小熊來電 Call Defender

Privacy Policy

Whoscall Inc. (a wholly-owned subsidiary of Gogolook Co., Ltd., organized under Japanese law) manages the Call Defender Service Terms. Whoscall Inc. and the holder of the Service database holder, namely the parent company, Gogolook Co., Ltd. (hereinafter referred to as the parent company, and collectively with Whoscall Inc. referred to as the Company) provide this Privacy Policy (hereinafter referred to as the Policy) to clearly explain the policies and procedures for the collection, use, and disclosure of personal data obtained from users of all services or software provided by Call Defender (hereinafter referred to as the Call Defender Service, including but not limited to the Call Defender App, and all services or software launched by the Company under the name Call Defender). Please refer to our Terms of Service for more information on how to manage the data you choose to submit to the Call Defender Service.

This Privacy Policy applies to all services provided by the Company. The Company may also supplement this Policy with additional information regarding the privacy practices of specific services when necessary.

Definitions

Except as otherwise provided in this Policy, terms used herein shall be interpreted in accordance with the relevant provisions of the Terms of Service for the Company’s Call Defender.

1. Data - Data collected by the Company

The Company might collect your data through the computers, mobile devices, or other equipment you use to access this website, software, and/or the Service. The categories of personal data collected by the Company will depend on the services you use and the requirements of applicable laws and regulations. The Company collects data from Call Defender Service users to improve the efficiency of the Call Defender Service, and has users and non-users manage and access the Call Defender Service.

The personal data collected by the Company includes User Data and Caller ID Data (as detailed in Paragraphs 1.1 to 1.5 below, and collectively referred to as Personal Data throughout this Policy).If you do not provide the Company with the information it requests, the Company may be unable to provide (or continue to provide) services to you, or to comply with applicable laws, regulations, or guidelines issued by regulatory authorities or other competent authorities.

1.1 User Data Provided by You

1.1.1 The user data fields that the Company requests and marks with an asterisk (*) or otherwise indicates as required are necessary for creation of your account, processing of your subscription, activation of the Service, and compliance with legal requirements. You may also voluntarily provide additional personal data to help the Company improve its fraud detection system or enhance your user experience.

1.1.2 In order to enable you to complete member registration, access this website, software and/or Service, or participate in events hosted by Call Defender Service, the Company may collect the following data from you directly or, with your consent, from third-party service providers (such as Google, Facebook, Apple, or e-payment service providers).Please note that the third-party tools, platforms, or other services you use may be subject to their own terms of service and privacy policies, which may differ from those governing the services provided by the Company. Said data include but are not limited to the following categories:

a) Personally identifiable information: such as name, phone number, email address, residential address, and online platform account, etc.;

b) Identification information in government data, such as national ID Card no., business administration number, and tax ID number, etc.;

c) Family member information: such as the information about children, dependents, other family members or relatives and parents;

d) Other social relationship data: such as information about relationships with friends, colleagues, and other non-family members.

e) Security information: such as passwords, security codes, and authorization levels, etc.;

f) Uncategorized Data: such as SMS content, phone number labels tagged or provided by you voluntarily, comments, screenshots, photos, details of (suspected) fraud suffered by you, as well as other unclassified letters, files, reports or emails.

g) Other information you voluntarily provide: such as the data provided by you when you complete forms, ask questions, leave comments or make requests via the Service, or when you contact the Company in any other manners.

1.1.3 Said information is collectively referred to as User Data, which consist of the data stored on your mobile device that you elect to upload to the Call Defender Service, including but not limited to, your mobile number and your phone number inquiry history.

1.2 Caller ID Data Provided by You

1.2.1 In consideration of your access to and use of the Service, you may also voluntarily provide the Company with “Caller ID Data,” which includes information provided to the Company through content submitted at your discretion (including but not limited to information proactively provided by you to the Company), as well as any other information you provide to the Company in order to become a “User.” The data may be displayed in the “Call Defender Caller ID” content under your own phone number, including but not limited to your name, phone number, and other contact details provided by you.

1.2.2 You agree that the Service may use your local contact information to identify and categorize the personal number information when you are accessing the Call Defender Service, provided that the Company will not store your contact list.

