Privacy policy and personal data processing
This Policy describes how China Global Hub Technology co.ltd. (the “Controller” or “we”) processes personal data of visitors to the China Global Hub website and related services (the “Site”), and of persons who contact us for business purposes. It is designed to align with the EU General Data Protection Regulation (GDPR) where it applies, the UK GDPR where it applies, and other applicable national laws (including, where relevant, the Russian Federal Law No. 152-FZ for residents of the Russian Federation).
1. Definitions
Controller: China Global Hub Technology co.ltd., which alone or jointly with others determines the purposes and means of processing personal data.
Personal data: any information relating to an identified or identifiable natural person.
Processing: any operation or set of operations performed on personal data (including collection, storage, use, disclosure, erasure or destruction), whether or not by automated means.
Site: websites and subdomains under chinaglobalhub.com, including localised versions.
2. Principles
We process personal data lawfully, fairly and transparently; collect data for specified, explicit and legitimate purposes; limit processing to what is adequate and relevant; keep data accurate and up to date; retain it no longer than necessary; and implement appropriate security measures.
Where consent is required, we obtain it separately where appropriate. Where processing is based on contract performance, legal obligation, vital interests, public task or legitimate interests, we document the basis and respect data subjects’ rights and reasonable expectations.
3. Categories of data
Identity and contact data you provide: name, job title, company name, phone, email, country/city, and any other fields you submit in forms, email or calls.
Technical data: IP address, browser type and version, language, timestamps, pages requested, cookies and similar identifiers where you have not disabled them.
Content you attach to enquiries (files, messages) where needed to handle your request or perform a contract.
4. Purposes
Handling enquiries and requests submitted via the Site or other channels.
Pre-contract and contract communications: proposals, scoping, status updates.
Performing agreements with clients, record-keeping and counterparty liaison.
Site security, abuse prevention, and aggregated analytics where tools are used.
Marketing communications only with a valid legal basis (e.g. consent or soft opt-in where permitted), with an easy opt-out where required.
5. Legal bases (GDPR-style)
Consent, where we ask for it explicitly.
Performance of a contract or steps prior to entering a contract at your request.
Compliance with a legal obligation to which we are subject.
Legitimate interests (e.g. network security, service improvement), where not overridden by your interests or fundamental rights.
6. Recipients and processors
We may share data with processors that provide services on our instructions and under written agreements (hosting, email delivery, CRM, analytics), only to the extent needed for the purposes in Section 4.
Disclosures to public authorities occur only where required by applicable law.
7. International transfers
Your data may be processed in countries other than your country of residence. Where GDPR/UK GDPR applies, we use appropriate safeguards for transfers outside the EEA/UK (e.g. adequacy decisions, Standard Contractual Clauses, supplementary measures) as required by law.
8. Retention
We keep personal data only as long as necessary for the purposes set out in this Policy, unless a longer period is required by law or contract.
When purposes are fulfilled or consent is withdrawn (where processing was consent-based), we delete or anonymise data unless retention is legally required.
9. Security
We implement organisational and technical measures appropriate to the risks, including access restrictions and secure communication where feasible.
10. Your rights
Depending on applicable law, you may have the right to: access your data; rectification; erasure; restriction of processing; data portability; objection to certain processing; withdraw consent without affecting prior lawful processing; and lodge a complaint with a supervisory authority.
In the EEA, you may contact your local supervisory authority. In the UK, the ICO (www.ico.org.uk). In Russia, Roskomnadzor for matters under 152-FZ.
To exercise rights, email info@chinaglobalhub.com. We may need to verify your identity.
11. Cookies
The Site may use cookies and similar technologies for core functionality, language preferences, session management and analytics. You can control cookies in your browser; disabling some cookies may affect Site features.
12. Changes
We may update this Policy. The current version is always on the Site. Material changes will be highlighted where practicable.
13. Data protection contact
A person responsible for organising processing is designated internally. For data subject requests, the primary channel is info@chinaglobalhub.com.
For questions about this Policy, exercising your data protection rights, or organisational details of processing, contact us at info@chinaglobalhub.com. We will respond within the time limits set by applicable law unless a different period is agreed.