私隱政策
Privacy Policy
概覽
Overview
金泉集團控股有限公司(「本公司」)為香港公司註冊處根據《打擊洗錢及恐怖分子資金籌集條例》(第615章)批准持牌的信託或公司服務提供者(牌照號碼:TC010106)。本公司深明保護閣下個人資料的重要性,並承諾依照香港《個人資料(私隱)條例》(第486章)(「私隱條例」)的規定收集、使用及保存個人資料。
Gold Spring Group Holdings Limited ("the Company") is a Trust or Company Service Provider licensed by the Hong Kong Companies Registry under the Anti-Money Laundering and Counter-Terrorist Financing Ordinance (Cap. 615) (Licence No. TC010106). We are committed to protecting your personal data and handling it in accordance with the Personal Data (Privacy) Ordinance (Cap. 486) ("PDPO") of Hong Kong.
本私隱政策適用於本公司透過本網站及在提供專業服務過程中所收集的所有個人資料。本政策自2026年3月起生效。
This Privacy Policy applies to all personal data collected by the Company through this website and in the course of providing professional services. This Policy is effective from March 2026.
一、資料收集
1. Data We Collect
為向閣下提供信託及公司服務,並履行本公司根據適用法律法規所承擔的合規義務,本公司可能收集以下類別的個人資料:
In order to provide trust and corporate services and to fulfil our compliance obligations under applicable laws and regulations, the Company may collect the following categories of personal data:
- 身份識別資料:全名、出生日期、國籍、身份證號碼及護照號碼; Identity data: full name, date of birth, nationality, Hong Kong Identity Card number and passport number;
- 聯絡資料:住宅地址、電郵地址及電話號碼; Contact data: residential address, email address and telephone number;
- 財務資料:銀行賬戶資料、資產及財富來源聲明及相關財務文件; Financial data: bank account information, statements of assets and source of wealth, and related financial documents;
- 業務背景資料:職業、僱主資料、業務登記資料及公司架構文件; Business background data: occupation, employer details, business registration information and company structure documents;
- 盡職調查文件:就客戶盡職調查(CDD)及加強盡職調查(EDD)而收集的相關文件及資料; Due diligence documents: information and documents collected for Customer Due Diligence (CDD) and Enhanced Due Diligence (EDD) purposes;
- 網站使用資料:IP位址、瀏覽器類型、到訪頁面及瀏覽時間(詳見第八節「Cookies及網站分析」)。 Website usage data: IP address, browser type, pages visited and time of visit (see Section 8 "Cookies and Website Analytics" below).
本公司只收集為特定目的所必要的個人資料,不會收集超乎所需範圍的資料。
The Company collects only the personal data that is necessary for the stated purposes and does not collect data beyond what is required.
二、收集資料的目的
2. Purpose of Data Collection
本公司收集及使用個人資料的主要目的如下:
The primary purposes for which the Company collects and uses personal data are as follows:
- 履行《打擊洗錢及恐怖分子資金籌集條例》(第615章)下的反洗錢(AML)及反恐怖融資(CTF)合規義務,包括客戶盡職調查及持續監察; Complying with Anti-Money Laundering (AML) and Counter-Terrorist Financing (CTF) obligations under the Anti-Money Laundering and Counter-Terrorist Financing Ordinance (Cap. 615), including Customer Due Diligence and ongoing monitoring;
- 建立及管理信託架構、私人基金會及相關企業結構; Establishing and administering trust structures, private foundations and related corporate entities;
- 提供公司秘書、公司設立及公司管理服務; Providing company secretarial, company incorporation and corporate administration services;
- 識別及核實客戶身份,以遵守相關監管及法律要求; Identifying and verifying the identity of clients in compliance with applicable regulatory and legal requirements;
- 與受益人、委託人、保護人及其他相關方進行聯絡; Liaising with beneficiaries, settlors, protectors and other relevant parties;
- 回應查詢及提供客戶服務; Responding to enquiries and providing client services;
- 遵從法院命令或政府機構的合法指示。 Complying with court orders or lawful directions from government authorities.
三、資料保存期限
3. Data Retention
根據《打擊洗錢及恐怖分子資金籌集條例》(第615章)的規定,本公司須至少保存客戶盡職調查記錄及交易記錄不少於五(5)年。具體而言:
Pursuant to the requirements of the Anti-Money Laundering and Counter-Terrorist Financing Ordinance (Cap. 615), the Company is required to retain Customer Due Diligence records and transaction records for a minimum of five (5) years. Specifically:
- 客戶盡職調查文件:自業務關係終止之日起至少保存五年; Customer Due Diligence documents: retained for at least five years from the date of termination of the business relationship;
- 交易記錄:自交易完成之日起至少保存五年; Transaction records: retained for at least five years from the date of completion of the transaction;
- 其他客戶通訊及服務文件:視乎具體情況,保存不少於七年。 Other client communications and service documents: retained for not less than seven years depending on the circumstances.
