spondTech - IT Solutions And Services HTML5 Template

Privacy Policy


Privacy Policy

Last Reviewed: 24/03/2025  

This Privacy Notice explains how Crimson Technology Ltd (“Crimson”, “we”, “our”, or “us”) collects, uses, discloses, and protects personal information, and the rights individuals have in relation to their personal information.

1. Who is Crimson?

Crimson is a provider of technology services, integration solutions, and professional services to enterprise customers.

To operate our business, Crimson may collect and process limited personal information relating to:

  • Our employees and contractors
  • Business contacts of customers, suppliers, and partners
  • Website visitors and individuals who communicate with us

Crimson is committed to handling personal information in a transparent, reasonable, and secure manner, and in compliance with applicable data protection laws and regulations, including where applicable the Personal Information Protection Law (PIPL) of the People’s Republic of China, and other international privacy frameworks.

2. Is Crimson Your Data Controller?

A Data Controller is an organisation that determines why and how personal information is processed.

Crimson acts as Data Controller only in limited circumstances, such as when processing personal information relating to:

  • Crimson employees and contractors
  • Business contact information for customer, supplier, or partner representatives
  • Individuals who communicate with us directly or engage with our website

Crimson does not store or operate customer personal data as a system of record. Where Crimson interacts with customer data in the course of delivering services, this is done under customer instruction and within customer‑controlled environments.

Your organisation remains the Data Controller for any personal data relating to your employees, customers, or end users.

3. What Is Personal Information?

“Personal information” refers to any information relating to an identified or identifiable individual.

This may include information such as a name, contact details, job title, or technical identifiers. Certain types of information may be considered sensitive personal information (for example, health or biometric data) and require enhanced protection under applicable laws.

Crimson does not intentionally collect or process sensitive personal information unless required by law or contract.

4. The Personal Information We Collect

Crimson may collect and process the following categories of personal information, where relevant:

  • Identity Information – name, title, company, role
  • Contact Information – business email address, business phone number
  • Technical Information – IP address, browser type, device information, access logs
  • Usage Information – website usage, interaction logs
  • Communication Information – emails or other correspondence sent to or from Crimson

For employees and contractors, additional information may be processed for employment and legal purposes.

Crimson does not collect or retain customer application data on its own systems unless explicitly agreed.

5. How We Use Personal Information

Crimson uses personal information for purposes such as:

  • Providing and managing services
  • Managing business relationships
  • Responding to enquiries and communications
  • Managing employment and contractual relationships
  • Ensuring security and preventing misuse
  • Complying with legal and regulatory obligations

Where required by applicable law, processing is based on:

  • Contractual necessity
  • Legitimate business interests
  • Legal obligations
  • Individual consent (where applicable)

6. Sharing of Personal Information

Crimson does not sell personal information.

Personal information may be shared only where necessary:

  • With trusted service providers supporting business operations
  • With customers, where required to deliver contracted services
  • Where required by law or regulatory authorities

Where information is shared, appropriate confidentiality and security safeguards are applied.

7. Cross‑Border Data Transfers

Crimson operates internationally and may transfer personal information across borders as part of normal business operations.

Where cross‑border transfers occur, Crimson ensures appropriate safeguards are in place, such as:

  • Contractual protections
  • Security measures aligned with applicable regulations

8. Information Security

Crimson implements appropriate technical and organisational measures to protect personal information against unauthorised access, disclosure, alteration, or loss.

Access to personal information is restricted to authorised individuals on a need‑to‑know basis.

9. Data Retention

Crimson retains personal information only for as long as necessary to fulfil the purposes outlined in this Privacy Notice, or to comply with legal and contractual requirements.

When personal information is no longer required, it is securely deleted or anonymised.

10. Your Rights

Subject to applicable laws, individuals may have rights to:

  • Access their personal information
  • Request correction or update of inaccurate data
  • Request deletion where legally permitted
  • Restrict or object to certain processing activities
  • Withdraw consent, where consent is the legal basis

Requests may be subject to verification and legal limitations.

11. How to Contact Us

If you have questions or concerns about how Crimson handles personal information, or wish to exercise your rights, please contact us:

Email: info@crimsondynamics.cn (or your preferred inbox)

Crimson will respond in accordance with applicable data protection laws.

12. Updates to This Privacy Notice

This Privacy Notice may be updated from time to time to reflect changes in legal requirements, business practices, or operations. The latest version will always be published on our website.