Privacy Policy
FNet Co., Ltd. Privacy Policy
Effective Date: June 14, 2025
Last Updated: June 14, 2025
At FNet Co., Ltd. (hereinafter referred to as "FNet," "we," or "our company"), we understand the importance of protecting your personal data. This policy aims to clearly and transparently explain how we handle your personal data while strictly adhering to the European Union's General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA) and its amendment, the California Privacy Rights Act (CPRA), applicable to California residents, the Japanese Act on the Protection of Personal Information (APPI), and all applicable data protection laws. We are committed to collecting, using, storing, and protecting your information responsibly, ensuring your privacy rights are fully respected.
1. Who We Are (Data Controller)
FNet Co., Ltd. acts as the "data controller" for your personal data. This means we determine the purposes and means of processing your personal data. We bear primary responsibility for the processing of your personal data and are committed to ensuring all processing activities comply with GDPR, CCPA/CPRA, APPI and relevant laws and regulations.
FNet Co., Ltd.
40 Yongle 5th Street, West District, Chiayi City, Taiwan
You can contact our data protection team using the contact information provided at the end of this policy. The company currently does not have a designated Data Protection Officer (DPO).
2. What Personal Data Do We Collect?
To provide you with the services and products you choose, we only collect personal data that is necessary to achieve these purposes. The personal data we collect comes primarily from two sources: data you provide directly to us, and data we collect automatically through your use of our products and services.
Categories of Personal Information We Collect (as defined by CCPA/CPRA and APPI):
We may collect and have collected in the past twelve (12) months the following categories of personal information:
Identifiers:
Direct Source: Email address.
Automatically Collected: IP address, hardware unique identifiers (such as HDD/SSD model numbers, serial numbers, USB device VID/PID).
Internet or Other Similar Network Activity:
Automatically Collected: Information about how you use our software and services (such as software version numbers, feature usage frequency, application crash reports), typically anonymized or de-identified.
Professional or Employment-Related Information:
If applicable and voluntarily provided by you: In specific customer service or business interactions, you may voluntarily provide your company name or job title. This is not actively requested by us, nor is it necessary for providing our core services.
Inferences:
Automatically Collected: Inferences drawn from the above information about your preferences, characteristics, tendencies, behaviors, and attitudes, such as potential interest in product improvements.
Regarding "Personal Related Information" (as defined by APPI):
We may collect information that does not directly identify you personally, such as your device type, browser type, operating system version, and anonymized data about how you use our website and software. This information alone cannot identify you. If we provide such "Personal Related Information" to any third party, and we know or have reasonable grounds to believe that the third party will combine this information with other data to identify you personally, we will take necessary measures before providing it to ensure that the third party has obtained your consent in accordance with the law.
Generally, we do not actively collect your sensitive personal data. For information about the processing of sensitive personal data, please refer to Section 3 of this policy.
3. Processing of Sensitive Personal Data
Sensitive Personal Data (Special Categories of Personal Data as defined by GDPR, Sensitive Personal Information, SPI, as defined by CCPA/CPRA, and 要配慮個人情報 as defined by APPI) refers to personal information that requires a higher level of protection.
According to APPI, "要配慮個人情報" includes race, beliefs, social status, medical history, criminal records, crime victim information, etc., the processing of which requires the consent of the individual.
Our Policy:
Non-Active Collection:
FNet's core products and services are not designed to actively request or collect your sensitive personal data/要配慮個人情報. In the normal course of using our software and services, you are not required to provide any sensitive personal data.
Exceptions and Processing Basis:
We may process your sensitive personal data/要配慮個人情報 only in extremely special circumstances and under the following strict conditions:
Your Explicit Consent (GDPR Article 9(2)(a); APPI Article 20 - Prior Consent): In certain cases, if you choose to voluntarily and explicitly provide us with sensitive personal data (for example, when making a technical support inquiry, you voluntarily mention health-related information to explain device usage issues, but such information is not requested or required by us), we will process this data based on your explicit consent and the prior consent required by APPI. In such cases, we will clearly inform you of the purpose of the data at the time of collection and ensure you have full knowledge and choice.
