Know Us - Addison Wan Hong Kong Web Design Company

  • Know us

    Addison Wan Design Co. - Know Us
  • What types of design and web design services do we provide?

    Addison Wan Design Co. offer the following design and web design services:

    Web Design & Website Development

    • Art & Web Animation Direction, Web Design, Website Development, Responsive Web Design (Mobile and Tablet Websites), W3C Web Accessibility, Content Management System (CMS), Online Shop Website (eCommerce), .PSD layout to .HTML website services, Banner Ad Design, eNewsletter Design, Facebook Profile Design etc.

    Server Configuration, Web Hosting & Global CDN Network services

    Mobile Apps & Native Apps Programming services

    Brand Identity Design

    • Art Direction, Visual Logo Design, Naming Consultation, Brand Identity Design, Brand SuperGraphic Design, Stationery (Letterhead, Business Cards, etc.), Aid Design (PowerPoint Design, Quotation, Invoice, etc.), Brand Guideline, Colour Scheme, Mood Board, Brand Planning and Digital Strategy, Brand Consultant Services etc.

    Graphic Design & Printed Materials

    • Art Direction, Event Design, Event Backdrop, Poster, Print Ad, Leaflet (Flyer), Brochures, Packaging, Coupon, CD Cover, Book Cover, Ecard, Wedding Invites Card etc.

    Commercial Photography

    • Art Direction, Commercial Photography, Product Photography, Advertising Photography, Jewellery Photography, Newborn Baby Photography, Wedding Photography, Artistic Pre-Wedding, Pre-Wedding, Wedding Big Day, Wedding Video Services, Make Up Services etc.

    Most of our design projects start with Web Design and Brand Identity projects. If you are interested to get our design quotation, Please feel free to contact us. Thank you!

  • What type of company business certificate do we hold?

    Addison Wan Design Co. is a locally registered company in Hong Kong and holds a valid Hong Kong Business Registration certificate and corporate bank account.

  • Where is the office of our Hong Kong company?

    By the beginning of 2019, all of us started working at Home Office (Ma On Shan area, Hong Kong). In this way, we hope to provide more high-quality and perfect design consultants and website maintenance services for various clients from all over the world and different time zones.

    For example, we use Hybrid Cloud server computing as the cloud infrastructure for daily design projects, and with our self-developed file program system to enhance the speed and security of data intercommunication (The initial need to go through a Virtual Private Network (VPN) leased line connection and data are protected behind a firewall). So, no matter the design and web design projects, we are not limited by geographical, weather changes, environmental factors and commuter traffic, and can really focus on your design project and server management for a long time etc.

    If there are any types of design and web design troubles. Welcome to email us, we’re always here.

    Go to the “Contact Us” page

  • What types of programming and emerging web technology we specialize in?

    We provide a full range of one-stop high-end website and design professional advisory services to clients around the world in Hong Kong.

    Starting from the root of the server to optimize and enhance the deployment, through various types of creative thinking to design, the use of the world’s universal programming languages and mainstream popular websites and Online Shop eCommerce CMS backend systems for user-friendly interface management and provide comprehensive search engine optimization and SSL secure encryption certificate installation and configuration services.

    For more details on what types of programming and emerging web technology we specialize in, please go to :

    Our Worldwide Professional Industry Norm Skills and familiar Software and Application summary

  • Is it safe to use WordPress, Joomla and OpenCart as CMS backend and Online Shop eCommerce CMS backend systems?

    Don’t worry! An international brands known for its outstanding performance, safety and reliability are safer.

    WordPress, Joomla and OpenCart are all well known household international brands in the web design and web technology fields and the preferred choice of mainstream website and Online Shop eCommerce CMS backend systems. Just like the Apple iOS and Google Android systems we are using, it is quite safe and reliable.

    In addition, for your peace of mind, we are cautious about aggressive Brute Force attacks from the Internet around the world. When we create a website or Online Shop eCommerce, we will set unique CMS administration login URL, enable Two-Factor Authentication (2FA) for CMS backend system login, using Google Authenticator or Microsoft Authenticator Apps Login (Available for our creation of WordPress CMS backend system, WordPress CMS with eCommerce backend system, Joomla CMS backend system, Joomla CMS with eCommerce Business version backend system and OpenCart eCommerce backend system) and limit the number of login failures to enhance the overall security of the website.

