Dear Customer, to better protect your personal rights and interests, the Bank has updated the ICBC Business Personal Information Protection Policy in accordance with the latest laws, regulations, regulatory requirements and standards, taking into account its actual business operations. The provisions updated this time mainly include: Chapter I Personal Information Protection Guide and Product Introduction; Chapter II Collection and Use of Personal Information; Chapter III Storage of Personal Information; Chapter V Management of Personal Information; Chapter VI Provision of Personal Information; Chapter VIII Notification of Modification; Chapter IX How to Contact the Bank.

Contents:
I. Personal Information Protection Guide and Product Introduction
II. Collection and Use of Personal Information
III. Storage of Personal Information
IV. Personal Information Security Protection
V. Management of Personal Information
VI. Provision of Personal Information
VII. Information Protection for Minors
VIII. Notification of Modification
IX. How to Contact the Bank

This Policy will help you understand the following:
I. Personal Information Protection Guide and Product Introduction
ICBC Business (hereinafter referred to as the “Corporate Mobile Banking”) is a professional online financial service platform provided by Industrial and Commercial Bank of China Limited (hereinafter referred to as the “Bank”). This Policy sets out how the Corporate Mobile Banking collects, stores, uses, provides, transfers and makes public your personal information, as well as the rights you enjoy. The key points are as follows:
1. The Bank will specify the types of personal information collected and the purposes thereof, so that you understand the specific categories of personal information collected for a particular function, the reasons for use and the methods of collection.
2. When you use certain functions, the Bank will collect certain sensitive information from you, such as camera access and biometric information, after obtaining your explicit consent. Refusal to provide such information may affect your normal use of the relevant functions. 
3. The Corporate Mobile Banking will not proactively disclose or transfer your personal information to third parties. If any other circumstances of disclosure or transfer arise, the Bank will obtain your explicit consent. Explicit consent means your act of voluntarily issuing a written or electronic statement in writing, orally or otherwise, or taking an affirmative action on your own initiative to grant express authorization for the specific processing of your personal information (Note: Affirmative actions include the data subject actively ticking a box, clicking “Agree”, “Register” or “Send”, and voluntarily filling in or providing information, etc.).
Provisions and sensitive personal information in this Policy that the Bank considers material to your rights and interests are marked in bold type to draw your special attention. If you click or tick “Agree” in relation to this Policy and confirm submission, you shall be deemed to have accepted this Policy and consented to the Bank’s collection, use, storage, provision, transfer and public disclosure of your personal information in accordance with this Policy.
The Bank fully understands the importance of personal information to you and will make every effort to protect the security of your personal information. The Bank is committed to maintaining your trust and protecting your personal information based on the following principles: consistency of authority and responsibility, clear purpose, choice and consent, data minimization, security assurance, data subject participation, openness and transparency, among others. Meanwhile, the Bank undertakes to take appropriate security measures in accordance with the law to protect your personal information.
Product Introduction:
The Bank has developed the Corporate Mobile Banking App tailored for corporate customers. With this App, customers may conduct banking services including account inquiry, and electronic receipt generation and inquiry anytime and anywhere, and may also receive financial alerts from the Bank. The App also provides convenient functions such as fingerprint/face login, delivering a secure and efficient mobile financial service experience for corporate customers. An enterprise may authorize its operators to use the Corporate Mobile Banking to conduct transactions.
This App is available to corporate customers of ICBC’s overseas institutions including ICBC Singapore Branch, ICBC (Asia), ICBC (Macau), ICBC (Thai), ICBC (New Zealand), ICBC (Europe), ICBC (Almaty), Yangon Branch, Phnom Penh Branch, Hanoi Branch, ICBC (London), London Branch, ICBC (Malaysia), Tokyo Branch, Riyadh Branch, ICBC (Austria), Prague Branch, Zurich Branch, ICBC (Canada), ICBC (Peru), ICBC (Mexico), Mumbai Branch and other institutions offering corporate App services in the future.

