Select your language
close
For more inquiries
Cancel

Prudential Hong Kong Limited (Macau Branch) Privacy Notice

We, Prudential Hong Kong Limited (Macau Branch), as the data controller, take the privacy and protection of your personal data seriously.

Last Updated: 12 Jun 2023

 

So, we’ve set out the below information about our processing of your personal data, what rights you have, and how you can get in touch if you want to know more.

When we say “personal data”, we mean information about you, such as your name, date of birth and contact details. We collect personal data from you that is necessary or helpful for us to either provide you with the product or service you’ve requested or to comply with statutory or contractual requirements. Unless otherwise specified by us, it is mandatory for you to provide personal data requested by us, and if you’re unable to provide certain personal data which is necessary for us to provide our products and/or services to you, we will not be able to provide you with those products and/or services.

We may change this Privacy Notice from time to time by updating our Privacy Notice page on our website. We encourage you to check our Privacy Notice from time to time on our website, as the version of our Privacy Notice which is displayed on our website takes precedence over all previous versions of our Privacy Notice.

 

China Personal Information Protection Law (PIPL)

The PIPL Addendum supplements the Privacy Notice and applies to you if you are located in Mainland China. The PIPL Addendum is available on our website at https://www.prudential.com.hk/en/china-personal-information-protection-law/ .
 

Part A – Personal data we process

  • Personal and contact details, such as title, full name, contact details and contact details history;

  • travel document information;

  • payment information including but not limited to credit card details and bank account information;

  • your date of birth, gender and/or age;

  • your nationality, identity document copies and details (if relevant to the product or service);

  • details of policy holders, joint policy holders, insureds, beneficiaries, including minor beneficiaries, assignees, trustees and claimants of our products or services;

  • family members (if relevant to the product or service);

  • records of your contact with us such as via the phone number of our customer service centre and, if you get in touch with us online using our online services or via our smartphone app, details such as your mobile phone location data, IP address and MAC address;

  • products and services you hold with us, as well as those you have been interested in and have held and the associated payment methods used;

  • the usage of our products and services, any claims and whether those claims were paid out or not (and details related to this);

  • analysis of data relating to marketing made to you, including history of communications and whether you open them or click on links;

  • information about your use of products or services held with our Marketing Partners, such as insurance policies, mortgage, savings or financial services and products;

  • information we obtained from third parties, including information about insurance risk, pricing, claims history, instances of suspect fraud and usage history;

  • biometric data including but not limited to your voice pattern, fingerprint and facial images, and your location information based on your mobile phone or other device;

  • personal data which we obtain from credit reference agencies and fraud prevention agencies, including public (for example, defaults) and shared credit history, financial situation and financial history;

  • fraud, debt and theft information, including details of money you owe, suspected instances of fraud or theft, and details of any devices used for fraud;

  • criminal records information, including alleged offences;

  • information about your health/ medical records (collectively “Health Data”);

  • information about your property, such as location, value, number of rooms, property type and building work you’ve had done (if relevant to the product or service);

  • financial details about you, such as your salary and details of other income, details of your savings, details of your expenditure, and payment method(s);

  • details about all your existing borrowings and loans (if relevant to the product or service);

  • information about your employment status (if relevant to the product or service);

  • information about your property occupier status, such as whether you are a tenant, live with parents or are an owner occupier of the property where you live at the time of your application;

  • your residency and/or citizenship status;

  • your marital status, family, lifestyle or social circumstances (if relevant to the product or service). For example, the number of dependents you have or if you are a widow or widower;

  • information we buy or rent from third parties, including demographic information, details of outstanding finance, marketing lists, publicly available information, and information to help improve the relevance of our products and services;

  • insights about you and our customers gained from analysis or profiling of customers;

  • third party transactions; such as where a person other than the account holder uses the service, information about that person and the transaction; and

  • tax information (if relevant to the product or service). For example, for investment accounts.

 

“Personal data” shall also include, but not be limited to, the personal data relating to your beneficiaries (or any other person designated or entitled to receive any benefits under an insurance policy), dependents, authorised representatives, company staff, and other individuals in relation to which you have provided personal data.

 

Part B – Where we get your personal data

 

We’ll collect personal data including but not limited to from the following general sources:

  • from you directly, and any information from family members, associates or policyholders, joint policy holders, contingent owners, insureds, beneficiaries, including minor beneficiaries, assignees, trustees and claimants of products and services;

  • information generated about you when you use our products and services;

  • from a broker or other intermediary (for example, agents, distributors, business partners) who we work with to provide products or services or quote to you;

  • Prudential Group companies if you already have a product with them, have applied for one or have held one previously;

  • cookies, advertising ID, location services, IP addresses when you visit our website or mobile app or when you fill up contact us forms within our website or app;

  • third parties such as insurance companies, agents, vendors, financial institutions, medical personnel, courts or public records;

  • questionnaire and contact details when you attend surveys, investor conferences, roadshows or when you update contact us form on our website;

  • from other sources such as fraud prevention agencies, credit reference agencies, other lenders, publicly available directories and information (for example, telephone directory, social media, internet, news articles), debt recovery and/or tracing agents, other organisations to assist in prevention and detection of crime, police and law enforcement agencies; and

  • we buy or rent information about you or customers generally from third parties including demographic information, vehicle details, claims history, fraud information, marketing lists, publicly available information and other information to help improve our products and services or our business.

