PRIVACY POLICY
KIRIN MARKETING LIMITED
Reg. No. 79213173
Date of Registration: 20 November 2025
Registered Address: Unit 2A, 17/F, Glenealy Tower, No. 1 Glenealy, Central, Hong Kong
Website: https://kirin.marketing
Last Updated: 01/12/2025

1. Introduction
This Privacy Policy explains how KIRIN MARKETING LIMITED (“KIRIN”, “we”, “us”, “our”) collects, uses, and protects your personal data when you visit the website kirin.marketing (“Website”).
We adhere to the principles of data minimisation, purpose limitation, transparency, and accountability, as required by the General Data Protection Regulation (GDPR), the ePrivacy Directive, and other applicable laws.
  • If you do not agree with any part of this Privacy Policy, please discontinue use of our Website.

2. Data controller
KIRIN MARKETING LIMITED
Unit 2A, 17/F, Glenealy Tower, No. 1 Glenealy, Central, Hong Kong
Email: ceo@kirin.marketing
We determine the purposes and means of processing your personal data.

3. Personal data we collect
We follow a strict data minimisation approach: we do not collect what we do not need.
3.1. Data you provide voluntarily
When you contact us through email or our Website, you may provide:
  • Name
  • Email address
  • Phone number (optional)
  • Any information included in your message
We do not collect or process special categories of personal data (GDPR Article 9).
3.2. Automatically collected technical data
For security and Website functionality, we automatically process:
  • Browser type and version
  • Operating system information
  • Temporary IP address (processed only for security)
  • Strictly necessary session cookies
We do not use analytics, advertising, tracking, or third-party cookies.
We do not purchase or collect data from third parties.

4. How we use your data
Your personal data is used only for purposes that are:
  • Necessary to respond to your inquiries
  • Required to operate and maintain Website security and functionality
  • Required to detect and prevent fraud or misuse
  • Necessary to comply with legal obligations
We do not use your data for:
  • Marketing without explicit consent
  • Profiling
  • Automated decision-making producing legal or significant effects (GDPR Article 22)
5. Legal basis for processing (GDPR Article 6)
We process your data based on one or more of the following lawful bases:
  • Contractual necessity – responding to your inquiry or providing requested information
  • Legal obligation – when processing is required by applicable law
  • Legitimate interests – ensuring Website security, stability, and proper operation (without overriding your rights)
Strictly necessary cookies are processed in accordance with the ePrivacy Directive and do not require consent.

6. Cookies and Tracking Technologies
Our Website uses only strictly necessary cookies, which:
  • Enable secure browsing and essential functionality
  • Are not used for tracking, analytics, or profiling
  • Do not store information beyond what is technically necessary
  • May be disabled in your browser, although this may impair Website performance
We do not use:
  • Analytics cookies
  • Advertising or retargeting cookies
  • Any third-party tracking technologies

7. Data Sharing
We never sell, rent, or trade your personal data.
Your data may be shared only when:
  • Required to operate the Website (e.g., secure hosting providers)
  • Required by law, regulation, or court order
  • Necessary to protect our rights or ensure Website security
  • Processed by service providers under GDPR-compliant data processing agreements (Art. 28 GDPR)
All service providers are contractually obligated to maintain confidentiality and data protection standards.

8. Data retention
We retain personal data only for as long as necessary:
  • Inquiry-related data: up to 12 months after the last communication
  • Technical logs and security data: up to 6 months
  • Legal and regulatory records: as long as required by applicable laws
After the retention period, data is securely deleted or anonymised.

9. Data security
We use appropriate technical and organisational measures.

10. Your rights under the GDPR
You have the following rights:
  • Right of access (Art. 15)
  • Right to rectification (Art. 16)
  • Right to erasure (“right to be forgotten”, Art. 17)
  • Right to restrict processing (Art. 18)
  • Right to object (Art. 21)
  • Right to data portability (Art. 20)
  • Right to withdraw consent at any time (Art. 7(3))
To exercise any of these rights, contact us at:
ceo@kirin.marketing
You also have the right to lodge a complaint with your local Data Protection Authority.
11. Minors
Our Website is not intended for individuals under 18.
We do not knowingly collect personal data from minors.
If you believe a minor has provided us with data, please contact us so we can delete it.

12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time.
The latest version will always be posted on this page with an updated “Last Updated” date.
Your continued use of the Website constitutes acceptance of the updated Policy.

13. Contact Information
For privacy inquiries, data requests, or questions regarding this Policy, contact us at:
Email: ceo@kirin.marketing