Privacy Policy

Last updated on: December 8, 2025
Version: 1.0.0

1. Introduction and Scope

This Privacy Policy explains how we collect, use, store, share and protect personal data when you visit our website, engage us as a service provider for technology or software development services, or subscribe to and use our own products and services (including any account-based or subscription services) (together, the “Services”). We are committed to complying with the Personal Data (Privacy) Ordinance (Cap. 486) (“PDPO”) and to processing personal data in a fair and lawful manner.

By using our Services, you acknowledge that you have read this Privacy Policy and understand how we handle personal data.

2. Categories of Personal Data

Depending on how you interact with us, we may collect the following categories of personal data:

• Identification and contact data: Name, employer, job title, business contact details, email address, telephone number, correspondence address.
• Account and subscription data: Username, account ID, authentication credentials, subscription tier, usage entitlements, billing and invoice information.
• Payment data: Limited payment-related information (such as transaction identifiers, partial card details or payment method details) processed via our payment service providers; we do not store full card numbers on our own systems where not necessary.
• Technical and usage data: IP address, device identifiers, browser type, operating system, access times, pages visited, referring URLs, clickstream data and other usage metrics collected through logs and cookies.
• Support and communications data: Records of enquiries, support tickets, feedback, and any other communications between you and us.
• Project data: Contact details of client personnel, project stakeholders and users, and documentation reasonably required for scoping, delivering and maintaining technology and software development projects.

Where you provide personal data of third parties (for example, your colleagues or end-users), you should ensure you have the authority to do so and that those individuals have been informed of this Privacy Policy.

3. Purposes of Use

We may use personal data for the following purposes as are directly related to our functions or activities:

• Providing and operating our Services: Creating and managing user accounts, enabling access to our platforms and subscription products, and delivering software development services and project deliverables.
• Customer support: Responding to your enquiries, providing technical support, handling incidents and service requests.
• Billing and account administration: Processing payments, issuing invoices, managing subscriptions, and performing account reconciliation.
• Service improvement and security: Monitoring performance, troubleshooting, performing analytics to improve and enhance our Services, and detecting, preventing and responding to security incidents or misuse.
• Communications and marketing: Sending service-related notices and, where permitted, marketing communications about our Services or events; you may opt out of marketing at any time.
• Compliance and risk management: Complying with legal and regulatory obligations in Hong Kong and other relevant jurisdictions, enforcing contractual rights, and managing disputes.

4. Legal Basis and Voluntary/Mandatory Supply

Where applicable, it is necessary for you to provide certain personal data so that we can open and maintain your account, provide Services, or comply with legal requirements; if you do not provide such data, we may not be able to provide some or all of the Services. Providing other personal data is voluntary but may enhance your experience or enable additional features.

5. Cookies and Similar Technologies

We use cookies and similar technologies on our website and platforms to support session management, remember your preferences, perform analytics, and, where applicable, deliver or measure marketing. Some information collected through cookies, such as IP addresses and identifiers, may constitute personal data under the PDPO and will be handled in accordance with this Privacy Policy and our Cookies and Privacy Statement.

6. Data Retention

Personal data will be retained for as long as is necessary to fulfil the purposes described in this Privacy Policy, and to meet legal, accounting or reporting requirements. Retention periods may vary depending on the type of data, the nature of our relationship with you, and applicable statutory limitation periods.

7. Data Security

We implement reasonable and practicable technical and organizational measures to safeguard personal data against unauthorized or accidental access, processing, erasure, loss or use. Measures may include access controls, encryption, network security, logging, and staff training, and are reviewed from time to time in light of industry practices and regulatory guidance.

8. Data Sharing and Overseas Transfers

We may share personal data, on a need-to-know basis, with the following recipients for the purposes set out in this Privacy Policy:

• Our group entities, contractors and service providers who support our operations (for example, hosting, cloud infrastructure, analytics, payment processing, customer support).
• Professional advisers, auditors, insurers and banks.
• Actual or proposed transferees of our business or assets in connection with a reorganization, merger, acquisition or sale.
• Government authorities, regulators, law enforcement, courts or tribunals where required by applicable laws or reasonably necessary to protect our rights.

These recipients may be located in jurisdictions outside Hong Kong, including places that may not have laws equivalent to the PDPO. In such cases, we will take reasonably practicable steps to ensure that personal data is protected in a manner that is, in all material respects, comparable to the protection provided under the PDPO, for example through contractual safeguards and access controls.

9. Your Rights under the PDPO

Subject to applicable exemptions, you have the right to:

• Request access to personal data we hold about you.
• Request correction of inaccurate personal data.
• Request information on our personal data policies and practices, and the types of personal data held.

Requests for access or correction should be made in writing using the contact details below. A reasonable fee may be charged for data access requests as permitted by the PDPO.

10. Contact Details

If you have any questions about this Privacy Policy or our data protection practices, or wish to make a request relating to your personal data, please contact us at:

• Email: contact@blockchainaitech.co
• Address: Unit 6 on 6th Floor, Eastern Harbour Centre, No. 28 Hoi Chak Street, Quarry Bay, Hong Kong

11. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our Services, legal requirements or data protection practices. The updated version will be posted on this website with an effective date, and your continued use of the Services after the effective date will constitute your acknowledgment of the updated Privacy Policy.

Cookies and Privacy Statement

1. Use of Cookies

This website uses cookies and similar technologies to enable core site functions, improve performance and security, remember your preferences, and analyze how our services are used. Certain cookies are necessary for the operation of the site and cannot be switched off in our systems, while other cookies are used for analytics, personalization and marketing and are optional.

2. Types of Cookies Used

• Strictly necessary cookies: Support essential functions such as page navigation, session management, authentication and security.
• Functional cookies: Remember your choices (for example, language, region or interface preferences).
• Analytics cookies: Help us understand how visitors use our website, such as pages visited and links clicked, often using third-party analytics providers.
• Marketing cookies: Used to deliver relevant content and measure the effectiveness of our marketing campaigns, where applicable.

3. Legal Basis and PDPO Compliance

Where cookies collect personal data or can be linked to an identifiable individual, such data will be treated as “personal data” under the Personal Data (Privacy) Ordinance (Cap. 486) (“PDPO”). For non-essential cookies, you may choose whether to accept or reject them through our cookie banner or your browser settings. By continuing to browse this website after seeing the cookie banner, you acknowledge that you have been informed of our use of cookies as described in this Cookies and Privacy Statement.

4. Managing Cookies

You may block or delete cookies by changing the settings on your browser. However, if you block all cookies, you may not be able to use all features of this website or access certain secure areas. Instructions on how to manage cookies can typically be found in the “Help” or “Settings” section of your browser.

5. Relationship with Privacy Policy

More details on how we collect, use, store and protect personal data, and your rights under the PDPO, are set out in our Privacy Policy, which forms part of this Cookies and Privacy Statement.