II. Collection and Use of Personal Information
i. How the Bank collects your personal information
To provide services to you and ensure the security of your Corporate Mobile Banking account, the Corporate Mobile Banking will collect information that you voluntarily input or that is generated during your use of the services:
2.1 When you use the Corporate Mobile Banking services, you may be required to provide to the Bank or authorize the Bank to collect personal information necessary for the relevant services. If you refuse to provide such information, you may be unable to use the corresponding functions or services.
(1) When you log in, the Bank will verify the validity of your login password and gesture password. The Bank will also collect device information (device model, system type, UUID and MAC address) for hardware binding and login security enhancement. If you do not provide the above information, you will be unable to log in, but this will not affect your normal use of functions or services available without logging in.
(2) For certain brands or models of mobile devices, you may choose to log in to the Corporate Mobile Banking through fingerprint/face recognition authentication based on the device’s local biometrics. You may enable or disable this function via “My Enterprise – Login Management” in the Corporate Mobile Banking App. After you enable fingerprint/face recognition login, you will need to use your fingerprint or facial image information for verification at login. The Bank will not collect the original images of your fingerprint or face, which will only be stored and processed on the mobile device where you authorize the collection of facial images. If you do not wish to log in using fingerprint or face ID, you may still log in via other methods. You may enable or disable the fingerprint/face ID login function via “My – Security Center – Login Management” in the Corporate Mobile Banking App. To ensure the security of your personal information and account funds, please do not store other persons’ fingerprints or face information on your device.
(3) When you use ICBC Messenger and message push services, the Bank will collect your enterprise’s account information and transaction information to promptly send you notifications of account fund changes and relevant transactions.
(4) When you use the transfer and remittance functions, you are required to provide the payee’s account number/bank card number, account name, opening bank and purpose of funds, and may also need to provide your name, mobile phone number, fingerprint or face information for identity verification and use of the aforementioned functions. Besides, the Bank may also collect relevant payment and receipt transaction records of your enterprise for your inquiry. The above information is sensitive. Refusal to provide such information will only prevent you from using the foregoing functions, without affecting your normal use of other functions of Corporate Mobile Banking.
2.2 When you use the Corporate Mobile Banking services, to maintain the normal operation of the services and ensure the security of your account, the Bank may collect the following basic information, including your device model, operating system, unique mobile device identification information (IMSI/IMEI/Android ID/IDFA/IDFV/UUID/serial), specified package name information, login IP address, device MAC address, network access method, type and status, network quality data, device sensor data, operation logs, system parameters, application permissions, installed application information or running process information. Such information is basic information necessary to provide you with services and ensure your normal use of the Bank’s services.
2.3 In the following circumstances, you may choose whether to authorize the Bank to collect and use your personal information:
Notification-based functions: Message push and alert services.
Camera-based functions: Scanning and profile picture maintenance.
Photo album/gallery-based functions: Scanning and profile picture maintenance.
Fingerprint/Face ID-based functions: Fingerprint/Face ID login and fingerprint settings.
Storage-based functions: Storage of images and electronic receipts.
Functions based on installed application list and running applications: Detecting risky applications and conducting security control.
The above functions may require you to enable access permissions on your device for notifications, camera, photo album/gallery, fingerprint/Face ID and storage for us to collect and use the information involved in realizing such functions. Please note that by enabling these permissions, you authorize the Bank to collect and use such information to implement the aforementioned functions. If you withdraw such authorization, the Bank will cease to collect and use your relevant information, and will no longer be able to provide you with the corresponding functions. Even if you revoke the photo album/gallery permission, you may still use the scanning and profile picture maintenance functions via the camera permission.
