Feversocial Privacy Policy


Welcome to the Feversocial services (referred to as "the Service") provided by Feversocial Limited (hereinafter referred to as "our Company" or "we"). This privacy policy outlines how personal data is collected, used, and protected when you use the Service. By accessing or using the Service, you acknowledge that you have read, understood, and agreed to this privacy policy.

You may choose whether to provide personal information; however, if you decide not to provide necessary data or submit incomplete information, you may not be able to access certain features of the Service.

  1. Scope of Application

This privacy policy applies to the following services ("the Company’s Services"):

  • Open Customer Engagement Platform (OCEP)

  • Websites operated by the Company, including feversocial.com and zines.cc

Through links available on the Service, you may access external websites. Please note that these third-party websites are governed by their own privacy policies, which may differ from ours. We encourage you to review the privacy policies of those websites separately.

  1. Purpose, Categories, and Sources of Personal Data Collection

When you use our services, your personal data is collected for the following purposes, categories, and from the following sources:


Source

Service

Personal Data Collected

Taiwan PIPA Purpose

Taiwan PIPA Data Code Types

OCEP Customers

*note 1

OCEP

Name, Email Address, Mobile Phone Number, Address, Social Media User Identifier, Identification Card Number, Age, Gender, Date of Birth, Marital Status, Hobbies, School Attended, Company of Employment, Job Title, Account and Key Data for Authorized Third-Party Applications, Social Media Platform Software Version, User Device Operating System, Browser Type and Version, IP Address, cookie 

148 Online shopping and Other Electronic Commerce Services、157 Investigation, Statistics and Research Analysis、181 Other Business Operation in accordance with the Business Registration or the Articles of Association、182 Other Advisory and Consultant Services

C001, C002, C003, C011, C012, C013, C014, C021, C023, C024, C031, C032, C033, C034, C035, C036, C038, C039, C051, C052, C053, C054, C056, C057, C061, C064, C072, C091, C101, C102, C103, C132.

Our Company

OCEP Customers and contracts

Email address, telephone number, organization name, and other necessary information for the Company's Services.

152 Advertisement or Commercial Conduct Administration

C001

Our Company

Website

cookies

040 Marketing, 090 Consumer, Customer Management and Service,148 Online shopping and Other Electronic Commerce Services, 157 Investigation, Statistics and Research Analysis

C132

*note 1:Data uploaded by Customers using OCEP services, where we act  as the data processor; after the termination of the contract with the Customer, with the consent of both the Customer and the Participant, we act as the data controller if the Participant  continues to use the inquiry services.


  1. Duration, Region, Subjects, and Manner of Personal Data Utilization

Duration: Until you request to stop using our services or until our services cease.

Region: Taiwan and other regions you authorize for use. 

Subjects:

  1. Our company: Processes and protects personal data based on the needs of corporate users of OCEP services.

  2. Customers: Manage their Participants' information using OCEP services.

  3. Participants: Inquire about services provided by the Customers.

Manner:

  1. Providing our services: We comply with personal data protection laws, contracts, and this policy regarding the personal data collected.

  2. Third-party disclosure and sharing: Except in the following situations or as compliant with personal data protection regulations, we do not actively provide your information entered in the Company’s Services to third parties:

    1. Cooperating with judicial investigations;

    2. Cooperating with relevant government agencies for investigations required by law or official duties;

    3. Obtaining your consent;

    4. Complying with legal stipulations;

    5. Internal analysis and research purposes;

    6. When necessary for outsourced services, for example, third-party verification services (Google, Microsoft, LINE, META, etc.).

  3. Use of Cookies:

    To improve user experience, our websites may use cookie technology, including IP addresses of your connecting devices, duration of use, the browser used, browsing and clicking data records, etc., to facilitate various analyses and information collection for website activities, thereby offering services more suited to individual user needs. These records are used solely for internal analysis and research by our company.

    If you do not wish to accept cookies used by our websites, you may disable the cookie tracking function through your browser settings; however, this action may restrict your usage of our websites or participation in activities.

  4. Data Flow for Generative AI Services:

    When you participate in activities initiated by the Organizer that involve third-party Generative AI services (e.g., image or text style transfer), the content you upload (User Generated Content, such as images or text) may be transmitted through the OCEP interface to the third-party AI service selected by the Organizer for processing. Our Company acts solely as the technical port provider for data transmission and does not serve as the Data Processor for that third-party AI service; therefore, we do not bear responsibility for its processing activities or security. You should refer to the Organizer's specific activity terms and privacy policy to understand how your data is handled.

  1. Data Protection 

    We will make every effort within a reasonable range of technology to protect your personal data. Our website servers are equipped with firewalls and other necessary information security devices and safety measures to prevent the theft, alteration, damage, loss, or leakage of personal data. Only authorized personnel have access to your personal data, and all relevant processing staff are obligated to maintain confidentiality. Any breach will be handled according to relevant legal provisions. In the case of outsourcing, when it is necessary to entrust others with services, we also strictly require them to adhere to confidentiality obligations and take necessary measures to ensure compliance.

