Builderson Group | Technology Consulting & Software Development

1. Introduction

Builderson Group Limited ("Builderson Group," "we," "us," or "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website at www.buildersongroup.com (the "Website") or engage with our services.

This Privacy Policy applies to all visitors, users, and others who access or use the Website. By accessing or using the Website, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

If you do not agree with the terms of this Privacy Policy, please do not access or use the Website.

2. Data Controller Information

Builderson Group Limited is the data controller responsible for your personal information.

Company Registration Details:

Legal Name: Builderson Group Limited
Certificate Number: 75210862-000-04-25-1
Registered Office: Flat/Rm B, 8 Fuk Wa Street, Sham Shui Po, KL, 1/F, Hong Kong
Business Office: Room 2702, Convention and Exhibition Plaza, Office Building, 1 Harbour Road, Wan Chai, Hong Kong

Contact Information for Privacy Inquiries:

Email: info@buildersongroup.com
Postal Address: Room 2702, Convention and Exhibition Plaza, Office Building, 1 Harbour Road, Wan Chai, Hong Kong

3. Information We Collect

We collect and process the following categories of personal information:

3.1 Information You Provide Directly

Contact Form Submissions:

Full name
Email address
Company name and job title
Telephone number
Country/region
Message content and inquiry details

Case Study Downloads:

Full name
Email address
Company name and job title
Industry sector

Career Applications:

Full name
Email address and telephone number
Resume/CV (including employment history, education, skills, and qualifications)
Cover letter and application materials
Professional references (if provided)
Work authorization status
Any other information you choose to provide in your application

3.2 Information Collected Automatically

Technical Information:

IP address
Browser type and version
Operating system
Device type (desktop, mobile, tablet)
Screen resolution
Time zone setting and location data (city/country level)
Referring website and pages visited

Usage Information:

Pages viewed on our Website
Time spent on pages
Navigation paths through the Website
Links clicked
Scrolling behavior and interaction patterns
Session duration and frequency of visits
Search queries entered on the Website

Cookie and Tracking Technologies: We use cookies, web beacons, and similar tracking technologies to collect information about your browsing activities. Please see Section 12 (Cookie Policy) for detailed information.

4. How We Collect Information

4.1 Direct Collection

Contact forms submitted through the Website
Case study download requests
Career application submissions
Email correspondence with our team

4.2 Automated Collection

Google Analytics (GA4): We use Google Analytics to collect anonymized and aggregated data about Website usage, traffic patterns, and user behavior
Heatmap and Session Recording Tools: We use heatmap and session recording technologies to understand how visitors interact with our Website, including mouse movements, clicks, and scrolling behavior. These recordings are anonymized and do not capture sensitive information entered into forms.

4.3 Third-Party Sources

We do not currently purchase or acquire personal information from third-party data brokers or vendors.

5. Legal Basis for Processing

We process your personal information based on the following legal grounds, as applicable under Hong Kong Personal Data (Privacy) Ordinance (PDPO), the European Union General Data Protection Regulation (GDPR), and UK GDPR:

5.1 Consent

When you submit a contact form, download case studies, or apply for positions, you provide explicit consent for us to process your information for the stated purposes.

5.2 Legitimate Interests

We process certain information based on our legitimate business interests, including:

Operating, maintaining, and improving our Website
Analyzing Website usage and performance
Understanding visitor behavior to enhance user experience
Protecting against fraud, security threats, and abuse
Conducting business development and marketing analysis

5.3 Contractual Necessity

When you engage with us for services, we process information necessary to:

Evaluate potential client engagements
Respond to service inquiries
Assess candidate suitability for employment

5.4 Legal Obligations

We may process information to comply with legal obligations, including:

Tax and accounting requirements
Regulatory compliance
Legal proceedings and governmental requests

6. How We Use Your Information

6.1 Primary Purposes

Service Delivery and Communication:

Responding to inquiries submitted through contact forms
Providing requested case studies and resources
Evaluating and processing career applications
Communicating about potential projects and engagements
Delivering information about our services

Website Operations and Improvement:

Operating, maintaining, and securing the Website
Analyzing usage patterns and trends
Improving Website functionality, navigation, and content
Optimizing user experience across devices
Conducting A/B testing and user experience research

Recruitment and Human Resources:

Evaluating candidate qualifications and fit
Conducting interview processes
Maintaining a talent pipeline for future opportunities (with consent)
Complying with employment law requirements

6.2 Analytics and Business Intelligence

We analyze aggregated and anonymized data to:

