Skip to content Skip to footer
0 items - $0.00 0

Privacy Policy

HomePrivacy Policy
Close

1. Introduction

Sapodo(HK)Limited (website url address: https://sapodo.hk) appreciates your business and trust. We are a Hong Kong incorporated company, focusing on providing non-pharmaceutical neurological treatment products and related services. Please read this Privacy Policy carefully; your consent to this document is required to use our services.

2. Data Collected

Data Storage Location

We are a Hong Kong incorporated company and operate web servers hosted in Hong Kong and Singapore. Our hosting provider adheres to the Personal Data (Privacy) Ordinance (PDPO) of Hong Kong, ensuring that your data is securely stored and compliant with relevant privacy regulations. For more information on our hosting provider’s privacy policy, please contact our customer service for details.

Registration Data

If you register on our website, we store your chosen username and your email address and any additional personal information added to your user profile (e.g., contact number, delivery address). You can see, edit, or delete your personal information at any time (except changing your username). Website administrators can also see and edit this information to assist with account-related inquiries.

Purchase Data

To receive product support (e.g., after-sales service for neurological treatment devices, health supplements), you need to provide valid purchase proof (e.g., order number, invoice number) for Sapodo products on our website. These purchase details will be stored together with support expiration dates and your user data. This is required for us to provide you with product downloads (e.g., user manuals), after-sales support, and other customer services.

Support Data

If you have registered on our website and have a valid support account, you can submit support tickets for assistance (e.g., product usage guidance, after-sales maintenance). Support form submissions are sent to our in-house customer service ticketing system. Only the data you explicitly provided (e.g., name, contact number, product issue description) is stored, and we will confirm your consent before processing each support ticket. Our ticketing system complies with Hong Kong PDPO to protect your personal data.

Comments

When you leave comments on the website we collect the data shown in the comments form (e.g., name, email, comment content), and also the IP address and browser user agent string to help spam detection. All comment data is only used to manage website interactions and will not be shared with third parties without your consent.

Contact Form

Information submitted through the contact form on our site (e.g., inquiry content, contact details) is sent to our company email, hosted by Zoho. Zoho adheres to international privacy standards and complies with Hong Kong PDPO; you can find more information about this here: Zoho Privacy Policy. These submissions are only kept for customer service purposes, and are never used for marketing purposes or shared with third parties.

Google Analytics

We use Google Analytics on our site for anonymous reporting of site usage (e.g., page views, user navigation paths). No personalized data (e.g., your name, email) is stored. If you would like to opt-out of Google Analytics monitoring your behavior on our website please use this link: Google Analytics Opt-out.

Cases for Using the Personal Data

We use your personal information in the following cases:
  • Verification/identification of the user during website usage (e.g., account login authentication);
  • Providing Technical Assistance (e.g., product usage guidance, after-sales maintenance support);
  • Sending updates to our users with important information (e.g., product safety notices, service adjustments);
  • Checking the accounts’ activity in order to prevent fraudulent transactions (e.g., unauthorized purchase attempts) and ensure the security of our customers’ personal information;
  • Customize the website to make your experience more personal and engaging (e.g., displaying product recommendations based on your purchase history);
  • Guarantee overall performance and administrative functions run smoothly (e.g., processing order deliveries, managing user accounts).

3. Embedded Content

Pages on this site may include embedded content (e.g., product demonstration videos hosted on YouTube, social media widgets). Embedded content from other websites behaves in the exact same way as if you visited the other website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website. Below you can find a list of the services we use:

Facebook

The Facebook page plugin is used to display our Facebook timeline on our site. Facebook has its own cookie and privacy policies over which we have no control. There is no installation of cookies from Facebook and your IP is not sent to a Facebook server until you consent to it. See their privacy policy here: Facebook Privacy Policy.

Instagram

We use the Instagram API to display our Instagram posts on our site. Instagram has its own cookie and privacy policies over which we have no control. Your IP is not sent to an Instagram server until you consent to it. See their privacy policy here: Instagram Privacy Policy.

YouTube

We use YouTube videos embedded on our site (e.g., product usage tutorials). YouTube has its own cookie and privacy policies over which we have no control. There is no installation of cookies from YouTube and your IP is not sent to a YouTube server until you consent to it. See their privacy policy here: YouTube Privacy Policy.

WhatsApp

We use the WhatsApp widget to facilitate direct contact with our customer service. WhatsApp has its own data protection policies over which we have no control. Your personal data will not be shared with WhatsApp unless you initiate a conversation through the widget. See their privacy policy here: WhatsApp Privacy Policy.

4. Cookies

This site uses cookies – small text files that are placed on your machine to help the site provide a better user experience. In general, cookies are used to retain user preferences (e.g., language settings), store information for things like shopping carts, and provide anonymised tracking data to third party applications like Google Analytics. Cookies generally exist to make your browsing experience better. However, you may prefer to disable cookies on this site and on others. The most effective way to do this is to disable cookies in your browser. We suggest consulting the help section of your browser.

Necessary Cookies (all site visitors)

  • cfduid: Is used for our CDN CloudFlare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. See more information on privacy here: CloudFlare Privacy Policy.
  • PHPSESSID: To identify your unique session on the website (e.g., maintaining your shopping cart status during browsing).

