Privacy Policy for TripLink Services

Ctrip Financial Information (Hong Kong) Co., Limited

April 2021



Your privacy is important to us. At TripLink we have a few fundamental principles:

  • We don’t ask you for personal information unless we truly need it.
  • We don’t share your personal information with anyone except to comply with the law, provide our services, or protect our rights.
  • We restrict access to your personal information to employees and service providers who need to know that information to provide services to you.
  • We maintain physical, electronic and process security protocols to protect your personal information.

This Privacy Policy, together with our TripLink Services Terms and Conditions, governs TripLink’s collection, processing and use of your Personal Information. As used in this Privacy Policy, "TripLink" refers to Ctrip Financial Information (Hong Kong) Co., Limited Group Companies, including, without limitation, its owners, directors, investors, employees or other related parties. "Personal Information" refers to information that identifies an individual, such as name, address, e-mail address, trading information, and banking details. “Personal Information” does not include anonymised and/or aggregated data that does not identify a specific user.

By entering into the Agreement and the Terms and Conditions, you are specifically accepting the present TripLink Privacy Policy and consenting to the collection, processing and communication of your data as described in this TripLink Privacy Policy.

The purpose of this Privacy Policy is to describe:

  1. The types of Personal Information we collect and how it may be used;
  2. Our use of cookies and similar technology;
  3. How and why we may disclose your Personal Information to third parties;
  4. The transfer of your Personal Information within and outside of your home country;
  5. Your right to access, correct, update, and delete your Personal Information;
  6. The security measures we use to protect and prevent the loss, misuse, or alteration of Personal Information; and
  7. TripLink’s retention of your Personal Information.


Introduction

In order to be able to make TripLink’s services available to you in compliance with the obligations imposed by Applicable Law and by regulatory authorities, TripLink must ask you for certain information about yourself, including financial information (e.g., information about your identity, e-commerce sales, beneficiary account, etc.). TripLink will utilize the data provided by you in accordance with applicable provisions of governing data protection laws. The information obtained shall, as a matter of principle, be used by TripLink solely for providing TripLink Services and solely to the extent necessary to render such services. The information about you which we store shall, as a matter of principle, not be made accessible to third parties unless we are obligated to do so by law or due to legal ordinances or in order to properly render our services to you.


How we collect information

A. Collected from Website Visitors

Like most website operators, TripLink automatically collects non-personally-identifying information of the sort that web browsers and servers typically make available, such as the browser type, language preference, referring site, and the date and time of each visitor request. TripLink’s purpose in collecting non-personally identifying information is to better understand how TripLink’s visitors use its website, through cookies, web beacons, log files and other technologies:

  1. Your domain name, your browser type and operating system, web pages you view, links you click;
  2. Your IP address, the length of time you visit our Website or use our Services, your activities on our Website, and the referring URL or the webpage that led you to our Website.

Visitors can always refuse to supply personally-identifying information, with the caveat that it may prevent them from being able to use TripLink’s services.

B. Provided by Users

You may provide us data about you by filling in forms on our website (e.g. TripLink Account Registration), or by corresponding with us (for example, by e-mail or telephone). The data you provide may include data about additional persons that are beneficial owners of the TripLink Services. This includes that is provided to us about you:

  1. upon registration for a TripLink Account;
  2. when you log in to your TripLink Account;
  3. when you submit any Settlement Orders through your TripLink Account;
  4. when entering a competition, promotion or survey; and
  5. when a problem is reported or a request for support is received.

Visitors can always refuse to supply personally-identifying information, with the caveat that it may prevent them from being able to use TripLink’s services.