  • What specific security measures do we use on our web design projects and servers?

    CMS security measures and configuration aspect (For our web design project clients)

    • Unique CMS administration login URL
    • Using Google Authenticator or Microsoft Authenticator Apps Login (Available for our creation of WordPress CMS backend system, WordPress CMS with eCommerce backend system, Joomla CMS backend system, Joomla CMS with eCommerce Business version backend system and OpenCart eCommerce backend system)
      • Two-Factor Authentication (2FA)
      • Time-based One-Time Password algorithm (TOTP)
      • Automatically generate a new set of 6-digit password randomly via the App every 30 seconds
    • Limit the number of login failures
    • IP restricted area, blockade and prohibition
    • Enhanced password strength and protection
    • Automatically back up the database data for the database at the specified time each day (Keep the latest 7 days database backups)
    • Third-party installation – Cloudflare Global CDN Service (More details)
    • Third-party installation – Cloudflare Railgun™ Origin Network Optimizer (Available for Cloudflare Business to Enterprise solutions)
    • Third-party installation – Cloudflare DDoS Resistance Attack Protection

    Server security measures and configuration aspect (For our monthly website maintenance services clients)

    Our clients able to sleep well every night and we will use emerging web and network technologies to put our clients website stand in a global level.

    We will take care all of your Company Website and/or Online Shop / eCommerce Website optimization, deployment and infrastructure. The following Company Website and Online Shop / eCommerce Website monthly website maintenance services are included maintenance costs for basic DDoS global resistance attack protection, damage to the website caused by human accidents, catastrophic deletion and permanent and inability to recover data.

    Managed Company Website by us + “Care+ Website After Sales Guarantee” + Hosted Client’s Company Website on our well-optimized and fine-tuned Server Cluster Environment
    HK $7,800 per month

    Managed Online Shop / eCommerce Website by us + “Care+ Website After Sales Guarantee” + Independent VPS server

    • Independent VPS server (Apache Nginx Reverse Proxy server)
    • CentOS 8 (64-bit) server operating system
    • 4 vCPU Cores (AMD EPYC™ (2nd Gen))
    • 8GB DDR4 RAM memory
    • 120GB speedy NVMe SSDs disk space

    HK $13,800 per month

    • CPU Server code name – INTEL® XEON® Skylake, AMD EPYC™ (2nd Gen)
    • Solid-State Drive (SSD) disk spaces with high I/O performance (Enabled SSD TRIM)
    • CentOS 8 (64-bit) or CentOS 7 (64-bit) version
    • Nginx Reverse Proxy server or Apache Nginx Reverse Proxy server
      • FPM/FastCGI on CentOS 8 (64-bit)
      • CGI/FastCGI on CentOS 7 (64-bit)
    • Amazon Simple Email Service (Amazon SES) (Our servers use the industry’s highly respected Amazon SES SMTP outgoing verification email service)
      • Include your company unique “mailed-by” and “Signed by” white-labels
      • For example : mailed-by: bounces.example.com
      • For example : Signed by: example.com
      • Amazon SES SMTP endpoint supports the both STARTTLS (Port 587) and traditional TLS Wrapper (Port 465) protocols and requires all connections to use the Transport Layer Security (TLS) encrypted connection mechanism. Please kindly note that our server only supports the new STARTTLS (Port 587) protocol and not available for the traditional TLS Wrapper (Port 465) protocol
    • Mailgun SMTP outgoing verification email service (Client’s will get an independent SMTP credentials account)
      • Include your company unique “mailed-by” and “Signed by” white-labels
      • For example : mailed-by: bounces.example.com
      • For example : Signed by: example.com
      • Mailgun SMTP endpoint supports the Port 25 (no SSL or TLS), Port 465 (SSL), Port 587 (TLS) or Port 2525 (TLS), but we recommend our clients to use Port 587 (TLS) and Port 2525 (TLS) unless all above ports are blocked.
    • An important note about incoming emails settings : As our server does not open the Incoming Mail (IMAP) Mailbox Server (Or we use it as a transit station), we only allow clients to use the Incoming (POP3) Mailbox Server. If our clients need to manage and check emails on several different devices (For example : Desktop computer, mobile phone and tablet). We recommend that clients able to use existing email address (For example : Gmail or Yahoo!) to receive all incoming emails from POP3 mailbox server.

