|
Day Day Fresh Privacy Policy General 1. Milesville Limited, the issuer of the 日日食良 membership, respects the privacy of its Holders and understands the importance of privacy for visitors to its website. 日日食良 (the “Company", "we", "our" or "us") collects and retains information so that we can efficiently provide services to our Holders. This Privacy Policy Statement is designed to help you understand what information the Company gathers and what we do with the information. Our Company Policy 2. We pledge to meet fully, and where possible exceed, internationally recognized standards of personal data privacy protection in complying with the requirements of the Ordinance. In doing so, we promise to: (i) collect adequate, but not excessive, Personal Data by lawful and fair means for lawful purposes directly related to our functions and activities; (ii) take all reasonably practicable steps to ensure that all Personal Data collected or retained are accurate, having regard to the purposes for which they are to be used; (iii) ensure that Personal Data are not used where there are reasonable grounds for believing that they are inaccurate, having regard to the purposes for which they are to be used; (iv) erase Personal Data which are no longer necessary for the fulfillment of the purposes for which they are to be used; (v) use Personal Data only for purposes for which the data were to be used at the time of the collection of the data, unless you have given your express consent for a change of use or such use is required or permitted by the Ordinance or the law of Hong Kong Special Administrative Region (“Hong Kong”); (vi) take all reasonably practicable steps to ensure that Personal Data are protected against unauthorized or accidental access, processing, erasure or other use; (vii) take all practicable steps to ensure that you can be informed of the kinds of personal data we hold and the main purposes for which the data are to be used; and (viii) allow you to access and request correction of your Personal Data held by us in a manner prescribed by the Ordinance. We may charge you a fee as permitted by the Ordinance in complying with your data access request. Statement of Practices Types of Personal Data Collected and Held 3. For the purpose of conducting the Company's business (including relevant online services), we may collect from you and hold some or all of the Personal Data such as, but not limited to, any or all of the following (according to the product or service you select) to enable us to provide the Membership Service or other related service to you: a. Your name; b. Your Gender c. Your preferred language for communications d. Contact details, including contact name, telephone number, email address and residential or permanent address district; e. Your age group and date of birth f. Your Nationality (if provided) 4. We use cookies and page tagging (Javascript and pixel tags) to record the visit to our websites and store the users’ websites preference. The information collected (such as IP address, domain name and/or browsers type) is anonymous aggregated research data, and contains no name or address information or any information that will enable anyone to contact you via telephone, email or any other means. Such information is used for internal analysis on the number of visitors to our websites and general usage patterns to measure the effectiveness and improve the usability of our websites and the services / online advertisements. The data will not be shared with any third party. 5. Cookies are small bits of information that are automatically stored on a person's web browser in their computer that can be retrieved by this site. It can be used to identify a computer and it often includes an anonymous unique identifier. Javascript and pixel tags are used to collect statistics on customer usage patterns of our websites; for tracking the performance of our online advertisements and to store the users’ preference of our websites. A pixel tag is a transparent image placed on certain webpages to collect data on user activities. Use of such technologies will not collect any personally identifiable data. Most browsers are initially set to accept cookies. If you would so prefer, you can set your browser to disable cookies and/or javascript. However, by disabling them, you may not be able to take full advantage of our website, including online services. Purpose of Keeping Personal Data 6. Personal Data of the Membership held by us may be used for the following purposes: a. processing an application for our services offered to you from time to time; b. conducting customer due diligence as required by law, rules, regulations, codes or guidelines; c. management, operation and maintenance of the Customer Relationship Management system, membership loyalty point, including audit, and exercising our and your rights under the Conditions; d. designing new or improving existing services provided by us, our subsidiaries and our affiliates (that is, our direct holding company and its subsidiaries); e. communication by us to you; f. investigation of complaints, suspected suspicious transactions and research for service improvement; g. prevention or detection of crime; and h. disclosure as required by laws, rules, regulations, codes or guidelines. Disclosure of Personal Data 7. All Personal Data will be kept confidential by us but in accordance with the Conditions, we may, for the purpose(s) set out in paragraph 7 above, transfer or disclose such Personal Data to the following parties within Hong Kong (except that the parties set out in paragraphs 8(a), 8(b) and 8(c) and owners or service providers of Client Funds Company in 8(e) below may be located outside Hong Kong): a. Third party Operator(s) under duty of confidentiality to us; b. our agents or contractors under a duty of confidentiality to us who provide administrative, telecommunications, computer, anti-money laundering and counter terrorist financing intelligence, payment, data processing or other services to us in connection with the operation of our business (such as professional advisors, call centre service providers, debt collection agencies (in the event you owe us any money), courier, gift redemption centres or data entry companies); c. our subsidiaries, and/or our affiliates which owe a duty of confidentiality to us; d. any law enforcement agencies and/or regulatory bodies for compliance with applicable laws, rules, regulations, codes and/or guidelines and/or any person or entity to whom we, our subsidiaries, and/or our affiliates are under a binding obligation to satisfy a legally enforceable demand for disclosure under the requirements of any law, rule, regulation, code and/or guideline and/or order of any competent court of law, law enforcement agencies and/or regulatory bodies, but such disclosure will only be made under proper authority. Security of Personal Data 8. We treat security as our top priority. We will strive to ensure that Personal Data will be protected against unauthorized or accidental access, processing or erasure. In doing so, we have implemented appropriate physical, electronic and managerial measures and controls to safeguard and secure the Personal Data. 9. Our web servers are protected by appropriate firewalls which will be kept up-to-date. However, as the security of ordinary email cannot be guaranteed, you should not send to us any email containing any Personal Data. 10. We will not keep Personal Data longer than is necessary for the fulfillment of the purposes (including any directly related purpose) for which they are, or are to be, used. We will purge unnecessary Personal Data from our system in accordance with our internal procedures. Access and Correction of Personal Data 11. You have the right to ask us if we hold any Personal Data about you and if so, to request a copy of some or all of your Personal Data. If you would like to make such a request, please submit the "Data Access Request Form" (the prescribed form (form:xxxx) can be downloaded from the following link http://www.daydayfresh.com.hk, along with appropriate proof of identity (the login detail of the membership owner including both registered email and phone number) to our Customer Service Officer at the Service Center. We may charge you a fee at a level permitted by the Ordinance for this service. 12. You also have the right to modify your personal data via the website with appropriate login detail. Links to Other Websites 13. Our website may, from time to time, contain links to other websites. This Privacy Policy Statement only applies to this website so when you link to other websites you should read their own privacy policies. Change of Personal Data Policy 14. We keep our privacy policy under regular review and we will place any update on this web page. Any change, update of modification will be effective immediately upon positing on this web page. This Privacy Policy Statement was last updated on Oct 28, 2019. Internal Practices 15. We maintain the following measures to ensure compliance with the Ordinance: a. log books are kept to record all refusal of data access and correction requests and the reasons for their refusal; b. “Personal Information Collection Statement” is included as far as practicable in the application forms for services provided by the Company; c. internal privacy policies, guidelines and manuals are provided for use by staff of the Company. Such polices, guidelines and manuals will be reviewed and revised in a timely manner to meet up-to-date privacy protection developments and standards. Conditions 16. Nothing in this Privacy Policy Statement shall affect the rights and obligations of the Company under the Conditions. |