Understand visitor demographics and interests
Identify popular content and resources
Measure marketing campaign effectiveness
Inform business strategy and service development
Benchmark Website performance

6.3 Security and Compliance

We process information to:

Detect, prevent, and respond to security incidents
Protect against fraudulent, unauthorized, or illegal activity
Enforce our terms of service and policies
Comply with applicable laws and regulations
Respond to legal requests and proceedings

7. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share your information in the following limited circumstances:

7.1 Service Providers and Business Partners

We engage carefully vetted third-party service providers to perform functions on our behalf, including:

Website Infrastructure and Hosting:

Cloud hosting providers (AWS, Microsoft Azure, Google Cloud Platform)
Content delivery networks (CDNs)
Website hosting services located in Germany

Analytics and Performance:

Google Analytics (Google LLC)
Heatmap and session recording service providers
Website performance monitoring tools

Communication Services:

Email delivery services
Customer relationship management (CRM) systems

These service providers are contractually obligated to process personal information only for specified purposes, implement appropriate security measures, comply with applicable data protection laws, not use your information for their own purposes, and maintain confidentiality.

7.2 Legal Requirements and Protection of Rights

We may disclose your information when we believe in good faith that disclosure is necessary to comply with applicable laws, regulations, or legal processes; respond to lawful requests from public authorities; enforce our Terms of Service and other agreements; protect the rights, property, or safety of Builderson Group, our clients, or others; or detect, prevent, or address fraud, security, or technical issues.

7.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your personal information may be transferred to the successor entity. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

7.4 Aggregated and Anonymized Information

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you, including statistical analysis of Website traffic and usage patterns, industry benchmarking data, and general demographic information about our audience.

8. International Data Transfers

8.1 Cross-Border Data Flows

Builderson Group Limited is headquartered in Hong Kong. Our Website is hosted in Germany, and we use service providers located in various jurisdictions, including the United States and European Economic Area (EEA).

When you provide personal information through our Website, that information may be transferred to, stored in, and processed in countries other than your country of residence, including Germany (Website hosting and data storage), United States (certain cloud services and analytics providers), and Hong Kong (our headquarters and operational systems).

8.2 Safeguards for International Transfers

We implement appropriate safeguards to ensure your personal information remains protected when transferred internationally:

Standard Contractual Clauses (SCCs):

For transfers of personal information from the EEA or UK to countries without an adequacy decision from the European Commission, we use Standard Contractual Clauses approved by the European Commission. These are legally binding contractual terms that require recipients to protect personal information according to European standards.

Adequacy Decisions:

Where available, we rely on adequacy decisions issued by the European Commission or UK Information Commissioner's Office (ICO) that recognize certain countries as providing adequate data protection.

Additional Security Measures:

Encryption of data in transit and at rest
Access controls and authentication mechanisms
Regular security assessments of our service providers
Incident response and breach notification procedures

8.3 Your Rights Regarding International Transfers

You have the right to request information about the safeguards we use for international transfers, obtain a copy of the Standard Contractual Clauses we have in place, and object to transfers that are not adequately protected.

9. Data Security

9.1 Security Measures

We implement industry-leading technical, administrative, and physical security measures to protect your personal information against unauthorized access, disclosure, alteration, and destruction:

Technical Safeguards:

Encryption of data in transit using TLS/SSL protocols
Encryption of data at rest using industry-standard algorithms
Secure authentication and access control mechanisms
Regular security patching and updates
Intrusion detection and prevention systems
Secure backup and disaster recovery procedures
Network segmentation and firewall protection

Organizational Safeguards:

ISO 27001 Information Security Management System certification
SOC 2 Type II compliance for service providers
Regular security awareness training for employees
Confidentiality agreements with all personnel
Strict access controls based on need-to-know principles
Incident response and data breach procedures
Regular security audits and assessments

Physical Safeguards:

Secure data center facilities with restricted access
24/7 monitoring and surveillance
Environmental controls (fire suppression, climate control)
Physical access logging and monitoring

9.2 Limitations

While we implement robust security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your personal information. You are responsible for maintaining the confidentiality of any passwords or credentials you use to access secure areas of the Website.

9.3 Security Incident Response

In the event of a data breach affecting your personal information, we will investigate the incident promptly, take immediate steps to contain and remediate the breach, notify affected individuals as required by applicable law, report the breach to relevant supervisory authorities where required, and cooperate with law enforcement and regulatory investigations.

10. Data Retention

10.1 Retention Periods

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements.

