Privacy and security

HSBC's Privacy Principles

Our business has been built on trust between our customers and ourselves. To preserve the confidentiality of all information you provide to us, we maintain the following

Privacy principles:

1. We only collect personal information that we believe to be relevant and required to understand your financial needs and to conduct our business.
2. We use your personal information to provide you with better customer services and products.
3. We may pass your personal information to other HSBC Group companies or agents, as permitted by law.
4. We will not disclose your personal information to any external organisation unless we have your consent or are required by law or have previously informed you.
5. We may be required from time to time to disclose your personal information to Governmental or judicial bodies or agencies or our regulators, but we will only do so under proper authority.
6. We aim to keep your personal information on our records accurate and up-to-date.
7. We maintain strict security systems designed to prevent unauthorised access to your personal information by anyone, including our staff.
8. All HSBC Group companies, all our staff and all third parties with permitted access to your information are specifically required to observe our confidentiality obligations.
9. By maintaining our commitment to these principles, we at HSBC will ensure that we respect the inherent trust that you place in us.
10. HSBC web pages may contain electronic images, known as web beacons or spotlight tags. These enable HSBC to count users who have visited certain pages on our website. Web beacons and spotlight tags are not used by us to access your personal information, they are simply a tool we use to analyse which web pages customers view, in an aggregated manner.

Security reminders

We maintain strict security standards and procedures to prevent unauthorized access to information about you. Outside of the normal Internet Banking login process, HSBC will never contact you and ask that you validate personal information such as customer ID, password, or account numbers. If you receive such a request, please notify us at +66 (0) 2614-4100.

Your privacy matters to us

This section provides specific details of how we treat any personal information you might wish to provide us when you visit this site.

Data security

• Security is our top priority. The Hongkong and Shanghai Banking Corporation Limited ('the Bank') will strive at all times to ensure that your personal data will be protected against unauthorised or accidental access, processing or erasure. We maintain this commitment to data security by implementing appropriate physical, electronic and managerial measures to safeguard and secure your personal data.
• The secure area of our website supports the use of Secure Socket Layer (SSL) protocol and 128-encryption technology- an industry standard for encryption over the Internet to protect data. When you provide sensitive information such as credit card details, it will be automatically converted into codes before being securely dispatched over the Internet.
• Our web servers are protected behind "firewalls" and our systems are monitored to prevent any unauthorised access. We will not send personal information to you by ordinary email. As the security of ordinary email cannot be guaranteed, you should only send email to us using the secure email facility on our website.
• All practical steps will be taken to ensure that personal data will not be kept longer than necessary and that the Bank will comply with all statutory and regulatory requirements in the Hong Kong Special Administrative Region concerning the retention of personally identifiable information.

Security assurance

• Both you and the Bank play an important role in protecting against online fraud. You should be careful that your bank account details including your User ID and/or Password are not compromised by ensuring that you do not knowingly or accidentally share, provide or facilitate unauthorised use of it. Do not share your User ID and/or Password or allow access or use of it/them by others. We endeavor to put in place high standards of security to protect your interests.
• You should safeguard your unique User ID and Password by keeping them secret and confidential. Never write them down or share their details with anyone. The Bank will never ask you for your Internet Banking Password, in order to ensure that you are the only person who knows this information. When choosing your unique Password and where relevant, your unique User ID for the first time, do not create it/them using easily identifiable information such as your birthday, telephone number or a recognisable part of your name. If you think your User ID and/or Password has/have been disclosed to a third party, is/are lost or stolen and unauthorised transactions may have been conducted, you are responsible to inform us immediately.
• While the Bank endeavor to employ industry standard practices, it is generally accepted that while browsing the Internet, your hardware, software, and data are vulnerable to being attacked or otherwise damaged by virus, Trojan horse, worm, or other unauthorised access, which may disable erase (other than as standard in the installation process), or otherwise harm your software, hardware, data, or to perform any other similar actions resulting in your system malfunction. Although said vulnerability may not be completely diminished, you should consider applying certain security measures to your personal computer, such measures to include installing virus protection softwares, employing physical access control and personal firewall for static Internet connection, in order to keep the risk at the minimal.

