Privacy Policy
私隱政策
================================
ENGLISH VERSION
1. Introduction
This Privacy Policy explains how JT Beauti, operated by The Grand Int’l Limited (“we”, “us”, or “our”), collects, uses, discloses, and protects your personal data when you access or use www.jtbeauti.com, any related websites, mobile applications, or services (collectively, the “Service”).
By using the Service, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy.
________________________________________
2. Data Controller
For the purposes of the General Data Protection Regulation (“GDPR”), UK GDPR, and applicable data protection laws:
The Grand Int’l Limited
Shop 63B, G/F, Site 2, Charming Garden
8 Hoi Ting Street, Mong Kok, Kowloon, Hong Kong
Email: support@jtbeauti.com
Phone: +852-66976683
________________________________________
3. EU / UK Representative
Where required under Article 27 of the GDPR and UK GDPR, JT Beauti shall designate an EU and/or UK representative to act as its contact point for data protection matters within the European Union and/or the United Kingdom. The contact details of such representative shall be published on this page once appointed.
________________________________________
4. Personal Data We Collect
We may collect and process the following categories of personal data:
• Identity data (e.g. name)
• Contact data (e.g. email address, telephone number, delivery address)
• Account data (e.g. login credentials, order history)
• Transaction data (e.g. purchases and payment information)
• Technical data (e.g. IP address, device type, browser type)
• Usage data (e.g. interactions with the website)
• Marketing preferences
We do not store full credit card details.
________________________________________
5. How We Collect Your Data
We collect your personal data when you:
• Register an account
• Place an order
• Contact us
• Subscribe to marketing communications
• Browse or interact with our website (including through cookies and similar technologies)
________________________________________
6. Legal Bases for Processing (GDPR / UK GDPR)
We process your personal data on the following lawful bases:
• Performance of a contract
• Your consent
• Compliance with legal obligations
• Legitimate business interests (e.g. fraud prevention, security, and service improvement)
________________________________________
7. How We Use Your Personal Data
We may use your personal data to:
• Fulfil and manage orders and deliveries
• Manage user accounts and provide customer support
• Process payments and prevent fraud
• Communicate important service-related information
• Send marketing communications (where permitted by law)
• Improve our services, website, and user experience
• Comply with legal and regulatory obligations
________________________________________
8. Disclosure of Personal Data
We may share your personal data with:
• Delivery and logistics service providers
• Payment processors and financial institutions
• IT service providers and hosting providers
• Marketing and analytics platforms
• Professional advisers (e.g. lawyers, accountants, auditors)
• Government or regulatory authorities where required by law
All such parties are required to handle your data in accordance with applicable data protection laws.
________________________________________
9. International Data Transfers
Your personal data may be transferred to, stored in, or processed in jurisdictions outside the European Economic Area (EEA) or the United Kingdom, including Hong Kong.
Where such transfers occur, we implement appropriate safeguards, including:
• Standard Contractual Clauses (SCCs); and/or
• Other lawful transfer mechanisms permitted under applicable law.
________________________________________
10. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including for legal, accounting, or reporting requirements.
________________________________________
11. Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, misuse, or alteration. However, no method of transmission over the Internet or electronic storage is 100% secure.
________________________________________
12. Your Rights Under GDPR / UK GDPR
Subject to applicable law, you have the right to:
• Access your personal data
• Request correction (rectification) of inaccurate data
• Request deletion (erasure) of your data
• Request restriction of processing
• Object to processing
• Request data portability
• Withdraw your consent at any time (where processing is based on consent)
• Lodge a complaint with a supervisory authority
________________________________________
13. Data Subject Access Request (DSAR) Procedure
You may exercise your data protection rights by submitting a written request to:
Email: info@grandintltd.com
Your request must include sufficient information to allow us to verify your identity. We may request additional verification before processing your request.
We shall respond to valid requests within one (1) month, subject to any extensions permitted by law.
________________________________________
14. Data Breach Notification
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we shall:
• Notify the relevant supervisory authority without undue delay; and
• Where required by law, notify affected individuals without undue delay.
________________________________________
15. Cookies and Tracking Technologies
We use cookies and similar technologies. Please refer to our Cookie Policy for more details.
________________________________________
16. Marketing Communications
You may opt out of receiving marketing communications from us at any time by following the unsubscribe instructions in our messages or by contacting us directly.
________________________________________
17. Third-Party Websites
Our Service may contain links to third-party websites. We are not responsible for the privacy practices or content of such websites.
________________________________________
18. Children’s Data
We do not knowingly collect personal data from persons under the age of 18.
________________________________________
19. Automated Decision-Making
We do not engage in automated decision-making or profiling that produces legal or similarly significant effects on individuals.
________________________________________
20. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page and shall take effect immediately upon posting.
________________________________________
21. Governing Law
This Privacy Policy shall be governed by and construed in accordance with the laws of the Hong Kong Special Administrative Region.
