隱私權政策

最後修改時間：2026年5月18日

我們非常重視您的私隱。

Starii Tech Pty Ltd及其關係企業（「我們」、「本公司」、「我們的」或「Starii」）致力於保護我們使用者（「使用者」或「您」）的隱私權。本私隱權政策（「本政策」）旨在解釋我們在您使用Glenti應用程式和/或其網站及其所有功能（我們的「服務」）期間，作為資訊控制者和/或企業，根據適用資訊保護法收集、儲存、使用、管理和保護您的用戶資訊（包括您的個人資料）的做法。就本原則而言，「協力之有關公司」應指直接或間接控制 Starii Tech Pty Ltd、受其控制或與之處於共同控制之下的任何實體。前述「控制」應指：(i) 直接或間接擁有該實體超過 50% 的流通有表決權的證券或股本，或其他類似的股權或所有權利益，或 (ii) 通過合約安排對該實體的管理決策和經濟利益進行控制。

請注意，本政策的範圍僅限於您在使用我們服務時，我們收集或接收的您的用戶資訊（包括您的個人資料）。在本政策中，「個人資料」指任何可用於識別、聯絡或定位與所收集資訊相關的個人的資料或資料組合。

如果您是位於歐盟/英國境外的使用者，使用我們的服務即表示您同意本政策，以及在適用法律允許的範圍內，以本政策所提供的方式收集、使用、處理、保留、揭露和分享您的使用者資訊，包括您的個人資訊。如果您不同意本政策的任何條款或本政策的任何後續變更，請勿使用我們的服務。

請注意，使用我們的服務時，您必須提供某些類別的資料（將於在收集時指明）。若您不提供任何或充分提供被標示為必要的資料，我們可能無法完成註冊程序或為您提供我們的服務。另請注意，除非我們在本政策中定義術語，否則本政策中使用的所有大寫術語均與我們《服務條款》中的含義相同。因此，請確保您已閱讀並了解我們的《服務條款》。

如果您對本政策或任何隱私權相關事宜有任何疑問，請透過電子郵件[email protected]聯繫我們的資料保護官（請在郵件標題中註明「Glenti」），或透過將掛號信寄至Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（收件人：Starii 法務部門）。請注意，對於所有其他與隱私權或智慧財產權侵害無關的查詢、回饋、建議和/或投訴（包括但不限於任何訂閱取消、付款爭議、退款請求和Glenti的技術支援），您應透過電子郵件[email protected]聯繫我們。如果您的電郵被發送到錯誤的電郵地址，或涉及錯誤的主題，有機會導致延遲或無法正確處理您的請求。

我們收集的資訊

為了提供和改進我們的服務，我們將根據本政策收集和處理您的個人資料和用戶資訊。如果您不提供這些資訊，我們可能無法向您提供我們的產品或服務。您應確保提交給我們的所有個人資料和用戶資訊均完整、準確、真實而且正確。如果您未能做到這一點，或會導致我們無法向您提供全部或部分服務。

帳戶資訊

您使用我們的服務時，我們或會建議您註冊帳戶，以充分利用我們的服務及當中所有功能。您建立帳戶時，我們將收集以下資訊，這些資訊可用於識別您的身分或向您提供我們的服務：

• 必填：電子郵件地址

• 選填：姓名、使用者名稱、性別

任何人士均有權取用我們的服務，但某些服務需收取訂閱費用，例如存取我們的優質內容和享受特權（「訂閱服務」）。如果您選擇使用我們的訂閱服務進行購買，我們將收集特定個人識別資訊，例如您的裝置ID或您的姓名。第三方應用程式商店或支付處理商可能會接收、存取或使用您的財務資訊和帳單地址，以處理交易和續約。如果您透過第三方應用程式商店或支付處理商購買內容或註冊訂閱服務，您應參考該第三方的條款，以了解其如何維護和使用個人財務資訊處理所有購買。為避免爭議，本公司不會向您收集任何財務資訊。

流動裝置資訊

當您在行動裝置上使用我們的服務時，我們將收集有關您裝置的資訊，包括其Android ID、使用者ID(UID)、供應商識別碼(IDFV)、開放匿名裝置識別碼(OAID)、您使用的裝置類型、裝置平台、裝置製造商、裝置品牌、裝置型號、作業系統版本和解析度，這些資訊將被我們用於統計和/或分析目的，包括但不限於改善我們的技術功能、伺服器負載平衡、分析與您行動裝置相關的技術資料，以最佳化我們的服務和圖形調整。

如下文「位置資訊」部分所述，如果您選擇與我們共享您的流動裝置位置資訊，我們可能會從您的流動裝置收集該等資訊。如果您隨後希望停止共享位置資訊，您可以隨時編輯流動裝置上的相關設定來停止共享。

流動分析資料

為了更好地了解和改善我們服務的功能，我們將收集各種資訊，例如您使用應用程式的頻率、應用程式內發生的事件、彙總使用情況、效能資料以及應用程式的下載來源。

網路資料

您使用我們的服務時，我們可能會收集有關您使用的網絡的資訊，包括營運商名稱和網絡類型，以了解我們用戶使用的營運商和網絡分佈情況。此外，我們可能會收集諸如您連接的WiFi網絡名稱、WiFi網絡位置以及WiFi連接維時等資訊，以了解您偏好在何種環境下使用我們的服務。

粗略位置資訊

如果您選擇與我們分享，我們可能會從您的流動裝置收集您的位置資訊。

• 必要：IP位址和系統時區

• 選填：國家/地區代碼和系統國家/地區。

這些資訊有助我們了解用戶分佈和使用環景，以便向用戶提供我們應用程式或網站的正確版本、重現地理位置或發佈您拍照或錄影的即時地理位置，並改善我們的服務。除非經您同意，否則我們不會取得或使用位置資料來識別您的個人身分。除本政策另有規定，否則我們不會與任何第三方分享此位置資訊。如果您不再希望我們收集或使用此類資訊，您可以關閉網絡存取，或停用我們對您網絡和裝置資訊的存取權。請注意，由於您使用我們的服務，我們仍可能繼續收到一些位置資訊，例如您的網絡資訊、IP位址和系統時區。

日誌資訊

當您使用我們的某些服務時，包括產生和瀏覽某些內容，我們將自動收集儲存在 Glenti 中的某些相關日誌資訊（「日誌資訊」）。日誌資訊可能包括：(i) 您使用我們服務的時間和頻率詳情；(ii) 裝置統計資料，包括關鍵操作路徑、錯誤、崩潰、語言和時區。此日誌資訊用於改善我們的服務，不會用於識別個別用戶的身分。

影像資訊

選擇使用我們服務的雲端修圖功能，即代表您了解並同意我們必須將您的相片/影片上載至我們伺服器以作處理，然後再將處理後的相片傳回給您，以便為您提供此類服務並持續最佳化，並且我們亦會所收到並涉及您相片的EXIF資料（EXIF資料可能包含裝置類型、ISO以及有關前後相頭和建立時間的資訊，實際視乎於裝置製造商而定），以進一步最佳化我們的服務，例如提供與您裝置更相符的相片效果。透過在Glenti 上啟用相機和/或允許我們存取您裝置上的相片，您同意我們可以存取、收集和/或使用您的相片以作相片編輯。

語音資訊

透過在Glenti上啟用咪高風，您同意我們可以收集您的語音資訊（即音訊片段或您聲音的錄音）以用於影片剪輯。我們不會將您的語音資訊用作廣告宣傳之用。您可以隨時使用裝置上的作業系統設定或把裝置咪高風設定為靜音，從而關閉Glenti對您裝置咪高風的存取權。

元資料

元資料是指與用戶內容相關的技術資料。簡單來說，元資料就是用於描述資料的資料。例如，元資料可以描述由電腦演算法和人工智能生成並標記的相中人物臉部特徵、性別、年齡等元素的分析結果。當您使用我們的服務，我們會使用相簿元資料為您提供某些功能，包括「人臉辨識」、「關鍵點辨識」、「區域分割」、「內容標籤」以及其他以這些基本功能組合為基礎的自訂功能。當應用程式處理您的照片時，我們可能會使用您照片的中繼資料，為您提供更適合的濾鏡和更佳的照片特效；我們也會使用中繼資料為您提供與情境更相關的產品或服務。

臉部特徵資訊

為提供某些服務，除了如上述般使用元資料外，我們亦可能收集您的臉部特徵資訊（包括但不限於臉部影像），並使用人臉辨識技術辨識相片和相機體驗中的人物臉容。我們或會偵測並使用臉部標記來提供人臉辨識內容和臉部操控功能。我們的服務或會運用某些AR技術，對臉部映射資訊深度的計算結果，當中可能需要使用您的臉部辨識特徵以確保人臉影像處理效果理想，並使用演算法進行特徵分析。我們收集的資訊不會用於識別特定個人身分，只會用於提供上述功能。當內容推薦完成或應用程式或網站關閉時，臉部映射資訊將被丟棄。此資訊不會與任何第三方共用。

我們不會將結果用於其他目的，也不會擷取文件中的任何資料或將資料上傳到伺服器以作記錄。

Cookies

我們使用「cookies」來儲存和檢索用戶的使用資訊，並為每個用戶提供個人化服務。Cookies是伺服器用於運行應用程式/網站、發送到用戶裝置並儲存在用戶裝置硬碟上的少量資訊。您有權拒絕安裝cookies。所收集的資訊可能包括您的互聯網通訊協定(IP)位址、瀏覽器類型、互聯網服務供應商(ISP)、轉介頁面和登出頁面、您的作業系統、日期和時間戳記以及點擊流資料。

• Cookies的使用目的：Cookies可識別用戶造訪過的每個服務和網站的存取和使用類型、熱門搜尋字詞、安全存取狀態等，從而為配位用戶需求提供貼切資訊。

• 安裝、操作和拒絕Cookie：您無法在我們應用程式的資料保護設定中停用絕對必要的Cookie。對於應用程式使用者，您可以透過「設定」在iOS裝置上關閉「追蹤」權限，或在Android裝置上移除您的廣告ID。此外，使用者可以透過發送電子郵件至[email protected]來拒絕安裝Cookie（請在郵件標題中註明「Glenti」）。

• 如果用戶拒絕儲存cookies，使用自訂服務時可能會遇到困難。

第三方服務收集的資訊

我們向您提供的服務可能包含我們服務供應商的應用程式介面(API)或軟件開發工具包(SDK)，當中可能有此類服務供應商的追蹤工具。這些第三方可能會在我們的服務中使用cookies、API和SDK，並收集和分析用戶資訊。第三方可能會根據其各自的私隱權政策存取您的資訊，例如您的裝置識別碼、地區（定義為使用特定語言的地點）、位置資訊和IP位址。如果您想了解更多關於此類第三方的資訊， 您可以發送電郵至[email protected]（請在電郵標題註明「Glenti」） 。

您主動提供給我們的資訊

您聯絡我們（包括但不限於我們的客戶支援團隊和資訊保護專員）時，我們會收集您提供給我們的資料，例如您的聯絡資料（如電郵地址和/或電話號碼）。

其他資訊

我們也可能收集與您身分無關的其他資訊。例如，我們可能會收集您的作業系統類型和版本編號資訊，以加深了解系統升級；我們可能會收集您的系統語言資訊以進行語言適配。如果我們選擇收集此類資訊，目標為改善我們向您提供的服務。

我們如何使用這些資訊

除上列用途外，我們亦會出於以下目的收集和使用您的用戶資訊和個人資料：

1. 服務。提供、處理、維護、改進和開發我們向您提供的服務，包括客戶支援以及透過我們產品提供的其他服務。這包括根據您的粗略位置資料提供我們服務的正確版本，以及實施風險管理措施，例如防止詐欺的措施，以及偵測和解決錯誤的措施。

2. 統計數據分析。改善我們的產品和服務，開發和分析有關我們產品和服務使用情況的統計資料。

3. 建立帳戶。您使用我們的服務建立帳戶時，我們會用收集所得的您的個人資料來為您建立帳戶和個人檔案。

4. 驗證您的身分。為了保障您的隱私權並確保資料安全，可能會在您登入帳戶或聯絡我們以行使您的權利時進行驗證。

5. 收集您的意見回饋。您的意見反映對於幫助我們改善服務極其重要。為了追蹤您的意見反映，我們或會使用您提供的個人資料與您聯絡，並且保留相關記錄。

6. 其他目的。我們將收集、儲存、維護及使用關於您的資訊，以符合「我們收集哪些資訊」中的目的，以及遵守任何適用的規則、法律和條例、業務守則或準則，或協助相關機構進行執法和調查；維持服務的安全和穩定運作；保護您的帳戶、網路、操作和系統的安全，並防止網絡釣魚、網站詐騙和木馬病毒；以及處理要求。

資訊分享與揭露

我們可能會與代表我們提供服務的第三方分享您的資訊，以協助我們進行業務活動。這些服務可能包括：

1. 處理付款；

2. 提供客戶服務；

3. 履行訂閱服務；

4. 進行研究與分析；以及

5. 提供雲端運算基礎架構。

我們不會與第三方（我們的服務供應商除外）共享或披露您的全部或部分個人資料，惟出於以下目的除外：

1. 保護他人或其財產的安全；

2. 防止或應對欺詐；

3. 維護我們的合法權益及利益；

4. 根據「我們收集的資訊」或「我們如何使用資訊」部分中描述的目的採取行動；

5. 遵守法律、法規和規定或政政府部門、司法機關、執法部門或私人團體的要求，此類要求通常旨在維護網絡安全以及我們、我們用戶和第三方的權利、財產和安全；及/或

6. 評估或完成我們參與的合併、收購、融資盡職審查、重組、破產、接管、出售公司資產或其他可能出售或轉讓您資訊的事件的交易。

使用您資訊的依據

我們只會在有合法依據的情況下收集和處理個人資料，我們通常依賴以下四個法律依據其中之一： -

1. 同意（您已同意）；

2. 合同（為履行與您簽訂的合同而需要處理，例如，運營網站或提供您要求的任何服務）；

3. 合法利益（例如我們需使用您的資訊來提供和改善我們服務，包括保護您的帳戶和提供客戶支援）。只有當對您的影響並無凌駕我們的合法利益時（除非我們獲得您的同意或法律另有要求或允許），我們才會以我們的合法利益作為合法依據；以及

4. 法律義務（遵守 法律、法規、規例或政府部門、司法機關或執法部門的要求）。

如果您對我們處理您個人資料的合法依據有任何疑問，請與我們聯絡：[email protected]（請在電郵標題註明「Glenti」） 。

第三方網站和服務

我們的服務可能包含其他網站和服務的連結。此外，其他網站和服務也可能引用或連結到我們的服務。這些其他網域和網站不受本公司控制，本公司不為第三方網站或服務背書或作出任何聲明。請台端詳閱理解所有使用的網站和服務之隱私政策。存取這些其他網站或服務之風險一律由您自行承擔。

資訊安全

我們將採取合理措施防止資訊的遺失、不當使用、未經授權的存取或披露。例如，我們某些服務採用加密技術（如SSL）來保護您的個人資料。然而，您了解並接受，（在網絡產業）即使我們採取合理的安全措施，我們也無法始終保證您的資訊100%安全。您了解並接受，我們無法確保或保證您提供給我們的任何資訊的安全性。我們不對無意的洩漏承擔責任。此外，您了解並接受，您用於存取我們服務的系統和通訊網絡可能會因我們無法控制的因素而發生故障。

資訊存取權和控制權

我們將採取一切合理適當的技術措施，確保您能夠存取、更新和更正您的個人資料，或您在使用我們服務時向我們提供的其他個人資料。在您存取、更新、更正或刪除此類個人資料之前，我們可能會驗證您的身分，以保護您帳戶的安全。

資料保留

根據適用法律、法規和規章，以及當實現我們業務或法律目的，我們將在您終止我們的帳戶後立即刪除您的資訊（包括您的個人資料）。

私隱權

根據適用法律，您有權：(i) 要求確認我們是否正在處理您的個人資料；(ii) 取得或複製您的個人資料；(iii) 接收您提供給我們的個人資料的電子副本，或要求我們將該資訊發送給其他公司（「資料可攜權」）；(iv) 反對或限制我們對您個人資料的使用；(v) 要求更正或修改不準確、不真實、不完整或處理不當的個人資訊；(vi) 撤回您的同意；以及 (vii) 要求刪除我們持有的關於您的個人資料，惟法律規定的某些例外情況除外。

如果您希望行使您的權利，可以發送電子郵件至[email protected]（請在郵件標題中註明「Glenti」），或將您的要求郵寄至Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（收件人：Starii法務部門）。我們將在收到您的電郵或信件後的合理時間內，根據適用法律處理您的請求，並將停止收集、使用和披露您的個人資料，但法律規定的某些例外情況除外。為保障您的私隱，我們將在執行您的請求之前採取措施驗證您的身分。請注意，如果您撤回同意或刪除您的個人資料，您使用我們的某些服務可能會受到影響。

加州居民有權不會因行使《加州消費者私隱法》賦予的權利而受到我們的歧視性待遇。

涉及兒童的資訊

我們不會故意收集或索取16歲以下（或您所在地區法律規定的任何其他年齡）兒童的個人資料。如果您未滿16歲，請勿向我們發送您的個人資料，包括但不限於您的姓名、地址、電話號碼或電郵地址。如果您認為我們可能擁有任何16歲以下（或您所在地區法律規定的任何其他兒童年齡）兒童的資訊，您可以發送電子郵件至[email protected]（請在郵件標題中註明「Glenti」），或將掛號信寄至Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（收件人：Starii法務部門）。如果我們發現收集了16歲以下（或您所在地區法律規定的任何其他年齡）兒童的個人資料，我們將立即採取措施刪除此類資訊並終止相關帳戶。

跨境資料傳輸

根據您作為用戶所在的司法管轄區，並受本政策中規定的該司法管轄區的特殊規則和政策的約束，您了解並同意，所有透過我們或由我們收集的資訊可能會被轉移、處理和儲存在世界任何地方，包括但不限於中華人民共和國香港特別行政區（「香港」）、日本、韓國、新加坡、美國、歐盟、雲端、我們的伺服器、我們關聯公司的伺服器或我們服務供應商的伺服器，以便提供我們的服務。

適用法律

本政策根據香港法律制定、生效、執行並按其解釋，無須理會法律衝突原則。由此產生的任何爭議一律按照《服務條款》解決。我們不聲明或保證本政策符合任何司法管轄區的私隱權法。因此，您不應根據該等法律解釋本政策。

本政策的修訂

您同意我們可以根據相關法律法規或基於我們的業務決策更新本政策，並且您同意受本政策任何此類修訂的約束。我們將在Glenti 上發有本政策的任何重大變更，或根據法律要求經由其他方式通知您。

歐盟及英國用戶

對於我們在歐洲《通用數據保障條例》和英國《通用數據保障條例》（統稱「 GDPR 」）範圍內處理個人資料的情況，您可以在下文GDPR聲明中查閱有關處理您的個人資料的相關詳情。

日本用戶

揭露、更正、刪除或暫停使用資料的權利

如果您身處日本，作為資料當事人，您有權要求披露、更正、刪除或暫停使用您的個人資料，我們有義務立即滿足您的要求。您可以將您的要求透過電子郵件發送至[email protected]（請在郵件標題中註明「Glenti」），或郵寄至Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（收件人：Starii法務部門）。

韓國用戶

國際資料傳輸

我們只會在在「我們如何使用資訊」中指定的範圍內處理用戶的個人資料，原則上不會將用戶的個人資料提供給第三方。然而，一經您同意，為了向您提供「資訊分享與披露」一節所述的服務，我們可能會從其他地方收集您的個人資料，將其傳輸至其他地方，並在其他地方儲存和處理。

• 傳輸的個人資訊：請參閱本政策上文「我們收集的資訊」部分

• 轉移日期和方式：提交予儲存和處理時轉移

• 個人資料傳輸的國家/地區：新加坡

• 個人資訊的保留：請參閱本政策上文「資料保留」部分

此外，我們可能會將您的個人資料轉移給位於韓國境外的以下第三方：

當我們在您居住地以外共享資訊時，我們確保該傳輸符合您當地的法律，以便您的個人資訊得到充分保護。

您可聯絡我們負責個人資料保護的部門（如下所述）拒絕上述個人資料的海外傳輸。如果您拒絕上述個人資料的海外傳輸，我們會將您的個人資料排除在可作海外傳輸的個人資料範圍之外。但是，在這種情況下，我們可能會限制您使用需要將個人資料轉移到海外的我們的服務。

此外，我們可能會從以下第三方收到您的個人資料：

資料保留

根據適用法律、法規和規章，以及當實現我們業務或法律目的，我們將在您終止我們的帳戶後立即刪除您的資訊（包括您的個人資料）。我們將根據以下程序和方法銷毀您的個人資料。

1. 銷毀程序：我們選擇需要銷毀的個人資料，並在獲得我們資訊保護專員的批准後銷毀。

2. 銷毀方法：我們將以可刪除的方式銷毀以電子方式儲存和歸檔的個人資料，銷毀方式應盡可能使記錄無法恢復。

個人資料保護及投訴處理部門

Starii Tech Pty Ltd

Attn: Arthur Law, Head of Legal Department
Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

電郵：[email protected]（請在電郵標題註明「Glenti」）

私隱權政策修訂記錄

不適用

美國用戶

您同意我們可以使用臉部辨識技術從您提供的相片或影像中收集生物特徵資訊。我們可能會使用此類資訊來提供和改進服務，以及作我們的內部研究之用。如果您的生物特徵資訊受《伊利諾伊州生物特徵資訊私隱法》的約束，我們將在您最後一次與服務互動後三年內刪除您的生物特徵資訊。

根據適用法律，您可能有權：

1. 確認我們是否正處理您的個人資料；

2. 取得對您個人資料的存取權或您個人資料副本以及隨附的詳細資料；

3. 接收您提供給我們的個人資料的電子副本，或要求我們將該資訊發送給其他公司（即資料可攜帶權）；

4. 更正您的個人資料；

5. 要求退出某些處理活動，包括（如適用）我們是否為「定向廣告」處理您的個人資料（以適用私隱法對「定向廣告」的定義為準），我們是否「出售」您的個人資料（以適用私隱法對「出售」的定義為準），或者我們是否參與分析以促進某些對您產生法律或類似重大影響的決定；

6. 要求我們刪除所持有的關於您的個人資料；以及

7. 對我們拒絕處理您的請求的決定提出上訴。

如果您想行使適用隱私權法律下的任何權利，請透過電子郵件[email protected]聯繫我們的資料保護官（請在郵件標題中註明「Glenti」），或透過將掛號信寄至 Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（收件人：Starii法務部門）。我們將根據適用法律處理此類請求。

如果您是維珍尼亞州居民，並希望就您的請求對我們作出的決定提出上訴，您可以告知我們，並提供支持您上訴的資訊。

以下段落僅適用於我們根據《加州消費者私隱法案》（不時修訂）（「 CCPA 」）處理您的個人資料。

CCPA賦予加州居民權利得知我們收集了其哪些類別的個人資料，以及我們在過去十二個月內有否出於商業目的披露該等個人資料（例如向服務供應商）。加州居民可以在下文找到這些資訊：

我們收集個人資料的來源類別，以及我們使用和揭露個人資料的業務和商業目的，分別在上文「我們收集的資訊」、「我們如何使用資訊」、以及「資訊分享與揭露」中列載。我們將根據上述「資料保留」中規定的期限保留個人資料。

在過去十二個月中，我們沒有「出售」任何個人資料（以CCPA的定義為準），亦沒有實際得悉任何「出售」16歲以下未成年人士個人資料的行為。

在過去十二個月中，我們沒有為「跨平台行為式廣告」（以CCPA對此類術語的定義為準）而「分享」任何個人資料，亦沒有實際得悉任何為「跨平台行為式廣告」而「分享」16歲以下未成年人士個人資料的情況。

我們只會出於以下目的使用和揭露敏感個人資料：

1. 提供服務。

2. 預防、偵測和調查危及所儲存或傳輸的個人資料可用性、真實性、完整性和/或機密性的安全事件。

3. 抵制針對我們的惡意、欺騙、欺詐或非法行為，並起訴相關行為的責任者。

4. 確保自然人的人身安全。

5. 驗證或維護我們產品、服務或裝置的品質或安全，並改善、提升或增強我們的服務或設備。

6. 用於不會推斷個人特徵的目的。

加州居民有權不因行使《加州消費者私隱法》(CCPA) 賦予的權利而受到我們的歧視性待遇。

為保護您的私隱，我們將在執行根據《加州消費者私隱法》(CCPA) 提交的請求之前，採取措施合理地驗證您的身分。這些步驟可能涉及要求您提供充足資訊，以便我們合理地驗證您是我們收集個人資料的對像或其授權代表。我們的驗證流程例子可能包括要求您提供與您關聯的電郵地址或電話號碼，並提供發送至您電郵地址或電話號碼的驗證碼。

只有您或經合法授權代表您行事的人員，才可以提出與您的個人資料相關的可驗證消費者要求。如需授權代理，請提供由您和指定代理簽署的書面授權，並使用上文「私隱權」中的資訊聯絡我們，以取得進一步指示。

我們不會「出售」個人資料，也不會為了「跨平台行為式廣告」而「分享」個人資訊，因此我們不會回應用戶希望選擇退出的要求。

如果您是內華達州居民，我們不會「出售」您的個人資料。

GDPR 聲明

在提供服務的過程中，我們會處理個人資料。

如果GDPR適用於我們對您個人資料的處理，我們只會根據GDPR處理個人資料。在我們上述（一般）私隱權政策中，您可以找到有關GDPR何時適用於我們處理個人資料的資訊。本GDPR聲明為上述（一般）私隱權政策的補充，並載有我們根據GDPR處理您的個人資料的詳情。

1. 控制者的資料

   1. 控制者的身分和聯絡方式

Starii Tech Pty Ltd

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. 控制者代表的身分和聯絡方式

歐盟

Rivacy GmbH

Mexikoring 33

22297 Hamburg

德國

[email protected]

英國

Rivacy Limited

St James' Hall, Mill Road

Lancing, West Sussex BN15 0PT

英國

3. 控制者的資訊保護專員聯絡方式

Starii Tech Pty Ltd

法務部

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. 關於個人資料處理的資訊

   1. 所處理的個人資料詳情

1. 個人資料處理詳情

2. 個人資料接收者以及將個人資料轉移至第三國家/地區和/或國際組織的詳情

為了支援我們的全球業務營運，我們可能會將您的個人資料跨境轉移給我們的關係企業和以下第三方。

如果您的個人資料被轉移到位於歐洲經濟區、英國或瑞士以外的司法管轄區，我們將確保採取適當的保障措施。這些措施可能包括：

1. 歐盟委員會對收件人所在國家/地區有適足性認定；

2. 我們已根據GDPR第46(2)(c)條與接收方簽訂所謂的標準資料保護條款（或其在英國和瑞士的核准同等條款）；

3. 在某些情況下，我們依賴適用法律下提供的豁免以及適用法律要求的措施來保障您的資料安全。

如需查詢我們對跨境資料傳輸的保障措施，請使用第I節中的聯絡資訊與我們聯繫。

3. 使用 Cookie 或類似技術的資訊

以下這一節的內容目前僅與 Cookie 有關。如果使用類似技術（瀏覽器指紋、本機儲存、工作階段儲存等），本節則會相應進行調整。

我們在提供我們的服務時使用 Cookie。為此，我們使用您的裝置和/或裝置瀏覽器的處理和儲存功能，並從您的裝置和/或裝置瀏覽器的記憶體收集資訊。

您將在下文找到此方面的詳細資訊。

1. Cookie 一般資訊

Cookie 是載有資訊的小型文字檔案，可在用戶使用應用程式或造訪網站時，放置在用戶的裝置上。當使用相同裝置再次使用或造訪相關應用程式或網站時，Cookie 及其載有的資訊即可被提取 。

a) 第一方 Cookie 和第三方 Cookie

根據 Cookie 的來源，可以分為第一方 Cookie 及第三方 Cookie：

b) 暫存 Cookie 和長效 Cookie

根據 Cookie 有效時間的長短，可以分為暫存 Cookie 和長效 Cookie ：

c) 無需同意的 Cookie 和需要同意的 Cookie

根據 Cookie 的功能和使用目的，某些 Cookie 需要用戶同意。因此，可以分為需要用戶同意的 Cookie 和無需用戶同意的 Cookie ：

2. 管理我們的應用程式/網站上使用的Cookie

1. 在我們的應用程式和網站的資料保護設定中授予或撤回對使用 Cookie 的同意

如果使用某些 Cookie 需要徵得您的同意，在您已事先對其授予同意的情況下，我們才會使用這些 Cookie。您可以在本私隱權政策第 III. 3. 節，有關我們的服務所使用的 Cookie 的資訊中，找到有關使用特定 Cookie 是否需要同意的資訊。

您無法在我們的應用程式或網站的資料保護設定中停用絕對必要 Cookie。但是，您通常可以隨時在您的應用程式或瀏覽器中停用這些 Cookie。

2. 使用裝置/瀏覽器設定管理 Cookie

您亦可以在您的裝置設定或瀏覽器設定中管理 Cookie 的使用。不同瀏覽器配置 Cookie 設定的方式有所不同。您可以在網上找到這方面更詳細的資訊，例如在 http://www.allaboutcookies.org/manage-cookies/。

然而需注意的是，如果您在裝置上全面停用 Cookie，我們的應用程式或網站的某些功能可能無法正常運作或完全無法運作。

1. 我們的應用程式/網站上使用的Cookie

以下Cookie可能會在我們的應用程式/網站上使用：

4. 資料當事人權利資訊

作為資料當事人，您對您的個人資料的處理擁有以下權利：

• 存取權（GDPR 第 15 條）

• 更正權（GDPR 第 16 條）

• 清除權（「被遺忘權」）（GDPR 第 17 條）

• 限制處理權（GDPR 第 18 條）

• 資料可攜帶權（GDPR 第 20 條）

• 反對權（GDPR 第 21 條）

• 撤回同意權（GDPR 第 7 (3) 條）

您可以使用第 I 節的聯絡資訊聯絡我們，以行使這些權利。

在適用的情況下，您可以在本 GDPR 聲明第 II 節有關個人資料處理的資訊中，找到有關能夠幫助您行使權利的任何特定模式和機制的資訊，尤其是行使資料可攜帶權和反對權。

您亦有權向監管機構提出申訴（GDPR 第 77 條）。

以下是您在個人資料處理方面擁有的權利的詳細資訊：

1. 存取權

根據 GDPR 第 15 條列明的條件，作為資料當事人，您有權獲得存取和資訊。

這表示您有權向我們取得有關我們是否處理您的個人資料的確認。如果是，您亦有權存取 GDPR 第 15 (1) 條列明的個人資料及資訊。這包括下列資訊：處理目的、處理的個人資料的類別，以及已經向其披露或將向其披露個人資料的接收者或接收者的類別（GDPR 第 15 (1) (a)、 (b) 及 (c) 條）。

您可以在 GDPR 第 15 條找到有關您的存取權和資訊獲取權的完整範圍。

2. 更正權

根據 GDPR 第 16 條列明的條件，作為資料當事人，您擁有更正權。

這表示您有權要求我們即時更正您的個人資料中不準確之處，以及補充不完整的個人資料。

您可以在 GDPR 第 16 條找到有關您的更正權的完整範圍。

3. 清除權（「被遺忘權」）

根據 GDPR 第 17 條列明的條件，作為資料當事人，您擁有清除權（「被遺忘權」）。

這表示您有權要求我們清除您的個人資料，並且當 GDPR 第 17 (1) 條所列明的任何一個原因適用時，我們有義務即時清除您的個人資料。其中一種可能情況是例如就收集或處理這些個人資料的目的而言，已不再需要這些個人資料（GDPR 第 17 (1) (a) 條）。

如果我們已經公開個人資料並且有義務清除，我們亦有義務在考慮到現有技術和執行成本的情況下，採取合理行動（包括技術措施）通知處理個人資料的控制者，您已要求該控制者清除任何導向這些個人資料的連結，或這些個人資料的副本或複本（GDPR 第 17 (2) 條）。

若因 GDPR 第 17 (3) 條所列明的任何一個原因而需要處理，清除權（「被遺忘權」）則不適用。其中一種可能情況是例如處理對於履行法律義務是必要的，或對於建立、行使或抗辯法律申索是必要的（GDPR 第 17 (3) (b) 及 (e) 條）。

您可以在 GDPR 第 17 條找到有關您的清除權（「被遺忘權」）的完整範圍。

4. 限制處理權

根據 GDPR 第 18 條列明的條件，作為資料當事人，您擁有限制處理權。

這表示如果 GDPR 第 18 (1) 條列明的任何一個條件適用，您有權限制我們的處理。其中一種可能情況是例如您對個人資料的準確性有異議。在這種情況下，對處理的限制將維持一段時間，讓我們能夠驗證個人資料的準確性（GDPR 第 18 (1) (a) 條）。

限制代表將已儲存的個人資料標記，目標是限制未來對其的處理（GDPR 第 4 (3) 條）。

您可以在 GDPR 第 18 條找到有關您的限制處理權的完整範圍。

5. 資料可攜帶權

根據 GDPR 第 20 條列明的條件，作為資料當事人，您擁有資料可攜帶權。

這表示，如果處理是基於符合 GDPR 第 6 (1) (a) 條或第 9 (2) (a) 條的同意，或基於根據 GDPR 第 6 (1) (b) 條訂立的合約，而且處理是以自動化方式進行（GDPR 第 20 (1) 條），您通常有權以結構化、常用和機器可讀的格式接收您提供給我們的個人資料，並且有權將這些資料傳輸給另一個控制者，而不會受到我們阻礙。

您可以在本 GDPR 聲明第 II 節有關處理的法律依據的資訊中，找到有關任何一項處理是否基於符合 GDPR 第 6 (1) (a) 條或第 9 (2) (a) 條的同意，或基於根據 GDPR 第 6 (1) (b) 條訂立的合約的相關資訊。

在行使資料可攜帶權時，您通常亦有權在技術可行的情況下，要求我們直接將您的個人資料傳輸給另一個控制者（GDPR 第 20 (2) 條）。

您可以在 GDPR 第 20 條找到有關您的資料可攜帶權的完整範圍。

6. 反對權

根據 GDPR 第 21 條列明的條件，作為資料當事人，您擁有反對權。

最遲在我們與您第一次通訊時，我們會明示告知您作為資料當事人所擁有的反對權。

以下是此方面的更多詳細資訊：

以資料當事人的特定情況為理由而提出反對的權利

作為資料當事人，您有權以您的特定情況為理由，隨時反對基於 GDPR 第 6 (1) (e) 或 (f) 條的對您的個人資料的處理，包括基於這些規定的個人檔案分析。

您可以在本 GDPR 聲明第 II 節有關處理的法律依據的資訊中，找到有關任何一項處理是否基於 GDPR 第 6 (1) (e) 或 (f) 條的相關資訊。

如果您就您的特定情況提出反對，我們將不再處理您的個人資料，除非我們能夠為處理提出令人信服的合法理由，而其能夠凌駕於您的權益、權利和自由之上，或是為了建立、行使或抗辯法律申索。

您可以在 GDPR 第 21 條找到有關您的反對權的完整範圍。

反對直接市場推廣的權利

就您的個人資料被處理用於直接市場推廣目的之情況，您有權隨時反對您的個人資料被處理用於此類市場推廣，包括與此類直接市場推廣相關的個人檔案分析。

您可以在本 GDPR 聲明第 II 節有關處理的法律依據的資訊中，找到有關個人資料是否以及在什麼程度上被處理用於直接市場推廣的資訊。

如果您反對為直接市場推廣目的而進行的處理，我們將不再為這些目的處理您的個人資料。

您可以在 GDPR 第 21 條找到有關您的反對權的完整範圍。

7. 撤回同意權

就任何一項基於符合 GDPR 第 6 (1) (a) 條或第 9 (2) (a) 條的同意的處理，作為資料當事人，您有權隨時根據 GDPR 第 7 (3) 條撤回您的同意。您撤回同意不會影響在撤回之前基於您的同意而進行的處理的合法性。我們會在您授予同意之前告知您這一點。

您可以在本 GDPR 聲明第 II 節有關處理的法律依據的資訊中，找到有關任何一項處理是否基於 GDPR 第 6 (1) (a) 條或第 9 (2) (a) 條的相關資訊。

8. 向監管機構提出申訴的權利

根據 GDPR 第 77 條列明的條件，作為資料當事人，您有權向監管機構提出申訴。

專責我們的監管機構是：

Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit

Ludwig-Erhard-Str 22, 20459 Hamburg

電郵：[email protected]

電話：+49 40 42854-4040

資訊專員辦事處，
電郵：[email protected]，
電話：0

5. 本 GDPR 聲明使用的 GDPR 術語的資訊

本 GDPR 聲明使用的資料保護相關術語採用《通用資料保護條例》所採用的含義。

您可以在 GDPR 第 4 條找到《通用資料保護條例》的定義的完整內容。

本 GDPR 聲明使用的《通用資料保護條例》中最重要的術語的更多詳細資訊如下：

「個人資料」是指與已識別或可識別的自然人（「資料當事人」）有關的任何資訊；可識別的自然人是指可直接或間接識別的人，尤其是透過參考識別符，例如姓名、身份證號碼、位置資料、網上識別符等，或透過參考該自然人的身體、生理、遺傳、心理、經濟、文化或社會身份的一個或多個特定元素；

「資料當事人」是指個人資料所指涉的已識別或可識別的自然人；

「處理」是指對個人資料或多組個人資料進行任何操作或任何一組操作，無論是否透過自動化方式，例如收集、記錄、組織、建構、儲存、調整或變更、提取、查閱、使用、透過傳輸、傳播或以其他方式提供而披露、對照或組合、限制、清除或銷毀；

「個人檔案分析」是指對個人資料進行任何形式的自動化處理，包括使用個人資料評估與自然人有關的某些個人方面，尤其是分析或預測與該自然人的工作表現、經濟狀況、健康狀況、個人偏好、興趣、可靠度、行為、位置或動向有關的方面；

「控制者」是指單獨或與他人一同決定個人資料處理目的和方式的自然人或法人、公共主管當局、機構或其他團體；如果此類處理的目的和方式由聯盟或成員國法律決定，那麼控制者或其提名的特定標準可由聯盟或成員國法律規定；

「處理者」是指代表控制者處理個人資料的自然人或法人、公共主管當局、機構或其他團體；

「接收者」是指個人資料被披露予的自然人或法人、公共主管當局、機構或其他團體，不論是否為第三方。但是，根據聯盟或成員國法律而在特定調查框架內接收個人資料的公共主管當局不應視為接收者；這些公共主管當局對這些資料的處理應根據處理目的遵守適用的資料保護規則；

「第三方」是指資料當事人、控制者、處理者之外的自然人或法人、公共主管當局、機構或團體，並是在控制者或處理者的直接授權下，獲授權處理個人資料的人員；

「國際組織」是指受國際公法管轄的組織及其附屬團體，或由兩個或多個國家/地區之間達成的協議設立或基於該協議設立的任何其他團體；以及

「第三國家/地區」是指歐洲聯盟（「EU」）成員國或歐洲經濟區（「EEA」）成員國或英國以外的國家/地區。

巴西用戶

處理資料的法律依據

如果您位於巴西，我們處理您的個人資訊可能依賴的法律依據是：

1. 同意（您已同意）；

2. 合同（為履行與您簽訂的合同而需要處理，例如，運營網站或提供您要求的任何服務）；

3. 法律義務（遵守法律、規定、條例或政府部門、司法機關或執法部門的要求）；以及

4. 為了防止詐欺和為了保護信用的目的。

如果您對我們處理您個人資料的合法依據有任何疑問，請與我們聯絡：[email protected]（請在電郵標題註明「Glenti」） 。

資料披露、更正、清除或暫停使用、可攜帶性及撤回同意的權利

如果您位於巴西，作為資料當事人，您有權就您的個人資料要求披露、更正、清除、暫停使用或可攜帶性，以及有權撤回同意並獲告知此類撤回可能帶來的負面後果，並獲告知我們與哪些公共和私人實體分享了您的個人資料，而我們有義務即時滿足您的要求。您可以將您的要求透過電子郵件發送至[email protected]（請在郵件標題中註明「Glenti」），或郵寄至Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（收件人：Starii法務部門）。

敏感個人資訊

如果您位於巴西，您了解並同意，為了能夠提供我們的服務給您，我們可能會收集敏感個人資訊，例如照片或語音資料中人物的面部特徵、性別、年齡，以及照片或語音資料中含有的其他元素。

代表

如果您在巴西，您可以透過電子郵件[email protected]聯繫我們的資料保護官（請在郵件標題中註明「Glenti」），或郵寄至Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（收件人：Starii法務部門）。

國際資料傳輸

為了提供我們的服務給您，我們可能會在其他地方收集、轉移、儲存和處理您的個人資訊。

• 傳輸的個人資訊：請參閱本政策上文「我們收集的資訊」部分

• 轉移日期和方式：提交予儲存和處理時轉移

• 個人資料傳輸的國家/地區：新加坡

• 個人資訊的保留：請參閱本政策上文「資料保留」部分

當我們在您居住地以外共享資訊時，我們確保該傳輸符合您當地的法律，以便您的個人資訊得到充分保護。

資料保留

根據適用法律、規定和條例以及實現我們的商業或法律目的，我們將在繼續向您提供我們的服務所需的限期內保留您的資訊（包括您的個人資訊），以及根據《巴西民事核心法》、《LGPD》（巴西通用個人資料保護法律）、《巴西互聯網民權框架》和《巴西消費者保護法》規定的限制期間保留您的資訊。

當您的個人資訊不再必要時，我們將立即銷毀您的個人資訊。在銷毀您的個人資訊時，我們將採取商業上合理並且技術上可行的措施，確保個人資訊已永久刪除。

服務終止後，我們可能會將您的個人資訊保留以遵守法律或監管義務、轉移給第三方（前提是符合 LGPD 規定的資料處理要求），以及僅供我們使用（前提是資訊將被匿名化）。

法律選擇

如果您是巴西居民，本政策將根據巴西法律執行和解釋。

越南用戶

如果您是越南用戶，本節將補充並構成本政策的組成部分，並根據越南適用法律和條例制定，包括關於個人資料保護的第 13/2023/ND-CP 號法令（不時修訂），以及其他相關法律、條例、監管要求和國家標準，其管轄或以其他方式與使用我們的服務期間的個人資訊處理相關（統稱為「越南私隱權條例」）。

除非另有明確列明，否則本節的條款與本政策定義的含義相同。如果本節的條款與本政策正文的條文有任何衝突，則以本節的條款為準。

我們收集的資訊

在本政策中，「個人資訊」或「個人資料」是指在電子媒體上以符號、字母、數字、圖像、聲音或類似形式存在的任何資訊，其與特定個人相關聯或有助識別特定個人。個人資訊包括基本個人資料和敏感個人資料。

我們收集的一些個人資訊可能構成「敏感個人資料」。這是指與您的私隱相關的個人資料，而一旦被侵害，將直接影響您的合法權利及權益。我們收集和處理的敏感個人資料包括但不限於語音資訊和面部特徵資訊。

處理範圍

本政策解釋我們如何「處理」您的個人資訊。這包括我們如何收集、記錄、分析、驗證、儲存、更正、披露、關聯、存取、提取、撤銷、加密、解密、複製、分享、傳輸、提供、轉移、刪除、銷毀或採取其他與您的個人資訊有關的操作。

我們處理您個人資訊的法律依據

我們只會在有法律依據的情況下才會處理您的個人資訊。在大多數情況下，我們會在獲得您的同意後，才為本政策列出的目的處理您的個人資訊。

您的個人資訊也可能在以下情況下被處理，而無需徵得您的同意，包括：

1. 在緊急情況下，為保護您或他人的性命和健康，需要立即處理相關的個人資訊；

2. 依法披露個人資訊；

3. 在以下情況下由國家主管部門處理個人資訊：因國防、國家安全、社會秩序和安全、重大災難或危險疫情而進入緊急狀態的情況；或面對安全和國防威脅的風險，但未達需要宣布進入緊急狀態的情況；防範和打擊暴動和恐怖主義，或依法防範和打擊犯罪和違法行為；

4. 依法與相關機構、組織、個人履行與您訂立的合約下的義務；

5. 按專門法律的規定提供予國家機關活動；以及

6. 法律規定的其他情況。

您的權利

根據適用的越南私隱權條例，就您向我們披露的個人資訊，您擁有以下權利：

• 知情權：您有權知悉與您個人資訊相關的資料處理活動，除非法律另有規定。

• 同意權：您有權同意（或不同意）處理您的個人資訊，但以下情況除外：

• 在緊急情況下，為保護您或他人的性命和健康，需要立即處理相關的個人資訊；

• 依法披露個人資訊；

• 在以下情況下由國家主管部門處理個人資訊：因國防、國家安全、社會秩序和安全、重大災難或危險疫情而進入緊急狀態的情況；或面對安全和國防威脅的風險，但未達需要宣布進入緊急狀態的情況；防範和打擊暴動和恐怖主義，或依法防範和打擊犯罪和違法行為；

• 依法與相關機構、組織、個人履行與您訂立的合約下的義務；

• 按專門法律的規定提供予國家機關活動；以及

• 法律規定的其他情況。

  • 存取權：您有權存取您的個人資訊，以查看、更正或要求更正您的個人資訊，除非法律另有規定。

  • 撤回同意權：您有權撤回對處理您的個人資訊的同意，除非法律另有規定。

  • 刪除權：您有權刪除或要求刪除您的個人資訊，除非法律另有規定。

  • 限制資料處理權：您有權限制對您的個人資訊的處理，除非法律另有規定。限制將在您提出要求後 72 小時內執行，除非法律另有規定。

  • 提供資料權：您有權要求我們提供您的個人資訊給您，除非法律另有規定。

  • 反對權：您有權反對我們處理您的個人資訊，以防止或限制披露您的個人資訊，或將其用於廣告和市場推廣目的，除非法律另有規定。我們將在收到此類要求後 72 小時內滿足您的要求，除非法律另有規定。

  • 投訴、告發和提出訴訟權：您有權依法投訴、告發和提出訴訟。

  • 索償權：如發生違反適用法律的情況，您有權依法索取賠償，但法律另有規定或您與我們另有約定的情況除外。

  • 自衛權：您有權根據適用法律進行自衛，或根據越南民法典第 11 條的規定，要求相關機構和組織保護您的公民權利。

若要行使您的任何權利，或者如果您對我們處理您的個人資訊有任何疑問，請透過本政策開首列出的聯絡資訊傳送請求給我們。請注意，為了處理此請求，我們可能會要求您提供額外資訊給我們，以確認您的身份。

您的義務

根據適用的越南私隱權條例，就您向我們披露的個人資訊，您具有以下義務：

• 保護自己的個人資訊，並要求相關組織和個人保護您的個人資訊；

• 尊重和保護其他資料當事人的個人資訊；

• 在您同意處理的情況下，提供您的完整及準確的個人資訊；

• 參與傳播個人資訊保護技巧；以及

• 遵守個人資訊保護法律的條文

保留限期

我們將從您存取或使用我們的服務時開始處理您的個人資訊，而處理時間不會超過本政策列明的目的所需的時間。

如果我們根據法律義務或為了遵守法律義務而需要處理您的個人資訊，我們將在遵守該義務所需的時間內保留您的個人資訊。在適用的資料保留限期到期或法律要求時，我們將刪除您的個人資訊。

參與處理您的個人資訊的組織

我們可能會向第三方披露您的個人資訊，以根據「我們如何使用資訊」和「資訊分享與披露」兩節中列明的目的進行處理。其中一些第三方可能位於越南境外。與處理您的個人資訊相關或參與處理您的個人資訊的第三方包括：

• 提供服務以協助我們進行業務活動的服務供應商，包括參與提供廣告、付款處理、客戶服務、履行訂閱服務、研究和分析，以及雲端計算基礎架構的服務供應商；

• 社交媒體平台營運商，若您選擇在社交媒體平台上分享照片和/或影片；

• 執法機關、公共主管當局及監管機構；

• 我們的聯屬公司；以及

• 任何其他第三方，為了「資訊分享與披露」一節所列明的目的。

語言

本私隱權政策以英文編制和起草，但可能翻譯成其他語言（包括但不限於越南語）。如果本協議的英文版本與任何翻譯版本之間有任何衝突，則以英文版本為準。

Privacy Policy

Last Modified: June 9, 2026

Your privacy is important to us.

Starii Tech Pty Ltd and its affiliates (“we”, “us” or “our” or “Starii”) are dedicated to protecting the privacy of our users (“users” or “you”). This Privacy Policy (this “Policy”) is meant to explain our practices regarding how we collect, store, use, manage and protect your user information (including your personal information) as a controller and/or business under applicable data protection laws during your use of Glenti application and/or its website including all its features (our “Services”). For the purpose of this Policy, the term “affiliates” shall mean any entity which directly or indirectly controls, is controlled by, or is under common control with Starii Tech Pty Ltd. For the purpose of the foregoing, “control” shall mean (i) the direct or indirect ownership of more than 50 per cent of the outstanding voting securities or capital stock of such entity or other comparable equity or ownership interest, or (ii) the control of management decisions and economic interests of the entity by way of contractual arrangements.

Please note that the scope of this Policy is limited solely to your user information (including your personal information) collected or received by us when you are using our Services. In this Policy, “personal information” refers to any information or combination of information that can be used to identify, contact or locate an individual to whom the collected information pertains.

IF YOU ARE A USER LOCATED OUTSIDE THE EU/UK, BY USING OUR SERVICES, YOU ARE AGREEING TO THIS POLICY AND THE COLLECTION, USE, PROCESSING, RETENTION, DISCLOSURE AND SHARING OF YOUR USER INFORMATION, INCLUDING YOUR PERSONAL INFORMATION, IN THE MANNER PROVIDED IN THIS POLICY, TO THE EXTENT PERMITTED UNDER APPLICABLE LAWS. IF YOU DO NOT AGREE WITH ANY OF THE TERMS OF THIS POLICY OR ANY SUBSEQUENT CHANGES TO THIS POLICY, PLEASE DO NOT USE OUR SERVICES.

Please note that it is mandatory for you to provide certain categories of data (as specified at the time of collection) when using our Services. In the event that you do not provide any or sufficient data marked as mandatory, we may not be able to complete the registration process or provide you with our Services. Also, please note that, unless we define a term in this Policy, all capitalized terms used in this Policy have the same meanings as in our Terms of Service. So, please make sure that you have read and understand our Terms of Service.

If you have any questions regarding this Policy or any privacy-related matters, please contact our Data Protection Officer via email at [email protected] (please quote “Glenti” in your email title) or via registered mail at Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (attention: Legal Department, Starii). Please note that for all other enquiries, feedback, suggestions and/or complaints not related to privacy or intellectual property infringement (including but not limited to any cancellation of subscription, payment disputes, refund requests and technical support of Glenti), you should contact us via email at [email protected]. If your email is sent to an incorrect email address, relating to an incorrect subject matter, it may lead to a potential delay or failure in processing your requests properly.

