Last updated: November 2023
We at RioEx respect the privacy and confidentiality of the personal data of our Customers, Partners, Consultants, Contractors, Service Providers, Outsourced Third-Parties and others who have business dealings with us. We are committed to implementing policies, practices and processes to safeguard the collection, use and disclosure of the personal data you provide us, in compliance with the Hong Kong Data Privacy Ordinance of 2012/2013.
a) “Personal data” as referred herein means data, whether true or not, about an individual who can be identified — (a) from that data; or (b) from that data and other information to which the organization has or is likely to have access (which includes, for avoidance of doubt User Credentials);
b) “Data intermediary” means an organization which processes personal data on behalf of another organization but does not include an employee of that other organization; and
3. Purposes for which Personal Data is Collected, Used, Disclosed, Processed or Handled
In respect of all personal data you provide to us (including on or through the Site or Services), you consent to the collection, use, disclosure, processing or handling, by us or our affiliates (including any data intermediary of ours, related companies or affiliates) of such personal data, for the following purposes:
a) Responding to your queries, requests and feedback;
b) To maintain your account with us and process payments or verify your identity/ entitlement to use the Site or Services or any part thereof;
c) To execute the operation, fulfilment, and administration of part of the Services or functions or features of the Site;
d) To facilitate the negotiation, entry and execution into various Contracts with other Users or make certain Third Party Services available on or through the Sites;
e) To communicate with you to inform you of changes to the Site or Services, or our policies, terms and conditions and other administrative information;
f) To comply with our obligations under the TOU or enforce our rights under (or in connection with) the same;
g) To comply with any applicable law, judgment, order, code, standard or regulation and participate in (or co-operate with) legal, regulatory or administrative proceedings or directions;
h) To protect and safeguard the operation of the Site and Services including preventing, detecting, reporting and supporting / assisting in investigations into any crime (including fraud, theft, money laundering, terrorism misuse or abuse of the Site or Services), cybersecurity incidences or risks, or any of the same where suspected;
i) To conduct or facilitate audits for the purposes of meeting legal requirements, compliance or industry standards, or as may be desirable to enhance the standing, quality, scope and capacity of the Site or Services;
j) To conduct data analytics as referred to in the TOU, including (but not limited to) matching and profiling you (and, for avoidance of doubt, your Registered Users) to provide you with features and functions of the Site or the Services which may be relevant or of interest to you and to improve your user experience and for the purposes of enhancing the Site or Services or developing new product or service offerings; and
k) Such other purposes as may be reasonably related to the above. For the purposes of (j), personal data will be aggregated and / or anonymized, such that no one individual can be identified or recognized from the user statistics in question. You acknowledge and agree that any anonymized data is not personal data and that we have the right to share and disclose such anonymized data with third parties for any purposes.
4. Types of Personal Data We Collect About You
The types of personal data we collect about you may include:
a) Personal particulars (NRIC /Passport No., Name, Gender, Date of Birth, Citizenship, Country of Residence)
b) Personal contact information (Phone No., Mobile Phone No., Residential Address, Mailing Address, Email address)
c) Corporate information (Corporation incorporation, Register of Directors and Shareholders)
d) Financial information (Type of credit card, Cardholder Name, Credit Card No.)
e) Purchase information (Purchase history, Product/Service preferences)
6. Accuracy, Completeness and Updating of Personal Data
7. Protection and Retention of Personal Data
We will take the necessary security arrangements to protect your personal data that is in our possession to prevent unauthorized access, use, disclosure, or similar risks. We will take reasonable and appropriate measures to maintain the confidentiality and integrity of your personal data, and will only share your data with authorized persons on a ‘need to know’ basis. Third-parties engaged by us to process and maintain your personal data on our behalf will be bound by contractual information security arrangements we have with them.
We will not retain any of your personal data under our charge when it is no longer necessary for any business or legal purposes. Based on our Document Retention Policy, we will ensure that your personal data that is no longer needed by us will be destroyed or disposed of in a secure manner.
8. Your Obligations to Ensure Security & Confidentiality
You are solely responsible for maintaining the security and confidentiality of any personal data provided or made available by or through you (including, without limitation, any User Credentials) and where any of the Site is installed or accessed via any device, you agree that you will safeguard the access to the use of the same on that device by applying security measures as may be reasonably appropriate.
9. Transfers of your Data / Data export
In submitting personal data to us, the personal data may be transferred / exported to locations in other territories outside of your location for the purposes of data processing (as defined above) by third party data intermediaries (as defined above). We endeavour to do so in each instance in accordance with applicable laws, and require such data intermediaries to comply with all applicable laws and to provide an equivalent standard of protection for such personal data as such personal data would have received had the personal data remained in your territory. Such personal data may be stored in servers operated by third party service providers.
10. Cookies / log files
a) A cookie is a small file containing a string of characters that is sent to your computer when you visit the Site for record keeping purposes. Cookies are stored in your browser’s file directory, and the next time you visit the Site, your browser will read the cookie and relay the information back to the Site or element that originally set the cookie.
b) Depending on the type of cookie it is, cookies may store user preferences and other information, such as how a visitor arrives at the Site, what kind of browser a visitor is on, what operating system a visitor is using, a visitor’s IP address and a visitor’s clickstream information and time stamp (for example, which pages they have viewed, the time the pages were accessed and the time spent per web page). There are several types of cookies: (i) session cookies expire at the end of your browser session and allow us to link your actions during that particular browser session; (ii) persistent cookies are stored on your device in between browser sessions, allowing us to remember your preferences or actions across multiple sites; (iii) first-party cookies are set by the Site; (iv) third-party cookies are set by a third party site separate from the Site.
d) Cookies can be disabled or removed by tools that are available in most commercial browsers. The preferences for each browser you use will need to be set separately and different browsers offer different functionality and options. Deleting cookies does not mean you are permanently opted out of any advertising program. Unless you have settings that disallow cookies, the next time you visit a site running the advertisements, a new cookie will be added.
e) We offer certain site features and services that are available only through the use of these technologies. You are always free to block, delete, or disable these technologies if your browser so permits. However, if you decline cookies or other similar technologies, you may not be able to take advantage of certain site features or services tools. For more information on how you can block, delete, or disable these technologies, please review your browser settings.
ii) To help speed up your future browsing activities and boost your overall user experience on the Site or Services;
iii) To enable the Site to operate, for example, cookies that enable you to log onto secure parts of the Site or use the Services;
iv) To track you as you navigate the Site and to enable the use of any features of the Site or Services (including, without limitation, e-commerce facilities);
11. Queries Concerning your Personal Data
[Appoint a DPO]