| (a) |
尊重客戶的私隱是卡公司的一貫政策。卡公司將會全面遵守條例及其所訂下之保障資料原則。 |
|
|
| (b) |
客戶在卡公司申請開立或持續賬戶、信貸便利或要求卡公司提供信用卡及相關服務時,需不時向卡公司提供有關資料。 |
|
|
| (c) |
若客戶不向卡公司提供有關資料,卡公司將無法為客戶開立或讓其持續賬戶或向其提供信貸便利或信用卡服務。 |
|
|
| (d) |
卡公司在與客戶的一般業務往來中,例如,當客戶憑信用卡簽購或繳款,亦會收集客戶或衍生關於客戶的資料。 |
|
|
| (e) |
客戶的資料可能用於下列用途: |
|
| (i) |
為客戶提供服務和信貸便利所涉及的日常運作; |
| (ii) |
信貸檢查; |
| (iii) |
協助其他財務機構作信貸檢查及追討欠債; |
| (iv) |
確保客戶維持良好的信用; |
| (v) |
設計供客戶使用的財務服務或有關產品; |
| (vi) |
推廣財務服務或有關產品; |
| (vii) |
確定卡公司與客戶間的債務額; |
| (viii) |
向客戶及為客戶欠款提供押品的人士追收欠款; |
| (ix) |
為符合對卡公司及其集團公司有約束力的法例規定作出披露; |
| (x) |
使卡公司的實在或建議受讓人或承讓人,或卡公司對客戶的權利的參與人、附屬參與人、受讓人或承讓人對擬轉讓、參與或附屬參與的交易作出評核; |
| (xi) |
與接受由卡公司發出的信用卡的商號及獲卡公司提供聯營/合營/會員專享信用卡服務的機構(「聯營機構」或「商號」)交換資料; |
| (xii) |
將客戶資料與客戶所提供的其他資料或從其他來源所得的資料或其他人士的資料作出比較(不論用人手或以任何其他方式)用作任何用途(包括但不限於採取對客戶不利的行動); |
| (xiii) |
卡公司與客戶間的條款及條件所訂或所預期的任何其他目的;及 |
| (xiv) |
與上述有關的用途。 |
|
|
|
| (f) |
卡公司會對其持有的客戶資料保密,但卡公司可能會把該等資料提供給下列各方作第(e)段所列的目的用途: |
|
| (i) |
任何代理人、承包人或提供行政、電訊、電腦、互聯網內容、支付、證券結算或其他與卡公司業務運作有關服務的第三者; |
| (ii) |
任何對卡公司有保密責任的人士,包括對卡公司有保密資料承諾的卡公司所屬集團公司或各商號或聯營機構; |
| (iii) |
任何已與或擬與客戶進行交易的財務機構; |
| (iv) |
信貸資料服務機構;而在客戶欠帳時,則可將該等資料提供給收賬代理; |
| (v) |
卡公司在根據對卡公司或其所屬集團任何公司具法律約束力的規定下而有責任對任何人作出披露; |
| (vi) |
任何卡公司的實在或建議承讓人或受讓人或就卡公司對客戶的權利的參與人、附屬參與人、受讓人或承讓人; |
| (vii) |
卡公司所屬集團之任何其他成員公司; |
| (viii) |
在客戶信用卡上出現其名稱或標誌的第三者;及 |
| (ix) |
卡公司與客戶間的任何協議的任何條款及條件所訂或所預期的任何其他人士。 |
|
|
|
| (g) |
在卡公司認為適合的情況下,卡公司可能隨時及不時將其持有的客戶資料轉移至其他地方(包括香港以外的地區)。 |
|
|
| (h) |
根據條例及守則中的條款,客戶有權: |
|
| (i) |
審查卡公司是否持有他的資料及查閱該等資料; |
| (ii) |
要求卡公司改正任何有關他的不準確資料; |
| (iii) |
查悉卡公司對於資料的政策及實務做法及獲告知卡公司持有他那類的個人資料; |
| (iv) |
在與個人信貸有關的情況下,要求獲告知那些資料是會向信貸資料服務機構或收賬代理例行披露的,以獲提供進一步資料,藉以向有關信貸資料服務機構或收賬代理提出查閱和改正資料的要求;及 |
| (v) |
當卡賬戶在客戶全數結清而終止時及符合在賬戶終止前5年內沒有出現逾期欠款超過60日的條件下,向卡公司提出指示,使卡公司依照守則第2.15條的規定,要求信貸資料服務機構刪除與已終止的賬戶有關的賬戶資料,但是如果賬戶出現逾期欠賬的情況,除非逾期欠賬金額由欠賬日起計60日內被全數清還,否則該客戶的賬戶資料有可能被信貸資料服務機構保留,直至該欠賬金額獲最終全數清還之日起計5年之期屆滿為止。 |
|
|
|
| (i) |
根據條例規定,卡公司有權就處理任何查閱資料的要求收取合理費用。 |
|
|
| (j) |
如客戶不欲收到卡公司代直銷公司寄上之宣傳品,請來函卡公司。如客戶要求卡公司停止使用客戶之個人資料作直接促銷的目的,卡公司將按客戶要求辦理,客戶無需因此繳付任何費用。 |
|
|
| (k) |
任何關於查閱或改正資料申請,或關於卡公司的資料政策及實務做法或所持有的資料類別的事宜,可向下列人士查詢: |
|
資料保護主任 |
|
中銀信用卡(國際)有限公司 |
|
香港干諾道西68號中銀信用卡中心20樓 |
|
電話:(852) 2853 8888 |
|
傳真:(852) 2541 5415 |
|
|
|
(本通知之中文譯本文義如與英文本有歧異,概以英文本為準) |
|
|
|
|
| (a) |
It is the policy
of the Company to respect the privacy of its customers and to fully comply
with the data protection principles and the provisions of the Ordinance
and the Code. |
|
|
| (b) |
From time to time,
it is necessary for customers to supply the Company with data in
connection with the opening or continuation of accounts, credit facilities
or provision of credit card and related services. |
|
|
| (c) |
Failure to supply
such data may result in the Company being unable to open or continue
accounts or provide credit facilities and credit card and related
services. |
|
|
| (d) |
It is also the
case that data are collected from customers or otherwise generated in the
ordinary course of their dealings with the Company, for example, when
customers make purchase or payment with the credit card. |
|
|
| (e) |
The purposes for
which data relating to a customer may be used are as follows: |
|
| (i) |
the daily
operation regarding the provision of credit card and related
services to the customer; |
| (ii) |
conducting
credit checks; |
| (iii) |
assisting
other financial institutions to conduct credit checks and collect
debts; |
| (iv) |
ensuring
ongoing credit worthiness of the customer; |
| (v) |
designing
credit card and related services or products for the customer's use; |
| (vi) |
marketing
credit card and related services or products; |
| (vii) |
determining
the amount of indebtedness owed to or by the customer; |
| (viii) |
collection
of amounts outstanding from the customer and those providing
security for the customer's obligations; |
| (ix) |
complying
with the requirements to make disclosure under the requirements of
any law binding on the Company or any of its group members; |
| (x) |
enabling an
actual or proposed transferee or assignee of the Company or a
participant or sub-participant or transferee or assignee of the
Company's rights in respect of the customer to evaluate the
transaction intended to be the subject of the assignment, transfer,
participation or sub-participation; |
| (xi) |
exchanging
information with merchants accepting credit cards issued by the
Company and entities with whom the Company provides
affinity/co-branded/private label credit card services (each a
"merchant" or "affinity entity"); |
| (xii) |
comparing
(whether manually or in any other manner whatsoever) the customer's