THE INFORMATION WE COLLECT

In order to provide and improve our Services, we will collect and process your personal information and user information in accordance with this Policy. If you do not provide this information, we may be unable to provide you with our products or Services. You should ensure that all personal information and user information submitted to us is complete, accurate, true and correct. Failure on your part to do so may result in our inability to provide you with all or some of our Services.

Account Information

When you use our Services, we might recommend you sign up for an account with us to take full advantage of our Services and all their features. When you create an account, we will collect the following information, that can be used to identify you or provide our Services to you:

• Mandatory: e-mail address

• Optional: username, gender

Anyone can access our Services, but there are certain services that require a subscription fee, such as accessing to our premium content and enjoying privileges (“Subscription Service”). If you choose to make a purchase on our Subscription Service, we will collect certain personally identifiable information, such as your device ID. A third-party app store or payment processor may receive, access or use your financial information and billing address for the purpose of processing transactions and renewals. If you purchase content or sign up for Subscription Services through a third-party app store or a payment processor, you should refer to that third party’s terms for information on how it maintains and uses personal financial information for all purchases. For the avoidance of doubt, we will not collect any financial information from you.

Mobile Device Information

When you use our Services on your mobile device, we will collect information about your device, including its Android ID, User ID (UID), Identifier for Vendor (“IDFV”), Open Anonymous Device Identifier (OAID), the type of device you use, device platform, device manufacturer, device brand, device model, operating system version, and resolution, which will be used by us for statistical and/or analytical reasons, including without limitation to improve our technical functionality, server load-balancing, analysis of technical data relating to your mobile device so as to optimize our Services and graphics adaptation.

As stated below in the “Location Information” section, we may collect your location-based information from your mobile device if you choose to share it with us. If you subsequently wish to stop sharing Location Information, you may do so at any time by editing the relevant setting on your mobile device.

Mobile Analytics

To better understand and improve the functionality of our Services, we will collect information such as how often you use the application, the events that occur within the application, aggregated usage, performance data, and where the application was downloaded from.

Network Data

When you use our Services, we may collect information about the network you use, including the name of the operator and the type of network, so as to understand the distribution of operators and networks used by our users. In addition, we may collect information such as the name of the WiFi network to which you connect, the location of the WiFi network, and the duration of your WiFi connection to understand the environment under which you prefer to use our Services.

Coarse Location Information

We may collect your location-based information from your mobile device if you choose to share it with us.

• Mandatory: IP address and system time zone

• Optional: country code and system country.

This information will help us understand user distribution and usage scenarios and allow us to provide users with the correct version of our app or website, the reappearance of the geo-location or the publishing of the real-time geo-location where you take any photos or shoot any videos, and improve our Services. Unless we obtain your consent, location data WILL NOT BE ACQUIRED or USED to identify you individually. Except as otherwise provided in this Policy, we will not share this Location Information with any third parties. If you no longer wish to allow us to collect or use such information, you may turn off your Internet access, or disable our access to information about your network, and device. Please note that we may still continue to receive some Location Information, such as your Network Information, IP address and system time zone, as a result of you using our Services.

Log Information

When you use some of our Services, including generating and browsing certain content, we will automatically collect certain relevant log information stored in Glenti (“Log Information”). Log Information may include (i) details on when and how often you use our Services, (ii) device statistics, including critical operation paths, errors, crashes, language and time zone. This Log Information is used to improve our Services and is NOT USED to identify our users individually.

Image Information

By choosing to use certain feature of our Services (e.g., cloud editing feature and AI-powered feature), you understand and agree that we must upload your photos to our server for processing before returning processed photos to you for the purposes of providing such service to you and continuous optimization and that we will also receive the EXIF data about your photos (EXIF data may contain equipment type, ISO and information about the front and rear cameras and creation time, depending on the equipment manufacturer) for the purpose of further optimizing our Services, such as providing a better match of photo effects to your equipment. By enabling the camera on Glenti and/or allowing access to photos on your device by us, you agree that we may access, collect and/or use your photos for photo editing.

Voice Information

By enabling the microphone on Glenti, you agree that we may collect your voice data (i.e. audio clips or recordings of your voice) for video editing. We will not use your voice information for advertising purposes. You can turn off Glenti’s access to your microphone on your device at any time using the operating system settings on the device or by muting the microphone on your devices.

Metadata

Metadata refers to technical data associated with user content. Put simply, metadata is data that describes data. For example, metadata can describe the analysis results of facial features, gender, age of the characters in photos and other elements contained in photos, which are generated and tagged by the computer algorithm and artificial intelligence. When you use our Services, we will use photo metadata to provide you with certain features including “Facial Recognition”, “Key-Points Recognition”, “Region Segmentation”, “Content Tags” and other custom features based on a combination of these basic features. We may use your photo metadata to provide you with more suitable filters and better photo effect when our app process your photos; we may also make use of the metadata to serve up a more contextually relevant products or services to you.

Facial Feature Information

In order to provide certain Services, apart from utilizing metadata as mentioned above, we may collect your facial feature information (including but not limited to facial images) and use face recognition technology to recognize faces in photos and camera experiences. We may detect and use facial marks to provide face recognition contents and facial manipulation features. Our Services may utilize calculation results of certain AR technologies in relation to depth of facial mapping information, which may require to use your facial recognition features in order to ensure the face image processing effect and perform feature analysis using the algorithm. The information we collect will not be used for identifying a specific person, and is used to provide the mentioned features only. When the content recommendation is finished or upon the closing of the application or website, the facial mapping information is discarded. When you use AI-powered features integrated in our Service, your facial feature information may be shared with our trusted service providers to provide you with the requested service.

We will neither use the results for other purposes, nor capture any data in the file nor upload data to the server for recording purposes.

Cookies

We use “cookies” that store and retrieve information of user’s usage from time to time provide customized Services for each user. Cookies are small amounts of information that the server uses to operate the app/website, sends to the user’s device and are also stored on the hard disk in the user’s device. You may refuse the installation of cookies. Information collected may include information about your Internet Protocol (IP) address, browser type, Internet Service Provider (ISP), referring and exit pages, your operating system, dates and timestamps, and clickstream data.

• Purpose of use of cookies: Cookies are used to provide information optimized for each user by identifying the visit to and use type of each service and website that the user has visited, popular search terms, secure access status, etc.

• Installation, operation and refusal of cookies: You cannot deactivate cookies that are strictly necessary in the data protection settings of our app. For app users, you can turn off “Tracking” permissions on iOS devices or remove your advertising ID on Android devices through the Settings. Also, a user may refuse the installation of cookies by sending an email to [email protected] (please quote “Glenti” in your email title).

• If a user refuses to store cookies, he or she may experience difficulties in using customized Services.

Information Collected Through AI Service Integration

When you use AI-powered features in our Services, we may collect and process personal information that is included in your inputs (such as photos or videos, if you choose to include it) and the generated outputs (which may reflect or incorporate personal information contained in the inputs).

Information Collected by Third Party Services

Our Services provided to you may contain our service provider’s Application Programming Interfaces (APIs) or Software Development Kits (SDKs), which may have tracking tools of such service providers. These third parties may use cookies, APIs and SDKs on our Services and collect and analyze user information. Third parties may access your information such as your device identifiers, region (defined as the location where a given language is used), location information and IP address under their respective privacy policies. If you want to know more about such third parties, you may send an email to [email protected] (please quote “Glenti” in your email title).

Information that You Proactively Provide to Us

When you contact us (including but not limited to our customer support team and Data Protection Officer), we collect the data you provide to us, for example, your contact details (e.g. email address and/or telephone number).

Other Information

We may also collect other information which is not related to your identity. For example, we may collect information on the type and version number of your operating system to better understand system upgrades, we may collect information on your system language for the purpose of language adaptation. If we choose to collect such information, we will do so for the purpose of improving our Services provided to you.

HOW WE USE INFORMATION

In addition to the uses listed above, we collect and use your user information and personal information for the following purposes:

1. Services. To provide, process, maintain, improve and develop our Services provided to you, including customer support, and other services provided through our products. It includes providing the correct version of our Services based on your coarse location data as well as implementing risk management measures, such as for fraud-prevention, and measures to detect and resolve errors.

2. Statistical analysis. To develop and analyze statistics on the use of our products and Services for the purpose of improving our products and our Services.

3. To create an account. The personal information that we collect when you use our Services to create an account will be used by us to create your account and profile.

4. To verify your identity. To safeguard your privacy and ensure data security, the verification may take place, for example, when you log in to your account or when you contact us to exercise your rights.

5. To collect feedback from you. Your feedback is of great value in helping us improve our Services. To keep track of your feedback, we may use the personal information provided by you to contact you and retain the records.

6. Other purposes. We will collect, store, maintain and use information about you for purposes under the “The Information We Collect”, and for purposes of complying with any applicable rules, laws and regulations, codes of practice or guidelines or to assist in law enforcement and investigations by relevant authorities; maintaining the safe and stable operation of the Services; protecting the security of your account, network, operation, and system, and to prevent phishing, website fraud and Trojan horse viruses; and processing requests.

INFORMATION SHARING AND DISCLOSURE

We may share your information with third parties who provide services on our behalf to help with our business activities. These services may include:

1. Payment processing;

2. Providing customer services;

3. Fulfilling subscription services;

4. Conducting research and analysis; and

5. Providing cloud computing infrastructure.

We will not share with or disclose to third parties (other than our service providers) your personal information in whole or in part except for the purposes of:

1. protecting the security of others or their property;

2. preventing or dealing with fraud;

3. safeguarding our legitimate rights and interests;

4. taking action in line with our purposes as described in the “The Information We Collect” or the “How We Use Information” sections;

5. complying with laws, rules and regulations or requests by government departments, judicial authorities, law enforcement, or private parties, which are typically designed to uphold Internet security and the rights, property and safety of us, our users and third parties; and/or

6. evaluating or completing a transaction where we are involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets, or other event where your information may be sold or transferred.

BASES FOR USING YOUR INFORMATION

We will only collect and process personal information where we have lawful bases and we typically rely on one of the following four legal bases: -

1. consent (where you have given consent);

2. contract (where processing is necessary for the performance of a contract with you, for example, to operate the site or deliver any services you have requested);

3. legitimate interests (for example we need to use your information to provide and improve our Services, including protecting your account, providing customer support). We rely on our legitimate interests as our lawful basis only where those interests are not overridden by the impact on you (unless we have your consent or our processing is otherwise required or permitted by law); and

4. legal obligations (to comply with the laws, rules and regulations or requests by government departments, judicial authorities or law enforcement).

If you have questions about the lawful bases on how we process your personal information, please contact us at [email protected] (please quote “Glenti” in your email title).

THIRD PARTY WEBSITES AND SERVICES

Our Services may contain links to other websites and services. In addition, other websites and services may reference or link to our Services. These other domains and websites are not controlled by us, and we do not endorse or make any representations about third party websites or services. We encourage our users to read the privacy policies of each and every website and service with which they interact. Visiting these other websites or services is at your own risk.

INFORMATION SECURITY

We will take reasonable measures to prevent the loss, improper use of, unauthorized access to or disclosure of information. For example, some of our Services will use encryption techniques (such as SSL) to protect your personal information. However, you understand and accept that (in the Internet industry) even though we take reasonable security measures, we cannot always guarantee that your information is 100% secure. You understand and accept that we cannot ensure or warrant the security of any information you provide to us. We do not accept liability for unintentional disclosure. Further, you understand and accept that the system and communication network used by you to access our Services may fail due to factors beyond our control.

INFORMATION ACCESS AND CONTROL

We will take all reasonable and appropriate technical measures to ensure that you can access, update and correct your personal information or other personal information provided to us by you when using our Services. Before you access, update, correct or remove such personal information, we may verify your identity in order to protect the security of your account.

DATA RETENTION

Subject to applicable laws, rules and regulations and the fulfillment of our business or legal purposes, we will delete your information (including your personal information) promptly upon your termination of your account with us.

PRIVACY RIGHTS

In accordance with applicable law, you may have the right to: (i) request confirmation of whether we are processing your personal information; (ii) obtain access to or a copy of your personal information; (iii) receive an electronic copy of personal information that you have provided to us, or ask us to send that information to another company (“right to data portability”); (iv) object to or restrict our uses of your personal information; (v) seek correction or amendment of inaccurate, untrue, incomplete, or improperly processed personal information; (vi) withdraw your consent; and (vii) request erasure of personal information held about you by us, subject to certain exceptions prescribed by law.

If you wish to exercise your rights, you may send an email to [email protected] (please quote “Glenti” in your email title) or mail your request to Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000(attention: Legal Department, Starii). We will process your request in line with applicable laws within a reasonable period of time after receiving your email or mail, and will cease collecting, using and disclosing your personal information thereafter, subject to certain exceptions prescribed by law. To protect your privacy, we will take steps to verify your identity before fulfilling your request. Please note that if you withdraw your consent or delete your personal information, your use of some of our Services may be affected.

California residents have the right not to receive discriminatory treatment by us for the exercise of their rights conferred by the California Consumer Privacy Act.

INFORMATION ABOUT CHILDREN

We will not knowingly collect or request personal information from children under 16 (or any other age stipulated by law applicable to your region). If you are under 16, please do not send your personal information to us, including but not limited to your name, address, phone number or email address. If you believe we may have any information about children under 16 (or any other age stipulated by law as children applicable to your region), you may send an email to [email protected] (please quote “Glenti” in your email title) or send a registered mail to Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (attention: Legal Department, Starii). If we learn that we have collected personal information from children under 16 (or any other age stipulated by law applicable to your region), we will promptly take steps to delete such information and terminate the associated account.

CROSS-BORDER DATA TRANSFERS

Depending on the jurisdiction in which you are a user of, and subject to the special rules and policy of such jurisdiction as stated in this Policy, you understand and agree that all information collected via or by us may be transferred, processed, and stored anywhere in the world, including but not limited to, the Hong Kong Special Administrative Region of the People’s Republic of China (“Hong Kong”), Japan, South Korea, Singapore, the United States, the European Union, in the cloud, on our servers, on the servers of our affiliates, or the servers of our service providers, in order to provide our Services.

GOVERNING LAW

This Policy is established, comes into force, and will be enforced and interpreted under the laws of Hong Kong, without regard to its conflict of law provisions. Any disputes arising hereunder will also be resolved in accordance with the Terms of Service. We do not represent or warrant that this Policy complies with the privacy law of any jurisdiction. Therefore, you should not interpret this Policy in accordance with such law.

AMENDMENTS TO THIS POLICY

You agree that we may update this Policy according to relevant laws and regulations or based on our business decisions, and you agree to be bound by any such revisions hereto. We will post any significant changes to this Policy on Glenti or notify you by other means as required by law.

FOR USERS IN THE EUROPEAN ECONOMIC AREA AND THE UNITED KINGDOM

For cases in which we process personal information within the scope of the European General Data Protection Regulation and the UK General Data Protection Regulation (collectively, “GDPR”), you will find the relevant details on the processing of your personal information in the GDPR Notice below.

FOR USERS IN JAPAN

Right to data disclosure, correction, erasure or suspension of use

If you are in Japan, as a data subject, you have the right to request the disclosure, correction, erasure or suspension of use of your personal information, and we are obliged to meet your request without undue delay. You may send your request by email to [email protected] (please quote “Glenti” in your email title) or by mail to Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (attention: Legal Department, Starii).

FOR USERS IN SOUTH KOREA

International Data Transfers

We process the personal information of users only within the scope specified under HOW WE USE INFORMATION, and in principle, will not provide personal information of users to a third party. However, with your consent, for purposes of providing our Services described under INFORMATION SHARING AND DISCLOSURE to you, we may collect your personal information from, transfer it to, and store and process it elsewhere.

• Personal information transferred: please refer to the section “The Information We Collect” of this Policy above

• Transfer date and method: transferred on submission for storage and processing

• Country to which personal information is transferred: Singapore

• Retention of personal information: please refer to the section “Data Retention” of this Policy above

Also, we may transfer your personal information to the following third parties located outside of South Korea:

Whenever we share information outside of where you live, we ensure that the transfer complies with your local law so that your personal information is adequately protected.

You may refuse the above overseas transfer of your personal information by contacting our department in charge of protecting personal information as stated below. If you refuse to the said overseas transfer of your personal information, we will exclude your personal information from those subject to overseas transfer. However, in such case, we may restrict your use of our Services that require overseas transfer of personal information.

Also, we may receive your personal information from the following third parties:

Data Retention

Subject to applicable laws, rules and regulations and the fulfillment of our business or legal purposes, we will delete your information (including your personal information) promptly upon your termination of your account with us. We will destroy your personal information according to the following procedures and methods.

1. Procedures for Destruction: We select personal information subject to destruction and destroy them with approval of our data protection officer.

2. Method of Destruction: We will destroy personal information stored and filed electronically in a way that can be deleted by using a means that renders the record irrecoverable as far as possible.

Department in Charge of Protecting Personal Information and Handling Complaints

Starii Tech Pty Ltd

Attn: Arthur Law, Head of Legal Department
Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

Email: [email protected] (please quote “Glenti” in your email title)

History of the Revision of the Privacy Policy

Privacy Policy (updated on May 18, 2026)

FOR USERS IN THE UNITED STATES OF AMERICA

You agree that we may use facial recognition technology to collect biometric information from the photos or images you provide. We may use such information to provide and improve the Service, and for our internal research purposes. If your biometric information is subject to the Illinois Biometric Information Privacy Act, we will delete your biometric information within three years of your last interaction with the Service.

In accordance with applicable law, you may have the right to:

1. confirm whether or not we are processing your personal information;

2. obtain access to or a copy of your personal information with accompanying details;

3. receive an electronic copy of personal information that you have provided to us, or ask us to send that information to another company i.e., right of data portability;

4. correct your personal information;

5. request to opt-out of certain processing activities including, as applicable, if we process your personal information for “targeted advertising” (as “targeted advertising” is defined by applicable privacy laws), if we “sell” your personal information (as “sell” is defined by applicable privacy laws), or if we engage in profiling in furtherance of certain decisions that produce legal or similarly significant effects concerning you;

6. request erasure of personal information held about you by us; and

7. appeal our decision to decline to process your request.

If you would like to exercise any of your rights under the applicable privacy laws, please contact our Data Protection Officer via email at [email protected] (please quote “Glenti” in your email title) or via registered mail at Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000(attention: Legal Department, Starii). We will process such requests in accordance with applicable laws.

If you are a Virginia resident and would like to appeal our decision with respect to your request, you may do so by informing us of this and providing us with information supporting your appeal.

The following paragraphs only apply to our processing of your personal information that is subject to the California Consumer Privacy Act (as amended from time to time) (“CCPA”).

The CCPA provides California residents with the right to know what categories of personal information we have collected about them, and whether we disclosed that personal information for a business purpose (e.g., to a service provider) in the preceding twelve months. California residents can find this information below:

The categories of sources from which we collect Personal Information and our business and commercial purposes for using and disclosing Personal Information are set forth in “The Information We Collect”, “How We Use Information”, and “Information Sharing and Disclosure” above, respectively. We will retain personal information in accordance with the time periods set forth in “Data Retention” above.

In the preceding twelve months, we have not “sold” any personal information (as defined by the CCPA), nor do we have actual knowledge of any “sale” of personal information of minors under 16 years of age.

In the preceding twelve months, we have not “shared” any personal information for “cross-context behavioral advertising” (as such terms are defined in the CCPA), nor do we have actual knowledge of any “sharing” of personal information of minors under 16 years of age for “cross-context behavioral advertising”.

We only use and disclose sensitive personal information for the following purposes:

1. To provide the Services.

2. To prevent, detect, and investigate security incidents that compromise the availability, authenticity, integrity, and or confidentiality of stored or transmitted personal information.

3. To resist malicious, deceptive, fraudulent, or illegal actions directed at us and to prosecute those responsible for those actions.

4. To ensure the physical safety of natural persons.

5. To verify or maintain the quality or safety of our products, Services, or devices, and to improve, upgrade, or enhance our Services or devices.

6. For purposes that do not infer characteristics about individuals.

California residents have the right not to receive discriminatory treatment by us for the exercise of their rights conferred by the CCPA.

To protect your privacy, we will take steps to reasonably verify your identity before fulfilling requests submitted under the CCPA. These steps may involve asking you to provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative. Examples of our verification process may include asking you to provide the email address or phone number we have associated with you and providing a verification code that is sent to your email address or phone number.

Only you, or someone legally authorized to act on your behalf, may make a verifiable consumer request related to your personal information. To authorize an agent, provide written authorization signed by you and your designated agent and contact us using the information in “Privacy Rights” above for additional instructions.

We do not “sell” personal information or “share” personal information for “cross-context behavioral advertising” so we do not respond to opt-out preference signals.

If you are a Nevada resident, we do not “sell” your personal information.

GDPR NOTICE

In context with the provision of the Services we process personal data.

If the GDPR applies to our processing of your personal data, we process personal data only in accordance with the GDPR. In our above (general) Privacy Policy, you find information on when the GDPR applies to our processing of personal data. This GDPR Notice supplements the above (general) Privacy Policy and includes detailed information on our processing of your personal data under the GDPR.

1. Information on the controller

   1. Identity and contact details of the controller

Starii Tech Pty Ltd

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. Identity and contact details of the controller’s representatives

The European Union

Rivacy GmbH

Mexikoring 33

22297 Hamburg

Germany

[email protected]

The United Kingdom

Rivacy Limited

St James’ Hall, Mill Road

Lancing, West Sussex BN15 0PT

United Kingdom

3. Contact details of the controller’s data protection officer

Starii Tech Pty Ltd

Legal Department

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. Information on the processing of personal data

   1. Details on the personal data which are processed

1. Details on the processing of the personal data

2. Details on the recipients of personal data and the transfer of personal data to third countries and/or international organizations

To support our global operations, we may transfer your personal data across borders to our affiliates and the following third parties.

If your personal data is transferred to jurisdictions located outside of the EEA, the UK, or Switzerland, we will ensure that appropriate safeguards are in place. These may include:

1. there is an adequacy decision of the EU Commission for the country where the recipient is located;

2. we have concluded so-called standard data protection clauses pursuant to Art. 46(2)(c) GDPR (or their approved equivalents for the UK and Switzerland) with the recipient;

3. in certain situations, we rely on derogations provided for under the applicable law together with measures required under the applicable law to safeguard the security of your data.

To request information about our safeguards for cross-border data transfers, please contact us using the contact information in Section I.

3. Information on the use of cookies or similar technologies

The following section currently only deals with cookies. If similar technologies (browser fingerprints, local storage, session storage, etc.) are used, this section would have to be adapted accordingly.

We use cookies in connection with offering our Services. In doing so, we use the processing and storage functions of your device and/or your device’s browser and collect information from the memory of your device and/or your device’s browser.

You will find more detailed information on this in the following.

1. General information on cookies

Cookies are small text files with information that can be placed on a user’s device when an app is used or a website is visited. When the relevant app or website is used or visited again with the same device, the cookie and the information it contains can be retrieved.

a) First-party and third-party cookies

Depending on where a cookie comes from, a distinction can be made between first-party cookies and third-party cookies:

b) Transient and persistent cookies

A distinction can be made between transient and persistent cookies depending on how long they remain active:

c) Consent-free cookies and cookies requiring consent

Users’ consent is required for some cookies depending on their function and purpose of use. Thus, a distinction can be made between cookies that require users’ consent and those that do not:

2. Management of the cookies used on our App/website

1. Granting and withdrawing consents to the use of cookies in the data protection settings of App/website

If consent is necessary for the use of certain cookies, we only use these cookies if you have previously granted your consent to this. You can find information as to whether the use of a particular cookie requires consent in the information on the cookies used in our Services in Section III.3. of this Privacy Policy.

You cannot deactivate cookies that are strictly necessary in the data protection settings of our app or website. However, you can generally deactivate these cookies in your app or browser at any time.

2. Managing cookies using device/browser settings

You can also manage the use of cookies in your device’s or your browser’s settings. Different browsers have different ways to configure cookie settings. You can find more extensive information on this, for example at http://www.allaboutcookies.org/manage-cookies/.

However, we would like to point out that some functions of our app or website may not work properly or at all if you deactivate cookies in general on your device.

1. Cookies used on our App/website

The following cookies may be used on our App/website:

4. Information on the rights of data subjects

As a data subject, you have the following rights with regard to the processing of your personal data:

• Right of access (Art. 15 GDPR)

• Right to rectification (Art. 16 GDPR)

• Right to erasure (“right to be forgotten”) (Art. 17 GDPR)

• Right to restriction of processing (Art. 18 GDPR)

• Right to data portability (Art. 20 GDPR)

• Right to object (Art. 21 GDPR)

• Right to withdraw consent (Art. 7 (3) GDPR)

You may contact us for the purpose of exercising these rights using the contact information in Section I.

Where applicable, you find information on any specific modalities and mechanisms which facilitate the exercise of your rights, in particular the exercise of your rights to data portability and to object, in the information on the processing of personal data in Section II of this GDPR Notice.

You also have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR).

Below you find more detailed information on your rights with regard to the processing of your personal data:

1. Right of access

As a data subject, you have a right to obtain access and information under the conditions provided in Art. 15 GDPR.

This means in particular that you have the right to obtain confirmation from us as to whether we are processing your personal data. If so, you also have the right to obtain access to the personal data and the information listed in Art. 15 (1) GDPR. This includes information regarding the purposes of the processing, the categories of personal data that are being processed and the recipients or categories of recipients to whom the personal data have been or will be disclosed (Art. 15 (1) (a), (b) and (c) GDPR).

You can find the full extent of your right to access and information in Art. 15 GDPR.

2. Right to rectification

As a data subject, you have the right to rectification under the conditions provided in Art. 16 GDPR.

This means in particular that you have the right to receive from us without undue delay the rectification of inaccuracies in your personal data and completion of incomplete personal data.

You can find the full extent of your right to rectification in Art. 16 GDPR.

3. Right to erasure (“right to be forgotten”)

As a data subject, you have a right to erasure (“right to be forgotten”) under the conditions provided in Art. 17 GDPR.

This means that you have the right to obtain from us the erasure of your personal data and we are obliged to erase your personal data without undue delay when one of the reasons listed in Art. 17 (1) GDPR applies. This can be the case, for example, if personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed (Art. 17 (1) (a) GDPR).

If we have made the personal data public and are obliged to erase it, we are also obliged, taking account of available technology and the cost of implementation, to take reasonable steps, including technical measures, to inform controllers which are processing the personal data that you have requested the erasure by such controllers of any links to, or copy or replication of those personal data (Art. 17 (2) GDPR).

The right to erasure (“right to be forgotten”) does not apply if the processing is necessary for one of the reasons listed in Art. 17 (3) GDPR. This can be the case, for example, if the processing is necessary for compliance with a legal obligation or for the establishment, exercise or defence of legal claims (Art. 17 (3) (b) and (e) GDPR).

You can find the full extent of your right to erasure (“right to be forgotten”) in Art. 17 GDPR.

4. Right to restriction of processing

As a data subject, you have a right to restriction of processing under the conditions provided in Art. 18 GDPR.

This means that you have the right to obtain from us the restriction of processing if one of the conditions provided in Art. 18 (1) GDPR applies. This can be the case, for example, if you contest the accuracy of the personal data. In such a case, the restriction of processing lasts for a period that enables us to verify the accuracy of the personal data (Art. 18 (1) (a) GDPR).

Restriction means that stored personal data are marked with the goal of restricting their future processing (Art. 4 (3) GDPR).

You can find the full extent of your right to restriction of processing in Art. 18 GDPR.

5. Right to data portability

As a data subject, you have a right to data portability under the conditions provided in Art. 20 GDPR.

This means that you generally have the right to receive your personal data with which you have provided us in a structured, commonly used and machine-readable format and to transmit those data to another controller without hindrance from us if the processing is based on consent pursuant to Art. 6 (1) (a) or Art. 9 (2) (a) GDPR or on a contract pursuant to Art. 6 (1) (b) GDPR and the processing is carried out by automated means (Art. 20 (1) GDPR).

You can find information as to whether an instance of processing is based on consent pursuant to Art. 6 (1) (a) or Art. 9 (2) (a) GDPR or on a contract pursuant to Art. 6 (1) (b) GDPR in the information regarding the legal basis of processing in Section II of this GDPR Notice.

In exercising your right to data portability, you also generally have the right to have your personal data transmitted directly from us to another controller if technically feasible (Art. 20 (2) GDPR).

You can find the full extent of your right to data portability in Art. 20 GDPR.

6. Right to object

As a data subject, you have a right to object under the conditions provided in Art. 21 GDPR.

At the latest in our first communication with you, we expressly inform you of your right, as a data subject, to object.

More detailed information on this is given below:

Right to object on grounds relating to the particular situation of the data subject

As a data subject, you have the right to object, on grounds relating to your particular situation, at any time to processing of your personal data which is based on Art. 6 (1) (e) or (f), including profiling based on those provisions.

You can find information as to whether an instance of processing is based on Art. 6 (1) (e) or (f) GDPR in the information regarding the legal basis of processing in Section II of this GDPR Notice.

In the event of an objection relating to your particular situation, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.

You can find the full extent of your right to objection in Art. 21 GDPR.

Right to object to direct marketing

Where your personal data are processed for direct marketing purposes, you have the right to object at any time to processing of your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing.

You can find information as to whether and to what extent personal data are processed for direct marketing purposes in the information regarding the legal basis of processing in Section II of this GDPR Notice.

If you object to processing for direct marketing purposes, we no longer process your personal data for these purposes.

You can find the full extent of your right to objection in Art. 21 GDPR.

7. Right to withdraw consent

Where an instance of processing is based on consent pursuant to Art. 6 (1) (a) or Art. 9 (2) (a) GDPR, as a data subject you have the right to withdraw your consent at any time pursuant to Art. 7 (3) GDPR. The withdrawal of your consent does not affect the legitimacy of the processing that occurred based on your consent until the withdrawal. We inform you of this before you grant your consent.

You can find information as to whether an instance of processing is based on Art. 6 (1) (a) or Art. 9 (2) (a) GDPR in the information regarding the legal basis of processing in Section II of this GDPR Notice.

8. Right to lodge a complaint with a supervisory authority

As a data subject, you have a right to lodge a complaint with a supervisory authority under the conditions provided in Art. 77 GDPR.

The supervisory authorities responsible for us are:

Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit

Ludwig-Erhard-Str 22, 20459 Hamburg

E-mail: [email protected]

Phone: +49 40 42854-4040

Information Commissioner’s Office
E-mail: [email protected]
Phone: 0303 123 1113

5. Information on the technical terms of the GDPR used in this GDPR Notice

The technical terms relating to data protection used in this GDPR Notice have the meaning used in the General Data Protection Regulation.

The full scope of the definitions of the General Data Protection Regulation can be found in Art. 4 GDPR.

You will find more detailed information on the most important technical terms of the General Data Protection Regulation used in this GDPR Notice below:

“Personal data” means any information relating to an identified or identifiable natural person (”data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

“Data subject” means the respective identified or identifiable natural person, to which the personal data refers to;

“Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;

“Profiling” means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements;

“Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;

“Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;

“Recipient” means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;

“Third party” means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data;

“International organisation” means an organisation and its subordinate bodies governed by public international law, or any other body which is set up by, or on the basis of, an agreement between two or more countries; and

“Third country” means a country which is not a member state of the European Union (”EU”) or the European Economic Area (“EEA”) or the United Kingdom.

FOR USERS IN BRAZIL

Legal basis for processing data

If you are in Brazil, the legal basis for processing your personal information that we may rely on are:

1. consent (where you have given consent);

2. contract (where processing is necessary for the performance of a contract with you, for example, to operate the site or deliver any services you have requested);

3. legal obligations (to comply with the laws, rules and regulations or requests by government departments, judicial authorities or law enforcement); and

4. to prevent fraud and for the purpose of protect credit.

If you have questions about the lawful bases on how we process your personal information, please contact us at [email protected] (please quote “Glenti” in your email title).

Right to data disclosure, correction, erasure or suspension of use, portability and to withdraw consent

If you are in Brazil, as a data subject, you have the right to request the disclosure, correction, erasure, suspension of use or portability of your personal data, as well as the rights to withdraw consent and to be informed about the potential negative consequences of such withdrawal, and to be informed about public and private entities with which we have shared your personal data, and we are obliged to meet your request without undue delay. You may send your request by email to [email protected] (please quote “Glenti” in your email title) or by mail to Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000(attention: Legal Department, Starii).

Sensitive personal information

If you are in Brazil, you understand and agree that, in order to be able to render our Services to you, we may collect sensitive personal information, such as facial features, gender, age of the characters in photos or voice data and other elements contained in photos or voice data.

Representative

If you are in Brazil, you can contact our Data Protection Officer via email at [email protected] (please quote “Glenti” in your email title) or mail to Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (attention: Legal Department, Starii).

International Data Transfers

To provide our Services to you, we may collect your personal information from, transfer it to, and store and process it elsewhere.

• Personal information transferred: please refer to the section “The Information We Collect” of this Policy above

• Transfer date and method: transferred on submission for storage and processing

• Country to which personal information is transferred: Singapore

• Retention of personal information: please refer to the section “Data Retention” of this Policy above

Whenever we share information outside of where you live, we ensure that the transfer complies with your local law so that your personal information is adequately protected.

Data Retention

Subject to applicable laws, rules and regulations and the fulfillment of our business or legal purposes, we will retain your information (including your personal information) for such period as is required for us to continue to provide you with our Services, as well as during the limitations statutes set forth in the Brazilian Civil Code, LGPD, Brazilian Civil Rights Framework for the Internet, and Brazilian Consumer Protection Code.

We will destroy your personal information without delay when your personal information becomes unnecessary. When we destroy your personal information, we will take commercially reasonable and technically feasible measures to ensure the personal information is permanently deleted.

After the termination of Services we may retain your personal information to comply with legal or regulatory obligations, transfer to third parties, provided that the requirements for data processing as provided in LGPD are obeyed, and for our exclusive use, provided the information will be anonymized.

Choice of law

If you are resident in Brazil, this Policy will be enforced and interpreted under the laws of Brazil.

FOR USERS IN VIETNAM

If you are a user in Vietnam, this section will supplement and constitute an integral part of the Policy, and is formulated in accordance with the applicable laws and regulations in Vietnam, including Decree 13/2023/ND-CP on personal data protection (as amended from time to time) and other relevant laws, regulations, regulatory requirements and national standards that govern or otherwise relate to the processing of your personal information during the use of our Services (collectively, the “Vietnam Privacy Regulations”).

The terms in this section shall have the same meaning defined under the Policy unless otherwise clearly specified. In the event of any conflict between the terms in this section and the provisions of the main body of the Policy, the terms in this section will prevail.

The Information We Collect

In this Policy, “personal information” or “personal data” refers to any information in the form of symbols, letters, numbers, images, sounds or the like on an electronic medium that is associated with a particular person or helps to identify a particular person. Personal information includes basic personal data and sensitive personal data.

Some of the personal information that we collect may comprise “sensitive personal data”. This refers to personal data that is associated with your privacy that, when violated, will directly affect your legitimate rights and interests. Sensitive personal data that we collect and process include but not limited to voice information and facial feature information.

Scope of Processing

The Policy explains how we “process” your personal information. This includes how we may collect, record, analyse, verify, store, correct, disclose, associate, access, retrieve, revoke, encrypt, decrypt, copy, share, transmit, provide, transfer, delete, destroy or undertake such other related actions in respect of your personal information.

Our Legal Bases for Processing Your Personal Information

We will only process your personal information when we have a legal basis to do so. In most cases, we process your personal information after we have obtained your consent for the purposes listed in the Policy.

Your personal information may also be processed in the following cases and for which your consent will not be required, including:

1. in cases of emergency where it is necessary to immediately process the relevant personal information to protect the life and health of you or others;

2. disclosure of the personal information in accordance with the law;

3. processing of personal information by the competent state agencies in the event of a state of emergency on national defence, national security, social order and safety, major disasters or dangerous epidemics; or where there is a risk of a threat to security and national defence but not to the extent of declaring a state of emergency; or to prevent and combat riots and terrorism, to prevent and combat crimes and violations of the law in accordance with the law;

4. fulfilment of obligations under contracts with you with relevant agencies, organisations and individuals as prescribed by law;

5. to serve the activities of state agencies as prescribed by specialised laws; and

6. other cases as prescribed by the law.

Your rights

In accordance with the applicable Vietnam Privacy Regulations, you have the following rights in respect of your personal information that you disclose to us:

• Right to know:  You have the right to be informed of the data processing activities in respect of your personal information, unless the law provides otherwise.

• Right to consent: You have the right to agree (or not agree) to the processing of your personal information, except in the following cases:

• in cases of emergency where it is necessary to immediately process the relevant personal information to protect the life and health of you or others;

• disclosure of the personal information in accordance with the law;

• processing of personal information by the competent state agencies in the event of a state of emergency on national defence, national security, social order and safety, major disasters or dangerous epidemics; or where there is a risk of a threat to security and national defence but not to the extent of declaring a state of emergency; or to prevent and combat riots and terrorism, to prevent and combat crimes and violations of the law in accordance with the law;

• fulfilment of obligations under contracts with you with relevant agencies, organisations and individuals as prescribed by law;

• to serve the activities of state agencies as prescribed by specialised laws; and

• other cases as prescribed by the laws.

  • Right of access: You have the right to access your personal information in order to view, correct or request correction of your personal information, unless the law provides otherwise.

  • Right to withdraw consent: You have the right to withdraw your consent in respect of the processing of your personal information, unless the law provides otherwise.

  • Right to deletion: You have the right to delete or request the deletion of your personal information, unless the law provides otherwise.

  • Right to restriction of data processing: You have the right to restrict the processing of your personal information, unless the law provides otherwise. The restriction will be carried out within 72 hours after your request, unless the law provides otherwise.

  • Right to be provided with data: You have the right to request us to provide you with your personal information, unless the law provides otherwise.

  • Right to object: You have the right to object our processing of your personal information in order to prevent or limit the disclosure of your personal information or its use for advertising and marketing purposes, unless the law provides otherwise. We will fulfil your request within 72 hours after receiving such request, unless the law provides otherwise.

  • Right to complain, denounce and initiate lawsuits: You have the right to complain, denounce and initiate lawsuits in accordance with the law.

  • Right to claim compensation: You have the right to claim compensation in accordance with the law if there is a violation of the applicable laws, unless the law provides or agreed otherwise by you and us.

  • Right to self-defence: You have the right to self-defence according to the applicable law, or to request the relevant agencies and organisations to protect your civil rights as prescribed in Article 11 of Vietnam's Civil Code.

To exercise any of your rights, or if you have any question about our processing of your personal information, please send us a request using the contact details specified at the beginning of this Policy. In order to process this request, note that we may ask you to provide us with additional information in order to confirm your identity.

Your obligations

In accordance with the applicable Vietnam Privacy Regulations, you have the following obligations in respect of your personal information that you disclose to us:

• To protect your own personal information and to request relevant organisations and individuals to protect your personal information;

• To respect and protect the personal information of other data subjects;

• To fully and accurately provide your personal information when you consent to the processing;

• To participate in the distribution of personal information protection skills; and

• To comply with the provisions of the law on the protection of personal information

Retention duration

We will process your personal information commencing from the time in which you access or use our Services and for a period that is no longer than necessary for the purposes identified in this Policy.

If we are required to process your personal information pursuant to or in order to comply with a legal obligation, we will keep your personal information for as long as it is required by us to comply with such obligation. Upon expiry of the applicable data retention period or required by law, we will delete your personal information.

Organisations involved in the processing of your personal information

We may disclose your personal information to third parties, for processing in accordance with the purposes set out in the section “How we Use Information” and “Information Sharing and Disclosure”. Some of these parties may be located outside of Vietnam. These parties who are related to or involved in the processing of your personal information include:

• Service providers that provide services to help with our business activities, including those involved in providing advertising, payment processing, customer service, fulfilment of subscription services, research and analytics, and cloud computing infrastructure;

• Operators of social media platforms if you choose to share photos and/or videos on a social medial platform;

• Law enforcement agencies, public authorities and regulators;

• Our affiliates; and

• Any other third party for the purposes set out in the section “Information Sharing and Disclosure”.

Language

This Privacy Policy is prepared and drafted in English, but may be translated into other languages (including but not limited to Vietnamese). Should any conflict arise between the English language version of this Agreement and any translation hereof, the English language version shall be controlling.

นโยบายความเป็นส่วนตัว

แก้ไขล่าสุด: 18 พฤษภาคม 2569

เราให้ความสำคัญกับความเป็นส่วนตัวของคุณ

Starii Tech Pty Ltd และหน่วยงานในสังกัด (“เรา”, “พวกเรา” หรือ “ของเรา” หรือ “Starii”) ให้ความสำคัญกับการปกป้องความเป็นส่วนตัวของผู้ใช้ของเรา (“ผู้ใช้” หรือ “คุณ”) นโยบายความเป็นส่วนตัวนี้ ("นโยบาย" นี้) จัดทำขึ้นเพื่อชี้แจงเกี่ยวกับแนวทางของเราเกี่ยวกับการรวบรวม จัดเก็บ ใช้งาน จัดการและปกป้องข้อมูลผู้ใช้ของคุณโดยเรา (รวมทั้งข้อมูลส่วนบุคคลของคุณ) ในฐานะผู้กำกับดูแลและ/หรือผู้ประกอบการที่อยู่ภายใต้กฎหมายปกป้องข้อมูลที่เกี่ยวข้องระหว่างที่คุณใช้แอพพลิเคชั่น Glenti และ/หรือเว็บไซต์ให้บริการ รวมทั้งคุณสมบัติใช้งานต่าง ๆ ("บริการ" ของเรา) ภายใต้วัตถุประสงค์ของนโยบายฉบับนี้ คำว่า "หน่วยงานในสังกัด" ให้หมายถึงหน่วยงานที่อยู่ในกำกับดูแลทั้งโดยตรงและโดยอ้อม และควบคุมหรือกำกับดูแลร่วมโดย Starii Tech Pty Ltd. ภายใต้วัตถุประสงค์ที่ระบุดังกล่าวคำว่า "ควบคุม/กำกับดูแล" ให้หมายถึง (i) สถานะเป็นเจ้าของทั้งโดยตรงหรือโดยอ้อมในฐานะผู้ถือหุ้นมากกว่า 50 เปอร์เซ็นต์ของหุ้นที่มีสิทธิ์ออกเสียงหรือหุ้นที่เป็นทุนของหน่วยงานดังกล่าวหรือส่วนของเจ้าของหรือผลประโยชน์ในฐานะเจ้าของที่เท่าเทียมกัน หรือ (ii) อำนาจควบคุมการตัดสินใจด้านการบริหารและผลประโยชน์ทางเศรษฐกิจใด ๆ ของหน่วยงานภายใต้สัญญาข้อตกลง

โปรดทราบว่าขอบเขตของนโยบายนี้จำกัดเฉพาะข้อมูลผู้ใช้ของคุณ (รวมถึงข้อมูลส่วนบุคคลของคุณ) ที่จัดเก็บหรือได้รับโดยเรา เมื่อคุณกำลังใช้บริการต่าง ๆ ของเรา ภายใต้นโยบายนี้ "ข้อมูลส่วนบุคคล" ให้หมายถึงข้อมูลหรือองค์ประกอบของข้อมูลใด ๆ ที่สามารถใช้เพื่อระบุตัว ติดต่อหรือระบุตำแหน่งของบุคคลที่มีการจัดเก็บข้อมูลไว้

หากคุณเป็นผู้ใช้นอกสหภาพยุโรป/สหราชอาณาจักร การใช้บริการของเราจะถือว่าคุณยอมรับนโยบายนี้ รวมทั้งการจัดเก็บ ใช้งาน เก็บรักษา เปิดเผยและแชร์ข้อมูลผู้ใช้ของคุณ รวมทั้งข้อมูลส่วนบุคคลภายใต้ขอบเขตที่ระบุในนโยบายนี้และตามขอบเขตที่กฎหมายที่บังคับใช้ให้อนุญาต หากคุณไม่ยอมรับเงื่อนไขใด ๆ ในนโยบายนี้หรือการเปลี่ยนแปลงใด ๆ ของนโยบายในภายหลัง กรุณาหยุดใช้บริการนี้

คุณจะต้องแจ้งข้อมูลบางประการ (ตามที่ระบุขณะที่มีการจัดเก็บข้อมูล) ขณะที่ใช้บริการของเรา ในกรณีที่คุณไม่ให้ข้อมูล หรือให้ข้อมูลไม่ครบถ้วนในส่วนที่ระบุว่าเป็นข้อมูลที่จำเป็น เราอาจไม่สามารถดำเนินการลงทะเบียนของคุณให้เสร็จสมบูรณ์หรือให้บริการแก่คุณได้ และหากไม่ได้ระบุคำนิยามใด ๆ ในนโยบายนี้ คำศัพท์ทั้งหมดที่ใช้ตัวพิมพ์ใหญ่ในนโยบายฉบับนี้ให้ตีความเหมือนกันกับเงื่่อนไขการให้บริการของเรา ดังนั้นกรุณาอ่านและทำความเข้าใจเงื่อนไขการให้บริการของเรา

หากคุณมีข้อสงสัยใด ๆ เกี่ยวกับนโยบายฉบับนี้หรือประเด็นใด ๆ ที่เกี่ยวกับความเป็นส่วนตัว กรุณาติดต่อหัวหน้าฝ่ายปกป้องข้อมูลทางอีเมลที่ [email protected] (อ้างอิง "Glenti" ในหัวเรื่องอีเมล) หรือผ่านทางไปรษณีย์ลงทะเบียนที่ Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (attention: Legal Department, Starii) สำหรับการสอบถามข้อมูล ให้ข้อเสนอแนะ คำแนะนำและ/หรือร้องเรียนอื่นใดที่ไม่เกี่ยวกับการละเมิดความเป็นส่วนตัวหรือทรัพย์สินทางปัญญา (รวมทั้งการยกเลิกการสมัครบริการ ข้อโต้แย้งเรื่องการชำระเงิน คำขอคืนเงินและบริการด้านเทคนิคจาก Glenti) ควรติดต่อเราทางอีเมลที่ [email protected] หากคุณส่งอีเมลไปยังที่อยู่อีเมลที่ไม่ถูกต้อง หรือระบุหัวข้อที่ไม่ตรงกับเนื้อหา อาจส่งผลให้การดำเนินการตามคำขอของคุณล่าช้าหรือเกิดความผิดพลาดได้

ข้อมูลที่เราเก็บรวบรวม

เพื่อให้สามารถส่งมอบและพัฒนาบริการของเราให้ดียิ่งขึ้น เราจะทำการเก็บรวบรวมและประมวลผลข้อมูลส่วนบุคคลและข้อมูลผู้ใช้ของคุณ โดยเป็นไปตามนโยบายฉบับนี้ หากคุณไม่ให้ข้อมูลดังกล่าว เราอาจไม่สามารถจัดหาผลิตภัณฑ์หรือบริการของเราให้แก่คุณได้ ควรตรวจสอบให้แน่ใจว่าข้อมูลส่วนบุคคลและข้อมูลผู้ใช้ทั้งหมดที่จัดส่งให้แก่เราเป็นข้อมูลที่ครบถ้วน ถูกต้องและตรงตามความเป็นจริง หากคุณมิได้ดำเนินการดังกล่าว อาจส่งผลให้เราไม่สามารถให้บริการทั้งหมดหรือบางส่วนแก่คุณได้

ข้อมูลบัญชีผู้ใช้

ขณะใช้บริการของเรา เราอาจแนะนำให้คุณลงทะเบียนบัญชีผู้ใช้กับเรา เพื่อให้สามารถใช้ประโยชน์จากบริการและคุณสมบัติการใช้งานต่าง ๆ ของเราได้อย่างเต็มประสิทธิภาพ ขณะจัดทำบัญชีผู้ใช้ เราจะรวบรวมข้อมูลต่อไปนี้เพื่อใช้ในการระบุตัวคุณหรือจัดบริการของเราให้แก่คุณ:

• บังคับ: ที่อยู่อีเมล

• ไม่บังคับ: ชื่อ ชื่อผู้ใช้ เพศ

ทุกคนสามารถใช้บริการของเราได้ แต่มีบริการบางอย่างที่ต้องเสียค่าบริการ เช่น การเข้าถึงเนื้อหาพรีเมี่ยมของเราและสิทธิพิเศษต่าง ๆ ("บริการแบบสมัครใช้บริการ") หากคุณเลือกซื้อบริการแบบสมัครใช้บริการของเรา เราจะรวบรวมข้อมูลระบุตัวตนบางประการ เช่น ID อุปกรณ์หรือชื่อของคุณ แอพสโตร์จากภายนอกหรือผู้ให้บริการชำระเงินอาจได้รับ สืบค้นหรือใช้ข้อมูลทางการเงินของคุณและที่อยู่ออกบิลเรียกเก็บของคุณเพื่อทำรายการและต่ออายุ หากคุณซื้อเนื้อหาหรือสมัครใช้บริการที่ต้องสมัครบริการผ่านแอพสโตร์หรือผู้ให้บริการชำระเงินจากภายนอก ควรพิจารณาเงื่อนไขการจัดการข้อมูลของบุคคลภายนอกดังกล่าว เพื่อรับทราบข้อมูลเกี่ยวกับวิธีการจัดเก็บและใช้งานข้อมูลทางการเงินส่วนบุคคลสำหรับการซื้อทั้งหมด เพื่อป้องกันข้อสงสัย เราจะไม่เก็บรวบรวมข้อมูลทางการเงินใด ๆ จากคุณ

ข้อมูลอุปกรณ์พกพา

ขณะที่คุณใช้บริการของเราผ่านอุปกรณ์พกพาของคุณ เราอาจมีการจัดเก็บข้อมูลอุปกรณ์ของคุณ รวมทั้ง Android ID, ID ผู้ใช้ (UID) รหัสประจำตัวผู้ให้บริการ ("IDFV") รหัสอุปกรณ์ไม่ระบุตัวตนแบบเปิดสาธารณะ (OAID) ประเภทอุปกรณ์ที่คุณใช้ แพลตฟอร์มอุปกรณ์ ผู้ผลิตอุปกรณ์ แบรนด์อุปกรณ์ รุ่นอุปกรณ์ เวอร์ชั่นระบบปฏิบัติการและความละเอียดเพื่อใช้ประมวลผลข้อมูลทางสถิติและ/หรือวิเคราะห์ข้อมูล รวมทั้งเพื่อปรับปรุงส่วนการทำงานด้านเทคนิคของเรา การปรับสมดุลโหลดของเซิร์ฟเวอร์ เพื่อวิเคราะห์ข้อมูลด้านเทคนิคที่เกี่ยวกับอุปกรณ์พกพาของคุณเพื่อปรับปรุงการให้บริการของเราและเพื่อปรับกราฟิกให้มีความเหมาะสม

