GlassXpert & Design Company Limited (GlassXpert) - Privacy and Security Information
Last updated (Effective date): 28 August 2019
This website is not intended for children and we do not knowingly collect data relating to children.
Full name of legal entity: GlassXpert & Design Company Limited
Email address: email@example.com
Postal address: Block B, 2/F, Unify Commercial Industrial Building, 31 Tai Yip Street, Kowloon Bay, Kowloon, Hong Kong.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.
GlassXpert website is under HTTPS “Hyper Text Transfer Protocol with Secure Sockets Layer (SSL)”, which is another protocol primarily developed with secure and safe Internet transactions. SSL is a secure encryption Web protocol used to make data safe when transmitted over the Internet. SSL is especially utilized on shopping sites to keep financial data secure but is also used on any site that requires sensitive data (such as a password). Web searchers will know that SSL is being utilized on a Web site when they see HTTPS in the URL of a Web page.
Your Personal Information
We collect Personal Information that you submit to us voluntarily through our service and authentication services. The types of Personal Information we collect are: 1) when you sign up for our website, we will collect your email address; 2) when you place an order with us, we will collect your name, email address, receiver, billing and delivery address and optional phone number. When you contact us by sending us an email, we will collect your email address and any information contained in the email you sent us. All this information shall be collectively known as “Personal Information” which includes any information about an individual from which that person can be identified Your Personal Information collected by us will solely be used for handling your orders and selling of our products to you. Without such Personal Information, we may not be able to carry out the above purposes. We shall use our best endeavours to ensure that the Personal Information collected by us will be securely kept in our storage system with only authorised personnel on the need-to-know basis be allowed to gain access to such Personal Information.
There is information collected via technology as you navigate our website, certain information may also be collected passively, including your Internet protocol address, browser type, operating system, time of day, general physical location, and browser language. This information will transmit to our servers. “Cookies” are small pieces of information that a website sends to your computer’s hard drive while you are viewing a website. Cookies can identify you as a unique user of the website. We may use both session Cookies (which expire once you close your web browser) and persistent Cookies (which stay on your computer until you delete them) to provide you with more personal and interactive experience on the website. Persistent Cookies can be removed by following Internet browser help file directions. If you choose to disable Cookies, some areas of the Website may not work properly and/or your user experience may be adversely impacted. We will not disclose its Cookies to third parties except as required by a valid legal process such as a search warrant, subpoena, status, or court order. Most browsers are initially set up to accept cookies. You can reset your browser to refuse all cookies or to indicate when a cookie is being sent.
Your Credit Card Information – to be Handled and Protected by Paypal and Braintree
We use PayPal and Braintree (PayPal acquired Braintree in 2013) as our online payment gateway partners. When you check out after selecting all items you want to purchase, our Website will connect you to the PayPal and Braintree online payment systems and you can choose to use PayPal, Visa, Master and America Express. As such, we have no direct access to your credit card information and therefore we do not store that information. PayPal and Braintree keep your transactions secure by not sharing the important financial information with sellers such as GlassXpert. Their encryption keeps your online transactions guarded from start to finish. As such, we will not be responsible for any problems arising out of payment made via the Paypal and Braintree online payment systems.
Our Shipping Partner – EasyShip
We use EasyShip shipping platform for delivery within Hong Kong and for the rest of the world. Please be aware that GlassXpert Website will send the delivery address, product dimensions and weights to EasyShip in order to quote for shipping fees. Once you have selected a dedicated shipper, GlassXpert via EasyShip will pass the receiver name, delivery address, phone number and the product information to the selected shipper in order to arrange delivery. GlassXpert will only pass information from the customer to EasyShip to the extent necessary for the purpose of handling orders and delivering products.
We save every image uploaded to GlassXpert, you can view, re-size, crop, add text, sticker and filter to your image. We do not collect any biometric (e.g. facial recognition) information from these images. Our system will combine your original image with all the additional changes into a finalized image for your review. Once you confirm the order with us, the system will send the finalised image to our production team to arrange to print, therefore, it is expected that your images will be seen by our production team.
GlassXpert will not use your image in any way without your explicit consent, other than handling your orders placed with us. Your uploaded image will not be used by GlassXpert for direct marketing or advertising under any circumstance. On the flip side, GlassXpert is happy and supportive if you would like to share the photos of our products with friends via any social media channels, such as Facebook, Instagram, Twitter … etc.
Our production team reserves the right to reject any photos or images uploaded to our online system with or without cause. Under this circumstance, we will arrange a refund and your Image(s) will be removed from our system.
We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
If you fail to provide personal data
Where we need to collect personal data by law, or under the terms of a contract we have with you, and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with goods or services). In this case, we may have to cancel a product or service you have with us but we will notify you if this is the case at the time.
How is your personal data collected?
We use different methods to collect data from and about you including through:
- Direct interactions. You may give us your identity, contact and financial data by filling in forms or by corresponding with us by post, phone, email or otherwise. This includes personal data you provide when you:
- apply for our products or services;
- create an account on our website;
- subscribe to our service or publications;
- request marketing to be sent to you;
- enter a competition, promotion or survey; or
- give us feedback or contact us.
- Automated technologies or interactions. As you interact with our website, we will automatically collect Technical Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies and other similar technologies.
How we use your personal data
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
- Where we need to perform the contract we are about to enter into or have entered into with you.
- Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
- Where we need to comply with a legal obligation.
GlassXpert will occasionally send marketing materials and promotion codes to your registered email. If you do not want to receive that information, please let us know and we will remove your email address from our distribution list.
We will get your express opt-in consent before we share your personal data with any third party for marketing purposes.
You can ask us or third parties to stop sending you marketing messages at any time. Where you opt out of receiving these marketing messages, this will not apply to personal data provided to us as a result of a product/service purchase, warranty registration, product/service experience or other transactions.
Change of purpose
We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose.
If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.
Confidentiality and Security
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
We take the security of your information very seriously. Although we take reasonable measures to maintain the security of your Personal Information, we cannot fully avoid all security risks given the open and global nature of the online service. To minimize our risk exposure, we use PayPal to arrange payments so that we will not access or store your credit card information.
We will not accept any liability for any security risks in relation to the online system which are beyond our reasonable control or prevention.
How long will you use my personal data for?
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.