      In addition, if clients are looking to use external and monthly paid mailboxes, we would like to recommend the following:

    • Global Content Delivery Network (CDN) that is not measured every month (Cross-Origin Resource Sharing (CORS) website headers : CSS, JS, JPG, PNG, SVG, WebP, ICO, EOT, TTF, WOFF and WOFF2)
    • Google BBR Congestion Control Algorithm
    • Google Brotli Lossless Compression Algorithm
    • Single Server – Redis (Secure connections with our independent TLS and server ports)
      • Redis Predis on CentOS 8 (64-bit)
      • Redis PhpRedis on CentOS 7 (64-bit)
    • Varnish Cache (Not available for all clients)
      • X-Forwarded-For (XFF) request header
      • X-Forwarded-Proto request header protocol (HTTP or HTTPS)
      • X-Forwarded-Port request header destination port (Independent Port)
    • Google PageSpeed Module NGX (ngx_pagespeed)
      • Some of our servers have enabled the following Google PageSpeed Module functions, but given that each client’s CMS backend website and Online Shop eCommerce CMS backend system are different. Therefore, some of the module functions are not applicable to each client’s.
      • FetchHttps, RespectXForwardedProto, rewrite_css, inline_css, outline_css, flatten_css_imports, rewrite_javascript, inline_javascript, outline_javascript, include_js_source_maps, convert_jpeg_to_webp, convert_to_webp_lossless, convert_jpeg_to_progressive, jpeg_subsampling, recompress_jpeg, recompress_png, recompress_webp, trim_urls, responsive_images, resize_images, local_storage_cache, remove_comments, collapse_whitespace, FileCachePath, FileCacheSizeKb, extend_cache, extend_cache_pdfs
    • Unique Port and Web Hosting Control Panel login URL
    • Limit the number of login failures
    • HTTP/2 network protocol (Listen to SSL 443 Port)
    • TLS 1.2, TLS 1.3 encrypted connection protocol (Transport Layer Security)
    • Online Certificate Status Protocol (OCSP) Stapling (Not available for all clients)
    • Application-Layer Protocol Negotiation (ALPN)
    • Email SPF, DKIM and DMARC configuration
    • Latest Linux Kernel core
    • Latest PHP script language
    • HTTP Strict Transport Security (HSTS) (Not available for all clients)
    • HTTP-01 challenge or DNS-01 challenge (For SSL Wildcard)
    • AXFR – DNS Full Zone Transfer
    • FTPS (FTP with TLS Transport Layer Security and SSL Secure Protocol)
    • SSH Access – Configure custom secure port or SSH security and hardening key connection management (Blocked common ports)
    • ModSecurity – Comodo WAF (CWAF)
    • CSF (ConfigServer Security & Firewall)
    • iptables
    • Nginx combines iptables to limit the number of source requests per minute
    • SpamAssassin
    • Clam AntiVirus
    • Fail2ban
    • Brute Force Monitor
    • Automatic full-image server backup every day (We will keep the latest 14 days server data backups)
    • Server Snapshots backup before running large server update or software installation
    • Let’s Encrypt SSL, Paid commercial version SSL, SSL Wildcard certificate with one level subdomains and SSL EV Greenbar (Extended Validation) secure encryption certificate installation and configuration
    • SSL ECC Certificates – Our servers support for ECDSA (Elliptic Curve Digital Signature Algorithm) certificates to provide higher security and reduce the key sizes (X9.62/SECG (prime256v1), NIST/SECG (secp224r1), NIST/SECG (secp384r1) and NIST/SECG (secp521r1))

    The principles of our DDoS defense technology – Protect servers from Layer 4 to Layer 7 DDoS flood attacks from Internet

