Privacy Policy

1. Introduction

This Privacy Policy explains how ScalaQuant ("we", "us", or "our") collects, uses, and protects personal data when individuals interact with our website, systems, or communications.

ScalaQuant is a quantitative research and trading firm based in Hong Kong.

We are committed to handling personal data responsibly and in accordance with applicable data protection laws, including the General Data Protection Regulation.

If you have any questions about this Privacy Policy, you can contact us at:

info@scalaquant.com

2. Personal Data We Collect

We may collect and process the following categories of personal data:

Contact Information

  • Name

  • Email address

  • Telephone number

  • Company or organisation name

Professional Information

  • Job title or role

  • Organisation affiliation

  • Professional contact details

Communications Data

Information you provide when communicating with us, including:

  • emails

  • messages

  • enquiries

  • meeting notes or correspondence

Technical Information

When interacting with our website or systems, we may collect:

  • IP address

  • browser type and device information

  • usage or interaction data

  • log files and system access data

Operational Data

Where relevant, we may process limited personal data necessary for:

  • system access

  • communications

  • internal operational processes

We aim to minimise the personal data we collect and do not intentionally process unnecessary data.

3. How We Use Personal Data

We process personal data for the following purposes:

Business Communications

To respond to enquiries and maintain professional contact.

Operations

To manage internal processes, systems, and communications.

System and Website Functionality

To monitor, maintain, and improve the performance and security of our systems.

Legal and Compliance

To comply with legal obligations and protect our legitimate business interests.

4. Legal Basis for Processing

Under the General Data Protection Regulation, we rely on the following legal bases:

  • Legitimate interests – to operate our business and maintain professional communications

  • Contractual necessity – where processing is required to perform an agreement

  • Legal obligations – where required by law or regulation

  • Consent – where explicitly obtained (e.g. optional communications)

5. Data Sharing

We do not sell personal data.

Personal data may be shared with trusted third parties where necessary, including:

  • cloud infrastructure providers

  • data and systems providers

  • professional advisors (legal, accounting, compliance)

  • technical service providers

All third parties are required to handle data securely and in accordance with applicable laws.

We may also disclose data where required by law or regulatory authorities.

6. International Data Transfers

As we operate internationally, personal data may be processed outside the European Economic Area.

Where this occurs, we ensure appropriate safeguards are in place consistent with the General Data Protection Regulation.

7. Data Retention

We retain personal data only for as long as necessary, including for:

  • maintaining professional relationships

  • operational and administrative purposes

  • compliance with legal and regulatory obligations

Retention periods vary depending on the nature of the data and applicable requirements.

8. Data Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • secure infrastructure

  • access controls and authentication systems

  • encryption where appropriate

  • internal data handling procedures

While we take reasonable steps to protect data, no system can guarantee absolute security.

9. Your Data Protection Rights

Individuals may have the right to:

  • request access to personal data

  • request correction of inaccurate data

  • request deletion in certain circumstances

  • request restriction of processing

  • object to certain processing

  • request data portability where applicable

Requests can be made using the contact details provided above.

You also have the right to lodge a complaint with the relevant supervisory authority, including the Data Protection Commission.

10. Cookies and Website Data

Our website may use cookies or similar technologies to:

  • improve functionality

  • analyse usage

  • maintain security

Further details may be provided in a separate cookie notice where applicable.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our operations or legal requirements.

The latest version will always be available on our website.