Privacy policy

1. Who we are

Jiangxi Black Kingkong Trading Co., LTD and its affiliates (collectively “BKK” or “we”) have always solemnly promised to protect the privacy of users (“you”) who visit BKK’s website and/or use BKK’s products and services (collectively “BKK Services”).

If you have any questions about BKK’ use of your personal data, please use the following contact, which is the party responsible within the meaning of the General Data Protection Regulation (“GDPR”):

Email: marketing@bkk.hk
Post: Marketing Dept.
Jiangxi Black Kingkong Trading Co., LTD
Address:Jiangxi Province, Shangrao City, Poyang County, Poyang Industrial Park (First Park), No.1 Xijing 2nd Road

2. Data collection and usage

We will possibly collect the following personal data during your visit of our website:

Contact information: your name, position, role, company or organisation, telephone (including mobile phone number where provided) as well as email and postal address;

Business information: data identifying you in relation to matters on which you instruct us or in which you are involved;

Your logon ID and password: for access to our website functions (if any) and other client services or platforms;

Subscriptions/preferences: when you subscribe to receive our updates or newsletters as well as consent preferences to help us identify which materials you are interested in receiving;

Events data: attendance at and provision of feedback forms in relation to our events;

Supplier data: contact details and other information about you or your company or organisation where you supply products and/or services to us;

Social media: posts, Likes, tweets and other interactions with our social media presence;

Technical information: when you access this website and our technology services being IP address, browser type and version (e.g. Internet Explorer, Firefox, Safari etc.), time zone setting, browser plugin types and versions, operating system you are using (e.g. Vista, Windows XP, MacOS, etc), device type, hardware model, MAC address, unique identifiers and mobile network information;

Online data: when you access our website and our technology services, information about your visit including URL clickstream to, through and from our website (including date and time), information about your network as such as information about devices, nodes, configurations, connection speeds and network application performance; pages viewed or searched for, page response times, download errors, length of visits and interaction information (such as scrolling, clicks, mouse-overs) and whether you click on particular links or open our emails].
You are neither legally nor contractually obliged to give us your personal data. However, certain features on our web pages may depend on your letting us have your personal data. If, in such cases, you do not give us your personal data, this may lead to features either not being available or being available only to a limited extent.

3. Purposes of use

We may use your personal data for the following purposes:

Service provision: providing our services including extranets and other technology tools;

Business relationship: managing and administering our relationship with you, your company or organisation including keeping records about business contacts so we can customise our offering for you, develop our relationship and target our marketing and promotional campaigns;

Communication: sending emails, newsletters and other messages to keep you informed of market insights and of our services;

Events: running promotion events;

Client surveys and feedback: including events feedback and surveys;

Website monitoring: to check the website and our other technology services are being used appropriately and to optimise their functionality;

Online security: protecting our information assets and technology platforms from unauthorised access or usage and to monitor for malware and other security threats;

Regulatory: compliance with our regulatory obligations in applicable jurisdictions;

Managing suppliers: who deliver services to us.

We may process your personal data for a number of reasons:
you have given us consent: for example where you share details for particular purposes; and
this is necessary to comply with legal or regulatory obligations: for example mandatory client screening checks.

4. Transfer of personal data to third parties, social plug-ins, and use of service providers

Our website may also contain offers from third parties. When you click on such an offer, we transfer data to the relevant provider to the necessary extent (e.g. to indicate that you found this offer on our site and any other relevant information you have already entered on our website).
When we use social plug-ins of social networks such as Facebook, Instagram, Twitter and/or Google+ on our website, we incorporate these as follows:
The social plug-ins are deactivated when you visit our website, i.e. no data of any kind is transferred to the operator of these networks. If you would like to use one of the networks, click on the relevant social plug-in to make a direct connection with the network’s server.

If you have a user account on the network and are logged in to the network when you activate the social plug-in, the network can assign your visit to our website to your user account. If you would like to prevent this, please log out of the network before activating the social plug-in.

When you activate a social plug-in, the network transfers the associated content directly to your browser, which embeds you in our web pages. This may also involve the transfer of data, which is initiated and managed by the relevant social network. The privacy policy of the relevant network applies exclusively to the connection to a social network, the data transfer between the network and your system and to your interactions on this platform.

The social plug-in remains active until you deactivate it or delete your cookies.

Cookie Statement. When you click on the link to an offer or activate a social plug-in, personal data may be sent to providers in countries outside the European Economic Area that, from a European Union (“EU”) perspective, do not guarantee an “adequate level of protection” in line with EU standards for the processing of personal data. Please bear this in mind before you click on a link or activate a social plug-in to initiate the transfer of your data.
For the operation, optimisation and protection of our web pages, we also use qualified service providers (IT service providers, marketing agencies). We transmit personal data to such service providers only where this is necessary for the provision and use of the web pages and their functionalities, for the tracking of legitimate interests or where you have given your consent (please see Section 6 below). This may involve data being transferred to recipients outside the European Economic Area; please see Section 9 below.

5. Security

We will hold your information securely in line with physical, technical and administrative security measures. However, the transmission of information via the internet is not completely secure. Although we will take reasonable measures to protect your personal information, we cannot guarantee the security of your information transmitted and any transmission is at your own risk.

