PRIVACY POLICY
隱私政策

Last Updated: June 4, 2026
最後更新日期: 2026年6月4日

LC Academy Co. Limited (collectively referred to as “the Company”, “us”, “we”, or “our”) is committed to protecting the privacy, confidentiality, and security of the personal data of our users, participants, and visitors.

This Privacy Policy describes how we collect, store, use, transfer, and handle your Personal Data in compliance with the Hong Kong Personal Data (Privacy) Ordinance (PDPO) (Cap. 486), and, where applicable, the General Data Protection Regulation (GDPR) for residents of the European Union, United Kingdom, and the European Economic Area (EEA).

By accessing our website, subscribing to or enrolling in our programs (including the High-Potential Professional program), using our applications, or communicating with us (collectively, the “Services”), you acknowledge that you have read this Privacy Policy and consent to the collection, use, transfer, storage, and processing of your Personal Data as outlined herein. If you do not agree with this policy, please discontinue use of our Services immediately.

1. DEFINITIONS AND DATA WE COLLECT

1.1 Personal Data Defined. Under this policy, "Personal Data" means any data, whether true or not, about an individual who can be identified directly from that data, or from that data combined with other information to which we have or are likely to have access.

1.2 Information You Provide Voluntarily. Depending on the nature of your interaction with us, we may collect:

- Identity Data: Full name, date of birth, and professional profile details.

- Contact Data: Email address, telephone/WhatsApp number, and mailing address.

- Billing and Financial Data: Billing address, bank account details, and payment card processing data. (Note: All payment card processing is handled securely by third-party PCI-DSS compliant gateways like Stripe or PayPal; we do not store raw credit card numbers on our local servers).

- Interaction Data: Any information you submit via application forms, feedback surveys, onboarding questionnaires, or communications with our support team.

1.3 Automatically Collected Data. When you navigate our websites, we automatically collect technical data, including your IP address, browser type, operating system, referral source, pages viewed, time spent on site, and network data.

1.4 Third-Party and Public Data. We may acquire information about you from publicly available professional networks (e.g., LinkedIn, Google), or from third-party partners with whom we host joint marketing initiatives or co-branded services.

2. LEGAL BASIS FOR PROCESSING (FOR EU/UK RESIDENTS)

If you reside within the European Union (EU) or the United Kingdom (UK), we process your Personal Data under the following lawful bases established by the GDPR:

- Performance of a Contract: To fulfill our obligations under the agreement or enrollment contract you enter into with us.

- Consent: When you explicitly give us permission to process your data (e.g., for marketing newsletters).

- Legitimate Interests: To improve our learning materials, secure our networks, prevent fraud, and optimize our digital experiences, provided these interests do not override your fundamental rights.

- Legal Compliance: When we are legally obligated to retain records or cooperate with law enforcement and regulatory authorities.

3. HOW WE COLLECT YOUR DATA

We collect Personal Data through various direct and indirect channels, including when you:

- Enroll in or register interest for our programs via our online portals.

- Communicate with our customer service or admissions team via Email, Zoom, or WhatsApp.

- Create an account on our learning portals or Learning Management Systems (LMS).

- Subscribe to our newsletters, articles, or technical updates.

- Post or upload materials within our digital learning environments, community channels, or Slack/Discord servers.

4. PURPOSES OF PROCESSING

We use your Personal Data to execute our business functions and provide premium educational experiences. Specifically, your data is used to:

- Verify your identity and manage your digital account with us.

- Deliver, administer, and evaluate our academic and professional training programs.

- Process payment transactions and manage installment collections through secure gateways.

- Send you automated operational updates, program timelines, and customer service responses.

- Personalize your user and browsing experience across our websites.

- Deliver promotional communications, marketing campaigns, and special offers relevant to your professional background (subject to your opt-out rights).

- Conduct internal data analysis, research, and market surveys to improve our curriculum.

- Maintain physical and digital network security, protect against fraud, and comply with corporate legal obligations.

5. REFUSAL TO PROVIDE PERSONAL DATA

You are under no statutory obligation to provide us with your Personal Data. However, please note that if you choose not to provide required details, we will be unable to process your enrollment, administer your program access, verify your identity for secure portal entry, or personalize your professional development experiences.

6. DATA SHARING AND THIRD-PARTY DISCLOSURES

We do not sell your Personal Data. To facilitate smooth business operations, your data may be securely transferred or accessed by authorized third parties, including:

- Infrastructure Service Providers: IT hosting vendors, cloud infrastructure platforms, learning management systems, and automated email distribution software.