Legal Obligations or Legal Claims: In certain cases, we may process sensitive personal data when necessary to comply with our legal obligations, public interest requirements, or to establish, exercise, or defend legal claims (GDPR Articles 9(2)(f) and (g); APPI Article 20 exceptions).
Vital Interests: To protect your or others' vital interests (i.e., life safety) when you are unable to provide consent (GDPR Article 9(2)(c); APPI Article 20 exceptions).
Limited Use and Disclosure:
We will not use the collected sensitive personal data for purposes other than providing the services you requested, unless you have given explicit consent or there is a clear legal requirement. For your "Right to Limit Use and Disclosure of Sensitive Personal Information," please refer to Section 11 "Your California Privacy Rights" of this policy. For users in Japan, you have stricter control over the use of 要配慮個人情報.
Strict Protection Measures:
Regardless of the basis for processing sensitive personal data, we will implement higher levels of encryption, access controls, and organizational security measures to protect this data, and will retain it only for the minimum time necessary to achieve the specific purpose.
Purpose Limitation and Minimization:
Any processing of sensitive personal data will be strictly limited to the explicitly stated purposes and will follow the principle of data minimization, collecting and processing only absolutely necessary information.
If you believe you have provided us with sensitive personal data without being asked, or if you have any concerns about our processing of sensitive personal data, please contact us immediately using the contact information at the end of this policy.
4. How and Why We Use Your Personal Data (Processing Purposes and Legal Basis)
We process your personal data based on the following purposes and legal bases permitted by GDPR and APPI. Each processing activity strictly follows the principles of data minimization and purpose limitation.
Fulfilling Our Contractual Obligations to You (GDPR Article 6(1)(b); APPI Article 18 - Within the scope necessary to achieve the utilization purpose; CCPA/CPRA Business Purpose - Providing Services):
Providing FNet Software Products and Related Services: This includes enabling the software features you purchased or subscribed to, processing your software registration, delivering any related physical or digital products, and confirming your transactions (such as order processing).
Providing Technical Support and Customer Service: We will use your data to respond to your inquiries, resolve technical issues, provide software operation guidance, and ensure you can smoothly use our products.
Providing Software Updates and SSD Firmware Upgrades: To ensure the software and related hardware (such as SSDs) you use maintain optimal performance and security, we will use your data to notify and provide necessary updates and upgrade services.
Our Legitimate Interests (GDPR Article 6(1)(f); APPI does not directly use "legitimate interests" as a processing basis, but its principles can be reflected in reasonable use purposes; CCPA/CPRA Business Purpose - Security and Auditing):
Operating, Evaluating, and Improving FNet's Software Products and Services: We continuously analyze usage patterns, user behavior, and product performance data (typically anonymized or de-identified) to understand product performance, identify potential areas for improvement, develop new features, and optimize user experience. This helps us better meet user needs and enhance product competitiveness. (Complies with APPI's principle of specific utilization purposes)
Maintaining Appropriate Security Measures and Preventing Fraud: We use IP addresses and hardware identifiers to monitor abnormal activities, detect and prevent unauthorized software use (such as piracy), prevent fraudulent behavior, and protect our systems and user data from malicious attacks. This is crucial for maintaining the integrity of our services and your data security.
Ensuring Accountability and Compliance: This includes conducting internal audits, complying with industry standards, implementing our terms and conditions of service, and monitoring compliance with internal data protection policies to ensure our operations comply with internal norms and external regulatory requirements.
GDPR Legitimate Interests Balancing Test:
When relying on legitimate interests as a legal basis under GDPR, we conduct a balancing test to ensure our interests do not override your fundamental rights and freedoms. We consider the nature, scope, purpose, and potential impact of the processing on you, and implement appropriate safeguards to protect your privacy.
