Last modified: Oct 02, 2025 12:43 (UTC+08:00)
Terms And Conditions

Privacy Policy

Cookie Policy
AML Policy
Restricted Business ActivitiesDNBC’s Prevention of Financial Crime
Payment Terms

Privacy Policy

Money Service Operator License – MSO license number: 22-10-03118

Issued by: Hong Kong Customs and Excise Department

Registered Address: Unit A&B, 18/F, Wing Hing Commercial Building, 139 Wing Lok Street, Sheung Wan, Hong Kong

Last updated: October 01 2025

1. Introduction

DNBC Financial Hong Kong Limited (“DNBC”, “we”, “our”, “us”) respects your privacy and is committed to protecting your personal data.

This Privacy Policy explains:

  • What data we collect;
  • How and why we use your data;
  • How we protect your data;
  • With whom we may share your data;
  • Your legal rights under the Personal Data (Privacy) Ordinance (Cap. 486) (“PDPO”) of Hong Kong.

Eligibility – Minimum Age Requirement

Our services are intended solely for individuals who are at least 18 years of age. By using our services, you represent and warrant that you are at least 18 years old and have the legal capacity to enter into a binding agreement.

DNBC does not knowingly collect or maintain personal data from individuals under 18 years old. If it comes to our attention that such data has been collected, we will take immediate steps to delete it.

By using our services, you agree to the terms of this Privacy Policy.

2. Data We Collect

We may collect the following types of personal data from you:

  • Identity Data: full name, date of birth, nationality, ID/passport information, business registration documents.
  • Contact Data: address, email, phone number.
  • Financial Data: bank account details, payment instructions, transaction history.
  • Compliance Data: KYC/AML information, source of funds, risk assessment documents.
  • Technical Data: IP address, browser type, cookies, device identifiers.
  • Communication Data: records of correspondence with our customer service, Relationship Managers, or compliance officers.

3. Collection Notice (DPP1 – Purpose & Notice)

At the time of collecting your personal data (e.g. onboarding, transaction processing, website forms), DNBC will inform you of:

  • The purpose of collection;
  • The classes of transferees of your data (e.g. regulators, payment partners);
  • Whether the provision of such data is mandatory or voluntary;
  • The consequences of failing to provide the required data;
  • Your rights of access and correction under PDPO.

4. How We Use Your Data

We use your personal data strictly for the purposes stated at the time of collection, including:

  • To provide and manage our financial services;
  • To process payments and transactions;
  • To comply with legal and regulatory obligations, including AML/CFT laws;
  • To conduct risk management and fraud prevention;
  • To communicate with you regarding services, updates, or regulatory notices;
  • To send you direct marketing communications, if we have obtained your prior consent.

5. Direct Marketing

We will only use your personal data for direct marketing if:

  • You have provided clear and unambiguous consent; or
  • We are otherwise permitted by law under PDPO.
  • You have the right to opt-out at any time by contacting us at [email protected].

6. Cross-Border Data Transfer

We may transfer your personal data outside Hong Kong (e.g. to international payment partners, IT service providers, or compliance firms).

  • We will obtain your explicit consent before transferring your data outside Hong Kong, unless the transfer is otherwise permitted by law.
  • We will ensure the transferee provides a level of protection comparable to PDPO requirements.

7. Data Retention 

DNBC retains personal data only for as long as it is necessary for the purposes stated at the time of collection, and in compliance with applicable laws in Hong Kong, including the Personal Data (Privacy) Ordinance (Cap. 486) (“PDPO”) and the Anti-Money Laundering and Counter-Terrorist Financing Ordinance (Cap. 615) (“AMLO”).

Specifically:

  • Customer Due Diligence (CDD) Records:

We will keep original or copies of identity documents, beneficial ownership information, and correspondence obtained during the verification process for at least five (5) years after the end of the business relationship with the customer.

  • Transaction Records:

We will keep original or copies of documents and information related to transactions for at least five (5) years from the date the transaction is completed.

  • Other Personal Data:

For any other data collected outside AML/CTF obligations, we will retain it only for as long as necessary to fulfill the purpose for which it was collected, unless longer retention is required by applicable laws or for the establishment, exercise, or defense of legal claims.

After the retention period, DNBC will securely delete or anonymize the data.

8. Data Security

We adopt appropriate technical and organizational measures to safeguard personal data against:

  • Unauthorized access, processing, or disclosure;
  • Accidental loss, alteration, or destruction.

These measures include encryption, access control, and regular security audits.

Where data is processed by third-party service providers, we ensure they are contractually bound to maintain data protection standards consistent with PDPO.

9. Data Breach Notification

In the event of a data breach likely to cause significant risk to your rights, DNBC will:

  • Promptly notify affected individuals;
  • Where appropriate, report to the Office of the Privacy Commissioner for Personal Data (PCPD);
  • Take immediate remedial actions to contain and mitigate the breach.

10. Your Rights (DPP6 – Access & Correction)

Under PDPO, you have the right to:

  • Request access to personal data we hold about you;
  • Request correction of inaccurate or incomplete data.

Requests can be made in writing to our Data Protection Officer. A nominal fee may be charged as permitted under PDPO.

11. Disclosure of Data

We may disclose personal data to the following classes of transferees:

  • Regulators, law enforcement, and government authorities in Hong Kong or abroad;
  • Banks, payment processors, and clearing networks;
  • Compliance service providers and auditors;
  • Professional advisors (e.g. lawyers, accountants).
  • Disclosure will be strictly limited to what is necessary and lawful.

12. Changes To Our Privacy Policy

Any changes we may make to this policy in the future will be posted on this page and, where appropriate, notified to you by email. Please check back frequently for any updates or changes to Our privacy policy.

13. Cookie Policy

DNBC Financial Hong Kong Limited (“DNBC”) uses cookies to enhance your experience when you visit our website. A cookie is a small amount of data created in a computer when a person visits a website on the computer. It often includes an anonymous unique identifier. A cookie can be used to identify a computer. It, however, is not used to collect any personal information. In other words, it does not have the function of identifying individual users of the website.

Cookie is used by the DNBC to facilitate the provision of electronic services in DNBC Financial Hong Kong Limited (“DNBC”) website and to collect information about the users preference in using the online services of the DNBC website.

If you do not accept the cookies, you may not be able to use some of the functions of the online services.

For more details on how DNBC uses cookies and how you can manage your cookie settings, please refer to our full Cookies Policy

14. Contact Information

For any questions, or to exercise your rights under PDPO, please contact:

Data Protection Officer (DPO)

DNBC Financial Hong Kong Limited

Unit A&B, 18/F, Wing Hing Commercial Building,

139 Wing Lok Street, Sheung Wan, Hong Kong

Email: [email protected]

15. Complaint Handling

DNBC is committed to addressing any concerns regarding the handling of your personal data in a fair and timely manner.

If you wish to make a complaint about how your data has been processed, or if you believe your privacy rights under the Personal Data (Privacy) Ordinance (Cap. 486) have been infringed, you may contact us directly. We will acknowledge receipt of your complaint, investigate the matter, and respond within a reasonable timeframe.

You may also provide any feedback that you may have or raise concerns about this Privacy Policy by contacting our Data Protection Officer (DPO) at:

Email: [email protected]

If you are not satisfied with our response, you have the right to lodge a complaint with the Office of the Privacy Commissioner for Personal Data (PCPD), Hong Kong.