    Reduce potential and Attacked areas

    • Global Content Delivery Network (CDN) – We put most of our computing resources on the Global Content Delivery Network (CDN) so that the Internet traffic cannot directly flow to our underlying server facilities.
    • Only common communication ports of 80 (Transmission Control Protocol – TCP) and 443 (Transmission Control Protocol – TCP and User Datagram Protocol – UDP) are allowed – To ensure that websites, applications or other resources will not receive any communication and ports signals. Thereby the possible attack points are greatly reduced.
    • Firewall IP Whitelist – Our servers will automatically check the IP address lists of each service provider’s for Global Content Delivery Network (CDN) to ensure our Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) communication ports are unobstructed.
    • Completely prohibit XML-RPC applications or Partially prohibit XML-RPC applications (Available for Mobile Apps & Native Apps Programming services clients)
    • Although we use many different protection technologies to ensure that our clients websites, applications or other resources are also functioning properly every day and are not affected. Therefore, we will not encourage our clients to install free and/or third-party programming on their own websites, applications or other resources. The most common problem is that the programming contains potential malicious code and scripts, which will repeatedly continue to attack, rewrite and refresh new data, eventually causing the entire website and database to crash and paralyze.

    Advanced and Expansion measures

    • Using Cloudflare intelligent IP hided, Proxied and DNS controlled services, it can provide built-in DDoS protection and effective 5 seconds firewall protection.
    • The installed CSF (ConfigServer Security & Firewall) server firewall on our servers limits incoming traffic, blocks common flood ports, limits thresholds and manages rate and burst values. Thereby, mitigating the impact of large-scale DDoS attacks on the underlying server facilities.
    • Nginx combines iptables to limit the number of source requests per minute – Slow down the bandwidth (or transmission) capacity of the attack.
    • Cron Jobs checks the server’s traffic every minute for abnormality – Check the server’s traffic every minute and email alerts will be sent in the event of an accident.
    • Brute Force Monitor – View, research, and understand the source of traffic, and make a preventive deployment before an accident occurs.

    For more Complex attacks and Deployments

    • The best way is to use a Web Application Firewall (WAF) to further prevent the DDoS attacks (For example : ModSecurity, Comodo ModSecurity and Comodo WAF (CWAF))
    • Participate in Cloudflare – Pro to Enterprise solutions to resist complex DDoS attacks (More details)
  • How can clients know the detailed charges and service details for our Web Design & Online Shop website projects?

    Clients can go to the following hyperlinks to see the Detailed & Transparent Pricing for our Web Design & Online Shop website projects :

    Standard Company Website Plan

    Standard Online Shop Website Plan

  • Do we add the "Web Design by Addison Wan" friendly hyperlink on inconspicuous place at the bottom of the client’s website?

    The friendly hyperlink does not necessarily need to be added. If your company doesn’t mind, we would like our client’s to add it.

    However, if there are any uncomfortable places, please tell us that we are more concerned about client’s needs than this hyperlink.

  • After the design project is completed, is there any maintenance services for the client’s Company Website and/or Online Shop Website?

    The website and the programming have fully undergone comprehensive performance optimization and compatible debugging.

    All of our web design projects are subject to quality tested by Support from Addison Wan Design Co. prior to the design project delivery / launch website. Both the website and the programming are optimized for performance with at least two mainstream Linux server hosts (Apache, Nginx and LiteSpeed) and the debugged of the following five major web browsers.

    Google Chrome, Apple Macintosh Safari, Microsoft Edge, Mozilla Firefox and Opera.

    Desktop computer web browsers supported versions:Google Chrome 76 or upper, Apple Macintosh Safari 13 or upper, Microsoft Internet Explorer 11 and Edge or upper, Mozilla Firefox 70 or upper and Opera 65 or upper.

    Mobile and Tablet web browsers supported versions (Mobile and Tablet web browsers produced by third-parties are not guaranteed):Google Android 9.0 or upper (Google Chrome and Mozilla Firefox only), iOS 11.0 or upper (Apple Safari only).

    In addition, our web design project will extra provide 6 months of “Care+ Website After Sales Guarantee” services to provide a better and more complete website solutions.

    For the details of “Care+ Website After Sales Guarantee” services, please go to :

    Standard Company Website Plan

    Standard Online Shop Website Plan

  • How long does it take to design a project?

    This depends on the exact needs of a project but usual web project takes about 5 – 8 weeks and brand identity project takes about 3 – 4 weeks.

    This can be done quicker if necessary, but we generally recommend at least 3 weeks for most projects, to ensure that the appropriate research and creative output is the best it can be.

  • What is the flow of our design and web design projects?

