Privacy Policy
1. Introduction and Purpose of Policy
mCommerce ("we", "us", or "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit our website and engage with our services.
As a Hong Kong-based company providing software solutions, AI technologies, and partnership programs, we are committed to complying with the Personal Data (Privacy) Ordinance, Cap. 486 ("PDPO") of Hong Kong and maintaining the highest standards of data protection.
This Privacy Policy applies to all information collected through our website, including when you browse our pages, submit inquiry forms, or interact with our consultation services. Please read this Privacy Policy carefully to understand our practices regarding your personal data.
By accessing or using our website, you acknowledge that you have read, understood, and agree to be bound by the terms of this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our website.
2. Information We Collect
We collect information from you when you visit our website or submit forms to contact us. Our website does not have user accounts, registration, or login features. The types of information we may collect include:
2.1 Information You Provide to Us
- Contact Information: When you submit inquiry or consultation forms, we may collect your name, email address, phone number, company name, and job title.
- Communication Content: Any information you choose to provide in your messages, inquiries, or consultation requests, including details about your business needs, project requirements, or questions about our services.
- Business Information: Information about your company, industry sector, and specific requirements related to software solutions, AI services, or partnership opportunities.
2.2 Automatically Collected Information
When you visit our website, certain information is automatically collected through cookies and similar technologies:
- Browsing Data: Information about your visit, including pages viewed, time spent on pages, links clicked, and navigation paths through our website.
- Device Information: Device type, operating system, browser type and version, screen resolution, and device identifiers.
- Technical Data: IP address, geographic location (country and city level), time zone settings, and referring website addresses.
- Usage Analytics: Information about how you interact with our website, including page performance metrics and user preferences.
2.3 Information We Do Not Collect
Our website does not include user account functionality. We do not collect or maintain:
- User credentials, passwords, or authentication information
- Member profiles or account histories
- Payment information or financial data
- Social media login credentials
- Personal identification documents
3. How We Use the Information
We use the information we collect for legitimate business purposes, including:
3.1 Service Delivery and Communication
- To respond to your inquiries, questions, and consultation requests
- To provide information about our software products, AI solutions, and partnership programs
- To communicate with you regarding our services, updates, and business opportunities
- To arrange consultations, demonstrations, or technical assessments
- To provide customer support and technical assistance
3.2 Website Improvement and Analytics
- To analyze website usage patterns and improve user experience
- To optimize website performance, navigation, and content
- To understand visitor preferences and interests
- To test new features and functionality
- To troubleshoot technical issues and maintain website security
3.3 Business Operations
- To evaluate potential business partnerships and collaboration opportunities
- To conduct market research and business analysis
- To develop and improve our service offerings
- To maintain business records and documentation
3.4 Legal and Compliance
- To comply with applicable laws, regulations, and legal obligations
- To protect our rights, property, and safety, and those of our clients and partners
- To enforce our terms of service and other agreements
- To respond to legal proceedings and government requests
We will only use your personal data for the purposes for which we collected it. If we need to use your personal data for an unrelated purpose, we will notify you and explain the legal basis for such use.
4. Data Storage and Security Measures
We take the security of your personal data seriously and implement appropriate technical and organizational measures to protect your information against unauthorized access, disclosure, alteration, or destruction.
4.1 Security Measures
Our security measures include, but are not limited to:
- Encryption: Data transmitted between your browser and our servers is encrypted using industry-standard SSL/TLS protocols.
- Access Controls: Strict access controls ensure that only authorized personnel can access personal data on a need-to-know basis.
- Secure Infrastructure: Our systems are hosted on secure servers with firewalls, intrusion detection systems, and regular security monitoring.
- Regular Updates: We maintain up-to-date security patches and software updates to protect against vulnerabilities.
- Employee Training: Our staff receives regular training on data protection and privacy best practices.
- Incident Response: We have procedures in place to detect, respond to, and report data security incidents.
4.2 Data Storage Location
Your personal data is primarily stored on secure servers located in Hong Kong. In some cases, data may be stored or processed in other jurisdictions where our service providers operate. When we transfer data outside Hong Kong, we ensure appropriate safeguards are in place to protect your information in accordance with the PDPO.