ตามที่ระบุไว้ในหัวข้อ "ข้อมูลระบุตำแหน่ง" ด้านล่าง เราอาจเก็บรวบรวมข้อมูลระบุตำแหน่งจากอุปกรณ์พกพาของคุณ หากคุณเลือกที่จะแชร์ข้อมูลนี้กับเรา หากในภายหลังคุณต้องการหยุดแชร์ข้อมูลระบุตำแหน่ง สามารถดำเนินการได้ทุกเมื่อ โดยการปรับเปลี่ยนการตั้งค่าที่เกี่ยวข้องบนอุปกรณ์พกพาของคุณ

ข้อมูลวิเคราะห์อุปกรณ์พกพา

เพื่อให้เข้าใจการทำงานและปรับปรุงฟังก์ชั่นการทำงานของบริการของเรา เราจะมีการรวบรวมข้อมูลความถี่การใช้แอพพลิเคชั่นของเราโดยคุณ การทำรายการผ่านแอพพลิเคชั่น ข้อมูลการใช้งานแบบคละรวม ข้อมูลประสิทธิภาพการทำงานและตำแหน่งที่มีการดาวน์โหลดแอพพลิเคชั่น

ข้อมูลเครือข่าย

ขณะใช้บริการของเรา เราอาจมีการจัดเก็บข้อมูลเกี่ยวกับเครือข่ายที่คุณใช้ รวมทั้งชื่อผู้ให้บริการและประเภทเครือข่ายเพื่อทำความเข้าใจสัดส่วนการใช้บริการจากผู้ให้บริการและเครือข่ายให้บริการของกลุ่มผู้ใช้ของเรา นอกจากนี้ เรายังอาจจัดเก็บข้อมูลอื่น ๆ เช่น ชื่อเครือข่าย WiFi ที่คุณใช้เชื่อมต่อ ตำแหน่งเครือข่าย WiFi และระยะเวลาการเชื่อมต่อ WiFi เพื่อทำความเข้าใจสภาพแวดล้อมในการใช้บริการของเราโดยคุณ

ข้อมูลระบุตำแหน่งคร่าว ๆ

เราอาจเก็บรวบรวมข้อมูลตามตำแหน่งที่ตั้งจากอุปกรณ์พกพาของคุณ หากคุณเลือกที่จะแชร์ข้อมูลดังกล่าวให้แก่เรา

• บังคับ: ที่อยู่ IP และเขตเวลาของระบบการทำงาน

• ไม่บังคับ: รหัสประเทศและระบบประเทศ

ข้อมูลนี้จะช่วยให้เราเข้าใจสัดส่วนผู้ใช้และรูปแบบการใช้งานและเพื่อให้เราสามารถจัดแอพหรือเว็บไซต์เวอร์ชั่นที่เหมาะสมให้แก่ผู้ใช้ เพื่อแจ้งข้อมูลระบุตำแหน่งซ้ำหรือเพื่อเผยแพร่ข้อมูลระบุตำแหน่งแบบเรียลไทม์หากมีการถ่ายภาพหรือบันทึกวิดีโอ และเพื่อปรับปรุงบริการของเรา เว้นแต่เราจะได้รับความยินยอมจากคุณ ข้อมูลตำแหน่งจะไม่ถูกเก็บรวบรวมหรือใช้เพื่อระบุตัวตนของคุณเป็นการเฉพาะ เว้นแต่จะมีการระบุไว้เป็นอย่างอื่นในนโยบายฉบับนี้ เราจะไม่แบ่งปันข้อมูลตำแหน่งนี้กับบุคคลภายนอกใด ๆ หากคุณไม่ต้องการอนุญาตให้เราเก็บรวบรวมหรือใช้ข้อมูลดังกล่าวอีกต่อไป คุณสามารถปิดการเข้าถึงอินเทอร์เน็ตหรือ หรือปิดการเข้าถึงข้อมูลเครือข่าย และอุปกรณ์ของคุณได้ โปรดทราบว่า เราอาจยังคงได้รับข้อมูลระบุตำแหน่งบางส่วน เช่น ข้อมูลเครือข่าย ที่อยู่ IP และเขตเวลาของระบบ อันเป็นผลมาจากการที่คุณใช้งานบริการของเรา

ข้อมูลบันทึก

เมื่อคุณใช้บริการบางอย่าง รวมทั้งการสร้างและเรียกดูเนื้อหาบางรายการ เราจะเก็บรวบรวมข้อมูลบันทึก ที่เกี่ยวข้องที่จัดเก็บไว้ในGlenti （“ข้อมูลบันทึก”）โดยอัตโนมัติ ข้อมูลบันทึกอาจรวมถึง (i) รายละเอียดเกี่ยวกับเวลาและความถี่ที่คุณใช้บริการ (ii) สถิติอุปกรณ์ รวมถึงเส้นทางการทำงานที่สำคัญ ข้อผิดพลาด ความเสียหาย ภาษา และเขตเวลา ข้อมูลบันทึกนี้ใช้สำหรับปรับปรุงบริการและจะไม่ใช้เพื่อระบุผู้ใช้เป็นรายบุคคล

ข้อมูลภาพ

การเลือกใช้คุณสมบัติการแก้ไขผ่านคลาวด์จากบริการของเราหมายถึงคุณเข้าใจและยอมรับว่าเราจะต้องอัพโหลดภาพของคุณไปยังเซิร์ฟเวอร์ของเราเพื่อการประมวลผลก่อนที่จะส่งกลับภาพที่ประมวลผลแล้วให้แก่คุณเพื่อจัดบริการให้แก่คุณ และเพื่อปรับปรุงการให้บริการอย่างต่อเนื่อง และเพื่อให้เราได้รับข้อมูล EXIF เกี่ยวกับภาพถ่ายของคุณ (ข้อมูล EXIF อาจได้แก่ข้อมูลระบุประเภทอุปกรณ์ ค่า ISO และข้อมูลเกี่ยวกับกล้องหน้าและกล้องหลัง และเวลาที่จัดทำข้อมูลพิจารณาตามผู้ผลิตอุปกรณ์) เพื่อปรับปรุงประสิทธิภาพในการให้บริการของเราเพิ่มเติม เช่น เพื่อจัดหาเอฟเฟกต์ภาพที่เหมาะกับอุปกรณ์ของคุณมากกว่า การเปิดใช้กล้องที่ Glenti และ/หรือยินยอมให้สืบค้นภาพถ่ายในอุปกรณ์ของคุณโดยเราหมายถึงคุณยอมรับว่าเราสามารถสืบค้น รวบรวมและ/หรือใช้ข้อมูลภาพถ่ายของคุณเพื่อการตัดต่อ

ข้อมูลเสียง

การเปิดใช้ไมโครโฟนผ่าน Glenti หมายถึงคุณยอมรับว่าเราสามารถจัดเก็บข้อมูลเสียงของคุณ (เช่น คลิปเสียงหรือบันทึกเสียงของคุณ) เพื่อการแก้ไขข้อมูลเสียง เราจะไม่ใช้ข้อมูลเสียงของคุณเพื่อวัตถุประสงค์ในการโฆษณา คุณสามารถยกเลิกการอนุญาต Glenti ในการใช้ไมโครโฟนผ่านอุปกรณ์ของคุณได้ทุกเมื่อผ่านการตั้งค่าของระบบปฏิบัติการที่ตัวอุปกรณ์หรือในการปิดเสียงไมโครโฟนที่อุปกรณ์ของคุณ

เมต้าดาต้า

เมต้าดาต้า หมายถึง ข้อมูลทางเทคนิคที่เกี่ยวข้องกับเนื้อหาของผู้ใช้ กล่าวโดยสรุป เมต้าดาต้าเป็นข้อมูลที่ใช้ระบุรายละเอียดเกี่ยวกับข้อมูล ตัวอย่างเช่น เมต้าดาต้าสามารถระบุรายละเอียดผลการวิเคราะห์ลักษณะใบหน้า เพศ อายุ เชื้อชาติของบุคคลในภาพ และองค์ประกอบอื่น ๆ ที่อยู่ในภาพถ่าย ซึ่งข้อมูลเหล่านี้ถูกจัดทำขึ้นและใส่แท็กโดยอัลกอริทึมของคอมพิวเตอร์และปัญญาประดิษฐ์ เมื่อคุณใช้งานบริการของเรา เราจะใช้ข้อมูลเมตาดาต้าภาพถ่ายเพื่อจัดหาคุณสมบัติบางประการให้กับคุณ รวมถึง “การจดจำใบหน้า”, “การจดจำปัจจัยสำคัญ”, “การแบ่งสัดส่วนภาพ”, “แท็กเนื้อหา” และคุณสมบัติอื่น ๆ ที่ปรับแต่งตามการผสมผสานคุณสมบัติพื้นฐานเหล่านี้ เราอาจใช้เมต้าดาต้าสำหรับภาพถ่ายของคุณเพื่อจัดระบบคัดกรองที่เหมาะสมและเอฟเฟกต์ภาพถ่ายที่ดีกว่าสำหรับคุณขณะที่แอพของเราประมวลผลภาพถ่ายของคุณ และอาจใช้เมต้าดาต้านี้เพื่อจัดเสนอผลิตภัณฑ์และบริการที่เหมาะกับคุณ

ข้อมูลลักษณะใบหน้า

เพื่อการให้บริการบางประการ นอกเหนือจากการใช้เมต้าดาต้าตามที่ระบุข้างต้น เราอาจเก็บรวบรวมข้อมูลลักษณะใบหน้าของคุณ (ภาพใบหน้า เป็นต้น) และใช้เทคโนโลยีการจดจำใบหน้าเพื่อระบุใบหน้าในภาพถ่ายและเพื่อการใช้งานกล้องในลักษณะต่าง ๆ เราอาจตรวจจับและใช้จุดระบุตำแหน่งบนใบหน้า เพื่อนำเสนอเนื้อหาการจดจำใบหน้าและคุณสมบัติในการปรับแต่งใบหน้า บริการของเราอาจใช้ผลการคำนวณจากเทคโนโลยี AR บางประการในส่วนของข้อมูลเทียบโครงหน้าที่อาจทำให้ต้องใช้คุณสมบัติการตรวจจำใบหน้าเพื่อใช้เอฟเฟกต์ประมวลผลภาพใบหน้าและเพื่อวิเคราะห์ลักษณะเฉพาะผ่านอัลกอริทึมการทำงาน ข้อมูลที่เราจัดเก็บจะไม่ถูกนำไปใช้เพื่อระบุตัวบุคคลเป็นการเฉพาะและใช้เพื่อจัดคุณสมบัติการใช้งานที่ระบุเท่านั้น หลังจากการแนะนำข้อมูลเสร็จสิ้นหรือเมื่อปิดแอพพลิเคชั่นหรือเว็บไซต์ ข้อมูลเทียบโครงหน้าจะถูกลบทิ้ง ข้อมูลนี้จะไม่ถูกแชร์กับบุคคลภายนอก

เราจะไม่นำผลลัพธ์ไปใช้เพื่อวัตถุประสงค์อื่น และจะไม่บันทึกข้อมูลใด ๆ ลงในไฟล์ หรืออัพโหลดข้อมูลไปยังเซิร์ฟเวอร์เพื่อการบันทึกแต่อย่างใด

คุกกี้

เราใช้ "คุกกี้" ซึ่งจัดเก็บและเรียกดูข้อมูลการใช้งานของผู้ใช้งานเป็นระยะ เพื่อนำเสนอการบริการที่ปรับแต่งให้เหมาะสมกับผู้ใช้งานแต่ละราย โดยคุกกี้คือข้อมูลจำนวนเล็กน้อยที่เซิร์ฟเวอร์ใช้ในการทำงานของแอพ/เว็บไซต์ ส่งไปยังอุปกรณ์ของผู้ใช้ และจัดเก็บไว้ในฮาร์ดดิสก์ของอุปกรณ์ของผู้ใช้ด้วย คุณสามารถปฏิเสธการติดตั้งคุกกี้ได้ ข้อมูลที่เก็บรวบรวมอาจรวมถึง ข้อมูลเกี่ยวกับที่อยู่โปรโตคอลอินเทอร์เน็ต (IP) ประเภทเบราเซอร์ ผู้ให้บริการอินเทอร์เน็ต (ISP) หน้าเว็บไซต์แนะนำและหน้าเพจที่ออก ระบบปฏิบัติการ วันที่และเวลาที่บันทึก และข้อมูลคลิกสตรีม

• วัตถุประสงค์ของการใช้คุกกี้: คุกกี้ถูกนำมาใช้เพื่อนำเสนอข้อมูลที่ปรับแต่งให้เหมาะสมที่สุดสำหรับผู้ใช้งานแต่ละราย โดยการระบุประวัติการเข้าชมและลักษณะการใช้งานแต่ละบริการและเว็บไซต์ที่ผู้ใช้งานได้เข้าเยี่ยมชม คำค้นหายอดนิยม สถานะการใช้งานที่ปลอดภัย เป็นต้น

• การติดตั้ง ทำงานและการปฏิเสธคุกกี้: คุณไม่สามารถปิดใช้งานคุกกี้ที่จำเป็นเพื่อการปกป้องข้อมูลผ่านแอพของเรา สำหรับผู้ใช้แอพ คุณสามารถปิดฟังก์ชั่น "ติดตาม" ที่อุปกรณ์ iOS หรือลบ ID โฆษณาของคุณในอุปกรณ์ Android ผ่าน Settings (การตั้งค่า) นอกจากนี้ผู้ใช้ยังสามารถปฏิเสธการติดตั้งคุกกี้โดยส่งอีเมลไปที่ [email protected] (โปรดระบุ "Glenti" ในหัวเรื่องอีเมล)

• หากผู้ใช้ปฏิเสธคุกกี้ อาจทำให้เกิดปัญหาในการใช้บริการที่ปรับแต่งเฉพาะ

ข้อมูลที่ถูกเก็บรวบรวมโดยบริการจากภายนอก

บริการของเราที่จัดส่งให้แก่คุณอาจมีอินเทอร์เฟซตั้งโปรแกรมการทำงานของแอพพลิเคชั่น (API) หรือชุดเครื่องมือพัฒนาซอฟต์แวร์ (SDK) ของผู้ให้บริการของเรา ซึ่งอาจประกอบด้วยเครื่องมือติดตามของผู้ให้บริการดังกล่าว บุคคลภายนอกเหล่านี้อาจใช้คุกกี้ API และ SDK ภายในบริการของเรา เพื่อเก็บรวบรวมและวิเคราะห์ข้อมูลผู้ใช้งาน บุคคลภายนอกยังสามารถเข้าถึงข้อมูลของคุณ เช่น รหัสอุปกรณ์ พื้นที่ (พื้นที่ที่ใช้ระบุภาษาที่ใช้) ข้อมูลตำแหน่งที่ตั้งและที่อยู่ IP ภายใต้นโยบายความเป็นส่วนตัวของบุคคลภายนอกดังกล่าว หากคุณต้องการทราบรายละเอียดเพิ่มเติมเกี่ยวกับบุคคลภายนอกดังกล่าว สามารถส่งอีเมลไปที่ [email protected] (โปรดระบุ "Glenti" ในหัวเรื่องอีเมล)

ข้อมูลที่คุณแจ้งกับเราโดยสมัครใจ

ขณะติดต่อเรา (รวมถึงทีมบริการลูกค้าและเจ้าหน้าที่ปกป้องข้อมูลของเรา) เราอาจเก็บรวบรวมข้อมูลที่คุณแจ้งไว้กับเรา ตัวอย่างเช่น รายละเอียดการติดต่อของคุณ (เช่น ที่อยู่อีเมลและ/หรือ หมายเลขโทรศัพท์)

ข้อมูลอื่น ๆ

นอกจากนี้ เรายังอาจรวบรวมข้อมูลอื่น ๆ ที่ไม่เกี่ยวข้องกับตัวตนของคุณ เช่น เราอาจรวบรวมข้อมูลประเภทและเวอร์ชั่นระบบปฏิบัติการของคุณเพื่อให้เข้าใจเกี่ยวกับข้อมูลอัพเกรดระบบ เราอาจรวบรวมข้อมูลภาษาที่ระบบของคุณใช้เพื่อการปรับเปลี่ยนภาษาตามความเหมาะสม หากเราเลือกที่จะเก็บรวบรวมข้อมูลดังกล่าว เราจะดำเนินการดังกล่าวเพื่อวัตถุประสงค์ในการปรับปรุงบริการของเราที่จัดหาให้แก่คุณ

วิธีการที่เราใช้ข้อมูล

นอกเหนือจากการใช้งานที่ระบุข้างต้น เรายังอาจรวบรวมและใช้ข้อมูลผู้ใช้และข้อมูลส่วนบุคคลของคุณเพื่อวัตถุประสงค์ต่อไปนี้

1. บริการ เพื่อให้บริการ ดำเนินการ บำรุงรักษา ปรับปรุง และพัฒนาบริการของเราที่มอบให้แก่คุณรวมถึงการให้บริการลูกค้าและบริการอื่น ๆ ที่จัดให้มีผ่านผลิตภัณฑ์ของเรา รวมถึงการจัดส่งเวอร์ชั่นของบริการที่ถูกต้องโดยพิจารณาจากข้อมูลระบุตำแหน่งคร่าว ๆ ของคุณ ตลอดจนการดำเนินมาตรการบริหารจัดการความเสี่ยง เช่น การป้องกันการฉ้อโกง และมาตรการเพื่อตรวจจับและแก้ไขข้อผิดพลาดต่าง ๆ

2. การวิเคราะห์ทางสถิติ เพื่อพัฒนาและวิเคราะห์สถิติเกี่ยวกับการใช้ผลิตภัณฑ์และบริการของเรา เพื่อวัตถุประสงค์ในการปรับปรุงผลิตภัณฑ์และบริการของเรา

3. เพื่อจัดทำบัญชีผู้ใช้ ข้อมูลส่วนบุคคลที่เราเก็บรวบรวมเมื่อคุณใช้บริการของเราเพื่อจัดทำบัญชีผู้ใช้จะถูกนำมาใช้โดยเราเพื่อจัดทำบัญชีผู้ใช้และข้อมูลโพรไฟล์ของคุณ

4. เพื่อยืนยันตัวตนของคุณ เพื่อปกป้องความเป็นส่วนตัวของคุณและเพื่อรักษาความปลอดภัยของข้อมูล การตรวจสอบอาจเกิดขึ้นขณะที่คุณล็อกอินไปยังบัญชีของคุณหรือขณะที่คุณติดต่อเราเพื่อใช้สิทธิ์ของคุณ

5. เพื่อเก็บรวบรวมความคิดเห็นจากคุณ ความคิดเห็นของคุณมีคุณค่าอย่างยิ่งในการช่วยให้เราปรับปรุงบริการของเรา เพื่อเป็นการติดตามผลความคิดเห็นของคุณเราอาจใช้ข้อมูลส่วนบุคคลที่คุณให้ไว้เพื่อติดต่อคุณและจัดเก็บรักษาบันทึกข้อมูลดังกล่าว

6. วัตถุประสงค์อื่น ๆ เราจะรวบรวม เก็บรักษา บำรุงรักษา และใช้ข้อมูลเกี่ยวกับคุณเพื่อวัตถุประสงค์ตามที่ระบุไว้ในหัวข้อ “ข้อมูลที่เราเก็บรวบรวม” และเพื่อวัตถุประสงค์ในการปฏิบัติตามกฎ ข้อบังคับ และกฎหมายที่เกี่ยวข้อง รวมถึงมาตรฐานปฏิบัติหรือแนวทางต่าง ๆ หรือเพื่อสนับสนุนการบังคับใช้กฎหมายและการสืบสวนของเจ้าหน้าที่ที่เกี่ยวข้อง เพื่อจัดบริการที่ปลอดภัยและมีเสถียรภาพ การคุ้มครองความมั่นคงปลอดภัยของบัญชีผู้ใช้ของคุณ เครือข่าย การทำงาน และระบบ รวมทั้งป้องกันการหลอกลวงทางออนไลน์ การฉ้อโกงทางเว็บไซต์ และไวรัสม้าโทรจัน และเพื่อดำเนินการตามคำขอของคุณ

การเปิดเผยและการแบ่งปันข้อมูล

เราอาจแบ่งปันข้อมูลของคุณกับบุคคลภายนอกซึ่งเป็นผู้ให้บริการในนามของเรา เพื่อช่วยเหลือในการดำเนินกิจกรรมทางธุรกิจของเรา บริการดังกล่าวอาจได้แก่

1. การประมวลผลการชำระเงิน

2. ให้บริการแก่ลูกค้า

3. การให้บริการสมัครสมาชิกจนเสร็จสมบูรณ์

4. ดำเนินการค้นคว้าและวิเคราะห์ และ

5. จัดทำโครงสร้างพื้นฐานการประมวลผลระบบคลาวด์

เราจะไม่แบ่งปันหรือเปิดเผยข้อมูลส่วนบุคคลของคุณไม่ว่าทั้งหมดหรือบางส่วนให้แก่บุคคลภายนอก (นอกเหนือจากผู้ให้บริการของเรา) เว้นแต่เพื่อวัตถุประสงค์ดังต่อไปนี้

1. รักษาความปลอดภัยของผู้อื่นหรือทรัพย์สินของบุคคลดังกล่าว

2. การป้องกันหรือจัดการกับการฉ้อโกง

3. การคุ้มครองสิทธิ์และผลประโยชน์อันชอบด้วยกฎหมายของเรา

4. การดำเนินการตามวัตถุประสงค์ของเรา ดังที่ระบุไว้ในหัวข้อ “ข้อมูลที่เราเก็บรวบรวม” หรือ “วิธีการที่เราใช้ข้อมูล”

5. การปฏิบัติตามกฎหมาย กฎ และระเบียบข้อบังคับ หรือคำขอโดยหน่วยงานของรัฐ หน่วยงานตุลาการ หน่วยงานบังคับใช้กฎหมาย หรือภาคเอกชน ซึ่งโดยปกติแล้วมีวัตถุประสงค์เพื่อรักษาความมั่นคงปลอดภัยทางอินเทอร์เน็ต ตลอดจนสิทธิ์ ทรัพย์สิน และความปลอดภัยของเรา ผู้ใช้งานของเรา และบุคคลภายนอกและ/หรือ

6. การประเมินหรือการทำให้ธุรกรรมเสร็จสมบูรณ์ ในกรณีที่เรามีส่วนเกี่ยวข้องกับการควบรวมกิจการ การเข้าซื้อกิจการ การตรวจสอบประวัติการดำเนินงานเพื่อการจัดหาเงินทุน การปรับโครงสร้างองค์กร การล้มละลาย การพิทักษ์ทรัพย์ การขายทรัพย์สินของบริษัท หรือเหตุการณ์อื่นใดที่ข้อมูลของคุณอาจถูกจำหน่ายหรือโอนย้าย

มูลเหตุในการใช้ข้อมูลของคุณ

เราจะเก็บรวบรวมและประมวลผลข้อมูลส่วนบุคคลเฉพาะในกรณีที่เรามีมูลเหตุทางกฎหมายเท่านั้น โดยตามปกติแล้ว เราจะอ้างอิงมูลเหตุทางกฎหมายอย่างใดอย่างหนึ่งจากทั้งหมดสี่มูลเหตุดังต่อไปนี้

1. การให้ความยินยอม (ในกรณีที่คุณให้ความยินยอม)

2. สัญญาข้อตกลง (ในกรณีที่การประมวลผลมีความจำเป็นต่อการปฏิบัติตามสัญญากับคุณ ตัวอย่างเช่น เพื่อการดำเนินงานของไซต์หรือการจัดส่งบริการใด ๆ ตามที่คุณร้องขอ)

3. ประโยชน์อันชอบด้วยกฎหมาย (ตัวอย่างเช่น เราจำเป็นต้องใช้ข้อมูลของคุณเพื่อให้บริการและปรับปรุงบริการของเรา ซึ่งรวมถึงการปกป้องบัญชีผู้ใช้ของคุณและการให้บริการลูกค้า) เราจะอาศัยประโยชน์อันชอบธรรมของเราเป็นมูลเหตุทางกฎหมายเฉพาะในกรณีที่ประโยชน์ดังกล่าวไม่กระทบต่อคุณ (เว้นแต่เราจะได้รับความยินยอมจากคุณ หรือการประมวลผลของเรานั้นเป็นสิ่งที่กฎหมายกำหนดหรืออนุญาตให้กระทำได้โดยประการใด ๆ) และ

4. เพื่อปฏิบัติตามกฎหมาย (เพื่อให้เป็นไปตามเงื่อนไขทางกฎหมาย กฎเกณฑ์และระเบียบข้อบังคับหรือคำขอจากส่วนงานของรัฐ หน่วยงานตุลาการหรือหน่วยงานบังคับใช้กฎหมาย)

หากคุณมีข้อสงสัยใด ๆ เกี่ยวกับมูลเหตุทางกฎหมายในการประมวลผลข้อมูลส่วนบุคคลของคุณโดยเรา กรุณาติดต่อเราได้ที่ [email protected] (โปรดระบุ "Glenti" ในหัวเรื่องอีเมล)

เว็บไซต์และบริการของบุคคลภายนอก

บริการของเราอาจมีลิงค์ไปยังเว็บไซต์และบริการอื่น ๆ นอกจากนี้ เว็บไซต์และบริการอื่น ๆ อาจอ้างอิงหรือมีลิงค์ไปยังบริการของเรา โดเมนและเว็บไซต์เหล่านี้ไม่ได้อยู่ในการควบคุมของเรา และเราไม่ได้ให้การรับรองหรือให้คำรับรองใด ๆ เกี่ยวกับเว็บไซต์หรือบริการของบุคคลภายนอก เราขอแนะนำให้ผู้ใช้งานของเราอ่านนโยบายความเป็นส่วนตัวของแต่ละเว็บไซต์และบริการที่ท่านใช้งาน การเข้าชมเว็บไซต์หรือบริการเหล่านี้เป็นความเสี่ยงของคุณเอง

การรักษาปลอดภัยของข้อมูล

เราจะใช้มาตรการที่สมเหตุสมผลเพื่อป้องกันการสูญเสีย การใช้ที่ไม่เหมาะสม การเข้าถึง หรือการเปิดเผยข้อมูลโดยไม่ได้รับอนุญาต ตัวอย่างเช่น บริการบางส่วนของเราจะใช้เทคโนโลยีการเข้ารหัส (เช่น SSL) เพื่อปกป้องข้อมูลส่วนบุคคลของคุณ อย่างไรก็ตาม คุณเข้าใจและยอมรับว่า (ในอุตสาหกรรมอินเทอร์เน็ต) แม้ว่าเราจะใช้มาตรการรักษาความปลอดภัยที่เหมาะสมแล้วก็ตาม เราไม่สามารถรับประกันได้เสมอไปว่าข้อมูลของคุณจะมีความปลอดภัย 100% คุณเข้าใจและยอมรับว่า เราไม่สามารถรับรองหรือรับประกันความปลอดภัยของข้อมูลใด ๆ ที่ท่านแจ้งไว้กับเราได้ เราจะไม่รับผิดชอบต่อการเปิดเผยข้อมูลโดยไม่ได้ตั้งใจ นอกจากนี้คุณเข้าใจและยอมรับว่าระบบและเครือข่ายการสื่อสารที่คุณใช้เพื่อเข้าถึงบริการของเราอาจขัดข้องได้เนื่องจากปัจจัยที่อยู่นอกเหนือการควบคุมของเรา

การเข้าถึงและควบคุมข้อมูล

เราจะดำเนินมาตรการทางเทคนิคที่เหมาะสมและสมควรทุกประการ เพื่อให้มั่นใจว่าคุณสามารถเข้าถึง อัปเดต และแก้ไขข้อมูลส่วนบุคคลของคุณ หรือข้อมูลส่วนบุคคลอื่นใดที่คุณได้ให้ไว้แก่เราในขณะที่ใช้บริการของเราได้ ก่อนท่านจะใช้งาน อัปเดต แก้ไขหรือลบข้อมูลส่วนบุคคลดังกล่าว เราอาจตรวจสอบตัวตนของคุณเพื่อปกป้องความปลอดภัยของบัญชีผู้ใช้ของคุณ

การเก็บรักษาข้อมูล

ภายใต้กฎหมาย กฎ และระเบียบข้อบังคับที่ใช้บังคับ รวมทั้งเพื่อการปฏิบัติตามวัตถุประสงค์ทางธุรกิจหรือกฎหมายของเรา เราจะลบข้อมูลของคุณ (รวมถึงข้อมูลส่วนบุคคลของคุณ) โดยทันทีเมื่อคุณยกเลิกบัญชีผู้ใช้กับเรา

สิทธิ์ในความเป็นส่วนตัว

ตามที่กฎหมายที่ใช้บังคับกำหนด คุณอาจมีสิทธิดังต่อไปนี้: (1) ขอให้ยืนยันว่าเรามีการประมวลผลข้อมูลส่วนบุคคลของคุณหรือไม่ (2) สืบค้นหรือขอรับสำเนาข้อมูลส่วนบุคคลของคุณ (3) ขอรับสำเนาข้อมูลส่วนบุคคลที่คุณแจ้งไว้กับเราในรูปแบบอิเล็กทรอนิกส์ หรือขอให้เราส่งข้อมูลดังกล่าวไปยังบริษัทอื่น (“สิทธิ์ในการโอนย้ายข้อมูล”) (4) คัดค้านหรือระงับการใช้ข้อมูลส่วนบุคคลของคุณ (5) ขอให้แก้ไขหรือปรับปรุงข้อมูลส่วนบุคคลที่ไม่ถูกต้อง ไม่เป็นจริง ไม่สมบูรณ์ หรือที่ถูกประมวลผลโดยไม่เหมาะสม (6) ถอนความยินยอมของคุณ และ (7) ขอให้ลบข้อมูลส่วนบุคคลที่เกี่ยวกับคุณที่เราจัดเก็บไว้ ทั้งนี้ ภายใต้ข้อยกเว้นบางประการที่กฎหมายกำหนด

หากต้องการใช้สิทธิ์ของคุณ สามารถส่งอีเมลไปที่ [email protected] (โปรดระบุ "Glenti" ในหัวเรื่องอีเมล) หรือส่งไปรษณีย์คำขอไปที่ Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000(attention: Legal Department, Starii) เราจะดำเนินการตามคำร้องขอของคุณให้สอดคล้องกับกฎหมายที่เกี่ยวข้องภายในระยะเวลาที่เหมาะสมหลังจากที่ได้รับอีเมลหรือจดหมายจากคุณ และจะยุติการเก็บรวบรวม การใช้ และการเปิดเผยข้อมูลส่วนบุคคลของคุณหลังจากนั้น ทั้งนี้ ภายใต้ข้อยกเว้นบางประการที่กฎหมายกำหนด เพื่อปกป้องความเป็นส่วนตัวของคุณ เราจะดำเนินการตามขั้นตอนต่าง ๆ เพื่อยืนยันตัวตนของคุณก่อนที่จะดำเนินการตามคำร้อง โปรดทราบว่าหากคุณถอนความยินยอมหรือลบข้อมูลส่วนบุคคลของคุณ การใช้บริการบางส่วนของเราอาจได้รับผลกระทบ

ผู้พักอาศัยในรัฐแคลิฟอร์เนียยังมีสิทธิที่จะไม่ถูกเลือกปฏิบัติจากเราเนื่องจากการใช้สิทธิตามพระราชบัญญัติคุ้มครองข้อมูลส่วนบุคคลของผู้บริโภคแห่งรัฐแคลิฟอร์เนีย

ข้อมูลเกี่ยวกับเด็ก

เราจะไม่เก็บรวบรวมหรือร้องขอรายละเอียดส่วนบุคคลจากเด็กอายุต่ำกว่า 16 ปี (หรืออายุอื่น ๆ ตามที่กฎหมายกำหนดในพื้นที่ของคุณ) หากคุณมีอายุต่ำกว่า 16 ปี กรุณาอย่าแจ้งข้อมูลส่วนบุคคลของคุณให้แก่เรา เช่น ชื่อ ที่อยู่ หมายเลขโทรศัพท์หรือที่อยู่อีเมล หากคุณเชื่อว่าเราอาจมีข้อมูลเกี่ยวกับเด็กอายุต่ำกว่า 16 ปี (หรือช่วงอายุอื่นที่กฎหมายถือเป็นผู้เยาว์ในพื้นที่ของคุณ) คุณสามารถส่งอีเมลไปที่ [email protected] (โปรดระบุ "Glenti" ในหัวเรื่องอีเมล) หรือส่งไปรษณีย์ลงทะเบียนไปที่ Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (attention: Legal Department, Starii) หากเราทราบว่าเราได้เก็บรวบรวมข้อมูลส่วนบุคคลจากเด็กที่มีอายุต่ำกว่า 16 ปี (หรืออายุอื่นใดตามที่กฎหมายที่ใช้บังคับในภูมิภาคของคุณกำหนด) เราจะดำเนินการลบข้อมูลดังกล่าวโดยทันทีและยกเลิกบัญชีผู้ใช้ที่เกี่ยวข้อง

การถ่ายโอนข้อมูลข้ามพรมแดน

คุณเข้าใจและยอมรับว่าข้อมูลทั้งหมดที่จัดเก็บผ่านเราหรือโดยเราอาจมีการถ่ายโอน ประมวลผลและจัดเก็บในพื้นที่ต่าง ๆ ทั่วโลกพิจารณาตามพื้นที่ที่คุณใช้งานและภายใต้หลักเกณฑ์เฉพาะและนโยบายที่กำหนดในพื้นที่ดังกล่าวตามที่ระบุในนโยบายฉบับนี้ รวมถึงในเขตบริหารพิเศษฮ่องกงภายใต้สาธารณรัฐประชาชนจีน ("ฮ่องกง") ญี่ปุ่น เกาหลีใต้ สิงคโปร์ สหรัฐฯ สหภาพยุโรป ผ่านคลาวด์ ในเซิร์ฟเวอร์ของเรา เซิร์ฟเวอร์ของหน่วยงานในสังกัดของเราหรือเซิร์ฟเวอร์ของผู้ให้บริการของเราเพื่อจัดบริการของเราให้แก่คุณ

กฎหมายที่บังคับใช้

นโยบายฉบับนี้จัดทำขึ้น มีผลใช้บังคับ และจะได้รับการบังคับใช้และตีความภายใต้กฎหมายของฮ่องกง โดยไม่คำนึงถึงข้อกำหนดเกี่ยวกับความขัดแย้งของกฎหมาย ข้อพิพาทใด ๆ ที่เกิดขึ้นภายใต้นโยบายนี้จะได้รับการแก้ไขภายใต้เงื่อนไขการให้บริการ เราไม่ได้รับรองหรือรับประกันว่านโยบายนี้เป็นไปตามกฎหมายว่าด้วยความเป็นส่วนตัวของเขตอำนาจศาลใด ๆ ดังนั้นคุณจึงไม่ควรตีความนโยบายนี้ตามกฎหมายดังกล่าว

การแก้ไขนโยบายนี้

คุณยอมรับว่าเราอาจปรับปรุงนโยบายฉบับนี้ตามกฎหมายและระเบียบข้อบังคับที่เกี่ยวข้อง หรือตามที่เห็นสมควรโดยธุรกิจของเรา และคุณตกลงที่จะผูกพันตามการแก้ไขเพิ่มเติมใด ๆ ดังกล่าวในที่นี้ เราจะแจ้งให้ทราบการเปลี่ยนแปลงที่สำคัญในนโยบายนี้ผ่านทาง Glenti หรือแจ้งให้คุณทราบผ่านช่องทางอื่น ๆ ตามที่กฎหมายกำหนด

สำหรับผู้ใช้ในเขตเศรษฐกิจยุโรปและสหราชอาณาจักร

ในกรณีที่เราประมวลผลข้อมูลส่วนบุคคลภายในขอบเขตของกฎหมายคุ้มครองข้อมูลส่วนบุคคลของสหภาพยุโรปและกฎหมายคุ้มครองข้อมูลส่วนบุคคลของสหราชอาณาจักร (เรียกรวมกันว่า “GDPR”) คุณสามารถค้นหารายละเอียดที่เกี่ยวข้องเกี่ยวกับการประมวลผลข้อมูลส่วนบุคคลของคุณได้ในประกาศ GDPR ด้านล่าง

สำหรับผู้ใช้งานในประเทศญี่ปุ่น

สิทธิ์ในการขอเปิดเผยข้อมูล การแก้ไข การลบ หรือการระงับการใช้

หากคุณอยู่ในประเทศญี่ปุ่น ในฐานะเจ้าของข้อมูล คุณมีสิทธิที่จะขอให้เปิดเผย แก้ไข ลบ หรือระงับการใช้ข้อมูลส่วนบุคคลของคุณ และเรามีหน้าที่ต้องดำเนินการตามคำขอดังกล่าวโดยไม่ล่าช้าเกินสมควร คุณสามารถส่งคำขอทางอีเมลไปที่ [email protected] (โปรดระบุ "Glenti" ในหัวเรื่องอีเมล) หรือทางไปรษณีย์ที่ Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (attention: Legal Department, Starii)

สำหรับผู้ใช้งานในประเทศเกาหลีใต้

การถ่ายโอนข้อมูลระหว่างประเทศ

เราประมวลผลข้อมูลส่วนบุคคลของผู้ใช้งานเฉพาะภายในขอบเขตที่ระบุไว้ในหัวข้อ “วิธีการที่เราใช้ข้อมูล” เท่านั้น และโดยหลักการแล้วจะไม่เปิดเผยหรือให้ข้อมูลส่วนบุคคลของผู้ใช้งานแก่บุคคลภายนอก อย่างไรก็ตามหากได้รับความยินยอมจากคุณและภายใต้เพื่อวัตถุประสงค์ในการให้บริการของเราตามที่ระบุไว้ในหัวข้อ “การแบ่งปันและการเปิดเผยข้อมูล” กับคุณ เราอาจรวบรวมข้อมูลส่วนบุคคลของคุณจาก ถ่ายโอนข้อมูลดังกล่าวไปยังและจัดเก็บรวมถึงประมวลผลข้อมูลดังกล่าวในพื้นที่อื่น

• ข้อมูลส่วนบุคคลที่มีการถ่ายโอน: ดูรายละเอียดในหัวข้อ “ข้อมูลที่เราเก็บรวบรวม” ของนโยบายฉบับนี้ที่ระบุไว้ข้างต้น

• วันที่และวิธีการถ่ายโอนข้อมูล: การโอนเมื่อมีการส่งข้อมูลเพื่อการจัดเก็บและประมวลผล

• ประเทศที่มีการถ่ายโอนข้อมูลส่วนบุคคล: สิงคโปร์

• การเก็บรักษาข้อมูลส่วนบุคคล: ดูรายละเอียดในข้อ “การเก็บรักษาข้อมูล” ของนโยบายฉบับนี้ที่ระบุไว้ข้างต้น

นอกจากนี้ เรายังอาจโอนข้อมูลส่วนบุคคลของท่านไปยังบุคคลภายนอกดังต่อไปนี้ ซึ่งตั้งอยู่นอกประเทศเกาหลีใต้:

เมื่อใดก็ตามที่เราแบ่งปันข้อมูลออกไปยังนอกประเทศที่คุณอาศัยอยู่ เราจะดำเนินการให้มั่นใจว่าการโอนข้อมูลดังกล่าวเป็นไปตามกฎหมายท้องถิ่นของคุณ เพื่อให้ข้อมูลส่วนบุคคลของคุณได้รับการปกป้องอย่างเหมาะสม

คุณสามารถปฏิเสธการโอนข้อมูลส่วนบุคคลไปยังต่างประเทศตามที่ระบุข้างต้นได้ โดยการติดต่อแผนกที่รับผิดชอบด้านการปกป้องข้อมูลส่วนบุคคลของเราตามที่ระบุไว้ด้านล่าง หากคุณปฏิเสธการโอนข้อมูลส่วนบุคคลไปยังต่างประเทศดังกล่าว เราจะยกเว้นข้อมูลส่วนบุคคลของคุณจากการเป็นข้อมูลที่ต้องถูกโอนไปยังต่างประเทศ ในกรณีดังกล่าว เราอาจจำกัดการใช้งานบริการของเราโดยคุณที่ต้องมีการถ่ายโอนข้อมูลส่วนบุคคลไปต่างประเทศ

นอกจากนี้ เราอาจได้รับข้อมูลส่วนบุคคลของคุณจากบุคคลภายนอกดังต่อไปนี้

การเก็บรักษาข้อมูล

ภายใต้กฎหมาย กฎ และระเบียบข้อบังคับที่ใช้บังคับ รวมทั้งเพื่อการปฏิบัติตามวัตถุประสงค์ทางธุรกิจหรือกฎหมายของเรา เราจะลบข้อมูลของคุณ (รวมถึงข้อมูลส่วนบุคคลของคุณ) โดยทันทีเมื่อคุณยกเลิกบัญชีผู้ใช้กับเรา เราจะทำลายข้อมูลส่วนบุคคลของคุณตามขั้นตอนและวิธีการดังต่อไปนี้

1. ขั้นตอนการทำลาย: เราจะคัดเลือกข้อมูลส่วนบุคคลที่ต้องถูกทำลาย และดำเนินการทำลายข้อมูลดังกล่าวโดยเมื่อได้รับการรับรองจากหัวหน้าฝ่ายปกป้องข้อมูล

2. วิธีการทำลายข้อมูล: เราจะทำลายข้อมูลส่วนบุคคลที่จัดเก็บและบันทึกในรูปแบบอิเล็กทรอนิกส์ด้วยวิธีการลบที่ทำให้ไม่สามารถกู้คืนระเบียนข้อมูลนั้นกลับมาได้อีกเท่าที่จะสามารถทำได้

หน่วยงานที่รับผิดชอบด้านการปกป้องข้อมูลส่วนบุคคลและการจัดการข้อร้องเรียน

Starii Tech Pty Ltd

Attn: Arthur Law, Head of Legal Department
Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

อีเมล: [email protected] (โปรดระบุ "Glenti" ในหัวเรื่องอีเมลของคุณ)

ประวัติการแก้ไขนโยบายความเป็นส่วนตัว

ไม่มี

สำหรับผู้ใช้งานในประเทศสหรัฐอเมริกา

คุณยอมรับว่าเราอาจใช้เทคโนโลยีการจดจำใบหน้า เพื่อเก็บรวบรวมข้อมูลชีวมาตรจากภาพถ่ายหรือภาพที่คุณแจ้งไว้ เราอาจใช้ข้อมูลดังกล่าวเพื่อการให้บริการและปรับปรุงบริการ รวมถึงเพื่อวัตถุประสงค์ในการวิจัยภายในของเรา หากข้อมูลชีวมาตรของคุณอยู่ภายใต้กฎหมายคุ้มครองข้อมูลชีวมาตรของรัฐอิลลินอยส์ เราจะลบข้อมูลชีวมาตรของคุณภายในสามปีนับจากที่คุณมีการใช้บริการครั้งล่าสุด

ตามกฎหมายที่ใช้บังคับ คุณอาจมีสิทธิ์ดังต่อไปนี้

1. ยืนยันว่าเรามีการประมวลผลข้อมูลส่วนบุคคลของคุณหรือไม่

2. ขอสืบค้นหรือขอรับสำเนาข้อมูลส่วนบุคคลของคุณ พร้อมด้วยรายละเอียดที่เกี่ยวข้อง

3. ขอรับสำเนาข้อมูลส่วนบุคคลที่คุณได้ให้ไว้กับเราในรูปแบบอิเล็กทรอนิกส์ หรือขอให้เราส่งข้อมูลดังกล่าวไปยังบริษัทอื่น ซึ่งถือเป็นสิทธิ์ในการโอนย้ายข้อมูล

4. กรุณายืนยันข้อมูลส่วนบุคคลของคุณ;

5. แจ้งขอปฏิเสธการประมวลผลบางประเภท เช่น กรณีที่เราประมวลผลข้อมูลส่วนบุคคลของคุณเพื่อ "การโฆษณาแบบกำหนดเป้าหมาย" (ตามนิยามในกฎหมายคุ้มครองความเป็นส่วนตัวที่ใช้บังคับ) หากเรา "ขาย" ข้อมูลส่วนบุคคลของคุณ (ตามนิยามในกฎหมายปกป้องความเป็นส่วนตัวที่ใช้บังคับ) หรือกรณีที่เรามีการทำข้อมูลโพรไฟล์เพื่อประกอบการตัดสินใจบางประการที่ก่อให้เกิดผลทางกฎหมายหรือผลกระทบอย่างมีนัยสำคัญในลักษณะเดียวกันต่อคุณ

6. ขอให้ลบหรือทำลายข้อมูลส่วนบุคคลของคุณที่เราจัดเก็บไว้ และ

7. อุทธรณ์การตัดสินใจของเราในการปฏิเสธการดำเนินการตามคำขอของคุณ

หากคุณต้องการใช้สิทธิ์ภายใต้กฎหมายความเป็นส่วนตัวที่บังคับใช้ กรุณาติดต่อหัวหน้าฝ่ายปกป้องข้อมูลทางอีเมลที่ [email protected] (โปรดระบุ "Glenti" ในหัวเรื่องอีเมล) หรือทางไปรษณีย์ลงทะเบียนที่ Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000(attention: Legal Department, Starii) เราจะดำเนินการตามคำร้องขอดังกล่าวให้เป็นไปตามกฎหมายที่ใช้บังคับ

หากคุณเป็นผู้ที่พำนักในรัฐเวอร์จิเนียและประสงค์จะอุทธรณ์คำวินิจฉัยของเราเกี่ยวกับการดำเนินการตามคำร้องขอของคุณ คุณสามารถดำเนินการได้โดยแจ้งให้เราทราบ พร้อมทั้งให้ข้อมูลประกอบเพื่อสนับสนุนการอุทธรณ์ดังกล่าว

ข้อความในย่อหน้าถัดไปนี้จะใช้บังคับเฉพาะกับการประมวลผลข้อมูลส่วนบุคคลของคุณที่อยู่ภายใต้กฎหมายความเป็นส่วนตัวของผู้บริโภคของแคลิฟอร์เนีย (ตามที่มีการแก้ไขเพิ่มเติม) (“CCPA”) เท่านั้น

กฎหมาย CCPA กำหนดให้ผู้ที่พำนักในรัฐแคลิฟอร์เนียมีสิทธิที่จะทราบว่าเราได้เก็บรวบรวมข้อมูลส่วนบุคคลประเภทใดบ้าง และเราได้เปิดเผยข้อมูลส่วนบุคคลดังกล่าวเพื่อวัตถุประสงค์ทางธุรกิจ (เช่น เปิดเผยแก่ผู้ให้บริการ) ในรอบสิบสองเดือนที่ผ่านมาหรือไม่ ผู้ที่พำนักในรัฐแคลิฟอร์เนียสามารถดูข้อมูลนี้ได้ด้านล่าง:

ประเภทของแหล่งที่มาที่เราเก็บรวบรวมข้อมูลส่วนบุคคล ตลอดจนวัตถุประสงค์ทางธุรกิจและเชิงพาณิชย์ของเราในการใช้และการเปิดเผยข้อมูลส่วนบุคคลมีระบุไว้ในหัวข้อ “ข้อมูลที่เราเก็บรวบรวม” “วิธีการที่เราใช้ข้อมูล” และ “การแบ่งปันและการเปิดเผยข้อมูล” ตามที่ระบุไว้ข้างต้นตามลำดับ เราจะจัดเก็บรักษาข้อมูลส่วนบุคคลตามระยะเวลาที่กำหนดไว้ในหัวข้อ "การเก็บรักษาข้อมูล" ข้างต้น

ในรอบสิบสองเดือนที่ผ่านมา เราไม่ได้ "ขาย" ข้อมูลส่วนบุคคลใด ๆ (ตามคำนิยามของกฎหมาย CCPA) และเราไม่ทราบเกี่ยวกับการ "ขาย" ข้อมูลส่วนบุคคลของผู้เยาว์ที่มีอายุต่ำกว่า 16 ปีโดยตรงใด ๆ

ในช่วงสิบสองเดือนก่อนหน้านี้ เราไม่ได้มีการ "เปิดเผย" ข้อมูลส่วนบุคคลใด ๆ เพื่อ "การโฆษณาอิงตามพฤติกรรมใช้งานในบริบทต่าง ๆ" (ตามที่ระบุใน CCPA) และเราไม่ทราบเกี่ยวกับการ "เปิดเผย" ข้อมูลส่วนบุคคลใด ๆ ของผู้เยาว์ที่มีอายุต่ำกว่า 16 ปี เพื่อ "การโฆษณาอิงตามพฤติกรรมใช้งานในบริบทต่าง ๆ"

เราใช้และเปิดเผยข้อมูลส่วนบุคคลที่ละเอียดอ่อนเฉพาะเพื่อวัตถุประสงค์ดังต่อไปนี้เท่านั้น:

1. เพื่อการให้บริการ

2. เพื่อป้องกัน ตรวจจับ และสอบสวนเหตุการณ์ด้านความปลอดภัยที่อาจกระทบต่อความพร้อมใช้งาน ความถูกต้อง ความครบถ้วนสมบูรณ์ และ/หรือความลับของข้อมูลส่วนบุคคลที่ถูกจัดเก็บหรือถ่ายโอน

3. เพื่อป้องกันการกระทำที่เป็นอันตราย หลอกลวง ฉ้อโกง หรือผิดกฎหมายที่มุ่งเป้าไปที่เรา และเพื่อดำเนินคดีกับผู้รับผิดชอบต่อการกระทำเหล่านั้น

4. เพื่อความปลอดภัยต่อร่างกายของบุคคลธรรมดา

5. เพื่อตรวจสอบหรือคงไว้ซึ่งคุณภาพหรือความปลอดภัยของผลิตภัณฑ์ บริการ หรืออุปกรณ์ของเรา และเพื่อปรับปรุง พัฒนา หรือยกระดับบริการหรืออุปกรณ์ของเราให้ดียิ่งขึ้น

6. เพื่อวัตถุประสงค์ที่ไม่ได้เป็นไปเพื่อการอนุมานลักษณะเฉพาะของบุคคล

ผู้ที่พำนักในรัฐแคลิฟอร์เนียมีสิทธิ์ที่จะไม่ถูกเลือกปฏิบัติจากเรา อันเนื่องมาจากการใช้สิทธิ์ของตนเองตามที่ได้รับความคุ้มครองโดยกฎหมาย CCPA

เพื่อปกป้องความเป็นส่วนตัวของคุณ เราจะดำเนินการตามขั้นตอนต่าง ๆ เพื่อยืนยันตัวตนของคุณอย่างสมเหตุสมผล ก่อนที่จะดำเนินการตามคำร้องที่ยื่นภายใต้กฎหมาย CCPA ขั้นตอนเหล่านี้อาจรวมถึงการขอให้คุณให้ข้อมูลที่เพียงพอเพื่อให้เราสามารถตรวจสอบได้อย่างสมเหตุสมผลว่าคุณคือบุคคลที่เรารวบรวมข้อมูลส่วนบุคคล หรือเป็นตัวแทนที่ได้รับอนุญาตของบุคคลดังกล่าว ตัวอย่างของกระบวนการยืนยันตัวตนของเราอาจรวมถึงการขอให้คุณระบุที่อยู่อีเมลหรือหมายเลขโทรศัพท์ที่เรามีบันทึกเกี่ยวกับคุณ และการให้รหัสยืนยันที่ส่งไปยังที่อยู่อีเมลหรือหมายเลขโทรศัพท์ของคุณ