Collection of personal information

Use of "cookies" Your visit to this site may be recorded for analysis on the number of visitors to the site and general usage patterns. Some of this information will be gathered through the use of "cookies". Cookies are small bits of information that are automatically stored on a person's web browser in their computer that can be retrieved by this site. Should you wish to disable these cookies you may do so by changing the setting on your browser. However, you will be unable to enter certain part(s) of our website, including online@hsbc.

Marketing Promotions Occasionally we may collect personal information from visitors to this site and those individuals that participate in a contest or promotion (online or over the telephone, or at one of our branches). Such information is only collected from individuals who voluntarily provide us with their personal information. We may use this information to advise them of products, services and other marketing materials, which we think, may be of interest to them. We may also invite visitors to this site to participate in market research and surveys and other similar activities.

Our Information Collection Statement

The Statement is intended to notify you why personal data is collected, how it will be used and to whom data access requests are to be addressed.

1. Why we collect your data - we collect your personal information to carry out and administer our services to you and in an effort to improve your customer experience. Without such data the Bank may be unable to open or continue accounts or establish or     continue banking facilities or provide banking services.
2. Data is also collected from customers in the ordinary course of business to continue the banking relationship, for example, when customers write cheques or deposit money.
3. How your data may be used - Data relating to a customer may be used to:

1. facilitate the daily operation of the services and credit facilities provided to customers;
2. conduct credit checks;
3. assist other financial institutions to conduct credit checks and collect debts;
4. ensure ongoing credit worthiness of customers;
5. design financial services or related products for customers' use;
6. market financial services or related products of the Bank and other third parties;
7. determine the amount of indebtedness owed to or by customers;
8. collect amounts of outstanding from customers and those providing security for customers' obligations;
9. meet the disclosure requirements of any law binding on the Bank or any of its branches;
10. enable an actual or proposed assignee of the Bank, or participant or sub-participant of the Bank's rights in respect of the customer to evaluate the transaction  intended to be the subject of the assignment, participation or sub-participation; and
11. to fulfill any other purposes relating theret

4. Disclosure of your personal information - Information held by the Bank relating to a customer will be kept confidential but the Bank may provide such information to the following parties for the purposes set out in paragraph (c):
   1. any agent, contractor or third party service provider who provides administrative, telecommunications,computer, payment or securities clearing or other  services to the Bank in connection with the operation of its business;
   2. any other person under a duty of confidentiality to the Bank including a group company of the Bank which has undertaken to keep such information confidential;
   3. the drawee bank providing a copy of a paid cheque (which may contain information about the payee) to the drawer;
   4. credit reference agencies, and, in the event of default, to debt collection agencies;
   5. any person to whom the Bank is under an obligation to make disclosure under the requirements of any law binding on the Bank or any of its branches including, without any limitation, any bureaus or agencies established under Thai law or to be established by the Bank of Thailand or by other government or regulatory authority (which include, without limitation, Thai Credit Bureaus); and
   6. Any actual or proposed assignee of the Bank or participant or sub-participant or transferee of the Bank's rights  in respect of the customer.
5. Data access requests - A customer has the right:
   1. to check whether the Bank holds data about them and of access to such data;
   2. to require the Bank to correct any data relating to them which is inaccurate;
   3. to ascertain the Bank's policies and practices in relation to data and to be informed of the kind of personal data held by the Bank; and
6. The Bank reserves the right to charge a reasonable fee for the processing of any data access request.

Contact us

Requests for access to data or correction of data or for information regarding policies and practices and kinds of data held should be addressed to:

IMPORTANT: By accessing this website and any of its pages you are agreeing to the terms set out above.

Thank you for choosing HSBC.