Information we collect

We collect the Personal Information you provide directly to us when you apply for a TripLink Account, perform any transactions on the TripLink platform, or use other TripLink Services. This may include:

  1. Your contact information (e.g., name, email address, phone number, billing or mailing address)
  2. Bank and credit account information
  3. IP address
  4. Identity validation (e.g., photograph, other information requested to verify your information, including copy of valid ID document)
  5. Publicly available and/or criminal history
  6. National identification numbers
  7. Nationality
  8. Date and place of birth
  9. Details of any transactions carried out using any the services
  10. Any other information that you choose to provide to us (e.g., if you send us an email/otherwise contact us)
  11. Calls/emails/other correspondence
  12. Information through Cookies and other tracking technologies as listed above and as described in the section below entitled “Cookies”

You are responsible for providing accurate and up-to-date information.

If you are required to provide information about shareholders or beneficial owners of your business, you acknowledge that you have that person’s consent to provide his/her information to us. This may include:

  1. Contact information, such as name, home address, and email address.
  2. Account information, such as username and credential.
  3. Financial information, such as bank account numbers, bank statement, and trading information.
  4. Identity verification information, such as images of your government issued ID, passport, national ID card, or driving license. Note: US residents may be asked to provide their social security numbers.
  5. Residence verification information, such as Utility bill details or similar information.

We may collect and process Personal Information about Buyers or third parties related to your business in providing TripLink Services. You are responsible for making sure that the privacy rights of any third parties, including Buyers and other individuals related to your business, are respected, including ensuring appropriate disclosures about third party data collection and use; with respect to such data you hereby (i) are deemed to be and (ii) accept to be controller.

To the extent that we are acting as your data processor, we will process Personal Data in accordance with the terms of our agreement with you and your lawful instructions.


How we use your data

We will only use your Personal Information to:

  1. Process your transactions, including transfers into the Peoples Republic of China in accordance with State Administration of Foreign Exchange regulations.
  2. Perform the required controls and checks in accordance with money laundering/terrorist financing and know your customer requirements under Applicable Law, and internal control policies, and well as address other law enforcement needs as more fully described in our Terms and Conditions.
  3. Analyse TripLink website usage, and improve our website and website offerings.
  4. Help us respond to your customer service requests and support needs.
  5. Contact you about TripLink Services. The email address you provide may be used to communicate information and updates related to your use of the TripLink Services. We may also occasionally communicate company news, updates, promotions, and related information relating to similar products and services provided by TripLink.
  6. Administer a contest, promotion, survey or other site features as will be more explained on the website.


Disclosure of personal information

TripLink discloses potentially personal information only (a) to legal and regulatory authorities as required by Applicable Law, and (b) to those of its employees, service providers and affiliated organizations that (i) need to know that information in order to process it or to provide services, and (ii) that have agreed not to disclose it to others, as described below.

A. Disclosure to Third Parties

In processing your transactions, we may share some of your Personal Information with Service Providers who help with our business operations. Your information will not be sold, exchanged, or shared with any third parties without your consent, except to provide TripLink Services or as required by law. By using our Services and accepting our Terms and Conditions, you consent to the disclosure of your Personal Information as described in this Privacy Policy.

TripLink’s Service Providers are contractually bound to protect and use such information only for the purposes for which it was disclosed, except as otherwise required or permitted by law. We ensure that such third parties will be bound by terms no less protective those described in this Privacy Policy, or those we are subject to under applicable data protection laws, including but not limited to the Applicable Law.

B. Disclosure to Legal Authorities

We may share your Personal Information with law enforcement, data protection authorities, government officials, and other authorities when:

  1. Compelled by subpoena, court order, or other legal procedure.
  2. We believe that the disclosure is necessary to prevent physical harm or financial loss.
  3. Disclosure is necessary to report suspected illegal activity.
  4. Disclosure is necessary to investigate violations of this Privacy Policy or our Terms of Use.