คุณหรือผู้ที่ได้รับมอบอำนาจตามกฎหมายให้กระทำการแทนคุณเท่านั้นที่สามารถยื่นคำร้องขอที่สามารถตรวจสอบได้ในฐานะผู้บริโภคเกี่ยวกับข้อมูลส่วนบุคคลของคุณ ในการมอบอำนาจให้ตัวแทน โปรดจัดทำหนังสือมอบอำนาจที่ลงลายมือชื่อโดยคุณและตัวแทนที่คุณแต่งตั้ง และติดต่อเราตามข้อมูลที่ระบุในหัวข้อ "สิทธิ์ในความเป็นส่วนตัว" ข้างต้น เพื่อรับคำแนะนำเพิ่มเติม

เราไม่มีการ "จำหน่าย" ข้อมูลส่วนบุคคล หรือ "เปิดเผย" ข้อมูลส่วนบุคคลเพื่อวัตถุประสงค์ใน "การโฆษณาอิงตามพฤติกรรมใช้งานในบริบทต่าง ๆ" ดังนั้นจึงไม่มีการตอบกลับการเลือกไม่รับข้อมูลใด ๆ

หากท่านเป็นผู้อยู่อาศัยในรัฐเนวาดา เราไม่มีการ “ขาย” ข้อมูลส่วนบุคคลของท่าน

ประกาศแจ้งเกี่ยวกับ GDPR

เรามีการประมวลผลข้อมูลส่วนบุคคลเพื่อการส่งมอบบริการ

หาก GDPR บังคับใช้กับการประมวลผลข้อมูลส่วนบุคคลของท่านโดยเรา เราจะดำเนินการประมวลผลข้อมูลส่วนบุคคลของท่านโดยสอดคล้องกับ GDPR เท่านั้น ในนโยบายความเป็นส่วนตัว (ทั่วไป) ข้างต้น คุณจะพบข้อมูลเกี่ยวกับเวลาที่ GDPR มีผลใช้กับการประมวลผลข้อมูลส่วนบุคคลของเรา ประกาศ GDPR นี้ใช้แทนนโยบายความเป็นส่วนตัว (ทั่วไป) ข้างต้น และรวมข้อมูลโดยละเอียดเกี่ยวกับการประมวลผลข้อมูลส่วนบุคคลของท่านภายใต้ GDPR

1. ข้อมูลเกี่ยวกับผู้ควบคุมข้อมูล

   1. ข้อมูลประจำตัวและรายละเอียดการติดต่อของผู้ควบคุมข้อมูล

Starii Tech Pty Ltd

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. 2. ข้อมูลประจำตัวและรายละเอียดการติดต่อของตัวแทนผู้ควบคุมข้อมูล

สหภาพยุโรป

บริษัท Rivacy จำกัด (เยอรมัน)

Mexikoring 33

22297 Hamburg

เยอรมนี

[email protected]

สหราชอาณาจักร

Rivacy Limited

St James’ Hall, Mill Road

Lancing, West Sussex BN15 0PT

สหราชอาณาจักร

3. รายละเอียดการติดต่อของเจ้าหน้าที่คุ้มครองข้อมูลของผู้ควบคุมข้อมูล

Starii Tech Pty Ltd

ฝ่ายกฎหมาย

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. ข้อมูลเกี่ยวกับการประมวลผลข้อมูลส่วนบุคคล

   1. รายละเอียดเกี่ยวกับข้อมูลส่วนบุคคลที่ได้รับการประมวลผล

1. รายละเอียดเกี่ยวกับการประมวลผลข้อมูลส่วนบุคคล

2. รายละเอียดเกี่ยวกับผู้รับข้อมูลส่วนบุคคลและการโอนข้อมูลส่วนบุคคลไปยังประเทศที่สามและ/หรือองค์กรระหว่างประเทศ

เราอาจมีการถ่ายโอนข้อมูลส่วนบุคคลของคุณข้ามพรมแดนไปยังหน่วยงานในสังกัดของเราและบุคคลภายนอกต่อไปนี้เพื่อรองรับการทำงานของเราในระดับสากล

หากข้อมูลส่วนบุคคลของคุณถูกถ่ายโอนไปยังพื้นที่นอก EEA, UK หรือสวิตเซอร์แลนด์ เราจะกำกับดูแลให้แน่ใจว่ามีการกำหนดมาตรการป้องกันที่เหมาะสม ซึ่งอาจได้แก่

1. มีคำวินิจฉัยที่เหมาะสมของคณะกรรมาธิการยุโรปเกี่ยวกับประเทศที่พำนักของผู้รับข้อมูล

2. เรามีข้อสรุปแล้วเกี่ยวกับเงื่อนไขการปกป้องข้อมูลมาตรฐานภายใต้มาตรา 46(2)(c) ของ GDPR (หรือเงื่อนไขเทียบเท่าที่ผ่านการรับรองสำหรับสหราชอาณาจักรและสวิตเซอร์แลนด์) ร่วมกับผู้รับข้อมูล

3. ในบางกรณี เราอาจกำหนดข้อยกเว้นในการปฏิบัติตามหลักเกณฑ์ภายใต้เงื่อนไขทางกฎหมายที่เกี่ยวข้องโดยอาศัยมาตรการที่กำหนดตามกฎหมายที่มีผลบังคับใช้เพื่อรักษาความปลอดภัยของข้อมูลของคุณ

หากต้องการสอบถามข้อมูลเกี่ยวกับมาตรการป้องกันการถ่ายโอนข้อมูลข้ามพรมแดนของเรา กรุณาติดต่อเราโดยใช้ข้อมูลติดต่อที่ระบุในข้อ I

3. ข้อมูลการใช้คุกกี้หรือเทคโนโลยีที่ใกล้เคียงกัน

หัวข้อต่อไปนี้ปัจจุบันเกี่ยวข้องเฉพาะกับคุกกี้ หากมีการใช้เทคโนโลยีที่ใกล้เคียงกัน (การทำลายนิ้วมือเบราเซอร์ การจัดเก็บข้อมูลภายใน การจัดเก็บข้อมูลส่วนทำรายการ ฯลฯ) หัวข้อนี้จะต้องปรับใช้ตามความเหมาะสม

เราเลือกใช้คุกกี้เพื่อการส่งมอบบริการของเรา โดยเราใช้ฟังก์ชั่นการประมวลผลและจัดเก็บข้อมูลของอุปกรณ์และ/หรือเบราเซอร์อุปกรณ์ของคุณเพื่อรวบรวมข้อมูลจากหน่วยความจำของอุปกรณ์และ/หรือเบราเซอร์ของอุปกรณ์ของคุณ

ดูรายละเอียดเพิ่มเติมได้ดังต่อไปนี้

1. ข้อมูลทั่วไปเกี่ยวกับคุกกี้

คุกกี้เป็นไฟล์ข้อความขนาดเล็กที่สามารถจัดวางในอุปกรณ์ของผู้ใช้ขณะที่ใช้แอพหรือเยี่ยมชมเว็บไซต์ ขณะที่ใช้แอพหรือเยี่ยมชมเว็บไซต์ที่เกี่ยวข้องแล้วกลับเข้าไปใหม่ผ่านอุปกรณ์เดิม คุกกี้และข้อมูลภายในจะสามารถถูกเรียกค้นได้

a) คุกกี้ภายในและคุกกี้จากภายนอก

คุกกี้ภายในและคุกกี้จากภายนอกใช้เพื่อแยกประเภทของคุกกี้

b) คุกกี้ชั่วคราวและคุกกี้ฝังค้าง

คุกกี้ยังมีแบบที่ติดตั้งชั่วคราวและแบบที่ค้างอยู่ในระบบพิจารณาตามระยะเวลาที่ถูกใช้งาน:

c) คุกกี้ที่ไม่ต้องขอความยินยอมและคุกกี้ที่ต้องขอความยินยอม

ต้องขอความยินยอมจากผู้ใช้สำหรับคุกกี้บางประเภท พิจารณาตามการทำงานและวัตถุประสงค์การใช้งาน นี่เป็นเกณฑ์แยกระหว่างคุกกี้ที่ต้องขอความยินยอมจากผู้ใช้และที่ไม่ต้องขอความยินยอม:

2. การจัดการคุกกี้ที่ใช้ในแอพ/เว็บไซต์ของเรา

1. การให้และเพิกถอนความยินยอมการใช้งานคุกกี้ในการตั้งค่าการปกป้องข้อมูลสำหรับแอพ/เว็บไซต์

หากจำเป็นต้องให้ความยินยอมในการใช้คุกกี้บางตัว เราจะใช้คุกกี้เหล่านี้ก็ต่อเมื่อคุณให้ความยินยอมไว้ก่อนหน้า ตรวจสอบข้อมูลว่าคุกกี้ใดที่ต้องขอความยินยอมได้จากรายละเอียดเกี่ยวกับคุกกี้ที่ใช้ในบริการของเราจากหัวข้อ III.3 ของนโยบายความเป็นส่วนตัวนี้

คุณไม่สามารถปิดใช้งานคุกกี้ที่จำเป็นอย่างยิ่งในการตั้งค่าปกป้องข้อมูลสำหรับแอพหรือเว็บไซต์ของเรา ทั้งนี้คุณสามารถปิดใช้งานคุกกี้เหล่านี้ได้จากแอพหรือเบราเซอร์ของคุณทุกเมื่อ

2. การจัดการคุกกี้โดยใช้การตั้งค่าอุปกรณ์/เบราเซอร์

นอกจากนี้คุณยังสามารถจัดการการใช้คุกกี้ได้จากการตั้งค่าอุปกรณ์หรือเบราเซอร์ของคุณ เบราเซอร์แต่ละตัวมีวิธีการกำหนดค่าคุกกี้แตกต่างกัน ดูรายละเอียดเพิ่มเติมได้จากแหล่งข้อมูล เช่น http://www.allaboutcookies.org/manage-cookies/

ทั้งนี้ขอแจ้งให้ทราบว่า การทำงานบางอย่างของแอพหรือเว็บไซต์อาจเกิดปัญหาหรือไม่สามารถให้บริการได้เลยหากคุณปิดใช้งานคุกกี้กับอุปกรณ์ของคุณ

1. คุกกี้ที่ใช้ในแอพ/เว็บไซต์ของเรา

คุกกี้ต่อไปนี้สามารถใช้ได้กับแอพ/เว็บไซต์ของเรา:

4. ข้อมูลเกี่ยวกับสิทธิของเจ้าของข้อมูล

ในฐานะเจ้าของข้อมูล ท่านมีสิทธิดังต่อไปนี้เกี่ยวกับการประมวลผลข้อมูลส่วนบุคคลของท่าน

• สิทธิในการเข้าถึงข้อมูล (มาตรา 15 แห่ง GDPR)

• สิทธิในการแก้ไขข้อมูล (มาตรา 16 แห่ง GDPR)

• สิทธิในการลบข้อมูล ("สิทธิที่จะถูกลืม") (มาตรา 17 แห่ง GDPR)

• สิทธิในการจำกัดการประมวลผลข้อมูล (มาตรา 18 แห่ง GDPR)

• สิทธิในการขอโอนย้ายข้อมูล (มาตรา 20 แห่ง GDPR)

• สิทธิในการคัดค้าน (มาตรา 21 แห่ง GDPR)

• สิทธิในการถอนความยินยอม (มาตรา 7 (3) แห่ง GDPR)

ท่านสามารถติดต่อเราเพื่อใช้สิทธิดังกล่าวโดยใช้ข้อมูลติดต่อที่ระบุไว้ใน หมวด ก

ตามความเหมาะสม ท่านจะพบข้อมูลเกี่ยวกับวิธีการและกลไกเฉพาะที่ช่วยอำนวยความสะดวกในการใช้สิทธิต่างๆ ของท่าน โดยเฉพาะสิทธิในการโอนย้ายข้อมูล และสิทธิในการคัดค้าน ในข้อมูลเกี่ยวกับการประมวลผลข้อมูลส่วนบุคคลที่ระบุไว้ใน หมวด ข ของประกาศ GDPR นี้

ท่านยังมีสิทธิที่จะยื่นเรื่องร้องเรียนต่อหน่วยงานกำกับดูแล (มาตรา 77 แห่ง GDPR)

ด้านล่างนี้ ท่านจะพบข้อมูลโดยละเอียดเพิ่มเติมเกี่ยวกับสิทธิของท่านในการประมวลผลข้อมูลส่วนบุคคลของท่าน

1. สิทธิในการเข้าถึง

ในฐานะเจ้าของข้อมูลส่วนบุคคล ท่านมีสิทธิในการขอเข้าถึงข้อมูลและรับข้อมูลภายใต้เงื่อนไขที่กำหนดไว้ในมาตรา 15 แห่ง GDPR

ซึ่งหมายความโดยเฉพาะว่าท่านมีสิทธิได้รับการยืนยันจากเราว่าเรากำลังประมวลผลข้อมูลส่วนบุคคลของท่านหรือไม่ หากเป็นเช่นนั้น ท่านยังมีสิทธิในการเข้าถึงข้อมูลส่วนบุคคล และข้อมูลที่ระบุไว้ในมาตรา 15 (1) แห่ง GDPR ด้วยเช่นกัน ซึ่งรวมถึงข้อมูลเกี่ยวกับวัตถุประสงค์ของการประมวลผล ประเภทของข้อมูลส่วนบุคคลที่ถูกประมวลผล และผู้รับข้อมูลหรือประเภทของผู้รับข้อมูลที่ข้อมูลส่วนบุคคลได้ถูกเปิดเผยหรือจะถูกเปิดเผย (มาตรา 15 (1) (a), (b) และ (c) แห่ง GDPR)

ตรวจสอบสิทธิ์ทั้งหมดของคุณในการใช้งานและในส่วนที่เกี่ยวกับข้อมูลได้จากมาตรา 15 แห่ง GDPR

2. สิทธิในการแก้ไขข้อมูล

ในฐานะเจ้าของข้อมูลส่วนบุคคล ท่านมีสิทธิในการแก้ไขข้อมูลภายใต้เงื่อนไขที่กำหนดไว้ในมาตรา 16 แห่ง GDPR

ซึ่งหมายความโดยเฉพาะว่าท่านมีสิทธิได้รับการแก้ไขข้อมูลส่วนบุคคลที่ไม่ถูกต้องและการเติมเต็มข้อมูลส่วนบุคคลที่ไม่สมบูรณ์จากเราโดยไม่ล่าช้าเกินควร

ตรวจสอบสิทธิ์ในการแก้ไขข้อมูลทั้งหมดของคุณได้จากมาตรา 16 แห่ง GDPR

3. สิทธิในการลบข้อมูล (“สิทธิที่จะถูกลืม”)

ในฐานะเจ้าของข้อมูลส่วนบุคคล ท่านมีสิทธิในการลบข้อมูล (“สิทธิที่จะถูกลืม”) ภายใต้เงื่อนไขที่กำหนดไว้ในมาตรา 17 แห่ง GDPR

ซึ่งหมายความว่าท่านมีสิทธิที่จะขอให้เราลบข้อมูลส่วนบุคคลของท่าน และเรามีหน้าที่ต้องลบข้อมูลส่วนบุคคลของท่านโดยไม่ล่าช้าเกินสมควร เมื่อมีเหตุผลใดเหตุผลหนึ่งตามที่ระบุไว้ในมาตรา 17 (1) แห่ง GDPR ที่บังคับใช้ กรณีนี้อาจเกิดขึ้นได้ เช่น กรณีที่ข้อมูลส่วนบุคคลนั้นไม่จำเป็นอีกต่อไปสำหรับวัตถุประสงค์ที่ได้เก็บรวบรวมหรือประมวลผลข้อมูลดังกล่าว (มาตรา 17 (1) (a) แห่ง GDPR)

หากเราได้เปิดเผยข้อมูลส่วนบุคคลของท่านสู่สาธารณะและมีหน้าที่ต้องลบข้อมูลดังกล่าว เราก็มีหน้าที่ตามสมควร โดยคำนึงถึงเทคโนโลยีที่มีอยู่และต้นทุนในการดำเนินการ ให้ดำเนินมาตรการที่เหมาะสม รวมถึงมาตรการทางเทคนิค เพื่อแจ้งผู้ควบคุมข้อมูลรายอื่นที่กำลังประมวลผลข้อมูลส่วนบุคคลนั้น ว่าท่านได้ขอให้ลบลิงก์ ข้อมูลที่คัดลอก หรือการทำซ้ำของข้อมูลส่วนบุคคลเหล่านั้นแล้ว (มาตรา 17 (2) แห่ง GDPR)

สิทธิในการลบข้อมูล (“สิทธิที่จะถูกลืม”) จะไม่สามารถใช้ได้ หากการประมวลผลข้อมูลดังกล่าวเป็นสิ่งจำเป็นตามเหตุผลหนึ่งในข้อที่ระบุไว้ในมาตรา 17 (3) แห่ง GDPR กรณีนี้อาจเกิดขึ้นได้ เช่น การประมวลผลนั้นจำเป็นเพื่อปฏิบัติตามภาระหน้าที่ทางกฎหมาย หรือเพื่อการจัดตั้ง ใช้สิทธิ หรือป้องกันข้อเรียกร้องทางกฎหมาย (มาตรา 17 (3) (b) และ (e) แห่ง GDPR)

ตรวจสอบสิทธิ์ในการลบข้อมูลทั้งหมดของคุณ ("สิทธิ์ในการถูกลืม") ได้จากมาตรา 17 แห่ง GDPR

4. สิทธิในการจำกัดการประมวลผลข้อมูล

ในฐานะเจ้าของข้อมูลส่วนบุคคล ท่านมีสิทธิในการจำกัดการประมวลผลภายใต้เงื่อนไขที่กำหนดไว้ในมาตรา 18 แห่ง GDPR

ซึ่งหมายความว่าท่านมีสิทธิที่จะขอให้เราจำกัดการประมวลผลข้อมูลส่วนบุคคลของท่าน หากมีกรณีใดกรณีหนึ่งตามที่ระบุไว้ในมาตรา 18 (1) แห่ง GDPR กรณีดังกล่าวอาจเกิดขึ้นได้ เช่น หากท่านคัดค้านความถูกต้องของข้อมูลส่วนบุคคล ในกรณีเช่นนี้ การจำกัดการประมวลผลจะดำเนินต่อไปในช่วงระยะเวลาที่ช่วยให้เราสามารถตรวจสอบความถูกต้องของข้อมูลส่วนบุคคลนั้นได้ (มาตรา 18 (1) (a) แห่ง GDPR)

การจำกัดการประมวลผล หมายถึง การทำเครื่องหมายข้อมูลส่วนบุคคลที่จัดเก็บไว้ โดยมีเป้าหมายเพื่อจำกัดการประมวลผลข้อมูลเหล่านั้นในอนาคต (มาตรา 4 (3) แห่ง GDPR)

ตรวจสอบสิทธิ์ในการจำกัดการประมวลผลทั้งหมดของคุณได้จากมาตรา 18 แห่ง GDPR

5. สิทธิในการขอโอนย้ายข้อมูล

ในฐานะเจ้าของข้อมูลส่วนบุคคล ท่านมีสิทธิในการขอโอนย้ายข้อมูลภายใต้เงื่อนไขที่กำหนดไว้ในมาตรา 20 แห่ง GDPR

ซึ่งหมายถึงคุณมีสิทธิ์ในการขอรับข้อมูลส่วนบุคคลของคุณที่ถูกแจ้งไว้กับเราในรูปแบบที่มีโครงสร้างชัดเจน ใช้งานกันโดยทั่วไปและเครื่องสามารถอ่านได้ และในการส่งข้อมูลเหล่านี้ไปยังผู้กำกับดูแลอื่นโดยไม่ถูกกีดกันจากเราหากเป็นการประมวลผลที่ต้องได้รับความยินยอมภายใต้มาตรา 6 (1) (a) หรือ 9 (2) (a) แห่ง GDPR หรือตามสัญญาข้อตกลงภายใต้มาตรา 6 (1) (b) แห่ง GDPR และเป็นการประมวลผลโดยใช้ระบบอัตโนมัติ (มาตรา 20 (1) แห่ง GDPR)

คุณสามารถตรวจสอบว่าการประมวลผลต้องได้รับความยินยอมภายใต้มาตรา 6 (1) (a) หรือ 9 (2) (a) แห่ง GDPR หรือตามสัญญาข้อตกลงภายใต้มาตรา 6 (1) (b) แห่ง GDPR หรือไม่จากแหล่งข้อมูลเกี่ยวกับมูลเหตุทางกฎหมายในการประมวลผลจากหัวข้อ II ของประกาศแจ้งหลักเกณฑ์ของ GDPR

ในการใช้สิทธิในการขอโอนย้ายข้อมูลส่วนบุคคลนี้ ท่านยังมีสิทธิโดยทั่วไปที่จะให้ข้อมูลส่วนบุคคลของท่านถูกส่งต่อโดยตรงจากเราไปยังผู้ควบคุมข้อมูลรายอื่น หากเป็นไปได้ทางเทคนิค (มาตรา 20 (2) แห่ง GDPR)

ตรวจสอบสิทธิ์ในการเคลื่อนย้ายข้อมูลทั้งหมดของคุณได้จากมาตรา 20 แห่ง GDPR

6. สิทธิ์ในการโต้แย้ง

ในฐานะเจ้าของข้อมูลส่วนบุคคล ท่านมีสิทธิที่จะคัดค้านการประมวลผลข้อมูลส่วนบุคคลของท่านภายใต้เงื่อนไขที่กำหนดไว้ในมาตรา 21 แห่ง GDPR

อย่างช้าที่สุด ในการติดต่อสื่อสารครั้งแรกกับท่าน เราจะแจ้งสิทธิของท่านในฐานะเจ้าของข้อมูลส่วนบุคคลในการคัดค้านอย่างชัดเจน

รายละเอียดเพิ่มเติมเกี่ยวกับสิทธินี้มีดังนี้

สิทธิในการคัดค้านโดยอ้างเหตุผลจากสถานการณ์เฉพาะของเจ้าของข้อมูล

ในฐานะเจ้าของข้อมูลส่วนบุคคล ท่านมีสิทธิที่จะคัดค้านได้ตลอดเวลาต่อการประมวลผลข้อมูลส่วนบุคคลของตนที่อิงตามมาตรา 6 (1) (e) หรือ (f) แห่ง GDPR รวมถึงการทำโปรไฟล์ (profiling) ที่อิงตามข้อกำหนดดังกล่าว

ท่านสามารถดูข้อมูลว่าการประมวลผลใดอยู่ภายใต้มาตรา 6 (1) (e) หรือ (f) ได้จากข้อมูลเกี่ยวกับฐานทางกฎหมายของการประมวลผลในหมวด ข ของประกาศ GDPR นี้

ในกรณีที่ท่านคัดค้านโดยอ้างเหตุผลจากสถานการณ์เฉพาะของท่าน เราจะหยุดการประมวลผลข้อมูลส่วนบุคคลของท่าน เว้นแต่เราสามารถแสดงเหตุผลอันชอบธรรมที่หนักแน่นในการประมวลผลซึ่งมีน้ำหนักเหนือกว่าประโยชน์ สิทธิ และเสรีภาพของท่าน หรือเพื่อการตั้งข้อเรียกร้อง การบังคับใช้สิทธิ หรือการป้องกันข้อเรียกร้องทางกฎหมาย

คุณสามารถตรวจสอบสิทธิ์ทั้งหมดของคุณในการโต้แย้งได้จากมาตรา 21 แห่ง GDPR

สิทธิในการคัดค้านการตลาดโดยตรง

เมื่อข้อมูลส่วนบุคคลของท่านถูกประมวลผลเพื่อวัตถุประสงค์ทางการตลาดโดยตรง ท่านมีสิทธิที่จะคัดค้านการประมวลผลข้อมูลส่วนบุคคลเพื่อวัตถุประสงค์ดังกล่าวได้ตลอดเวลา ซึ่งรวมถึงการสร้างโปรไฟล์ในขอบเขตที่เกี่ยวข้องกับการตลาดโดยตรงนั้นด้วย

ท่านสามารถดูข้อมูลเกี่ยวกับว่าข้อมูลส่วนบุคคลถูกประมวลผลเพื่อวัตถุประสงค์ทางการตลาดโดยตรงหรือไม่ และในขอบเขตใด ได้จากข้อมูลเกี่ยวกับฐานทางกฎหมายของการประมวลผลใน หมวด ข ของประกาศ GDPR นี้

หากท่านคัดค้านการประมวลผลเพื่อวัตถุประสงค์ทางการตลาดโดยตรง เราจะไม่ประมวลผลข้อมูลส่วนบุคคลของท่านเพื่อวัตถุประสงค์เหล่านี้อีกต่อไป

คุณสามารถตรวจสอบสิทธิ์ทั้งหมดของคุณในการโต้แย้งได้จากมาตรา 21 แห่ง GDPR

7. สิทธิในการถอนความยินยอม

หากเป็นการประมวลผลที่ต้องขอความยินยอมภายใต้มาตรา 6 (1) (a) หรือ 9 (2) (a) แห่ง GDPR ในฐานะเจ้าของข้อมูล คุณมีสิทธิ์ในการเพิกถอนความยินยอมได้ทุกเมื่อภายใต้มาตรา 7 (3) แห่ง GDPR การถอนความยินยอมของท่าน จะไม่กระทบต่อความชอบด้วยกฎหมายของการประมวลผลข้อมูลที่ได้กระทำไปแล้วโดยอาศัยความยินยอมของท่านจนกระทั่งถึงเวลาที่ถอนความยินยอมนั้น เราได้แจ้งให้ท่านทราบถึงเรื่องนี้ก่อนที่ท่านจะให้ความยินยอม

ตรวจสอบว่าการประมวลผลเป็นไปตามมาตรา 6 (1) (a) หรือ 9 (2) (a) แห่ง GDPR หรือไม่ได้จากแหล่งข้อมูลเกี่ยวกับมูลเหตุทางกฎหมายในการประมวลผลในข้อ II ของประกาศแจ้งหลักเกณฑ์ของ GDPR

8. สิทธิในการร้องเรียนต่อหน่วยงานกำกับดูแล

ในฐานะเจ้าของข้อมูลส่วนบุคคล ท่านมีสิทธิในการร้องเรียนต่อหน่วยงานกำกับดูแลภายใต้เงื่อนไขที่กำหนดไว้ในมาตรา 77 แห่ง GDPR

หน่วยงานกำกับดูแลที่กำกับดูแลหน่วยงานของเราคือ:

Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit

Ludwig-Erhard-Str 22, 20459 Hamburg

อีเมล: [email protected]

โทรศัพท์: +49 40 42854-4040

Information Commissioner’s Office
อีเมล: [email protected]
โทรศัพท์: 0303 123 1113

5. ข้อมูลเกี่ยวกับคำศัพท์ทางเทคนิคของ GDPR ซึ่งใช้ในประกาศ GDPR ฉบับนี้

คำศัพท์ทางเทคนิคที่เกี่ยวข้องกับการคุ้มครองข้อมูลส่วนบุคคลซึ่งใช้ในประกาศ GDPR ฉบับนี้ มีความหมายตามที่กำหนดไว้ในกฎหมายคุ้มครองข้อมูลส่วนบุคคล

ตรวจสอบรายละเอียดทั้งหมดเกี่ยวกับระเบียบข้อบังคับด้านการปกป้องข้อมูลทั่วไป (GDPR) ได้จากมาตรา 4 แห่ง GDPR

ท่านจะพบข้อมูลโดยละเอียดเพิ่มเติมเกี่ยวกับคำศัพท์ทางเทคนิคที่สำคัญที่สุดของกฎหมายคุ้มครองข้อมูลส่วนบุคคล (GDPR) ที่ใช้ในประกาศ GDPR ฉบับนี้ ด้านล่างนี้

“ข้อมูลส่วนบุคคล” หมายถึง ข้อมูลใดๆ ที่เกี่ยวข้องกับบุคคลธรรมดาที่ระบุตัวตน หรือบุคคลธรรมดาที่ระบุตัวตนได้ (“เจ้าของข้อมูล”) บุคคลธรรมดาที่ระบุตัวตนได้ หมายถึง บุคคลที่สามารถระบุตัวตนได้โดยตรงหรือโดยอ้อม โดยเฉพาะอย่างยิ่งโดยอ้างอิงถึงข้อมูลระบุตัวตน เช่น ชื่อ หมายเลขประจำตัว ข้อมูลที่ตั้ง ตัวระบุออนไลน์ หรือปัจจัยหนึ่งหรือหลายปัจจัยที่เฉพาะเจาะจงต่อลักษณะทางกายภาพ ทางสรีรวิทยา ทางพันธุกรรม ทางจิตใจ ทางเศรษฐกิจ ทางวัฒนธรรม หรือทางสังคมของบุคคลธรรมดานั้น

“เจ้าของข้อมูล” หมายถึง บุคคลธรรมดาที่ระบุตัวตนหรือบุคคลธรรมดาที่ระบุตัวตนได้ ซึ่งข้อมูลส่วนบุคคลอ้างอิงถึง

“การประมวลผล” หมายถึง การดำเนินการใดๆ หรือชุดการดำเนินการที่ดำเนินการกับข้อมูลส่วนบุคคลหรือชุดข้อมูลส่วนบุคคล ไม่ว่าจะโดยวิธีการอัตโนมัติหรือไม่ เช่น การรวบรวม การบันทึก การจัดระเบียบ การจัดโครงสร้าง การจัดเก็บ การดัดแปลงหรือแก้ไข การค้นคืน การปรึกษาหารือ การใช้ การเปิดเผยโดยการส่ง การเผยแพร่หรือการทำให้พร้อมใช้งานด้วยวิธีอื่น การจัดตำแหน่งหรือการรวมกัน การจำกัด การลบ หรือการทำลาย

“การสร้างโปรไฟล์” หมายถึง การประมวลผลข้อมูลส่วนบุคคลโดยอัตโนมัติทุกรูปแบบซึ่งประกอบด้วยการใช้ข้อมูลส่วนบุคคลเพื่อประเมินลักษณะส่วนบุคคลบางประการที่เกี่ยวข้องกับบุคคลธรรมดา โดยเฉพาะอย่างยิ่งการวิเคราะห์หรือคาดการณ์ลักษณะที่เกี่ยวข้องกับประสิทธิภาพการทำงาน สถานการณ์ทางเศรษฐกิจ สุขภาพ ความชอบ ความสนใจ ความน่าเชื่อถือ พฤติกรรม สถานที่หรือการเคลื่อนไหวของบุคคลธรรมดานั้น

“ผู้ควบคุมข้อมูล” หมายถึง บุคคลธรรมดาหรือนิติบุคคลหน่วยงานภาครัฐ หน่วยงานหรือองค์กรอื่นใดกำหนดจุดประสงค์และวิธีการใ การประมวลผลข้อมูลส่วนบุคคล โดยที่จุดประสงค์และวิธีการในการประมวลผลดังกล่าวกำหนดโดยกฎหมายของสหภาพหรือกฎหมายของรัฐสมาชิก ผู้ควบคุมข้อมูลหรือเกณฑ์เฉพาะสำหรับการเสนอแต่งตั้งผู้ควบคุมข้อมูล อาจกำหนดโดยกฎหมายของสหภาพหรือกฎหมายของรัฐสมาชิก；

“ผู้ประมวลผลข้อมูล” หมายถึง บุคคลธรรมดาหรือนิติบุคคล หน่วยงานภาครัฐ หน่วยงานหรือองค์กรอื่นใดที่ประมวลผลข้อมูลส่วนบุคคลในนามของผู้ควบคุมข้อมูล

“ผู้รับข้อมูล” หมายถึงบุคคลธรรมดาหรือนิติบุคคล หน่วยงานภาครัฐ หน่วยงานหรือองค์กรอื่นที่ได้รับการเปิดเผยข้อมูลส่วนบุคคล ไม่ว่าจะเป็นบุคคลที่สามหรือไม่ก็ตาม อย่างไรก็ตาม หน่วยงานของรัฐที่อาจได้รับข้อมูลส่วนบุคคลภายใต้กรอบการสอบสวนเฉพาะตามกฎหมายของสหภาพหรือรัฐสมาชิกจะไม่ถือเป็นผู้รับ การประมวลผลข้อมูลดังกล่าวโดยหน่วยงานของรัฐดังกล่าวจะต้องสอดคล้องกับกฎการคุ้มครองข้อมูลที่บังคับใช้ตามวัตถุประสงค์ของการประมวลผล

“บุคคลภายนอก” หมายถึง บุคคลธรรมดาหรือนิติบุคคลหน่วยงานภาครัฐ หน่วยงานหรือองค์กรอื่น ที่ไม่ใช่เจ้าของข้อมูล ผู้ควบคุมข้อมูลผู้ประมวลผลข้อมูล และบุคคลที่อยู่ภายใต้การอนุมัติโดยตรงซึ่งได้รับอนุญาตให้ประมวลผลข้อมูลส่วนบุคคล；

“องค์กรระหว่างประเทศ” หมายถึง องค์กรและหน่วยงานย่อยที่อยู่ระหว่างประเทศของรัฐ หรือหน่วยงานอื่นใดที่จัดตั้งขึ้นโดยหรือบนพื้นฐานของข้อตกลงระหว่างสองประเทศหรือมากกว่า；

"ประเทศที่สาม" หมายถึงประเทศที่ไม่ใช่รัฐสมาชิกของสหภาพยุโรป ("EU") หรือเขตเศรษฐกิจยุโรป ("EEA") หรือสหราชอาณาจักร

สำหรับผู้ใช้งานในประเทศบราซิล

มูลเหตุทางกฎหมายในการประมวลผลข้อมูล

หากคุณอยู่ในประเทศบราซิล มูลเหตุทางกฎหมายในการประมวลผลข้อมูลส่วนบุคคลของคุณที่เราอาจนำมาอ้างอิง มีดังนี้

1. การให้ความยินยอม (ในกรณีที่คุณให้ความยินยอม)

2. สัญญาข้อตกลง (ในกรณีที่การประมวลผลมีความจำเป็นต่อการปฏิบัติตามสัญญากับคุณ ตัวอย่างเช่น เพื่อการดำเนินงานของไซต์หรือการจัดส่งบริการใด ๆ ตามที่คุณร้องขอ)

3. ข้อผูกพันตามกฎหมาย (เพื่อปฏิบัติตามกฎหมาย กฎเกณฑ์และระเบียบข้อบังคับ หรือคำขอโดยหน่วยงานของรัฐ หน่วยงานตุลาการ หรือหน่วยงานบังคับใช้กฎหมาย) และ

4. เพื่อป้องกันการฉ้อโกงและเพื่อวัตถุประสงค์ในการรักษาความน่าเชื่อถือ

หากคุณมีข้อสงสัยใด ๆ เกี่ยวกับมูลเหตุทางกฎหมายสำหรับเราในการประมวลผลข้อมูลส่วนบุคคลของคุณ กรุณาติดต่อเราได้ที่ [email protected] (โปรดระบุ "Glenti" ในหัวเรื่องอีเมลของคุณ)

สิทธิ์ในการขอเปิดเผยข้อมูล การแก้ไขข้อมูล การลบหรือระงับการใช้ข้อมูล การโอนย้ายข้อมูล และการเพิกถอนความยินยอม

หากคุณอยู่ในประเทศบราซิล ในฐานะเจ้าของข้อมูล คุณมีสิทธิ์ขอให้เปิดเผยข้อมูล แก้ไขข้อมูล ลบข้อมูล ระงับการใช้ข้อมูล หรือขอโอนย้ายข้อมูลส่วนบุคคลของคุณ รวมถึงสิทธิในการเพิกถอนความยินยอมและสิทธิ์ในการรับทราบถึงผลกระทบในทางลบที่อาจเกิดขึ้นจากการถอนความยินยอมดังกล่าว ตลอดจนสิทธิ์ในการได้รับข้อมูลเกี่ยวกับหน่วยงานภาครัฐและเอกชนที่เราได้มีการแบ่งปันข้อมูลส่วนบุคคลของคุณด้วย ทั้งนี้เรามีหน้าที่ต้องดำเนินการตามคำร้องขอของคุณโดยไม่ชักช้าเกินสมควร คุณสามารถส่งคำขอทางอีเมลไปที่ [email protected] (โปรดระบุ "Glenti" ในหัวเรื่องอีเมล) หรือส่งไปรษณีย์ไปที่ Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000(attention: Legal Department, Starii)

ข้อมูลส่วนบุคคลที่อ่อนไหว

หากคุณอาศัยอยู่ในบราซิล คุณเข้าใจและยอมรับว่าเพื่อให้สามารถจัดบริการให้แก่คุณ เราอาจมีการจัดเก็บข้อมูลส่วนบุคคลที่อ่อนไหว เช่น ลักษณะของใบหน้า เพศ อายุของบุคคลในภาพหรือข้อมูลเสียงและองค์ประกอบอื่น ๆ ที่มีอยู่ในข้อมูลภาพหรือเสียง

ตัวแทน

หากคุณอาศัยในบราซิล คุณสามารถติดต่อหัวหน้าฝ่ายปกป้องข้อมูลของเราได้ทางอีเมลที่ [email protected] (โปรดระบุ "Glenti" ในหัวเรื่องอีเมล) หรือส่งไปรษณีย์ไปที่ Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (attention: Legal Department, Starii)

การถ่ายโอนข้อมูลระหว่างประเทศ

เพื่อให้บริการของเราแก่คุณ เราอาจมีการเก็บรวบรวมข้อมูลส่วนบุคคลของคุณจากแหล่งอื่น โอนข้อมูลดังกล่าวไปยังที่อื่น การจัดเก็บ และการประมวลผลข้อมูลดังกล่าวในสถานที่อื่น ๆ

• ข้อมูลส่วนบุคคลที่มีการถ่ายโอน: ดูรายละเอียดในหัวข้อ “ข้อมูลที่เราเก็บรวบรวม” ของนโยบายฉบับนี้ที่ระบุไว้ข้างต้น

• วันที่และวิธีการถ่ายโอนข้อมูล: การโอนเมื่อมีการส่งข้อมูลเพื่อการจัดเก็บและประมวลผล

• ประเทศที่มีการถ่ายโอนข้อมูลส่วนบุคคล: สิงคโปร์

• การเก็บรักษาข้อมูลส่วนบุคคล: ดูรายละเอียดในข้อ “การเก็บรักษาข้อมูล” ของนโยบายฉบับนี้ที่ระบุไว้ข้างต้น

เมื่อใดก็ตามที่เราแบ่งปันข้อมูลออกไปยังนอกประเทศที่คุณอาศัยอยู่ เราจะดำเนินการให้มั่นใจว่าการโอนข้อมูลดังกล่าวเป็นไปตามกฎหมายท้องถิ่นของคุณ เพื่อให้ข้อมูลส่วนบุคคลของคุณได้รับการปกป้องอย่างเหมาะสม

การเก็บรักษาข้อมูล

ภายใต้บังคับของกฎหมาย กฎเกณฑ์และระเบียบข้อบังคับที่เกี่ยวข้อง และเพื่อให้บรรลุวัตถุประสงค์ทางธุรกิจหรือทางกฎหมายของเรา เราจะจัดเก็บรักษาข้อมูลของคุณ (รวมถึงข้อมูลส่วนบุคคลของคุณ) ไว้เป็นระยะเวลาเท่าที่จำเป็นเพื่อให้เราสามารถให้บริการแก่คุณต่อไปได้ รวมถึงตลอดระยะเวลาอายุความตามที่กำหนดไว้ในประมวลกฎหมายแพ่งของบราซิล กฎหมาย LGPD กรอบกฎหมายว่าด้วยสิทธิพลเมืองบนอินเทอร์เน็ตของบราซิล และประมวลกฎหมายคุ้มครองผู้บริโภคของบราซิล

เราจะทำลายข้อมูลส่วนบุคคลของคุณโดยไม่ล่าช้าเมื่อข้อมูลส่วนบุคคลของคุณไม่มีความจำเป็นอีกต่อไป เมื่อเราทำการทำลายข้อมูลส่วนบุคคลของคุณ เราจะใช้มาตรการที่เหมาะสมในเชิงพาณิชย์และมีความเป็นไปได้ในทางเทคนิค เพื่อให้มั่นใจว่าข้อมูลส่วนบุคคลดังกล่าวจะถูกลบทิ้งอย่างถาวร

ภายหลังการสิ้นสุดการให้บริการ เราอาจจัดเก็บรักษาข้อมูลส่วนบุคคลของคุณไว้เพื่อปฏิบัติตามภาระผูกพันตามกฎหมายหรือระเบียบข้อบังคับ โอนข้อมูลให้แก่บุคคลภายนอกภายใต้หลักเกณฑ์การประมวลผลข้อมูลที่กำหนดไว้ในกฎหมาย LGPD และเพื่อการใช้งานเฉพาะด้านของเรา โดยข้อมูลนั้นจะถูกทำให้ไม่สามารถระบุตัวตนได้

กฎหมายที่ใช้บังคับ

หากคุณเป็นผู้ที่พำนักในประเทศบราซิล นโยบายฉบับนี้จะถูกบังคับใช้และตีความภายใต้กฎหมายของประเทศบราซิล

สำหรับผู้ใช้งานในประเทศเวียดนาม

หากคุณเป็นผู้ใช้งานในประเทศเวียดนาม เนื้อหาในส่วนนี้จะถือเป็นเงื่อนไขเพิ่มเติมและเป็นส่วนหนึ่งที่แยกออกจากกันไม่ได้ของนโยบายฉบับนี้ โดยได้รับการจัดทำขึ้นตามกฎหมายและระเบียบข้อบังคับที่เกี่ยวข้องในประเทศเวียดนาม ซึ่งรวมถึง Decree 13/2023/ND-CP ว่าด้วยการปกป้องข้อมูลส่วนบุคคล (ตามที่มีการแก้ไขเพิ่มเติมเป็นระยะ) ตลอดจนกฎหมาย ระเบียบข้อบังคับ ข้อกำหนดทางกฎหมาย และมาตรฐานแห่งชาติอื่น ๆ ที่เกี่ยวข้อง ซึ่งควบคุมหรือเกี่ยวข้องกับการประมวลผลข้อมูลส่วนบุคคลของคุณในระหว่างการใช้บริการของเรา (ซึ่งต่อไปนี้จะเรียกรวมกันว่า “ระเบียบข้อบังคับด้านความเป็นส่วนตัวของเวียดนาม”)

เงื่อนไขต่าง ๆ ในหัวข้อนี้ให้ตีความหมายเช่นเดียวกับที่กำหนดไว้ภายใต้นโยบายนี้ เว้นแต่จะมีการระบุไว้เป็นอย่างอื่นอย่างชัดเจน ในกรณีที่มีความขัดแย้งใด ๆ ระหว่างข้อกำหนดในหัวข้อนี้กับบทบัญญัติในเนื้อหาหลักของนโยบาย ให้ข้อกำหนดในส่วนนี้มีผลใช้บังคับเป็นสำคัญ

ข้อมูลที่เราเก็บรวบรวม

ในนโยบายฉบับนี้ "ข้อมูลที่เกี่ยวกับบุคคล" หรือ “ข้อมูลส่วนบุคคล” ให้หมายถึงข้อมูลใด ๆ ในรูปแบบของสัญลักษณ์ ตัวอักษร ตัวเลข รูปภาพ เสียง หรือในลักษณะที่คล้ายคลึงกันบนสื่ออิเล็กทรอนิกส์ที่เกี่ยวข้องกับบุคคลใดบุคคลหนึ่งหรือช่วยให้สามารถระบุตัวตนของบุคคลใดบุคคลหนึ่งได้ ข้อมูลส่วนบุคคลประกอบด้วยข้อมูลส่วนบุคคลพื้นฐานและข้อมูลส่วนบุคคลที่อ่อนไหว

ข้อมูลส่วนบุคคลบางประการที่เราเก็บรวบรวมอาจประกอบด้วย "ข้อมูลส่วนบุคคลที่อ่อนไหว" ซึ่งหมายถึง ข้อมูลส่วนบุคคลที่เกี่ยวข้องกับความเป็นส่วนตัวของคุณ ซึ่งหากถูกละเมิดจะส่งผลกระทบโดยตรงต่อสิทธิและประโยชน์อันชอบด้วยกฎหมายของคุณ ข้อมูลส่วนบุคคลที่อ่อนไหวที่เรารวบรวมและประมวลผลในเบื้องต้นอาจได้แก่ ข้อมูลเสียงและข้อมูลลักษณะบนใบหน้า

ขอบเขตการประมวลผลข้อมูล

นโยบายฉบับนี้อธิบายถึงวิธีที่เรา “ประมวลผล” ข้อมูลส่วนบุคคลของคุณ ซึ่งรวมถึงวิธีที่เราอาจเก็บรวบรวม บันทึก วิเคราะห์ ตรวจสอบ จัดเก็บ แก้ไข เปิดเผย เชื่อมโยง สืบค้น เรียกค้น เพิกถอน เข้ารหัส ถอดรหัส คัดลอก แชร์ ส่งต่อ จัดหา โอน ลบ ทำลาย หรือดำเนินการอื่นใดที่เกี่ยวข้องกับข้อมูลส่วนบุคคลของคุณ

มูลเหตุทางกฎหมายในการประมวลผลข้อมูลส่วนบุคคลของคุณ

เราจะประมวลผลข้อมูลส่วนบุคคลของคุณก็ต่อเมื่อเรามีมูลเหตุทางกฎหมายในการกระทำดังกล่าวเท่านั้น ในกรณีส่วนใหญ่ เราจะประมวลผลข้อมูลส่วนบุคคลของคุณหลังจากที่เราได้รับความยินยอมจากคุณตามวัตถุประสงค์ที่ระบุไว้ในนโยบายฉบับนี้

ข้อมูลส่วนบุคคลของคุณอาจถูกประมวลผลในกรณีต่อไปนี้ โดยไม่จำเป็นต้องได้รับความยินยอมจากคุณ:

1. ในกรณีที่มีความจำเป็นเร่งด่วนในการประมวลผลข้อมูลส่วนบุคคลที่เกี่ยวข้อง เพื่อปกป้องชีวิตและสุขภาพของคุณหรือบุคคลอื่น

2. การเปิดเผยข้อมูลส่วนบุคคลเพื่อให้เป็นไปตามที่กฎหมายกำหนด

3. การประมวลผลข้อมูลโดยหน่วยงานภาครัฐในกรณีที่มีการประกาศสถานการณ์ฉุกเฉินด้านการป้องกันประเทศ ความมั่นคงแห่งชาติ ความสงบเรียบร้อยและความปลอดภัยทางสังคม ภัยพิบัติร้ายแรง หรือโรคระบาดที่เป็นอันตราย หรือในกรณีที่มีความเสี่ยงต่อความมั่นคงและการป้องกันประเทศแต่ยังไม่ถึงขั้นประกาศสถานการณ์ฉุกเฉิน หรือเพื่อป้องกันและต่อต้านการจลาจลและการก่อการร้าย รวมถึงการป้องกันและปราบปรามอาชญากรรมและการละเมิดกฎหมายตามที่กฎหมายบัญญัติ

4. เพื่อเป็นการปฏิบัติตามหน้าที่ภายใต้สัญญาระหว่างคุณกับหน่วยงาน องค์กร และบุคคลที่เกี่ยวข้อง ตามที่กฎหมายกำหนด

5. เพื่อสนับสนุนการดำเนินงานของหน่วยงานภาครัฐตามที่กำหนดไว้ในกฎหมายเฉพาะฉบับต่าง ๆ และ

6. กรณีอื่นใดตามที่กฎหมายบัญญัติไว้

สิทธิ์ของคุณ

ภายใต้ระเบียบข้อบังคับด้านความเป็นส่วนตัวของเวียดนามที่ใช้บังคับ คุณมีสิทธิ์ต่อไปนี้เกี่ยวกับข้อมูลส่วนบุคคลของคุณที่ได้เปิดเผยให้แก่เรา:

• สิทธิ์ในการรับทราบ: คุณมีสิทธิที่จะได้รับแจ้งเกี่ยวกับกิจกรรมการประมวลผลข้อมูลส่วนบุคคลของคุณ เว้นแต่กฎหมายจะกำหนดไว้เป็นอย่างอื่น

• สิทธิในการให้ความยินยอม: คุณมีสิทธิที่จะตกลง (หรือไม่ตกลง) ในการประมวลผลข้อมูลส่วนบุคคลของคุณ ยกเว้นในกรณีต่อไปนี้

• ในกรณีที่มีความจำเป็นเร่งด่วนในการประมวลผลข้อมูลส่วนบุคคลที่เกี่ยวข้อง เพื่อปกป้องชีวิตและสุขภาพของคุณหรือบุคคลอื่น

• การเปิดเผยข้อมูลส่วนบุคคลเพื่อให้เป็นไปตามที่กฎหมายกำหนด

• การประมวลผลข้อมูลโดยหน่วยงานภาครัฐในกรณีที่มีการประกาศสถานการณ์ฉุกเฉินด้านการป้องกันประเทศ ความมั่นคงแห่งชาติ ความสงบเรียบร้อยและความปลอดภัยทางสังคม ภัยพิบัติร้ายแรง หรือโรคระบาดที่เป็นอันตราย หรือในกรณีที่มีความเสี่ยงต่อความมั่นคงและการป้องกันประเทศแต่ยังไม่ถึงขั้นประกาศสถานการณ์ฉุกเฉิน หรือเพื่อป้องกันและต่อต้านการจลาจลและการก่อการร้าย รวมถึงการป้องกันและปราบปรามอาชญากรรมและการละเมิดกฎหมายตามที่กฎหมายบัญญัติ

• เพื่อเป็นการปฏิบัติตามหน้าที่ภายใต้สัญญาระหว่างคุณกับหน่วยงาน องค์กร และบุคคลที่เกี่ยวข้อง ตามที่กฎหมายกำหนด

• เพื่อสนับสนุนการดำเนินงานของหน่วยงานภาครัฐตามที่กำหนดไว้ในกฎหมายเฉพาะฉบับต่าง ๆ และ

• กรณีอื่นใดตามที่กฎหมายบัญญัติไว้

  • สิทธิ์ในการสืบค้น: คุณมีสิทธิสืบค้นข้อมูลส่วนบุคคลของคุณเพื่อเรียกดู แก้ไข หรือร้องขอให้แก้ไขข้อมูลส่วนบุคคลของคุณ เว้นแต่กฎหมายจะกำหนดไว้เป็นอย่างอื่น

  • สิทธิ์ในการถอนความยินยอม: คุณมีสิทธิถอนความยินยอมในการประมวลผลข้อมูลส่วนบุคคลของคุณ เว้นแต่กฎหมายจะกำหนดไว้เป็นอย่างอื่น

  • สิทธิ์ในการลบข้อมูล: คุณมีสิทธิ์ลบหรือร้องขอให้ลบข้อมูลส่วนบุคคลของคุณ เว้นแต่กฎหมายจะกำหนดไว้เป็นอย่างอื่น