Compliance with Legal Obligations (GDPR Article 6(1)(c); APPI Article 27 - Based on Legal Provisions; CCPA/CPRA Business Purpose - Compliance):
Compliance with Applicable Laws, Regulations, and Court Orders: We may need to process and disclose your personal data to fulfill legal requirements, such as responding to legitimate requests from law enforcement agencies, fulfilling tax and accounting regulations, or providing necessary evidence in legal proceedings.
Your Explicit Consent (GDPR Articles 6(1)(a) and 9(2)(a); APPI Articles 18, 20, 27 - Prior Consent):
Processing of Sensitive Personal Data/要配慮個人情報: As described in Section 3 of this policy, in rare cases where we need to process your sensitive personal data/要配慮個人情報, we will do so based on your explicit consent and the prior consent required by APPI. You have the right to withdraw this consent at any time, and the withdrawal will not affect the legality of processing carried out before the withdrawal.
Other Purposes: For certain non-essential cookies or other personal information processing activities that legally require consent, we will seek your consent.
5. How Long We Keep Your Data (Data Retention)
How long we retain your data depends on the legal basis for processing your data, the specific purpose, and applicable legal requirements. Our data retention policy aims to ensure we only retain your personal data for the minimum time necessary to achieve these purposes.
Contract Fulfillment Related Data:
For data processed to fulfill contracts with you (such as software licenses, service subscriptions), we will retain this data during the period you are an active user of FNet software products. After you terminate use of our products or services, we may retain certain necessary data for an additional, limited period based on legal requirements (for example, Taiwan's tax and accounting regulations typically require retention of business records for 5-7 years) or to handle potential legal claims.
Legitimate Interests Related Data:
For data collected based on legitimate interests (such as product improvement analysis, security logs), we will retain it for the period necessary to achieve that purpose. This may include a period for trend analysis or historical records, in which case the data will typically be anonymized or de-identified to prevent association with you personally.
Legal Obligations Related Data:
If specific regulations require us to retain certain data (such as electronic transaction records or user activity logs), we will comply with that requirement and retain the data until the statutory retention period is satisfied.
Data Deletion Principles:
When your personal data is no longer needed for its collection purpose, no longer has a legal basis supporting its retention, or you successfully exercise your right to deletion, we will securely delete, destroy, or anonymize this data to make it non-recoverable.
6. How We Share Your Personal Data
Unless explicitly stated otherwise in this policy, we do not sell, rent, or otherwise trade your personal data to any third party. We only share your data with the following types of third parties when necessary and while ensuring data protection. According to APPI, if providing personal information to third parties, we will in principle obtain your prior consent and fulfill recording obligations in accordance with the law.
Categories of Personal Information We Disclose for Business Purposes and Categories of Third-Party Recipients:
We have disclosed the following categories of personal information for the following business purposes in the past twelve (12) months:
Service Providers/Contractors (Data Entrustment):
We work with trusted third-party service providers and contractors to help us operate our business, provide and improve our products and services. These service providers process your personal data only within the scope of our explicit instructions and according to strict data protection and confidentiality agreements (i.e., data processing agreements or service provider agreements under CCPA/CPRA; personal information processing entrustment agreements under APPI). They are not authorized to use your data for their own purposes and must comply with CCPA/CPRA and APPI obligations for service providers/contractors. We will conduct necessary and appropriate supervision of the entrusted party. These service providers may include:
Cloud storage service providers (e.g., AWS, Google Cloud, Azure).
Payment processors (e.g., Stripe, PayPal).
Customer support platforms (e.g., Zendesk, Intercom).
Data analytics service providers (e.g., Google Analytics).
Email and communication service providers.
Legal and Regulatory Authorities:
To comply with applicable laws, regulations, legal processes, or government requests, or to protect the rights, property, or safety of FNet, our users, or the public, we may need to disclose your personal data. This may include responding to court orders, subpoenas, or law enforcement investigations. When legally permitted and necessary, we will endeavor to limit the scope of disclosure to the minimum necessary.