- Payment Processors: PCI-DSS compliant credit card verification and payment processing agencies.

- Marketing and Analytics Agencies: Third-party data analytics services helping us assess website performance and measure ad conversions.

- Partner Organizations: External organizations, co-hosts, or enterprise sponsors with whom we formally collaborate to run joint cohorts, webinars, or events.

- Legal and Regulatory Authorities: Government bodies, courts, or law enforcement agencies when compelled to do so by a binding legal warrant, subpoena, or applicable local statutory law.

7. CROSS-BORDER DATA TRANSFERS

LC Academy Co. Limited operates globally. To deliver our online cohort programs effectively, your Personal Data may be transferred to, stored at, and processed in jurisdictions outside your home territory—including but not limited to Hong Kong, the United States, Singapore, Asia, and Europe.

Whenever we transfer data internationally, we implement strict safeguards, data processing agreements, or Standard Contractual Clauses to guarantee that your data is handled with the equivalent high standard of security required by applicable local privacy statutes.

8. COOKIES AND TRACKING TECHNOLOGIES


Our website utilizes cookies (small text files deposited onto your computer's hard drive) to recognize your device, preserve your login preferences, and evaluate traffic patterns. Cookies do not personally identify you, but they optimize web function. You can modify your browser settings to refuse cookies; however, disabling them may limit your access to specific interactive features of our portals.


9. DATA SECURITY AND RETENTION


9.1 Security Measures. We deploy comprehensive physical, administrative, and technical firewalls to secure your information. Data is housed on secure servers protected by encrypted passwords. Access is rigidly limited to employees and authorized contractors who require the information to execute their specific roles.


9.2 Data Retention. We retain your Personal Data only for as long as it remains necessary to satisfy the educational or commercial purposes for which it was collected, to meet our contractual agreements, or to satisfy legal, tax, and accounting requirements.


10. YOUR DATA RIGHTS


Depending on your geographic residency, you possess specific legal rights over your Personal Data. These generally include:

- Right of Access: The right to request copies of the Personal Data we hold about you.

- Right of Rectification: The right to request correction of inaccurate or incomplete data.

- Right of Erasure (Deletion): The right to request that we wipe your data from our systems, subject to certain exceptions where retention is legally required.

- Right to Restrict or Object: The right to object to or limit how we process your data.

- Right to Data Portability: The right to receive your data in a structured, machine-readable format.

- Right to Withdraw Consent: The right to revoke processing permissions at any time where we rely entirely on your consent.

To exercise any of these rights, or to submit a formal Data Access Request (DAR), please email us using the address specified in Section 14. We may request identity verification before executing your request to protect your security.

11. REFERRALS AND THIRD-PARTY LINKS

11.1 Referrals. If you utilize our referral mechanism to inform a colleague about our programs, you affirm that you have explicitly obtained their consent to share their name and email address with us. We will only use that data to issue the automatic referral invitation.

11.2 Third-Party Links. Our portals may contain links to external web channels. We do not manage, endorse, or accept liability for the privacy policies or compliance standards of third-party external networks. We encourage you to inspect the privacy guidelines of any site you transition to.

12. CHILDREN’S PRIVACY

Our services are aimed exclusively at adult professionals. We do not knowingly harvest information from individuals under the age of sixteen (16). If a parent or guardian discovers that a child has provided us with personal data without proper consent, they should immediately email us to have the information removed.

13. UNSUBSCRIBING AND MARKETING OPT-OUT

You have the absolute right to opt out of marketing communications at any time. You can do this by clicking the "Unsubscribe" hyperlink embedded at the footer of our marketing emails, or by sending a clear email with the word "Unsubscribe" in the subject line to our support channel.