  • สิทธิ์ในการจำกัดการประมวลผลข้อมูล: คุณมีสิทธิจำกัดการประมวลผลข้อมูลส่วนบุคคลของตนเอง เว้นแต่กฎหมายจะกำหนดไว้เป็นอย่างอื่น โดยเราจะดำเนินการจำกัดการเข้าถึงข้อมูลภายใน 72 ชั่วโมงหลังจากได้รับคำร้องขอจากคุณ เว้นแต่กฎหมายจะกำหนดไว้เป็นอย่างอื่น

  • สิทธิ์ในการขอรับข้อมูล: คุณมีสิทธิ์ร้องขอให้เราจัดหาข้อมูลส่วนบุคคลของคุณให้แก่คุณ เว้นแต่กฎหมายจะกำหนดไว้เป็นอย่างอื่น

  • สิทธิ์ในการคัดค้าน: คุณมีสิทธิ์คัดค้านการประมวลผลข้อมูลส่วนบุคคลของเรา เพื่อป้องกันหรือจำกัดการเปิดเผยข้อมูลส่วนบุคคลของคุณ หรือการนำไปใช้เพื่อวัตถุประสงค์ในการโฆษณาและการตลาด เว้นแต่กฎหมายจะกำหนดไว้เป็นอย่างอื่น เราจะดำเนินการตามคำร้องขอของคุณภายใน 72 ชั่วโมงหลังจากได้รับคำร้องขอ เว้นแต่กฎหมายจะกำหนดไว้เป็นอย่างอื่น

  • สิทธิ์ในการร้องเรียน กล่าวโทษ และฟ้องร้อง: คุณมีสิทธิร้องเรียน กล่าวโทษ และฟ้องร้องคดีตามที่กฎหมายบัญญัติ

  • สิทธิ์ในการเรียกค่าสินไหมทดแทน: คุณมีสิทธิเรียกค่าสินไหมทดแทนตามกฎหมายหากมีการละเมิดกฎหมายที่ใช้บังคับ เว้นแต่กฎหมายจะกำหนดไว้เป็นอย่างอื่นหรือมีการตกลงกันเป็นอย่างอื่นระหว่างคุณกับเรา

  • สิทธิ์ในการปกป้องตนเอง: คุณมีสิทธิ์ในการปกป้องตนเองตามกฎหมายที่ใช้บังคับ หรือร้องขอให้หน่วยงานและองค์กรที่เกี่ยวข้องคุ้มครองสิทธิ์ทางแพ่งของคุณตามที่บัญญัติไว้ในมาตรา 11 แห่งประมวลกฎหมายแพ่งของเวียดนาม

หากคุณต้องการใช้สิทธิ์ใด ๆ หรือหากคุณมีคำถามเกี่ยวกับการประมวลผลข้อมูลส่วนบุคคลของเรา โปรดส่งคำร้องมายังเราโดยใช้รายละเอียดการติดต่อที่ระบุไว้ตอนต้นของนโยบายฉบับนี้ ในการประมวลผลคำร้องนี้ โปรดทราบว่าเราอาจขอให้คุณให้ข้อมูลเพิ่มเติมแก่เราเพื่อยืนยันตัวตนของคุณ

หน้าที่ของคุณ

ภายใต้ระเบียบข้อบังคับด้านความเป็นส่วนตัวของเวียดนามที่ใช้บังคับ คุณมีหน้าที่ต่อไปนี้เกี่ยวกับข้อมูลส่วนบุคคลของคุณที่ได้เปิดเผยให้แก่เรา:

• เพื่อปกป้องข้อมูลส่วนบุคคลของคุณเอง และร้องขอให้องค์กรหรือบุคคลที่เกี่ยวข้องปกป้องข้อมูลส่วนบุคคลของคุณ

• เพื่อดูแลและปกป้องข้อมูลส่วนบุคคลของเจ้าของข้อมูลรายอื่น

• เพื่อจัดหาข้อมูลส่วนบุคคลของคุณอย่างครบถ้วนและถูกต้อง เมื่อคุณให้ความยินยอมในการประมวลผลข้อมูล

• เพื่อมีส่วนร่วมในการเผยแพร่ทักษะการปกป้องข้อมูลส่วนบุคคล และ

• เพื่อปฏิบัติตามบทบัญญัติของกฎหมายว่าด้วยการคุ้มครองข้อมูลส่วนบุคคล

ระยะเวลาการเก็บรักษาข้อมูล

เราจะเริ่มประมวลผลข้อมูลส่วนบุคคลของคุณตั้งแต่เวลาที่คุณเข้าถึงหรือใช้บริการของเรา และเป็นระยะเวลาที่ไม่นานเกินกว่าที่จำเป็นสำหรับวัตถุประสงค์ที่ระบุไว้ในนโยบายฉบับนี้

หากเรามีความจำเป็นต้องประมวลผลข้อมูลส่วนบุคคลของคุณภายใต้หรือเพื่อปฏิบัติตามภาระผูกพันทางกฎหมาย เราจะเก็บรักษาข้อมูลส่วนบุคคลของคุณไว้ตราบเท่าที่จำเป็นเพื่อให้เราสามารถปฏิบัติตามภาระผูกพันดังกล่าวได้ เมื่อสิ้นสุดระยะเวลาการเก็บรักษาข้อมูลที่กำหนดหรือตามที่กฎหมายกำหนด เราจะดำเนินการลบข้อมูลส่วนบุคคลของคุณ

หน่วยงานที่มีส่วนเกี่ยวข้องกับการประมวลผลข้อมูลส่วนบุคคลของคุณ

เราอาจเปิดเผยข้อมูลส่วนบุคคลของคุณให้แก่บุคคลภายนอกเพื่อการประมวลผลให้เป็นไปตามวัตถุประสงค์ที่ระบุไว้ในหัวข้อ "วิธีการที่เราใช้ข้อมูล" และ "การแบ่งปันและการเปิดเผยข้อมูล" บุคคลเหล่านี้บางรายอาจตั้งอยู่ภายนอกประเทศเวียดนาม โดยบุคคลที่มีความเกี่ยวข้องหรือมีส่วนร่วมในการประมวลผลข้อมูลส่วนบุคคลของคุณประกอบด้วย:

• ผู้ให้บริการที่ให้บริการเพื่อสนับสนุนกิจกรรมทางธุรกิจของเรา ซึ่งรวมถึงผู้ที่มีส่วนเกี่ยวข้องในการให้บริการโฆษณา การประมวลผลการชำระเงิน การบริการลูกค้า การดำเนินการตามบริการที่ต้องสมัครใช้งาน การวิจัยและวิเคราะห์และการใช้งานในโครงสร้างพื้นฐานระบบคลาวด์

• ผู้ให้บริการแพลตฟอร์มโซเชียลมีเดีย หากคุณเลือกที่จะแชร์รูปภาพและ/หรือวิดีโอบนแพลตฟอร์มโซเชียลมีเดียดังกล่าว

• หน่วยงานบังคับใช้กฎหมาย หน่วยงานของรัฐ และหน่วยงานกำกับดูแล

• หน่วยงานในสังกัดของเราและ

• บุคคลภายนอกอื่น ๆ เพื่อวัตถุประสงค์ตามที่ระบุในหัวข้อ "การแบ่งปันและการเปิดเผยข้อมูล"

ภาษา

นโยบายความเป็นส่วนตัวฉบับนี้จัดทำและร่างขึ้นเป็นภาษาอังกฤษ แต่อาจมีการแปลเป็นภาษาอื่น ๆ (รวมถึงภาษาเวียดนาม) ในกรณีที่เกิดความขัดแย้งใดๆ ระหว่างข้อตกลงฉบับภาษาอังกฤษกับฉบับแปล ให้ถือเอาฉบับภาษาอังกฤษเป็นหลัก

개인정보 보호 정책

최종 수정일: 2026년 5월 18일

귀하의 개인 정보는 우리에게 중요합니다.

Starii Tech Pty Ltd 및 그 계열사(이하 "당사", "우리" 또는 "Starii")는 사용자(이하 "사용자" 또는 "귀하")의 개인정보 보호에 최선을 다합니다. 이 개인 정보 보호 정책(이 "정책")은 당사가 해당 데이터 보호법에 따라 컨트롤러 및/또는 비즈니스로서 모든 기능을 포함하여 Glenti 애플리케이션 및/또는 웹사이트를 사용하는 동안 귀하의 사용자 정보(귀하의 개인 정보 포함)를 수집, 저장, 사용, 관리 및 보호하는 방법에 관한 당사의 관행을 설명하기 위한 것입니다(당사 "서비스"). 본 정책에서 "계열사"란 Starii Tech Pty Ltd.를 직접적 또는 간접적으로 지배하거나, 지배를 받거나, 공동으로 지배를 받는 모든 법인을 의미합니다. 여기서 "지배"란 (i) 해당 법인 또는 기타 유사한 지분 또는 소유권 지분의 발행된 의결권이 있는 주식 또는 자본금의 50% 이상을 직접 또는 간접적으로 소유하는 경우, 또는 (ii) 계약상 약정을 통해 해당 법인의 경영 결정 및 경제적 이익을 지배하는 것을 의미합니다.

본 정책의 범위는 귀하가 당사 서비스를 사용할 때 당사가 수집하거나 수신한 귀하의 사용자 정보(개인 정보 포함)로만 제한된다는 점에 유의하시기 바랍니다. 이 정책에서 "개인 정보"는 수집된 정보와 관련된 개인을 식별, 연락 또는 위치 확인에 사용할 수 있는 모든 정보 또는 정보 조합을 의미합니다.

귀하가 EU 또는 영국 외 지역에 거주하는 사용자일 경우, 당사 서비스를 이용함으로써 귀하는 관련 법령이 허용하는 범위 내에서 본 정책에 따른 방식으로 귀하의 사용자 정보(개인정보 포함)의 수집, 이용, 처리, 보관, 공개 및 공유에 동의하는 것으로 이해됩니다. 이 정책의 조건 또는 이 정책에 대한 후속 변경 사항에 동의하지 않는 경우 당사 서비스 사용을 재고해 주시기 바랍니다.

당사 서비스를 이용할 때 (수집 시점에 명시된) 특정 범주의 데이터를 제공해야 한다는 점에 유의하시기 바랍니다. 필수 표시된 데이터를 충분히 제공하지 않는 경우 등록 절차를 완료하거나 서비스를 제공하지 못할 수 있습니다. 또한, 본 정책에서 용어를 정의하지 않는 한, 본 정책에서 사용된 모든 대문자 용어는 서비스 약관에서와 동일한 의미를 가집니다. 따라서 서비스 약관을 읽고 이해했는지 확인하세요.

본 정책 또는 개인정보 보호와 관련된 문의 사항이 있는 경우 이메일[email protected], (이메일 제목에 “Glenti”를 기재)이나 등기 우편(Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (수신: Starii 법무팀)으로 당사의 데이터 보호 책임자에게 문의하시기 바랍니다. 개인정보 보호 또는 지적 재산권 침해와 관련이 없는 기타 모든 문의, 피드백, 제안 및/또는 불만 사항(구독 취소, 결제 분쟁, 환불 요청 및 Glenti의 기술 지원을 포함하되 이에 국한되지 않음)은 이메일([email protected])을 통해 당사에 문의하시기 바랍니다. 귀하의 이메일이 잘못된 주제와 관련하여 잘못된 이메일 주소로 전송될 시 해당 요청이 제대로 처리되지 못하거나 지연될 수 있습니다.

수집하는 정보

당사 서비스를 제공하고 개선하기 위해 당사는 본 정책에 따라 귀하의 개인 정보 및 사용자 정보를 수집하고 처리합니다. 귀하가 이 정보를 제공하지 않으면 저희는 귀하에게 제품이나 서비스를 제공할 수 없습니다. 귀하는 당사에 제출된 모든 개인 정보 및 사용자 정보가 완전하고 정확하며 진실되고 올바른지 확인해야 합니다. 귀하가 그렇게 하지 않으면 당사가 귀하에게 당사 서비스의 전부 또는 일부를 제공하지 못할 수 있습니다.

계정 정보

귀하가 당사 서비스를 사용할 때 당사 서비스 및 모든 해당 기능을 최대한 활용하기 위해 당사 계정에 가입하는 것이 좋습니다. 귀하가 계정을 만들 때 당사는 다음 정보를 수집하고 이는 귀하를 식별하거나 귀하에게 서비스를 제공하는 데 이용될 수 있습니다.

• 필수: 이메일 주소

• 선택 사항: 이름, 사용자 이름, 성별

누구나 당사의 서비스를 이용할 수 있으나, 프리미엄 콘텐츠 접근 및 각종 혜택 이용 등 일부 서비스는 구독료가 부과됩니다(이하 "구독 서비스"). 귀하가 구독 서비스를 통해 구매를 진행하는 경우, 당사는 귀하의 기기 ID 또는 성명 등 개인을 식별할 수 있는 특정 정보를 수집합니다. 제3자 앱 스토어 또는 결제 프로세서는 거래 및 갱신을 처리할 목적으로 귀하의 금융 정보 및 청구 주소를 수신, 액세스 또는 사용할 수 있습니다. 제3자 앱 스토어 또는 결제 프로세서를 통해 콘텐츠를 구입했거나 구독 서비스에 가입한 경우 모든 구매에 대해 어떻게 개인 금융 정보를 유지하고 사용하는 지 이에 대한 정보는 해당 제3자의 약관을 참조해야 합니다. 당사는 의심의 여지를 없애기 위해 귀하로부터 어떠한 금융 정보도 수집하지 않습니다.

모바일 장치 정보

귀하가 모바일 기기에서 당사의 서비스를 이용하는 경우, 당사는 귀하의 기기에 관한 정보를 수집하며, 여기에는 Android ID, 사용자 ID(UID), 벤더 식별자("IDFV"), 오픈 익명 기기 식별자(OAID), 기기 유형, 기기 플랫폼, 제조사, 브랜드, 모델명, 운영체제 버전 및 해상도 등이 포함됩니다. 이러한 정보는 당사의 기술적 기능 개선, 서버 로드 밸런싱, 귀하의 모바일 기기와 관련된 기술 데이터 분석을 통한 서비스 및 그래픽 최적화 등 통계적 및/또는 분석적 목적을 위해 사용됩니다.

아래 "위치 정보" 섹션에 명시된 바와 같이 귀하가 당사와 공유하기로 선택한 경우 당사는 귀하의 모바일 장치에서 귀하의 위치 기반 정보를 수집할 수 있습니다. 나중에 위치 정보 공유를 중단하려면 모바일 장치에서 관련 설정을 편집하여 언제든지 그렇게 할 수 있습니다.

모바일 분석

서비스의 기능을 보다 잘 이해하고 개선하기 위해, 당사는 귀하의 애플리케이션 사용 빈도, 애플리케이션 내에서 발생하는 이벤트, 집계된 사용 현황, 성능 데이터 및 애플리케이션 다운로드 경로 등의 정보를 수집합니다.

네트워크 데이터

귀하가 당사 서비스를 사용할 때 당사는 사용자가 사용하는 통신사 및 네트워크의 분포를 이해하기 위해 통신사 이름 및 네트워크 유형을 포함하여 귀하가 사용하는 네트워크에 대한 정보를 수집할 수 있습니다. 또한 귀하가 선호하는 당사 서비스 이용 환경을 파악하기 위해 귀하가 연결하는 Wi-Fi 네트워크의 이름, Wi-Fi 네트워크의 위치, Wi-Fi 연결 시간 등의 정보를 수집할 수 있습니다.

대략적인 위치 정보

귀하가 당사와 공유하기로 선택한 경우 당사는 귀하의 모바일 장치에서 귀하의 위치 기반 정보를 수집할 수 있습니다.

• 필수: IP 주소 및 시스템 시간대

• 선택 사항: 국가 코드 및 시스템 국가.

이 정보는 사용자 분포 및 사용 시나리오를 이해하는 데 도움이 되며 사용자에게 올바른 버전의 앱들 또는 웹사이트, 지리적 위치의 재현 또는 사진을 찍거나 모든 동영상을 촬영하는 실시간 지리적 위치 게시를 제공할 수 있고 서비스를 개선합니다. 귀하의 동의를 얻지 않는 한 위치 데이터는 귀하를 개별적으로 식별하기 위해 획득되거나 사용되지 않습니다. 이 방침에서 별도로 명시된 경우를 제외하고, 당사는 이 위치 정보를 제3자와 공유하지 않습니다. 해당 정보의 수집 또는 이용을 더 이상 원하지 않는 경우, 인터넷 연결을 해제하거나 네트워크 및 기기 정보에 대한 당사의 접근을 비활성화할 수 있습니다. 귀하가 당사 서비스를 사용한 결과로 당사는 귀하의 네트워크 정보, IP 주소 및 시스템 시간대와 같은 일부 위치 정보를 계속 수신할 수 있습니다.

로그 정보

귀하가 특정 콘텐츠 생성 및 브라우징을 포함하여 일부 서비스를 사용할 때 Glenti에 저장된 특정 관련 로그 정보("로그 정보")를 자동으로 수집합니다. 로그 정보에는 (i) 귀하가 당사 서비스를 사용하는 시기와 빈도에 대한 세부 정보, (ii) 중요한 작업 경로, 오류, 충돌, 언어 및 시간대를 포함한 장치 통계가 포함될 수 있습니다. 본 로그 정보는 서비스를 개선하는 데 사용되며 사용자를 개별적으로 식별하는 데 사용되지 않습니다.

이미지 정보

귀하가 당사 서비스의 클라우드 편집 기능을 사용하는 경우, 귀하는 당사가 해당 서비스 제공 및 지속적인 최적화를 위해 귀하의 사진을 처리 목적으로 당사 서버에 업로드한 후 처리된 결과를 반환한다는 점을 이해하고 이에 동의합니다. 또한 당사는 귀하의 사진에 대한 EXIF 데이터(장비 유형, ISO 값, 전면/후면 카메라 정보 및 생성 시각 등이 포함될 수 있으며 이는 제조사에 따라 달라질 수 있음)를 수집하여 귀하의 기기에 보다 적합한 사진 효과 제공 등 서비스 최적화에 활용합니다. 귀하는 Glenti에서 카메라를 활성화하거나 당사가 귀하의 장치에 있는 사진에 액세스하도록 허용함으로써 당사가 사진 편집을 위해 귀하의 사진에 액세스, 수집 및/또는 사용할 수 있음에 동의하는 것입니다.

음성 안내

Glenti에서 마이크를 활성화함으로써 귀하는 동영상 편집을 위해 음성 데이터(예: 오디오 클립 또는 음성 녹음)를 수집할 수 있음에 동의하게 됩니다. 귀하의 음성 정보를 광고 목적으로 사용하지 않습니다. 장치의 운영 체제 설정을 사용하거나 장치의 마이크를 음소거하여 언제든지 장치의 마이크에 대한 Glenti의 액세스를 끌 수 있습니다.

메타데이터

메타데이터는 사용자 콘텐츠와 관련된 기술 데이터를 가리킵니다. 즉, 메타데이터는 데이터를 설명하는 데이터입니다. 예를 들어, 메타데이터는 컴퓨터 알고리즘과 인공 지능에 의해 생성되고 태깅된 사진 속 인물의 얼굴 특징, 성별, 연령, 및 사진에 포함된 기타 요소에 대한 분석 결과를 설명할 수 있습니다. 귀하가 당사 서비스를 이용하는 경우, 당사는 사진 메타데이터를 이용하여 "얼굴 인식", "특징점 인식", "영역 분할", "콘텐츠 태그" 및 이러한 기본 기능을 조합한 맞춤형 기능을 제공합니다. 당사는 당사 앱이 귀하의 사진을 처리할 때 귀하의 사진 메타데이터를 사용하여 더 적합한 필터와 더 나은 사진 효과를 제공할 수 있습니다. 당사는 또한 메타데이터를 사용하여 귀하에게 더 맥락상으로 관련된 제품 또는 서비스를 제공할 수 있습니다.

얼굴 특징 정보

특정 서비스를 제공하기 위해 위에서 언급한 메타데이터를 활용하는 것과 별도로 귀하의 얼굴 특징 정보(얼굴 이미지를 포함하되 이에 국한되지 않음)를 수집하고 얼굴 인식 기술을 사용하여 사진 및 카메라 경험에서 얼굴을 인식할 수 있습니다. 얼굴 인식 콘텐츠 및 얼굴 조작 기능을 제공하기 위해 얼굴 마크를 감지하고 사용할 수 있습니다. 당사 서비스는 얼굴 매핑 정보의 깊이와 관련하여 AR 기술의 계산 결과를 활용할 수 있으며, 얼굴 이미지 처리 효과를 보장하고 알고리즘을 사용하여 특징 분석을 수행하기 위해 얼굴 인식 기능을 사용해야 할 수 있습니다. 당사가 수집한 정보는 특정 개인을 식별하는 데 사용되지 않으며, 언급된 기능을 제공하기 위한 용도로만 사용됩니다. 콘텐츠 추천이 완료되거나 애플리케이션 또는 웹사이트 종료 시 얼굴 매핑 정보는 파기됩니다. 이 정보는 제3자와 공유되지 않습니다.

당사는 다른 목적으로 결과를 사용하거나 파일의 데이터를 캡처하거나 기록 목적으로 서버에 데이터를 업로드하지 않습니다.

쿠키

당사는 이용자 개개인에게 맞춤화된 서비스를 제공하기 위하여 이용자의 이용정보를 저장하고 수시로 불러오는 '쿠키(cookie)'를 사용합니다. 쿠키란 앱/웹 사이트를 운영하는데 이용되는 서버가 이용자의 기기에 보내는 소량의 정보이며 이용자 기기 내의 하드디스크에도 저장됩니다. 귀하는 쿠키 설치를 거부할 수 있습니다. 수집된 정보에는 귀하의 인터넷 프로토콜(IP) 주소, 브라우저 유형, 인터넷 서비스 공급자(ISP), 참조 및 종료 페이지, 운영 체제, 날짜 및 타임스탬프, 클릭스트림 데이터에 대한 정보가 포함될 수 있습니다.

• 쿠키의 사용목적 : 쿠키는 이용자가 방문한 각 서비스 및 웹사이트에 대한 방문 및 이용형태, 인기 검색어, 보안접속 여부 등을 파악하여 이용자에게 최적화된 정보 제공을 위해 사용됩니다.

• 쿠키의 설치, 운영 및 거부: 데이터 보호 설정상 필수적인 쿠키는 당사 앱에서 비활성화할 수 없습니다. 앱 사용자의 경우, iOS 기기에서는 설정에서 "추적" 권한을 비활성화할 수 있으며, Android 기기에서는 설정을 통해 광고 ID를 제거할 수 있습니다. 또한 사용자는 [email protected] (이메일 제목에 "Glenti" 기재)으로 이메일을 보내 쿠키 설치를 거부할 수 있습니다.

• 이용자가 쿠키의 저장을 거부할 경우 맞춤형 서비스 이용에 어려움이 있을 수 있습니다.

제3자 서비스가 수집하는 정보

귀하에게 제공되는 당사의 서비스에는 당사 서비스 제공자의 애플리케이션 프로그래밍 인터페이스(API) 또는 소프트웨어 개발 키트(SDK)가 포함될 수 있으며 이는 해당 서비스 제공자의 추적 도구가 있을 수 있습니다. 이러한 제3자는 당사 서비스에서 쿠키, API 및 SDK를 사용하고 사용자 정보를 수집 및 분석할 수 있습니다. 제3자는 각자의 개인 정보 보호 정책에 따라 장치 식별자, 지역(특정 언어가 사용되는 위치로 정의됨), 위치 정보 및 IP 주소와 같은 정보에 액세스할 수 있습니다. 해당 제3자에 대한 보다 상세한 정보를 원하시는 경우, [email protected]으로 이메일을 보내주시기 바라며, 이메일 제목에 "Glenti"를 기재해 주시기 바랍니다.

귀하가 당사에 적극적으로 제공한 정보

귀하가 당사에 연락할 때(고객 지원팀 및 데이터 보호 책임자 포함) 당사는 귀하가 당사에 제공한 데이터(예: 이메일 주소 및/또는 전화번호 등)를 수집합니다.

기타 정보

당사는 또한 귀하의 신원과 관련이 없는 기타 정보를 수집할 수도 있습니다. 예를 들어, 당사는 시스템 업그레이드를 더 잘 이해하기 위해 귀하의 운영 체제 유형 및 버전 번호에 대한 정보를 수집할 수 있으며, 언어 적응을 위해 귀하의 시스템 언어에 대한 정보를 수집할 수 있습니다. 당사가 그러한 정보 수집을 하기로 선택한다면 귀하에게 제공되는 서비스를 향상시킬 목적으로 수집하게 됩니다.

정보 사용 방법

위에 나열된 용도 외에도 다음 목적을 위해 사용자 정보 및 개인 정보를 수집하고 사용합니다.

1. 서비스. 고객 지원 포함해 사용자에게 제공되는 서비스 및 당사 제품을 통해 제공되는 기타 서비스의 제공, 처리, 유지, 개선 및 개발. 여기에는 귀하의 대략적인 위치 데이터를 기반으로 당사 서비스의 적절한 버전을 제공하는 것과 더불어, 사기 방지 등 리스크 관리 조치의 이행 및 오류의 탐지·해결을 위한 조치가 포함됩니다.

2. 통계 분석. 당사 제품 및 서비스 개선을 위한 제품 및 서비스 사용 통계를 개발 및 분석.

3. 계정 생성하기. 귀하가 당사 서비스를 사용하여 계정을 생성할 때 수집하는 개인 정보는 귀하의 계정 및 프로필을 생성하는 데 사용됩니다.

4. 귀하의 신원 확인하기. 귀하의 개인정보 보호 및 데이터 보안을 위해, 예를 들어 계정 로그인 시 또는 권리 행사를 위해 당사에 연락하는 경우 등 필요한 상황에서 본인 확인 절차가 수행될 수 있습니다.

5. 귀하로부터 피드백 수집. 귀하의 의견은 당사가 서비스를 개선하는 데 큰 도움이 됩니다. 귀하의 피드백을 추적하기 위해 저희는 귀하가 제공한 개인 정보를 사용하여 귀하에게 연락하고 기록을 보관할 수 있습니다.

6. 기타 목적. 당사는 "수집하는 정보" 항목에 명시된 목적을 위해 귀하의 정보를 수집, 저장, 유지 및 이용합니다. 또한 관련 법령, 규정, 시행 기준 또는 가이드라인을 준수하거나 관계 당국의 법 집행 및 조사에 협조하기 위한 목적, 서비스의 안전하고 안정적인 운영 유지, 귀하의 계정·네트워크·운영 및 시스템 보안 보호 및 피싱·웹사이트 사기·트로이목마 바이러스 예방, 그리고 각종 요청 처리의 목적으로도 이를 이용합니다.

정보 공유 및 공개

당사는 당사의 사업 활동을 돕기 위해 당사를 대신하여 서비스를 제공하는 제3자와 귀하의 정보를 공유할 수 있습니다. 이러한 서비스에는 다음이 포함될 수 있습니다.

1. 결제 처리,

2. 고객 서비스 제공,

3. 구독 서비스 실행,

4. 연구 및 분석 수행, 및

5. 클라우드 컴퓨팅 인프라를 제공합니다.

당사는 다음과 같은 목적을 제외하고 귀하의 개인 정보 전체 또는 일부를 제3자(당사의 서비스 제공업체 제외)와 공유하거나 공개하지 않습니다:

1. 다른 사람이나 재산의 보안을 보호,

2. 사기 방지 또는 처리,

3. 당사의 정당한 권리와 이익을 보호,

4. "당사가 수집하는 정보" 또는 "당사가 정보를 사용하는 방법" 섹션에 설명된 목적에 따라 조치 취함,

5. 일반적으로 인터넷 보안과 당사, 당사 사용자 및 제3자의 권리, 재산 및 안전을 유지하기 위해 고안된 법률, 규칙 및 규정 또는 정부 부서, 사법 당국, 법 집행 기관 또는 민간 단체의 요청을 준수, 및/또는

6. 합병, 인수, 자금조달 실사, 개편, 파산, 관리, 회사 자산 매각 또는 귀하의 정보가 매각 또는 이전될 수 있는 기타 사건에 관련된 거래를 평가하거나 완료합니다.

귀하의 정보 사용을 위한 근거

당사는 합법적인 근거가 있고 일반적으로 다음 4가지 법적 근거 중 하나에 의존하는 경우에만 개인 데이터를 수집하고 처리합니다: -

1. 동의(귀하가 동의한 경우),

2. 계약(예: 사이트 운영 또는 귀하가 요청한 서비스 제공과 같이 귀하와의 계약 이행을 위해 처리가 필요한 경우),

3. 정당한 이익(예: 귀하의 계정 보호, 고객 지원 제공을 포함하여 서비스를 제공하고 개선하기 위해 귀하의 정보를 사용해야 함). 당사는 그러한 이익이 귀하에 대한 영향에 의해 무시되지 않는 경우에만 우리의 정당한 이익을 법적 근거로 삼습니다(당사가 귀하의 동의를 얻지 않았거나 당사의 처리가 법에 의해 달리 요구되거나 허용되지 않는 한), 및

4. 법적 의무(법률, 규칙 및 규정 또는 정부 부서, 사법 당국 또는 법집행 기관의 요청을 준수하기 위해).

당사가 귀하의 개인 정보를 처리하는 방법을 대상으로 법적 근거에 관한 질문이 있는 경우 [email protected]으로 문의주시기 바랍니다(이메일 제목에 "Glenti"을 기재하세요).

제3자 웹사이트 및 서비스

당사 서비스에는 다른 웹사이트 및 서비스에 대한 링크가 포함될 수 있습니다. 또한 다른 웹사이트 및 서비스는 당사 서비스를 참조하거나 링크할 수 있습니다. 이러한 다른 도메인 및 웹사이트는 당사가 관리하지 않으며 당사는 제3자 웹사이트 또는 서비스에 대해 보증하거나 진술하지 않습니다. 당사는 상호작용하는 모든 웹사이트 및 서비스의 개인정보 보호정책을 사용자가 읽도록 권장합니다. 이러한 다른 웹사이트나 서비스를 방문하는 것은 귀하의 책임입니다.

정보 보안

당사는 정보의 유실, 부적절한 사용, 무단 접근 또는 공개를 방지하기 위해 합당한 조치를 취합니다. 예를 들어 당사 서비스 중 일부는 귀하의 개인 정보를 보호하기 위해 암호화 기술(예: SSL)을 사용합니다. 그러나 (인터넷 업계에서) 합리적인 보안 조치를 취하더라도 귀하의 정보가 100% 안전하다고 항상 보장할 수는 없음을 귀하는 이해하고 동의합니다. 귀하는 귀하가 당사에 제공한 정보의 보안을 보장하거나 보증할 수 없음을 이해하고 동의합니다. 당사는 의도하지 않은 공개에 대해서 책임을 지지 않습니다. 또한 귀하는 당사 서비스에 액세스하기 위해 귀하가 사용하는 시스템 및 통신 네트워크가 당사가 통제할 수 없는 요인으로 인해 실패할 수 있음을 이해하고 이에 동의합니다.

정보 액세스 및 제어

당사는 귀하가 당사 서비스를 사용할 때 귀하가 당사에 제공한 귀하의 개인 정보 또는 기타 개인 정보에 액세스, 업데이트 및 수정할 수 있도록 모든 합리적이고 적절한 기술적 조치를 취할 것입니다. 이러한 개인 정보에 액세스, 업데이트, 수정 또는 제거하기 전에 당사는 계정의 보안을 보호하기 위해 귀하의 신원을 확인할 수 있습니다.

데이터 보존

해당 법률, 규칙 및 규정과 비즈니스 또는 법적 목적의 이행에 따라 당사는 귀하가 당사 계정을 종료하는 즉시 귀하의 정보(개인 정보 포함)를 삭제할 것입니다.

프라이버시 권리

준거법에 따라 귀하는 다음과 같은 권리를 가질 수 있습니다: (i) 당사가 귀하의 개인 정보를 처리하고 있는지 확인을 요청. (ii) 귀하의 개인 정보에 대한 액세스 또는 사본을 획득. (iii) 귀하가 당사에 제공한 개인 정보의 전자 사본을 받거나 해당 정보를 다른 회사로 보내도록 당사에 요청(데이터 이동에 대한 권리). (iv) 귀하의 개인 정보 사용에 반대하거나 제한. (v) 부정확하거나 사실이 아니거나 불완전하거나 부적절하게 처리된 개인 정보의 수정 또는 수정을 추구. (vi) 귀하의 동의를 철회. (vii) 법률에 명시된 특정 예외에 따라 당사가 귀하에 대해 보유한 개인 정보 삭제를 요청.

귀하가 권리를 행사하고자 하는 경우, 이메일 제목에 "Glenti"를 명시하여 [email protected]으로 이메일을 보내시거나, 다음 주소로 우편을 통해 요청하실 수 있습니다. Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (수신: Starii 법무팀). 당사는 귀하의 이메일 또는 우편을 받고 나서 합리적인 기간 내에 준거법에 따라 귀하의 요청을 처리할 것이며, 법률에 명시된 특정 예외에 따라 귀하의 개인 정보 수집, 사용 및 공개를 중단할 것입니다. 당사는 귀하의 개인 정보를 보호하기 위해 귀하의 요청을 이행하기 전에 귀하의 신원을 확인하는 조치를 취할 것입니다. 귀하가 동의를 철회하거나 귀하의 개인 정보를 삭제하는 경우 당사 서비스의 일부 사용에 영향을 미칠 수 있음을 유의해 주시기 바랍니다.

캘리포니아 거주자는 캘리포니아 소비자 개인 정보 보호법에 의해 부여된 권리 행사로 인해 당사로부터 차별적인 대우를 받지 않을 권리가 있습니다.

아동에 대한 정보

당사는 16세 미만(또는 해당 지역에 적용되는 법률에 명시된 기타 연령)의 아동으로부터 고의로 개인 정보를 수집하거나 요청하지 않습니다. 귀하가 만약 16세 미만인 경우 이름, 주소, 전화번호 또는 이메일 주소를 포함하되 이에 국한되지 않는 개인 정보를 당사에 보내지 않도록 합니다. 당사가 만 16세 미만(또는 해당 지역에 적용되는 법률에 규정된 기타 연령)의 아동에 관한 정보를 보유하고 있다고 생각되면 [email protected](이메일 제목에 “Glenti”를 기재)로 이메일을 보내거나 등기 우편을 Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (수신: Starii 법무팀)로 보내주시기 바랍니다. 만약 당사가 16세 미만(또는 해당 지역에 적용되는 법률에 명시된 다른 연령)의 어린이로부터 개인 정보를 수집한 사실을 알게 되시면 즉시 해당 정보를 삭제하고 관련 계정을 종료하는 조치를 취하도록 하겠습니다.

국경 간 데이터 전송

사용자가 속한 관할권에 따라 본 방침에 명시된 해당 관할권의 특별 규정 및 정책에 따라, 귀하는 당사를 통해 또는 당사에 의해 수집된 모든 정보가 중화인민공화국 홍콩특별행정구("홍콩"), 일본, 대한민국, 싱가포르, 미국, 유럽 연합, 클라우드, 당사 서버, 당사 계열사의 서버 또는 당사 서비스 제공업체의 서버를 포함하되 이에 국한되지 않는 전 세계 어디에서나 당사 서비스 제공을 위해 전송, 처리 및 저장될 수 있음을 이해하고 이에 동의합니다.

준거법

본 정책은 법률 조항의 충돌에 관계없이 홍콩 법률에 따라 수립되고 발효되며 시행 및 해석됩니다. 이에 따라 발생하는 모든 분쟁은 서비스 약관에 따라 해결됩니다. 당사는 이 정책이 특정 관할권의 개인 정보 보호법을 준수함을 진술하거나 보증하지 않습니다. 따라서 귀하는 그러한 법률에 따라 이 정책을 해석해서는 안 됩니다.

본 정책의 개정

귀하는 관련 법규 및 당사의 비즈니스 결정에 따라 당사가 본 정책을 업데이트할 수 있다는 데 동의하며 귀하는 그러한 개정 사항을 따를 것에 동의합니다. 당사는 본 정책에 대한 중요한 변경 사항을 Glenti에 게시하거나 법에서 요구하는 다른 방법으로 귀하에게 통지할 것입니다.

유럽 경제 지역 및 영국 사용자용

유럽 일반 데이터 보호 규정 및 영국 일반 데이터 보호규정(총칭하여GDPR) 범위 내에서 개인정보를 처리하는 경우, 귀하의 개인정보 처리에 대한 관련 세부사항은 아래의 GDPR 공지사항에서 확인하실 수 있습니다.

일본 사용자의 경우

데이터 공개, 수정, 삭제 또는 사용 정지에 대한 권리

귀하가 일본에 있는 경우 데이터 주체로서 귀하는 개인 정보의 공개, 수정, 삭제 또는 사용 중지를 요청할 권리가 있으며 당사는 과도 지체 없이 귀하의 요청에 응할 의무가 있습니다. 이메일 제목에 "Glenti"를 명시하여 [email protected]으로 이메일을 보내 요청하시거나, 다음 주소로 우편을 통해 요청하실 수 있습니다. Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (수신: Starii 법무팀).

한국 사용자의 경우

국제 데이터 전송

당사는 이용자의 개인정보를 "정보이용방법"에서 명시한 범위 내에서만 처리하며, 원칙적으로 이용자의 개인정보를 제3자에게 제공하지 않습니다. 그러나 귀하의 동의가 있는 경우 귀하에게 정보 공유 및 공개에 설명된 당사 서비스를 제공하기 위해 귀하의 개인 정보를 수집, 전송 및 다른 곳에서 저장 및 처리할 수 있습니다.

• 전송된 개인 정보: 위의 본 정책의 "당사가 수집하는 정보" 섹션을 참조합니다.

• 전송 날짜 및 방법: 보관 및 처리를 위해 제출 시 전송

• 개인정보가 이전되는 국가: 싱가포르

• 개인 정보 보유: 위의 본 정책의 "데이터 보유" 섹션을 참조합니다.

또한, 당사는 귀하의 개인 정보를 대한민국 외부에 위치해 있는 다음 제3자에게 전송할 수 있습니다.

귀하의 거주지 외부에서 정보를 공유할 때마다 당사는 귀하의 개인 정보가 적절하게 보호되도록 정보 전송이 귀하의 현지 법률을 준수하도록 확인합니다.

귀하는 아래 명시된 개인정보 보호 담당 부서에 연락하여 귀하의 개인정보 해외 전송을 거부할 수 있습니다. 귀하가 상기 개인정보의 국외 이전을 거부하는 경우, 당사는 귀하의 개인정보를 국외 이전 대상에서 제외합니다. 단, 이 경우 당사는 개인정보의 해외 전송이 필요한 귀하의 당사 서비스 이용을 제한할 수 있습니다.

또한 당사는 다음과 같은 제3자로부터 귀하의 개인 정보를 수령할 수 있습니다.

데이터 보존

해당 법률, 규칙 및 규정과 비즈니스 또는 법적 목적의 이행에 따라 당사는 귀하가 당사 계정을 종료하는 즉시 귀하의 정보(개인 정보 포함)를 삭제할 것입니다. 당사는 귀하의 개인정보를 다음의 절차와 방법에 따라 파기합니다.

1. 파기절차 : 당사는 파기대상 개인정보를 선정하고 정보보호책임자의 승인을 받아 파기합니다.

2. 파기방법 : 전자적으로 저장, 파일된 개인정보는 기록 재생이 불가능한 수단을 사용을 통해 삭제가 가능한 방식을 취해 파기합니다.

개인정보 보호 및 불만처리 담당부서

Starii Tech Pty Ltd

수신: Arthur Law, 법무부 책임자, Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

Email: [email protected] (이메일 제목에 "Glenti"을 인용하세요)

개인정보처리방침 개정 내역

해당 없음

미국 내 사용자의 경우

귀하는 당사가 안면 인식 기술을 사용하여 귀하가 제공한 사진 또는 이미지에서 생체 정보를 수집할 수 있음에 동의합니다. 당사는 이러한 정보를 서비스 제공 및 개선, 내부 연구 목적으로 사용할 수 있습니다. 귀하의 생체 정보가 일리노이주 생체 정보 개인정보 보호법의 적용을 받는 경우, 당사는 귀하가 마지막으로 서비스와 상호작용한 날로부터 3년 이내에 귀하의 생체 정보를 삭제합니다.

관련 법률에 따라 귀하는 다음과 같은 권리를 가질 수 있습니다:

1. 당사가 귀하의 개인 정보를 처리하고 있는지 여부를 확인;

2. 귀하의 개인정보에 대한 액세스 또는 세부 정보가 포함된 사본을 획득;

3. 귀하가 당사에 제공한 개인정보의 전자 사본을 받거나 해당 정보를 다른 회사로 전송하도록 당사에 요청할 권리(데이터 이동권);

4. 개인 정보를 수정;

5. 다음 특정 처리 활동에 대한 거부 요청을 할 수 있는 권리: 당사가 "타겟 광고"("타겟 광고"는 관련 개인정보 보호법에 정의됨)를 위해 귀하의 개인정보를 처리하는 경우, 당사가 귀하의 개인정보를 "판매"("판매"는 관련 개인정보 보호법에 정의됨)하는 경우, 또는 당사가 귀하와 관련하여 법적 또는 이와 유사하게 중대한 영향을 미치는 특정 결정을 내리기 위해 프로파일링에 참여하는 경우 등;

6. 당사가 보유한 귀하의 개인 정보 삭제를 요청; 및

7. 요청 처리 거부 결정에 대해 이의를 제기.

해당 개인정보 보호법에 따른 권리를 행사하려면 이메일 [email protected](이메일 제목에 “Glenti”를 기재)이나 등기 우편(주소: Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000)으로 당사의 데이터 보호 책임자에게 문의하시기 바랍니다 (수신: Starii 법무팀). 당사는 관련 법률에 따라 이러한 요청을 처리합니다.

귀하가 버지니아주 거주자이고 귀하의 요청에 대한 당사의 결정에 대해 이의를 제기하고자 하는 경우, 이 사실을 당사에 알리고 이의를 뒷받침하는 정보를 당사에 제공함으로써 이의를 제기할 수 있습니다.

다음 항은 캘리포니아 소비자 개인정보 보호법(수시로 개정되는 경우)("CCPA")의 적용을 받는 당사의 개인정보 처리에만 적용됩니다.

CCPA는 캘리포니아 거주자에게 당사에서 수집한 개인정보의 범주와 지난 12개월 동안 당사에서 비즈니스 목적(예: 서비스 제공업체)으로 해당 개인정보를 공개했는지 여부를 알 권리를 부여합니다. 캘리포니아 거주자는 아래에서 이 정보를 확인할 수 있습니다:

당사가 개인정보를 수집하는 출처의 범주와 개인정보 사용 및 공개에 대한 당사의 비즈니스 및 상업적 목적은 위의 "당사가 수집하는 정보", "정보 사용 방법" 및 "정보 공유 및 공개"에 각각 명시되어 있습니다. 당사는 위의 "데이터 보유"에 명시된 기간에 따라 개인 정보를 보유합니다.

지난 12개월 동안 당사는 어떠한 개인정보(CCPA에 정의된)도 "판매"하지 않았으며, 16세 미만 미성년자의 개인정보 "판매"에 대한 실제 지식도 없습니다.

지난 12개월 동안 우리는 "CCPA에서 정의하는 바에 따른" 컨텍스트 간 행동 광고를 위해 어떠한 개인 정보도 "공유"하지 않았으며, 미성년자인 16세 미만의 개인 정보에 대한 "컨텍스트 간 행동 광고"의 "공유"에 대한 실제 지식도 없습니다.

당사는 다음과 같은 목적으로만 민감한 개인정보를 사용 및 공개합니다:

1. 서비스 제공.

2. 저장 또는 전송된 개인정보의 가용성, 신뢰성, 무결성 및 기밀성을 손상시키는 보안 사고를 예방, 탐지 및 조사.

3. 당사를 겨냥한 악의적, 기만적, 사기적 또는 불법적 행위에 저항하고 해당 행위에 책임이 있는 자를 기소.

4. 자연인의 신체적 안전을 보장.

5. 당사 제품, 서비스 또는 장치의 품질 또는 안전성을 확인 또는 유지하고, 당사 서비스 또는 장치를 개선, 업그레이드 또는 강화.

6. 개인의 특성을 추론하지 않는 목적.

캘리포니아 주민은 캘리포니아 소비자 개인 정보 보호법에 의해 부여 된 권리를 행사하기 위해 차별적 인 대우를받지 않을 권리가 있습니다.

당사는 사용자의 개인정보를 보호하기 위해 CCPA에 따라 제출된 요청을 이행하기 전에 사용자의 신원을 합리적으로 확인하기 위한 조치를 취합니다. 이러한 단계에는 귀하가 당사가 개인 정보를 수집한 사람이거나 승인된 대리인인지 합리적으로 확인할 수 있는 충분한 정보를 제공하도록 요청하는 것이 포함될 수 있습니다. 확인 과정의 예시로는 당사와 연결된 이메일 주소나 전화번호를 제공하고 해당 이메일 주소나 전화번호로 전송된 확인 코드를 제공하도록 요청하는 것이 포함될 수 있습니다.

오직 귀하 또는 귀하을 대신하여 법적으로 허가된 대표자만이 귀하의 개인 정보와 관련한 검증 가능한 소비자 요청을 할 수 있습니다. 대리인을 승인하려면 귀하와 귀하가 지정한 대리인이 서명한 서면 승인서를 제출하고 위의 "개인정보 보호 권리"에 나와 있는 정보를 사용하여 당사에 문의하여 추가 지침을 받아야 합니다.

당사는 "컨텍스트 간 행동 광고"를 위해 개인 정보를 "판매"하거나 개인 정보를 '공유'하지 않으므로 옵트아웃 선호 신호에 응답하지 않습니다.

네바다 주 거주자인 경우, 당사는 귀하의 개인 정보를 "판매"하지 않습니다.

GDPR 고지

서비스 제공과 관련하여 당사는 개인정보를 처리합니다.

GDPR이 개인 데이터 처리에 적용되는 경우, 당사는 GDPR에 따라서만 개인 데이터를 처리합니다. 위의 (일반적인) 개인정보 보호정책에서 GDPR이 개인 데이터 처리에 적용되는 시기에 대한 정보를 확인할 수 있습니다. 이 GDPR 고지는 위의 (일반) 개인정보 보호정책을 보완하며, GDPR에 따라 개인 데이터를 처리하는 방법에 대한 자세한 정보를 포함합니다.

1. 컨트롤러에 대한 정보

   1. 콘트롤러의 신원 및 연락처

Starii Tech Pty Ltd

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. 컨트롤러 담당자의 신원 및 연락처 정보

The European Union(유럽연합)

Rivacy GmbH

Mexikoring 33

22297 Hamburg

독일

[email protected]

The United Kingdom(영국)

Rivacy Limited

St James’ Hall, Mill Road

Lancing, West Sussex BN15 0PT

United Kingdom

3. 개인정보 보호 컨트롤러 책임자의 연락처

Starii Tech Pty Ltd

Legal Department

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. 개인 데이터 처리에 관한 정보

   1. 처리되는 개인 정보에 대한 세부 사항

1. 개인 데이터의 처리 과정에 대한 세부 정보

2. 개인 데이터의 수신자 및 제3국 및/또는 국제기구로의 개인 데이터 전송에 대한 세부 사항

글로벌 운영을 지원하기 위해, 당사는 귀하의 개인정보를 국외로 이전하여 당사의 계열사 및 다음의 제3자에게 제공할 수 있습니다.

귀하의 개인정보가 EEA, 영국 또는 스위스 외 지역으로 이전되는 경우, 당사는 적절한 보호조치가 마련되도록 보장합니다. 여기에는 다음이 포함될 수 있습니다:

1. 수령인이 소재한 국가에 대해 EU 집행위원회의 적정성 결정이 존재하는 경우,

2. 당사가 GDPR 제46조 제2항 (c)에 따른 표준 데이터 보호 조항(또는 영국 및 스위스에 대해 승인된 이에 상응하는 조항)을 수령인과 체결한 경우,

3. 특정 상황에서는 관련 법령에 따른 예외 규정을 적용하되, 귀하의 개인정보 보호를 위해 해당 법령에서 요구하는 적절한 보호조치를 함께 시행하는 경우.

국경 간 데이터 이전을 위한 당사의 보호조치에 대한 정보를 요청하시려면, 섹션 I에 기재된 연락처 정보를 통해 당사로 문의해 주시기 바랍니다.

3. 쿠키 사용에 대한 정보태그 또는 유사한 기술 삽입

다음 섹션에서는 현재 쿠키에 대해서만 설명합니다. 유사한 기술(브라우저 지문, 로컬 저장소, 세션 저장소 등)을 사용하는 경우 이 섹션을 적절히 조정해야 합니다.

당사는 서비스 제공과 관련하여 쿠키를 사용합니다. 이 과정에서 당사는 귀하의 기기 및/또는 귀하의 기기 브라우저의 처리 및 저장 기능을 사용하고 귀하의 기기 및/또는 귀하의 기기 브라우저의 메모리에서 정보를 수집합니다.

이에 대한 자세한 내용은 아래에서 확인할 수 있습니다.

1. 쿠키에 대한 일반 정보

쿠키는 앱을 사용하거나 웹사이트를 방문할 때 사용자의 기기에 저장되는 작은 텍스트 파일로, 정보를 담고 있습니다. 동일한 기기에서 관련 앱 또는 웹사이트를 다시 사용하거나 방문하면 쿠키와 쿠키에 포함된 정보를 검색할 수 있습니다.

a) 자사 및 타사 쿠키

쿠키의 출처에 따라 자사 쿠키와 타사 쿠키를 구분할 수 있습니다:

b) 임시 쿠키 및 영구 쿠키

쿠키가 활성화된 상태로 유지되는 기간에 따라 임시 쿠키와 영구 쿠키를 구분할 수 있습니다:

c) 동의가 필요 없는 쿠키 및 동의가 필요한 쿠키

쿠키의 기능과 사용 목적에 따라 일부 쿠키에는 사용자의 동의가 필요합니다. 따라서 사용자의 동의를 필요로 하는 쿠키와 그렇지 않은 쿠키를 구분할 수 있습니다:

2. 당사 앱/웹사이트에서 사용되는 쿠키의 관리

1. 앱/웹사이트의 개인정보 보호 설정에서 쿠키 사용에 대한 동의의 부여 및 철회

특정 쿠키 사용에 동의가 필요한 경우, 당사는 귀하가 이전에 이에 대해 동의한 경우에만 이러한 쿠키를 사용합니다. 특정 쿠키 사용에 동의가 필요한지 여부에 대한 정보는 본 개인정보처리방침의 섹션 III.3.에 있는 당사 서비스에서 사용되는 쿠키에 대한 정보에서 확인할 수 있습니다.

