Privacy Policy
隱私權政策
Effective Date / 生效日期: 03 September, 2025
Ezily Co., Ltd. (“Ezily,” “we,” or “the Company”) is a Taiwan-based Software-as-a-Service (SaaS) provider. This policy reflects that Ezily, as the data processor, handles personal data on behalf of our clients (data controllers) in accordance with Taiwan’s Personal Data Protection Act (“PDPA”). We are committed to protecting your personal data in accordance with the PDPA and, where applicable, incorporating selected principles from the EU General Data Protection Regulation (“GDPR”). This Privacy Policy explains how we collect, process, use, store, share, and protect personal data, as well as your rights under applicable laws.
易霖科技股份有限公司(以下簡稱「Ezily」、「我們」或「本公司」)是一家總部位於臺灣的軟體即服務(SaaS)公司。本政策說明 Ezily 為「資料處理者」,依據客戶(資料控制者)之指示並依《個人資料保護法》(個資法)處理個人資料。我們承諾依據個資法及在適用情況下參考歐盟《一般資料保護規範》(GDPR)之相關原則,保護您的個人資料與隱私安全。本政策說明我們如何蒐集、處理、利用、保存、分享與保護您的個人資料,以及您在適用法律下的相關權利。
Scope of Application / 適用範圍
This policy applies to personal data processed by Ezily, under client instructions, when you use our services including but not limited to websites, applications, APIs, and other online platforms.
本政策適用於您透過使用 Ezily 所提供之服務(包括但不限於網站、應用程式、API 及其他線上平台)時,Ezily 依據客戶之指示所進行的個人資料處理行為。
Categories of Personal Data Collected / 蒐集之個人資料類別
We may collect and process the following categories of personal data:
General information: name, contact details, company, title.
Account information: username, encrypted password, login records.
Transaction/payment data: payment records, invoices.
Technical/usage data: IP address, device info, browser type, usage logs.
Special categories (if applicable): processed only with explicit consent and additional safeguards.
我們可能會蒐集並處理以下類別之個人資料:
一般資料:姓名、聯絡方式、公司名稱、職稱。
帳號資訊:使用者名稱、加密密碼、登入紀錄。
交易/付款資料:付款紀錄、發票資訊。
技術/使用資料:IP 位址、裝置資訊、瀏覽器類型、使用紀錄。
特種個資(如適用):僅於法律許可並取得明確同意後處理,並採取額外保護措施。
Purposes of Collection / 蒐集目的
We collect personal data for the following purposes:
To provide and fulfill services.
Customer support and account management.
Service security and fraud prevention.
Service improvement, analytics, and business decisions.
Marketing and promotional communications (with prior consent).
Compliance with legal obligations.
我們蒐集與處理個人資料之目的包括:
提供與履行服務。
客戶支援與帳號管理。
服務安全及防詐監控。
服務改善、數據分析與商業決策。
行銷及推廣(需事先取得同意)。
履行法律義務。
Duration, Area, Recipients, and Methods of Use / 利用之期間、地區、對象及方式
Duration: Retention period necessary to fulfill the collection purpose or as required by law.
Area: Taiwan and locations where our systems/cloud services are hosted.
Recipients: Ezily staff, contracted service providers, and legally authorized parties. Methods: Electronic, paper, and other lawful means.
期間:為達成蒐集目的所需期間,或依相關法令規定之保存期間。
地區:臺灣及我們提供服務或設有系統/雲端伺服器之地區。
對象:Ezily 員工、依契約履行所需之第三方服務供應商、依法有權機關。
方式:電子、紙本及其他合法方式處理與利用個人資料。
Data Subject Rights under PDPA Article 3 / 個資當事人權利(個資法第三條)
You have the right to:
Access your data.
Request a copy.
Request correction.
Request cessation of collection, processing, or use.
Request deletion.
How to exercise: Please email privacy@ezily.io. Refusal to provide necessary data may affect service provision.
您有權:
查詢或請求閱覽。
製給複本。
補充或更正。
停止蒐集、處理或利用。
請求刪除。
行使方式:請電郵至 privacy@ezily.io。拒絕提供必要資料可能影響服務提供。
Cross-Border Data Transfer / 個資跨境傳輸
When your personal data is transferred abroad (e.g., to international cloud service providers), we will take appropriate security measures per the PDPA. Where applicable, we will follow internationally recognized safeguards inspired by the GDPR, such as contractual commitments to ensure adequate protection. We will not transfer personal data to jurisdictions restricted or prohibited by the PDPA authority.
當您的個人資料被傳輸至境外(例如使用國際雲端服務供應商)時,我們將依個資法採取適當安全措施。在適用情況下,我們亦將依循參考 GDPR 之國際公認保護措施,例如與接收方簽訂合約,以確保資料具備足夠保護水準。我們不會將個人資料傳輸至主管機關依個資法公告限制或禁止之地區。
Data Retention and Security / 資料保存與安全措施
Data will be retained for the period required for its purpose or by law, then securely deleted or anonymized. We implement access controls, encryption, backups, and internal policies to safeguard data.
個人資料將依蒐集目的及法律要求之期間保存,期滿後將安全刪除或匿名化。我們採取存取控制、加密、備份及內部政策等措施保護資料。
Data Breach Notification / 資料外洩通報
In the event of any personal data breach, Ezily will promptly notify the relevant data controller (our client) and provide necessary assistance for the controller to comply with its obligations under the PDPA, including notifying the competent authority and affected individuals when required by law. We will also investigate the incident, take corrective measures, and document all remedial actions.
若發生任何個人資料外洩事件,本公司將立即通知相關之個人資料控制者(即我們的客戶),並提供必要協助,以協助其依《個人資料保護法》履行義務,包括在法律要求時通報主管機關及受影響之當事人。我們亦將展開調查、採取改善措施,並記錄所有補救行動。
Electronic Marketing Opt-Out / 電子行銷拒絕權
Where Ezily processes personal data for electronic marketing purposes on behalf of the data controller, such communications will only be sent in accordance with the PDPA and with the prior consent of the data subject, where required. Recipients may withdraw their consent or opt out of receiving such communications at any time by following the instructions provided in the message or by contacting privacy@ezily.io.
當本公司依個人資料控制者之指示,處理個人資料以進行電子行銷時,將僅在符合法律規定並於必要時取得當事人事前同意後發送相關訊息。收件人可隨時依訊息中提供之指示,或聯絡 privacy@ezily.io 撤回同意或拒絕接收此類訊息。
Minors / 未成年人
Under Taiwan law, individuals under 20 must obtain legal guardian consent to use our services. We take reasonable steps to verify such consent. Failure to provide necessary personal data may limit functionality. In other jurisdictions, the local digital consent age applies (GDPR: 13–16).
依臺灣法律,未滿 20 歲者須取得法定代理人同意方得使用本服務,我們將採合理措施確認該同意之有效性。若未提供必要資料,部分功能可能無法使用。在其他法域,將依當地法律規定之數位同意年齡為準(GDPR:13–16 歲)。
Changes to This Policy / 政策修改
We may update this policy due to legal, service, or operational changes. Updates will be posted with a revision date; significant changes will be notified separately.
我們可能因法律、服務或營運需要更新本政策。更新後將於網站公告更新日期,重大變更將另行通知。
Contact Us / 聯絡我們 Email: privacy@ezily.io
電子郵件:privacy@ezily.io