Last Updated: November 19, 2025
1. Introduction
NextPath Solutions Limited (“NextPath”, “the Company”, “we”, “our”, “us”) is committed to protecting the privacy of clients, partners, HR professionals, vendors, and visitors to our website.
This Privacy Policy explains how we collect, use, store, disclose, and safeguard personal data in accordance with:
• Hong Kong Personal Data (Privacy) Ordinance (PDPO)
• General Data Protection Regulation (GDPR – basic compatibility)
• Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA – basic compatibility)
By using our website or submitting information to us, you agree to the practices described in this policy.
2. Personal Data We Collect
We may collect the following categories of personal data:
• Name, job title, company name
• Email address, phone number, and other contact details
• Information submitted through our online forms (HR Network, vendor cooperation, consultation request)
• Information voluntarily provided during HR or HRIS consultation sessions
• Website usage data such as IP address, browser type, device information, cookies, and analytics
• Uploaded documents (if provided voluntarily)
We do not collect sensitive personal data unless voluntarily submitted for consultation purposes.
3. How We Use Personal Data
We collect and process personal data for the following purposes:
• To provide HR consulting, HRIS advisory, and related professional services
• To respond to enquiries and arrange online consultation meetings
• To assess HRIS vendor partnerships or freelance HR applications
• To improve user experience and website functionality
• To communicate service updates, news, or business information (with consent)
• To comply with legal, regulatory, and operational requirements
We will not use personal data for purposes unrelated to the original intent without obtaining consent.
4. Legal Basis for Processing (GDPR Compatibility)
Where applicable, we rely on one or more of the following legal bases:
• Consent – when users voluntarily submit data
• Contractual necessity – to deliver our consulting services
• Legitimate interest – for business operations and website functionality
• Legal obligation – when compliance with law is required
5. Data Storage and Security
We store personal data securely using restricted access, encrypted systems, and industry-standard safeguards.
Only authorised personnel within NextPath can access personal data.
We do not:
• sell personal data
• rent or trade personal data
• disclose data to unrelated third parties for marketing
6. Sharing of Personal Data
We may share personal data only under these conditions:
With User Consent
• When introducing a client to an HRIS vendor
• When involving HR freelancers or partners to fulfil a requested service
For Service Operations
We may share information with trusted third-party providers such as:
• Website hosting
• Google services (Forms, Analytics, YouTube)
• IT or technical support tools
These third parties are required to follow confidentiality and data protection standards.
Legal Requirements
We may disclose data if required by courts, government authorities, or legal obligations.
7. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes described above or to comply with legal and operational requirements.
Upon request, we will delete or anonymise personal data unless retention is legally required.
8. Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies.
These may include:
• Google Analytics (GA4) – to analyse website traffic
• Google Forms – may set cookies when forms are embedded or submitted
• YouTube embedded videos – may set cookies even before playback
• WordPress / theme cookies – for functionality and performance
Users may manage or disable cookies through browser settings, but doing so may affect some website features.
9. International Data Transfers
As the Company operates from Hong Kong and certain systems may be hosted internationally:
• Personal data may be transferred to or accessed from servers outside Hong Kong
• We ensure such transfers are protected by appropriate safeguards (encryption, access controls)
10. Your Rights
Depending on your jurisdiction, you may have the right to:
• request access to your personal data
• request correction or deletion
• withdraw consent at any time
• request a copy of your data (where applicable)
• enquire about our data handling practices
Requests can be made via:
📧 info@nextpath.hk
We will respond within a reasonable timeframe.
11. Third-Party Links
Our website may include links to external websites.
We are not responsible for their content or privacy practices. Users should review the privacy policies of such websites independently.
12. Updates to This Privacy Policy
We may update this Privacy Policy from time to time to reflect legal, operational, or business changes.
The latest version will always be available on this page.
13. Contact Us
If you have any questions about this Privacy Policy or how we handle personal data, please contact:
📧 info@nextpath.hk
NextPath Solutions Limited
Hong Kong