  2. Information Storage and Protection (ISMS Security Commitment)

    The following entire section details the Company's security measures under its ISMS framework:

    Our Company has established an Information Security Management System (ISMS) to ensure the Confidentiality, Integrity, Availability, and Compliance of critical information and services. All security activities are implemented according to the PDCA (Plan-Do-Check-Act) continuous improvement process.

    (a) Data Security Architecture and Classification:

    1. Our Company classifies all information assets. Customer member PII, employee data, core R&D data, and important encryption keys are categorized as Confidential (Level 4) information.

    2. Confidential data is subject to the highest security requirements. Its improper disclosure could result in Our Company violating laws and regulations or incurring significant financial and reputational losses.

    (b) Data Transmission Security:

    1. For data classified as Sensitive (Level 3) or Confidential (Level 4), cryptographic techniques must be used during transmission or storage, in compliance with the "Operational Security and Cryptography Procedure" .

    2. Policies and procedures for the security of internal and external information transmission should be established.

    (c) Data Flow and Security for Generative AI Services

    1. Feversocial’s Own AI API Credential Protection: The AI API accounts and access keys used by Feversocial to provide the Marketing Planning AI Co-pilot service are considered Confidential (Level 4) information assets of the Company. The Company will use cloud key management mechanisms such as Secrets Manager to securely store the encryption keys, and will strictly restrict access according to the "Access Control Procedure" . Encryption keys for data classified as Sensitive or above must be changed at least once a year.

    2. AI Processing of User Generated Content (UGC): When activity participants upload images or other User Generated Content (UGC), if the Organizer chooses to use a third-party AI service for processing (e.g., image or text style transfer), that UGC will be transmitted through the OCEP interface to the third-party service.

    3. Feversocial Disclaimer for Third-Party AI Services: Feversocial will not access, retain, or supervise the processing activities or security measures applied to participant data by third-party AI services configured and used independently by the Organizer.

    (d) Data Deletion and Destruction:

    1. Information that is no longer needed or retained must be deleted in accordance with the "Asset Management Procedure".

    2. When Confidential level data is stored in the cloud, where feasible, it must be encrypted using Crypto-erase, then deleted using the permanent deletion function provided by the cloud service provider, and successful deletion must be confirmed.

  1. User Self-Protection Measures 

Please safeguard your data properly and avoid indiscriminately providing your personal information, account details, and passwords to others. Also, please use secure or encrypted networks to access our website and related services. After using the services, remember to log out. If you are using a public computer or a computer shared with others, remember to close the browser window and clear the browsing history to prevent unauthorized access to or knowledge of the information you have entered.

  1. Handling Misuse of Account or Password 

If you become aware that your account, password, or other personal data has been stolen, please notify customer service as soon as possible. Our Company has the right to temporarily suspend the processing and subsequent use of transactions related to that account, and will consult with you on further actions to take. However, these measures should not be interpreted as a commitment or implication by our company to compensate or indemnify users in any form.

  1. Rights of the Participant

If you use our services, and when we collect, process, and utilize data, we act as the data controller (see note 1). You may contact us (please refer to our website) to exercise the following rights:

  1. Inquiry or request for access.

  2. Request for a copy.

  3. Supplement or correction.

  4. Request to stop collection, processing, or use.

  5. Request for deletion.

  6. Refusal of marketing.

If you wish to exercise the above rights, you can contact us through the customer service email at cs@feversocial.com.

The exercise of these rights may involve a reasonable cost as permitted by law. If your request does not comply with application procedures, legal requirements, obligations of our website to retain data under the law, or other legal stipulations, we may not be able to process your request according to your wishes.

  1. Responsibility for Personal Data Not Directly Collected by Us

You are responsible for ensuring that the data you enter and store in our services, when involving third-party personal data, is collected, processed, and utilized in accordance with the relevant personal data protection laws. If there is any violation that causes damage to our company, its operators, personnel, or any third party, you shall be liable for compensation.

  1. Statement of Liability

We cannot verify the authenticity of your identity based on the information you provide, nor can we ascertain if there is any impersonation, theft, or falsification of personal data. If the information you provide is found to be fraudulent or false, you shall bear all civil and criminal legal responsibilities.

  1. Amendments to the Privacy Policy

We will modify and update the user terms and privacy policy as needed, and these changes will be announced on our website. We will not notify users individually. It is recommended that you regularly check and confirm the terms on our website to safeguard your security and rights while browsing our site. If you do not agree with any modifications or updates made by us, please cease using our services immediately. However, if you continue to use our website and related services, it will be deemed as acceptance of the amended terms and updates.

  1. Contact Information

If you have any questions or suggestions regarding this policy, please contact us through the customer service email at cs@feversocial.com.


V3.0 published on 2025/11/21

icon_BackToTop