앱 또는 웹사이트의 데이터 보호 설정에서 꼭 필요한 쿠키를 비활성화할 수 없습니다. 그러나 일반적으로 앱이나 브라우저에서 언제든지 이러한 쿠키를 비활성화할 수 있습니다.

2. 기기/브라우저 설정을 사용하여 쿠키 관리

기기 또는 브라우저의 설정에서 쿠키 사용을 관리할 수도 있습니다. 브라우저마다 쿠키 설정을 구성하는 방법이 다릅니다. 이에 대한 자세한 내용은 http://www.allaboutcookies.org/manage-cookies/ 에서 확인할 수 있습니다.

단, 기기에서 일반적으로 쿠키를 비활성화하면 앱 또는 웹사이트의 일부 기능이 제대로 작동하지 않거나 전혀 작동하지 않을 수 있음을 알려드립니다.

1. 당사 앱/웹사이트에서 사용되는 쿠키

당사 앱/웹사이트에서는 다음과 같은 쿠키가 사용될 수 있습니다.

4. 데이터 주체의 권리에 대한 정보

데이터 주체로서 귀하는 귀하의 개인 데이터 처리와 관련하여 다음과 같은 권리를 갖습니다:

• 액세스 권한(GDPR 제15조)

• 수정할 권리(GDPR 제16조)

• 삭제할 권리("잊혀질 권리")(GDPR 제17조)

• 처리 제한에 대한 권리(GDPR 제18조)

• 데이터 이동성 권리(GDPR 제20조)

• 이의제기할 권리(GDPR 제21조)

• 동의 철회 권리(GDPR 제7조 3항)

귀하는 섹션 I의 연락처 정보를 사용하여 이러한 권리를 행사하기 위해 당사에 연락할 수 있습니다.

해당되는 경우, 귀하의 권리 행사, 특히 데이터 이동권 및 이의제기권 행사를 용이하게 하는 특정 방식 및 메커니즘에 대한 정보는 본 GDPR 고지의 섹션 II에 있는 개인정보 처리에 관한 정보에서 확인할 수 있습니다.

또한 귀하는 감독 기관에 불만을 제기할 권리가 있습니다(GDPR 77조).

귀하의 개인 데이터 처리에 대한 권리에 대한 보다 자세한 정보는 아래에서 확인하실 수 있습니다:

1. 액세스 권한

데이터 주체로서 귀하는 GDPR 제15조에 규정된 조건에 따라 액세스 및 정보를 얻을 권리가 있습니다.

이는 특히 귀하가 당사가 귀하의 개인 데이터를 처리하고 있는지 여부에 대해 당사로부터 확인을 받을 권리가 있음을 의미합니다. 그렇다면 귀하는 GDPR 제15조 1항에 나열된 개인 데이터 및 정보에 액세스할 수 있는 권리도 있습니다. 여기에는 처리 목적, 처리 중인 개인 데이터의 범주, 개인 데이터가 공개되었거나 공개될 수신자 또는 수신자 범주에 관한 정보가 포함됩니다(GDPR 제15조 1항 (a), (b) 및 (c)).

액세스 및 정보에 대한 권리의 전체 범위는 GDPR 제15조에서 확인할 수 있습니다.

2. 수정할 권리

데이터 주체로서 귀하는 GDPR 제16조에 규정된 조건에 따라 정정할 권리가 있습니다.

이는 특히 귀하가 개인 데이터의 부정확성을 수정하고 불완전한 개인 데이터를 완성하기 위해 과도한 지체 없이 당사에 요청할 권리가 있음을 의미합니다.

수정 권리의 전체 범위는 GDPR 제16조에서 확인할 수 있습니다.

3. 삭제할 권리("잊혀질 권리")

데이터 주체로서 귀하는 GDPR 제17조에 규정된 조건에 따라 삭제할 권리("잊혀질 권리")가 있습니다.

즉, 귀하는 당사로부터 귀하의 개인 데이터 삭제를 요청할 권리가 있으며, 당사는 GDPR 제17조 1항에 열거된 사유 중 하나가 적용되는 경우 지체 없이 귀하의 개인 데이터를 삭제해야 할 의무가 있습니다. 예를 들어, 개인 데이터가 수집 또는 처리된 목적과 관련하여 더 이상 필요하지 않은 경우(GDPR 제17조 1항 (a)호)가 이에 해당할 수 있습니다.

만약 당사가 개인 데이터를 공개하고 삭제해야 하는 의무가 있다면, 당사는 사용 가능한 기술과 시행 비용을 고려하여 합리적인 조치를 취해야 합니다. 이 조치에는 기술적 조치를 포함하여 개인 데이터를 처리하는 관리자에게 해당 관리자가 해당 개인 데이터의 링크, 사본 또는 복제를 삭제하도록 요청하는 것이 포함됩니다(GDPR 제17조(2)).

삭제할 권리("잊혀질 권리")는 GDPR 제17조 3항에 열거된 사유 중 하나로 인해 처리가 필요한 경우에는 적용되지 않습니다. 예를 들어 법적 의무를 준수하거나 법적 청구권의 설정, 행사 또는 방어를 위해 처리가 필요한 경우(GDPR 제17조 제3항 (b) 및 (e)호)가 이에 해당할 수 있습니다.

삭제할 권리('잊혀질 권리')의 전체 내용은 GDPR 17조에서 확인할 수 있습니다.

4. 처리 제한에 대한 권리

데이터 주체로서 귀하는 GDPR 제18조에 규정된 조건에 따라 처리를 제한할 권리가 있습니다.

즉, 귀하는 GDPR 제18조 1항에 규정된 조건 중 하나가 적용되는 당사로부터 개인 데이터 처리 제한을 요청할 권리가 있다는 것을 의미합니다. 예를 들어 개인 데이터의 정확성에 대해 이의를 제기하는 경우가 이에 해당할 수 있습니다. 그러한 경우에는, 개인 데이터의 정확성을 확인하기 위한 기간 동안 데이터 처리 제한이 유지됩니다(GDPR 제18조(1)(a)).

"제한"이란 저장된 개인 데이터가 향후 처리를 제한하기 위해 표시된 것을 의미합니다(GDPR 제4조(3)).

처리 제한에 대한 권리의 전체 범위는 GDPR 18조에서 확인할 수 있습니다.

5. 데이터 이동성에 대한 권리

데이터 주체로서 귀하는 GDPR 제20조에 규정된 조건에 따라 데이터 이동에 대한 권리가 있습니다.

즉, 귀하는 일반적으로 귀하가 당사에 제공한 귀하의 개인 데이터를 구조화되고 일반적으로 사용되며 기계 판독이 가능한 형식으로 수신할 권리가 있으며, 처리가 GDPR 제6조 제1항 (a) 또는 제9조 제2항 (a)에 따른 동의 또는 GDPR 제6조 제1항 (b)에 따른 계약에 근거하고 자동화된 수단으로 수행되는 경우 해당 데이터를 당사의 방해 없이 다른 컨트롤러에게 전송할 수 있습니다(GDPR 제20조 제1항).

처리 사례가 GDPR 제6조 제1항 (a) 또는 제9조 제2항 (a)에 따른 동의에 근거하는지 또는 GDPR 제6조 제1항 (b)에 따른 계약에 근거하는지 이에 대한 정보는 본 GDPR 고지의 섹션 II에 있는 처리의 법적 근거에 관한 정보에서 확인할 수 있습니다.

데이터 이동성에 대한 권리를 행사할 때 귀하는 일반적으로 기술적으로 가능한 경우 귀하의 개인 데이터를 당사에서 다른 컨트롤러로 직접 전송할 수 있는 권리도 있습니다(GDPR 제20조 2항).

데이터 이동성에 대한 권리의 전체 범위는 GDPR 20조에서 확인할 수 있습니다.

6. 이의 제기할 권리

데이터 주체로서 귀하는 GDPR 제21조에 규정된 조건에 따라 이의를 제기할 권리가 있습니다.

당사는 귀하와의 첫 번째 커뮤니케이션에서 데이터 주체로서 귀하가 이의를 제기할 수 있는 권리가 있음을 명시적으로 알려드립니다.

이에 대한 자세한 정보는 아래에서 확인할 수 있습니다:

데이터 주체의 특정 상황과 관련된 근거에 따라 이의를 제기할 권리

개인 정보 주체로서, 귀하는 귀하의 특정 상황과 관련된 이유로 언제든지 GDPR 제6조(1)(e) 또는 (f)에 근거하여 처리되는 귀하의 개인 데이터에 이의를 제기할 권리가 있습니다. 이는 해당 규정에 따라 프로파일링을 포함한 개인 데이터 처리를 의미합니다.

다음 GDPR 공지의 섹션 II에서 처리의 법적 근거에 관한 정보를 확인하면, 해당 처리가 GDPR 제6조 제1항 (e) 또는 (f)에 근거하는지 여부를 알 수 있습니다.

귀하의 특정 상황과 관련된 이의가 있는 경우, 당사는 귀하의 이익, 권리 및 자유보다 우선하는 처리 또는 법적 청구의 성립, 행사 또는 방어를 위한 강력한 합법적 근거를 입증하지 못하는 한 더 이상 귀하의 개인정보를 처리하지 않습니다.

이의 제기 권리의 전체 범위는 GDPR 21조에서 확인할 수 있습니다.

직접 마케팅에 대한 거부권

귀하의 개인정보가 직접 마케팅 목적으로 처리되는 경우, 귀하는 그러한 직접 마케팅과 관련된 범위 내에서 프로파일링을 포함하여 그러한 마케팅을 위한 귀하의 개인정보 처리에 대해 언제든지 이의를 제기할 권리가 있습니다.

직접 마케팅 목적으로 개인정보를 처리하는지 여부와 그 정도에 대한 정보는 본 GDPR 고지의 섹션 II에 있는 처리의 법적 근거에 관한 정보에서 확인할 수 있습니다.

직접 마케팅 목적의 처리에 반대하는 경우, 당사는 더 이상 이러한 목적으로 귀하의 개인 데이터를 처리하지 않습니다.

이의 제기 권리의 전체 범위는 GDPR 21조에서 확인할 수 있습니다.

7. 동의 철회 권리

처리 사례가 GDPR 제6조 제1항 (a) 또는 제9조 제2항 (a)에 따른 동의를 기반으로 하는 경우, 데이터 주체로서 귀하는 GDPR 제7조 제3항에 따라 언제든지 동의를 철회할 수 있는 권리가 있습니다. 귀하의 동의 철회는 철회 전까지 귀하의 동의에 근거하여 발생한 처리의 적법성에 영향을 미치지 않습니다. 당사는 귀하가 동의하기 전에 이 사실을 알려드립니다.

해당 처리가 GDPR 제6조 제1항 (a) 또는 제9조 제2항 (a)에 근거하는지 여부에 대한 정보는 이 GDPR 공지의 섹션 II에 있는 처리의 법적 근거에 관한 정보에서 확인할 수 있습니다.

8. 감독 기관에 불만을 제기할 권리

데이터 주체로서 귀하는 GDPR 제77조에 규정된 조건에 따라 감독 기관에 불만을 제기할 권리가 있습니다.

당사를 담당하는 감독 기관은 다음과 같습니다:

Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit

Ludwig-Erhard-Str 22, 20459 Hamburg

E-mail: [email protected]

Phone: +49 40 42854-4040

정보 위원회 사무실
이메일: [email protected]
전화: 0303 123 1113

5. 본 GDPR 고지에서 사용된 GDPR의 기술 용어에 대한 정보

본 GDPR 고지에서 사용된 데이터 보호와 관련된 기술 용어는 일반 데이터 보호 규정에서 사용되는 의미를 갖습니다.

일반 개인정보 보호 규정의 정의에 대한 전체 범위는 GDPR 제4조에서 확인할 수 있습니다.

본 GDPR 고지에서 사용된 일반 개인정보 보호 규정의 가장 중요한 기술 용어에 대한 자세한 정보는 아래에서 확인할 수 있습니다:

"개인정보"란 식별되거나 식별 가능한 자연인 ('데이터 주체')과 관련된 모든 정보를 의미합니다. 식별 가능한 자연인은 특히 이름, 식별 번호, 위치 데이터, 온라인 식별자 또는 물리적, 생리적, 유전적, 정신적, 경제적, 문화적 또는 사회적 신원과 관련된 하나 이상의 요소에 따라 직접 또는 간접적으로 식별될 수 있는 자연인을 말합니다;

"데이터 주체"는 개인정보가 참조하는 각각의 식별되거나 식별 가능한 자연인을 의미합니다;

"처리"는 개인 데이터 또는 개인 데이터 집합에 대해 자동 수단 여부에 상관없이 수행되는 모든 조작 또는 일련의 조작을 의미합니다. 이러한 조작에는 수집, 기록, 조직, 구조화, 저장, 적응 또는 변경, 검색, 조회, 사용, 전송을 통한 공개, 배포 또는 기타 방법으로 이용 가능하게 하는 것, 정렬 또는 결합, 제한, 삭제 또는 파괴 등이 포함됩니다;

"프로파일링"이란 자연인과 관련된 특정 인적 측면을 평가하기 위해 개인 데이터를 사용하는 자동화된 형태의 모든 처리를 의미합니다. 특히 업무 성과, 경제 상황, 건강, 개인 취향, 관심사, 신뢰성, 행동, 위치 또는 이동과 관련된 측면을 분석하거나 예측하는 데 사용됩니다;

"컨트롤러"란 단독으로 또는 다른 사람과 공동으로 개인정보 처리의 목적과 수단을 결정하는 자연인 또는 법인, 공공 기관, 대행사 또는 기타 기관을 의미하며, 그러한 처리의 목적과 수단이 유럽연합 또는 회원국 법률에 의해 결정되는 경우, 관리자 또는 그 지정을 위한 구체적인 기준은 유럽연합 또는 회원국 법률로 규정될 수 있습니다;

"처리자"는 컨트롤러를 대신하여 개인정보를 처리하는 자연인 또는 법인, 공공 기관, 대행사 또는 기타 기관을 의미합니다;

"수신자"는 제3자 여부에 관계없이 개인 데이터가 공개되는 자연인 또는 법인, 공공 기관, 대행사 또는 기타 기관을 의미합니다. 그러나 연합법 또는 회원국 법에 따라 특정 조사의 범위 내에서 개인 데이터를 수신할 수 있는 공공 당국은 수신자로 간주되지 않습니다. 해당 공공 당국에 의한 해당 데이터의 처리는 처리 목적에 따라 적용 가능한 데이터 보호 규정을 준수해야 합니다;

"제3자"란 데이터 주체, 컨트롤러, 프로세서 및 컨트롤러 또는 프로세서의 직접적인 권한 아래에서 개인 데이터를 처리할 권한이 부여된 자연인 또는 법적인 단체, 공공기관, 기관 또는 기타 기관을 말합니다.

"국제기구"란 공적 국제법의 적용을 받는 기구 및 그 하부 기구 또는 둘 이상의 국가 간의 협정에 의해 또는 협정에 근거하여 설립된 기타 기구를 의미합니다.

"제3국"이란 유럽연합("EU"), 유럽경제지역("EEA") 또는 영국의 회원국이 아닌 국가를 의미합니다.

브라질 사용자의 경우

데이터 처리에 대한 법적 근거

귀하가 브라질에 거주하는 경우, 당사가 의존할 수 있는 귀하의 개인 정보 처리의 법적 근거는 다음과 같습니다:

1. 동의(귀하가 동의한 경우),

2. 계약(예: 사이트 운영 또는 귀하가 요청한 서비스 제공과 같이 귀하와의 계약 이행을 위해 처리가 필요한 경우),

3. 법적 의무(법률, 규칙 및 규정 또는 정부 부서, 사법 당국 또는 법집행 기관의 요청을 준수하기 위해); 및

4. 사기를 방지하고 신용을 보호하기 위한 목적.

당사가 귀하의 개인 정보를 처리하는 방법을 대상으로 법적 근거에 관한 질문이 있는 경우 [email protected]으로 문의주시기 바랍니다(이메일 제목에 "Glenti"을 기재하세요).

데이터 공개, 정정, 삭제 또는 사용 중지, 이동성 및 동의 철회 권리

브라질에 거주하는 경우, 데이터 주체로서 귀하는 개인 데이터의 공개, 수정, 삭제, 사용 중지 또는 이전 권리를 요청할 권리가 있으며, 동의 철회 권리와 그러한 철회의 잠재적 부정적 영향에 대한 정보를 받을 권리가 있으며, 귀하의 개인 데이터를 공유한 공공 및 사설 기관에 대한 정보를 받을 권리가 있으며, 당사는 부당한 지체 없이 귀하의 요청에 응할 의무를 가집니다. 이메일 제목에 "Glenti"를 명시하여 [email protected]으로 이메일을 보내 요청하시거나, 다음 주소로 우편을 통해 요청하실 수 있습니다. Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (수신: Starii 법무팀).

민감한 개인 정보

귀하가 브라질에 거주하는 경우, 귀하는 당사의 서비스를 제공하기 위해 사진 또는 음성 데이터에 포함된 인물의 얼굴 특징, 성별, 나이 및 기타 요소와 같은 민감한 개인정보를 수집할 수 있음을 이해하고 이에 동의합니다.

대표

귀하가 브라질에 거주하는 경우, [email protected]으로 이메일을 통해 당사의 데이터 보호 책임자에게 연락하실 수 있으며(이메일 제목에 "Glenti"를 기재), 또는 다음 주소로 우편을 통해 연락하실 수 있습니다. Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (수신: Starii 법무팀).

국제 데이터 전송

당사는 귀하에게 서비스를 제공하기 위해 귀하의 개인정보를 수집하고, 다른 곳으로 전송하고, 다른 곳에서 저장 및 처리할 수 있습니다.

• 전송된 개인 정보: 위의 본 정책의 "당사가 수집하는 정보" 섹션을 참조합니다.

• 전송 날짜 및 방법: 보관 및 처리를 위해 제출 시 전송

• 개인정보가 이전되는 국가: 싱가포르

• 개인 정보 보유: 위의 본 정책의 "데이터 보유" 섹션을 참조합니다.

귀하의 거주지 외부에서 정보를 공유할 때마다 당사는 귀하의 개인 정보가 적절하게 보호되도록 정보 전송이 귀하의 현지 법률을 준수하도록 확인합니다.

데이터 보존

해당 법률, 규정 및 당사의 비즈니스 또는 법적 목적의 이행을 고려하여, 당사는 귀하에게 당사의 서비스를 계속 제공하기 위해 필요한 기간 동안 (귀하의 개인 정보를 포함한 정보를) 보유할 것이며, 또한 브라질 시민법, LGPD(개인정보 보호법), 브라질 인터넷 환경의 기본 권리 및 브라질 소비자 보호법에 규정된 제한 기간 동안 보존될 것입니다.

당사는 개인정보가 불필요하게 되었을 때 지체 없이 해당 개인정보를 파기합니다. 당사는 귀하의 개인정보 파기 시 상업적으로 합리적이고 기술적으로 가능한 조치를 취하여 개인정보를 영구적으로 삭제합니다.

서비스 종료 후 당사는 법적 또는 규제 의무를 준수하기 위해 귀하의 개인정보를 보유할 수 있으며, LGPD에 명시된 데이터 처리 요건을 준수하는 경우 제3자에게 양도할 수 있으며, 해당 정보가 익명화되는 경우 당사의 독점적 사용을 위해 보관할 수 있습니다.

준거법 선택

귀하가 브라질에 거주하는 경우, 본 정책은 브라질 법률에 따라 시행되고 해석됩니다.

베트남 사용자의 경우

사용자가 베트남에 거주하는 경우, 이 섹션은 본 정책의 보충 및 필수적인 부분을 구성하며, 베트남의 관련 법률 및 규정, 포함하여 개인 데이터 보호에 관한 법령 13/2023/ND-CP(수시로 개정됨) 및 서비스 이용 중 귀하의 개인 정보 처리와 관련된 기타 관련 법률, 규정, 규제 요구 사항 및 국가 표준에 따라 작성되었습니다(총칭하여 "베트남 개인정보 보호 규정"이라 함).

이 섹션의 용어는 달리 명시되지 않는 한 본 정책에 정의된 것과 동일한 의미를 갖습니다. 이 섹션의 약관과 정책 본문의 조항이 상충하는 경우, 이 섹션의 약관이 우선합니다.

수집하는 정보

본 정책에서 "개인 정보" 또는 "개인 데이터"는 전자 매체에 저장된 기호, 문자, 숫자, 이미지, 소리 등과 같은 형태의 정보로, 특정 개인과 관련되거나 특정 개인을 식별하는 데 도움을 주는 정보를 의미합니다. 개인 정보에는 기본 개인 데이터와 민감한 개인 데이터가 포함됩니다.

당사가 수집하는 개인정보 중 일부는 '민감한 개인정보'를 포함할 수 있습니다. 이는 개인정보와 관련된 개인 데이터로, 위반 시 사용자의 정당한 권리와 이익에 직접적인 영향을 미칠 수 있는 데이터를 말합니다. 당사가 수집 및 처리하는 민감 개인 정보에는 음성 정보 및 얼굴 특징 정보가 포함되며 이에 한정되지 않습니다.

처리 범위

본 정책은 당사가 귀하의 개인정보를 "처리"하는 방법을 설명합니다. 여기에는 당사가 귀하의 개인정보와 관련하여 수집, 기록, 분석, 확인, 저장, 수정, 공개, 연계, 액세스, 검색, 철회, 암호화, 해독, 복사, 공유, 전송, 제공, 이전, 삭제, 파기 또는 기타 관련 조치를 취하는 방법이 포함됩니다.

개인정보 처리에 대한 법적 근거

당사는 법적 근거가 있는 경우에만 귀하의 개인정보를 처리합니다. 대부분의 경우, 당사는 개인정보 처리방침에 명시된 목적을 위해 귀하의 동의를 얻은 후 귀하의 개인정보를 처리합니다.

다음과 같은 경우에도 귀하의 개인정보가 처리될 수 있으며, 이 경우 귀하의 동의가 필요하지 않습니다:

1. 귀하 또는 타인의 생명과 건강을 보호하기 위해 관련 개인정보를 즉시 처리해야 하는 긴급한 경우;

2. 법률에 따라 개인 정보를 공개할 수 있습니다;

3. 국가 방위, 안보, 사회 질서와 안전, 대규모 재해 또는 위험한 전염병 등의 비상사태 발생 시, 또는 비상사태 선포가 필요하지는 않지만 국가 안보와 방위에 위협이 될 가능성이 있는 경우, 폭동과 테러를 방지하거나 범죄 및 법 위반을 예방하고 대처하기 위해, 관할 국가 기관이 개인 정보를 처리할 수 있습니다.

4. 법률에 규정된 대로 관련 기관, 단체 및 개인과의 계약에 따른 의무 이행;

5. 전문 법률에 규정된 국가 기관의 활동을 지원하기 위한 경우.

6. 기타 법률에 규정된 경우.

사용자권리

해당 베트남 개인정보 보호 규정에 따라 귀하는 당사에 공개하는 귀하의 개인정보와 관련하여 다음과 같은 권리를 갖습니다:

• 알 권리: 법률에 별도의 규정이 없는 한, 귀하는 자신의 개인 정보와 관련된 데이터 처리 활동에 대해 알 권리가 있습니다.

• 동의할 권리: 귀하는 다음의 경우를 제외하고 개인정보 처리에 동의(또는 동의하지 않음)할 권리가 있습니다:

• 귀하 또는 타인의 생명과 건강을 보호하기 위해 관련 개인정보를 즉시 처리해야 하는 긴급한 경우;

• 법률에 따라 개인 정보를 공개할 수 있습니다;

• 국가 방위, 안보, 사회 질서와 안전, 대규모 재해 또는 위험한 전염병 등의 비상사태 발생 시, 또는 비상사태 선포가 필요하지는 않지만 국가 안보와 방위에 위협이 될 가능성이 있는 경우, 폭동과 테러를 방지하거나 범죄 및 법 위반을 예방하고 대처하기 위해, 관할 국가 기관이 개인 정보를 처리할 수 있습니다.

• 법률에 규정된 대로 관련 기관, 단체 및 개인과의 계약에 따른 의무 이행;

• 전문 법률에 규정된 국가 기관의 활동을 지원하기 위한 경우.

• 기타 법률에 규정된 경우.

  • 액세스 권한: 귀하는 법률에서 달리 규정하지 않는 한, 귀하의 개인정보를 열람, 수정 또는 정정을 요청하기 위해 귀하의 개인정보에 액세스할 권리가 있습니다.

  • 동의를 철회할 권리: 법률에서 달리 규정하지 않는 한, 귀하는 개인정보 처리와 관련하여 동의를 철회할 권리가 있습니다.

  • 삭제할 권리: 귀하는 법률에서 달리 규정하지 않는 한 귀하의 개인정보를 삭제하거나 삭제를 요청할 권리가 있습니다.

  • 데이터 처리 제한 권리: 귀하는 법률에서 달리 규정하지 않는 한 귀하의 개인 정보 처리를 제한할 권리가 있습니다. 법률에서 달리 규정하지 않는 한 제한은 요청 후 72시간 이내에 수행됩니다.

  • 데이터를 제공받을 권리: 귀하는 법률에서 달리 규정하지 않는 한 당사에 귀하의 개인 정보 제공을 요청할 권리가 있습니다.

  • 거부할 권리: 귀하는 법률에서 달리 규정하지 않는 한, 귀하의 개인정보 공개 또는 광고 및 마케팅 목적의 사용을 방지하거나 제한하기 위해 당사의 개인정보 처리에 이의를 제기할 권리가 있습니다. 당사는 법률에서 달리 규정하지 않는 한 요청을 받은 후 72시간 이내에 귀하의 요청을 이행합니다.

  • 불만 제기, 고발 및 소송을 제기할 권리: 귀하는 법률에 따라 불만을 제기하고, 고발하고, 소송을 제기할 권리가 있습니다.

  • 보상 청구 권리: 귀하는 법률에서 규정하거나 귀하와 당사가 달리 합의하지 않는 한, 관련 법률을 위반한 경우 법률에 따라 보상을 청구할 권리가 있습니다.

  • 정당방위 권리: 사용자는 해당 법률에 따라 정당방위를 하거나 베트남 민법 제11조에 규정된 대로 관련 기관 및 단체에 사용자의 시민권 보호를 요청할 수 있는 권리가 있습니다.

귀하의 권리를 행사하거나 당사의 개인정보 처리에 대해 궁금한 점이 있는 경우 본 정책의 시작 부분에 명시된 연락처 정보를 사용하여 당사에 요청을 보내주시기 바랍니다. 이 요청을 처리하기 위해 신원 확인 차 추가 정보 제공을 요청할 수 있다는 점에 유의하시기 바랍니다.

사용자의 의무

해당 베트남 개인정보 보호 규정에 따라 귀하는 당사에 공개하는 귀하의 개인정보와 관련하여다음과 같은 의무가 있습니다:

• 귀하의 개인정보를 보호하고 관련 기관 및 개인에게 귀하의 개인정보를 보호하도록 요청;

• 다른 정보 주체의 개인정보를 존중하고 보호합니다;

• 처리 동의 시 개인정보를 완전하고 정확하게 제공;

• 개인 정보 보호 기술 배포에 참여; 및

• 개인정보 보호에 관한 법률의 규정을 준수

보존 기간

당사는 귀하가 당사 서비스를 접근하거나 이용하는 시점부터, 이 정책에서 정한 목적을 달성하는 데 필요한 기간 동안만 귀하의 개인 정보를 처리합니다.

당사가 법적 의무에 따라 또는 법적 의무를 준수하기 위해 귀하의 개인정보를 처리해야 하는 경우, 당사는 해당 의무를 준수하는 데 필요한 기간 동안 귀하의 개인정보를 보관합니다. 해당 데이터 보존 기간이 만료되거나 법률에 의해 요구되는 경우, 당사는 귀하의 개인정보를 삭제합니다.

귀하의 개인 정보 처리에 관여하는 조직

당사는 "정보 사용 방법" 및 "정보 공유 및 공개" 섹션에 명시된 목적에 따라 귀하의 개인 정보를 제3자에게 제공할 수 있습니다. 이러한 당사자 중 일부는 베트남 외부에 위치할 수 있습니다. 귀하의 개인 정보 처리와 관련이 있거나 관여하는 이러한 당사자는 다음과 같습니다:

• 광고, 결제 처리, 고객 서비스, 구독 서비스 이행, 연구 및 분석, 클라우드 컴퓨팅 인프라 제공과 관련된 서비스 제공업체를 포함하여 당사의 비즈니스 활동에 도움이 되는 서비스를 제공하는 서비스 제공업체;

• 소셜 미디어 플랫폼에서 사진 및/또는 동영상을 공유하기로 선택한 경우 소셜 미디어 플랫폼 운영자;

• 법 집행 기관, 공공 기관 및 규제 기관;

• 당사의 계열사; 및

• "정보 공유 및 공개" 섹션에 명시된 목적을 위한 기타 제3자.

언어

이 개인정보 보호정책은 영어로 작성되었지만, 다른 언어(베트남어를 포함하되 이에 국한되지 않음)로 번역될 수 있습니다. 이 계약의 영어 버전과 여기에 대한 모든 번역 사이에 충돌이 발생할 경우 영어 버전이 우선 적용됩니다.

Chính sách quyền riêng tư

Lần sửa đổi gần nhất: 18 tháng 5 năm 2026

Chúng tôi coi trọng quyền riêng tư của bạn.

Starii Tech Pty Ltd và các đơn vị liên kết ("chúng tôi" hoặc "Starii") cam kết bảo vệ quyền riêng tư của người dùng ("người dùng" hoặc "bạn"). Chính sách quyền riêng tư này ("Chính sách" này) nhằm giải thích phương pháp của chúng tôi liên quan đến cách chúng tôi thu thập, lưu trữ, sử dụng, quản lý và bảo vệ thông tin người dùng của bạn (bao gồm cả thông tin cá nhân của bạn) với tư cách là đơn vị kiểm soát và/hoặc doanh nghiệp theo luật hiện hành về bảo vệ dữ liệu trong quá trình bạn dùng ứng dụng RoboNeo và/hoặc trang web của ứng dụng Glenti, bao gồm mọi tính năng của ứng dụng này ("Dịch vụ" của chúng tôi). Theo mục đích của Chính sách này, thuật ngữ "đơn vị liên kết" nghĩa là mọi đơn vị trực tiếp hoặc gián tiếp kiểm soát, chịu sự kiểm soát của hay thuộc quyền kiểm soát chung của Starii Tech Pty Ltd. Theo đó, "kiểm soát" nghĩa là (i) trực tiếp hoặc gián tiếp sở hữu hơn 50% cổ phần biểu quyết đang lưu hành hoặc cổ phần vốn của đơn vị đó hay vốn cổ phần/quyền lợi sở hữu tương đương, hoặc (ii) kiểm soát quyết định quản trị và lợi ích kinh tế của đơn vị đó theo thỏa thuận trong hợp đồng.

Vui lòng lưu ý rằng phạm vi của Chính sách này chỉ giới hạn ở thông tin người dùng của bạn (bao gồm cả thông tin cá nhân của bạn) mà chúng tôi thu thập hay nhận được khi bạn sử dụng Dịch vụ của chúng tôi. Trong Chính sách này, "thông tin cá nhân" nghĩa là mọi thông tin hay tập hợp thông tin có thể dùng thể nhận diện, liên hệ hay định vị một cá nhân gắn liền với thông tin thu thập được.

NẾU BẠN LÀ NGƯỜI DÙNG Ở NGOÀI LIÊN MINH CHÂU ÂU/VƯƠNG QUỐC ANH, BẰNG CÁCH SỬ DỤNG DỊCH VỤ CỦA CHÚNG TÔI, BẠN ĐỒNG Ý VỚI CHÍNH SÁCH NÀY VÀ CHO PHÉP THU THẬP, SỬ DỤNG, XỬ LÝ, LƯU GIỮ, TIẾT LỘ VÀ CHIA SẺ THÔNG TIN NGƯỜI DÙNG CỦA BẠN, BAO GỒM CẢ THÔNG TIN CÁ NHÂN CỦA BẠN, THEO CÁCH THỨC ĐƯỢC QUY ĐỊNH TRONG CHÍNH SÁCH NÀY, TRONG PHẠM VI ĐƯỢC PHÁP LUẬT HIỆN HÀNH CHO PHÉP. NẾU KHÔNG ĐỒNG Ý VỚI BẤT KỲ ĐIỀU KHOẢN NÀO CỦA CHÍNH SÁCH NÀY HAY BẤT KỲ THAY ĐỔI NÀO SAU NÀY ĐỐI VỚI CHÍNH SÁCH NÀY, VUI LÒNG KHÔNG SỬ DỤNG DỊCH VỤ CỦA CHÚNG TÔI.

Vui lòng lưu ý rằng bạn buộc phải cung cấp một số hạng mục dữ liệu nhất định (như được nêu tại thời điểm thu thập) khi sử dụng Dịch vụ của chúng tôi. Trong trường hợp bạn không cung cấp hay cung cấp không đầy đủ dữ liệu được đánh dấu là bắt buộc, chúng tôi có thể sẽ không hoàn tất được quy trình đăng ký hay không cung cấp được Dịch vụ của chúng tôi cho bạn. Ngoài ra, vui lòng lưu ý rằng, trừ khi chúng tôi định nghĩa một thuật ngữ trong Chính sách này, tất cả các thuật ngữ viết hoa dùng trong Chính sách này sẽ có cùng ý nghĩa như trong Điều khoản dịch vụ của chúng tôi. Vì vậy, vui lòng đảm bảo rằng bạn đã đọc và hiểu Điều khoản dịch vụ của chúng tôi.

Nếu bạn có thắc mắc nào về Chính sách này hay bất kỳ vấn đề nào về quyền riêng tư, vui lòng liên hệ với Chuyên viên bảo vệ dữ liệu của chúng tôi qua email [email protected] (vui lòng đề cập "Glenti" trong tiêu đề email) hoặc qua địa chỉ bưu chính đã đăng ký là Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (gửi đến: Phòng Pháp lý, Starii). Vui lòng lưu ý rằng đối với tất cả các thắc mắc, phản hồi, đề xuất và/hoặc khiếu nại khác không liên quan đến quyền riêng tư hay vấn đề vi phạm quyền sở hữu trí tuệ (bao gồm nhưng không giới hạn ở tranh chấp về việc hủy gói đăng ký, thanh toán, yêu cầu hoàn tiền và dịch vụ hỗ trợ kỹ thuật của Glenti), bạn nên liên hệ với chúng tôi qua email [email protected]. Nếu bạn gửi email đến một địa chỉ email không chính xác, có chủ đề email không phù hợp, thì yêu cầu của bạn có thể bị chậm xử lý hay không xử lý được.

THÔNG TIN CHÚNG TÔI THU THẬP

Để cung cấp và cải thiện Dịch vụ, chúng tôi sẽ thu thập và xử lý thông tin cá nhân và thông tin người dùng của bạn theo Chính sách này. Nếu bạn không cung cấp thông tin này thì chúng tôi không thể cung cấp sản phẩm hay Dịch vụ cho bạn. Bạn cần đảm bảo rằng mọi thông tin cá nhân và thông tin người dùng mà bạn gửi cho chúng tôi đều hoàn chỉnh, chính xác, đúng sự thật và xác đáng. Nếu không, chúng tôi không thể cung cấp một phần hay toàn bộ Dịch vụ của chúng tôi cho bạn.

Thông tin tài khoản

Khi bạn sử dụng Dịch vụ của chúng tôi, chúng tôi có thể khuyên bạn nên đăng ký tài khoản với chúng tôi để tận dụng tối đa Dịch vụ của chúng tôi và tất cả tính năng trong đó. Khi bạn tạo tài khoản, chúng tôi sẽ thu thập các thông tin sau và chúng có thể được sử dụng để nhận dạng bạn hoặc cung cấp Dịch vụ của chúng tôi cho bạn:

• Bắt buộc: địa chỉ email

• Không bắt buộc: tên, tên người dùng, giới tính

Ai cũng có thể truy cập Dịch vụ của chúng tôi, nhưng có một số dịch vụ sẽ yêu cầu đóng phí đăng ký, chẳng hạn như để truy cập nội dung cao cấp và hưởng các đặc quyền ("Dịch vụ gói đăng ký"). Nếu bạn chọn mua Dịch vụ gói đăng ký, chúng tôi sẽ thu thập một số thông tin nhận diện cá nhân, chẳng hạn như ID thiết bị hoặc tên của bạn. Đơn vị xử lý thanh toán hoặc cửa hàng ứng dụng của bên thứ ba có thể nhận, truy cập hoặc sử dụng thông tin tài chính và địa chỉ thanh toán của bạn cho mục đích xử lý giao dịch và gia hạn dịch vụ. Nếu mua nội dung hoặc đăng ký Dịch vụ gói đăng ký thông qua đơn vị xử lý dữ liệu hoặc cửa hàng ứng dụng của bên thứ ba, bạn nên tham khảo điều khoản của bên thứ ba đó để biết thông tin về cách họ duy trì và sử dụng thông tin tài chính cá nhân cho mọi giao dịch mua hàng. Để làm rõ, chúng tôi sẽ không thu thập thông tin tài chính nào từ bạn.

Thông tin về thiết bị di động

Khi bạn sử dụng Dịch vụ của chúng tôi trên thiết bị di động, chúng tôi sẽ thu thập thông tin về thiết bị của bạn, bao gồm ID Android, ID người dùng (UID), Mã định danh nhà cung cấp ("IDFV"), Mã định danh thiết bị ẩn danh mở (OAID), loại thiết bị bạn sử dụng, nền tảng thiết bị, nhà sản xuất thiết bị, thương hiệu thiết bị, mẫu mã thiết bị, phiên bản hệ điều hành và độ phân giải. Chúng tôi sẽ sử dụng các thông tin này cho mục đích thống kê và/hoặc phân tích, bao gồm nhưng không giới hạn ở việc cải thiện chức năng kỹ thuật, cân bằng tải máy chủ, phân tích dữ liệu kỹ thuật liên quan đến thiết bị di động của bạn để tối ưu hóa Dịch vụ và khả năng thích ứng đồ họa.

Như được nêu bên dưới trong phần “Thông tin vị trí”, chúng tôi có thể thu thập thông tin dựa trên vị trí của bạn từ thiết bị di động nếu bạn chọn chia sẻ thông tin đó với chúng tôi. Nếu muốn ngừng chia sẻ Thông tin vị trí sau đó, bạn có thể thực hiện việc này bất kỳ lúc nào bằng cách chỉnh sửa các cài đặt có liên quan trên thiết bị di động của mình.

Số liệu phân tích di động

Để hiểu rõ hơn và cải thiện chức năng của Dịch vụ, chúng tôi sẽ thu thập các thông tin như tần suất bạn sử dụng ứng dụng, các sự kiện xảy ra trong ứng dụng, mức sử dụng tổng hợp, dữ liệu hiệu suất và nơi ứng dụng được tải xuống.

Dữ liệu mạng

Khi bạn sử dụng Dịch vụ của chúng tôi, chúng tôi có thể sẽ thu thập thông tin về mạng bạn sử dụng, bao gồm tên nhà vận hành và loại mạng, để hiểu được sự phân bổ các nhà vận hành và mạng mà người dùng của chúng tôi sử dụng. Ngoài ra, chúng tôi có thể sẽ thu thập thông tin như tên mạng WiFi mà bạn kết nối, vị trí của mạng WiFi và thời lượng kết nối WiFi của bạn để hiểu về môi trường mà bạn muốn sử dụng Dịch vụ của chúng tôi.

Thông tin vị trí sơ bộ

Chúng tôi có thể thu thập thông tin dựa trên vị trí từ thiết bị di động của bạn nếu bạn chọn chia sẻ thông tin này với chúng tôi.

• Bắt buộc: địa chỉ IP và múi giờ của hệ thống

• Không bắt buộc: mã quốc gia và quốc gia của hệ thống.

Thông tin này sẽ giúp chúng tôi hiểu được sự phân bổ người dùng và tình huống sử dụng, đồng thời cho phép chúng tôi cung cấp cho người dùng phiên bản chính xác của ứng dụng hoặc trang web, hiển thị lại vị trí địa lý hoặc công bố vị trí địa lý theo thời gian thực tại nơi bạn chụp ảnh hoặc quay video, cũng như cải thiện Dịch vụ của chúng tôi. Trừ khi bạn đồng ý, chúng tôi SẼ KHÔNG THU THẬP hay SỬ DỤNG dữ liệu vị trí của bạn để nhận diện cá nhân bạn. Trừ trường hợp khác được nêu trong Chính sách này, chúng tôi sẽ không chia sẻ Thông tin vị trí này với bên thứ ba nào. Nếu không muốn cho phép chúng tôi thu thập hay sử dụng thông tin đó nữa, bạn có thể tắt Internet hoặc vô hiệu hóa quyền truy cập thông tin của chúng tôi vào mạng và thiết bị của bạn. Vui lòng lưu ý rằng chúng tôi có thể vẫn tiếp tục nhận được một số Thông tin vị trí như Thông tin mạng, địa chỉ IP và múi giờ của hệ thống khi bạn sử dụng Dịch vụ của chúng tôi.

Thông tin nhật ký

Khi bạn sử dụng một số Dịch vụ của chúng tôi, bao gồm cả việc tạo và duyệt xem một số nội dung nhất định, chúng tôi sẽ tự động thu thập một số thông tin nhật ký có liên quan được lưu trữ trong Glenti ("Thông tin nhật ký"). Thông tin nhật ký có thể bao gồm (i) thông tin chi tiết về thời điểm và tần suất bạn sử dụng Dịch vụ, (iii) thông tin thống kê về thiết bị, bao gồm đường dẫn tác vụ thiết yếu, lỗi, sự cố thoát ứng dụng, ngôn ngữ và múi giờ. Thông tin nhật ký được dùng để cải thiện Dịch vụ và KHÔNG DÙNG để nhận diện cá nhân người dùng.

Thông tin hình ảnh

Khi chọn sử dụng tính năng chỉnh sửa trên đám mây của Dịch vụ, bạn hiểu và đồng ý rằng chúng tôi phải tải ảnh của bạn lên máy chủ của mình để xử lý trước khi trả lại ảnh đã xử lý cho bạn nhằm mục đích cung cấp dịch vụ đó cho bạn và tối ưu hóa liên tục, đồng thời chúng tôi cũng sẽ nhận dữ liệu EXIF ​​về ảnh của bạn (dữ liệu EXIF ​​có thể chứa loại thiết bị, ISO và thông tin về camera trước và sau cũng như thời gian tạo, tùy thuộc vào nhà sản xuất thiết bị) nhằm mục đích tối ưu hóa hơn nữa Dịch vụ, chẳng hạn như cung cấp hiệu ứng ảnh phù hợp hơn với thiết bị của bạn. Bằng việc bật camera trên Glenti và/hoặc cấp cho chúng tôi quyền truy cập ảnh trên thiết bị của mình, bạn đồng ý rằng chúng tôi có thể truy cập, thu thập và/hoặc sử dụng ảnh của bạn để chỉnh sửa.

Thông tin giọng nói

Bằng cách bật micrô trên Glenti, bạn đồng ý rằng chúng tôi có thể thu thập dữ liệu giọng nói của bạn (tức là đoạn âm thanh hoặc bản ghi âm giọng nói của bạn) để chỉnh sửa video. Chúng tôi sẽ không sử dụng thông tin giọng nói của bạn cho mục đích quảng cáo. Bạn có thể tắt quyền truy cập của Glenti vào micrô trên thiết bị của mình bất cứ lúc nào bằng cách sử dụng cài đặt của hệ điều hành trên thiết bị hoặc bằng cách tắt micrô trên thiết bị.

Siêu dữ liệu

Siêu dữ liệu nghĩa là dữ liệu kỹ thuật gắn liền với nội dung của người dùng. Nói đơn giản, siêu dữ liệu là dữ liệu mô tả dữ liệu. Ví dụ: siêu dữ liệu có thể mô tả kết quả phân tích đặc điểm khuôn mặt, giới tính, độ tuổi của nhân vật trong ảnh và các yếu tố khác có trong ảnh, do trí tuệ nhân tạo và thuận toán máy tính tạo ra và gắn thẻ. Khi bạn sử dụng Dịch vụ, chúng tôi sẽ sử dụng siêu dữ liệu ảnh để cung cấp cho bạn một số tính năng nhất định bao gồm "Nhận dạng khuôn mặt" chính xác, "Nhận dạng điểm chính", "Phân đoạn vùng", "Thẻ nội dung" và các tính năng tùy chỉnh khác dựa trên tập hợp các đặc điểm cơ bản này. Chúng tôi có thể sử dụng siêu dữ liệu ảnh của bạn để cung cấp cho bạn các bộ lọc phù hợp hơn và hiệu ứng ảnh tốt hơn khi ứng dụng của chúng tôi xử lý ảnh của bạn; chúng tôi cũng có thể sử dụng siêu dữ liệu để cung cấp cho bạn các sản phẩm hoặc dịch vụ có liên quan hơn về mặt ngữ cảnh.

Thông tin đặc điểm khuôn mặt

Để cung cấp một số Dịch vụ nhất định, ngoài việc sử dụng siêu dữ liệu như đã đề cập ở trên, chúng tôi có thể thu thập thông tin về đặc điểm khuôn mặt của bạn (bao gồm nhưng không giới hạn ở hình ảnh khuôn mặt) cũng như sử dụng công nghệ nhận dạng khuôn mặt để nhận dạng khuôn mặt trong ảnh và trải nghiệm máy ảnh. Chúng tôi có thể phát hiện và sử dụng các dấu hiệu trên khuôn mặt để cung cấp nội dung nhận dạng khuôn mặt cùng các tính năng sửa đổi khuôn mặt. Dịch vụ của chúng tôi có thể sử dụng kết quả tính toán của một số công nghệ AR liên quan đến độ sâu của thông tin sơ đồ khuôn mặt. Các công nghệ này có thể phải sử dụng các đặc điểm nhận dạng khuôn mặt của bạn để đảm bảo hiệu ứng xử lý hình ảnh khuôn mặt và thực hiện phân tích đặc điểm bằng thuật toán. Thông tin chúng tôi thu thập sẽ không được sử dụng để nhận dạng một người cụ thể và chỉ được dùng để cung cấp các tính năng đã đề cập. Khi nội dung đề xuất đã hoàn tất hoặc khi bạn đóng ứng dụng hoặc trang web, thông tin sơ đồ khuôn mặt sẽ được hủy bỏ. Thông tin này không được chia sẻ với bên thứ ba nào.

Chúng tôi sẽ không dùng kết quả này cho mục đích nào khác, đồng thời không ghi lại dữ liệu nào trong tệp tin hay tải dữ liệu lên máy chủ cho mục đích lưu trữ.

Cookie

Chúng tôi sử dụng "cookie" để lưu trữ và truy xuất thông tin về cách sử dụng của người dùng theo thời gian để tùy chỉnh Dịch vụ cho từng người dùng. Cookie là một lượng nhỏ thông tin mà máy chủ sử dụng để vận hành ứng dụng/trang web, gửi đến thiết bị của người dùng và cũng được lưu trữ trên ổ cứng thiết bị của người dùng. Bạn có thể từ chối cài đặt cookie. Thông tin được thu thập có thể bao gồm thông tin về địa chỉ Giao thức Internet (IP), loại trình duyệt, Nhà cung cấp dịch vụ Internet (ISP), trang giới thiệu và trang thoát, hệ điều hành, ngày và dấu thời gian cũng như dữ liệu luồng nhấp chuột.

• Mục đích sử dụng cookie: Cookie được sử dụng để tối ưu hóa thông tin chúng tôi cung cấp cho từng người dùng bằng cách xác định kiểu truy cập và sử dụng đối với từng dịch vụ và trang web mà người dùng đã truy cập, các cụm từ tìm kiếm phổ biến, trạng thái truy cập an toàn, v.v.

• Cài đặt, vận hành và từ chối cookie: Bạn không thể vô hiệu hóa các cookie thiết yếu trong cài đặt bảo vệ dữ liệu của ứng dụng chúng tôi. Đối với người dùng ứng dụng, bạn có thể tắt quyền "Theo dõi" trên thiết bị iOS hoặc xóa ID quảng cáo của mình trên thiết bị Android thông qua Cài đặt. Ngoài ra, người dùng có thể từ chối cài đặt cookie bằng cách gửi email đến [email protected] (vui lòng ghi rõ "Glenti" trong tiêu đề email).

• Nếu người dùng từ chối lưu trữ cookie thì họ có thể gặp khó khăn khi sử dụng Dịch vụ tùy chỉnh.

Thông tin do dịch vụ bên thứ ba thu thập

Dịch vụ chúng tôi cung cấp cho bạn có thể bao gồm Giao diện lập trình ứng dụng (API) hoặc Bộ công cụ phát triển phần mềm (SDK) của nhà cung cấp dịch vụ của chúng tôi, trong đó có thể có các công cụ theo dõi của các nhà cung cấp dịch vụ đó. Các bên thứ ba này có thể sử dụng cookie, API và SDK trên Dịch vụ của chúng tôi, đồng thời thu thập cũng như phân tích thông tin người dùng. Bên thứ ba có thể truy cập thông tin của bạn như mã nhận dạng thiết bị, khu vực (được định nghĩa là vị trí sử dụng một ngôn ngữ nhất định), thông tin vị trí và địa chỉ IP theo chính sách quyền riêng tư tương ứng của họ. Nếu muốn biết thêm thông tin về các bên thứ ba này, bạn có thể gửi email đến [email protected] (vui lòng đề cập "Glenti" trong tiêu đề email của bạn).

Thông tin bạn chủ động cung cấp cho chúng tôi

Khi bạn liên hệ với chúng tôi (bao gồm nhưng không giới hạn ở nhóm hỗ trợ khách hàng và Chuyên viên bảo vệ dữ liệu), chúng tôi sẽ thu thập dữ liệu bạn cung cấp cho chúng tôi, chẳng hạn như thông tin liên lạc của bạn (ví dụ: địa chỉ email và/hoặc số điện thoại).

Thông tin khác

Chúng tôi cũng có thể thu thập thông tin khác không liên quan đến danh tính của bạn. Ví dụ: chúng tôi có thể thu thập thông tin về loại và số phiên bản hệ điều hành của bạn để hiểu rõ hơn về các bản nâng cấp hệ thống. Chúng tôi cũng có thể thu thập thông tin về ngôn ngữ hệ thống của bạn nhằm mục đích điều chỉnh ngôn ngữ. Nếu chọn thu thập thông tin đó, chúng tôi sẽ thu nhập nhằm mục đích cải thiện Dịch vụ cung cấp cho bạn.

CÁCH CHÚNG TÔI SỬ DỤNG THÔNG TIN

Ngoài các mục đích sử dụng nêu trên, chúng tôi thu thập và sử dụng thông tin người dùng và thông tin cá nhân của bạn cho các mục đích sau:

1. Dịch vụ. Cung cấp, xử lý, duy trì, cải thiện và phát triển các Dịch vụ mà chúng tôi cung cấp cho bạn, bao gồm dịch vụ hỗ trợ khách hàng và các dịch vụ khác được cung cấp thông qua sản phẩm của chúng tôi. Điều này bao gồm việc cung cấp phiên bản Dịch vụ chính xác dựa trên dữ liệu vị trí sơ bộ của bạn, cũng như thực hiện các biện pháp quản lý rủi ro, chẳng hạn như phòng chống gian lận và các biện pháp phát hiện và giải quyết lỗi.

