have agreed to Promise placing cookies on your computer and/or mobile device. If you do not wish to be tracked by the cookies, please refer to the section "Managing Cookies Settings" below.

What are Cookies?
Cookies are small pieces of data transmitted from a web server to a web browser. Cookies data are stored on a local hard drive and enable the web server to retrieve the cookies data from a web browser. While use data may be collected via cookies, cookies cannot be used to retrieve data (such as your name, e-mail address or other information which may identify you personally) from your hard drive.

Use of Cookies
When you visit Promise's website and/or use the Apps, Promise uses different kinds of cookies for different purposes as stated below:

(1) Necessary cookies are used to let Promise know whether you have enabled your cookies settings and temporarily allowed information to be transferred between different pages of the website and/or the Apps so it does not need to be re-entered.
(2) Functionality cookies help Promise recognize each time you visit the website and/or use the Apps, so Promise can remember your preferences and certain other details and personalize the website and/or Apps'content just for you.
(3) Analytical/ performance cookies help Promise collect statistics, such as the number of new and repeated visits to the website and/or the Apps. Promise uses this information to understand how you use the website and/or the Apps in order to improve the website and/or the Apps' design and make them more user-friendly.
(4) Targeting/ advertising cookies record your visits to the website and/or the Apps and your responses to our online advertisements, and track the pages on the website and/or the Apps which you visited and the links you followed. They allow Promise to provide online advertisements which are most likely to interest you.
(5) Third party cookies may be placed on your device by Promise or third parties on Promise's behalf. These cookies will be managed by big, recognizable advertising networks and providers of external services, including but not limited to Google or Facebook. Certain information about you and your browser, device and interests, and your interactions with the website and/or the Apps, which is aggregated and anonymized, may be shared with such third parties for the purposes of, amongst other things, finding out about users of the website and/or the Apps, including demographics and behaviour, and evaluating your use of the website and/or the Apps to provide tailored online advertisements and content to you. Promise will not collect or share information that may identify you personally through the use of third party cookies. These are likely to be analytical/ performance or targeting/ advertising cookies.

Managing Cookies Settings
Most web browsers are initially set up to accept cookies. If you do not want to be tracked by cookies, you can choose to 'not accept' cookies (including "necessary" cookies) by changing the settings within your browser and/or mobile device. However, by doing so, you may not be able to access all or part of the website and/or the Apps properly.

For more information about how to do this, please follow the 'Help' or 'Settings' option in your internet browser and/or your mobile device.