4.3 Security Limitations
While we implement robust security measures, please be aware that no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security of your personal data. You should also take steps to protect your information, such as using secure networks and being cautious about sharing sensitive information online.
If you have reason to believe that your interaction with us is no longer secure, please contact us immediately using the information provided in Section 9.
5. Use of Cookies
Our website uses cookies and similar tracking technologies to enhance your browsing experience and gather information about how you use our website.
5.1 What Are Cookies?
Cookies are small text files placed on your device when you visit our website. They help us recognize your browser and remember certain information about your preferences and activities.
5.2 Types of Cookies We Use
- Essential Cookies: These cookies are necessary for the website to function properly and cannot be disabled. They include cookies that enable basic functionality such as page navigation and access to secure areas.
- Performance and Analytics Cookies: These cookies collect information about how visitors use our website, such as which pages are visited most often and if error messages are received. This data helps us improve website performance and user experience.
- Functionality Cookies: These cookies remember your preferences and choices (such as language preferences) to provide a more personalized experience.
5.3 Third-party Cookies
We may use third-party analytics services (such as Google Analytics) to analyze website traffic and usage patterns. These services may set their own cookies on your device. We do not control these third-party cookies and recommend reviewing the privacy policies of these services.
5.4 Managing Cookies
You can control and manage cookies through your browser settings. Most browsers allow you to:
- View and delete existing cookies
- Block third-party cookies
- Block all cookies
- Delete all cookies when you close your browser
Please note that if you disable cookies, some features of our website may not function properly, and your user experience may be limited. For more detailed information about cookies, please refer to our Cookie Policy.
6. Disclosure to Third Parties
We do not sell, trade, or rent your personal data to third parties. However, we may share your information with trusted third parties in the following circumstances:
6.1 Service Providers
We may engage third-party service providers to perform functions on our behalf, such as:
- Website hosting and maintenance services
- Email communication and marketing platforms
- Analytics and data analysis services
- IT support and technical services
- Cloud storage providers
These service providers have access to your personal data only to perform specific tasks on our behalf and are obligated to protect your information and use it only for authorized purposes.
6.2 Business Partners
With your consent, we may share your information with our technology partners and vendors when relevant to your inquiry or business needs. This may include sharing contact information with authorized distributors or partners who can provide specialized services or solutions.
6.3 Legal Requirements
We may disclose your personal data if required to do so by law or in response to:
- Court orders, subpoenas, or other legal processes
- Government or regulatory authority requests
- Law enforcement investigations
- Legal obligations under Hong Kong law
6.4 Business Transfers
In the event of a merger, acquisition, reorganization, or sale of assets, your personal data may be transferred to the acquiring entity. We will notify you of any such change and ensure that your data continues to be protected in accordance with this Privacy Policy.
6.5 Protection of Rights
We may disclose personal data when we believe it is necessary to:
- Protect our rights, property, or safety
- Protect the rights, property, or safety of our users or the public
- Enforce our Terms of Service
- Prevent fraud or security threats
7. Data Access and Correction Rights under Hong Kong's PDPO
Under the Personal Data (Privacy) Ordinance, Cap. 486 of Hong Kong, you have specific rights regarding your personal data. We are committed to facilitating the exercise of these rights.
7.1 Right of Access
You have the right to request access to your personal data that we hold. Upon receiving your request, we will provide you with:
- Confirmation of whether we hold your personal data
- A copy of your personal data
- Information about how we use and process your data
- Information about any third parties to whom your data has been disclosed
7.2 Right to Correction
You have the right to request correction of any inaccurate, incomplete, or outdated personal data we hold about you. We will investigate your request and make appropriate corrections within a reasonable timeframe.
7.3 How to Exercise Your Rights
To submit a data access or correction request, please contact us using the information provided in Section 9. Your request should include:
- Your full name and contact information
- A clear description of the personal data you wish to access or correct
- Proof of identity (copy of Hong Kong Identity Card or passport)
- Any relevant reference numbers or dates
7.4 Processing Timeline and Fees
We will respond to your data access request within 40 days as required by the PDPO. We may charge a reasonable fee to cover the administrative costs of processing your request. You will be notified of any applicable fees before we process your request.
