Privacy Policy

Welcome to the services provided by Simple Information, Inc. (hereinafter referred to as "the Company"). According to Article 8, Paragraph 1 of the Personal Data Protection Act (hereinafter referred to as "PDPA"), to ensure the protection of users' personal data, privacy, and rights, when you have read and agreed to the "Simple Information, Inc. Privacy Policy" it indicates your willingness to exercise your right of consent granted by law.

I. Purpose of Personal Data Collection

1. The collection of personal data in this industry includes activities related to information, communication, telecommunications, computer system design, data processing, and data supply services.

2. The above-related business activities or other work within the scope defined by business items.

II. Categories of Personal Data Collection Identification categories (e.g., Chinese and English names, national ID numbers, identification codes, contact phone numbers, addresses, email addresses, bank account numbers and account names, other identification numbers).

III. Period, Area, Subjects, and Methods of Personal Data Use

1. Data Usage Period: The retention period necessary for the Company or business operations.

2. Data Usage Area: Your personal data will be used in areas where the Company provides services.

3. Data Usage Units: The Company, cooperative promotion units, business-related institutions, and legally authorized investigative agencies or financial supervisory authorities.

4. Data Usage Methods: Electronic documents, paper documents, or automated machines or other non-automated methods.

IV. Rights Granted by the PDPA

According to Article 3 of the PDPA, you may exercise the following rights regarding your personal data held by the Company:

1. Rights to query, review, copy, supplement, correct, request to cease collection, request to cease processing, request to cease use, and request deletion.

2. The methods of data provision, processing time, query fees, and payment deadlines for exercising the above rights shall be handled in accordance with laws, Company business regulations, and service contract provisions. Necessary costs may be charged, but the Company may deny customer applications based on considerations such as business necessity and legal retention periods according to Articles 10 and 11 of the Personal Data Protection Act.

V. Personal Data Protection Measures

The Company has implemented the following necessary measures for personal data protection:

1. Allocation of management personnel and adequate resources

2. Definition of personal data scope

3. Personal data risk assessment and management mechanisms

4. Incident prevention, notification, and contingency mechanisms

5. Internal management procedures for personal data collection, processing, and use

6. Data security management and personnel management

7. Awareness promotion and educational training

8. Equipment security management

9. Data security audit mechanisms

10. Usage records, tracking data, and evidence preservation

11. Continuous overall improvement of personal data security maintenance