Purpose of Data Sharing
In order to identify risks, strengthen risk control, enhance convenience for customer, promote cross-industry cooperation within the Group and ensure customer rights and interests, the Group needs to collect, process and utilize (hereinafter referred to as “use”) and share the information you provided within the Group.
Shared information includes basic customer information, identity verification information, account information, transaction records of financial products or services, negative information, know-your-customer (KYC) information and financial institution value-added information, electronic communication history (such as IP address) , data shared with the consent from the customer, data shared pursuant to the regulations, data shared for the purpose of subsidiaries’ management by the holding company, etc.
This website will record your Internet access IP address, Internet access time and the pages you browse on the website and other information. These data are required for the management of this website. Such as: total analysis of internal website traffic and network behavior survey, in order to improve the service quality of this website.
Scope of Application
- It is applicable to websites and mobile applications (hereinafter collectively referred to as the Group's websites and applications) hosted by the domain name applied for in the name of the Group, but does not include links to other websites other than the Group's websites and applications.
- The customer information referred to in this policy includes basic customer information, identity verification information, account information, transaction records of financial products or services, negative information, know-your-customer (KYC) information and financial institution value-added information, electronic communication history records (such as IP address, Internet access time, and pages viewed on the website, etc.) or other information shared with the customer's consent.
Customer Data Protection Measures
In order to implement the rights and responsibilities for the protection of customer data, the Group implements adequate measures to protect your Data, including but not limited measures as below:
- The Group adopts the control of data access rights. Only authorized personnel are able to access and process your Data within the necessary scope to avoid revealing your Data. If the information you provide does not need to be preserved, it will be destroyed. All authorized personnel has duly signed the non-disclosure agreement and any breach of data protection obligation shall be subject to disciplinary action or legal consequences.
- The Group implements Secure Socket Layer (SSL) information security protocol to elevate the level of data transmitting security. In addition, the Group uses 256-bit or higher or other types of encryption technology to protect your Data
- The Group implements firewall, unauthorized detection, and shield system to safeguard our servers and other information storage devices to prevent unauthorized access.
- The Group has implemented physical security measures, such as entrance control, deployment of security guard, security guard control system and back-up storage system to keep your Data safe even in cases of emergencies or disasters.
- If the Group entrusts relevant units (including suppliers) to provide services due to business needs, it will also strictly require third parties (including suppliers) to abide by their confidentiality obligations, and take necessary inspection procedures to confirm their compliance. If there is a need to provide your personal Data to a third party (including suppliers), it should meet the following circumstances or other laws and regulations:
- Your consent according to the law.
- When requested by judicial units or other competent authorities through legal and formal procedures.
- Compliant with international transfers permitted by law.
- In order to provide you with other services or preferential rights and interests, when you need to share your information with a third party (including suppliers) who provides the service or preferential treatment, this website will provide a full explanation and inform you during the activity, and you can freely choose whether to accept this service or preferential treatment.
- The Group implements Data collection, processing and use management procedures to comply with relevant laws and regulations. The Group only collects, processes and uses the Data within the purposes and objects as stated in the “China Development Financial Holding Corporation and its Subsidiaries Personal Data Management Policy and Personal Data Notification Statement” under this policy in an adequate, relevant and moderate manner and limited to what is necessary related to such purposes while keeping the Data accurate and updated.
- The Group establishes an auditing mechanism through internal regulations, and ensures comprehensive personal data protection through external personal data protection-related certifications.
Customer Self-Precautionary Measures
Although the Group implements adequate security measures to protect your Data, your attention and cooperation is also required:
- When you use your certificates, enter password or use any data, please avoid disclosing or sharing your Data. You should keep your certificates, password and Data in a safe condition to prevent disclosing your Data to others.
- When you log in any services on website of the Group, please remember to log out after using our services. When you use someone’s or public computers, please configure your browser by setting the privacy status to “high” to disable cookies or other recording functions of browsers to prevent disclosing your Data.
- You should install anti-virus or other network protection software, and regularly update the virus code and software version to reduce the risk of being infected with viruses or implanted with Trojan horse programs, robot programs, etc., which may leak your information.
When you provide your Data to the Group, please be reminded that:
- Unless otherwise stipulated in the law, contract or with your written consent, please do not provide any special (sensitive) personal information such as medical records, genetics information, information regarding sexual life, health examination and criminal record.
- Please refrain from providing threatening, obscene, pornographic information or any information destroying the public order and customs.
- Do not provide other people's personal information without their consent
- Except otherwise permitted by relevant laws and regulations and (or) requested by the Group, please refrain from providing any information, such as ID, financial information or password number to us to prevent disclosing your Data or incur any fraudulent conduct.
The web server of the Group can only read the activity records on this website in cookies, but cannot read your activity records on other websites. You can disable cookies by configuring your browser by setting the privacy status to “high”. However, you may be unable to use some of the relevant functions of the Group's website.
Cooperation projects of Companies that share data
The Group collects, processes, utilizes and shares the information you provide for risk control and to provide customers with diversified and better financial products and services. If the Group adds new partners and new projects, an announcement will be made in the future.
Remedies for Customer Rights Protection
You may exercise the following rights by email or by calling the Group (Email: firstname.lastname@example.org; Phone: (02) 2763-8800). However, the Group may not act according to your request because it is necessary for the Group to perform its business according to law or as required by other laws and regulations.
- Any request to reply to the inquiry, offer for a review or provide duplication on the Data collected, provided that the Group may charge a fee to those who makes above request.
- Any request to supplement or correct the Data, provided that you shall make proper interpretation to the Group.
- Request to stop collect, process and utilize your Data, and any request to delete your Data.
- Request to restriction of processing.
- Right to data portability.
- Right to object automated individual decision-making.
- Right to object to processing of data for direct marketing purposes.
The influence on your rights and interests if you choose not to provide your Data: Please kindly be reminded that you are freely to determine whether to provide your Data or not. If you decline to provide your Data, the Group will not be able to proceed requisite examination, Process your Data and reply your request. Therefore, the Group will not be able to provide our service.
For information on how the Group uses and shares your personal Data to enhance customer convenience, strengthen risk control, promote cross-industry cooperation among financial institutions, ensure customer rights and conduct joint marketing, etc., please refer to the "Statement on Confidentiality Measures for Client Information of China Development Financial Holding Company and Subsidiaries" and the "Personal Information Statement of China Development Financial Holding Company and Subsidiaries ".
- When children use the services of this website, in addition to protecting children's privacy rights, the consent of the children's parents or guardians will be obtained in accordance with the law when collecting, using and disclosing data to a third party of children or their family members.
- Children's parents or guardians may apply to view, correct or delete their children's data.
- The Group ensures the confidentiality, security and integrity of the personal data collected from children.