Privacy Policy:
Data Integrity in APAC

Intellinovus ("we," "our," or "us") is committed to protecting your privacy and handling personal data in a responsible way. This Privacy Policy explains how we collect, use, disclose, store, and protect information when you visit our website, contact us, request an audit, or otherwise engage with our services.

We aim to keep this policy clear enough to be useful while still reflecting the realities of a modern service business. That means we may collect different types of information depending on how you interact with us, what form you submit, and whether you are browsing the site, starting a conversation, or beginning a formal engagement.

We collect information that you give us directly and information that is generated automatically when you use the site. Direct information may include your name, company, job title, email address, phone number, and the content of the message you send through a form or by email.

We may also collect technical information such as IP address, browser type, device type, general location inferred from your network, pages visited, and the time and duration of your visits. This helps us understand how the site is used and where the experience can be improved.

If you request a readiness audit, book a call, or ask a question about a service, we may also collect contextual details about your team, systems, goals, workflow bottlenecks, and operational priorities. In practice, this often matters more than raw contact details because it allows us to respond in a way that is actually relevant.

We use personal data to respond to inquiries, prepare proposals, schedule meetings, deliver requested services, and communicate about the work you asked us to do. We also use information to maintain our internal records and to support the commercial relationship if one develops.

Beyond direct service delivery, we may use information to improve site performance, review engagement trends, detect abuse, maintain security, and comply with legal or regulatory obligations. In some cases, we may also use anonymized or aggregated data to understand what content is most useful to visitors and what parts of the site need clearer explanation.

If you subscribe to insights, newsletters, or similar communications, we may use your email address to send those updates. You can opt out at any time using the unsubscribe instructions in the message or by contacting us directly.

Our website may use cookies, pixels, or similar technologies to remember preferences, support security, and measure how visitors interact with the site. Some of these tools are essential for the site to function correctly, while others help us understand what content is useful and what content is being ignored.

We use Google Analytics to understand page-level patterns, conversion paths, and general traffic behavior. For this Hong Kong-based website, analytics runs by default so we can monitor site performance and visitor journeys, but we provide a clear on-site option for visitors who prefer to turn analytics off.

The analytics signals we review are intended to help us improve the website and conversion journey, not to build a detailed personal profile unless you voluntarily provide that information through a form or conversation. If your browser allows it, you can usually control or disable cookies through your browser settings. Doing so may affect parts of the site experience, though it should not prevent you from reading the core content.

We do not sell personal information. We may share data with trusted service providers who help us operate the site, send email, manage infrastructure, or support analytics and security. These providers are expected to handle information responsibly and only for the purposes we authorize.

We may also disclose information if we are required to do so by law, regulation, legal process, or a valid government request. In addition, we may share information if we believe disclosure is necessary to protect our rights, protect the security of our systems, investigate misuse, or prevent fraud or abuse.

If Intellinovus undergoes a business transaction such as a merger, acquisition, financing, or restructuring, information may be transferred as part of that process. If that happens, we will continue to handle personal data in a manner that is consistent with this policy or with a substantially similar standard of protection.

Because we serve clients across Hong Kong, APAC, and other regions, information may be processed or stored in more than one jurisdiction. That means data may move across borders depending on where our providers operate and where the relevant service is delivered.

When cross-border transfer is involved, we take a practical approach to protection. We look at the sensitivity of the data, the purpose of the transfer, and the safeguards available in the destination environment. Where appropriate, we rely on contractual commitments, access controls, and other reasonable measures designed to preserve confidentiality and integrity.

If you are using the site from outside Hong Kong, you understand that your information may be transferred to, stored in, or accessed from other countries where privacy laws may differ from those in your home jurisdiction.

We keep personal data only for as long as it is reasonably necessary for the purpose for which it was collected. That period can vary depending on the nature of the interaction, the legal obligations involved, and whether we still need the information to respond to a pending request or maintain an active relationship.

For example, a short inquiry may not need to be kept for as long as a client engagement record or a compliance-related file. When data is no longer needed, we will delete it, anonymize it, or otherwise handle it in a way that reduces the chance of unnecessary further use.

Retention is not an arbitrary exercise. It is a balancing act between operational usefulness, legal obligation, and privacy discipline. We aim to keep that balance conservative rather than expansive.

We use administrative, technical, and organizational safeguards intended to protect against unauthorized access, disclosure, alteration, and destruction. Those safeguards may include access controls, encryption where appropriate, logging, and internal review practices designed to reduce avoidable exposure.

No online system is perfectly secure. We cannot promise that unauthorized actors will never defeat safeguards, but we do work to reduce risk and to respond appropriately if something unusual occurs. If we become aware of a data incident that affects your information, we will handle the matter in a manner that is consistent with applicable law and the facts available at the time.

Security is treated as an ongoing discipline, not a one-time configuration. We prefer controls that are understandable, maintainable, and proportionate to the kind of data we actually handle.

Depending on where you live, you may have rights related to your personal data such as the right to access, correct, delete, or restrict certain uses of that information. You may also have the right to object to some processing or to withdraw consent where consent is the lawful basis for processing.

If you want to exercise a right, we may ask you to verify your identity so we can protect your information from being disclosed to the wrong person. That verification step is meant to be practical and proportionate, not obstructive.

If you believe the information we hold about you is inaccurate or no longer necessary, contact us and let us know what should be reviewed. We will make reasonable efforts to respond in a timely and respectful way.

When you share details about business operations, workflow challenges, or implementation goals, we may use that context to assess fit, prepare a response, or draft a proposal. In some cases, those details help us generate a more useful and specific reply than a generic sales response would provide.

We do not intend to use your information to train public models without a clear reason and appropriate safeguards. If a workflow ever involves AI tools, we prefer to limit what is shared, use the minimum necessary information, and avoid exposing sensitive or unnecessary personal data where possible.

If you submit highly confidential information, you should mark that clearly and tell us what level of handling you expect. We will do our best to respect those expectations and to keep the conversation scoped to the business purpose you intended.

Our website and services are intended for business users and professional audiences, not children. We do not knowingly collect personal information from children under the age required by applicable law without the necessary consent.

If you believe a child has provided us with personal information, please contact us so we can review the situation and take appropriate action.

We may update this Privacy Policy from time to time to reflect changes in law, service design, or our operational practices. If we make a material change, we will update the effective version on this page and may provide a more visible notice where appropriate.

Privacy expectations evolve, and so do the systems behind the site. We encourage you to check this page occasionally so you have the current version of the policy that applies to your use of the site.