2.4 When you use Corporate Mobile Banking, the Bank may provide services to you under certain specific scenarios using software development kits (“SDK”) provided by third-party service providers with corresponding business qualifications and capabilities. Such third-party service providers will collect your necessary information. It mainly includes:
(1) WeChat Open Platform: To provide you with the Corporate Mobile Banking sharing service, the Bank uses the WeChat SDK, which requires storage and network permissions for business card sharing.　
Affiliated company: Tencent Technology (Shenzhen) Company Limited
Contact information: 4006700700
Privacy policy:
https://support.weixin.qq.com/cgi-bin/mmsupportacctnodeweb-bin/pages/RYiYJkLOrQwu0nb8
(2) No-code tracking SDK: To realize page access data analysis, the Bank uses the no-code tracking SDK, which requires the collection of Android ID, UUID (iOS), CPU model, manufacturer, device model, system type, carrier information, and network category information.
Affiliated Company: Great Wall Information Co., Ltd.
Contact information: 0731-84932757; xuetao@greatwall.com.cn
Official website: http://www.gwi.com.cn/
(3) Fresco SDK: The Bank uses Fresco SDK for image loading in Corporate Mobile Banking. This SDK may collect partial device information (IMEI, UUID and MAC address).
SDK provider: Facebook
Official website: https://github.com/facebook/fresco
Privacy policy: No privacy policy link of the SDK is available from the third party
(4) OkHttp SDK: The Bank uses OkHttp SDK to provide stable network request capabilities. This SDK may collect partial device information (device model, system type, IMEI, UUID, telecommunications carrier information and MAC address).
SDK Provider: Square
Official Website: https://github.com/square/okhttp
Privacy policy: No privacy policy link of the SDK is available from the third party
(5) National certification FIDO SDK: To provide you with fingerprint security authentication services, the Bank uses the National certification FIDO SDK, which may collect mobile device model, device name, device manufacturer, and operating system version for model compatibility support and troubleshooting.
SDK provider: National Certification Technology (Chongqing) Co., Ltd.
Contact information: 01082900030
Privacy policy: https:www.guominrenzheng.com/article.php?Id=96
(6) Security assistance SDK: To enhance the security of login, payment and financial transaction functions, the Bank uses the self-developed msdeviceinfo SDK, which may collect Android ID (Android), UUID (iOS), CPU model, device manufacturer, device model, system type, telecommunications carrier information and network category information for transaction security analysis.
(7) Digital certificate SDK: To provide you with digital certificate signature services, the Bank uses the digital certificate SDK, which may collect Android ID (Android) information to render device-based certificate download and collaborative signature services.
SDK provider: Beijing Infosec Technologies Co., Ltd.
Contact information: 010-68025518, support@infosec.com.cn;
Privacy policy: No privacy policy link of the SDK is available from the third party
2.5 When you use the Corporate Mobile Banking App, the last login information of the current device will be queried via the device ID when you log in.
2.6 To ensure the normal operation of Corporate Mobile Banking, the Bank will store small data files named Cookie on your mobile device. Cookie generally contain an identifier, a site name and some numbers and characters. With the help of Cookies, Corporate Mobile Banking is able to store your preference data. The Bank will not use Cookies for any purposes other than those specified in this Policy. You may manage or delete Cookies according to your preference. You may choose to clear all Cookies stored on your device in the system settings of your mobile device.
2.7 When you use the functions of the Corporate Mobile Banking App, the App will enable auto-start or associated startup functions when necessary after you agree to this Policy, so as to ensure that you can properly receive offline message push notifications.
2.8 When you use the Android version of the Corporate Mobile Banking App, the Bank needs to obtain the unique identification information of your mobile device (Android ID/IMSI/device serial number) for the security detection of the device operating environment during App startup.
ii. How the Bank uses your personal information
In order to ensure service security and give the Bank a better knowledge of the operating status of our application programs, the Bank may record relevant information, including your application program use frequency, crash data, overall use condition, performance data and sources of application programs. The Bank will not combine our information stored in the analysis software with any personal identity information that you provide to the application programs.