Data Type	Retention Period
General Inquiries and Contact Forms	2 years from date of inquiry
Case Study Downloads	2 years from date of download
Career Applications (Successful)	7 years following end of employment
Career Applications (Unsuccessful)	1 year from application date
Talent Pool (with consent)	Up to 3 years with annual consent renewal
Website Analytics Data	26 months (anonymized after 14 months)
Legal and Contractual Records	7 years from contract completion
Security and Audit Logs	2 years

10.2 Deletion and Anonymization

At the end of the applicable retention period, we will securely delete personal information using industry-standard methods, anonymize information so it can no longer be associated with an identified individual, and retain only aggregated, anonymized statistical data where appropriate.

10.3 Your Right to Request Deletion

You may request deletion of your personal information at any time, subject to our legal obligations to retain certain information. Please see Section 11 (Your Rights) for more information.

11. Your Rights

11.1 Rights Under Hong Kong PDPO

Under the Hong Kong Personal Data (Privacy) Ordinance, you have the right to:

Access: Request access to the personal data we hold about you and obtain a copy of such data.
Correction: Request correction of inaccurate or incomplete personal data.
Data Portability: Request your personal data in a structured, commonly used format (where technically feasible).

11.2 Additional Rights Under GDPR and UK GDPR

If you are located in the European Economic Area (EEA) or United Kingdom, you have additional rights:

Right to Erasure ("Right to be Forgotten")

You may request deletion of your personal data where it is no longer necessary for the purposes it was collected, you withdraw consent and there is no other legal basis, you object to processing based on legitimate interests, the data has been unlawfully processed, or deletion is required for compliance with a legal obligation.

Right to Restriction of Processing

You may request that we restrict processing of your personal data where you contest the accuracy of the data, processing is unlawful but you prefer restriction to deletion, we no longer need the data but you need it for legal claims, or you have objected to processing pending verification.

Right to Object

You have the right to object to processing based on legitimate interests or for direct marketing purposes. We will cease processing unless we demonstrate compelling legitimate grounds that override your interests.

Right to Data Portability

You may request your personal data in a structured, machine-readable format and have it transmitted to another controller where technically feasible.

Right to Withdraw Consent

Where processing is based on consent, you may withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing prior to withdrawal.

11.3 Exercising Your Rights

To exercise any of these rights, please contact us at:

Email: info@buildersongroup.com
Postal Address: Room 2702, Convention and Exhibition Plaza, Office Building, 1 Harbour Road, Wan Chai, Hong Kong

Response Timeline: Hong Kong PDPO - We will respond within 40 days of receiving your request. GDPR/UK GDPR - We will respond within one month, extendable by two additional months for complex requests.

11.4 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority:

Hong Kong

Office of the Privacy Commissioner for Personal Data (PCPD) - www.pcpd.org.hk - Complaint Hotline: +852 2827 2827

United Kingdom

Information Commissioner's Office (ICO) - www.ico.org.uk - Helpline: +44 303 123 1113

12. Cookie Policy

12.1 What Are Cookies

Cookies are small text files placed on your device (computer, smartphone, tablet) when you visit a website. They are widely used to make websites work efficiently, provide information to website owners, and enhance user experience.

12.2 Types of Cookies We Use

Strictly Necessary Cookies:

These cookies are essential for the Website to function properly. They enable core functionality such as security, network management, and accessibility. You cannot opt-out of these cookies as the Website will not function properly without them.

Examples: Session management cookies, Security and authentication cookies, Load balancing cookies

Analytics and Performance Cookies:

These cookies help us understand how visitors interact with the Website by collecting and reporting information anonymously. They help us improve Website performance and user experience.

Examples: Google Analytics cookies (GA4), Heatmap and session recording cookies, Page load time measurement cookies

12.3 Cookie Duration

Session Cookies: These temporary cookies are deleted when you close your browser.
Persistent Cookies: These cookies remain on your device for a specified period or until you manually delete them. Our analytics cookies typically remain for up to 26 months.

12.4 Managing Cookies

You can control cookies through your browser settings:

Google Chrome: Settings > Privacy and Security > Cookies and other site data
Mozilla Firefox: Options > Privacy & Security > Cookies and Site Data
Safari: Preferences > Privacy > Cookies and website data
Microsoft Edge: Settings > Privacy, search, and services > Cookies and site data

Please note that disabling cookies may affect Website functionality and your user experience. Google Analytics Opt-Out: https://tools.google.com/dlpage/gaoptout

13. Third-Party Links and Services

13.1 External Links

Our Website may contain links to third-party websites, applications, or services that are not operated or controlled by Builderson Group. These may include social media platforms, technology vendor websites, industry association sites, partner organizations, and case study client websites (where publicly identified).