1.3 Personal Data Collected Automatically

1.3.1 In addition to the data you provide, the Company will automatically collect your personal data via the software on your device and other means. Said data include but are not limited to the following categories:

a) Service usage information: Information related to your access to this website, software and Service, including registration records, login times, login page browsing history, incoming call or SMS filtering actions, number inquiry or block records, OCR results from user-provided contents, and general browsing activity such as browsing, searching, and clicking on the website or software;

b) Account information: Information related to your Call Defender Service account, including subscription status and account settings.

c) Network access information: Information related to your internet or mobile network access, such as related data including your IP address, mobile carrier, internet service provider and communication quality.

d) Device information: Technical data related to the device you are using, including but not limited to, the device name and operating system, browser type and language, mobile device identifiers (such as advertising IDs), and authorization information (such as a unique device identifier).

e) Log Data: Logs and technical records generated by your access to this website, software and Service, including but not limited to, App usage logs, log files, access times, diagnostic or crash reports, system performance logs, error messages or reports, and aggregated access history data.

f) Demographic and location data: This includes geographic information inferred from your IP address, used solely to determine your country or territory.

g) Cookies and similar technologies: Information collected via cookies or other tracking technologies. You can disable cookies via your device settings; and

h) Feedback Data: Data you provide or generate while using the Call Defender service, based on different functions or your own needs, including but not limited to, contact person records, block records, phone tags, search history, feedback data (feedback tags and feedback alerts), and data associated with your phone number. Said data may include your own information and other non-users’ information.

1.4 Other personal data obtained from third parties or public sources

1.4.1 During the Company’s provision of the Service, the Company may collect additional personal data about you via the databases used by the Company (as described in the Terms of Service), in collaboration with third parties, or from publicly available sources. Said third parties might include without limitation to the Company’s local subsidiaries, local agents and data partners, industry associations, social media websites, data analytics service providers, and advertising networks. These parties might collect supplementary data about you, such as information provided by users of the Call Defender Service. If you are not a user of the Service, your contact information (e.g., phone number and caller ID) or your communications with Call Defender Service users (e.g., SMS messages) might be provided to the Company by the Call Defender Service users. For example, your phone number might be in their contacts or used for call filtering or to report fraud. For complaints about incoming call filtering results, please refer to the Company's Terms of Service.

1.4.2 From time to time, the Company might collect publicly or commercially available data, including data from the social networks accessed by you, and combine it with other data related to you to better understand your needs, interests and preferences. When others use the Company's services to provide data, the Company might also collect your data.

1.4.3 Information related to fraud and misconduct, and data pertaining to fraud detection and prevention, might be sourced from government agencies, partners or other publicly available databases.

1.5 Special Statement

1.5.1 In addition to said types of data collected by the Company, the Company might also collect the following data, which will be processed as non-identifiable data. The non-identifiable Data refer to data other than user data that you consent to our collection, retention, processing, or use in providing the Call Defender Service or other value-added services, for example, your postal code and personal preferences. Because the data does not identify you personally, they are considered non-identifiable data. It might include the following information:

a) Communication Exchange and Equipment Labeling Data: The information required for communication exchange protocols obtained directly or indirectly from your communication equipment while operating the Call Defender Service and any other additional services you have selected. They exclude network identifiers and include information self-labeled or recorded by other communication equipment and made available for storage or reading without identifying specific individuals (including but not limited to, communication equipment production serial numbers), as well as said Feedback Data.

b) Anonymous Statistical Analysis Data: Data compiled and summarized by the Company through de-identification techniques or other statistical methods that do not involve identification of personal data, sourced from User Data, Caller ID Data, Communication Exchange and Equipment Labeling Data, Feedback Data and tracking records of your usage patterns with the Call Defender Service and other services provided by the Company. These also include derivative files created based on said analysis data that cannot identify specific individuals without the use of additional information.

1.5.2 Notwithstanding, please note that non-identifiable data will be considered a part of your personal data if it can be used to directly or indirectly identify you when combined with other information (for example, by combining your address and zip code).

1.5.3 The Company uses your personal data (and in certain circumstances, e.g., when you choose to access other advanced services for call identification or blocking launched by the Company, also uses non-identifiable data) primarily to provide the Call Defender Service and related value-added services you select, and to respond to your inquiries. Additionally, you also agree that the Company may allow third parties who have obtained your prior consent to access your non-identifiable data in the Company’s database, as well as related data collected, held, processed, and used by the Call Defender Service from Third-Party Database. Notwithstanding, the Company will not provide your personal data as a result of these arrangements.

1.5.4 The Company may also use your personal data and non-identifiable data in its internal systems, combining it with data collected from other Call Defender users to enhance your experience, improve Call Defender’s quality, and help you better understand how to use the Company’s services. The Company may also use the data to provide you with tailored services, such as offering of products based on your personal preferences or restrictions.

1.5.5 Notwithstanding, unless the service provider needs to access your personal data to perform specific services you have agreed to, the Company will not allow the service provider to access or handle your personal data in any non-encrypted form. For example, if you receive an email from Call Defender Service, the email list management company contracted by the Company may have access to your email address. The Company will require service providers in writing to guarantee and agree not to disclose personal data without authorization or in violation of applicable laws, or to use any personal data to which they have access for any purpose other than that contemplated herein. You agree that the Company and its service providers may share the non-identifiable data to provide the Call Defender Service and any related value-added services you select, free from said restrictions. To improve the quality of the Call Defender Service, you agree that the Company may provide your personal data to external technical developers who have entered into a non-disclosure agreement with the Company.

