Our customer data protection policy

How Access to China collects, uses, stores, and protects customer data.

This policy is designed for clarity and practicality, aligned with UK data protection expectations.

Audience: customers + partners Scope: enquiries + services Last modified: v1.0 – 04 February 2026

Summary

This policy explains what personal data we may collect, why we collect it, how we protect it, and the choices you have.

We aim to collect the minimum data needed to deliver the service you requested and to run our business securely.

Practical takeaway: If you only want general information, you can contact us without sharing sensitive personal details.

Who we are

Website: accesstochina.com

Organisation: Access to China

Contact: This email address is being protected from spambots. You need JavaScript enabled to view it.

If you contact us through a form, email, or phone, you are sharing information so we can respond and (where requested) provide services.

What data we collect

Contact data: name, company name, email address, phone number.
Enquiry data: the content of messages you send us, attachments, and any project details you choose to share.
Service data: information required to deliver contracted work (for example: website URLs, hosting details, DNS details, platform accounts, and technical requirements).
Billing data: invoicing details and payment references (we do not aim to store full payment card details).
Website usage data (limited): technical logs that help operate and secure the website (for example: IP address, user agent, pages requested, error logs).

Practical takeaway: Please do not send passwords by email. If credentials are needed, we will agree a safer method.

How we use your data

To respond to enquiries and provide requested information.
To deliver and support services you have requested or purchased.
To manage billing, accounts, and customer support.
To maintain website reliability and security (fraud prevention, malware detection, troubleshooting).
To improve our documentation and service quality (using aggregated learning, not public disclosure of your details).

Lawful basis

Depending on the context, our lawful basis may include:

Contract: where we are providing services you have purchased.
Legitimate interests: responding to enquiries, running our business securely, and improving services.
Legal obligation: recordkeeping for tax/accounting where required.
Consent: where you explicitly opt-in (for example, certain marketing communications).

Data sharing and third parties

We may share data with trusted providers only when needed to deliver services or operate securely. This can include:

Hosting / infrastructure providers, DNS providers, and email providers.
Payment / invoicing providers for billing administration.
Security providers (for example, malware scanning or monitoring tools).

We do not sell customer data.

Practical takeaway: If your work involves China services, we will flag where data may pass through or be processed by China-based providers.

International transfers

Some technical services may process data outside the UK. Where relevant, we aim to minimise personal data in these systems and use appropriate safeguards.

If you are requesting work specifically involving China infrastructure (for example, ICP/hosting/China platforms), some project data may be handled by China-based providers as part of delivering the service.

Retention

We keep customer data only as long as necessary for the purpose it was collected for, including legal and accounting requirements.

Enquiries: typically retained for a reasonable period to manage follow-up and continuity.
Contracts and invoices: retained to meet accounting and legal obligations.
Operational logs: retained for security and troubleshooting for limited periods.

Security

We use practical security controls appropriate to the type of data handled, such as access control, least-privilege administration, backups, and monitoring.

No online system can be guaranteed 100% secure; however, we take security seriously and act promptly on suspected incidents.

Practical takeaway: If you believe your data may have been shared in error, contact us immediately at This email address is being protected from spambots. You need JavaScript enabled to view it..

Your rights

Depending on your location and applicable law, you may have rights including:

Access to the personal data we hold about you.
Correction of inaccurate data.
Deletion of data (where we have no ongoing lawful basis to retain it).
Restriction or objection to certain processing.
Data portability (in certain circumstances).

Contact and complaints

If you have a question or request about your data, contact: This email address is being protected from spambots. You need JavaScript enabled to view it.

If you are not satisfied with our response, you may have the right to raise a complaint with the relevant supervisory authority (for example, the UK Information Commissioner’s Office).

Use this checklist when sharing information for a project.

Quick checklist

Use these checks to keep trust and usability high.

Share only what’s needed to answer your question or deliver the service.
Avoid sending passwords by email; agree a safer method if credentials are required.
If sharing technical access, use time-limited accounts and least privilege where possible.
Let us know if any data is sensitive (personal IDs, bank details, private customer lists).
If your project involves China providers, ask us to minimise personal data in transfers.

Note: “Looking Chinese” is not the goal. Trust comes from consistency, authenticity, and a smooth mobile experience.

Need help?

If you have questions about this policy or how your data is handled, contact This email address is being protected from spambots. You need JavaScript enabled to view it..