Business Transactions:
In the event of a corporate reorganization, merger, sale, joint venture, transfer, or disposition of all or part of our business, assets, or stock (including in connection with any bankruptcy or similar proceedings), we may transfer your personal data to the relevant third party. In such cases, we will require the recipient to comply with the provisions of this privacy policy.
We Do Not "Sell" or "Share" Personal Information:
FNet does not sell your personal information to third parties, nor does it "share" your personal information with third parties for "cross-context behavioral advertising" purposes as defined by CCPA/CPRA. We do not use your personal information to obtain monetary or other valuable consideration, nor do we share your personal information with third parties for the above purposes.
7. International Data Transfers
Your personal data may be transferred to and stored in locations outside the European Economic Area (EEA), outside Japan (including but not limited to the United States, Taiwan, etc.). These countries may not have the same data protection laws as the EEA or Japan.
When conducting international data transfers, we will take appropriate safeguards to ensure your personal data receives a level of protection equivalent to that provided by GDPR, CCPA/CPRA, and APPI.
For Transfers Outside the European Economic Area (EEA):
European Commission's Standard Contractual Clauses (SCCs): We will enter into SCCs approved by the European Commission with data recipients. These clauses impose contractual obligations on the protection and processing of personal data to ensure your data receives protection similar to GDPR outside the EEA.
Relying on European Commission's Adequacy Decisions: If the European Commission has determined that the data protection laws of a particular country or region provide an adequate level of protection, we may rely on that decision for data transfers.
Other Legal Transfer Mechanisms: Where applicable, we may also rely on other GDPR-approved transfer mechanisms, such as Binding Corporate Rules (BCRs) for data processors.
For Providing Personal Information Outside Japan (APPI Data Export Requirements):
According to APPI Article 28, when providing personal information outside Japan (excluding countries/regions specified in the rules of the Personal Information Protection Commission as having personal information protection systems equivalent to Japan), we will:
Obtain Your Prior Consent: Before obtaining your prior consent, we will provide you with information about the personal information protection system in the country or region where the recipient is located, and the measures taken by the recipient to protect personal information.
Take Measures in Compliance with APPI: We will enter into agreements with overseas recipients containing terms required by APPI and take appropriate measures prescribed by the Personal Information Protection Act regarding the recipients.
You have the right to request a copy of the specific safeguards (including relevant contractual terms) we have implemented to ensure the security of international data transfers through the contact information at the end of this policy.
8. How We Protect Your Personal Data (Security)
We are committed to protecting your personal data from unauthorized access, use, disclosure, alteration, damage, or destruction. We implement a series of strict technical and organizational security measures to ensure your data is protected throughout its lifecycle, including:
Data Encryption:
We use industry-standard encryption technologies during data transmission (such as SSL/TLS encryption protocols) and storage (such as static data encryption) to protect your personal data. For sensitive personal data, we will implement higher levels of encryption and other security measures.
Access Controls:
We implement strict internal access control policies based on the principle of least privilege. Only employees and authorized service providers with a "need to know" are allowed to access your personal data, and all access activities are monitored and logged.
Security Audits and Testing:
We regularly conduct security audits, penetration testing, and vulnerability scanning to identify and fix potential security weaknesses and continuously improve our security defenses.
Employee Training:
We provide data protection and privacy training to all employees to ensure they understand their responsibilities and best practices in handling and protecting personal data, especially the special requirements for sensitive personal data.
Data Anonymization and De-identification:
Where possible and applicable, we anonymize or de-identify personal data to prevent association with specific individuals, particularly when used for statistical analysis and product improvement.
Physical Security Measures:
We implement strict physical security measures for servers and facilities storing personal data to prevent unauthorized access.
Backup and Recovery Plans:
We regularly backup your data and have comprehensive data recovery plans to handle emergencies and data loss.
Your data will be protected by these continuously updated and optimized security measures for as long as we retain it.