After collecting your personal information, the Bank may anonymize your information and data through technical means. Anonymized information cannot be used to directly identify the data subject. You consent to the Bank’s analysis and use of such anonymized data.
Please understand that the functions and services provided by the Bank to you are continuously updated and developed. If a function or service that collects your personal information is not specified in this Policy, the Bank will separately explain to you the content, scope and purpose of such information collection and use through page prompts, interactive processes, website announcements or other means, and obtain your authorization and consent before use. Authorization and consent refers to your act of granting specific authorization to the Bank for the processing of your personal information, including authorization through active conduct (i.e., express consent) or authorization through passive inaction (e.g., you do not leave the information collection area after being informed of the information collection activity).
Exceptions to obtaining authorization and consent: In accordance with applicable laws, regulations, regulatory requirements and national standards, the Bank may collect and use your personal information without your authorization and consent under the following circumstance, provided that the Bank is required to provide such information by competent state authorities or regulatory authorities, or for the purpose of fully protecting your rights and interests, or other reasonable circumstances as agreed herein:
(1) Information necessary for the conclusion or performance of a contract to which you are a party, or necessary for the implementation of human resource management in accordance with labor rules and regulations formulated in accordance with the law and collective contracts signed in accordance with the law;
(2) Information relating to the Bank’s performance of its obligations prescribed by laws and regulations;
(3) Information directly relating to national security or defense;
(4) Information directly relating to public security, public health and other major public interests;
(5) Information directly relating to criminal detection, prosecution, judgment and execution of judgment;
(6) For the purpose of safeguarding your or other persons’ life, property and other major legitimate rights and interests, for which it is hard to obtain personal consent;
(7) The personal information collected from that you have voluntarily disclosed to the public, unless you expressly refuse such collection and use, or such collection and use by the Bank infringes upon your material interests;
(8) The personal information collected from the information disclosed to the public according to law, including legal news report, government information and other channels, unless you expressly refuse such collection and use, or such collection and use by the Bank infringes upon your material interests;
(9) Information necessary for signing and executing a contract according to your requirements;
(10) Information necessary for maintaining the safe and stable operation of products or services provided, e.g. finding and handling product or service failure;
(11) Other circumstances as stipulated by laws, regulations and regulatory rules.

III. Storage of Personal Information
The Bank shall properly retain your user information in accordance with the applicable laws, regulations and regulatory requirements of China and the countries (regions) where the business is conducted. The Bank stores the collected and generated personal information within the territory of China. The Bank will retain your personal information only for the period required by laws, regulations and regulatory requirements, unless an extension of the retention period is needed or permitted by law. After your personal information exceeds the retention period, the Bank will handle your personal information in accordance with applicable laws.
Generally, the Bank retains your user information for the period necessary to provide customer services in accordance with laws, regulations and regulatory provisions. For example:
User profile photo: If you need to use the Corporate Mobile Banking services, the Bank needs to retain your uploaded profile photo at all times. When you replace your profile photo, the Bank will delete your previous profile photo information.
In the event that any of the Bank’s products or services cease operation, the Bank will notify you by push notifications, announcements or other means, and delete your user information or anonymize it within a reasonable period in accordance with relevant legal provisions.

IV. Personal Information Security Protection
The Bank strives to provide guarantee for users’ information security, so as to avoid information loss, improper use, and unauthorized access or disclosure.
The Bank will take various security protection measures to ensure information security within a reasonable security level. For example, the Bank will protect your user information by encryption technique (e.g. SSL), anonymous processing and other means.
The Bank will constantly improve technical means to strengthen the security capability of the software installed to your devices, and prevent the leakage of your user information. For example, the Bank will complete encryption of part of information in your local devices for the purpose of transmission security.
The Bank will establish special management rules, processes and organizations to safeguard information security. For example, the Bank will strictly restrict the scope of persons with access to information, and require them to observe confidentiality obligations and conduct audits.
