Looking at the website, I would run.
SSL certificate isn't for their domain; it's for a supercheap hosting provider; they couldn't be bothered spending $100 for a cert. The various "you can trust us, we're secure" logos are thus almost certainly incorrectly used. None are linked except for XHTML/CSS validation (WTF?), which the site fails.
No contact phone, and the address is out of Hong Kong. No phone number or specific names to contact, just an email. It's not specified which country the office hours are in. Undisclosed who the domain belongs to in WHOIS.
Run Away.