9. Data Breach Notification
We have established a comprehensive internal procedure for responding to any personal data breach incidents. If a personal data breach occurs that may result in a high risk to your rights and freedoms, we will:
Notify Supervisory Authorities:
After discovering a data breach incident, we will notify the relevant data protection supervisory authorities within 72 hours, unless the breach is unlikely to result in a risk to individuals' rights and freedoms. The notification will include the nature of the breach, the categories of data involved, the likely consequences, and the measures we have taken or propose to take.
Notify Data Subjects:
If the data breach incident may result in a high risk to your rights and freedoms, we will notify you without undue delay. The notification will explain the nature of the breach, the categories of data involved, the likely consequences, and the measures we have taken or propose to take to mitigate the risk, in clear and understandable language, while providing recommended protective measures you can take.
10. Your General Data Protection Rights (GDPR)
Under GDPR, you have the following rights regarding your personal data, which we will respect and assist you in exercising. Please note that these rights are not absolute and may be subject to exceptions and limitations to protect public interests (such as investigating crimes) or our legitimate interests.
Right of Access:
You have the right to request a copy of the personal data we hold about you. This includes confirmation of whether we are processing your personal data, and detailed information about the processing purposes, categories of personal data, data recipients, data retention periods, and relevant safeguards.
Right to Rectification:
If you believe any personal data we hold about you is inaccurate or incomplete, you have the right to request us to correct this data immediately. We will take reasonable steps to ensure your personal data is accurate and up-to-date.
Right to Erasure ("Right to be Forgotten"):
Under certain conditions, such as when the data is no longer needed for its collection purpose, you withdraw consent, you successfully exercise your right to object and we have no overriding legitimate processing grounds, or the data was processed unlawfully, you have the right to request us to delete your personal data.
Right to Restriction of Processing:
Under certain conditions, such as when you contest the accuracy of the data (while we verify accuracy), the processing is unlawful but you do not want the data deleted, we no longer need the data but you need it for legal claims, or you have exercised your right to object (while we verify legitimate interests), you have the right to request us to restrict the processing of your personal data. In such cases, we will only store your data and not process it further, unless with your explicit consent or on legal grounds.
Right to Data Portability:
You have the right to request us to provide you with the personal data you have provided to us in a structured, commonly used, and machine-readable format (such as CSV, JSON). Where technically feasible and without adversely affecting the rights and freedoms of others, you also have the right to request us to transmit this data directly to another data controller. This right only applies to data processed by automated means based on consent or contract performance.
Right to Object:
You have the right to object to the processing of your personal data based on our legitimate interests, including for direct marketing purposes. If we do not have compelling legitimate grounds that override your interests, rights, and freedoms to continue processing, we will stop processing your data.
Right to Withdraw Consent:
If we process your personal data based on your consent (for example, for certain non-essential cookies or processing of sensitive personal data), you have the right to withdraw that consent at any time. The withdrawal of consent will not affect the lawfulness of processing carried out before the withdrawal. Once consent is withdrawn, we will stop the processing activities based on that consent.
Right to Lodge a Complaint with a Supervisory Authority:
If you believe our processing of your personal data violates GDPR, you have the right to lodge a complaint with the relevant data protection supervisory authority. You can contact the supervisory authority in your habitual residence, place of work, or where the alleged infringement occurred.
11. Your California Privacy Rights (CCPA/CPRA)
If you are a California resident, you have certain specific rights regarding your personal information under the California Consumer Privacy Act (CCPA) and its amendment, the California Privacy Rights Act (CPRA). These rights are not absolute and may be subject to certain limitations.
A. Summary of Your Rights:
Right to Know:
You have the right to request that we disclose certain personal information about you that we have collected in the past 12 months, including:
The categories of personal information we have collected.
The categories of sources from which the personal information was collected.
The business or commercial purposes for collecting, selling, or sharing the personal information.
The categories of third parties to whom we have disclosed the personal information for business purposes.
The categories of personal information we have sold or shared, and the categories of third parties to whom we have sold or shared the personal information.
The specific pieces of personal information we have collected about you.
Right to Delete:
You have the right to request that we delete the personal information we have collected from you and retained, subject to certain exceptions.