In the event of a security incident such as user information leakage, the Bank will activate an emergency response plan to prevent the escalation of the incident, and notify you by push notifications, announcements or other means.

V. Management of Personal Information
5.1 Access to, correction and update of your personal information
During your use of the Corporate Mobile Banking App, you have the right to amend or independently update your personal information. The Bank will verify your identity before you amend your personal information.
You need to log in to the Corporate Mobile Banking App. After login, you may view and amend your basic information and change your profile photo in “My Enterprise”; or query and amend your relevant security settings in “My Enterprise”, including login password modification, face recognition management, gesture password management and security device management. You may also apply to amend relevant corporate and personal information at the Bank’s outlets. Please consult the Bank’s staff in advance to prepare relevant seal materials.
5.2 Deletion of your personal information
You may submit a request to the Bank for deletion of your personal information under the following circumstances:
(1) Where the Bank’s collection and use of your personal information violate laws and regulations or the agreement with you;
(2) Where the Bank collects and uses your personal information without your consent or you have withdrawn your consent;
(3) Where the Bank’s processing of your personal information breaches the agreement with you;
(4) Where you no longer use the Bank’s products or services, or you have closed your account;
(5) Where the Bank no longer provides products or services to you, or the retention period of your information has expired;
(6) Where the purpose for which the Bank processes your personal information has been achieved, or cannot be achieved, or the relevant personal information is no longer necessary for achieving the purpose of processing;
(7) Other circumstances stipulated by laws and administrative regulations.
You may contact the Bank to delete your personal information related to electronic banking services. After deletion, your personal information will need to be collected again when you handle electronic banking services. The Bank will complete the verification and processing within 15 working days from the date following receipt of your request. For specific contact information, see Chapter IX How to Contact the Bank.
If the Bank decides to respond to your deletion request, it will also notify the third parties that have obtained your personal information from the Bank to delete such information in a timely manner, unless otherwise stipulated by laws and regulations, or such entities have obtained your separate authorization.
After you delete information from the Bank’s services, the Bank may not immediately delete the corresponding information from the backup system, but will delete such information when the backup is updated.
If the retention period stipulated by laws and administrative regulations has not expired, or if the deletion of customer information is technically difficult to implement, the Bank will cease processing other than storage and the implementation of necessary security protection measures.
5.3 Change of the scope of your authorization and approval
Each business function cannot be completed without certain basic personal information. For personal information collected and used to improve product and service experience (such as camera), you may grant or withdraw your authorization and consent at any time through the function “My Enterprise – More – System Permission Management” in the Corporate Mobile Banking App (ICBC Business). You may prevent the Bank or third parties providing relevant services from obtaining your personal information by disabling some functions of the Corporate Mobile Banking App, or by refusing to provide relevant personal information when enabling some functions or services. The above actions may result in the Bank or relevant third parties being unable to provide you with corresponding services.
5.4 Account closure by the data subject
If your enterprise is a registered user of the Bank’s corporate electronic banking, you may close your enterprise’s corporate electronic banking account through the Bank’s counter channels on the premise of obtaining enterprise authorization. After closure of corporate electronic banking account, your enterprise’s Corporate Mobile Banking account will be closed simultaneously. You may independently choose to uninstall or stop using the Corporate Mobile Banking App to prevent the Bank from obtaining transaction information, behavioral information and other information that may be generated after you uninstall or stop using it. Your act of closing your corporate electronic banking account is irreversible. Once you close your corporate electronic banking account, your enterprise’s Corporate Mobile Banking account will be closed simultaneously. The Bank will no longer collect your personal information through the Corporate Mobile Banking App and will delete all information relating to your and your enterprise’s Corporate Mobile Banking account, unless otherwise stipulated by laws, regulations or regulatory authorities regarding the retention period of personal information.
