top of page
WhatsApp Image 2025-09-04 at 6,27,38 PM-Picsart-BackgroundRemover_edited.png

Privacy Policy

Privacy Policy Sharp Peak Consulting Limited (also operating as Power Workplace)

Last updated: 2026-3-16

Sharp Peak Consulting Limited (“we”, “us”, “our”) is committed to protecting the privacy and personal data of our website visitors, clients, partners, employees, and all individuals whose data we may handle. We comply fully with the Personal Data (Privacy) Ordinance (Cap. 486) (PDPO) of Hong Kong and adopt privacy-by-design principles in our IoT smart building solutions.

This Privacy Policy explains how we collect, use, disclose, store, and protect personal data.

1. Types of Personal Data We Collect We collect personal data in these main ways:

a. Website & Marketing

  • Name, email address, phone number, company name, job title (via contact forms, newsletter sign-ups, demo requests).

  • IP address, browser type, pages visited, time/date of access (via cookies/analytics tools — mostly anonymized).

b. Client & Project Delivery

  • Contact details of client representatives for project coordination.

  • In limited cases (e.g., access control integrations like NineSmart), identity data such as name, employee ID, access logs — always with explicit client consent and for agreed purposes only.

c. IoT People Sensing & Smart Building Solutions (Optimus Platform) Our core technology focuses on anonymous occupancy analytics:

  • Footfall counters, room/desk occupancy sensors, environmental sensors typically collect non-personal, aggregated data (e.g., number of people in a zone, temperature/humidity trends) — no images, no facial recognition, no individual identification in standard deployments unless otherwise indicated.

  • Data is anonymized or pseudonymized where possible; we do not collect or process identifiable personal data unless explicitly required by the client (e.g., named access control users) and with lawful basis/consent.

2. How We Collect Personal Data

  • Directly from you (forms, emails, contracts).

  • Automatically via website cookies & analytics (Google Analytics, etc. — see our Cookie Policy if separate).

  • From clients/partners during project delivery (only as necessary).

Collection is lawful, fair, and not excessive (PDPO Data Protection Principle 1).

3. Purposes for Which We Use Personal Data We use personal data only for:

  • Responding to enquiries, providing quotes, delivering services/projects.

  • Managing client/partner relationships and project support.

  • Improving our website/services (analytics — aggregated only).

  • Sending service updates, newsletters (with opt-in consent).

  • Complying with legal obligations.

We do not use data for unrelated purposes without fresh consent.

4. Disclosure of Personal Data We may share data with:

  • Our employees and authorized contractors (under strict confidentiality).

  • Technology partners/vendors (e.g., sensor manufacturers, cloud providers like Google Cloud, NineSmart) — only as necessary for service delivery, with data protection agreements.

  • Legal authorities when required by law.

We do not sell personal data.

5. Data Security We implement reasonable technical and organizational measures (encryption, access controls, secure hosting) to protect personal data from unauthorized access, loss, or misuse (PDPO DPP4).

6. Data Retention We keep personal data only as long as necessary for the collection purpose (typically 2–7 years for client/project records, shorter for website enquiries). Anonymized analytics data may be kept longer for trend analysis. After that, data is securely deleted or irreversibly anonymized.

7. Your Rights Under PDPO You have the right to:

  • Access your personal data we hold.

  • Request correction of inaccurate data.

  • Withdraw consent (where consent is the basis).

Requests should be in writing to our Data Protection Officer (details below). We respond within 40 days (PDPO requirement). A reasonable fee may apply for access requests.

8. International Transfers As an APAC-focused company with projects in multiple countries, data may be transferred outside Hong Kong (e.g., to cloud servers). We ensure adequate protection via contracts or other means.

9. Cookies & Analytics Our website uses cookies for functionality and analytics. Most are non-personal. You can manage preferences via browser settings. For details see our Cookie Notice (if separate) or contact us.

10. Anonymized / Aggregated Data Much of our IoT value comes from non-personal aggregated insights (e.g., space utilization trends). This data is not subject to PDPO as it does not identify individuals.

11. Contact Us Data Protection Officer Sharp Peak Consulting Limited Email: [email protected] Address: [Insert your Hong Kong office address] Tel: +852 3461 3113

For complaints, you may also contact the Office of the Privacy Commissioner for Personal Data, Hong Kong (www.pcpd.org.hk).

We review this policy regularly and will post updates here.

Thank you for trusting Sharp Peak / Power Workplace to empower smarter, privacy-respecting buildings.

bottom of page