Prinsur

Privacy Policy

Prinsur Tech CO., LTD. (Unified Business Number: 60542476, hereinafter referred to as the “Company”, “we”, or “us”) is the service provider of “Prinsur.com” (the “Service”).

We are committed to protecting your privacy and personal data. This Privacy Policy (the “Policy”) is established in accordance with the Personal Data Protection Act of the Republic of China (Taiwan) (the “PDPA”) and other applicable laws. It explains how we collect, process, use, and protect your personal data, including how data is handled when using our AI-related functions.

By accessing or using the Service (including but not limited to browsing the website, registering, logging in, using AI-based comparisons, AI chat, policy clause summarization, and product comparison features), you acknowledge that you have read, understood, and agreed to this Policy.

If you do not agree with all or part of this Policy, you should immediately stop using the Service.

1. Scope of this Policy

1.1 This Policy applies to personal data collected, processed, and used when you use the Prinsur website at https://prinsur.com/ and its subdomains, and other online services provided by the Company.

1.2 This Policy does not apply to any third-party websites, services, or applications that may be linked to from the Service. Your use of any third-party services is governed by their own privacy policies and terms. The Company is not responsible for the privacy practices or content of such third-party services.

2. Our Commitment to Data Security and Privacy

2.1 Protecting your personal data and privacy is an important principle of our business operations. We implement reasonable technical and organizational measures to safeguard your personal data against unauthorized access, alteration, disclosure, loss, or other misuse.

2.2 Unless otherwise provided in this Policy or required by law, we will not sell, rent, trade, or otherwise provide your personal data to unrelated third parties without your prior consent.

2.3 Employees and service providers who may have access to your personal data are subject to confidentiality obligations. Any violation of such obligations will be handled in accordance with applicable laws and our internal regulations.

3. Collection, Processing, and Use of Personal Data

3.1 We may collect personal data from you when you use the Service, depending on the specific features and interactions involved. If you choose not to provide certain information, we may be unable to provide all or part of the Service to you.

3.2 We will collect, process, and use your personal data only for specific, explicit, and legitimate purposes, and to the extent necessary to achieve those purposes, in a lawful and fair manner.

3.3 If we intend to use your personal data for purposes other than those originally specified, we will, where required by law, notify you in advance and obtain your consent.

4. Categories of Personal Data Collected

Depending on your use of the Service, we may collect the following categories of personal data. Not all categories will necessarily apply to every user.

  1. Identification Information
    Examples: name, username/account ID, nickname, identification number (if applicable), corporate identification number (for corporate customers), profile photo.

  2. Contact Information
    Examples: email address, mailing address, contact address, telephone number, mobile number, contact person details.

  3. Billing and Transaction Information
    Examples: last four digits of credit card number, payment records, transaction amount and time, invoice details, tax information.
    (Note: Complete payment card data may be collected and stored by third-party payment processors subject to their own policies and applicable laws.)

  4. Usage and Technical Information
    Examples: IP address, device information, browser type, operating system version, access times, login records, pages visited, clickstream data, device identifiers, Cookies, and preference settings.

  5. Insurance-Related Queries and Input Content
    Examples: keywords for insurance products, descriptions of your insurance needs, policy clause queries, questions submitted to AI features, and other text you provide for analysis or comparison.

  6. Other Information You Voluntarily Provide
    Examples: survey responses, event registration details, information submitted through customer support channels, and other data you choose to provide.

To avoid unnecessary exposure of highly sensitive data, we do not encourage you to input into the Service: full medical records, detailed diagnoses, highly sensitive financial credentials, or other sensitive personal data. If you nevertheless choose to provide such information, it will be handled in accordance with this Policy and applicable laws, but you should understand the inherent risks of transmitting such data online.