6. Legal basis for processing

Where you have given your consent to our processing your personal data, this constitutes the legal basis for processing (Art. 6 (1) a GDPR).
Art. 6 (1) b GDPR constitutes the legal basis for the processing of personal data for the purposes of initiation or fulfilment of a contract with you.
Where the processing of your personal data is necessary for fulfilment of our legal obligations (e.g. for the storage of data), we are authorised to do so under Art. 6 (1) c GDPR.
In addition, we process personal data for the purposes of our legitimate interests and the legitimate interests of third parties in accordance with Art. 6 (1) f GDPR. Maintaining the operability of our IT systems, the (direct) marketing of our own and third-party products and services, and the legally required documentation of business contacts are examples of such legitimate interests. As part of the necessary balancing of interests, we take account in particular of the nature of the personal data, the purpose of processing, the circumstances of processing and your interests in the confidentiality of your personal data.

7. Deletion of your personal data

We delete your IP address and the name of your internet service provider, which we store only for security purposes, after seven days. Otherwise we delete your personal data as soon as the purpose for collecting and processing it no longer applies. Beyond that time, we store your data only where required by the laws, regulations or other legislation to which we are subject in the European Union or by legislation in third countries where there is an adequate level of data protection. Where, in individual cases, deletion is not possible, the relevant personal data is marked with the aim of limiting its future processing.

8. Your Rights as data subjects

You have certain rights in relation to your information. The availability of these rights and the ways in which you can use them are set out below in more detail.

Some of these rights will only apply in certain circumstances. If you would like to exercise, or discuss, any of these rights, please contact our relevant data privacy contact as listed in this Privacy Policy above.

Access: you are entitled to ask us if we are processing your data and, if we are, you can request access to your personal data. This enables you to receive a copy of the personal data we hold about you and certain other information about it;

Correction: you are entitled to request that any incomplete or inaccurate personal data we hold about you is corrected;

Erasure: you are entitled to ask us to delete or remove personal data in certain circumstances. There are also certain exceptions where we may refuse a request for erasure, for example, where the personal data is required for compliance with law or in connection with claims;

Restriction: you are entitled to ask us to suspend the processing of certain of your personal data about you, for example if you want us to establish its accuracy or the reason for processing it;

Transfer: you may us to help you request the transfer certain of your personal data to another party;

Objection: where we are processing your personal data based on any legitimate interests (or those of a third party) and you may challenge this. However, we may be entitled to continue processing your information. You also have the right to object where we are processing your personal information for direct marketing purposes;

Automated decisions: you may contest any automated decision made about you where this has a legal or similar significant effect and ask for it to be reconsidered.

Consent: where we are processing personal data with consent, you can withdraw your consent.

Right to object: you may have a right to object to us processing your information in certain circumstances. This applies where we are processing your personal information based on a legitimate interest (or those of a third party) you may challenge this. However, we may be entitled to continue processing your information based on our legitimate interests or where this is relevant to legal claims. You also have the right to object where we are processing your personal information for direct marketing purposes.

If you want to exercise any of these rights, please contact our data privacy contact set out in this Privacy Policy above, in writing at the relevant email address.

You also have a right to lodge a complaint with a data protection supervisory authority, in particular in the Member State in the European Union where you are habitually resident where we are based or where an alleged infringement of applicable data protection laws has taken place.

9. Data transfer to recipients outside the European Economic Area

The use of service providers (see Section 4 above) may involve personal data being sent to and processed by recipients in countries outside the EU”, Iceland, Liechtenstein and Norway, in particular the USA, India.
From an EU perspective, the following countries do not have an adequate level of protection in line with EU standards for the processing of personal data (so-called adequacy decision): Andorra, Argentina, Canada (limited), Faroe Islands, Guernsey, Israel, Isle of Man, Japan, Jersey, New Zealand, Switzerland, Uruguay. With recipients in other countries we agree the application of EU standard contractual clauses, binding corporate regulations or the EU-U.S. or Swiss-U.S. Privacy Shield in order to create an adequate level of protection in line with the legal requirements.

10. Direct marketing

As described above, you can opt-out of receiving direct marketing from us at any time.

We may use the information you give us on our website or other means for direct marketing purposes to provide emails, newsletters and other messages to keep you informed of legal developments, market insights and of our services including events that we think may interest you.

You can opt-out of receiving direct marketing from us at any time. You can do this by changing your marketing preferences on your online accounts settings page, clicking on the “unsubscribe” link included at the end of any marketing email we send to you, or by contacting our data privacy contact set out in this Privacy Policy above.

11. Cookies

We use cookies that identify your browser. They collect and store information when you visit our website about how you use it through which it is possible to record your use of the website, as well as provide you with a better service and experience when browsing and for analytics. The personal data we collect through these technologies will also be used to manage your session.

12. Links to third party websites

Our website, newsletters, email updates and other communications may, from time to time, contain links to and from the websites of others. The personal data that you provide through these websites is not subject to this privacy notice and the treatment of your personal data by such websites is not our responsibility.

If you follow a link to any other websites, please note that these websites have their own privacy notices which will set out how your information is collected and processed when visiting those sites.

13. Children

We do not knowingly collect information from children or other persons who are under 16 years old. If you are under 16 years old, you may not submit any personal data to us.

14. Changes to this Policy

This Privacy Policy may be changed by BKK from time to time.

If we change anything important about this Privacy Policy (the information we collect, how we use it or why) we will highlight those changes at the top of the notice and provide a prominent link to it for a reasonable length of time following the change.

15. How to contact us

If you would like more information about the way we manage personal data that we hold about you, please contact us as set out at the top of this Privacy Policy.