Privacy Policy
Your data protection rights and our commitment to transparency
At FlashGlowOn, we believe transparency builds trust. This policy explains how we collect, use, and protect your personal information when you engage with our corporate finance training programs. We're committed to handling your data responsibly and in compliance with Hong Kong's Personal Data (Privacy) Ordinance and international privacy standards.
Information We Collect
We collect information that helps us deliver personalized financial education experiences. This happens through various touchpoints during your learning journey with us.
- Contact details including name, email address, phone number, and business information when you inquire about our programs
- Professional background and experience level to tailor course recommendations and group dynamics
- Learning preferences and career objectives to customize your educational pathway
- Technical information such as IP address, browser type, and device information for platform optimization
- Course progress data, assignment submissions, and participation metrics to track your development
- Payment information processed through secure third-party payment processors
- Communication records including emails, chat messages, and feedback forms
We never collect sensitive personal data such as health records, political opinions, or financial account details beyond what's necessary for course enrollment and completion.
How We Use Your Information
Your information helps us create meaningful learning experiences. We use data purposefully, not just because we can collect it.
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Course delivery and support | Contact details, learning progress | Contract performance |
| Program customization | Professional background, objectives | Legitimate interest |
| Platform improvement | Usage analytics, technical data | Legitimate interest |
| Communication | Contact preferences, interaction history | Consent/Contract |
| Legal compliance | All relevant data | Legal obligation |
Data Sharing and Third Parties
We work with carefully selected partners who help us deliver our services. Here's who we share information with and why.
- Learning management system providers who host our course content and track progress
- Payment processors for secure transaction handling (Stripe, PayPal)
- Email service providers for course communications and updates
- Analytics services to understand platform usage and improve user experience
- Professional development certification bodies when you complete accredited programs
- Legal authorities when required by Hong Kong law or court orders
We never sell your personal information to marketing companies or data brokers. All our partners sign data processing agreements that require them to protect your information with the same care we do.
Your Privacy Rights
Under Hong Kong's Personal Data (Privacy) Ordinance, you have several rights regarding your personal information. Here's what you can do and how to exercise these rights.
Access Your Data
Request a copy of all personal information we hold about you. We'll provide this within 40 days in a readable format.
Correction Rights
Update or correct any inaccurate information in your profile or course records at any time through your account settings.
Data Portability
Receive your course progress, certificates, and profile data in a portable format if you want to transfer to another provider.
Withdrawal of Consent
Opt out of marketing communications or withdraw consent for data processing where consent is the legal basis.
Erasure Requests
Request deletion of your personal data, subject to our legal obligations and legitimate business interests.
Processing Restrictions
Limit how we use your data in specific circumstances while maintaining your access to completed courses.
To exercise any of these rights, contact our Privacy Officer at privacy@flashglowon.com. We'll respond within 30 days and may need to verify your identity before processing requests.
Data Security and Protection
We implement multiple layers of security to protect your information from unauthorized access, alteration, or destruction.
- SSL encryption for all data transmission between your device and our servers
- Regular security audits and penetration testing by certified cybersecurity firms
- Access controls limiting staff access to personal data on a need-to-know basis
- Secure cloud infrastructure with enterprise-grade firewalls and intrusion detection
- Regular data backups stored in geographically separate, secure locations
- Staff training on data protection principles and incident response procedures
- Multi-factor authentication for all administrative accounts and sensitive operations
While we implement strong security measures, no system is completely foolproof. If we experience a data breach that could impact your privacy, we'll notify you within 72 hours and provide clear information about what happened and what we're doing about it.
Data Retention and Deletion
We don't keep your information forever. Our retention periods are based on legal requirements, business needs, and your relationship with us.
| Data Type | Retention Period | Reason |
|---|---|---|
| Course enrollment records | 7 years after completion | Professional certification requirements |
| Financial transaction data | 7 years from transaction | Tax and accounting compliance |
| Marketing contact lists | 3 years from last interaction | Legitimate business interest |
| Technical logs and analytics | 2 years from collection | Platform optimization and security |
| Support communications | 3 years from resolution | Service improvement and disputes |
When retention periods expire, we securely delete or anonymize your information. You can request earlier deletion in certain circumstances, though we may need to retain some data for legal compliance.
International Data Transfers
Some of our service providers operate outside Hong Kong. When we transfer your data internationally, we ensure appropriate safeguards are in place.
- Standard Contractual Clauses approved by data protection authorities for transfers to countries without adequacy decisions
- Certification schemes like Privacy Shield successors where available
- Regular assessments of the security and privacy laws in destination countries
- Encryption of data both in transit and at rest when stored on international servers
- Contractual commitments from international processors to notify us of any government data requests
Currently, we transfer data to service providers in the United States, European Union, and Singapore. All transfers comply with Hong Kong's cross-border data transfer requirements.
Cookies and Online Tracking
Our website uses cookies and similar technologies to enhance your browsing experience and improve our services. Here's what we use and why.
- Essential cookies for login sessions, shopping cart functionality, and security features
- Analytics cookies to understand how visitors use our website and identify areas for improvement
- Preference cookies to remember your language settings and course selections
- Marketing cookies to show relevant course recommendations and measure advertising effectiveness
You can control cookie settings through your browser preferences. Disabling certain cookies may limit some website functionality, but won't prevent you from accessing course content or support services.
Changes to This Policy
Privacy laws and our business practices evolve over time. When we make significant changes to this policy, we'll notify you in advance and explain what's changing.
We'll email active users about major policy updates and post notices on our website. For minor clarifications or formatting changes, we'll simply update the "Last Modified" date at the top of this page.
We encourage you to review this policy periodically, especially before sharing new types of information with us or signing up for additional services.
Children's Privacy
Our corporate finance programs are designed for working professionals. We don't knowingly collect personal information from individuals under 16 years of age. If we discover we've collected such information, we'll delete it promptly and may contact parents or guardians if required by law.
Privacy Questions and Complaints
Privacy Officer: Lucinda Pemberton
Email: privacy@flashglowon.com
Phone: +852 5407 4825
Address: 3/F, Dah Sing Life
Building, 99-105 Des Voeux Rd Central, Central,
Hong Kong
If you're not satisfied with our response to your privacy concern, you can lodge a complaint with the Office of the Privacy Commissioner for Personal Data in Hong Kong.