Please note that if a registered user of the Bank’s corporate electronic banking only deletes the Corporate Mobile Banking App from a mobile device, the Bank will not close your enterprise’s Corporate Mobile Banking account, and all information relating to such account will not be deleted. You still need to close your enterprise’s corporate electronic banking to achieve the above purposes. Your closure of corporate electronic banking account shall be deemed as your withdrawal of consent under this Policy. The Bank will no longer collect the corresponding personal information. However, your decision to withdraw consent shall not affect the collection of personal information carried out previously based on your authorization.
5.5 Response to your above requests
To ensure security, the Bank may require you to provide a written request or otherwise to prove your identity. The Bank may verify your identity before processing your request. In general, the Bank will verify and process your request within 15 working days after verifying your identity. Please be informed that the Bank may reject requests that are not supported by current technical means or may pose risks to the legitimate rights and interests of others.
Notwithstanding the above provisions, in accordance with relevant laws, regulations and regulatory requirements, the Bank may be unable to respond to your request under the following circumstances:
(1) Information relating to the Bank’s performance of its obligations prescribed by laws and regulations;
(2) Information directly relating to national security or defense;
(3) Information directly relating to public security, public health and other major public interests;
(4) Information directly relating to criminal detection, prosecution, judgment and execution of judgment;
(5) Where the Bank has sufficient evidence showing that you act in bad faith or abuse rights;
(6) where it is necessary to protect the material legitimate rights and interests of customers or other individuals, such as life and property, and it is difficult to obtain authorization from the customers;
(7) Where response to data subject’s requests may result in serious damages to the legitimate rights and interests of data subject or other persons and organizations;
(8) Where the Bank’s business secrets are concerned;
(9) Where the Bank is required to comply with anti-money laundering and sanctions requirements;
10) Other circumstances as stipulated by laws, regulations and regulatory requirements.

VI. Provision of Personal Information
6.1 Provision and transfer
The Bank shall not provide or transfer your personal information to any other company, organization or individual, except under the following circumstances:
(1) The Bank has obtained your express consent in advance.
(2) If it is necessary to provide or transfer your personal information for business purposes, the Bank shall accurately record and store such provision and transfer, including the date, scope and purpose, as well as the basic information of the data recipient. The Bank shall also inform you of the purpose of such provision or transfer, the name or identity of the data recipient, contact details, processing methods and the types of personal information concerned, and obtain your separate consent in advance. Where sensitive personal information is involved, the Bank shall further inform you of the types of such sensitive information, the data security capabilities of the data recipient, the necessity of processing such sensitive information and the impacts on your rights and interests, and obtain your separate consent. When providing or transferring personal information, the Bank shall assess the personal information security impact in advance unless such provision or transfer is due to acquisition, merger, restructuring or bankruptcy. The Bank shall take effective measures to protect the rights and interests of data subjects based on the assessment results. In principle, personal biometric information shall not be provided or transferred.
(3) Pursuant to laws, regulations and business practices, if the Bank’s transactions such as merger, acquisition or asset transfer involve the transfer of personal information, the Bank will update the name and contact information of the new holder in this Policy, and require the company or organization that newly holds your personal information to continue to be bound by this Information Protection Policy. Otherwise, the Bank shall require such company or organization to solicit your authorization and consent again. When the Bank ceases the operation of a product or service, it shall promptly stop further collection of personal information, delete or anonymize the personal information held, and notify data subjects of the cessation of operation by individual delivery or announcement.
(4) Please be informed that the Bank may provide your personal information in accordance with the laws and regulations or the mandatory requirements of competent government authorities.
(5) The Bank shall conduct strict security testing on application programming interfaces (API) and software development kits (SDK) through which partners obtain personal information, and agree on strict data protection measures with partners, requiring them to process personal information in accordance with the Bank’s entrusted purpose, service descriptions, this Information Protection Policy and any other relevant confidentiality and security measures.
(6) Where a security incident arising from the provision or transfer of personal information causes damage to the legitimate rights and interests of a data subject, the personal information handler shall bear corresponding liabilities.