2. How does the Company use your personal data? [See Paragraphs 2.7 and 2.18-19 of the Guidelines]

2.1 The Company must obtain your consent for collection of your personal data for the following purposes:

a) Register the Company’s services for yourself or your device;

b) Provide the services or functions requested by you (including caller ID, prevention of fraud and number inquiry);

c) In order to analyze the Company's products and services to help the Company better understand its customers and improve its communications, services, and experiences to better meet your needs;

d) Inquire about your opinions on the Company’s products and services and conduct customer surveys, subject to your consent separately;

e) Comply with laws and legal processes;

f) Protect the rights, property, or security of the Company or its associates, business partners or customers, and

g) Any other purposes related to said purposes.

2.2 If you do not wish the Company to use your personal data as described above or to share it with third parties for the purposes mentioned above, you may notify the Company through the contact channels in Paragraph 15 to exercise your right to refuse the request.

3. Whom does the Company share your personal data with? [See Paragraphs 1.14, 2.7, of the Guidelines]

The Company will keep the data confidential, but may disclose it to the following parties, or any of them, for the purposes set forth in Paragraph (d) above.

a) Associate: Any other associate controlled or owned by us.

b) Third-party service providers and business partners (including telecommunications security vendors) to assist with service delivery, technical support, or improvement of services;

c) To any other parties when required by law or otherwise necessary to protect the Company’s services – for example, the Company might be required to disclose your personal data in response to legal requirements, legal processes, or court orders from government authorities. They might also request that the Company disclose your personal data for law enforcement, national security, countering of terrorism, or other purposes related to public safety.

Other parties involved in business transactions: The Company will disclose your personal data to third parties as part of a merger, transfer, acquisition, or sale, or in the event of bankruptcy; and

d) Other parties with your consent or as directed: In addition to the recipients disclosed in this Privacy Policy, the Company might provide your personal data to third parties (including financial service companies and telecommunication service providers) with your further consent or per your request separately.

4. Business partners

In order to protect its legitimate interests in providing the Service, the Company might cooperate with business partners to detect and address data breaches, illegal activities and fraud, and to manage and improve the Service. For example, when the Company analyzes your communications to determine if they are fraudulent, it may share relevant contents with business partners to help them verify their data records. The Company will adhere to the principles of data minimization and take appropriate protective measures in connection with the processing described above.

5. Other users

Other users may receive your personal data via the Service as a result of actions you take. For example, when you post a comment on the Company's social media platforms, other users may be able to learn your personal information.

6. Government agencies and other organizations

The Company might provide your personal data to government authorities as required by applicable laws and/or legitimate requests. Meanwhile, the Company might also disclose your personal data in order to safeguard the Company’s rights, property, or security, or the rights, property, or security of users of the Service or other third parties. In certain circumstances, disclosures might also be made based on your consent.

7. Mergers and acquisitions and corporate reorganization

7.1 When the Company undergoes a merger, demerger, acquisition, asset transfer, or any other organizational restructuring, your personal data might be transferred to a third party as part of the transaction. Before conducting said transfer, the Company will comply with all applicable legal procedures and provide relevant notifications or obtain your consent as required by laws.

7.2 Data consolidation and non-identifiable data Based on the sharing targets and purposes mentioned above, the Company will combine your User Data, Caller ID Data, and other Call Defender User data into anonymous Consolidated Data. All personal data within the Consolidated Data section has been separated and encrypted, and all relevant records will be replaced with random numbers. The Company will use the Consolidated Data, non-identifiable data, and registration data shared with third parties for analysis purposes, in order to enable the Company to continuously improve the quality of Call Defender Service. However, the Company will not share your personal data with any third party for any purpose.

8. Your Data Protection Rights and Choices

8.1 Your data protection rights:

a) Right to inquiry: You have the right to request a copy of your personal data processed by the Company, along with information about how it is processed (such as the purpose of processing, the source of the data, and rights vested in you).

b) Right to correction: You have the right to request that the Company should correct any incorrect data or supplement any incomplete data.

c) Right to erasure (right to be forgotten): Under the conditions set forth in this Privacy Policy, you may request that the Company should delete/remove your personal data.

d) Right to restriction of processing: You may object to how the Company processes your personal data under the conditions set forth in this Privacy Policy.

e) Right to object: Under the conditions set forth in this Privacy Policy, you may object to how the Company processes your personal data.

f) Right to data portability: Under the conditions specified in this Privacy Policy, you may request that the Company should provide you with your personal data in a structured, commonly used, and machine-readable format, and transmit them to you or to a third party (where technically feasible).

g) Right to object automated decision-making: You have the right to refuse decisions based solely on automated decision-making (including profiling) if those decisions would pose legal effects or significant impact on you.