7.5 Limitations and Exceptions
In certain circumstances, we may be unable to provide access to your personal data or make requested corrections if:
- Compliance would be prohibited or restricted by law
- The request is frivolous, vexatious, or manifestly unfounded
- Providing access would prejudice legal proceedings or investigations
- The data is subject to legal privilege
- Disclosure would reveal personal data about another individual
If we deny your request, we will provide you with a written explanation of the reasons.
7.6 Right to Lodge a Complaint
If you are not satisfied with how we handle your data access or correction request, you have the right to lodge a complaint with the Office of the Privacy Commissioner for Personal Data. Contact details are provided in Section 9.
8. Retention of Data
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected and to comply with our legal and regulatory obligations.
8.1 Retention Criteria
The retention period for your personal data is determined based on:
- The nature and purpose of the data collection
- Legal and regulatory requirements
- Business operational needs
- Contractual obligations
- Potential legal claims or disputes
8.2 Specific Retention Periods
- Inquiry and Consultation Data: Contact information and inquiry details are retained for up to 3 years from your last interaction with us, unless you request earlier deletion.
- Communication Records: Email correspondence and consultation records are retained for up to 3 years for business continuity and customer service purposes.
- Website Analytics Data: Aggregated and anonymized usage data may be retained indefinitely for statistical analysis and website improvement.
- Cookie Data: Cookie data is typically retained for the period specified in our Cookie Policy or until you clear your browser cookies.
- Legal and Compliance Records: Data required for legal or regulatory purposes will be retained for the period mandated by applicable laws.
8.3 Data Deletion
When personal data is no longer required, we will securely delete or anonymize it in accordance with our data retention policy and applicable legal requirements. Deletion methods include:
- Permanent deletion from active databases
- Secure erasure from backup systems
- Anonymization or aggregation where retention is necessary for statistical purposes
8.4 Request for Earlier Deletion
You may request that we delete your personal data before the standard retention period expires. We will comply with such requests unless we have a legitimate reason to retain the data, such as legal obligations or ongoing business relationships. To request deletion, please contact us using the information in Section 9.
9. Contact Information for Privacy Inquiries
If you have any questions, concerns, or requests regarding this Privacy Policy or our data protection practices, please contact us:
We aim to respond to all privacy-related inquiries within 5 business days. For urgent matters, please call us directly during business hours (Monday to Friday, 9:00 AM to 6:00 PM HKT).
Office of the Privacy Commissioner for Personal Data
If you have concerns about our privacy practices or wish to file a complaint, you may also contact the regulatory authority:
10. Governing Law and Jurisdiction
This Privacy Policy and any disputes arising out of or relating to it shall be governed by and construed in accordance with the laws of the Hong Kong Special Administrative Region of the People's Republic of China ("Hong Kong SAR").
We are committed to complying with the Personal Data (Privacy) Ordinance, Cap. 486 and all other applicable data protection laws and regulations in Hong Kong SAR.
Any legal action or proceeding arising out of or relating to this Privacy Policy or our data protection practices shall be instituted exclusively in the courts of Hong Kong SAR. You hereby consent to the exclusive jurisdiction and venue of such courts.
If any provision of this Privacy Policy is held to be invalid, illegal, or unenforceable by a court of competent jurisdiction, such provision shall be modified to the minimum extent necessary to make it valid and enforceable, or if such modification is not possible, such provision shall be severed from this Privacy Policy, and the remaining provisions shall continue in full force and effect.
Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes to this Privacy Policy, we will update the "Last Updated" date at the top of this page.
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data. Your continued use of our website after any changes to this Privacy Policy constitutes your acceptance of such changes.
For significant changes that materially affect your rights, we will provide prominent notice on our website or contact you directly via email where appropriate.
By using this website, you acknowledge that you have read, understood, and agree to this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our website.
For questions or concerns about this Privacy Policy, please contact us using the information provided above.
