Arriga International

Privacy Policy

Effective date: 01.01.2023

1. Who we are

This Privacy Policy explains how Arriga International (“Arriga”, “we”, “us”, “our”) collects, uses, shares and protects personal data when you use our websites, products and services.

Company details and primary contact

  • Arriga International Limited
  • 21/F, Tower 3, China Hong Kong City, 33 Canton Road, Tsim Sha Tsui, Kowloon, Hong Kong
  • Phone: +852-3973-3791
  • Email: [email protected]  
  • UAE office
  • 17/F, Jumeirah Bay X2 Tower, Cluster X, JLT, P.O. Box 506850, Dubai, United Arab Emirates
  • Email: [email protected]  

This Policy applies to our websites (including arriga.com.hk and arriga.hk, and related subdomains) and to any online services that link to it.  

2. Personal data we collect

We may collect and process the following categories of personal data:

  • Information you provide to us
    • Contact details (name, email address, phone number, company, job title).
    • Information submitted via forms (enquiry details, support requests, feedback).
    • Subscription details for newsletters and marketing communications.
  • Information collected automatically
    • Technical data such as IP address, browser type, device identifiers, operating system, and access times.
    • Usage data such as pages visited, links clicked, referring/exit pages and similar information collected via cookies and similar technologies.
  • Information from third parties
    • Data from partners and service providers (e.g. security providers, analytics tools).
    • Publicly available or commercially available sources used to enrich our contact and business records.

3. How we use personal data

We use personal data for the following purposes:

  • To provide and operate our services
  • Delivering cloud, connectivity and related services, processing orders, managing accounts, and providing customer support.
  • To communicate with you
  • Responding to enquiries, sending service-related notifications, and communicating about changes to our terms, policies or services.
  • To improve and develop our services
  • Analysing how our websites and services are used, troubleshooting, testing and developing new features.
  • To market our services
  • Sending newsletters, event invitations and other marketing communications, where permitted by law. You can opt out of marketing at any time.
  • To ensure security and prevent misuse
  • Monitoring for fraud, abuse and security incidents, and protecting our rights, property, networks and users.
  • To comply with legal obligations
  • Fulfilling our legal and regulatory obligations and responding to lawful requests from public authorities.

4. Legal bases for processing (EEA/UK visitors)

Where applicable data protection law requires a legal basis (for example under GDPR), we rely on:

  • Performance of a contract (or steps prior to entering into a contract).
  • Our legitimate interests (such as running, improving and securing our business and services) where these are not overridden by your interests or fundamental rights.
  • Your consent, where required (e.g. certain marketing communications or non-essential cookies).
  • Compliance with a legal obligation.

5. Cookies and similar technologies

We may use cookies and similar technologies to:

  • Remember your preferences and settings.
  • Understand how you interact with our site.
  • Improve website performance and security.
  • Support analytics and, where applicable, marketing.

You can manage cookies through your browser settings. Depending on your location, you may also see a cookie banner or preference centre that allows you to control optional cookies.

6. How we share personal data

We may share your personal data with:

  • Affiliated entities within the Arriga group.
  • Service providers who process data on our behalf (such as hosting, data centre, security, email, CRM and analytics providers).
  • Telecom and network partners where needed to provide connectivity and related services.
  • Professional advisers (lawyers, auditors, consultants) under appropriate confidentiality obligations.
  • Authorities and third parties when required by law or to protect our legal rights, security, users or the public.
  • Business transferees in connection with a merger, acquisition, reorganisation or sale of assets.

We do not sell your personal data.

7. International data transfers

Because we operate internationally, your personal data may be transferred to and processed in countries other than the one in which you are located, including Hong Kong and the United Arab Emirates.  

Where required by law, we implement safeguards such as standard contractual clauses or equivalent mechanisms to protect your personal data in connection with such transfers.

8. Data retention

We retain personal data only for as long as necessary to fulfil the purposes described in this Policy, including:

  • For as long as you maintain an account or active relationship with us.
  • For the period needed to resolve disputes, enforce agreements and meet legal obligations.
  • As required by applicable laws and regulations.

When personal data is no longer needed, we will delete or anonymise it in line with our data retention practices.

9. Your rights

Depending on your location and applicable law, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate or incomplete data.
  • Request deletion of your personal data in certain circumstances.
  • Object to or request restriction of processing.
  • Withdraw consent at any time, where we rely on your consent.
  • Request data portability, where technically feasible.
  • Lodge a complaint with a supervisory authority (for example, in the EEA or UK).

To exercise these rights, please contact us using the details in section 12.

10. Security

We use appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access, disclosure, alteration and destruction. These measures include network and infrastructure security controls, access management, monitoring and staff training.  

However, no system can be guaranteed 100% secure. You are responsible for keeping your account credentials confidential and for notifying us promptly if you suspect unauthorised use of your account.

11. Children’s privacy

Our websites and services are not directed to children under the age of 16, and we do not knowingly collect personal data from children under 16. If you believe that a child has provided us with personal data, please contact us and we will take appropriate steps to delete such information where required.

12. Contact us

If you have questions about this Privacy Policy, or if you wish to exercise your data protection rights, contact us at:

  • Email: [email protected]
  • Phone: +852-3973-3791
  • Postal address: 21/F, Tower 3, China Hong Kong City, 33 Canton Road, Tsim Sha Tsui, Kowloon, Hong Kong  

For abuse, security or network-related matters, you may also contact: [email protected]  

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Effective date” at the top of this page and, where appropriate, provide additional notice (for example, by displaying a notice on our website). We encourage you to review this Policy periodically.