    Our flow of design and web design projects can simply summarise them as follows :

    • Listen to the client’s ideas, thoughts and needs and define the details of the design project
    • Design a quotation
    • We will charge a 50% deposit for the design quotation after both parties confirm the design quotation charges and included design items
    • After charged a 50% deposit for the design quotation, we will confirm the design project and will start to collect design references that our client’s like (For example:Client’s favorite design, style, look and feel, colour scheme and website reference etc.) and your company’s text content (For example:The company logo, history, business philosophy, website structure sitemap and text content for each content page of the website etc.)
    • Design Data Collection and Visual Research
    • Design Concept Expression and Design Creation
    • Design Draft
    • Design Revision
    • System Analysis & Development (SA&D) (Web Design and Online Shop Website projects)
      • Frontend Programming
        • Desktop Web HTML layout
        • Mobile and Tablet Web HTML layout (Responsive Web Design)
        • Web Animation, Specific Frontend Programming and Third-party installation Programming (Social Media sharing links function, Google Analytics tool for Sales and Marketing etc.)
      • Backend Programming
        • Build up SQL Database
        • Backend Systems – Web CMS or Online Shop eCommerce Backend Programming
        • Specific Backend Website Functions and Programming (Membership System, Order Form etc.)
        • Debugging and Testing whole Company Website or Online Shop eCommerce Website on our side (Desktop computer web browsers, Mobile and Tablet web browsers (Mobile and Tablet web browsers produced by third-parties are not guaranteed))
        • Before launch the Company Website or Online Shop eCommerce Website, we will optimize our side website programming and evaluate the client’s current web hosting server
    • Client’s User Acceptance Testing (UAT) and overall experience (Web Design and Online Shop Website projects)
    • Charge the remaining 50% of the final amount
    • Delivery / Launch Company Website or Online Shop eCommerce Website
    • Care+ Website After Sales Guarantee” services (Web Design and Online Shop Website projects)
  • What project files will the client’s receive after the design project is completed?

    This depends on the types of design project and the needs of your company. In general, the design files will include the following :

    Web Design project

    Web Layout Design (Homepage and Content pages), Frontend Web Programming and/or Backend System Programming source files

    Brand Identity Design project

    Company Logo, Envelope, Letterhead, Business Card source files

    Graphic Design & Printed Materials Design project

    Commercial Advertising Design, Graphic Layout Design source files

    Commercial Photography project

    Image version of Commercial Photography and/or Source file of Photography (if any)

  • Do we have design experience in your industry?

    Each design project begins with our accumulated 6770 days of design experience.

    We have possessed and experienced in various industries design.

    Most probably, however the specific industry does not matter as we adapt our skills, visual research and design process around the client’s needs and industry until the problem has been solved.

  • What types of payment method do we accept?

    We accept Bank Transfer or Check (Cheque) Payment.

    For most our design and web design projects, we will charge a 50% deposit to confirm and schedule the design project.

    The remaining 50% of the final amount will be charged before the design project is delivered / launched website (Web Design and Online Shop Website projects).

Hong Kong Online Shop Web Design & Website Development

Web Design & Website Development

Art & Web Animation Direction, Web Design, Website Development, Responsive Web Design (Mobile and Tablet Websites), Content Management System (CMS), Online Shop Website (eCommerce), WordPress and Joomla CMS backend systems etc.

Hong Kong Brand Identity Design

Brand Identity Design

Art Direction, Visual Logo Design, Naming Consultation, Brand Identity Design, Brand SuperGraphic Design, Stationery, Aid Design, Brand Guideline, Colour Scheme, Mood Board, Brand Planning and Digital Strategy, Brand Consultant Services etc.

Hong Kong Graphic Design & Printed Materials

Graphic Design & Printed Materials

Art Direction, Event Design, Event Backdrop, Poster, Print Ad, Leaflet, Brochures, Packaging, Coupon, Flyer, CD Cover, Book Cover, Wedding Invites Card etc.

Hong Kong Commercial Photography

Commercial Photography

Art Direction, Commercial Photography, Product Photography, Jewellery Photography, Newborn Baby Photography, Wedding Photography, Artistic Pre-Wedding, Pre-Wedding, Wedding Big Day, Wedding Video Services, Make Up Services etc.

Know Us - Addison Wan Hong Kong Web Design Company