COMBA TELECOM SYSTEMS HOLDINGS LIMITED
For the purpose of the relevant data protection laws in force in places including but not limited to Hong Kong and the European Union (“EU”), Comba Telecom and our offices in EU are the data controller and/or data user which control the collection, holding, processing or use of your personal data.
Comba Telecom takes individuals' privacy seriously. We respect your privacy and we shall:
- protect the security and confidentiality of the personal data we collect;
- limit the personal data collected to the minimum required to provide services requested by you;
- permit only authorized employees to access personal data;
- not to disclose your personal data to external parties unless you have agreed, we are required by law or we have previously informed you; and
- process your personal data as necessary to comply with and fulfill legal obligations.
1. COLLECTION AND USE OF PERSONAL DATA
For the purpose of carrying on the Company's business, including registration, content or publication subscription, product enquiry and administration of the Company's products and services (including relevant online services), you may be requested to provide personal data such as, but not limited to, the following, without which it may not be possible to satisfy your request:
- personal and/or company information such as, your name, your company name, your job position, address, telephone number, mobile phone number, fax number, email address, company website, nature of business and product/service details etc. When you register with us, use our services, attend our functions, or communicate with us.
- personal identification data such as your identification type and passport or identity card number, date of birth and/or nationality for security and verification purposes;
- account details, including account numbers, service numbers, or user accounts, and/or payment details, including credit card and banking information for payment purpose;
- in connection with an account sign-in facility, your log-in and password details;
- the content of any communications you send to us, for example, to report a problem or to submit queries, concerns or comments regarding the website content or anything related to the company; and
- information from surveys that we may, from time to time, run on our websites for research purposes, if you choose to respond to, or participate in, them.
You may also be requested to provide certain data that may be used to further improve our products and services and/or better tailor the type of information presented to you. In most cases, this type of data is optional although, where the requested service is a personalised service, or provision of a product is dependent on your providing all requested data, failure to provide the requested data may prevent us from providing the service to you. This type of data may include, but is not limited to:
- your age;
- education and profession;
- social media accounts;
- other related products and services subscribed to; and
When you browse our websites, the Company's web servers may also automatically collect data relating to your online session, the use of which is to provide aggregated, anonymous, statistical information on the server's usage so that we may better meet the demands and expectations of visitors to our sites. This type of data may include, but is not limited to:
- the browser type; language and version;
- operating system; and
- the IP address and/or domain name.
The Company may also collect data by recording how you interact with our websites, products, or services. For example, to provide personalised services and/or maintain your identity across multiple pages within or across one or more sessions. This information may include, but is not limited to, relevant login and authentication details as well as information relating to your activities and preferences across our websites. At all times, every care is taken to protect such recordings from inadvertent and/or unauthorized access.
Also, the Company's websites may use technologies like cookies or receive use data from software running on your device and automatically collect some statistical data, including but not limited to visitors’ Geo/location/language or the numbers/duration of visits to our websites, for the purpose of understanding how users use our websites, products, and services so that we can improve our services and better satisfy your needs. The Company may collect, use, process, transfer, or disclose non-personal data for other purposes at its own discretion. Further information on cookies is set out below.
Following the requirements of applicable laws on an appropriate legal basis, the purposes for which information may be used by us in and outside Hong Kong include but not limited to:
- processing applications or creating an account;
- providing services and information as per your request;
- providing services to facilitate between our Hong Kong headquarter and international offices and providing enquirers with contact and business information;
- analyzing our business operations and evaluating market share, e.g., analysis, research;
- notification of or customer activities, promotional events or trade fairs around the world (and similar activities, events or trade fairs organized by third parties);
- distribution of our publications and research materials (and those of our business partners and counterparts);
- marketing our services or products (and those of our business partners and counterparts engaged in similar or peripheral activities, such as business matching services, sourcing and conferences);
- complying with laws, regulations or codes of practice in or outside Hong Kong;
- legal proceedings, including collecting overdue amounts;
- other purposes directly relating to the activities identified above;
- prevention or detection of crime, and protection of the security and safety of our events and trade fairs; and
- verification of identity in events organised by us where it is necessary to verify your identity.
We may conduct direct marketing via fax, email, direct mail, telephone and other means of communication whether now or hereafter known, or send e-newsletters to you. You may choose not to receive promotional materials, by simply telling us (see below for contact details), and we will cease to do so, without charge. If applicable law requires that we receive your explicit consent before we send you certain types of marketing communications, we will only send you those types of communications after receiving your explicit consent.
2. COOKIES AND SIMILAR TECHNOLOGIES
Cookies are small text files, sometimes encrypted text files that are stored on computer or mobile hard drives by websites that you visit. They are used to help you navigate websites efficiently as well as to provide information to the owner of the website.
The cookies we use and the use purposes are:
Strictly necessary cookies: These are necessary to help make the website usable by enabling basic functions like, session management, page navigation and access to secure areas of the website. The website cannot function properly without these cookies
Statistics cookies: These are used to collect information about how visitors use our website, helping us to understand how visitors interact with the website
Functional cookies: These are used to remember choices users make to improve their experience
Marketing cookies: These are used to track visitors across websites or create user profiles to send advertising, to make our site and ads on it better meet your interests. Information collected may share with third parties who we advertise with
We use an email delivery and marketing company to send emails that you have agreed to receive. In addition to cookies, pixels tags and web beacons may also be used in those emails to help us measure the effectiveness of our advertising and how recipients interact with our emails. For example, when you receive an email from us, it may contain a click-through URL that links to other websites. If you click the link, it will track your click to help us learn about your preferences for content and improve our customer service. A web beacon is a transparent graphic image embedded in the email. We use pixel tags in emails to find out whether an email has been opened. You can unsubscribe from our mailing list at any time if you do not want to be tracked in this manner.