Necessary Cookies (Additional for Logged in Customers)

  • wp-auth: Used by WordPress to authenticate logged-in visitors, password authentication and user verification.
  • wordpress_logged_in_{hash}: Used by WordPress to authenticate logged-in visitors, password authentication and user verification.
  • wordpress_test_cookie: Used by WordPress to ensure cookies are working correctly.
  • wp-settings-[UID]: WordPress sets a few wp-settings-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface (e.g., displaying your order history).
  • wp-settings-[UID]-time: WordPress also sets a few wp-settings-{time}-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface.

5. Who Has Access To Your Data

If you are not a registered client for our site, there is no personal information we can retain or view regarding yourself (except for anonymised site usage data collected via Google Analytics). If you are a client with a registered account, your personal information can be accessed by:
  • Our system administrators (for account security and technical maintenance);
  • Our customer service team when they need to access client account information to provide support (e.g., processing order inquiries, resolving product issues).

6. Third Party Access to Your Data

We don’t share your data with third-parties in a way as to reveal any of your personal information (e.g., email, name, contact number). The only exceptions to that rule are for partners we have to share limited data with in order to provide the services you expect from us. Please see below:

Payment Service Providers

To process online payments for Sapodo products, we share limited transaction data (e.g., order amount, payment status) with our payment service providers (e.g., Stripe, PayPal). These providers adhere to Hong Kong PDPO and international payment security standards, and will not access or store your full personal information beyond what is necessary for payment processing.

Logistics Partners

If you purchase physical products (e.g., neurological devices, health supplements), we share your delivery address and contact number with our logistics partners (e.g., Hong Kong Post, SF Express) to complete order delivery. These partners are contractually obligated to protect your personal data and only use it for delivery purposes.

7. How Long We Retain Your Data For

When you submit a support ticket or a comment, its metadata is retained until (if) you tell us to remove it. We use this data so that we can recognize you and approve your comments automatically instead of holding them for moderation. If you register on our website, we also store the personal information you provide in your user profile. You can see, edit, or delete your personal information at any time (except changing your username). Website administrators can also see and edit that information.
For purchase data and transaction records, we retain them for 7 years in compliance with Hong Kong Inland Revenue Department regulations for tax and accounting purposes. After this period, the data will be anonymised (i.e., all personal identifiers will be removed) or securely deleted.

8. Security Measures

We use the SSL/HTTPS protocol throughout our site. This encrypts our user communications with the servers so that personally identifiable information is not captured/hijacked by third parties without authorization. We also implement regular security audits and data backup measures to protect your data from unauthorized access, loss, or alteration. In case of a data breach, system administrators will immediately take all needed steps to ensure system integrity, notify affected users in accordance with Hong Kong PDPO requirements, and attempt to reset passwords or take other protective measures if needed.

9. Your Data Rights

General Rights

If you have a registered account on this website or have left comments, you can request an exported file of the personal data we retain, including any additional data you have provided to us (e.g., purchase history, support tickets). You can also request that we erase any of the personal data we have stored, except for data we are obliged to keep for administrative, legal, or security purposes (e.g., transaction records required for tax compliance). If you wish to have all your data erased, we will no longer be able to offer any support or other product-related services to you (e.g., after-sales maintenance, order tracking).

Hong Kong PDPO Rights

Your privacy is critically important to us. Sapodo(HK)Limited complies with the Personal Data (Privacy) Ordinance (Cap 486) of Hong Kong. You have the right to:
  • Access your personal data held by us (subject to certain exemptions under PDPO);
  • Request correction of inaccurate or incomplete personal data;
  • Object to the use of your personal data for direct marketing purposes;
  • Lodge a complaint with the Office of the Privacy Commissioner for Personal Data (PCPD) if you believe your privacy rights have been violated.
For more details on Hong Kong PDPO, please visit the PCPD official website: https://www.pcpd.org.hk.

10. Third Party Websites

Sapodo(HK)Limited may post links to third party websites on this website (e.g., health information portals, logistics tracking pages). These third party websites are not screened for privacy or security compliance by Sapodo(HK)Limited, and you release us from any liability for the conduct of these third party websites. All social media sharing links (displayed as text links or social media icons) do not connect you to any of the associated third parties unless you explicitly click on them.
Please be aware that this Privacy Policy (and any amendments) does not create rights enforceable by third parties or require disclosure of any personal information relating to users of the Site. Sapodo(HK)Limited bears no responsibility for the information collected or used by any advertiser or third party website. Please review the privacy policy and terms of service for each site you visit through third party links.

11. Release of Your Data for Legal Purposes

At times it may become necessary or desirable to Sapodo(HK)Limited, for legal purposes, to release your information in response to a request from a Hong Kong government agency, law enforcement body, or a private litigant (pursuant to a court order or legal process). You agree that we may disclose your information to a third party where we believe, in good faith, that it is necessary to comply with applicable laws, respond to a court order, or protect our legal rights (e.g., investigating fraudulent activities related to our products/services).
In the event that we receive a legal request (e.g., subpoena) affecting your privacy, we may notify you to give you an opportunity to respond to the request, or we may challenge the request if we believe it is unlawful – however, we are not obligated to do either. We may also proactively report you, and release your information to third parties, where we believe that it is necessary for legal reasons (e.g., suspected fraud, violation of our Terms of Service). You release us from any damages that may arise from or relate to the release of your information in accordance with this clause, provided that such release complies with Hong Kong law.