超出上述保存期限且無其他法律依據繼續保存的個人資料,將被安全銷毀。
Personal data that has exceeded the above retention periods and for which there is no other legal basis for continued retention will be securely destroyed.
四、資料安全
4. Data Security
本公司採取合理的技術及組織措施,以保護所持有的個人資料免遭未經授權的查閱、披露、更改或銷毀。相關措施包括但不限於:
The Company implements reasonable technical and organisational measures to protect personal data held by us against unauthorised access, disclosure, alteration or destruction. Such measures include but are not limited to:
- 對儲存的客戶資料實施存取權限管控,僅授權人員可查閱相關資料; Access controls limiting access to stored client data to authorised personnel only;
- 以加密技術保護數碼文件的傳輸及儲存; Encryption of digital documents during transmission and storage;
- 對實體文件實施安全存放及清查程序; Secure storage and audit procedures for physical documents;
- 定期對員工進行資料保護及合規培訓; Regular data protection and compliance training for staff;
- 在必要時對資料進行匿名化或假名化處理。 Anonymisation or pseudonymisation of data where appropriate.
如發生資料外洩事故,本公司將採取必要補救措施,並在適用法例要求下通知受影響人士及相關監管機構。
In the event of a data breach, the Company will take necessary remedial action and notify affected individuals and relevant regulatory authorities as required by applicable law.
五、向第三方披露
5. Third-Party Disclosure
本公司一般不會向第三方出售、出租或以其他方式披露閣下的個人資料。惟在下列情況下,本公司可能須要向第三方披露閣下的個人資料:
The Company does not generally sell, rent or otherwise disclose your personal data to third parties. However, the Company may be required to disclose your personal data in the following circumstances:
- 監管機構:根據《打擊洗錢及恐怖分子資金籌集條例》(第615章)或其他適用法例的規定,向香港公司註冊處、香港警務處或其他具有法定權力的主管當局披露; Regulatory authorities: disclosure to the Hong Kong Companies Registry, Hong Kong Police Force or other competent authorities with statutory powers, as required under the Anti-Money Laundering and Counter-Terrorist Financing Ordinance (Cap. 615) or other applicable legislation;
- 專業顧問:向律師、稅務顧問、會計師或其他以保密義務受約束的專業人士披露,以協助提供委託服務; Professional advisors: disclosure to lawyers, tax advisors, accountants or other professionals bound by duties of confidentiality, to assist in providing the engaged services;
- 服務提供者:向協助本公司提供服務的可信賴的第三方服務提供者披露,惟該等服務提供者已受合約約束僅按本公司指示使用有關資料; Service providers: disclosure to trusted third-party service providers who assist the Company in delivering services, subject to contractual obligations to use such data only in accordance with the Company's instructions;
- 法律程序:依法院命令或政府機構的合法指示須予披露時。 Legal proceedings: where disclosure is required pursuant to a court order or lawful direction from a government authority.
本公司在向第三方披露個人資料時,將採取合理步驟,確保資料的保密性及安全性得到適當保護。
When disclosing personal data to third parties, the Company will take reasonable steps to ensure that the confidentiality and security of the data is appropriately protected.
六、閣下的權利
6. Your Rights
根據《個人資料(私隱)條例》(第486章),閣下享有以下權利:
Under the Personal Data (Privacy) Ordinance (Cap. 486), you have the following rights:
- 查閱權:閣下有權要求查閱本公司持有的關於閣下的個人資料; Right of access: you have the right to request access to personal data held by the Company about you;
- 更正權:如閣下發現本公司持有的個人資料不準確,閣下有權要求更正; Right of correction: if you discover that personal data held by the Company is inaccurate, you have the right to request correction;
- 刪除要求:在不違反本公司法律及監管義務的前提下,閣下可要求本公司刪除不再必要的個人資料。請注意,由於本公司根據《打擊洗錢及恐怖分子資金籌集條例》(第615章)負有保存客戶盡職調查及交易記錄的法定義務,部分資料的刪除要求可能受到限制; Request for deletion: subject to the Company's legal and regulatory obligations, you may request deletion of personal data that is no longer necessary. Please note that certain deletion requests may be restricted as the Company has statutory obligations under the Anti-Money Laundering and Counter-Terrorist Financing Ordinance (Cap. 615) to retain Customer Due Diligence and transaction records;
- 拒絕直接促銷:閣下有權要求本公司停止將閣下的個人資料用於直接促銷目的。 Opt-out from direct marketing: you have the right to require the Company to cease using your personal data for direct marketing purposes.