 

 

Part B.1 – Cookie Policy

 
Our site and mobile applications use cookies and/or similar tracking technologies to distinguish you from other users. We also use advertising identifiers in a similar manner to which we use cookies. This helps us to provide you with a good experience when you use the site / mobile applications and also allows us to improve our offering. You have the ability to accept or decline cookies/ advertising identifiers by modifying the setting in your browser or device. If you would like to do this, please see the help menu of your browser or device.

A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer. Cookies contain information that is stored on your computer's hard drive.
 
We use the following types of cookies: 

  • Strictly necessary cookies. These are cookies that are required for the operation of our site. They include, for example, cookies that enable you to log into our secure site;

  • Analytical/performance cookies. These allow us to recognise and count the number of visitors to our site and to see how visitors move around our site when they are using it. This helps us to improve the way our site works, for example, by ensuring that users are finding what they are looking for easily; and

  • Functionality cookies. These are used to recognise you when you return to our site. This enables us to personalise our content for you, greet you by name and remember your preferences (for example, your choice of language or region).

     

By continuing to use the site, you accept the use of cookies as outlined above.

 

Part C - How we use your personal data and why

 

We, Prudential Hong Kong Limited (Macau Branch), will use the personal data you provide to us, together with other information, for the following purposes and any other purpose directly relating to any of the following purposes:

 

Purpose

The administration of our products and services, including to provide any relevant services as discussed with you prior to any purchase of a product or service, to process your application, to administer and process insurance policies, insurance claims,  medical, security and underwriting checks, to process payment instructions, to verify your eligibility for insurance, financial or wealth management products and services, to investigate and settle claims and detect and prevent fraud and/or other illegal activity, or security or technical issues to perform a policy review or needs analysis, to administer lucky draws and other contests, and to enable us to perform our obligations to you.

Carrying out checks using agencies such as credit reference agencies, tracing companies, or publicly available information (see Part D for more).

Provision of customer services - like to reply to a question, or tell you that something’s changing.

Automated decision-making or profiling (see Part E for more).

Keeping your information on record and carrying out other internal business administration. 

Complying with any regulatory or other legal requirements including but not limited to anti-money laundering and Know-Your-Client obligations.

Designing and providing you with insurance, financial and related products and services.

With your specific consent where required for direct marketing as explained in Part I below, personalise and tailor, customised promotions, messages and suggestions to you.

Conduct research and statistical analysis (including use of new technologies).

 

Who we share your personal data with and why


We’ll share your personal and your health information with our insurance agents, the companies within the Prudential Group (including Prudential Corporation Asia) and their respective insurance agents, to our Business Partners, and with our financial / medical / wellness / health business partners and third party service providers (including but not limited to other insurers, lawyers, bankers, accountants, financial institutions, trustees and other third party service providers who provide administrative, telecommunications, computer, payment, printing, redemption or other services to us to enable us to operate our business), insurance brokers, medical bill review companies, claims investigations companies, organisations that consolidate claims and underwriting information for the insurance industry, fraud prevention organisations, industry associations and federations, your joint policy or investment holder, professional advisors, researchers, credit reference agencies, debt collection agencies, financial/health institutions and partnerships, for any of the purposes set out in this Part C. If you have a joint policy or investment, the other person may receive your personal data too. If appropriate, we may also pass on your personal data to financial crime prevention agencies, any legal, regulatory, law enforcement or government bodies and the courts. We may also disclose your personal information to an actual or proposed assignee or participant in connection with a transaction with another company which affects the control, governance, structure and/or management of all or a substantial part of our business.>
 
We may process your personal data in a country other than the one in which you reside. To the extent we transfer your personal data overseas, we will use appropriate safeguards where required by applicable law and comply with the laws of the country to which your personal data is transferred. Details of the safeguards we use (where required by applicable law) are available on request.

 

We keep your personal data for a set amount of time

 

Your personal data will be stored either for as long as you (or your joint policyholder) are our customer and for a period of seven years after the end of the customer relationship, or longer if required by law. While for potential customer (including rejected policyholder), personal data will be stored for no longer than two years after our last contact with you or longer if required by law. There may be specific circumstances where it is necessary for us to retain your personal data for longer (such as when a dispute arises).

 

Part D - Reference checks

 

For certain products, we may use approved credit reference agencies, tracing companies, financial crime prevention agencies, or publicly available information (where permitted by applicable law), to help us to check your identity, as well as to prevent fraud and money laundering; this may include checks on your current or previous addresses. Results of these may be recorded for future reference.
 
These checks may also be carried out for a fund investor, joint policy holder or person(s) that you provide personal data on. Should we ever lose contact with you, we may use these agencies to verify your address to help us get back in touch.
 
Any transfer of your personal data will always be done securely.