2. Phân tích thống kê. Phát triển và phân tích số liệu thống kê về việc sử dụng sản phẩm và Dịch vụ của chúng tôi nhằm mục đích cải thiện sản phẩm và Dịch vụ.

3. Để tạo tài khoản. Thông tin cá nhân mà chúng tôi thu thập khi bạn sử dụng Dịch vụ của chúng tôi để tạo tài khoản sẽ được chúng tôi sử dụng để tạo tài khoản và hồ sơ cho bạn.

4. Để xác minh danh tính của bạn. Để bảo vệ quyền riêng tư và đảm bảo an ninh dữ liệu, hệ thống có thể yêu cầu xác minh vào những thời điểm như khi bạn đăng nhập vào tài khoản hoặc khi bạn liên hệ với chúng tôi để thực hiện các quyền của mình.

5. Thu thập ý kiến đóng góp của bạn. Phản hồi của bạn rất có giá trị trong việc giúp chúng tôi cải thiện Dịch vụ của mình. Để theo dõi phản hồi của bạn, chúng tôi có thể sử dụng thông tin cá nhân do bạn cung cấp để liên hệ với bạn và lưu giữ hồ sơ.

6. Mục đích khác. Chúng tôi sẽ thu thập, lưu trữ, duy trì và sử dụng thông tin về bạn cho các mục đích được nêu trong mục "Thông tin chúng tôi thu thập", và để tuân thủ mọi quy tắc, luật và quy định, nguyên tắc thực hành hoặc hướng dẫn hiện hành hoặc để hỗ trợ việc thực thi pháp luật và điều tra của các cơ quan có thẩm quyền; duy trì vận hành Dịch vụ an toàn và ổn định; bảo vệ an ninh tài khoản, mạng, hoạt động và hệ thống của bạn, cũng như để ngăn chặn lừa đảo trực tuyến, gian lận trang web và vi-rút Trojan; và xử lý các yêu cầu.

TIẾT LỘ VÀ CHIA SẺ THÔNG TIN

Chúng tôi có thể chia sẻ thông tin của bạn với các bên thứ ba thay mặt chúng tôi cung cấp dịch vụ để hỗ trợ các hoạt động kinh doanh của chúng tôi. Những dịch vụ này có thể bao gồm:

1. Xử lý khoản thanh toán;

2. Cung cấp dịch vụ khách hàng;

3. Thực hiện dịch vụ gói đăng ký;

4. Tiến hành nghiên cứu và phân tích; và

5. Cung cấp cơ sở hạ tầng điện toán đám mây.

Chúng tôi sẽ không chia sẻ hoặc tiết lộ cho bên thứ ba (ngoài các nhà cung cấp dịch vụ của chúng tôi) toàn bộ hay một phần thông tin cá nhân của bạn, ngoại trừ cho các mục đích sau:

1. bảo vệ sự an toàn của người khác hoặc tài sản của họ;

2. ngăn ngừa hoặc xử lý gian lận;

3. bảo vệ quyền và lợi ích hợp pháp của chúng tôi;

4. thực hiện hành động phù hợp với mục đích của chúng tôi như trong phần "Thông tin chúng tôi thu thập" hoặc phần "Cách chúng tôi sử dụng thông tin";

5. tuân thủ luật pháp, quy tắc và quy định hoặc yêu cầu của các cơ quan chính phủ, cơ quan tư pháp, cơ quan hành pháp hoặc các bên tư nhân thường được đưa ra để duy trì an ninh Internet cũng như các quyền, tài sản và sự an toàn của chúng tôi, người dùng của chúng tôi và các bên thứ ba; và/hoặc

6. đánh giá hoặc hoàn tất giao dịch khi chúng tôi tham gia vào việc sáp nhập, mua lại, thẩm định tài chính, tổ chức lại, phá sản, tiếp quản, bán tài sản công ty hoặc trường hợp khác mà trong đó, thông tin của bạn có thể được bán hoặc chuyển nhượng.

CƠ SỞ ĐỂ CHÚNG TÔI SỬ DỤNG THÔNG TIN CỦA BẠN

Chúng tôi chỉ thu thập và xử lý thông tin cá nhân khi có căn cứ pháp lý và chúng tôi thường dựa vào một trong bốn căn cứ pháp lý sau: -

1. sự đồng ý (khi bạn đã đồng ý);

2. hợp đồng (khi cần xử lý thông tin để thực hiện một hợp đồng với bạn, ví dụ: để vận hành trang web hay cung cấp dịch vụ mà bạn yêu cầu);

3. lợi ích chính đáng (ví dụ: chúng tôi cần dùng thông tin của bạn để cung cấp và cải thiện Dịch vụ của chúng tôi, bao gồm việc bảo vệ tài khoản của bạn, cung cấp dịch vụ hỗ trợ khách hàng). Chúng tôi chỉ dựa vào lợi ích chính đáng của mình làm cơ sở pháp lý khi những lợi ích đó không ảnh hưởng đến bạn (trừ khi chúng tôi có sự đồng ý của bạn hoặc việc xử lý của chúng tôi được pháp luật yêu cầu hoặc cho phép); và

4. nghĩa vụ pháp lý (tuân thủ luật pháp, quy định và quy tắc hoặc yêu cầu của các cơ quan chính phủ, cơ quan tư pháp hoặc cơ quan hành pháp).

Nếu bạn có thắc mắc về cơ sở pháp lý cho cách chúng tôi xử lý thông tin cá nhân của bạn, vui lòng liên hệ với chúng tôi theo địa chỉ [email protected] (vui lòng đề cập "Glenti" trong tiêu đề email của bạn).

TRANG WEB VÀ DỊCH VỤ CỦA BÊN THỨ BA

Dịch vụ của chúng tôi có thể chứa liên kết đến các trang web và dịch vụ khác. Ngoài ra, các trang web và dịch vụ khác có thể dẫn chiếu hoặc liên kết đến Dịch vụ của chúng tôi. Các miền và trang web khác này không do chúng tôi kiểm soát và chúng tôi không ủng hộ hoặc đưa ra bất kỳ tuyên bố nào về các trang web hay dịch vụ của bên thứ ba. Chúng tôi khuyến khích người dùng đọc chính sách quyền riêng tư của tất cả trang web và dịch vụ mà họ tương tác. Bạn tự chịu rủi ro khi truy cập các trang web hoặc dịch vụ khác này.

BẢO MẬT THÔNG TIN

Chúng tôi sẽ thực hiện các biện pháp hợp lý để ngăn ngừa sự mất mát, sử dụng không đúng mục đích, truy cập trái phép hoặc tiết lộ thông tin. Ví dụ: một số Dịch vụ của chúng tôi sẽ sử dụng các kỹ thuật mã hóa (như SSL) để bảo vệ thông tin cá nhân của bạn. Tuy nhiên, bạn hiểu và chấp nhận rằng (trong ngành Internet), ngay cả khi chúng tôi thực hiện các biện pháp bảo mật hợp lý, chúng tôi không thể luôn đảm bảo rằng thông tin của bạn được bảo mật 100%. Bạn hiểu và chấp nhận rằng chúng tôi không thể đảm bảo hoặc bảo hành tính bảo mật của bất kỳ thông tin nào bạn cung cấp cho chúng tôi. Chúng tôi không chịu trách nhiệm cho việc vô ý tiết lộ thông tin. Ngoài ra, bạn hiểu và chấp nhận rằng hệ thống và mạng truyền thông mà bạn sử dụng để truy cập Dịch vụ của chúng tôi có thể bị lỗi do những yếu tố nằm ngoài tầm kiểm soát của chúng tôi.

KIỂM SOÁT VÀ TRUY CẬP THÔNG TIN

Chúng tôi sẽ thực hiện mọi biện pháp kỹ thuật hợp lý và phù hợp để đảm bảo bạn có thể truy cập, cập nhật và chỉnh sửa thông tin cá nhân của mình hoặc thông tin cá nhân khác mà bạn cung cấp cho chúng tôi khi sử dụng Dịch vụ của chúng tôi. Trước khi bạn truy cập, cập nhật, chỉnh sửa hoặc xóa thông tin cá nhân đó, chúng tôi có thể xác minh danh tính của bạn để bảo vệ tính bảo mật cho tài khoản của bạn.

LƯU GIỮ DỮ LIỆU

Theo luật, quy định và quy tắc hiện hành cũng như để thực hiện mục đích kinh doanh hoặc pháp lý, chúng tôi sẽ xóa thông tin của bạn (bao gồm cả thông tin cá nhân) ngay khi bạn chấm dứt tài khoản với chúng tôi.

QUYỀN RIÊNG TƯ

Theo luật hiện hành, bạn có thể có quyền: (i) yêu cầu xác nhận xem chúng tôi có đang xử lý thông tin cá nhân của bạn hay không; (ii) được quyền truy cập thông tin cá nhân của bạn hoặc có được bản sao thông tin đó; (iii) nhận bản sao điện tử thông tin cá nhân mà bạn đã cung cấp cho chúng tôi hoặc yêu cầu chúng tôi gửi thông tin đó cho một công ty khác ("quyền chuyển dữ liệu"); (iv) phản đối hoặc hạn chế việc chúng tôi sử dụng thông tin cá nhân của bạn; (v) yêu cầu sửa chữa hoặc sửa đổi thông tin cá nhân không chính xác, không đúng sự thật, không đầy đủ hoặc được xử lý không đúng cách; (vi) rút lại sự đồng ý của bạn; và (vii) yêu cầu xóa thông tin cá nhân mà chúng tôi lưu giữ về bạn, tùy thuộc vào một số trường hợp ngoại lệ theo quy định của pháp luật.

Nếu bạn muốn thực hiện các quyền của mình, bạn có thể gửi email đến [email protected] (vui lòng đề cập "Glenti" trong tiêu đề email của bạn) hoặc gửi yêu cầu của bạn đến Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (gửi đến: Phòng Pháp lý, Starii). Chúng tôi sẽ xử lý yêu cầu của bạn theo luật hiện hành trong khoảng thời gian hợp lý sau khi nhận được email hoặc thư của bạn, đồng thời sẽ ngừng thu thập, sử dụng và tiết lộ thông tin cá nhân của bạn sau đó, tùy thuộc vào một số trường hợp ngoại lệ theo quy định của pháp luật. Để bảo vệ quyền riêng tư của bạn, chúng tôi sẽ thực hiện các bước xác minh danh tính trước khi thực hiện yêu cầu của bạn. Vui lòng lưu ý rằng nếu bạn rút lại sự đồng ý hoặc xóa thông tin cá nhân của mình thì điều đó có thể ảnh hưởng đến việc bạn sử dụng một số Dịch vụ của chúng tôi.

Cư dân California có quyền không bị chúng tôi phân biệt đối xử khi thực hiện các quyền của họ theo Đạo luật quyền riêng tư của Người tiêu dùng tại California.

THÔNG TIN VỀ TRẺ EM

Chúng tôi sẽ không cố ý thu thập hoặc yêu cầu thông tin cá nhân từ trẻ em dưới 16 tuổi (hoặc bất kỳ độ tuổi nào khác theo quy định của luật hiện hành tại khu vực của bạn). Nếu bạn dưới 16 tuổi, vui lòng không gửi cho chúng tôi thông tin cá nhân của bạn, bao gồm nhưng không giới hạn ở tên, địa chỉ, số điện thoại hoặc địa chỉ email. Nếu bạn tin rằng chúng tôi có thể có bất kỳ thông tin nào về trẻ em dưới 16 tuổi (hoặc bất kỳ độ tuổi nào khác được luật pháp quy định là trẻ em áp dụng cho khu vực của bạn), bạn có thể gửi email đến [email protected] (vui lòng đề cập "Glenti" trong tiêu đề email của bạn) hoặc gửi thư đã đăng ký đến Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (gửi đến: Phòng Pháp lý, Starii). Nếu chúng tôi nhận thấy mình đã thu thập thông tin cá nhân từ trẻ em dưới 16 tuổi (hoặc bất kỳ độ tuổi nào khác theo quy định của luật pháp hiện hành tại khu vực của bạn), chúng tôi sẽ nhanh chóng thực hiện các bước để xóa thông tin đó và chấm dứt tài khoản liên quan.

CHUYỂN DỮ LIỆU XUYÊN BIÊN GIỚI

Tùy thuộc vào khu vực pháp lý mà bạn là người dùng, cũng như theo các quy tắc và chính sách đặc biệt của khu vực pháp lý đó như được nêu trong Chính sách này, bạn hiểu và đồng ý rằng mọi thông tin được thu thập thông qua hoặc bởi chúng tôi có thể được chuyển, xử lý và lưu trữ ở bất kỳ đâu trên thế giới, bao gồm nhưng không giới hạn ở Đặc khu hành chính Hồng Kông của Cộng hòa Nhân dân Trung Hoa ("Hồng Kông"), Nhật Bản, Hàn Quốc, Singapore, Hoa Kỳ, Liên minh Châu Âu, trên đám mây, trên máy chủ của chúng tôi, trên máy chủ của các đơn vị liên kết của chúng tôi hoặc máy chủ của nhà cung cấp dịch vụ của chúng tôi, để cung cấp các Dịch vụ của chúng tôi.

LUẬT CHI PHỐI

Chính sách này được thiết lập, có hiệu lực và sẽ được thực thi và diễn giải theo luật pháp của Hồng Kông mà không tính đến các điều khoản xung đột luật pháp. Bất kỳ tranh chấp nào phát sinh theo đây cũng sẽ được giải quyết theo Điều khoản dịch vụ. Chúng tôi không tuyên bố hay bảo đảm rằng Chính sách này tuân thủ luật về quyền riêng tư của bất kỳ khu vực pháp lý nào. Do đó, bạn không nên diễn giải Chính sách này theo luật đó.

SỬA ĐỔI CHÍNH SÁCH NÀY

Bạn đồng ý rằng chúng tôi có thể cập nhật Chính sách này theo luật pháp và quy định có liên quan hoặc dựa trên các quyết định kinh doanh của chúng tôi và bạn đồng ý chịu sự ràng buộc của bất kỳ nội dung sửa đổi nào như vậy. Chúng tôi sẽ đăng bất kỳ thay đổi quan trọng nào đối với Chính sách này trên Glenti hoặc thông báo cho bạn bằng các phương tiện khác theo yêu cầu của pháp luật.

ĐỐI VỚI NGƯỜI DÙNG Ở KHU VỰC KINH TẾ CHÂU ÂU VÀ VƯƠNG QUỐC ANH

Đối với các trường hợp chúng tôi xử lý thông tin cá nhân trong phạm vi Quy định chung về bảo vệ dữ liệu của châu Âu và Quy định chung về bảo vệ dữ liệu của Vương quốc Anh (gọi chung là "GDPR"), bạn sẽ thấy thông tin liên quan đến việc xử lý thông tin cá nhân của mình trong phần Thông báo về GDPR dưới đây.

ĐỐI VỚI NGƯỜI DÙNG Ở NHẬT BẢN

Quyền đối với việc tiết lộ, chỉnh sửa, xóa hoặc tạm dừng sử dụng dữ liệu

Nếu bạn ở Nhật Bản, với tư cách là chủ thể dữ liệu, bạn có quyền yêu cầu tiết lộ, chỉnh sửa, xóa hoặc tạm dừng sử dụng thông tin cá nhân của mình và chúng tôi có nghĩa vụ đáp ứng yêu cầu của bạn sớm nhất có thể. Bạn có thể gửi yêu cầu qua email đến [email protected] (vui lòng đề cập "Glenti" trong tiêu đề email của bạn) hoặc qua thư đến Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (gửi đến: Phòng Pháp lý, Starii).

ĐỐI VỚI NGƯỜI DÙNG Ở HÀN QUỐC

Chuyển dữ liệu quốc tế

Chúng tôi chỉ xử lý thông tin cá nhân của người dùng theo phạm vi như đã nêu trong phần CÁCH CHÚNG TÔI SỬ DỤNG THÔNG TIN và về mặt nguyên tắc thì chúng tôi sẽ không cung cấp thông tin cá nhân của người dùng cho bên thứ ba. Tuy nhiên, với sự đồng ý của bạn, nhằm phục vụ mục đích cung cấp Dịch vụ được mô tả trong phần CHIA SẺ VÀ TIẾT LỘ THÔNG TIN cho bạn, chúng tôi có thể thu thập thông tin cá nhân từ bạn, chuyển thông tin đó đi, lưu trữ và xử lý thông tin đó ở nơi khác.

• Thông tin cá nhân được chuyển: vui lòng tham khảo mục "Thông tin chúng tôi thu thập" của Chính sách này ở trên

• Ngày và phương pháp chuyển: chuyển khi gửi để lưu trữ và xử lý

• Quốc gia mà thông tin cá nhân được chuyển đến: Singapore

• Lưu giữ thông tin cá nhân: vui lòng tham khảo mục "Lưu giữ dữ liệu" của Chính sách này ở trên

Ngoài ra, chúng tôi có thể chuyển thông tin cá nhân của bạn cho các bên thứ ba sau đây ở bên ngoài Hàn Quốc:

Bất cứ khi nào chúng tôi chia sẻ thông tin ra ngoài nơi bạn sinh sống, chúng tôi đảm bảo rằng việc chuyển thông tin tuân thủ luật pháp địa phương của bạn để thông tin cá nhân của bạn được bảo vệ đầy đủ.

Bạn có thể từ chối việc chuyển thông tin cá nhân của mình ra nước ngoài nêu trên bằng cách liên hệ với bộ phận phụ trách bảo vệ thông tin cá nhân của chúng tôi theo thông tin dưới đây. Nếu bạn từ chối việc chuyển thông tin cá nhân của bạn ra nước ngoài như trên, chúng tôi sẽ loại trừ thông tin cá nhân của bạn khỏi những thông tin sẽ được chuyển ra nước ngoài. Tuy nhiên, trong trường hợp đó, chúng tôi có thể hạn chế việc bạn sử dụng các Dịch vụ của chúng tôi có yêu cầu chuyển thông tin cá nhân ra nước ngoài.

Ngoài ra, chúng tôi có thể nhận thông tin cá nhân của bạn từ các bên thứ ba sau:

LƯU GIỮ DỮ LIỆU

Theo luật, quy định và quy tắc hiện hành cũng như để thực hiện mục đích kinh doanh hoặc pháp lý, chúng tôi sẽ xóa thông tin của bạn (bao gồm cả thông tin cá nhân) ngay khi bạn chấm dứt tài khoản với chúng tôi. Chúng tôi sẽ hủy thông tin cá nhân của bạn theo các quy trình và phương pháp sau đây.

1. Quy trình hủy: Chúng tôi chọn thông tin cá nhân cần hủy và hủy chúng khi có sự chấp thuận của nhân viên bảo vệ dữ liệu.

2. Phương pháp hủy: Chúng tôi sẽ hủy thông tin cá nhân được lưu trữ và lập hồ sơ điện tử theo cách có thể xóa được bằng phương tiện khiến hồ sơ không thể phục hồi được trong khả năng có thể.

Bộ phận phụ trách bảo vệ thông tin cá nhân và xử lý khiếu nại

Starii Tech Pty Ltd

Attn: Arthur Law, Head of Legal Department
Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

Email: [email protected] (vui lòng ghi "Glenti" trong tiêu đề email)

Lịch sử sửa đổi Chính sách quyền riêng tư

Không áp dụng

ĐỐI VỚI NGƯỜI DÙNG Ở HỢP CHỦNG QUỐC HOA KỲ

Bạn đồng ý rằng chúng tôi có thể sử dụng công nghệ nhận dạng khuôn mặt để thu thập thông tin sinh trắc học từ ảnh chụp hoặc hình ảnh bạn cung cấp. Chúng tôi có thể sử dụng thông tin đó để cung cấp và cải thiện Dịch vụ, cũng như cho mục đích nghiên cứu nội bộ của chúng tôi. Nếu thông tin sinh trắc học của bạn chịu sự chi phối của Đạo luật quyền riêng tư về thông tin sinh trắc học của Illinois, chúng tôi sẽ xóa thông tin sinh trắc học của bạn trong vòng ba năm kể từ lần cuối cùng bạn tương tác với Dịch vụ.

Theo luật hiện hành, bạn có thể có quyền:

1. xác nhận liệu chúng tôi có đang xử lý thông tin cá nhân của bạn hay không;

2. truy cập hoặc sao chép thông tin cá nhân của bạn cùng với các chi tiết đi kèm;

3. nhận bản sao điện tử thông tin cá nhân mà bạn đã cung cấp cho chúng tôi hoặc yêu cầu chúng tôi gửi thông tin đó cho một công ty khác, tức là quyền chuyển dữ liệu;

4. chỉnh sửa thông tin cá nhân của bạn;

5. yêu cầu từ chối một số hoạt động xử lý nhất định nếu thích hợp, bao gồm các trường hợp như: chúng tôi xử lý thông tin cá nhân của bạn cho "quảng cáo nhắm mục tiêu" (theo định nghĩa "quảng cáo nhắm mục tiêu" của luật hiện hành về quyền riêng tư), chúng tôi "bán" thông tin cá nhân của bạn (theo định nghĩa "bán" của luật hiện hành về quyền riêng tư) hoặc chúng tôi tham gia vào việc lập hồ sơ để thúc đẩy một số quyết định tạo ra tác động pháp lý hoặc tác động quan trọng tương tự liên quan đến bạn;

6. yêu cầu xóa thông tin cá nhân mà chúng tôi lưu giữ về bạn; và

7. kháng nghị quyết định từ chối xử lý yêu cầu của bạn.

Nếu bạn muốn thực hiện bất kỳ quyền nào theo luật hiện hành về quyền rêng tư, vui lòng liên hệ với Chuyên viên bảo vệ dữ liệu của chúng tôi qua email [email protected] (vui lòng đề cập "Glenti" trong tiêu đề email) hoặc qua địa chỉ bưu chính đã đăng ký là Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (gửi đến: Phòng Pháp lý, Starii). Chúng tôi sẽ xử lý những yêu cầu đó theo luật hiện hành.

Nếu bạn là cư dân Virginia và muốn kháng nghị quyết định của chúng tôi liên quan đến yêu cầu của bạn, bạn có thể thực hiện bằng cách thông báo cho chúng tôi về điều này và cung cấp cho chúng tôi thông tin hỗ trợ cho kháng nghị của bạn.

Các đoạn sau đây chỉ áp dụng cho cách chúng tôi xử lý thông tin cá nhân của bạn theo Đạo luật quyền riêng tư của Người tiêu dùng tại California (được sửa đổi theo thời gian) ("CCPA").

Theo CCPA, cư dân California có quyền được biết chúng tôi đã thu thập những hạng mục thông tin cá nhân nào về họ và liệu chúng tôi có tiết lộ thông tin cá nhân đó cho mục đích kinh doanh (ví dụ: cho nhà cung cấp dịch vụ) trong 12 tháng trước hay không. Cư dân California có thể tìm thấy thông tin dưới đây:

Các hạng mục nguồn Thông tin cá nhân mà chúng tôi thu thập và mục đích kinh doanh/thương mại của chúng tôi cho việc sử dụng cũng như tiết lộ Thông tin cá nhân được nêu tương ứng trong phần "Thông tin chúng tôi thu thập", "Cách chúng tôi sử dụng thông tin" và "Tiết lộ và chia sẻ thông tin" ở trên. Chúng tôi sẽ lưu giữ thông tin cá nhân theo thời hạn quy định trong phần "Lưu giữ dữ liệu" ở trên.

Trong 12 tháng trước đó, chúng tôi không "bán" bất kỳ thông tin cá nhân nào (theo định nghĩa của CCPA) và chúng tôi thực sự không biết về bất kỳ "việc bán" thông tin cá nhân nào của trẻ vị thành niên dưới 16 tuổi.

Trong 12 tháng trước đó, chúng tôi không "chia sẻ" bất kỳ thông tin cá nhân nào cho "quảng cáo theo hành vi liên ngữ cảnh" (theo định nghĩa của các thuật ngữ này trong CCPA) và chúng tôi thực sự không biết về bất kỳ "việc chia sẻ" thông tin cá nhân nào của trẻ vị thành niên dưới 16 tuổi cho "quảng cáo theo hành vi xuyên ngữ cảnh".

Chúng tôi chỉ sử dụng và tiết lộ thông tin cá nhân nhạy cảm cho các mục đích sau:

1. Cung cấp Dịch vụ.

2. Ngăn ngừa, phát hiện và điều tra các sự cố bảo mật gây ảnh hưởng đến tính có sẵn, tính xác thực, tính toàn vẹn hoặc tính bảo mật của thông tin cá nhân được lưu trữ hoặc truyền tải.

3. Chống lại các hành động ác ý, lừa đảo, gian lận hoặc bất hợp pháp nhắm vào chúng tôi và truy tố những người chịu trách nhiệm về những hành động đó.

4. Đảm bảo an toàn về thể chất cho thể nhân.

5. Xác minh hoặc duy trì chất lượng hay tính an toàn của sản phẩm, Dịch vụ hoặc thiết bị của chúng tôi và cải thiện, nâng cấp hay nâng cao Dịch vụ hoặc thiết bị của chúng tôi.

6. Các mục đích không nhằm suy ra đặc điểm của cá nhân.

Cư dân California có quyền không bị chúng tôi phân biệt đối xử khi thực hiện các quyền của họ theo CCPA.

Để bảo vệ quyền riêng tư của bạn, chúng tôi sẽ thực hiện các bước để xác minh hợp lý danh tính của bạn trước khi thực hiện các yêu cầu được gửi theo CCPA. Các bước này có thể bao gồm việc yêu cầu bạn cung cấp đủ thông tin để chúng tôi có thể xác minh một cách hợp lý rằng bạn là người mà chúng tôi đã thu thập thông tin cá nhân hoặc là đại diện được người đó ủy quyền. Ví dụ về quy trình xác minh của chúng tôi có thể bao gồm việc yêu cầu bạn cung cấp địa chỉ email hoặc số điện thoại mà chúng tôi đã liên kết với bạn và cung cấp mã xác minh được gửi đến địa chỉ email hoặc số điện thoại của bạn.

Chỉ bạn hoặc người được ủy quyền hợp pháp thay mặt bạn mới có thể đưa ra yêu cầu có thể xác minh từ người tiêu dùng liên quan đến thông tin cá nhân của bạn. Để ủy quyền cho người đại diện, hãy cung cấp giấy ủy quyền có chữ ký của bạn và người đại diện được chỉ định của bạn rồi liên hệ với chúng tôi bằng cách xem thông tin trong phần "Quyền riêng tư" ở trên để biết thêm hướng dẫn.

Chúng tôi không "bán" thông tin cá nhân hay "chia sẻ" thông tin cá nhân cho "quảng cáo theo hành vi liên ngữ cảnh" nên chúng tôi không đáp lại các dấu hiệu chọn không tham gia.

Nếu bạn là cư dân Nevada, chúng tôi không "bán" thông tin cá nhân của bạn.

THÔNG BÁO VỀ GDPR

Chúng tôi xử lý dữ liệu cá nhân trong bối cảnh cung cấp Dịch vụ.

Nếu GDPR áp dụng cho quá trình xử lý dữ liệu cá nhân của bạn thì chúng tôi sẽ chỉ xử lý dữ liệu cá nhân theo GDPR. Trong Chính sách quyền riêng tư (chung) ở trên, bạn sẽ tìm thấy thông tin về thời điểm GDPR áp dụng cho việc chúng tôi xử lý dữ liệu cá nhân. Thông báo về GDPR này bổ sung cho Chính sách quyền riêng tư (chung) nêu trên và bao gồm thông tin chi tiết về cách chúng tôi xử lý dữ liệu cá nhân của bạn theo GDPR.

1. Thông tin về đơn vị kiểm soát

   1. Danh tính và thông tin liên hệ của đơn vị kiểm soát

Starii Tech Pty Ltd

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. Danh tính và thông tin liên hệ của bên đại diện đơn vị kiểm soát

Liên minh Châu Âu

Rivacy GmbH

Mexikoring 33

22297 Hamburg

Đức

[email protected]

Vương quốc Anh

Rivacy Limited

St James’ Hall, Mill Road

Lancing, West Sussex BN15 0PT

Vương quốc Anh

3. Thông tin liên hệ của chuyên viên bảo vệ dữ liệu của đơn vị kiểm soát

Starii Tech Pty Ltd

Phòng Pháp lý

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. Thông tin về việc xử lý dữ liệu cá nhân

   1. Chi tiết về dữ liệu cá nhân được xử lý

1. Thông tin chi tiết về việc xử lý dữ liệu cá nhân

2. Chi tiết về người nhận dữ liệu cá nhân và việc chuyển dữ liệu cá nhân cho nước thứ ba và/hoặc tổ chức quốc tế

Để hỗ trợ hoạt động toàn cầu của chúng tôi, chúng tôi có thể chuyển dữ liệu cá nhân của bạn qua biên giới cho các công ty liên kết và bên thứ ba sau đây.

Nếu dữ liệu cá nhân của bạn được chuyển đến các khu vực pháp lý nằm ngoài Khu vực Kinh tế Châu Âu (EEA), Vương quốc Anh hoặc Thụy Sĩ, chúng tôi sẽ đảm bảo rằng các biện pháp bảo vệ thích hợp được áp dụng. Các biện pháp này có thể bao gồm:

1. có quyết định về mức độ bảo vệ đầy đủ của Ủy ban Liên minh Châu Âu đối với quốc gia nơi người nhận đặt trụ sở;

2. chúng tôi đã ký kết các điều khoản bảo vệ dữ liệu tiêu chuẩn theo Điều 46(2)(c) GDPR (hoặc các điều khoản tương đương đã được phê duyệt cho Vương quốc Anh và Thụy Sĩ) với người nhận;

3. trong một số trường hợp, chúng tôi dựa vào các ngoại lệ được quy định trong luật hiện hành cùng với các biện pháp cần thiết theo luật hiện hành để bảo đảm an toàn dữ liệu của bạn.

Để yêu cầu thông tin về các biện pháp bảo vệ dữ liệu xuyên biên giới của chúng tôi, vui lòng liên hệ với chúng tôi bằng thông tin liên hệ trong Mục I.

3. Thông tin về việc sử dụng cookie hoặc công nghệ tương tự

Mục sau đây hiện chỉ đề cập đến cookie. Nếu có sử dụng các công nghệ tương tự (dấu vân tay trình duyệt, lưu trữ cục bộ, lưu trữ phiên, v.v.) thì mục này sẽ phải được điều chỉnh cho phù hợp.

Chúng tôi sử dụng cookie để cung cấp các Dịch vụ. Qua đó, chúng tôi sử dụng các chức năng xử lý và lưu trữ của thiết bị và/hoặc trình duyệt trên thiết bị của bạn cũng như thu thập thông tin từ bộ nhớ của thiết bị và/hoặc trình duyệt của thiết bị.

Bạn sẽ tìm thấy thông tin chi tiết hơn về vấn đề này ở phần sau.

1. Thông tin chung về cookie

Cookie là những tệp văn bản nhỏ chứa thông tin. Những tệp này có thể được đặt trên thiết bị của người dùng khi họ sử dụng một ứng dụng hoặc truy cập một trang web. Khi người dùng sử dụng hay truy cập lại ứng dụng hoặc trang web có liên quan trên cùng một thiết bị, cookie và thông tin chứa trong đó có thể được truy xuất.

a) Cookie của bên thứ nhất và bên thứ ba

Tùy thuộc vào nguồn gốc của cookie, có thể phân biệt giữa cookie của bên thứ nhất và cookie của bên thứ ba:

b) Cookie tạm thời và cookie cố định

Có thể phân biệt giữa cookie tạm thời và cookie cố định theo thời gian chúng hoạt động:

c) Cookie không cần sự đồng ý và cookie cần sự đồng ý

Một số cookie cần có sự đồng ý của người dùng, tùy thuộc vào chức năng và mục đích sử dụng của chúng. Do đó, có thể phân biệt giữa cookie cần sự đồng ý của người dùng và cookie không cần sự đồng ý của người dùng:

2. Quản lý các cookie được sử dụng trên Ứng dụng/trang web của chúng tôi

1. Cấp và rút lại sự đồng ý đối với việc sử dụng cookie trong phần cài đặt bảo vệ dữ liệu của Ứng dụng/trang web

Nếu cần có sự đồng ý để sử dụng một số cookie nhất định, chúng tôi sẽ chỉ sử dụng những cookie này nếu trước đó bạn đã đồng ý. Bạn có thể tìm hiểu thông tin về việc sử dụng một cookie cụ thể có cần sự đồng ý hay không trong phần thông tin về cookie được sử dụng trong Dịch vụ của chúng tôi tại Mục III.3. của Chính sách quyền riêng tư này.

Bạn không thể hủy kích hoạt cookie thiết yếu trong phần cài đặt bảo vệ dữ liệu của ứng dụng hoặc trang web của chúng tôi. Tuy nhiên, nhìn chung, bạn có thể hủy kích hoạt các cookie này trong ứng dụng hoặc trình duyệt của mình bất kỳ lúc nào.

2. Quản lý cookie qua phần cài đặt thiết bị/trình duyệt

Bạn cũng có thể quản lý việc sử dụng cookie trong phần cài đặt của thiết bị hoặc trình duyệt của mình. Mỗi trình duyệt có cách thiết lập cài đặt cookie khác nhau. Bạn có thể tìm thấy thông tin chi tiết hơn về vấn đề này tại http://www.allaboutcookies.org/manage-cookies/.

Tuy nhiên, chúng tôi muốn lưu ý rằng một số chức năng của ứng dụng hoặc trang web của chúng tôi có thể không hoạt động bình thường hay không hoạt động được nếu bạn tắt cookie nói chung trên thiết bị của mình.

1. Cookie được sử dụng trên Ứng dụng/trang web của chúng tôi

Ứng dụng/trang web của chúng tôi có thể sử dụng các cookie sau:

4. Thông tin về quyền của chủ thể dữ liệu

Là chủ thể dữ liệu, bạn có các quyền sau liên quan đến việc xử lý dữ liệu cá nhân của mình:

• Quyền truy cập (Điều 15 GDPR)

• Quyền sửa đổi (Điều 16 GDPR)

• Quyền xóa bỏ ("quyền được lãng quên") (Điều 17 GDPR)

• Quyền hạn chế việc xử lý (Điều 18 GDPR)

• Quyền chuyển dữ liệu (Điều 20 GDPR)

• Quyền phản đối (Điều 21 GDPR)

• Quyền rút lại sự đồng ý (Điều 7 (3) GDPR)

Bạn có thể liên hệ với chúng tôi để thực hiện các quyền này bằng cách sử dụng thông tin liên hệ trong Mục I.

Khi thích hợp, bạn có thể tìm thấy thông tin về bất kỳ phương thức và cơ chế cụ thể nào tạo điều kiện cho việc thực hiện các quyền của mình, đặc biệt là việc thực hiện quyền chuyển dữ liệu và quyền phản đối, trong thông tin về việc xử lý dữ liệu cá nhân tại Mục II của Thông báo về GDPR này.

Bạn cũng có quyền nộp đơn khiếu nại lên cơ quan giám sát (Điều 77 GDPR).

Dưới đây là thông tin chi tiết hơn về các quyền của bạn liên quan đến việc xử lý dữ liệu cá nhân của bạn:

1. Quyền truy cập

Là chủ thể dữ liệu, bạn có quyền truy cập và tiếp nhận thông tin theo các điều kiện được quy định tại Điều 15 GDPR.

Điều này có nghĩa là bạn có quyền yêu cầu chúng tôi xác nhận xem chúng tôi có đang xử lý dữ liệu cá nhân của bạn hay không. Nếu đúng thì bạn cũng có quyền truy cập vào dữ liệu cá nhân và thông tin được nêu trong Điều 15 (1) GDPR. Điều này bao gồm thông tin liên quan đến mục đích xử lý, các hạng mục dữ liệu cá nhân đang được xử lý và bên nhận hoặc các hạng mục bên nhận đã được hoặc sẽ được tiết lộ dữ liệu cá nhân (Điều 15 (1) (a), (b) và (c) GDPR).

Bạn có thể tìm hiểu đầy đủ về quyền truy cập và quyền tiếp nhận thông tin tại Điều 15 GDPR.

2. Quyền sửa đổi

Là chủ thể dữ liệu, bạn có quyền sửa đổi theo các điều kiện được quy định tại Điều 16 GDPR.

Điều này có nghĩa là bạn có quyền yêu cầu chúng tôi sửa đổi sớm nhất có thể những thông tin không chính xác trong dữ liệu cá nhân của bạn và hoàn thiện dữ liệu cá nhân chưa đầy đủ.

Bạn có thể tìm hiểu đầy đủ về quyền chỉnh sửa của mình trong Điều 16 GDPR.

3. Quyền xóa bỏ ("quyền được lãng quên")

Là chủ thể dữ liệu, bạn có quyền xóa bỏ ("quyền được lãng quên") theo các điều kiện được quy định tại Điều 17 GDPR.

Điều này có nghĩa là bạn có quyền yêu cầu chúng tôi xóa dữ liệu cá nhân của bạn và chúng tôi có nghĩa vụ xóa dữ liệu cá nhân của bạn sớm nhất có thể, khi yêu cầu này đáp ứng một trong những lý do nêu trong Điều 17 (1) GDPR. Ví dụ: Trường hợp này có thể xảy ra nếu dữ liệu cá nhân không còn cần thiết cho mục đích thu thập hay xử lý ban đầu (Điều 17 (1) (a) GDPR).

Nếu chúng tôi đã công khai dữ liệu cá nhân và có nghĩa vụ xóa dữ liệu đó thì chúng tôi cũng có nghĩa vụ (có tính đến công nghệ hiện có và chi phí triển khai) thực hiện các bước hợp lý, bao gồm các biện pháp kỹ thuật, để thông báo cho các đơn vị kiểm soát đang xử lý dữ liệu cá nhân rằng bạn đã yêu cầu các đơn vị kiểm soát đó xóa bất kỳ liên kết nào tới dữ liệu đó hoặc bất kỳ bản sao nào của dữ liệu cá nhân đó (Điều 17 (2) GDPR).

Quyền xóa bỏ ("quyền được lãng quên") không áp dụng nếu việc xử lý là cần thiết theo một trong những lý do nêu trong Điều 17 (3) GDPR. Ví dụ: Trường hợp này có thể xảy ra nếu cần xử lý dữ liệu đó để tuân thủ nghĩa vụ pháp lý hoặc để thiết lập, thực hiện hoặc bảo vệ các khiếu nại pháp lý (Điều 17 (3) (b) và (e) GDPR).

Bạn có thể tìm hiểu đầy đủ về quyền xóa bỏ ("quyền được lãng quên") trong Điều 17 GDPR.

4. Quyền hạn chế việc xử lý

Là chủ thể dữ liệu, bạn có quyền hạn chế việc xử lý dữ liệu theo các điều kiện được quy định tại Điều 18 GDPR.

Điều này có nghĩa là bạn có quyền yêu cầu chúng tôi hạn chế việc xử lý nếu đáp ứng một trong các điều kiện quy định tại Điều 18 (1) GDPR. Ví dụ: Trường hợp này có thể xảy ra nếu bạn khiếu nại về tính chính xác của dữ liệu cá nhân. Khi đó, việc hạn chế xử lý sẽ kéo dài trong một khoảng thời gian cho phép chúng tôi xác minh tính chính xác của dữ liệu cá nhân (Điều 18 (1) (a) GDPR).

Hạn chế có nghĩa là dữ liệu cá nhân được lưu trữ được đánh dấu với mục đích hạn chế việc xử lý trong tương lai (Điều 4 (3) GDPR).

Bạn có thể tìm hiểu đầy đủ về quyền hạn chế việc xử lý trong Điều 18 GDPR.

5. Quyền chuyển dữ liệu

Là chủ thể dữ liệu, bạn có quyền chuyển dữ liệu theo các điều kiện được quy định tại Điều 20 GDPR.

Điều này có nghĩa là nhìn chung, bạn có quyền nhận dữ liệu cá nhân mà bạn đã cung cấp cho chúng tôi theo định dạng có cấu trúc, được sử dụng phổ biến và có thể đọc bằng máy cũng như chuyển dữ liệu đó cho một đơn vị kiểm soát khác mà không bị chúng tôi cản trở nếu việc xử lý dựa trên sự đồng ý theo Điều 6 (1) (a) hoặc Điều 9 (2) (a) GDPR hoặc dựa trên hợp đồng theo Điều 6 (1) (b) GDPR, đồng thời việc xử lý được thực hiện theo các phương thức tự động (Điều 20 (1) GDPR).

Bạn có thể tìm hiểu thông tin về việc liệu một trường hợp xử lý có dựa trên sự đồng ý theo Điều 6 (1) (a) hoặc Điều 9 (2) (a) GDPR hoặc dựa trên hợp đồng theo Điều 6 (1) (b) GDPR hay không trong thông tin liên quan đến cơ sở pháp lý của việc xử lý trong Mục II của Thông báo về GDPR này.

Khi thực hiện quyền chuyển dữ liệu của mình, nhìn chung, bạn có quyền yêu cầu chúng tôi chuyển trực tiếp dữ liệu cá nhân của bạn cho một đơn vị kiểm soát khác nếu khả thi về mặt kỹ thuật (Điều 20 (2) GDPR).

Bạn có thể tìm hiểu đầy đủ về quyền chuyển dữ liệu trong Điều 20 GDPR.

6. Quyền phản đối

Là chủ thể dữ liệu, bạn có quyền phản đối theo các điều kiện được quy định tại Điều 21 GDPR.

Muộn nhất là trong lần liên lạc đầu tiên với bạn, chúng tôi sẽ thông báo rõ ràng cho bạn về quyền phản đối của bạn với tư cách là chủ thể dữ liệu.

Sau đây là thông tin chi tiết hơn về vấn đề này:

Quyền phản đối trên cơ sở liên quan đến tình hình cụ thể của chủ thể dữ liệu

Là chủ thể dữ liệu, bạn có quyền phản đối, trên cơ sở liên quan đến tình hình cụ thể của bạn, bất cứ lúc nào đối với việc xử lý dữ liệu cá nhân của bạn dựa trên Điều 6 (1) (e) hoặc (f), bao gồm cả việc lập hồ sơ dựa trên các điều khoản đó.

Bạn có thể tìm hiểu thông tin về việc liệu một trường hợp xử lý có dựa trên Điều 6 (1) (e) hoặc (f) GDPR hay không trong thông tin liên quan đến cơ sở pháp lý của việc xử lý trong Mục II của Thông báo về GDPR này.

Trong trường hợp có sự phản đối liên quan đến tình huống cụ thể của bạn, chúng tôi sẽ không xử lý dữ liệu cá nhân của bạn nữa trừ khi chúng tôi có thể chứng minh được lý do chính đáng thuyết phục khi việc xử lý vượt trên lợi ích, quyền và quyền tự do của bạn hoặc cho việc thiết lập, thực hiện hoặc bảo vệ các khiếu nại pháp lý.

Bạn có thể tìm hiểu đầy đủ về quyền phản đối trong Điều 21 GDPR.

Quyền phản đối tiếp thị trực tiếp

Khi dữ liệu cá nhân của bạn được xử lý cho mục đích tiếp thị trực tiếp, bạn có quyền phản đối việc xử lý dữ liệu cá nhân của bạn cho mục đích tiếp thị đó bất cứ lúc nào, bao gồm cả việc lập hồ sơ trong phạm vi liên quan đến hoạt động tiếp thị trực tiếp đó.

Bạn có thể tìm hiểu thông tin về việc dữ liệu cá nhân có được xử lý cho mục đích tiếp thị trực tiếp hay không và ở mức độ nào trong thông tin liên quan đến cơ sở pháp lý của việc xử lý trong Mục II của Thông báo về GDPR này.

Nếu bạn phản đối việc xử lý dữ liệu cho mục đích tiếp thị trực tiếp, chúng tôi sẽ không xử lý dữ liệu cá nhân của bạn cho các mục đích này nữa.

Bạn có thể tìm hiểu đầy đủ về quyền phản đối trong Điều 21 GDPR.

7. Quyền rút lại sự đồng ý

Trong trường hợp việc xử lý dữ liệu dựa trên sự đồng ý theo Điều 6 (1) (a) hoặc Điều 9 (2) (a) GDPR, thì với tư cách là chủ thể dữ liệu, bạn có quyền rút lại sự đồng ý của mình bất kỳ lúc nào theo Điều 7 (3) GDPR. Việc bạn rút lại sự đồng ý không ảnh hưởng đến tính hợp pháp của quá trình xử lý diễn ra dựa trên sự đồng ý của bạn trước thời điểm bạn rút lại. Chúng tôi sẽ thông báo cho bạn về điều này trước khi bạn đồng ý.

Bạn có thể tìm hiểu thông tin về việc liệu một trường hợp xử lý có dựa trên Điều 6 (1) (a) hoặc Điều 9 (2) (a) GDPR hay không trong thông tin liên quan đến cơ sở pháp lý của việc xử lý trong Mục II của Thông báo về GDPR này.

8. Quyền khiếu nại với cơ quan giám sát

Là chủ thể dữ liệu, bạn có quyền nộp đơn khiếu nại lên cơ quan giám sát theo các điều kiện quy định tại Điều 77 GDPR.

Các cơ quan giám sát chịu trách nhiệm đối với chúng tôi là:

Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit

Ludwig-Erhard-Str 22, 20459 Hamburg

E-mail: [email protected]

Số điện thoại: +49 40 42854-4040

Văn phòng Ủy viên Thông tin
E-mail: [email protected]
Số điện thoại: 0303 123 1113

5. Thông tin về các thuật ngữ kỹ thuật của GDPR được sử dụng trong Thông báo về GDPR này

Các thuật ngữ kỹ thuật liên quan đến việc bảo vệ dữ liệu được sử dụng trong Thông báo về GDPR này có nghĩa như trong Quy định chung về bảo vệ dữ liệu.

Bạn có thể xem đầy đủ nội dung các định nghĩa này của Quy định chung về bảo vệ dữ liệu trong Điều 4 GDPR.

Bạn sẽ tìm thấy thông tin chi tiết hơn về các thuật ngữ kỹ thuật quan trọng nhất của Quy định chung về bảo vệ dữ liệu được sử dụng trong Thông báo về GDPR này bên dưới:

"Dữ liệu cá nhân" có nghĩa là bất kỳ thông tin nào liên quan đến một thể nhân đã được xác định hoặc có thể xác định được ("chủ thể dữ liệu"); một thể nhân có thể xác định được là người có thể được xác định, trực tiếp hoặc gián tiếp, đặc biệt là bằng cách tham chiếu đến một mã định danh như tên, số nhận dạng, dữ liệu vị trí, mã định danh trực tuyến hoặc một hay nhiều yếu tố cụ thể về đặc tính thể chất, sinh lý, di truyền, tinh thần, kinh tế, văn hóa hoặc xã hội của thể nhân đó;

"Chủ thể dữ liệu" có nghĩa là thể nhân tương ứng đã được xác định hoặc có thể xác định được, mà dữ liệu cá nhân đề cập đến;

"Xử lý" có nghĩa là bất kỳ hoạt động hoặc tập hợp các hoạt động nào được thực hiện trên dữ liệu cá nhân hoặc trên tập hợp dữ liệu cá nhân, bất kể có sử dụng phương thức tự động hay không, chẳng hạn như thu thập, ghi lại, tổ chức, sắp xếp, lưu trữ, điều chỉnh hoặc thay đổi, truy xuất, tham khảo, sử dụng, tiết lộ bằng cách truyền tin, phổ biến hoặc cung cấp theo cách khác, căn chỉnh hoặc kết hợp, hạn chế, xóa hoặc hủy;

"Lập hồ sơ" có nghĩa là bất kỳ hình thức xử lý tự động nào đối với dữ liệu cá nhân, bao gồm việc sử dụng dữ liệu cá nhân để đánh giá một số khía cạnh cá nhân liên quan đến một thể nhân, đặc biệt là để phân tích hoặc dự đoán các khía cạnh liên quan đến hiệu suất làm việc, tình hình kinh tế, sức khỏe, sở thích cá nhân, mối quan tâm, độ tin cậy, hành vi, vị trí hoặc chuyển động của thể nhân đó;

"Đơn vị kiểm soát" có nghĩa là thể nhân, pháp nhân, cơ quan công quyền, tổ chức hoặc cơ quan khác, đơn phương hoặc cùng với những bên khác, xác định mục đích và phương thức xử lý dữ liệu cá nhân; trong trường hợp mục đích và phương thức xử lý đó được xác định theo luật của Liên minh hoặc Quốc gia thành viên, đơn vị kiểm soát hoặc các tiêu chí cụ thể để đề cử bên kiểm soát có thể được quy định theo luật của Liên minh hoặc Quốc gia thành viên;

"Đơn vị xử lý" có nghĩa là một thể nhân hoặc pháp nhân, cơ quan công quyền, cơ quan hoặc tổ chức khác xử lý dữ liệu cá nhân thay mặt cho đơn vị kiểm soát;

"Bên nhận" có nghĩa là một thể nhân hoặc pháp nhân, cơ quan công quyền, cơ quan hoặc tổ chức khác được tiết lộ dữ liệu cá nhân, dù có phải là bên thứ ba hay không. Tuy nhiên, các cơ quan công quyền vốn có thể nhận dữ liệu cá nhân trong khuôn khổ một cuộc điều tra cụ thể theo luật của Liên minh hoặc Quốc gia thành viên sẽ không được coi là bên nhận; việc xử lý dữ liệu của các cơ quan công quyền này sẽ tuân thủ các quy tắc bảo vệ dữ liệu hiện hành theo mục đích xử lý;

"Bên thứ ba" có nghĩa là một thể nhân hoặc pháp nhân, cơ quan công quyền, cơ quan hoặc tổ chức khác ngoài chủ thể dữ liệu, đơn vị kiểm soát, đơn vị xử lý và những người (trực thuộc đơn vị kiểm soát hoặc đơn vị xử lý) được phép xử lý dữ liệu cá nhân;

"Tổ chức quốc tế" có nghĩa là một tổ chức và các cơ quan trực thuộc được quản lý theo luật pháp quốc tế công, hay bất kỳ cơ quan nào khác được thành lập theo hoặc trên cơ sở thỏa thuận giữa hai hoặc nhiều quốc gia; và

"Nước thứ ba" có nghĩa là một nước không phải là nước thành viên của Liên minh Châu Âu ("EU") hoặc Khu vực Kinh tế Châu Âu ("EEA") hoặc Vương quốc Anh.