Transfer and storage of data

Our services are global and data may be stored and processed in any country where we have operations or where we engage service providers. Data we collect may be transferred to and/or stored at a destination outside your country of residence or the Account Jurisdiction, which may have data protection rules that are different from those of your country, including transferring data to and from regulatory authorities, or to staff operating outside the country who process data on our behalf or for one of our suppliers. Staff may be engaged in the fulfillment of your request and the provision of support services. However, we will take measures to ensure that any such transfers comply with applicable data protection laws and that your data remains protected to the standards described in this privacy policy. By submitting the data, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that the data is treated securely and in accordance with this Privacy Policy and the relevant data protection regulations.


Protection of Certain Personally-Identifying Information

TripLink takes all organizational and technical measures appropriate to protect against the unauthorized access, use, alteration or destruction of potentially personally-identifying and personally-identifying information.

All data that you provide to us is stored on our secure servers. You are responsible for keeping your account credentials safe and secure and not sharing them with anyone.

The transmission of information via the internet is not completely secure; any transmission is at your own risk. Although no one can guarantee the security of data transmitted via the internet, we do our best to protect the data transmitted via the TripLink Account. We use industry standard security techniques to help keep the data safe including encryption when the data is in transit and at rest.

The TripLink website may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any Personal Information to these third parties.


Cookies

To make this site work properly, TripLink, similar to many other major websites, sometimes use small data files called cookies or other tracking technology to track information about your use of our website and services. We may use third party service providers to collect this information on our behalf.

A. What are cookies?

A cookie is a small text file that a website saves on your computer or mobile device when you visit the site. It enables the website to remember your actions and preferences (such as login, language, font size and other display preferences) over a period of time, so you don’t have to keep re-entering them whenever you come back to the site or browse from one page to another.

B. How we use cookies and tracking mechanisms

TripLink’s website uses the following cookies/tracking mechanisms.

  • Session cookies. Session cookies are temporary cookies that remain in the cookie file of your browser until you leave the site. We use session cookies to allow you to carry information across pages of our site and avoid having to re-submit the same information. The cookies will be deleted after your web browser has been closed.
  • Persistent cookies. Persistent cookies remain in the cookie file of your browser for much longer (though how long will depend on the lifetime of the specific cookie). We use persistent cookies:
    The cookies will be deleted based on their own expiration period after your web browser has been closed.
    1. To help us recognize you as a unique visitor when you return to our website and to monitor your use of our website;
    2. To allow us to link you to any of our Partners of Affiliates should you come to our website through a paid advert or banner on a website of an Affiliate or Partner.
  • Web beacons. Some of our web pages may contain web beacons which allow us to count users who have visited these pages. Web beacons collect only limited information including a cookie number, time and date of a page view, and a description of the page on which the web beacon resides. These beacons do not carry any personally identifiable information and are used to track the effectiveness of a particular marketing campaign.

C. How to control cookies

You can control and/or delete cookies as you wish – for details, see aboutcookies.org. You can delete all cookies that are already on your computer and you can set most browsers to prevent them from being placed. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some services and functionalities may not work.


Privacy Policy Changes

This Privacy Policy may be revised over time as new features are added to the TripLink services or as we incorporate suggestions from our stakeholders. We may change this Privacy Policy at any time by posting a revised version of it on our website. We will provide you with at least 30 days' prior notice of the effective date of the revised Privacy Policy when it is legally required. We may post the notice on the front page of our website(s) and/or send the notice by e-mail, but we are under no obligation to do so. As of the effective date of the revised Privacy Policy, you will be considered as having consented to all changes to the Privacy Policy. If you disagree with the terms of this Privacy Policy, you may close your account at any time.


Liability

WE ARE NOT LIABLE TO YOU IN RESPECT OF ANY CLAIMS, LOSSES, DAMAGES, EXPENSES (INCLUDING REASONABLE LEGAL FEES) ARISING OUT OF OR IN CONNECTION WITH THE USE AND/OR DISCLOSURE OR DISSEMINATION OF THE USER DATA IN ACCORDANCE WITH THIS PRIVACY POLICY AND ANY CONSENTS THAT YOU MAY HAVE OTHERWISE PROVIDED TO US.