Privacy Policy Framework

Privacy Policy Framework

Introduction

Unex Technology, a company incorporated in Taiwan, is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your data in compliance with the Taiwan Personal Data Protection Act (PDPA), the EU General Data Protection Regulation (GDPR), and US State Privacy Laws (including CCPA/CPRA).

Data We Collect

We collect information that identifies you (“Personal Data”), including:

  • Identifiers: Name, email, IP address, and unique device identifiers.
  • Commercial Info: Purchase history and service preferences.
  • Internet Activity: Browsing history and interaction with our website.
  • Geolocation Data: Precise or approximate location depending on your settings.

Lawful Basis for Processing (GDPR/PDPA)

We process your data only when we have a legal basis:

  • Consent: You have given clear consent (e.g., signing up for a newsletter).
  • Contract: Necessary to perform a contract with you (e.g., delivering a product).
  • Legal Obligation: To comply with Taiwan or international laws.
  • Legitimate Interests: For fraud prevention, network security, and improving our services.

International Data Transfers

As a Taiwanese company, your data may be transferred to and stored on servers located in Taiwan or other countries. We use Standard Contractual Clauses (SCCs) approved by the European Commission to ensure your data remains protected when leaving the EEA.

Your Rights

Regardless of your location, we provide the following rights:

  • Right to Access/Know: Request a copy of the data we hold.
  • Right to Correction: Update inaccurate info.
  • Right to Erasure (“Right to be Forgotten”): Request we delete your data.
  • Right to Opt-Out (US/CCPA): You may opt-out of the “sale” or “sharing” of your personal information.
  • Right to Data Portability: Move your data to another service.

Data Retention & Security

We retain data only as long as necessary for the purposes outlined. In accordance with the 2025 Taiwan PDPA amendments, we maintain a robust Data Breach Notification protocol to inform you and the Personal Data Protection Commission (PDPC) of any significant incidents.

Contact Us