ĐỐI VỚI NGƯỜI DÙNG Ở BRAZIL

Cơ sở pháp lý cho việc xử lý dữ liệu

Nếu bạn ở Brazil, chúng tôi có thể dựa vào những cơ sở pháp lý sau đây để xử lý thông tin cá nhân của bạn:

1. sự đồng ý (khi bạn đã đồng ý);

2. hợp đồng (khi cần xử lý thông tin để thực hiện một hợp đồng với bạn, ví dụ: để vận hành trang web hay cung cấp dịch vụ mà bạn yêu cầu);

3. nghĩa vụ pháp lý (tuân thủ luật pháp, quy định và quy tắc hoặc yêu cầu của các cơ quan chính phủ, cơ quan tư pháp hoặc cơ quan hành pháp); và

4. để ngăn ngừa hành vi gian lận và nhằm mục đích bảo vệ uy tín.

Nếu bạn có thắc mắc về cơ sở pháp lý cho cách chúng tôi xử lý thông tin cá nhân của bạn, vui lòng liên hệ với chúng tôi theo địa chỉ [email protected] (vui lòng đề cập "Glenti" trong tiêu đề email của bạn).

Quyền tiết lộ, chỉnh sửa, xóa hoặc tạm ngưng việc sử dụng, chuyển dữ liệu và rút lại sự đồng ý

Nếu bạn ở Brazil, với tư cách là chủ thể dữ liệu, bạn có quyền yêu cầu tiết lộ, chỉnh sửa, xóa, tạm ngưng việc sử dụng hoặc chuyển dữ liệu cá nhân của mình, cũng như quyền rút lại sự đồng ý và được thông báo về những hậu quả tiêu cực tiềm ẩn của việc rút lại đó, đồng thời được thông báo về các tổ chức công và tư mà chúng tôi đã chia sẻ dữ liệu cá nhân của bạn, và chúng tôi có nghĩa vụ đáp ứng yêu cầu của bạn sớm nhất có thể. Bạn có thể gửi yêu cầu qua email đến [email protected] (vui lòng đề cập "Glenti" trong tiêu đề email của bạn) hoặc qua thư đến Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (gửi đến: Phòng Pháp lý, Starii).

Thông tin cá nhân nhạy cảm

Nếu bạn ở Brazil, bạn hiểu và đồng ý rằng để có thể cung cấp Dịch vụ cho bạn, chúng tôi có thể thu thập thông tin cá nhân nhạy cảm, chẳng hạn như đặc điểm khuôn mặt, giới tính, độ tuổi của nhân vật trong ảnh dữ liệu giọng nói và các yếu tố khác có trong ảnh hoặc trong giọng nói.

Đại diện

Nếu bạn ở Brazil, bạn có thể liên hệ với Nhân viên bảo vệ dữ liệu của chúng tôi qua email [email protected] (vui lòng ghi "Glenti" trong tiêu đề email) hoặc gửi thư bảo đảm đến Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000 (gửi đến: Phòng Pháp lý, Starii).

Chuyển dữ liệu quốc tế

Để cung cấp Dịch vụ cho bạn, chúng tôi có thể thu thập thông tin cá nhân của bạn, chuyển đi, lưu trữ và xử lý thông tin đó ở nơi khác.

• Thông tin cá nhân được chuyển: vui lòng tham khảo mục "Thông tin chúng tôi thu thập" của Chính sách này ở trên

• Ngày và phương pháp chuyển: chuyển khi gửi để lưu trữ và xử lý

• Quốc gia mà thông tin cá nhân được chuyển đến: Singapore

• Lưu giữ thông tin cá nhân: vui lòng tham khảo mục "Lưu giữ dữ liệu" của Chính sách này ở trên

Bất cứ khi nào chúng tôi chia sẻ thông tin ra ngoài nơi bạn sinh sống, chúng tôi đảm bảo rằng việc chuyển thông tin tuân thủ luật pháp địa phương của bạn để thông tin cá nhân của bạn được bảo vệ đầy đủ.

LƯU GIỮ DỮ LIỆU

Theo luật pháp, quy tắc cùng quy định hiện hành và việc chúng tôi thực hiện các mục đích kinh doanh hoặc pháp lý, chúng tôi sẽ lưu giữ thông tin của bạn (bao gồm cả thông tin cá nhân) trong thời gian cần thiết để chúng tôi có thể tiếp tục cung cấp Dịch vụ cho bạn, cũng như trong thời hạn luật định nêu trong Bộ luật Dân sự Brazil, LGPD, Khuôn khổ Quyền Công dân Brazil đối với Internet và Bộ luật Bảo vệ người tiêu dùng Brazil.

Chúng tôi sẽ hủy thông tin cá nhân của bạn ngay lập tức khi không cần thông tin đó nữa. Khi hủy thông tin cá nhân của bạn, chúng tôi sẽ thực hiện các biện pháp hợp lý về mặt thương mại và khả thi về mặt kỹ thuật để đảm bảo thông tin cá nhân bị xóa vĩnh viễn.

Sau khi chấm dứt Dịch vụ, chúng tôi có thể lưu giữ thông tin cá nhân của bạn để tuân thủ các nghĩa vụ pháp lý hoặc quy định, chuyển cho bên thứ ba, với điều kiện tuân thủ các yêu cầu về xử lý dữ liệu theo quy định tại LGPD và chỉ để chúng tôi sử dụng riêng, với điều kiện thông tin sẽ được ẩn danh.

Lựa chọn về luật

Nếu bạn cư trú tại Brazil, Chính sách này sẽ được thực thi và diễn giải theo luật pháp của Brazil.

ĐỐI VỚI NGƯỜI DÙNG Ở VIỆT NAM

Nếu bạn là người dùng tại Việt Nam, mục này sẽ bổ sung và cấu thành một phần không thể tách rời của Chính sách và được xây dựng theo luật pháp và quy định hiện hành tại Việt Nam, bao gồm Nghị định 13/2023/NĐ-CP về bảo vệ dữ liệu cá nhân (được sửa đổi theo thời gian) cùng các luật, quy định, yêu cầu pháp lý và tiêu chuẩn quốc gia có liên quan khác chi phối hoặc liên quan đến việc xử lý thông tin cá nhân của bạn trong quá trình sử dụng Dịch vụ của chúng tôi (gọi chung là "Quy định về quyền riêng tư của Việt Nam").

Các thuật ngữ trong mục này sẽ có cùng ý nghĩa như trong Chính sách trừ khi có quy định rõ ràng khác. Trong trường hợp có bất kỳ xung đột nào giữa các điều khoản trong mục này và các điều khoản trong nội dung chính của Chính sách, các điều khoản trong mục này sẽ được ưu tiên áp dụng.

THÔNG TIN CHÚNG TÔI THU THẬP

Trong Chính sách này, "thông tin cá nhân" hay "dữ liệu cá nhân" là bất kỳ thông tin nào dưới dạng ký hiệu, chữ cái, số, hình ảnh, âm thanh hoặc nội dung tương tự trên phương tiện điện tử có liên quan đến một người cụ thể hoặc giúp xác định một người cụ thể. Thông tin cá nhân bao gồm dữ liệu cá nhân cơ bản và dữ liệu cá nhân nhạy cảm.

Một số thông tin cá nhân mà chúng tôi thu thập có thể bao gồm "dữ liệu cá nhân nhạy cảm". Đó là dữ liệu cá nhân liên quan đến quyền riêng tư của bạn mà khi bị vi phạm sẽ ảnh hưởng trực tiếp đến quyền và lợi ích hợp pháp của bạn. Dữ liệu cá nhân nhạy cảm mà chúng tôi thu thập và xử lý bao gồm nhưng không giới hạn ở thông tin giọng nói và thông tin đặc điểm khuôn mặt.

Phạm vi xử lý

Chính sách này giải thích cách chúng tôi "xử lý" thông tin cá nhân của bạn. Điều này bao gồm cách chúng tôi có thể thu thập, ghi lại, phân tích, xác minh, lưu trữ, chỉnh sửa, tiết lộ, liên kết, truy cập, truy xuất, thu hồi, mã hóa, giải mã, sao chép, chia sẻ, truyền tải, cung cấp, chuyển giao, xóa, hủy hoặc thực hiện các hành động khác liên quan đến thông tin cá nhân của bạn.

Cơ sở pháp lý để chúng tôi xử lý thông tin cá nhân của bạn

Chúng tôi sẽ chỉ xử lý thông tin cá nhân của bạn khi có cơ sở pháp lý để làm như vậy. Trong hầu hết các trường hợp, chúng tôi xử lý thông tin cá nhân của bạn sau khi có được sự đồng ý của bạn cho các mục đích được liệt kê trong Chính sách.

Thông tin cá nhân của bạn cũng có thể được xử lý trong các trường hợp sau mà không cần sự đồng ý của bạn, bao gồm:

1. trong trường hợp khẩn cấp khi cần phải xử lý ngay lập tức thông tin cá nhân có liên quan để bảo vệ tính mạng và sức khỏe của bạn hoặc người khác;

2. tiết lộ thông tin cá nhân theo quy định của pháp luật;

3. cơ quan nhà nước có thẩm quyền xử lý thông tin cá nhân trong trường hợp khẩn cấp về quốc phòng, an ninh quốc gia, trật tự, an toàn xã hội, thiên tai nghiêm trọng, dịch bệnh nguy hiểm; hoặc khi có nguy cơ đe dọa an ninh, quốc phòng nhưng chưa đến mức ban bố tình trạng khẩn cấp; hoặc để phòng ngừa và chống bạo loạn cũng như khủng bố, phòng ngừa và chống tội phạm cùng các hành vi vi phạm pháp luật theo quy định của pháp luật;

4. thực hiện các nghĩa vụ theo hợp đồng cùng bạn với các cơ quan, tổ chức, cá nhân có liên quan theo quy định của pháp luật;

5. phục vụ hoạt động của các cơ quan nhà nước theo quy định của pháp luật chuyên ngành; và

6. các trường hợp khác theo quy định của pháp luật.

Quyền của bạn

Theo Quy định hiện hành về quyền riêng tư của Việt Nam, bạn có các quyền sau đây liên quan đến thông tin cá nhân mà bạn tiết lộ cho chúng tôi:

• Quyền được biết: Bạn có quyền nhận được thông báo về các hoạt động xử lý dữ liệu liên quan đến thông tin cá nhân của bạn, trừ khi luật pháp có quy định khác.

• Quyền đồng ý: Bạn có quyền đồng ý (hoặc không đồng ý) với việc xử lý thông tin cá nhân của bạn, ngoại trừ trong các trường hợp sau:

• trong trường hợp khẩn cấp khi cần phải xử lý ngay lập tức thông tin cá nhân có liên quan để bảo vệ tính mạng và sức khỏe của bạn hoặc người khác;

• tiết lộ thông tin cá nhân theo quy định của pháp luật;

• cơ quan nhà nước có thẩm quyền xử lý thông tin cá nhân trong trường hợp khẩn cấp về quốc phòng, an ninh quốc gia, trật tự, an toàn xã hội, thiên tai nghiêm trọng, dịch bệnh nguy hiểm; hoặc khi có nguy cơ đe dọa an ninh, quốc phòng nhưng chưa đến mức ban bố tình trạng khẩn cấp; hoặc để phòng ngừa và chống bạo loạn cũng như khủng bố, phòng ngừa và chống tội phạm cùng các hành vi vi phạm pháp luật theo quy định của pháp luật;

• thực hiện các nghĩa vụ theo hợp đồng cùng bạn với các cơ quan, tổ chức, cá nhân có liên quan theo quy định của pháp luật;

• phục vụ hoạt động của các cơ quan nhà nước theo quy định của pháp luật chuyên ngành; và

• các trường hợp khác theo quy định của pháp luật.

  • Quyền truy cập: Bạn có quyền truy cập thông tin cá nhân của mình để xem, chỉnh sửa hoặc yêu cầu chỉnh sửa thông tin cá nhân, trừ khi luật pháp có quy định khác.

  • Quyền rút lại sự đồng ý: Bạn có quyền rút lại sự đồng ý đối với việc xử lý thông tin cá nhân của bạn, trừ khi luật pháp có quy định khác.

  • Quyền xóa: Bạn có quyền xóa hoặc yêu cầu xóa thông tin cá nhân của mình, trừ khi luật pháp có quy định khác.

  • Quyền hạn chế việc xử lý dữ liệu: Bạn có quyền hạn chế việc xử lý thông tin cá nhân của mình, trừ khi luật pháp có quy định khác. Việc hạn chế sẽ được thực hiện trong vòng 72 giờ sau khi bạn yêu cầu, trừ khi luật pháp có quy định khác.

  • Quyền được cung cấp dữ liệu: Bạn có quyền yêu cầu chúng tôi cung cấp thông tin cá nhân của bạn, trừ khi luật pháp có quy định khác.

  • Quyền phản đối: Bạn có quyền phản đối việc chúng tôi xử lý thông tin cá nhân của bạn để ngăn chặn hoặc hạn chế việc tiết lộ thông tin cá nhân của bạn hay việc sử dụng thông tin đó cho mục đích quảng cáo và tiếp thị, trừ khi luật pháp có quy định khác. Chúng tôi sẽ thực hiện yêu cầu của bạn trong vòng 72 giờ sau khi nhận được yêu cầu, trừ khi pháp luật có quy định khác.

  • Quyền khiếu nại, tố cáo, khởi kiện: Bạn có quyền khiếu nại, tố cáo, khởi kiện theo quy định của pháp luật.

  • Quyền yêu cầu bồi thường: Bạn có quyền yêu cầu bồi thường theo quy định của pháp luật nếu xảy ra hành vi vi phạm pháp luật hiện hành, trừ trường hợp pháp luật có quy định khác hoặc có thỏa thuận khác giữa bạn và chúng tôi.

  • Quyền tự vệ: Bạn có quyền tự vệ theo pháp luật hiện hành hoặc yêu cầu cơ quan, tổ chức có thẩm quyền bảo vệ quyền dân sự của mình theo quy định tại Điều 11 Bộ luật Dân sự Việt Nam.

Để thực hiện bất kỳ quyền nào của bạn hoặc nếu bạn có bất kỳ câu hỏi nào về cách chúng tôi xử lý thông tin cá nhân của bạn, vui lòng gửi yêu cầu cho chúng tôi bằng thông tin liên hệ nêu ở phần đầu Chính sách này. Để xử lý yêu cầu này, hãy lưu ý rằng chúng tôi có thể yêu cầu bạn cung cấp thêm thông tin để xác nhận danh tính của bạn.

Nghĩa vụ của bạn

Theo Quy định hiện hành về quyền riêng tư của Việt Nam, bạn có các nghĩa vụ sau đây liên quan đến thông tin cá nhân mà bạn tiết lộ cho chúng tôi:

• Bảo vệ thông tin cá nhân của riêng bạn cũng như yêu cầu các tổ chức và cá nhân có liên quan bảo vệ thông tin cá nhân của bạn;

• Tôn trọng và bảo vệ thông tin cá nhân của các chủ thể dữ liệu khác;

• Cung cấp thông tin cá nhân của bạn một cách đầy đủ và chính xác khi bạn đồng ý cho phép xử lý;

• Tham gia vào việc phổ biến các kỹ năng bảo vệ thông tin cá nhân; và

• Tuân thủ các quy định của pháp luật về bảo vệ thông tin cá nhân

Khoảng thời gian lưu giữ

Chúng tôi sẽ xử lý thông tin cá nhân của bạn kể từ thời điểm bạn truy cập hoặc sử dụng Dịch vụ của chúng tôi và trong khoảng thời gian không quá mức cần thiết cho các mục đích được xác định trong Chính sách này.

Nếu chúng tôi buộc phải xử lý thông tin cá nhân của bạn theo hoặc để tuân thủ nghĩa vụ pháp lý, chúng tôi sẽ lưu giữ thông tin cá nhân của bạn trong khoảng thời gian cần thiết để tuân thủ nghĩa vụ đó. Khi hết thời hạn lưu giữ dữ liệu phù hợp hoặc theo yêu cầu của pháp luật, chúng tôi sẽ xóa thông tin cá nhân của bạn.

Các tổ chức tham gia vào việc xử lý thông tin cá nhân của bạn

Chúng tôi có thể tiết lộ thông tin cá nhân của bạn cho bên thứ ba để xử lý theo các mục đích nêu trong phần "Cách chúng tôi sử dụng thông tin" và "Tiết lộ và chia sẻ thông tin". Một số bên này có thể ở ngoài Việt Nam. Các bên liên quan hoặc tham gia vào quá trình xử lý thông tin cá nhân của bạn bao gồm:

• Các nhà cung cấp dịch vụ cung cấp dịch vụ hỗ trợ cho các hoạt động kinh doanh của chúng tôi, bao gồm các dịch vụ liên quan đến quảng cáo, xử lý khoản thanh toán, dịch vụ khách hàng, thực hiện dịch vụ gói đăng ký, nghiên cứu và phân tích, cơ sở hạ tầng điện toán đám mây;

• Các nhà vận hành nền tảng truyền thông xã hội, nếu bạn chọn chia sẻ ảnh và/hoặc video trên nền tảng truyền thông xã hội;

• Cơ quan hành pháp, cơ quan công quyền và cơ quan quản lý;

• Các đơn vị liên kết của chúng tôi; và

• Bất kỳ bên thứ ba nào khác cho các mục đích được nêu trong phần "Tiết lộ và chia sẻ thông tin".

Ngôn ngữ

Chính sách quyền riêng tư này được soạn thảo và chuẩn bị bằng tiếng Anh, nhưng có thể được dịch sang các ngôn ngữ khác (bao gồm nhưng không giới hạn ở tiếng Việt). Nếu có bất kỳ xung đột nào phát sinh giữa phiên bản tiếng Anh và bất kỳ bản dịch nào của Thỏa thuận này, thì phiên bản tiếng Anh sẽ có hiệu lực chi phối.

プライバシーポリシー

最終更新日： 2026年5月18日

お客様のプライバシーは当社にとって重要です。

Starii Tech Pty Ltdおよびその関連会社（以下「当社」または「Starii」）は、ユーザー（以下「ユーザー」または「お客様」）のプライバシー保護に努めています。本プライバシーポリシー（以下「本ポリシー」）は、Glentiアプリケーションおよび/またはそのウェブサイト（すべての機能を含む）（以下「サービス」）をご利用される際、適用データ保護法に基づくコントローラーおよび/またはビジネスとして、ユーザー情報（個人情報を含む）をいかに収集、保管、使用、管理および保護するかに関する当社の方針について説明することを目的とするものとします。本ポリシーにおいて、「関連会社」とは、Starii Tech Pty Ltdを直接または間接的に支配する、支配される、または共通の支配下にあるすべての法人を指すものとします。前記において「支配」とは、（i）当該法人の発行済み議決権付き有価証券または資本株式の50％超、もしくはこれに相当する持分または所有権の直接または間接的な保有、または（ii）契約上の取り決めにより当該法人の経営判断および経済的利益を統制することを意味するものとします。

本ポリシーの対象範囲は、お客様がサービスを利用する際に当社により収集または受け取られるユーザー情報（個人情報を含む）に限定されることにご注意ください。本ポリシーにおいて、「個人情報」とは、収集された情報が関連する個人を識別、連絡、または特定するために使用することができるあらゆる情報、またはその組み合わせを指すものとします。

EU/UK以外の地域に所在するユーザーの方は、当社のサービスをご利用いただくことにより、適用法で認められる範囲において、本ポリシーに定める方法でユーザー情報（個人情報を含む）の収集、使用、処理、保存、開示、および共有に同意したものとみなされます。本ポリシーのいかなる条項またはその後のいかなる変更にも同意できない場合は、当社のサービスを利用しないでください。

当社のサービスを利用する際、特定のカテゴリーのデータ（収集時に指定されたもの）を提供することは必須であることにご注意ください。必須として標示されたデータを提供されない場合または十分なデータを提供されない場合、当社は登録プロセスを完了するか、またはお客様にサービスを提供することができない場合があります。また、本ポリシーにおいて用語を定義しない限り、本ポリシーで使用されるすべての大文字の用語は、当社の利用規約におけるのと同じ意味を有することにご注意ください。したがって、当社の利用規約を読んで理解していることを確認してください。

本ポリシーまたはプライバシーに関する事項についてご質問がある場合は、[email protected]宛にメール（メール件名に「Glenti」と記載してください）、またはSuite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（宛先：Starii法務部）まで書留郵便にて、当社のデータ保護責任者までご連絡ください。プライバシーまたは知的財産権侵害に関連しないその他すべてのお問い合わせ、フィードバック、提案および/または苦情（サブスクリプションのキャンセル、支払い紛争、払い戻し要求、Glentiの技術サポートを含むがこれらに限定されない）については、[email protected]宛にメールで当社にお問い合わせいただきたいことにご注意ください。メールが誤った電子メールアドレスまたは誤った件名で送信された場合、お客様の請求が適切に処理される際に遅延または失敗が生じる可能性があります。

当社が収集する情報

サービスを提供し改善するため、当社は本ポリシーに従いお客様の個人情報およびユーザー情報を収集および処理するものとします。本情報を提供されない場合、当社がお客様に製品またはサービスを提供できない場合があります。お客様は、当社に送信されたすべての個人情報およびユーザー情報が完全、正確、真実および正当であることを確認するものとします。そうしないことにより、当社がお客様にサービスの全部または一部を提供できない場合があります。

アカウント情報

お客様がサービスを利用する際、当社はサービスおよびそのすべての機能を最大限に活用するために、当社にアカウントを登録することを推奨する場合があります。アカウントを作成する際、当社は以下の情報を収集するものとします。これはお客様を識別するか、またはお客様にサービスを提供するために使用することができます：

• 必須：メールアドレス

• 任意：氏名、ユーザー名、性別

当社のサービスはどなたでもご利用いただけますが、プレミアムコンテンツへのアクセスや各種特典の利用など、一部のサービスについてはサブスクリプション料金が必要となります（以下「サブスクリプションサービス」）。サブスクリプションサービスにおいて購入を行う場合、当社はデバイスIDや氏名などの特定の個人識別情報を収集します。第三者のアプリストアまたは支払いプロセッサーは、取引および更新を処理するために、お客様の財務情報および請求先住所を受け取る、アクセス、または使用する場合があります。第三者のアプリストアまたは支払いプロセッサーを通じてコンテンツを購入するか、またはサブスクリプションサービスに登録する場合、すべての購入について個人的な財務情報をいかに保持および使用するかに関する情報については、その第三者の条項を参照するものとします。疑義を避けるため、当社はお客様から財務情報を収集しません。

モバイルデバイス情報

お客様がモバイル端末で当社のサービスを利用する場合、当社はお客様の端末に関する情報（Android ID、ユーザーID（UID）、Identifier for Vendor（IDFV）、Open Anonymous Device Identifier（OAID）、使用している端末の種類、端末プラットフォーム、端末メーカー、端末ブランド、端末モデル、OSバージョン、解像度など）を収集します。これらの情報は、当社の技術的機能、サーバーの負荷分散、モバイル端末に関する技術データ分析の向上によるサービス最適化やグラフィック適応の改善など、統計および/または分析目的のために利用されます。

以下の「位置情報」セクションに記載されているとおり、お客様がそれを当社と共有することを選択する場合、当社はお客様のモバイルデバイスからお客様の位置情報を収集する場合があります。その後、位置情報の共有を中止したい場合、お客様はいつでもモバイルデバイスの関連設定を編集することにより、そうすることができるものとします。

モバイル分析

当社は、サービスの機能をより深く理解し改善するため、アプリケーションの利用頻度、アプリ内で発生したイベント、集計された利用状況、パフォーマンスデータ、ならびにアプリケーションのダウンロード元などの情報を収集します。

ネットワークデータ

お客様がサービスを利用する際、当社はお客様が使用するネットワークに関する情報（オペレータの名前およびネットワークの種類を含む）を収集する場合があり、それによってユーザーが使用するオペレータおよびネットワークの分布を理解するものとします。さらに、当社はお客様が接続するWiFiネットワークの名前、WiFiネットワークの所在地、およびWiFi接続の期間などの情報を収集して、お客様がサービスを使用することを好む環境を理解する場合があります。

大まかな位置情報

お客様がそれを当社と共有することを選択する場合、当社はお客様のモバイルデバイスからお客様の位置情報を収集する場合があります。

• 必須：IPアドレス、およびシステムタイムゾーン

• 任意：国名コードおよびシステム上の国情報

本情報は、当社がユーザー分布および使用シナリオを理解し、ユーザーにアプリまたはウェブサイトの正しいバージョン、地理的位置情報の再出現、またはお客様が写真を撮影するか、または動画を撮影した場所のリアルタイム地理的位置情報の公開を提供し、サービスを改善できるようにするものとします。当社がお客様の同意を得ない限り、位置情報はお客様を個別に識別するために取得または使用されないものとします。本ポリシーに別途定めがある場合を除き、当社は本位置情報を第三者と共有しないものとします。当該情報の収集または利用を希望されない場合は、インターネット接続をオフにするか、ネットワークおよび端末情報への当社のアクセスを無効にすることができます。お客様がサービスを利用することの結果として、当社がネットワーク情報、IPアドレスおよびシステムタイムゾーンなどの位置情報を引き続き受け取る可能性があることにご注意ください。

ログ情報

お客様がサービスの一部を利用する際（特定のコンテンツを生成および閲覧することを含む）、当社はGlentiに保存されている特定の関連ログ情報を自動的に収集するものとします（以下「ログ情報」）。ログ情報は、（i）お客様がサービスを利用する時期および頻度に関する詳細、（ii）デバイス統計（重要な操作パス、エラー、クラッシュ、言語およびタイムゾーンを含む）を含む場合があります。本ログ情報はサービスを改善するために使用され、ユーザーを個別に識別するために使用されないものとします。

画像情報

当社のサービスにおけるクラウド編集機能を利用することにより、当該サービスの提供および継続的な最適化のために、お客様の写真が処理目的で当社サーバーにアップロードされ、処理後の写真はお客様に返送される必要があることを理解し、これに同意したものとみなされます。また、当社はサービスのさらなる最適化（例えば、お客様の使用機器に適した写真エフェクトの提供など）のために、お客様の写真に関するEXIFデータも取得します（機器の種類、ISO、前面および背面カメラに関する情報、作成日時など。内容は機器メーカーにより異なります）。Glenti上のカメラを有効にし、または当社によるお客様のデバイス上の写真へのアクセスを許可することにより、お客様は当社が写真編集のため、お客様の写真にアクセス、収集および/または使用する可能性があることに同意するものとします。

音声情報

Glenti 上のマイクを有效にすることにより、お客様は当社が动画编辑集のため、お客様の音声データ（すな）わち、お客様の音声のオーディオクリップまたは音声记录）を收集する可能性があることに一致するものとします。当社はお客様の音声情報を広告目的で使用しません。お客様は、デバイスのオペレーティングシステム設定を使用するか、またはお客様のデバイスのマイクをミュートすることにより、いつでもGlentiのマイクへのアクセスをオフにすることができるものとします。

メタデータ

メタデータとは、ユーザーコンテンツに関連付けられた技術データを指すものとします。簡単に言えば、メタデータはデータを説明するデータです。例えば、メタデータは、コンピュータアルゴリズムおよび人工知能により生成およびタグ付けされた、写真に含まれるキャラクターの顔の特徴、性別、年齢の分析結果およびその他の要素を説明することができます。お客様が当社のサービスを利用する際、当社は写真のメタデータを使用し、「顔認識」、「キーポイント検出」、「領域分割」、「コンテンツタグ」などの特定の機能およびこれらの基本機能を組み合わせたカスタム機能を提供します。当社は、当社アプリがお客様の写真を処理する際に、お客様により適合するフィルターおよびより良い写真効果を提供するために、お客様の写真のメタデータを使用する場合があります。また当社は、お客様に文脈的により関連の深い製品またはサービスを提供するために、メタデータを使用する場合があります。

顔の特徴情報

特定のサービスを提供するため、上記のメタデータの利用に加えて、当社はお客様の顔の特徴情報（顔画像を含むがこれらに限定されない）を収集し、顔認識技術を使用して写真およびカメラ体験における顔を認識する場合があります。当社は顔認識コンテンツおよび顔操作機能を提供するため、顔マークを検出および使用する場合があります。当社のサービスは顔マッピング情報の深さに関連する特定のAR技術の計算結果を利用する場合があり、顔画像処理エフェクトを確保し、アルゴリズムを使用して機能分析を実行するために、お客様の顔認識機能を使用する必要がある場合があります。当社が収集する情報は特定の人物を識別するために使用されず、上記の機能を提供するためにのみ使用されるものとします。コンテンツレコメンデーションが終了したとき、またはアプリケーションもしくはウェブサイトの終了時に、顔マッピング情報は破棄されるものとします。本情報は第三者と共有されません。

当社は、計算結果を他の目的のために使用せず、ファイルにデータをキャプチャせず、記録目的でサーバーにデータをアップロードしないものとします。

クッキー

当社は、ユーザーの使用情報を保存および取得し、各ユーザーに対してカスタマイズされたサービスを随時提供する「クッキー」を使用するものとします。クッキーは、サーバーがアプリケーション/ウェブサイトを運営するために使用する小量の情報であり、ユーザーのデバイスに送信され、ユーザーのデバイスのハードディスクに保存されるものとします。お客様はクッキーのインストールを拒否することができるものとします。収集される情報には、お客様のインターネットプロトコル（IP）アドレス、ブラウザタイプ、インターネットサービスプロバイダー（ISP）、参照ページおよび終了ページ、お客様のオペレーティングシステム、日付およびタイムスタンプ、ならびにクリックストリームデータに関する情報が含まれるものとします。

• クッキーの使用目的：クッキーは、ユーザーが訪問したサービスおよびウェブサイトへの訪問およびユーザーの使用タイプ、一般的な検索用語、セキュアアクセスステータスなどを識別することにより、各ユーザーに最適化された情報を提供するために使用されるものとします。

• クッキーの設定、利用および拒否：当社アプリのデータ保護設定において、厳密に必要なクッキーを無効にすることはできません。アプリをご利用の場合、iOSデバイスでは「トラッキング」権限をオフにするか、Androidデバイスでは設定から広告IDを削除することができます。また、ユーザーは[email protected]宛にメールを送信することで（メール件名に「Glenti」と記載してください）、クッキーの設定を拒否することができます。

• ユーザーがクッキーの保存を拒否する場合、ユーザーはカスタマイズされたサービスの使用に困難が生じる可能性があります。

第三者サービスにより収集される情報

お客様に提供される当社のサービスは、当社のサービスプロバイダーのアプリケーションプログラミングインターフェース（API）またはソフトウェア開発キット（SDK）を含む場合があり、これはかかるサービスプロバイダーのトラッキングツールを有する場合があります。これらの第三者は、当社のサービス上でクッキー、APIおよびSDKを使用し、ユーザー情報を収集および分析する場合があります。第三者は、各自のプライバシーポリシーに基づいて、お客様のデバイス識別子、地域（特定の言語が使用されている場所として定義）、位置情報およびIPアドレスなどのお客様の情報にアクセスする場合があります。これらの第三者についてさらに詳しく知りたい場合は、[email protected]までメールにてお問い合わせください（メール件名に「Glenti」と記載してください）。

お客様が当社に対して主体的に提供する情報

お客様が当社（顧客サポートチームおよびデータ保護責任者を含むがこれらに限定されない）に連絡する際、当社はお客様が当社に提供するデータ（例えば、連絡先詳細（メールアドレスおよび/または電話番号など））を収集するものとします。

その他の情報

当社はまた、お客様のアイデンティティに関連しないその他の情報を収集する場合があります。例えば、当社はシステムのアップグレード状況をより適切に把握するために、お客様のOSの種類およびバージョン情報を収集する場合があり、また言語対応のためにシステム言語に関する情報を収集する場合があります。かかる情報を収集することを選択する場合、当社はお客様に提供される当社のサービスを改善するための目的でそうするものとします。

当社が情報を使用する方法

上述に一覧化された利用に加えて、当社はお客様のユーザー情報および個人情報を以下の目的において利用します。

1. サービス。カスタマーサポートおよび当社の製品を通じて提供されるその他のサービスを含むお客様に提供される当社のサービスを提供、処理、維持、改善および開発します。これには、お客様の大まかな位置情報に基づいて適切なバージョンのサービスを提供すること、ならびに不正防止などのリスク管理措置や、エラーの検出および解決のための措置の実施が含まれます。

2. 統計分析。当社の製品およびサービスを改善するための目的で、当社の製品およびサービスの使用に関する統計を開発および分析するため。

3. アカウントを作成するため。当社がお客様がアカウントを作成するためにサービスを利用する際に収集する個人情報は、お客様のアカウントおよびプロフィールを作成するために当社により使用されるものとします。

4. お客様のアイデンティティを確認するため。お客様のプライバシー保護およびデータセキュリティ確保のため、例えばアカウントにログインする際や、お客様の権利行使に関して当社へお問い合わせいただく際に、本人確認が行われる場合があります。

5. お客様からフィードバックを収集するため。お客様のフィードバックは、当社のサービスを改善するのに役立つ大きな価値があるものとします。お客様のフィードバックを追跡するため、当社はお客様により提供された個人情報を使用してお客様に連絡し、記録を保持する場合があります。

6. その他の目的。当社は、「当社が収集する情報」に基づく目的のため、ならびに適用される規則、法律および規制、行動規範、またはガイドラインの遵守、または関係当局による法執行および調査への協力のために、お客様に関する情報を収集、保管、維持、および利用します。また、サービスの安全かつ安定した運用の維持、アカウント、ネットワーク、運用、およびシステムのセキュリティ保護、フィッシングやウェブサイト詐欺、トロイの木馬型ウイルスの防止、ならびに各種リクエストの処理のためにも利用します。

情報の共有および開示

当社は、当社のビジネス活動を支援するため、当社に代わってサービスを提供する第三者と情報を共有する場合があります。これらのサービスには以下のものが含まれるものとします：

1. 支払い処理。

2. 顧客サービスを提供すること。

3. サブスクリプションサービスの履行。

4. 調査および分析の実施。および

5. クラウドコンピューティングインフラストラクチャの提供。

当社は、以下の目的を除き、第三者（当社のサービスプロバイダーを除く）と全体または一部にかかわらずお客様の個人情報を共有し、または開示しません：

1. 他者またはその財産のセキュリティを保護すること。

2. 詐欺を防止または処理すること。

3. 当社の正当な権利および利益を保護すること。

4. 「当社が収集する情報」または「当社が情報を使用する方法」のセクションに記載される当社の目的に沿った措置を講じること。

5. 法律、規則および規制、またはインターネットセキュリティ、ならびに当社、当社のユーザーおよび第三者の権利、財産およびセキュリティを維持することを目的とする政府部門、司法当局、法執行機関、または私的当事者による要請に準拠すること。および/または

6. 当社が合併、買収、資金調達デューデリジェンス、再編、破産、管財人管理、会社資産の売却またはその他のお客様の情報が売却または譲渡される可能性のあるイベントに関与する取引の評価または完了。

お客様の情報を使用するための法的根拠

当社は、正当な法的根拠がある場合にのみ個人情報を収集および処理するものとし、一般的に以下の4つの法的根拠のいずれかに依拠するものとします：

1. 同意（お客様が同意を与えた場合）。

2. 契約（処理がお客様との契約の履行のために必要な場合。例えば、サイトを運営するか、またはお客様が要求したサービスを提供するため）。

3. 正当な利益（例えば、アカウントの保護、顧客サポートの提供を含め、サービスを提供および改善するためにお客様の情報を使用する必要があります）。当社は、当該利益がお客様への影響によってオーバーライドされない場合（お客様の同意がない、または処理が法律により別途要求または許可されていない限り）にのみ、正当な利益を法的根拠として依拠するものとします。および

4. 法的義務（法律、規則および規制、または政府部門、司法当局もしくは法執行機関による要請に準拠するため）。

当社がお客様の個人情報を処理する方法についての正当な法的根拠についてご質問がある場合は、[email protected]宛にお問い合わせください（メールの件名に「Glenti」を記載してください）。

第三者のウェブサイトおよびサービス

当社のサービスは、他のウェブサイトおよびサービスへのリンクを含む場合があります。さらに、他のウェブサイトおよびサービスが当社のサービスを参照またはリンクする場合があります。これらの他のドメインおよびウェブサイトは当社の支配下にあるものではなく、当社は第三者のウェブサイトまたはサービスについて承認せず、いかなる表明も行わないものとします。当社は、ユーザーが相互作用するあらゆるウェブサイトおよびサービスのプライバシーポリシーを読むことを推奨するものとします。これらの他のウェブサイトまたはサービスにアクセスすることはお客様の自己責任で行われるものとします。

情報セキュリティ

当社は、情報の喪失、不適切な使用、不正アクセス、または開示を防ぐための合理的な措置を講じるものとします。例えば、当社のサービスの一部は、お客様の個人情報を保護するために暗号化技術（SSLなど）を使用するものとします。ただし、お客様は、当社が合理的なセキュリティ対策を講じたとしても、お客様の情報が100%セキュアであることを常に保証することはできないことを理解し、受け入れるものとします。お客様は、当社がお客様が当社に提供するあらゆる情報のセキュリティを確保または保証することができないことを理解し、受け入れるものとします。当社は、不当な開示について責任を負いません。さらに、お客様は、当社のサービスにアクセスするために使用するシステムおよび通信ネットワークが当社の支配外にある要因により失敗する可能性があることを理解し、受け入れるものとします。

情報へのアクセスおよび管理

当社は、お客様がサービスを利用する際に、当社に提供されたお客様の個人情報またはその他の個人情報にアクセス、更新および修正できるようにするために、すべての合理的で適切な技術的措置を講じるものとします。お客様がかかる個人情報にアクセス、更新、修正または削除する前に、当社はお客様のアカウントのセキュリティを保護するため、お客様のアイデンティティを確認する場合があります。

データ保持

適用法、規則および規制、ならびに当社のビジネスまたは法的目的の履行に従い、当社はお客様が当社でのアカウントを終了するとすぐに、お客様の情報（個人情報を含む）を迅速に削除するものとします。

プライバシー権

適用法に従い、お客様は以下の権利を有する場合があります：（i）当社がお客様の個人情報を処理しているかどうかの確認をリクエストすること。（ii）お客様の個人情報にアクセスする、またはそのコピーを取得すること。（iii）お客様が当社に提供した個人情報の電子コピーを受け取るか、または当社にその情報を別の会社に送信するよう求めること（「データポータビリティの権利」）。（iv）当社によるお客様の個人情報の使用に異議を唱える、または制限すること。（v）不正確、虚偽、不完全、または不適切に処理された個人情報の修正または改正を求めること。（vi）お客様の同意を撤回すること。および（vii）法律により規定される特定の例外を条件として、当社によるお客様に関する個人情報の削除をリクエストすること。

お客様が権利を行使される場合は、[email protected]宛にメールを送信するか（メール件名に「Glenti」と記載してください）、Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（宛先：Starii法務部）まで書面にてご請求ください。当社はお客様のメールまたは郵送を受け取った後、適用法に従い合理的な期間内にお客様の請求を処理し、法律により規定される特定の例外を条件として、その後お客様の個人情報の収集、使用および開示を中止するものとします。お客様のプライバシーを保護するため、当社はお客様の請求を実行する前にお客様のアイデンティティを確認するための措置を講じるものとします。お客様が同意を撤回するか、またはお客様の個人情報を削除する場合、お客様による当社のサービスの一部の使用が影響される場合があることにご注意ください。

カリフォルニア州の居住者は、カリフォルニア州消費者プライバシー法により付与される権利の行使について、当社から差別的な扱いを受けない権利を有するものとします。

子どもに関する情報

当社は、16歳未満の子ども（またはお客様が居住する地域に適用可能な法律により規定される他の年齢）から個人情報を故意に収集または要求しません。お客様が16歳未満の場合、名前、住所、電話番号またはメールアドレスを含むがこれらに限定されない個人情報を当社に送信しないでください。当社が16歳未満（またはお客様の地域において法律で定められたその他の未成年年齢）の子どもに関する情報を保有している可能性があると思われる場合は、[email protected]宛にメールを送信するか（メール件名に「Glenti」と記載してください）、Suite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（宛先：Starii法務部）まで書留郵便にてご連絡ください。当社が16歳未満の子ども（またはお客様が居住する地域に適用可能な法律により規定される他の年齢）から個人情報を収集したことを知った場合、当社は直ちにかかる情報を削除し、関連するアカウントを終了するための措置を講じるものとします。

越境データ転送

お客様がユーザーである地域、およびお客様が居住する地域に適用可能なこのポリシーに記載される特別な規則および方針に従い、お客様は、当社を通じてまたは当社により収集されたすべての情報が、香港特別行政区を含むがこれに限定されない、香港、日本、南韓国、シンガポール、米国、欧州連合、クラウド、当社のサーバー、当社の関連会社のサーバー、またはサービスプロバイダーのサーバー上を含め、世界中のあらゆる場所で転送、処理、および保存される場合があることを理解し、同意するものとします。これはサービスを提供するためです。

準拠法

本ポリシーは、その紛争法の規定に関係なく、香港の法律に基づいて確立、発効、執行および解釈されるものとします。本ポリシーに基づいて生じるあらゆる紛争は、利用規約に従い解決されるものとします。当社は、本ポリシーがいかなる地域のプライバシー法にも準拠していることを表明または保証しません。したがって、お客様はかかる法律に従い本ポリシーを解釈してはいけません。

本ポリシーの修正

お客様は、当社が関連法規に従い、または当社のビジネス上の決定に基づいて本ポリシーを更新する場合があることに同意し、かかる修正に拘束されることに同意するものとします。 当社は、本ポリシーに対するあらゆる重要な変更をGlentiに掲示するか、法律により要求される場合、その他の手段によってお客様に通知するものとします。

欧州経済領域およびイギリスのユーザーに向けて

欧州一般データ保護規則およびイギリス一般データ保護規則の範囲内で個人情報を処理する場合（以下総称して「GDPR」）、お客様はお客様の個人情報の処理に関する関連詳細を以下のGDPR通知に記載されています。

日本のユーザーの場合

データ開示、修正、削除または使用停止に関する権利

お客様が日本に居住する場合、データ主体として、お客様の個人情報の開示、修正、削除または使用停止のリクエストを行う権利を有するものとし、当社は不当な遅延なくお客様の請求に応じる義務を負うものとします。ご請求は、[email protected]宛にメール（メール件名に「Glenti」と記載してください）、またはSuite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（宛先：Starii法務部）まで郵送にて行うことができます。

南韓のユーザーの場合

越境データ転送

当社は、「当社が情報を使用する方法」に記載される範囲内においてのみユーザーの個人情報を処理し、原則として、ユーザーの個人情報を第三者に提供しないものとします。ただし、お客様の同意を得て、「情報の共有および開示」に記載されるサービス提供の目的のため、当社はお客様の個人情報を収集する場合があります。

• 転送された個人情報：本ポリシーの上記「当社が収集する情報」のセクションを参照してください

• 転送日時および方法：保管および処理のための提出時に転送

• 個人情報の転送先国：シンガポール

• 個人情報の保持：本ポリシーの上記「データ保持」のセクションを参照してください

また、当社は、南韓の外に所在する以下の第三者にお客様の個人情報を転送する場合があります：

お客様の居住地の外で情報を共有する場合はいつでも、当社は転送がお客様の地域法に準拠し、お客様の個人情報が適切に保護されることを確保するものとします。

お客様は、以下に記載される個人情報保護責任者の部門に連絡することにより、上記の海外転送を拒否することができるものとします。お客様が当該個人情報の海外転送を拒否する場合、当社はお客様の個人情報を海外転送の対象から除外するものとします。ただし、かかる場合、当社は個人情報の海外転送を必要とするサービスのご利用を制限する場合があります。

また、当社は以下の第三者からお客様の個人情報を受け取る場合があります：

データ保持

適用法、規則および規制、ならびに当社のビジネスまたは法的目的の履行に従い、当社はお客様が当社でのアカウントを終了するとすぐに、お客様の情報（個人情報を含む）を迅速に削除するものとします。当社は、以下の手順および方法に従い、お客様の個人情報を破棄するものとします。

1. 破棄の手順：当社は破棄の対象となる個人情報を選択し、当社のデータ保護責任者の承認を得て、それらを破棄するものとします。

2. 破棄の方法：当社は、記録を可能な限り回復不可能にする手段を使用することにより削除することができる方法で電子的に保管およびファイルされた個人情報を破棄するものとします。

個人情報保護責任者およびクレーム取扱部門

Starii Tech Pty Ltd

宛先：Arthur Law（法務部責任者）、
Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

メール：[email protected]（メール件名に「Glenti」と記載してください）

プライバシーポリシーの改正履歴

なし

アメリカ合衆国のユーザーの場合

お客様は、当社がお客様が提供する写真または画像から生体認証情報を収集するために顔認識技術を使用する場合があることに同意するものとします。当社は、当該情報をサービスの提供および改善、ならびに当社の内部調査目的のために利用する場合があります。お客様の生体認証情報がイリノイ州生体認証情報プライバシー法の対象である場合、当社はサービスとの最後のインタラクションから3年以内にお客様の生体認証情報を削除するものとします。

適用法に従い、お客様は以下の権利を有する場合があります：

1. 当社がお客様の個人情報を処理しているかどうかを確認すること。

2. お客様の個人情報にアクセスする、または添付された詳細とともに当該個人情報のコピーを取得すること。

3. お客様が当社に提供した個人情報の電子コピーを受け取るか、または当社に当該情報を別の会社に送信するよう求めること（すなわち、データポータビリティの権利）。

4. お客様の個人情報を修正すること。

5. 特定の処理活動からのオプトアウトをリクエストすること。これには、適用される場合、当社がお客様の個人情報を「ターゲット広告」のために処理する場合（「ターゲット広告」は適用プライバシー法により定義されます）、当社がお客様の個人情報を「販売」する場合（「販売」は適用プライバシー法により定義されます）、または当社がお客様に関する法的またはこれに相当する重大な影響をもたらす特定の決定を推進する際にプロファイリングに従事する場合が含まれます。

6. 当社によるお客様に関する個人情報の削除をリクエストすること。および

7. お客様の請求を処理することを拒否する当社の決定に異議を唱えること。

適用されるプライバシー法に基づくお客様の権利を行使されたい場合は、[email protected]宛にメール（メール件名に「Glenti」と記載してください）、またはSuite 11.109, Level 11, Scaleup Hub, 477 Pitt Street, Haymarket, New South Wales, Australia, 2000（宛先：Starii法務部）まで書留郵便にて、当社のデータ保護責任者までご連絡ください。当社は適用法に従いかかる請求を処理するものとします。

お客様がバージニア州の居住者であり、お客様の請求に関する当社の決定に異議を唱えたい場合は、当社にそのことを知らせ、お客様のアピールを支持する情報を当社に提供することにより、そうすることができるものとします。

以下のパラグラフは、カリフォルニア州消費者プライバシー法（随時改正）（以下「CCPA」）の対象である個人情報の当社による処理にのみ適用されるものとします。

CCPAは、カリフォルニア州の居住者に、当社が当該居住者について収集した個人情報のカテゴリーが何であるか、および当社が過去12ヶ月間にビジネス目的（例えば、サービスプロバイダーへ）のため、当該個人情報を開示したかどうかを知る権利を付与するものとします。カリフォルニア州の居住者は、以下でこの情報を見つけることができるものとします：

当社が個人情報を収集する情報源のカテゴリーおよび個人情報を使用および開示する当社のビジネスおよび商業目的は、それぞれ上記の「当社が収集する情報」、「当社が情報を使用する方法」、および「情報の共有および開示」に記載されるものとします。当社は、上記「データ保持」に記載される期間に従い個人情報を保持するものとします。

過去12ヶ月間において、当社は個人情報を「販売」していない（CCPA により定義される）。また、16歳未満の未成年者の個人情報の「販売」についての実際の知識を有していません。

過去12ヶ月間において、当社は個人情報を「クロスコンテキスト行動広告」のために「共有」していない（CCPA で定義されるかかる用語）。また、「クロスコンテキスト行動広告」のための16歳未満の未成年者の個人情報の「共有」についての実際の知識を有していません。

当社は、敏感な個人情報を以下の目的のためのみ使用および開示するものとします：

1. サービスを提供するため。

2. 保存または送信される個人情報の可用性、真正性、完全性および/または機密性を損なうセキュリティインシデントを防止、検出および調査するため。

3. 当社に向けられた悪意のある、欺瞞的、詐欺的、または違法な行為に抵抗し、かかる行為の責任者を訴追するため。

4. 自然人の物理的な安全を確保するため。

5. 当社の製品、サービス、またはデバイスの品質またはセキュリティを検証または維持し、ならびに当社のサービスまたはデバイスを改善、アップグレード、または強化するため。

6. 個人の特性を推測しない目的のため。

カリフォルニア州の居住者は、CCPA により付与される権利の行使について、当社から差別的な扱いを受けない権利を有するものとします。

お客様のプライバシーを保護するため、当社はCCPA に基づいて提出された請求を実行する前に、お客様のアイデンティティを合理的に検証するための措置を講じるものとします。これらの措置には、当社が個人情報を収集した人物であるか、または権限のある代理人であることを合理的に検証するために、お客様に十分な情報を提供するよう要求することが含まれる場合があります。当社の検証プロセスの例には、当社がお客様に関連付けた電子メールアドレスまたは電話番号を提供するよう要求し、お客様のメールアドレスまたは電話番号に送信される検証コードを提供することが含まれる場合があります。

お客様の個人情報に関連する検証可能な消費者リクエストは、お客様、またはお客様の代理として合法的に行動する権限のある者のみが行うことができるものとします。代理人を認可するため、お客様および指定代理人により署名された書面による認可を提供し、追加の指示については上記の「プライバシー権」の情報を使用して当社に連絡するものとします。

当社は個人情報を「販売」せず、「クロスコンテキスト行動広告」のために個人情報を「共有」しないため、オプトアウト優先信号に応答しません。

お客様がネバダ州の居住者である場合、当社はお客様の個人情報を「販売」しません。

GDPR通知

サービス提供の関連で、当社は個人データを処理するものとします。

GDPRが当社による個人データの処理に適用される場合、当社はGDPRにのみ従い個人データを処理するものとします。上記の（一般的な）プライバシーポリシーで、GDPRがいつ当社による個人データの処理に適用されるかについての情報を見つけることができるものとします。本GDPR通知は、上記の（一般的な）プライバシーポリシーを補足するものであり、GDPRに基づく当社による個人データの処理に関する詳細情報を含むものとします。

1. コントローラーに関する情報

   1. コントローラーのアイデンティティと連絡先

Starii Tech Pty Ltd

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. 管理者の代表者の身元および連絡先情報

欧州連合

Rivacy GmbH

Mexikoring 33

22297 Hamburg

ドイツ

[email protected]

The United Kingdom

Rivacy Limited

St James' Hall, Mill Road

Lancing, West Sussex BN15 0PT

イギリス

3. コントローラーのデータ保護責任者の連絡先

Starii Tech Pty Ltd

法務部

Suite 11.109, Level 11

Scaleup Hub

477 Pitt Street

Haymarket, New South Wales

Australia, 2000

[email protected]

2. 個人データの処理に関する情報

   1. 処理される個人データの詳細

1. 個人データの処理の詳細