Privacy Policy

1. Introduction

This Privacy Policy is established to protect the personal information collected during the use of services provided by DataSurfing ("Company") and to safeguard the rights of users. The Company operates all services on Contabo VPS infrastructure and securely delivers traffic to the VPS environment via Cloudflare domain proxy.

2. Information We Collect

  • Information collected during user registration and service use: email, nickname, encrypted password, profile picture
  • Automatically collected information: IP address, cookies (only for logged-in users), access logs, device information
  • For anonymous users, a random UUID is generated and stored in Redis with a 2-hour TTL for service provision purposes.
  • Information collected via third-party login: partial Google account information through Google OAuth authentication.
  • Email services are provided via Zoho.

3. How We Collect Information

  • Information provided directly by users during registration
  • Automatically collected during service usage (cookies and logs)
  • Collected through third-party login integrations such as Google OAuth
  • Anonymous UUIDs are automatically generated and stored in Redis by the server

4. Purpose of Using Personal Information

We use the collected personal information for the following purposes:

  • Service provision and operation: providing member services, login authentication, customized services
  • Member management: identifying members, confirming registration intent, handling complaints, and facilitating communication
  • Service improvement and development of new services: enhancing user convenience and service quality
  • Compliance with laws and dispute resolution
  • Advertising and Marketing Purposes: We may use personal information to provide personalized advertisements tailored to users' interests and to analyze the effectiveness of such advertisements.
  • We may collect advertising-related data using cookies and similar technologies. Users can manage or opt out of cookies through their browser settings.

5. Retention and Use Period of Personal Information

  • Personal information collected at registration is retained until the member withdraws and is promptly destroyed thereafter.
  • For anonymous users, generated UUIDs are automatically deleted from Redis after a 2-hour TTL following the fulfillment of service purposes.
  • When retention is required by law, information is securely stored for the legally mandated period.

6. Provision of Personal Information to Third Parties

  • The Company does not provide users' personal information to external parties in principle.
  • However, personal information may be provided when necessary for service provision as follows:
    • Google OAuth: for user authentication
    • Zoho: for email delivery services
  • The Company ensures that personal information protection is maintained according to related laws and agreements during such third-party provision.

7. Measures for Protecting Personal Information

The Company takes technical and managerial measures to protect personal information securely.

8. User Rights and How to Exercise Them

  • Users can request access, correction, or deletion of their personal information at any time.
  • Inquiries regarding personal information can be made via the contact below.

Contact

Email: [email protected]

9. Notification of Policy Changes

  • This Privacy Policy may be amended according to changes in laws or company policies.
  • Changes will be notified in advance via website announcements or email.