如欲行使上述任何權利,請以書面形式向本公司的資料保護主任提出申請,聯絡方式載於本政策第九節。本公司將於收到要求後四十(40)日內回覆。
To exercise any of the above rights, please submit a written request to the Company's Data Protection Officer using the contact details set out in Section 9 of this Policy. The Company will respond within forty (40) days of receiving the request.
七、資料轉移
7. Data Transfer
在提供信託及企業架構服務的過程中,由於服務的性質,本公司可能需要將部分個人資料傳送至香港境外的司法管轄區,例如在設立境外信託或公司架構時。本公司在進行任何境外資料轉移時,將確保資料在轉移目的地享有不遜於香港《個人資料(私隱)條例》(第486章)所提供的保護水平,並採取適當的合同或其他保障措施。
In the course of providing trust and corporate structure services, the nature of such services may require the transfer of certain personal data to jurisdictions outside Hong Kong, for example when establishing offshore trust or corporate structures. When conducting any cross-border data transfer, the Company will ensure that the data receives a standard of protection no less than that provided under the Personal Data (Privacy) Ordinance (Cap. 486) of Hong Kong, and will implement appropriate contractual or other safeguards.
八、Cookies 及網站分析
8. Cookies and Website Analytics
本網站可能使用Cookies及類似技術,以改善用戶體驗及分析網站使用情況。Cookies是儲存於閣下裝置上的小型文字檔案,有助於本公司了解訪客如何使用本網站。
This website may use cookies and similar technologies to improve user experience and analyse website usage. Cookies are small text files stored on your device that help the Company understand how visitors use this website.
本網站使用的Cookies主要分為以下類別:
Cookies used on this website are primarily of the following categories:
- 必要性Cookies:確保網站正常運作所必需的Cookies,無法被關閉; Essential cookies: cookies necessary for the website to function properly and cannot be disabled;
- 分析性Cookies:用於收集關於訪客如何使用本網站的匿名統計資料,以協助本公司改善網站內容及功能。 Analytics cookies: used to collect anonymous statistical data about how visitors use this website, to help the Company improve website content and functionality.
閣下可透過瀏覽器設定管理或停用Cookies,惟這可能影響本網站的部分功能。透過Cookies收集的資料不會被用於識別個人身份,亦不會被售予第三方。
You may manage or disable cookies through your browser settings, although this may affect certain functions of this website. Data collected through cookies will not be used to identify individuals personally and will not be sold to third parties.
九、聯絡我們
9. Contact Us
如閣下對本私隱政策有任何查詢,或希望行使閣下在《個人資料(私隱)條例》(第486章)下的任何權利,請透過以下方式聯絡本公司的資料保護主任:
If you have any enquiries regarding this Privacy Policy or wish to exercise any of your rights under the Personal Data (Privacy) Ordinance (Cap. 486), please contact the Company's Data Protection Officer through the following channels:
金泉集團控股有限公司
資料保護主任
香港灣仔駱克道333號亞洲聯合財務中心40樓
電郵:cs@goldspringgroup.io
Gold Spring Group Holdings Limited
Data Protection Officer
40/F, United Asia Finance Centre, 333 Lockhart Road, Wan Chai, Hong Kong
Email: cs@goldspringgroup.io
閣下亦可向香港個人資料私隱專員公署就本公司處理個人資料的方式作出投訴。個人資料私隱專員公署的聯絡資料可於其網站 www.pcpd.org.hk 查閱。
You also have the right to lodge a complaint with the Office of the Privacy Commissioner for Personal Data (PCPD) regarding the Company's handling of your personal data. Contact details for the PCPD are available on its website at www.pcpd.org.hk.
十、政策修訂
10. Policy Updates
本公司保留隨時修訂本私隱政策的權利,以反映適用法律法規的變化或本公司服務的調整。任何修訂將於本頁面公佈,並更新政策生效日期。如本政策有任何重大變更,本公司將以合適方式通知閣下。閣下繼續使用本公司的服務,即視為接受修訂後的私隱政策。
The Company reserves the right to amend this Privacy Policy at any time to reflect changes in applicable laws and regulations or adjustments to the Company's services. Any amendments will be published on this page with an updated effective date. Where there are material changes to this Policy, the Company will notify you by appropriate means. Your continued use of the Company's services will be deemed acceptance of the revised Privacy Policy.
本私隱政策受香港法律管轄。
This Privacy Policy is governed by the laws of Hong Kong SAR.
生效日期:2026年3月
Effective Date: March 2026