5. Purposes of Personal Data Collection

We collect, process, and use your personal data for the following purposes, among others:

  1. Member and Account Management

    • Creating and managing user accounts
    • Identity verification
    • Account security and access control

  2. Provision, Operation, and Improvement of the Service

    • Providing core features of the Service, including AI-based comparison, AI chat, policy clause summarization, and product comparison
    • System optimization, troubleshooting, and performance enhancement

  3. Marketing and Promotional Activities

    • Sending information about updates, events, offers, or promotions related to the Service
    • Providing personalized recommendations or content (where permitted by law and subject to your preferences)

  4. Customer Relationship Management and Feedback

    • Handling inquiries, complaints, and support requests
    • Conducting satisfaction surveys and service quality assessments

  5. Transaction and Billing Management

    • Processing payments, refunds, and invoices
    • Accounting, reconciliation, and tax reporting

  6. Security, Risk Management, and Fraud Prevention

    • Detecting and preventing unauthorized access, fraud, or abuse
    • Maintaining service stability and information security

  7. Statistical, Research, and Analytics Purposes

    • Aggregated and anonymized analysis of usage patterns
    • Service usage statistics and business intelligence

  8. Legal Compliance and Protection of Rights

    • Complying with applicable laws, regulations, and orders of competent authorities
    • Exercising or defending legal rights and claims

  9. Other Purposes Consistent with the Company’s Business Registration and Articles of Incorporation

    • Any other purposes reasonably related to the above and in accordance with applicable law.

6. Period, Region, Targets, and Methods of Use

6.1 Period of Use

We will retain and use your personal data:

  • for the period necessary to achieve the purposes described in this Policy;
  • for such additional period as required or permitted by applicable laws and regulations (e.g., statutory retention periods); or
  • until you exercise your rights to request deletion or cessation of use and we complete processing, unless retention is still required by law or for the exercise or defense of legal claims.

6.2 Region of Use

We may use and store your personal data:

  • within the territory of the Republic of China (Taiwan); and
  • in other countries or regions where the Company, its affiliates, or its service providers (such as cloud or AI service providers) maintain servers, data centers, or operations, to the extent not prohibited by law or regulatory authority.

6.3 Targets of Use

Your personal data may be disclosed or made available to the following recipients, to the extent necessary for the purposes described in this Policy:

  1. The Company and its affiliates.
  2. Service providers and business partners engaged by the Company, such as:
    • payment processors;
    • cloud infrastructure providers;
    • AI technology providers;
    • customer support service providers;
    • system development, operation, and maintenance vendors.
      These entities process data only within the scope of the Company’s instructions and on a need-to-know basis.
  3. Competent government authorities, courts, or regulatory bodies where required by applicable law or lawful orders.
  4. Other recipients with your prior consent or as otherwise permitted by law.

6.4 Methods of Use

We may use your personal data by automated or non-automated means, including but not limited to collection, recording, organization, storage, adaptation, retrieval, consultation, use, disclosure, transmission, and cross-border transfer, all in compliance with the PDPA and other applicable laws.

7. AI-Related Data Processing

The Service uses artificial intelligence technologies, including machine learning models and natural language processing models (collectively, “AI Models”), to provide features such as AI comparison, AI chat, and policy summarization.

7.1 How AI Models Operate

  1. When you use AI features, the text you input (e.g., questions, keywords, descriptions of insurance needs, or policy content) may be sent to AI Models operated by the Company or by contracted AI providers, in order to generate responses or analysis.
  2. AI outputs are generated automatically based on your inputs, internal databases, and public information. AI outputs may be incomplete, inaccurate, ambiguous, or outdated. They are provided for reference only and do not constitute professional advice.

7.2 Use of Data for AI Training and Improvement

  1. As a general principle, we do not use directly identifiable personal data (such as your full name, identification number, full contact details) as raw training data for AI Models without your consent, except as allowed by law.
  2. We may use de-identified, anonymized, or aggregated data derived from your interactions with the Service to improve and optimize our systems and AI Models. Such data no longer reasonably identifies any specific individual.
  3. If, in the future, we intend to use identifiable personal data for training or substantially improving AI Models beyond what is necessary to operate the Service, we will comply with applicable laws and, where required, obtain your explicit consent or provide an opt-out mechanism.

7.3 Third-Party AI Service Providers

  1. We may rely on third-party AI service providers (e.g., large language model providers) to process certain data necessary for AI features.
  2. These providers act as service providers processing data on our instructions and within the scope necessary to deliver the Service. They are bound by confidentiality and data protection obligations and may not use the data for their own purposes beyond what is permitted by law or our contracts.
  3. Where cross-border transfer is involved, we will take appropriate safeguards in accordance with the PDPA and relevant regulatory requirements.

