
Please read this privacy policy carefully to understand how we handle your personal data.
We respect your privacy and are committed to protecting your personal data. This privacy policy is prepared with reference to the Personal Data (Privacy) Ordinance (Cap. 486) of Hong Kong (PDPO) and, where applicable, the European Union General Data Protection Regulation (GDPR). Hong Kong Business Services Centre Limited is the data user under the PDPO and, where GDPR applies, the controller of the personal data described in this policy.
We may collect, use, store, and transfer different kinds of personal data about you depending on the service, enquiry, or secure invitation link involved:
We use different methods to collect personal data from and about you, including:
We use personal data only for lawful, service-related, compliance, security, and administrative purposes, including:
We may have to share your personal data with third parties, including:
We use administrative, technical, and physical safeguards designed to protect personal data against accidental loss, unauthorised access, alteration, disclosure, or misuse. These safeguards may include access controls, secure invitation-only links, encryption or provider security controls where appropriate, file validation, staff confidentiality obligations, and limits on access to people and providers who need the data for authorised purposes. No internet transmission or storage system is completely secure, but we work to keep protections proportionate to the sensitivity of the data.
We retain personal data only for as long as necessary for the purposes for which it was collected, and for legal, accounting, tax, compliance, regulatory, audit arrangement, dispute handling, and security purposes. Enquiry records may be kept for follow-up and business records. KYC, company formation, statutory, accounting, tax, corporate administration, and client due diligence records may need to be kept for longer periods required or permitted by applicable law and professional practice. When data is no longer needed, we will delete, anonymise, or restrict it where reasonably practicable. We generally keep client due diligence, KYC, transaction, company administration, accounting, tax, and statutory records for the period required or permitted by applicable law and professional practice; where anti-money laundering, TCSP, accounting, tax, or company record rules apply, this may include keeping relevant records for at least 5 years after the end of the business relationship or relevant transaction. Website security cookies and short-lived verification records are kept only for their stated security purpose and period unless a longer legal, security, or dispute need applies.
Depending on the privacy law that applies to you, your rights in relation to personal data may include:
To exercise access, correction, or other privacy rights, contact our Privacy/Data Protection Contact at info@HKBSCL.com or Unit 744, 7/F, Star House, 3 Salisbury Road, Tsim Sha Tsui, Kowloon, Hong Kong. Please mark the request as a personal data access or correction request. We may verify your identity and may charge any fee permitted by applicable law before handling the request.
This website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy policy of every website you visit.
Our primary data processing operations are based in Hong Kong. We also use trusted cloud, email, storage, database, security, analytics, and communications providers, and their systems may store, back up, replicate, or process encrypted or access-controlled data in Hong Kong, the Asia-Pacific region such as Singapore or Japan, or other locations according to their service architecture. Where a cross-border transfer occurs, we take practical steps such as provider due diligence, access controls, contractual terms, and technical safeguards appropriate to the nature of the data and the service. Where GDPR applies, transfers are handled with reference to applicable transfer safeguards.
We may update our privacy policy from time to time. Any changes we make will be posted on this page, and where appropriate, we will notify you by email.
For privacy questions, data access or correction requests, or concerns about this policy, please contact our Privacy/Data Protection Contact at info@HKBSCL.com or Unit 744, 7/F, Star House, 3 Salisbury Road, Tsim Sha Tsui, Kowloon, Hong Kong.
Some website forms and secure client links include a short collection notice at the point where data is collected. Those notices should be read together with this policy.
The AI chat is an optional website feature for general HKBSCL service enquiries. Please do not submit sensitive personal data through AI chat.