8.2 If the Company processes your personal data with your consent, you have the right to withdraw that consent at any time. Please note that your withdrawal of consent does not affect the validity of any processing conducted by the Company prior to your withdrawal. Following your withdrawal, the Company still may continue to process your personal data based on other lawful bases.

8.3 If you wish to exercise said data subject rights, please contact privacy@gogolook.com via email or submit an application via the Contact Us function on this website or within the software. The Company will respond to your request within a reasonable time limit as required by applicable laws. To the extent permitted by applicable laws, you also have the right to dispute the outcome of our processing and contact us again using the methods described above. In order to protect your personal privacy, the Company may take additional steps to verify your identity before meeting your request. To the extent permitted by applicable laws, you may also designate an agent to act on your behalf. In this case, you must provide a signed power of attorney and directly verify your identity with the Company.

9. Commercial marketing messages

The Company may use your personal data to send you newsletters, marketing or promotional materials, and other information you might find interesting. You have the right to object to or cancel the use of your personal data for direct marketing purposes at any time. You can exercise this right by following the instructions in the relevant information to opt out of receiving all or part of these messages from the Company. To the extent reasonably practicable, the Company will adjust your settings promptly. However, please be aware that these updates might not become effective immediately. Further, even if you opt out of receiving promotional messages, we might still send you non-marketing emails concerning your transactions or services, such as order confirmations, shipping notices, account security alerts, important service updates or changes in this Privacy Policy.

10. Security

10.1. The Company is very concerned about protection of your personal data. In order to protect your data from unauthorized access, the Company will adopt security standards, hardware, and electronic equipment that meet the laws applicable within its jurisdiction. Despite the Company's efforts to protect your personal data, there is an inherent risk over unexpected security incidents. For any suspected information security incidents, the Company has established internal response procedures and will notify you and the relevant authorities as legally required.

10.2. Please understand that while no data transmission or storage method can guarantee 100% security, the Company continuously establishes and improves organizational and technical security measures, including but not limited to, the pseudonymization, hashing, and/or encryption of personal data, as well as server access controls, to ensure the confidentiality, integrity, and availability of personal data and prevent unauthorized access, disclosure, damage, loss, misuse or alteration.

11. Cross-border transmission

Your data might be transmitted to and stored on computers located in regions, provinces (states), or countries outside your jurisdiction, where the level of privacy protection might be different from what is available within your jurisdiction. If you are located outside Taiwan and choose to provide your Personal Data to the Company, your data will be directly transferred to Taiwan for processing, as the database controller is our parent company, Gogolook Co., Ltd.. If you agree to the Company's Privacy Policy and submit your information, you consent to the data transfer. Please note that your data might be transferred to countries with information security and other legal frameworks that are not as comprehensive as those within your jurisdiction.

12. Links to Other Websites

The Company's links to or display of advertisements on third-party websites do not constitute an affiliation, endorsement, authorization or representation relationship with the third party. The Company does not exercise control over third-party websites. Therefore, when browsing other websites via the Website or Whoscall Service, the Company recommends that you should carefully read their privacy policies or statements.

13. Phishing website

The Company is very concerned about the problems, such as identity theft and phishing websites. The Company regards the protection of your personal data as one of its main priorities. Whether now or in the future, the Company will never ask for your credit card details, account credentials, login password, or national ID No., or any code serving the same identification purpose via unsafe or unsolicited emails or phone calls.

14. Changes to this Privacy Policy

14.1. The Company might update this Privacy Policy periodically to reflect changes to our personal data processing practices or applicable laws. The Company will notify you of updates to the Privacy Policy by posting them on this page and by other appropriate means as needed.

14.2. The Company encourages you to read this Privacy Policy carefully and check this page regularly for updates in accordance with its terms. In the event of material changes, the Company will post relevant notices within the Service before the changes become effective, as required by applicable laws. Your continued access to the Website, Software and/or Services after the effective date of the changes constitutes your acceptance of the updated Privacy Policy.

15. Contact Channels

15.1. The Company has appointed a Chief Privacy Officer (CPO) to be responsible for personal data protection matters. Within certain jurisdictions, the Company may also designate a Data Protection Officer (DPO) to assist with handling inquiries and complaints regarding personal data protection.

15.2. If you have any questions or suggestions regarding this Privacy Policy, or wish to update your preferences, modify, correct, or delete your personal data, or submit a request, please contact us based on the contact information provided on this website or contact the Company's Chief Privacy Officer directly.

Chief Privacy Officer

privacy@gogolook.com
dpo@gogolook.com

6th Floor, No. 319, Section 2, Dunhua South Road, Da'an District, Taipei City, Taiwan