8. Cookies and Similar Technologies

8.1 To provide you with a better user experience, analyze how the Service is used, and offer personalized content, we may use Cookies and similar technologies (such as local storage or pixel tags) on your device.

8.2 Cookies may store an anonymous identifier that helps us:

  • remember your settings and preferences;

  • maintain your login session;

  • analyze traffic and usage trends;

  • improve the performance and design of the Service.

    8.3 You can configure your browser to accept, reject, or delete Cookies. If you choose to block or delete Cookies, some features of the Service may not function properly or your user experience may be degraded.

9. Data Security and Retention Measures

9.1 We implement reasonable technical and organizational measures to protect your personal data, including but not limited to:

  • access control and authorization management;

  • encryption, where appropriate;

  • firewalls and intrusion detection;

  • regular security reviews and monitoring.

    9.2 We retain personal data only for as long as necessary to achieve the purposes for which it was collected, or as required by applicable laws and regulations. Once the retention period expires or the purposes of collection are fulfilled, we will delete, anonymize, or otherwise dispose of the data in an appropriate manner, unless continued retention is required for legal or defensive reasons.

10. Your Rights as a Data Subject and How to Exercise Them

Under Article 3 of the PDPA, you have the following rights with respect to your personal data held by the Company:

  1. Right to Access
    You may inquire whether the Company holds your personal data and request access to such data.

  2. Right to Obtain Copies
    You may request copies of your personal data, and we may charge necessary costs where permitted by law.

  3. Right to Supplement or Rectify
    You may request that we correct or supplement inaccurate or incomplete personal data. You may be required to provide an explanation or evidence to support your request.

  4. Right to Request Cessation of Collection, Processing, or Use
    You may request that the Company stop collecting, processing, or using your personal data, subject to legal exceptions or where data is required for the performance of obligations or the exercise/defense of legal claims.

  5. Right to Deletion
    You may request deletion of your personal data when the purposes of collection have been fulfilled or the retention period has expired, subject to legal exceptions or where continued retention is necessary.

Exercising Your Rights

  • Some basic information may be viewed or updated directly via your member account pages.
  • For other rights requests, please contact us via email at support@prinsur.com and clearly state your request and identifying information.

We will process your request in accordance with the PDPA and other applicable laws within a reasonable period. Where permitted by law, we may charge necessary costs for handling such requests.

Please note:

  • If you request us to stop processing or delete certain personal data, it may affect our ability to provide you with some or all features of the Service.
  • Where we are legally required to retain certain personal data or where retention is necessary for the exercise or defense of legal claims, we may refuse or limit deletion or cessation of use to the extent permitted by law.

11. Consequences of Refusal to Provide Personal Data

You may choose whether or not to provide personal data. However, if you refuse to provide necessary personal data, provide incomplete or inaccurate information, or request deletion or cessation of use, this may result in:

  • inability to complete account registration or identity verification;
  • inability to use some or all functions of the Service;
  • inability for us to process transactions or respond to your requests;
  • inability to receive certain notifications, offers, or personalized services.

12. Children and Minors

12.1 The Service is primarily intended for adult users. If you are under twenty (20) years of age under the laws of Taiwan, your parent or legal guardian must read, understand, and agree to this Policy and the Terms of Service before you may use the Service or provide any personal data.

12.2 If you are a parent or legal guardian of a minor who uses the Service or has provided personal data to us, and you have questions or wish to exercise any rights on behalf of the minor, please contact us at support@prinsur.com.

13. Amendments to this Policy

13.1 We may amend or update this Policy from time to time in response to changes in laws, regulations, technology, or business needs. The updated Policy will be posted on the Site and will indicate the latest “Last Updated” date.

13.2 Where amendments may materially affect your rights, we will notify you by appropriate means, such as by posting a notice on the Site or sending an email. Your continued use of the Service after such amendments become effective will constitute your acceptance of the updated Policy.

14. Contact Us

If you have any questions, comments, or requests regarding this Policy, personal data protection, or the exercise of your rights, please contact us at:

  • Prinsur Tech CO., LTD.
  • Email: support@prinsur.com

We will handle your inquiry or request in accordance with this Policy and applicable laws.