Right to Correct Inaccurate Personal Information:
You have the right to request that we correct any inaccurate personal information we retain about you.
Right to Opt-Out of Sale/Sharing:
You have the right to direct us not to sell your personal information, and not to "share" your personal information with third parties for "cross-context behavioral advertising" purposes.
FNet Does Not Sell or Share Personal Information: As described in Section 6 of this policy, FNet does not sell your personal information, nor does it "share" your personal information with third parties for cross-context behavioral advertising as defined by CCPA/CPRA. Therefore, no opt-out link is necessary.
Right to Limit Use and Disclosure of Sensitive Personal Information (SPI):
You have the right to direct us to limit the use and disclosure of your sensitive personal information to purposes necessary to provide the services or goods you requested.
FNet's SPI Processing: As described in Section 3 of this policy, FNet does not actively collect your sensitive personal data, and only processes SPI in limited circumstances and under strict conditions, committing not to use SPI for purposes other than providing the services you requested, unless you have given explicit consent or there is a clear legal requirement. Therefore, for such limited processing, further limitation is typically unnecessary.
Right to Non-Discrimination:
You have the right not to be discriminated against for exercising your CCPA/CPRA rights (for example, we will not deny you goods or services, charge different prices or rates, or provide a different level or quality of goods or services because you exercised your rights).
B. How to Exercise Your California Privacy Rights:
If you are a California resident and wish to exercise the above rights, you can submit a request via email:
Via Email:
Send your request to fnet@gotofnet.com. Please indicate "California Privacy Rights Request" in the email subject line and clearly state in the email which right you wish to exercise and relevant details.
C. Verification and Response:
Verification:
To protect your data security and prevent unauthorized access, we may require you to provide sufficient information to verify your identity and confirm that you are the individual to whom the request relates or their authorized representative. We will endeavor to use the minimum amount of personal information necessary to complete the verification and may request additional information when necessary.
Authorized Agents:
You may designate an authorized agent to submit CCPA/CPRA requests on your behalf. When a request is submitted through an authorized agent, we may require you to provide written authorization allowing the agent to act on your behalf and require the agent to verify their identity.
Response Time:
We will respond to your request within 45 calendar days of receiving a verifiable request. If we need more time (up to an additional 45 calendar days), we will notify you in writing of the reason for the extension and the period. We will process two Right to Know requests free of charge per year.
12. Your Japanese Privacy Rights (APPI)
If you are a resident of Japan, you have the following rights regarding the personal information we hold about you under the Act on the Protection of Personal Information (APPI):
Right to Request Disclosure of Utilization Purpose:
You have the right to request that we inform you of the utilization purpose of the personal information we hold about you.
Right to Disclosure of Retained Personal Data:
You have the right to request that we disclose the "retained personal data" we hold about you.
Right to Correction/Addition/Deletion of Retained Personal Data:
If you believe that the "retained personal data" we hold about you is not true, you have the right to request that we correct, add to, or delete this information.
Right to Cessation of Use/Erasure of Retained Personal Data:
Under certain statutory conditions, you have the right to request that we cease using or erase the "retained personal data" we hold about you.
Right to Cessation of Provision to Third Parties of Retained Personal Data:
You have the right to request that we cease providing to third parties the "retained personal data" we hold about you, unless such provision is based on legal provisions or complies with other APPI exceptions.
How to Exercise Your APPI Rights:
You can submit a request via email:
Via Email:
Send your request to fnet@gotofnet.com. Please indicate "Japanese Privacy Rights Request" in the email subject line and clearly state in the email which right you wish to exercise and relevant details.
Verification and Response:
Verification:
To protect your data security and prevent unauthorized access, we may require you to provide sufficient information to verify your identity and confirm that you are the individual to whom the request relates or their legal representative.
Response:
We will respond to your request within a reasonable period after receiving your valid request.
13. Cookies and Tracking Technologies
To enhance your user experience and analyze the usage of our website and services, we may use cookies and other similar tracking technologies.
What are Cookies?
