Privacy Policy

HKING Privacy Policy

Last Updated: February 24, 2025

This HKING Privacy Policy (the "Policy") is issued by HKING Group companies (including: HUI TEK HK LIMITED and its affiliated companies (collectively "HKING", "we", "us", or the "Company")) as the personal information processor.

This Policy applies to the personal information processing activities related to your use of products, services, technologies or functions we provide (including official websites, mobile applications or other channels).

This Policy aims to explain how we collect, use, provide externally, store, and protect (collectively "process") your personal information, as well as how you can exercise your legal rights such as inquiry and deletion rights. We encourage you to read this Policy carefully and please ensure that you carefully read and confirm that you fully understand the contents stated in this Policy before accepting our services.

1. Scope of this Policy

This Policy applies to personal information collected and processed by HKING through the following means:

• Through our websites, mobile applications and other online services
• Through our customer service and support channels
• Through our marketing and promotional activities
• Through our business partners and third-party service providers
• Through other lawful channels

This Policy does not apply to third-party websites, products or services, even if they may be linked or integrated through our services.

2. How We Collect and Use Your Personal Information

2.1 Types of Personal Information We Collect

To provide and improve our services, we may collect the following types of personal information:

Identity Information

• Name, gender, date of birth, nationality
• Identity document information (ID card, passport, driver's license, etc.)
• Biometric information (if required)

Contact Information

• Email address, phone number, fax number
• Mailing address, billing address
• Social media account information

Business and Financial Information

• Company name, registration information, business license
• Bank account information, payment card details
• Transaction records, account balance, credit records
• Tax information, financial statements

Technical Information

• IP address, device identifiers, browser type and version
• Operating system, access time, referral URL
• Information collected through cookies and similar technologies
• Location information (if permitted)

2.2 Purposes of Personal Information Use

We process your personal information based on the following legal bases:

Performance of Contract

• Provide, maintain and improve our products and services
• Process and complete transactions, transfers and payments
• Manage your account and provide customer support
• Process refunds, disputes and complaints

Compliance with Legal Obligations

• Identity verification and anti-money laundering (AML) checks
• Counter-terrorism financing and sanctions screening
• Tax reporting and compliance
• Regulatory reporting and auditing

Legitimate Interests

• Fraud detection and prevention
• Risk management and security monitoring
• Business analysis and improvement
• Marketing and promotion (within the scope permitted by applicable law)

Consent

• Sending marketing communications and promotional information
• Using non-essential cookies and tracking technologies
• Collecting sensitive personal information (if required)

3. How We Use Cookies and Similar Technologies

We use cookies, web beacons, pixel tags and other similar technologies to:

• Essential Cookies: Ensure website functionality and security
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Understand website usage and performance
• Marketing Cookies: Provide personalized advertising and content

You can control the use of cookies through your browser settings, but this may affect website functionality. For detailed information about cookies, please refer to our Cookie Policy.

4. How We Share, Transfer, Process or Publicly Disclose Your Personal Information

4.1 Information Sharing

We may share your personal information in the following circumstances:

Service Providers

• Payment processors and financial institutions
• Identity verification and KYC service providers
• Cloud service providers and data storage services
• Customer service and technical support providers
• Marketing and analytics service providers

Business Partners

• Partners who collaborate with us to provide products or services
• Referral partners and affiliate partners
• Partners integrating third-party services

Legal and Regulatory Requirements

• Regulatory authorities and government departments
• Law enforcement agencies and courts
• Tax authorities
• Anti-money laundering and counter-terrorism financing agencies

4.2 Business Transfers

In mergers, acquisitions, asset sales or similar business transfers, your personal information may be transferred as part of business assets. We will notify you before such transfers occur.

4.3 Consensual Sharing

With your explicit consent, we may share your personal information with other third parties.

We do not sell your personal information to third parties for marketing purposes.

5. How We Store Your Personal Information

5.1 Storage Locations

Your personal information may be stored in the following locations:

• Hong Kong Special Administrative Region
• Singapore
• Other jurisdictions where we or our service providers operate

5.2 Retention Period

We will determine the retention period for personal information based on the following principles:

• The minimum time required to achieve the collection purpose
• Requirements of applicable laws and regulations
• Guidance from regulatory authorities
• Statute of limitations periods

Generally, we will retain your information for 7 years after your account closure, unless longer retention periods are required by law.

