Global Hundred Railway Certification Privacy Policy
Global Hundred Railway Certification attaches great importance to the privacy of its members and complies with the provisions of the "Personal Data Protection Act", so it has formulated a privacy protection policy. You can refer to the following privacy protection policy.
1. Security of personal data
Protecting members' personal privacy is an important business philosophy of Global Hundred Railway Certification. We will never provide members' personal information to any third party unrelated to the services of this website without the member's consent. Members should keep their Internet passwords and personal information properly confidential and do not provide any personal information, especially Internet passwords, to anyone. After using all the service functions provided by the SBB certified website, be sure to log out of your account. If you share your computer with others or use a public computer, remember to close the browser window.
1. Collection, processing and use of personal information
The personal information obtained by Global Hundred Iron Certification related websites will only be used by Global Hundred Iron Certification within it and in accordance with the purpose and scope of use originally stated. Unless stated in advance or in accordance with relevant legal provisions, Global Hundred Iron Certification will not Provide information to third parties or use it for other purposes.
• Purpose of collection:
The purpose of collection is to carry out marketing business, consumer, customer management and services, online shopping and other e-commerce services and surveys, statistics and research analysis (statutory specific purpose project numbers are O4O, O9O, 148 , 157). Global Baitie Certification will collect personal information through the process of joining the membership or conducting transactions.
• Categories of personal data collected:
The personal information collected by Global Iron Certification on the website includes:
(1) C001 Personal identification: Such as member’s name, address, phone number, email and other information.
(2) C002 identifies financial persons: such as credit card or financial institution account information.
(3) C011 Personal description: For example: gender, date of birth, etc.
• Utilization period, region, objects and methods:
(1) Period: Until the date when the member party requests to stop using it or Global Railway Certification stops providing services.
(2) Region: Members' personal information will be used in Taiwan.
(3) Usage objects and methods: In addition to the member management and customer management search and query functions of Global Railway Certification, members' personal information collection will also be used for identity identification, cash flow services, logistics services, and marketing and publicity. wait. Examples are as follows:
a. When using various services provided by Global Baitie Certification as a member, member information will be automatically displayed on the page.
b. To carry out transactions: When members make reservations for goods or services, place bids, purchase, participate in prize giving or other activities, or engage in other transactions, members may make reservations for goods or services, provide services, pay prices, respond to customer inquiries, or engage in other transactions. Iron Certification provides members with inquiries, related after-sales services and other necessary business to carry out transactions.
c. Advertising or marketing, etc.: Provide members with various electronic magazines and other information, and provide service-related information through email, mail, phone, etc. Personalize the content or advertisements viewed by members based on the customer's personal attributes or purchase records, browsing records of the Global Railway Certified website, etc., conduct analysis of members' use of services, develop new services, or improve existing services wait. Contact members regarding opinions on polls, activities, message boards, etc., or other service-related matters.
d. Respond to customer inquiries: Respond to inquiries raised by members to Global Railway Certification through email, mail, fax, telephone or any other direct or indirect contact methods.
e. Other matters incidental to the business: Necessary use incidental to the use purposes a to d. above and necessary to provide services for the Global Railway Certification.
f. Information provision by respective service providers: When members make reservations, place bids, purchase, participate in prize giving activities or apply for other transactions with the service provider’s goods or services, Global Iron Certification shall be within the necessary scope of the transaction. Within, the member's personal data files may be provided to the service provider, and the service provider shall be responsible for managing the personal data files. Global Baitie Certification will impose regulations on service providers to handle personal data in accordance with the principle of protecting members' privacy rights, but there is no guarantee that service providers will comply. For details, please contact the respective service provider.
g. Others: When providing individual services, personal data may also be used for purposes other than those specified above. At this time, the gist will be stated on the web page of the individual service.
• Members’ rights regarding personal data:
The parties who collect personal data from Global Hundred Railway Certification may exercise the following rights regarding Global Hundred Railway Certification in accordance with the Personal Data Protection Law:
(1) Inquiry or request for viewing.
(2) Request a copy.
(3) Request for additions or corrections.
(4) Request to stop collection, processing or use.
(5) Request for deletion.
If members want to exercise the above rights, they can contact the Global Hundred Railway Certification Customer Service to apply.
• Please note! If you refuse to provide the necessary information to join the membership, you may not be able to enjoy the full service or be unable to use the service at all.
1. Data security
In order to protect the privacy and security of members, the account information of Global Hundred Railway Certified members will be password protected. Global Baitie has certified and strives to use reasonable technologies and procedures to protect the security of all personal data.
1. How to inquire or correct personal information
When members have needs to inquire and read their personal information, make a copy, supplement or correct it, stop computer processing and use, delete it, etc., they can contact the customer service center, and Global Railway Certification will handle it quickly.
1. Cookies
In order to facilitate members' use, the Global Hundred Railway Certification website will use cookie technology to provide services required by members; cookies are a technology used by the website server to communicate with members' browsers, and they may be randomly stored in members' computers. A string used to identify users. If a member turns off cookies, it may result in the inability to successfully log in to the website or the inability to use the shopping cart.
1. Revision of privacy protection policy
As the market environment changes, our company will revise our website policies from time to time. If members have any questions about the privacy statement of the Global Baitie Certification website, or related matters related to personal data, they can contact the Global Baitie Certification Customer Service Center by email.
Global Baitie Certification Digital Technology Co., Ltd. Computer Processing Personal Data File Security Maintenance Plan
1. In order to ensure the security of personal data files held by this enterprise, designated personnel shall be designated in accordance with the law to handle maintenance matters in accordance with the following personal data file security maintenance plan.
2. Security maintenance plan for personal data files:
1. Data security
(1) If the personal data file is built on the database, the scope of use and usage permissions "user code" and "identification password" should be determined. The identification password should be kept confidential and must not be shared with others.
(2) If personal data files are stored on a personal computer's hard drive, the data holding unit should set a power-on password, screen saver password and related security measures on the personal computer.
(3) Personal data files may not be used without permission.
(4) Personal data files should be exited immediately after use and shall not be left on the computer display screen.
(5) The identification password used by an individual should be kept confidential and the password must be changed after a fixed period of time to prevent others from stealing it and using it for a long time.
(6) If a customer inquires about his or her personal information over the phone, the customer must be authenticated before replying to the relevant information to protect the customer's rights.
(7) When collecting, processing, internationally transmitting and using personal information via the Internet, necessary precautionary and protective measures should be taken to detect and prevent computer viruses and other malicious software to ensure the normal operation of the system.
(8) When processing transactions over the Internet, possible security risks should be assessed and appropriate security control measures should be developed.
2. Data auditing
(1) When using computers to process personal data, you should check whether the input, output, editing or correction of personal data is consistent with the original file.
(2) When personal data is provided for use, it should be checked whether it is consistent with the file information. If there is any doubt, the original file should be accessed for verification.
(3) A regular audit system should be established and audit data should be saved.
3. Equipment management
(1) For computer equipment used to store personal data, the data holder should maintain it regularly.
(2) Computer equipment shall not be moved unless necessary.
(3) Personal computers used to build personal data shall not be used directly as front-end tools for public inquiries.
(4) Establish a remote backup system.
(5) Definitely delete personal data stored in discarded or resold relevant computer hardware.
4. Other safety maintenance matters
(1) Personnel who use computers to process personal data files should hand over the storage media and related data in a register when their duties change. The person taking over should set a new password to facilitate management.
(2) After an employee resigns, all passwords that have been touched by the departing employee must be canceled and appropriately adjusted.
(3) Comply with relevant regulations on general computer security maintenance.