Privacy Policy

Last Updated: 13 February, 2025

1. Introduction

The International Obesity Society ("IOS", "we", "us", or "our") is committed to protecting the privacy of individuals who interact with our website (the "Site"), attend our events, or engage with our services. This Privacy Policy outlines how we collect, use, store, and protect your personal data in compliance with Hong Kong’s Personal Data (Privacy) Ordinance (PDPO).

By using our Site or services, you consent to the practices described herein. If you disagree with any terms, please discontinue use immediately.

2. Data Controller

IOS, registered in Hong Kong, is the data controller responsible for your personal data.

3. Types of Personal Data Collected

We collect information necessary to fulfill our mission, including:

Identifiers: Name, professional title, email, phone number, and institutional affiliation.
Membership Details: Membership tier, payment records, and participation in events or research programs.
Technical Data: IP address, browser type, device information, and cookies (see Section 8).
Research Contributions: Data shared voluntarily through surveys, publications, or collaborative projects.

Sensitive data (e.g., health-related information) is collected only with explicit consent or as required for specific research activities, in line with PDPO safeguards.

4. Purposes of Data Processing

We use your data for:

Membership Management: Processing registrations, renewals, and access to exclusive resources.
Event Administration: Organizing congresses, workshops, and webinars.
Research Collaboration: Facilitating global obesity-related studies and data sharing with partner institutions.
Communications: Sending newsletters, policy updates, and marketing materials (opt-out available).
Legal Compliance: Meeting regulatory obligations under Hong Kong law.

5. Legal Basis for Processing

Consent: For direct marketing or sensitive data processing.
Contractual Necessity: To fulfill membership benefits or event registrations.
Legitimate Interests: Improving services, fraud prevention, and research advancements.

6. Data Sharing and Transfers

We may share data with:

Research Partners: Academic institutions or healthcare organizations under strict confidentiality agreements.
Service Providers: IT vendors, payment processors, and event organizers bound by data protection contracts.
Regulatory Authorities: As required by Hong Kong law or international collaborations.

International Transfers: Data transferred outside Hong Kong will adhere to PDPO requirements, such as contractual clauses or adequacy decisions.

7. Data Retention

We retain personal data only as long as necessary:

Membership records: 7 years post-termination.
Financial transactions: 7 years for audit purposes.
Research data: Anonymized or deleted after project completion, unless consent specifies otherwise.

8. Cookies and Tracking Technologies

We use cookies to:

Enhance Site functionality (e.g., login sessions).
Analyze traffic patterns via tools like Google Analytics (anonymous data only).
You may disable cookies via browser settings, though some features may be limited.

9. Your Rights Under PDPO

You have the right to:

Access: Request a copy of your data.
Correction: Update inaccurate information.
Erasure: Delete data no longer necessary.
Objection: Opt out of direct marketing or profiling.

10. Data Security

We implement technical and organizational measures, including:

Encryption for sensitive data transfers.
Restricted access to authorized personnel.
Regular security audits.

11. Policy Updates

We may revise this policy to reflect legal or operational changes. Updates will be posted on our Site with a revised "Last Updated" date. Continued use constitutes acceptance.

12. Contact Information

For inquiries, please contact us.

Appendix: Definitions

PDPO: Hong Kong’s Personal Data (Privacy) Ordinance.
Data Controller: The entity determining processing purposes (IOS).
Cookies: Small text files stored on your device.

Privacy Policy

Contact Us