3. RETENTION OF PERSONAL DATA
The Company will destroy any personal data it may hold in accordance with our internal retention policy. Such policy states that:
- personal data will only be retained for as long as is necessary to fulfill the purposes stated in this Policy, unless otherwise extending the retention period is required or permitted by law.; and
- personal data are purged from the Company's electronic, manual, and other filing systems in accordance with specific schedules based on the above criteria and the Company's internal procedures.
4. DISCLOSURE OF PERSONAL DATA
All personal data held by the Company will be kept confidential but the Company may, where such disclosure is necessary to satisfy the purpose, or a directly related purpose, for which the data was collected provide such information to the following parties:
- any subsidiaries, holding companies, associated companies, or affiliates of, or companies controlled by, or under common control with the Company;
- any person or company who is acting for or on behalf of the Company, or jointly with the Company, in respect of the purpose or a directly related purpose for which the data was provided;
- any other person or company who is under a duty of confidentiality to the Company and has undertaken to keep such information confidential, provided such person or company has a legitimate right to such information; and
- Companies and individuals to perform functions on our behalf. Examples include fulfilling orders for products or services, delivering packages, sending postal mail and e-mail, analysing data, providing marketing assistance, providing search results and links, processing payments, transmitting content and providing customer service. These third-party service providers have access to personal information needed to perform their functions but may not use it for other purposes. Further, they must process the personal information in accordance with this Policy and as permitted by applicable data protection laws.
We may provide your personal data as required or permitted by law to comply with a summons, subpoena or similar legal process or government request, or when we believe in good faith that disclosure is legally required or otherwise necessary to protect our rights and property, or the rights, property or safety of others, including but not limited to advisers, law enforcement, judicial and regulatory authorities in or outside Hong Kong. We may also transfer your personal data to a third party that acquires all or part of our assets or shares, or that succeeds us in carrying on all or a part of our business, whether by merger, acquisition, reorganization or otherwise.
5. TRANSFER OF PERSONAL DATA OUTSIDE OF HONG KONG
We will generally hold your data on our servers hosted in Hong Kong. However, we may transfer it to our overseas offices elsewhere in the world for the purpose of processing into our database or to any of the people listed above, who may be located elsewhere. If you are located in the European Economic Area (“EEA”) your personal data may be transferred to countries located outside the EEA which do not provide a similar or adequate level of protection to that provided by countries in the EEA. Such transfers will only be made in accordance with applicable laws. We will take all steps reasonably necessary to ensure that any personal data are treated securely and in accordance with this Policy.
6. SECURITY OF PERSONAL DATA
Physical records containing personal data are securely stored in locked areas and/or containers when not in use. Computer data are stored on computer systems and storage media to which access is strictly controlled and/or are located within restricted areas. Access to records and data without appropriate management authorization are strictly prohibited. Authorizations are granted only on a "need to know" basis that is commensurate with an individual's Company responsibilities and their training. Records of the Company are under the control of assigned information officers who are responsible to ensure the transfer of or access to information is legitimate and complies with the applicable laws. Audit records may be produced to validate data modifications in order to verify the data's integrity. There may be violations of logging processes for investigation of any unauthorized attempt to access information. Encryption technology, such as SSL, may be employed for the transmission of data collected online.
7. DIRECT MARKETING
The Company will honor an individual's request not to use his or her personal data for the purposes of direct marketing. Should you wish not to receive direct marketing material from the Company, please write to the Company's Privacy Compliance Officer. Any such request should clearly state details of the personal data in respect of which the request is being made. Unless otherwise instructed as per the above, the Company may use any of the data collected in the normal course of its business for marketing purposes.
8. HYPERLINKS TO THIRD-PARTY
Our websites, emails or publications (collectively, the “Site”) may, from time to time, contain links to the external websites operated by third parties for your convenience. We have no control of and are not responsible for these third-party sites or the content thereof. Once you leave the Site, we cannot be responsible for the protection and privacy of any information which you provide to these third-party websites. You should exercise caution and look at the privacy statement for the website you visit.
9. UPDATES AND CHANGES
10. YOUR DATA PRIVACY RIGHTS
Under the Hong Kong Personal Data (Privacy) Ordinance, you have the right to:
- check whether the Company holds any personal data relating to them and, if so, obtain copies of such data;
- require the Company to correct any personal data relating to them which is inaccurate for the purpose for which it is being used; and
- ascertain the Company's policies and practices in relation to personal data, which are those policies and practices set out in their entirety herein.
If you are in an EU Member State, subject to certain limitations and/or restrictions, you have the right under the data protection laws in the EU:
- to request access to and rectification or erasure of your personal data;
- to obtain restriction of processing or to object to processing of your personal data; and
- to the right to data portability.
Individuals in the EU also have the right to lodge a complaint about the processing of their personal data with their local data protection authority.
11. CONTACT DETAILS
If you wish to exercise one of the above-mentioned rights, cease marketing communications, and/or raise questions or complaints please contact us at:
Data Privacy Officer
COMBA TELECOM SYSTEMS HOLDINGS LIMITED
611 East Wing, No.8 Science Park West Avenue
Hong Kong Science Park
Tai Po, Hong Kong
Tel: +852 2636 6861 Fax: +852 2637 0966 / +852 2116 6055
Last updated on 23-July-2021