 

Part E – We may use and share your personal data to make automated decisions or profile you

 

We, Prudential Hong Kong Limited (Macau Branch) use technologies that are considered automated decision making or profiling. We will not make any automated decisions about you that would significantly affect you unless we have obtained your consent (when required by applicable law or regulation), or we are required by applicable law to use such technology. We may share your personal data within the Prudential Group (including Prudential Corporation Asia), our Business Partners, and our Marketing Partners to use for the same purpose.

 

Part F – Use of your sensitive personal data

 

For certain products or services, we’ll need to process your sensitive personal data, such as philosophical or political beliefs, political association or trade-union membership, religion, privacy and racial or ethnic origin, health or sex life, including genetic data. To the extent that we need your explicit consent under applicable law to process this kind of personal data in the manner described in Parts C, D, and E, we will provide details of this at the point of collection and seek your consent.

 

Part G – You’re in control

 

When it comes to how we use your personal data, you have the right to:

  • request a copy of your personal data (we have the right to charge a reasonable fee to complete this request);

  • request that we correct anything that’s wrong, or complete any incomplete personal data;

  • complain to a data protection authority or another independent regulator about how we’re using it.

 

If you currently reside in an EU jurisdiction, additional rights under General Data Protection Regulation (GDPR) may apply. As such, you may:

  • ask us to delete your personal data if it is no longer needed for the purposes set out in Part A or if there is no other legal basis for the processing;

  • object to us using your personal data for direct marketing (including related profiling) or other processing based on legitimate interests;

  • request that we provide a copy of your personal data in a structured and commonly used format in certain circumstances i; and

  • limit how we use your personal data or withdraw your consents (including automated decision making) you have given for the processing of your personal data.

 

If you want to exercise your rights, or would like an explanation about these rights, we’ve explained how you can get in touch in the Contact Us section.
 
If you do need to speak to us, it’ll be useful to have to hand that the data controller1 of your personal data is Prudential Hong Kong Limited (Macau Branch). We may monitor (via surveillance system such as CCTV) or record calls or any other communication we have with you. This might be for training, for security, or to help us check for quality.

 

Part H – Acting on someone else’s behalf?

 

When you give us personal data about another person (or persons), you should have been appointed and authorised by such person to act on their behalf. This includes providing consent to:

  • our processing of their personal data and sensitive personal data (as we’ve explained in Parts A - G above); and

  • you are getting any information protection notices on their behalf.

 

If for any reason you are concerned as to whether you are permitted to provide us with the other person’s information, please contact us at the email address below before sending us anything.

 

Part I – Direct marketing

 

With your consent, we intend to use your name and contact details for promotional and marketing purpose including sending marketing communications and conducting direct marketing to you by electronic and non-electronic means including by post, in relation to the following products, services and subjects, and we require your consent in order to do so: insurance; annuities; retirement schemes; pensions; wealth and financial management; estate management; investment; financial; medical/health/wellness related products, rewards/loyalty/privileges programs, services and subjects ("Classes of Marketing Subjects"). Our legal basis for this processing is based on your consent.
 
We also intend to transfer your name and contact details to our insurance agents, other companies within the Prudential Group (including Prudential Corporation Asia), their respective insurance agents, our Business Partners, and our Marketing Partners, to enable them to market any of the Classes of Marketing Subjects to you, and your written consent is required in order for us to do so. We may provide your personal data to such transferees for gain.
 
And if you change your mind, and / or you would like to opt-out of receiving direct marketing, it’s easy to let us know. Just use one of the options in the Contact us section below.

 

Contact us

 

If want to exercise your rights in Part G or if you require any other information about any other part of this notice, you can contact us in several different ways.
 
Write to our Data Protection Officer at the following address:
12 Andar A, FIT Center of Macau, Avenida Doutor Mario Soares, Macau

 
Or visit:


12 Andar A, FIT Center of Macau, Avenida Doutor Mario Soares, Macau
Tel: +853 8291 0833


Prudential Corporation Asia means Prudential Corporation Asia Limited.


The Prudential Group means Prudential Plc, Prudential Holdings Limited and any other affiliates and subsidiaries of Prudential plc. (including but not limited to Prudential General Insurance Hong Kong Limited). Prudential plc is not affiliated in any manner with Prudential Financial, Inc., a company whose principal place of business is in United States of America or with the Prudential Assurance Company, a subsidiary of M&G Plc, a company incorporated in United Kingdom.
 
Business Partners means our service providers who provide administrative, telecommunications, computer, information technology, data processing and storage, customer satisfaction analysis, payment, printing, redemption or other services to us to enable us to operate our business, accountants, auditors, IT service and platform providers, insurance intermediaries, reinsurers, investment managers, agents, pension trustees (and other stakeholders), scheme advisors, introducers, selected third party financial and insurance product providers, and our legal advisers.
 
Marketing Partners means our service providers who provide administrative, telecommunications, computer, payment, printing, third-party rewards/loyalty/privileges programs, medical/health/wellness related products, redemption or other services to us to enable us to operate our business, insurance intermediaries, pension trustees (and other stakeholders), scheme advisors, introducers and selected third party financial and insurance product providers.
 
1Data Controller - Natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
 
iWe will provide an electronic information (not paper records) that we hold and only that which you provided to us – we will not provide the results of any processing carried out on the data.