________________________________________
22. Contact Us
The Grand Int’l Limited
Shop 63B, G/F, Site 2, Charming Garden
8 Hoi Ting Street, Mong Kok, Kowloon, Hong Kong
Email: support@jtbeauti.com
Phone: +852-66976683
________________________________________
________________________________________
1. 簡介
本《私隱政策》說明由 The Grand Int’l Limited(「我們」)營運的 JT Beauti,如何在你存取或使用 www.jtbeauti.com、任何相關網站、流動應用程式或服務(統稱「本服務」)時,收集、使用、披露及保障你的個人資料。
使用本服務即表示你已閱讀、理解並同意本私隱政策所述之做法。
________________________________________
2. 資料控制者(Data Controller)
就《一般資料保障條例》(GDPR)、英國 GDPR 及適用的資料保障法例而言:
The Grand Int’l Limited
香港九龍旺角海庭道8號
富榮花園第二期地下63B號舖
電郵:support@jtbeauti.com
電話:+852-66976683
________________________________________
3. 歐盟/英國代表
如根據 GDPR 及英國 GDPR 第27條有需要,JT Beauti 將委任歐盟及/或英國代表作為其於歐盟及/或英國境內的資料保障聯絡人。該代表的聯絡資料將於委任後於本頁公布。
________________________________________
4. 我們收集的個人資料
我們可能收集及處理以下類別的個人資料:
• 身份資料(例如姓名)
• 聯絡資料(例如電郵、電話、送貨地址)
• 帳戶資料(例如登入資料、訂單記錄)
• 交易資料(例如購買及付款資料)
• 技術資料(例如 IP 位址、裝置類型、瀏覽器類型)
• 使用資料(例如網站互動情況)
• 市場推廣偏好
我們不會儲存完整的信用卡資料。
________________________________________
5. 我們如何收集你的資料
我們會在你以下情況收集你的個人資料:
• 註冊帳戶
• 下單購物
• 聯絡我們
• 訂閱市場推廣資訊
• 瀏覽或使用本網站(包括透過 Cookies 及類似技術)
________________________________________
6. 處理資料的法律依據(GDPR / UK GDPR)
我們基於以下合法依據處理你的個人資料:
• 履行合約
• 你的同意
• 遵守法律責任
• 合法商業利益(例如防止詐騙、系統安全及改善服務)
________________________________________
7. 我們如何使用你的個人資料
我們可能會使用你的個人資料作以下用途:
• 處理及安排訂單與送貨
• 管理用戶帳戶及提供客戶服務
• 處理付款及防止詐騙
• 發送重要服務通知
• 發送市場推廣資訊(如法律允許)
• 改善服務、網站及使用體驗
• 履行法律及監管責任
________________________________________
8. 個人資料的披露
我們可能會將你的個人資料提供予:
• 送貨及物流服務供應商
• 支付平台及金融機構
• IT 及寄存服務供應商
• 市場推廣及分析平台
• 專業顧問(例如律師、會計師、核數師)
• 政府或監管機構(如法律要求)
所有該等第三方均須按適用的資料保障法例處理你的資料。
________________________________________
9. 國際資料轉移
你的個人資料可能會被轉移、儲存或處理於歐盟/英國以外地區(包括香港)。
如發生該等轉移,我們將採取適當保障措施,包括:
• 標準合約條款(SCCs);及/或
• 其他適用法律所允許的合法轉移機制。
________________________________________
10. 資料保存期限
我們只會在達致收集目的及符合法律、會計或申報要求所需的期間內保存你的個人資料。
________________________________________
11. 資料安全
我們已採取適當的技術及組織措施保障你的個人資料,但互聯網或電子儲存方式並非百分百安全。
________________________________________
12. 你在 GDPR / UK GDPR 下的權利
在適用法律規定下,你有權:
• 查閱你的個人資料
• 要求更正不準確資料
• 要求刪除資料
• 要求限制處理
• 反對處理
• 要求資料攜帶
• 隨時撤回同意(如處理基於同意)
• 向監管機構提出投訴
________________________________________
13. 資料查閱申請(DSAR)程序
你可透過以下方式提交書面申請以行使你的資料保障權利:
電郵:info@grandintltd.com
你的申請必須提供足夠資料以核實身份。我們可能要求進一步驗證後才處理申請。
在法律容許情況下,我們將於一(1)個月內回覆有效申請。
________________________________________
14. 資料外洩通報
如發生可能對你的權利及自由構成風險的個人資料外洩事件,我們將:
• 盡快通知有關監管機構;及
• 如法律要求,盡快通知受影響人士。
________________________________________
15. Cookies 及追蹤技術
我們使用 Cookies 及類似技術,詳情請參閱《Cookie 政策》。
________________________________________
16. 市場推廣通訊
你可隨時按照我們訊息中的取消訂閱指示或直接聯絡我們,停止接收市場推廣訊息。
________________________________________
17. 第三方網站
本服務可能包含第三方網站連結。我們不對該等網站的私隱做法或內容負責。
________________________________________
18. 兒童資料
我們不會在知情情況下收集 18 歲以下人士的個人資料。
________________________________________
19. 自動化決策
我們不會進行會對你產生法律或同樣重大影響的自動化決策或分析。
________________________________________
20. 本政策的修訂
我們可能不時更新本私隱政策,任何修改將於本頁公布並即時生效。
________________________________________
21. 適用法律
本私隱政策受香港特別行政區法律管轄並按其解釋。
________________________________________
22. 聯絡我們
The Grand Int’l Limited
香港九龍旺角海庭道8號
富榮花園第二期地下63B號舖
電郵:support@jtbeauti.com
電話:+852-66976683