6. How We Protect Your Personal Information

6.1 Technical Security Measures

• Encryption Technology: Use industry-standard encryption to protect data transmission and storage
• Access Control: Implement strict access control and authentication mechanisms
• Network Security: Deploy firewalls, intrusion detection systems and other security tools
• Data Backup: Regularly backup important data and test recovery procedures

6.2 Organizational Security Measures

• Employee Training: Regularly train employees on privacy and security
• Security Policies: Develop and implement comprehensive security policies and procedures
• Incident Response: Establish security incident response and notification procedures
• Third-Party Management: Conduct security assessments and supervision of service providers

Despite our efforts to protect your personal information, please note that no method of transmission or electronic storage is 100% secure. We cannot guarantee the absolute security of your information.

7. Cross-Border Transfer of Personal Information

We may process, store and transfer your personal information globally. This means your information may be transferred to and stored in countries outside your country of residence.

7.1 Cross-Border Transfer Safeguards

• Adequacy Decisions: Prioritize countries/regions with adequate data protection levels
• Standard Contractual Clauses: Sign EU Standard Contractual Clauses or similar agreements with recipients
• Certification Mechanisms: Ensure recipients pass relevant data protection certifications
• Internal Policies: Implement group-wide data protection policies and procedures

7.2 Main Transfer Destinations

Your personal information may be transferred to the following countries/regions:

• Hong Kong

8. Protection of Minors' Personal Information

Our services are primarily intended for adults. We do not knowingly collect personal information from minors under 18 years of age.

• If you are a minor, please use our services under the guidance of your parents or guardians
• If you are a parent or guardian and believe your child has provided us with personal information, please contact us
• Once we discover that we have collected personal information from minors, we will take measures to delete such information as soon as possible

9. Your Rights

Under applicable data protection laws, you may have the following rights:

9.1 Right of Access

You have the right to know whether we process your personal information and to obtain copies of your personal information.

9.2 Right of Rectification

You have the right to request that we correct inaccurate, incomplete or outdated personal information.

9.3 Right of Erasure

In certain circumstances, you have the right to request that we delete your personal information, including:

• Personal information is no longer needed for the original purpose
• You withdraw consent and there is no other legal basis
• Personal information has been unlawfully processed
• Deletion is required for compliance with legal obligations

9.4 Right to Restrict Processing

In certain circumstances, you have the right to request that we restrict the processing of your personal information.

9.5 Right to Data Portability

You have the right to receive your personal information in a structured, commonly used and machine-readable format, and have the right to transmit that information to another data controller.

9.6 Right to Object

You have the right to object to the processing of your personal information based on legitimate interests or for direct marketing purposes.

9.7 Right to Withdraw Consent

If we process your personal information based on your consent, you have the right to withdraw consent at any time.

9.8 Right to Complain

You have the right to lodge a complaint with the relevant data protection supervisory authority regarding our processing of your personal information.

To exercise these rights, please contact us using the contact information provided at the end of this Policy. We will respond to your request within the time prescribed by law.

10. How to Contact Us

If you have any questions, comments or requests regarding this Privacy Policy, or need to exercise your rights, please contact us through the following methods:

Data Protection Officer Contact Information

• Email: pl@hkinghk.com
• Customer Service Email: service@hkinghk.com
• Phone: +852-5246-3885
• Address: Room 69, 2/F, Eton Tower, 8 Hysan Avenue, Causeway Bay, Hong Kong

Response Time

We will respond to your request within:

• General inquiries: Within 5 business days
• Rights exercise requests: Within 30 days (may be extended to 60 days for complex cases)
• Emergency security incidents: Within 24 hours

11. How This Policy is Updated

We may update this Privacy Policy from time to time to reflect changes in our business practices, changes in legal requirements, or other reasons.

11.1 Update Notifications

• Material Changes: We will notify you in advance through email, website announcements or other appropriate means
• General Updates: We will publish the updated policy on our website
• Effective Date: The updated policy will take effect immediately upon publication, unless otherwise stated

11.2 Version Control

We will indicate the last update date at the top of the policy and retain historical versions of the policy for reference.

We encourage you to review this Policy regularly to understand how we protect your information. Continued use of our services indicates your acceptance of the updated policy.