14. CONTACT US AND COMPLAINTS

If you have any questions, concerns, updates, or complaints regarding how LC Academy Co. Limited handles your privacy, please direct your inquiry to our Data Privacy Representative at:

LC Academy Co. Limited

Email: [email protected]

LC Academy Co. Limited(以下統稱「本公司」、「我們」或「我們的」)致力於保護我們的用戶、學員及訪客的個人資料的隱私、保密性和安全性。

本隱私政策闡述了我們如何根據香港法例第486章《個人資料(私隱)條例》(PDPO),以及(如適用)針對歐盟、英國和歐洲經濟區(EEA)居民的《通用數據保障條例》(GDPR),來收集、儲存、使用、傳輸和處理您的個人資料。

當您訪問我們的網站、訂閱或報讀我們的課程(包括「高潛力專業人士」課程)、使用我們的應用程式或與我們溝通(統稱「服務」)時,即表示您已閱讀本隱私政策,並同意我們按照本政策所述收集、使用、傳輸、儲存和處理您的個人資料。如果您不同意本政策,請立即停止使用我們的服務。

1. 定義與我們收集的資料

1.1 個人資料的定義:在本政策中,「個人資料」是指任何與一名在世個人直接或間接有關的資料,不論該等資料是否屬實,且從該等資料中可以直接確定該名個人的身份,或通過本公司已持有或可能持有的其他資料結合後,可切實可行地確定該人的身份。

1.2 您自願提供的資料:根據您與我們互動的性質,我們可能會收集以下資料:

- 身份資料:全名、出生日期和專業履歷詳情。

- 聯絡資料:電子郵件地址、電話/WhatsApp 號碼和通訊地址。

- 賬單與財務資料:賬單地址、銀行賬戶詳情以及付款卡處理數據。(註:所有付款卡處理均由符合 PCI-DSS 標準的第三方支付網關如 Stripe 或 PayPal 安全處理;我們不會在本地伺服器上儲存您的原始信用卡號碼)。

- 互動資料:您通過申請表、反饋調查、入學問卷提交的任何資訊,或與我們支援團隊的溝通記錄。

1.3 自動收集的資料:當您瀏覽我們的網站時,我們會自動收集技術數據,包括您的 IP 地址、瀏覽器類型、操作系統、來源網站、瀏覽頁面、停留時間以及網絡數據。

1.4 第三方與公開資料:我們可能會從公開的專業網絡(如 LinkedIn、Google)或與我們共同舉辦行銷活動、聯合品牌服務的第三方合作夥伴處獲取有關您的資訊。

2. 處理資料的法律基礎(適用於歐盟/英國居民)

如果您居住在歐盟(EU)或英國(UK),我們將根據 GDPR 確立的以下合法基礎處理您的個人資料:

- 履行合同:為了履行您與我們簽訂的報讀或入學合同中所規定的義務。

- 同意:當您明確允許我們處理您的數據時(例如:訂閱行銷通訊)。

- 正當利益:在不侵害您基本權利的前提下,用於改進我們的教學材料、確保網絡安全、防止欺詐以及優化我們的數位體驗。

- 法律合規:當我們有法律義務保留記錄或配合執法及監管機構時。

3. 我們如何收集您的資料

我們通過多種直接和間接管道收集個人資料,包括當您:

- 通過我們的線上門戶報讀或登記諮詢我們的課程。

- 通過電子郵件、Zoom 或 WhatsApp 與我們的客戶服務或招生團隊溝通。

- 在我們的學習門戶或學習管理系統(LMS)上創建賬戶。

- 訂閱我們的通訊、文章或技術更新。

- 在我們的數位學習環境、社群頻道或 Slack/Discord 伺服器中發布或上傳資料。

4. 處理資料的目的

我們使用您的個人資料來執行業務運營並提供優質的教育體驗。具體而言,您的數據將用於:

- 核實您的身份並管理您的數位賬戶。

- 交付、管理和評估我們的學術及專業培訓課程。

- 處理款項交易,並通過安全網關管理分期付款。

- 向您發送自動化的運營更新、課程時間表和客戶服務回覆。

- 在我們的網站上為您提供個性化的用戶及瀏覽體驗。

- 向您發送與您的專業背景相關的促銷資訊、行銷活動和特別優惠(您隨時擁有取消訂閱的權利)。

- 進行內部數據分析、研究和市場調查,以改進我們的課程內容。

- 維護實體和數位網絡安全,防範欺詐,並履行企業的法律義務。

5. 拒絕提供個人資料的後果

您並無任何法定義務必須向我們提供您的個人資料。然而,請注意,如果您選擇不提供所需的詳細資訊,我們將無法處理您的入學申請、為您開通課程訪問權限、核實您的身份以進入安全門戶,或為您量身打造專業發展體驗。

6. 數據共享與第三方披露

我們不會出售您的個人資料。為了促進業務的順暢運營,您的數據可能會被安全地傳輸或分享給經授權的第三方,包括:

- 基礎設施服務提供商:IT 託管供應商、雲端基礎設施平台、學習管理系統和自動化電子郵件分發軟件。

- 付款處理商:符合 PCI-DSS 標準的信用卡核實及付款處理機構。

- 行銷與分析機構:協助我們評估網站性能和衡量廣告轉化率的第三方數據分析服務。

- 合作夥伴組織:與我們正式合作開展聯合課程、網絡研討會或活動的外部組織、聯辦方或企業贊助商。

- 法律及監管機構:當受到具約束力的法律手令、傳票或適用之本地法定法律強制要求時,提供予政府機關、法院或執法機構。

7. 跨境數據傳輸

LC Academy Co. Limited 的業務遍及全球。為了有效地交付我們的線上課程,您的個人資料可能會被傳輸至您居住地以外的司法管轄區(包括但不限於香港、美國、新加坡、亞洲其他地區和歐洲)進行儲存和處理。

每當我們進行國際數據傳輸時,我們都會實施嚴格的保障措施、數據處理協議或標準合同條款,以確保您的數據得到適用本地隱私法規所要求的同等高標準安全保障。

8. Cookies 與追蹤技術

我們的網站使用 Cookies(儲存在您電腦硬碟上的小型文字檔案)來識別您的設備、保存您的登入偏好並評估流量模式。Cookies 本身不會親自識別您的個人身份,但能優化網頁功能。您可以修改瀏覽器設置以拒絕 Cookies;但是,禁用 Cookies 可能會限制您使用我們門戶網站的某些互動功能。

9. 數據安全與保留

9.1 安全措施:我們部署了全面的實體、行政和技術防火牆來確保您的資訊安全。數據儲存在受加密密碼保護的安全伺服器上。資料訪問權限被嚴格限制在需要該等資訊來執行特定職責的員工和授權承包商之內。

9.2 數據保留:我們僅在滿足收集個人資料所述的教育或商業目的、履行我們的合同協議,或滿足法律、稅務和會計要求所需的時間內,保留您的個人資料。

10. 您對個人資料享有的權利

根據您居住的地理位置,您對自己的個人資料享有特定的法律權利。這些權利通常包括:

- 查閱權:要求獲取我們所持有的您個人資料副本的權利。

- 更正權:要求更正不準確或不完整數據的權利。

- 刪除權(被遺忘權):要求我們從系統中清除您數據的權利,惟法律要求保留的特定例外情況除外。

- 限制或反對處理權:反對或限制我們處理您數據的方式的權利。

- 數據攜帶權:以結構化、常用且機器可讀的格式接收您數據的權利。

- 撤回同意權:在我們完全依賴您的同意來處理數據的情況下,隨時撤回該同意的權利。

如欲行使上述任何權利,或提交正式的「資料查閱要求」(DAR),請發送電子郵件至第 14 條規定的地址。為保護您的安全,我們可能會在執行您的要求前要求核實您的身份。

11. 推薦機制與第三方網站連結

11.1 推薦機制:如果您使用我們的推薦服務向同事介紹我們的課程,您必須確認您已明確獲得該名同事的同意,方可向我們提供其姓名和電子郵件地址。我們將僅使用該數據發送自動推薦邀請。

11.2 第三方網站連結:我們的門戶網站可能包含指向外部網站的連結。我們無法控制、亦不認可或對外部第三方網絡的隱私政策或合規標準承擔任何法律責任。我們鼓勵您在跳轉到任何外部網站時,先仔細檢查其隱私政策。

12. 兒童隱私

我們的服務專為成年專業人士而設。我們不會在明知的情況下收集十六(16)歲以下人士的個人資料。如果家長或監護人發現其子女在未經同意的情況下向我們提供了個人資料,應立即發送電子郵件聯絡我們,以便我們刪除相關資訊。

13. 取消訂閱與拒絕接收行銷資訊

您擁有隨時拒絕接收行銷通訊的絕對權利。您可以通過點擊我們行銷電子郵件頁尾嵌入的「取消訂閱(Unsubscribe)」超連結,或向我們的支援團隊發送一封在主旨列註明「Unsubscribe」(取消訂閱)的清晰電子郵件來辦理。

14. 聯絡我們與投訴

如果您對 LC Academy Co. Limited 處理您隱私的方式有任何疑問、顧慮、更新要求或投訴,請直接聯絡我們的數據隱私代表:

LC Academy Co. Limited

電子郵件:[email protected]

Copyrights 2026 |  LC Academy ™ | Terms & Conditions | Privacy Policy