13.2 No Responsibility for Third-Party Practices

We are not responsible for the privacy practices, content, or security of any third-party websites or services. This Privacy Policy applies only to information collected through our Website. Third-party websites have their own privacy policies and terms of service. We strongly encourage you to review the privacy policies of any third-party websites you visit.

13.3 No Endorsement

The inclusion of links to third-party websites does not imply endorsement, sponsorship, or recommendation by Builderson Group of those websites or their content, products, or services.

14. Children's Privacy

14.1 Age Restriction

Our Website and services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18 years of age.

14.2 Parental Notice

If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us immediately at info@buildersongroup.com. We will take prompt steps to delete such information from our systems.

14.3 Career Applications

For career applications, we only accept applications from individuals who are legally able to work and meet applicable age requirements in their jurisdiction.

15. Changes to This Privacy Policy

15.1 Policy Updates

We reserve the right to modify this Privacy Policy at any time to reflect changes in our data practices, new legal or regulatory requirements, technological developments, best practice evolution, and business model changes.

15.2 Notification of Changes

When we make changes to this Privacy Policy, the "Last Updated" date at the top of this page will be revised. For material changes that significantly affect your rights, we will provide prominent notice on our Website or via email (where we have your contact information). Continued use of the Website following notice of changes constitutes acceptance of the updated Privacy Policy.

15.3 Material Changes

Material changes include expanding the types of personal information we collect, using personal information for new purposes not previously disclosed, sharing information with new categories of third parties, and reducing your rights or protections.

15.4 Historical Versions

We maintain an archive of previous versions of this Privacy Policy. If you would like to review a previous version, please contact us at info@buildersongroup.com.

16. Contact Information and Complaints

16.1 Privacy Inquiries

Builderson Group Limited

Email: info@buildersongroup.com
Postal Address: Room 2702, Convention and Exhibition Plaza, Office Building, 1 Harbour Road, Wan Chai, Hong Kong
Attention: Privacy Officer

16.2 Response Timeline

We are committed to addressing your privacy concerns promptly. Initial acknowledgment within 3 business days, substantive response within 30 days (or as required by applicable law).

16.3 Complaints Process

If you have a complaint about our handling of your personal information:

Contact Us First: Please contact us using the details above. We will investigate and respond to your complaint.
Escalation: If you are not satisfied with our response, you may escalate your complaint to your local Data Protection Authority.
Right to Legal Remedy: You have the right to bring legal proceedings in relation to our processing of your personal information.

16.4 Business Hours

Our privacy inquiry team operates Monday to Friday, 9:00 AM to 6:00 PM Hong Kong Time (GMT+8), excluding Hong Kong public holidays.

17. Interpretation and Definitions

17.1 Definitions

"Personal Information" or "Personal Data" means any information relating to an identified or identifiable natural person, including but not limited to name, email address, telephone number, IP address, and usage data.

"Processing" means any operation performed on personal data, including collection, recording, storage, use, disclosure, transmission, deletion, or destruction.

"Data Controller" means the entity that determines the purposes and means of processing personal data.

"Data Processor" means an entity that processes personal data on behalf of the data controller.

"EEA" means the European Economic Area, comprising EU member states plus Iceland, Liechtenstein, and Norway.

"GDPR" means Regulation (EU) 2016/679 of the European Parliament and of the Council (General Data Protection Regulation).

"UK GDPR" means the GDPR as retained in UK law following Brexit.

"PDPO" means the Personal Data (Privacy) Ordinance (Cap. 486) of Hong Kong.

17.2 Language

This Privacy Policy is written in English. In the event of any conflict between the English version and translations in other languages, the English version shall prevail.

17.3 Severability

If any provision of this Privacy Policy is found to be invalid, illegal, or unenforceable, the remaining provisions shall continue in full force and effect.

18. Acknowledgment and Consent

By using our Website, you acknowledge that:

You have read and understood this Privacy Policy
You consent to the collection, use, and disclosure of your personal information as described herein
You understand your rights regarding your personal information
You agree to the transfer of your information to Hong Kong and other jurisdictions as described
You understand that you may withdraw consent at any time, subject to legal and contractual restrictions

For European and UK visitors: Your use of this Website is conditional upon your acceptance of our use of cookies and tracking technologies as described in Section 12. You can manage your cookie preferences through our cookie consent banner or browser settings.

Last Reviewed: December 11, 2025

Builderson Group Limited

Room 2702, Convention and Exhibition Plaza, Office Building

1 Harbour Road, Wan Chai, Hong Kong

Email: info@buildersongroup.com