Cookies are small text files stored on your device (such as computer, phone, tablet) used to collect standard internet log information and visitor behavior information.
How We Use Cookies:
We use cookies to:
Maintain Session State: Keep you logged in while browsing different pages of our website.
Analyze Usage: Collect anonymized or aggregated data to understand how users interact with our website and software, helping us improve product design and functionality.
Provide Personalized Experience: With your consent, we may use cookies to remember your preferences and provide you with a more personalized experience.
Your Choices:
You can manage or reject cookies through your browser settings. However, please note that disabling cookies may affect the full functionality and experience of using our website and certain services.
Regarding "Sale" or "Sharing" of Cookies Data:
As described in Section 6 of this policy, FNet does not sell or share your personal information. Any third-party analytics or functional cookies used on our website or services do not involve the "sale" or "sharing" of personal information as defined by CCPA/CPRA (particularly for cross-context behavioral advertising purposes).
More Information:
For more information about how we use cookies and your choices, please refer to our Cookie Policy. We recommend that you read this policy carefully.
14. Privacy Policy Supplement - Google User Data
If our application uses Google APIs to access your Google Cloud Storage for backing up, synchronizing, and restoring user data, to ensure the security and privacy of user data, we strictly adhere to the following principles when processing Google user data:
Data Access:
Our application will only access your Google Cloud Storage data after obtaining your explicit authorization. This data is used solely for the purpose of backup, synchronization, and restoration. Without your explicit consent, we will not access any other types of Google data.
Data Use:
We use the data obtained from your Google Cloud Storage to provide backup and restoration services. This process involves uploading user data from your device to Google Cloud Storage and downloading data from Google Cloud Storage to your device to ensure data consistency across different devices. We do not use this data for advertising services, data mining, or other purposes.
Data Storage:
We only temporarily process your Google Cloud Storage data for the time necessary to complete synchronization or backup operations. Backup data is stored directly in your personal Google Cloud Storage, not on our servers. Similarly, data transferred from local storage to Google Cloud or restored from Google Cloud to local storage is not transmitted to or stored on our servers or any third-party servers. We take reasonable technical and administrative measures to ensure the security of data during transmission and processing.
Data Sharing:
Without your explicit consent, we will not share your Google Cloud Storage data with any third party, unless required by law. In such cases, we will take reasonable measures to ensure the third party implements equivalent data protection measures.
Data Security:
We use industry-standard encryption (such as HTTPS/SSL) and other security measures to protect user data from unauthorized access, use, or disclosure during transmission and processing. We regularly review and update our security policies to address emerging security threats and technological advancements.
User Permission Control:
You can revoke our access to your Google Cloud Storage data at any time through Google's account settings. After revocation, we will immediately stop accessing your Google Cloud Storage data and delete all temporary data obtained from it.
Information Collected from Google APIs:
The use and transfer to any other application of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
15. Children's Information
Our software services are not directed at minors (typically persons under 18 years of age, depending on your jurisdiction). We do not knowingly collect personal information from minors.
If you are a parent or guardian and believe we have inadvertently or mistakenly collected personal information from a minor through our channels without appropriate consent, please notify us immediately via email at fnet@gotofnet.com. Upon receiving such notification, we will take all reasonable measures to promptly delete the information from our servers and make any other necessary corrections.
16. Policy Updates
This privacy policy may be updated from time to time to reflect changes in our data processing practices, legal requirements, or new technological developments. All updates to this policy will be posted on this page.
We recommend that you regularly review this privacy policy to stay informed about any changes to our privacy practices. The "Last Updated" date at the top of this policy will indicate when the latest revision was made. For any significant changes (such as those affecting how we process your data or your rights), we will notify you via email or other appropriate means (such as posting a notice on our website) and give you sufficient time to review before the changes take effect.
17. Questions and Comments (Contact Us)
If you have any questions, comments, or concerns about this privacy policy, our data processing practices, or wish to exercise your data protection rights, please feel free to contact us through the following channels:
FNet Co., Ltd.
Email: fnet@gotofnet.com