data with other information supplied by the customer or arising from
any other source or information of other persons for whatever
purposes (including without limitation the purpose of taking adverse
action against the customer); |
| (xiii) |
any other
purposes as provided in or contemplated by any terms and conditions
between the Company and the customer; and |
| (xiv) |
the purposes relating or
incidental to any of the foregoing. |
|
|
|
| (f) |
Data held by the
Company relating to a customer will be kept confidential but the Company
may provide such information to the following parties for the purposes set
out in paragraph (e): |
|
| (i) |
any agent,
contractor or third party service provider who provides
administrative, telecommunications, computer, Internet content,
payment, securities clearing or other services to the Company in
connection with the operation of its business; |
| (ii) |
any other
person under a duty of confidentiality to the Company including a
group member of the Company or a merchant or an affinity entity
which has undertaken to keep such information confidential; |
| (iii) |
any
financial institution with which the customer has or proposes to
have dealing; |
| (iv) |
credit
reference agencies (“CRA”), and, in the event of default,
to debt collection agencies (“DCA”); |
| (v) |
any person
to whom the Company is under an obligation to make disclosure under
the requirements of any law binding on the Company or any of its
group companies; |
| (vi) |
any actual
or proposed transferee or assignee of the Company or participant or
sub-participant or transferee or assignee of the Company's rights in
respect of the customer; |
| (vii) |
any members
of the group of companies which the Company is a member; |
| (viii) |
any third
party whose name or logo appears on the credit card(s) of the
customer; and |
| (ix) |
any other
parties as provided in or contemplated by any terms and conditions
of any agreement between the Company and the customer. |
|
|
|
| (g) |
Data held by the
Company relating to its customers may be transferred to places (including
places outside Hong Kong) at any time and from time to time where the
Company deems necessary. |
|
|
| (h) |
Under and in
accordance with the terms of the Ordinance and the Code, a customer has
the right: |
|
| (i) |
to check
whether the Company holds data about him/her and of access to such
data; |
| (ii) |
to require
the Company to correct any data relating to him/her which is
inaccurate; |
| (iii) |
to ascertain
the Company's policies and practices in relation to data and to be
informed of the kind of personal data held by the Company about
him/her; |
| (iv) |
in relation
to consumer credit, to request to be informed which items of data
are routinely disclosed to CRA orDCA, and be provided with further
information to enable the making of an access and correction request
to the relevant CRA orDCA; and |
| v) |
upon
termination of the card account of the customer by full repayment
and on condition that there has not been, within 5 years immediately
before account termination, any default in payment for a period in
excess of 60 days on the account, to instruct the Company to make a
request to the CRA to delete from its database any account data
relating to the terminated account in accordance with clause 2.15 of
the Code, Provided always that in the event of any default in
repayment, unless the amount in default is fully repaid before the
expiry of 60 days from the date such default occurred, otherwise
such customer shall be liable to have his/her account data retained
by the CRA until the expiry of 5 years from the date of final
settlement of the amount in default. |
|
|
|
| (i) |
In accordance with
the terms of the Ordinance, the Company has the right to charge a
reasonable fee for the processing of any data access request. |
|
|
| (j) |
Customers who do
not wish to receive from the Company promotional articles of direct
marketing companies may write to the Company for that purpose. The Company
is required, without charge to the customer, to cease to use the personal
data of the customer for direct marketing purposes if the customer so
requests. |
|
|
| (k) |
The person to whom
requests for access to data or correction of data or for information
regarding the Company, policies and practices and kinds of data held are
to be addressed as follows: |
|
The Data
Protection Officer |
|
BOC Credit Card
(International) Limited |
|
20/F., BOC Credit
Card Centre |
|
68 Connaught Road
West |
|
Hong Kong |
|
Tel: (852) 2853
8888 |
|
Fax: (852) 2541
5415 |
|
|
|
|