(7) If the personal information handler finds that the data recipient processes personal information in violation of laws, regulations or the agreement between the parties, it shall promptly require the data recipient to cease such acts, and take or require the data recipient to take effective remedial measures (e.g., changing passwords, revoking permissions, and disconnecting network access) to control or eliminate security risks to personal information. Where necessary, the personal information handler shall terminate the business relationship with the data recipient and require the data recipient to promptly delete the personal information obtained from the personal information handler.
6.2 Disclosure to the public
(1) The Bank shall not make public the collected personal information, including but not limited to personal biometric information and sensitive data such as race, ethnicity, political opinions and religious beliefs. If disclosure is necessary, the Bank shall inform you of the purpose of public disclosure, the types of information to be disclosed and the sensitive personal information that may be involved, and obtain your separate consent.
(2) Please be informed that the Bank may publicly disclose your personal information when required by laws, legal procedures, litigation or mandatory requirements of competent government authorities.
6.3 Exceptions to Obtaining Authorization and Consent
In accordance with relevant laws and regulations, regulatory requirements and national standards, the Bank may provide, transfer or publicly disclose personal information without obtaining your prior authorization and consent under the following circumstances:
(1) Information relating to the Bank’s performance of its obligations prescribed by laws and regulations;
(2) Information directly relating to national security or defense;
(3) Information directly relating to public security, public health and other major public interests;
(4) Information directly relating to criminal detection, prosecution, judgment and execution of judgment;
(5) Where it is necessary to protect your or other individuals’ material legitimate rights and interests, such as life, property and reputation, and it is difficult to obtain your consent;
(6) Personal information made public by you on your own initiative;
(7) The personal information collected from the information disclosed to the public according to law, including legal news report, government information and other channels.

VII. Information Protection for Minors
The Corporate Mobile Banking provides financial services to overseas corporate users. It does not serve minors or collect any personal information from minors.

VIII. Notification of Modification
In order to provide you with better service, this Policy will also be updated from time to time with business development. However, without your explicit consent, the Bank will not reduce your rights that you should enjoy under this Policy. The Bank will issue updated versions on its website and App. Before the updated version takes effect, the Bank will remind you of the relevant content updates through website announcements or other appropriate means. After the updated version takes effect, you will be required to re-authorize when using the App.
You acknowledge and confirm that if you do not agree to the updated content of this Policy, you shall promptly discontinue using the services and cancel the relevant accounts, and the Bank will cease collecting your relevant personal information. If you continue to use the Corporate Mobile Banking services after the update of this Policy, it shall be deemed that you have fully read, understood and accepted the updated Policy, and consent to the Bank collecting, using, storing and disclosing your relevant personal information in accordance with the updated Policy.
Methods and paths to view this Policy:
1. My Enterprise–More–Privacy Policy Statement
 
IX. How to Contact the Bank
If you have any questions, comments or suggestions regarding this Policy or matters relating to your user information, you may use the “My Enterprise – Contact Us” function in the client to learn about the Bank’s customer service channels, and contact the Bank by calling the customer service hotline, sending emails or through other means. You may also contact the Bank via the 95588 customer service hotline for inquiries, complaints or reports. In general, the Bank will accept and handle your request within 15 working days after verifying your identity, unless otherwise specified by laws, regulations or regulatory authorities. If you believe that the Bank’s personal information processing activities have infringed upon your legitimate rights and interests, or you disagree with the Bank’s handling opinions on relevant issues, you may also file a complaint or report to regulatory authorities such as cyberspace, telecommunications, public security and market supervision departments. You may also seek a resolution by filing a lawsuit with a competent court in the place where the defendant is domiciled.
Name: Industrial and Commercial Bank of China Limited.
Registered address: No.55 Fu Xing Men Nei Avenue, Xicheng District, Beijing.
Email address for personal information protection: Data_Protection@icbc.com.cn.