Privacy Policy

Last updated: May 2026

Scope

Pawjot places great importance on members' privacy and complies with the Personal Data Protection Act. This Privacy Policy applies to the collection, processing, and use of personal data when you use the Pawjot mobile application and related services. Please read the following Privacy Policy carefully.

Security of Personal Data

Protecting members' personal privacy is a core principle of Pawjot. Without members' consent, we will never provide personal data to any third party unrelated to this Service. Members should keep their account and personal data confidential and should not share any personal information with anyone. After using Pawjot's services, always remember to log out. If sharing a device or using a public device, be sure to log out of the application.

Collection, Processing, and Use of Personal Data

Personal data obtained through Pawjot's application and related services is used solely within Pawjot for the stated purposes and scope. Unless previously disclosed or required by law, Pawjot will not provide data to third parties or use it for other purposes. The purposes of collection include pet health management services, member and customer management, subscription management, and statistical research and analysis (statutory purpose codes: 040, 090, 148, 157). Pawjot collects personal data through the registration process, service usage, and application login.

Categories of Personal Data Collected

• C001 Personal identifiers: such as name, email address, etc.
• C011 Personal description: such as gender, date of birth, etc.
• Other data automatically collected by Pawjot when members log in and use the application (e.g., device model, operating system version, IP address, usage records, push notification tokens).

Period, Region, Parties, and Methods of Use

• Period: until the member requests cessation of use or Pawjot ceases to provide the Service.
• Region: members' personal data will be used within Taiwan.

Parties and methods: in addition to member management, customer management queries, and service-related functions, members' personal data is also used for the following purposes:

• Identity verification when using Pawjot services, or automatically displaying member information on pages.
• Subscription transactions: when members purchase subscription plans, for subscription management, responding to inquiries, after-sales service, and other transaction-related operations.
• Marketing and advertising: providing service-related information through push notifications, email, etc. Personalized recommendations, usage analysis, new service development, or improvement of existing services based on usage records.
• Responding to inquiries: replying to inquiries submitted by members via email or other contact methods.
• Other incidental matters: usage necessary for Pawjot to provide services in connection with the above purposes.

Members' Rights Regarding Personal Data

• To inquire or request access.
• To request copies.
• To request supplementation or correction.
• To request cessation of collection, processing, or use.
• To request deletion.

To exercise the above rights, please contact Pawjot customer service at [email protected]. Please note that refusal to provide necessary registration data may result in inability to access the full Service or complete inability to use the Service.

Data Security Measures

To protect members' privacy and security, Pawjot account data is protected by secure authentication mechanisms. Pawjot employs reasonable technical measures and procedures to safeguard all personal data, including but not limited to: encryption during data transmission (TLS/SSL), database access control and permission management, regular security assessments and vulnerability checks, and firewall and intrusion detection systems on servers.

Querying or Correcting Personal Data

Members who need to query, access, obtain copies of, supplement, correct, cease processing of, or delete their personal data may contact Pawjot customer service at [email protected]. Pawjot will process such requests promptly.

Cookies and Tracking Technologies

The Pawjot application may use cookies or similar tracking technologies to provide members with needed services and improve the user experience. These technologies may store information on members' devices to identify users, remember preferences, or analyze usage behavior. Disabling these features may cause some services to not function properly.

Third-Party Services

Pawjot uses third-party services to provide complete application functionality, including but not limited to: Supabase (database and authentication services), Apple App Store and Google Play Store (subscription and payment processing), and push notification services. These third-party services may collect and process data according to their respective privacy policies; Pawjot recommends that members review each service's privacy policy. Pawjot does not directly collect or store members' payment information (such as credit card numbers); payment transactions are handled entirely by Apple or Google.

Personal Data File Security Maintenance Plan

To prevent personal data from being stolen, altered, damaged, lost, or leaked, and to implement security maintenance and management of personal data files, Pawjot has established a Personal Data File Security Maintenance Plan and post-business-termination data processing methods (hereinafter "the Plan") in accordance with the Personal Data Protection Act. All Pawjot personnel shall handle personal data file security maintenance and post-termination data processing in accordance with this Plan.

Scope

This Plan applies to all personal data collected, processed, and used in Pawjot's business processes.

Management Personnel and Resource Allocation

Pawjot shall assign personal data protection management personnel and adequate resources to plan and execute this Plan, and shall regularly verify and confirm the status of personal data held, defining the scope covered by this Plan in accordance with personal data protection laws.

Personal Data Inventory

Pawjot shall periodically and annually audit its personal data files and the workflows for collecting, processing, or using personal data, and establish a personal data file inventory and workflow documentation accordingly.

Risk Assessment and Management

Pawjot shall assess potential personal data risks based on the defined scope of personal data and workflows involving data collection, processing, and use, and establish appropriate management mechanisms and response measures based on risk assessment results.

Internal Management of Personal Data Collection, Processing, and Use

Pawjot shall establish internal management procedures for the collection, processing, and use of personal data, including but not limited to: verifying that data collection and processing comply with the Personal Data Protection Act; confirming that data use falls within the necessary scope of the collection purpose; fulfilling notification obligations with legally appropriate content and methods; providing free opt-out channels for marketing on first contact and ceasing marketing upon refusal; and appropriately supervising any third parties entrusted with data handling.

Technical Security Management

Pawjot adopts appropriate security mechanisms to protect personal data, including but not limited to: user identity verification and protection mechanisms; access control and permission management for personal data; encryption for network transmissions; countermeasures against external network intrusion; monitoring and response mechanisms for unauthorized or abnormal usage; regular review and improvement of security measures; data backup and validation of its effectiveness; and management of personnel permission changes.

Incident Response, Reporting, and Prevention

To respond to security incidents involving theft, alteration, damage, loss, or leakage of personal data, Pawjot has established incident response, reporting, and prevention mechanisms, including: methods to control damage to affected individuals, appropriate notification of affected individuals after investigation, and reporting to relevant authorities. Major personal data security incidents shall be reported to the competent authority within 72 hours.

Personal Data Security Audit

The personal data protection mechanisms, procedures, and measures established under this Plan shall be included in internal audit scope. Annual internal audits shall be conducted, evaluation reports produced, and necessary corrective measures taken, including revision of data protection policies and security maintenance plans, and planning corrective and preventive measures for any non-compliance issues.

Record Retention

Pawjot shall retain relevant records or evidence from executing the personal data protection mechanisms, procedures, and measures under this Plan, unless otherwise stipulated by law. These include but are not limited to: records of personal data provision or transfer to third parties, records of data subjects exercising their rights and processing thereof, records of deletion or destruction of personal data or storage media, access logs for personal data systems, backup records, personnel permission change records, incident response records, and audit and improvement records. Related audit trails, evidence, and records shall be retained for at least five years.

Post-Termination Personal Data Processing

When Pawjot's business is partially or fully terminated, specific purposes cease to exist, or contractual or legally stipulated periods expire, Pawjot shall, unless otherwise required by law, delete, cease processing, or cease using the relevant personal data. When personal data is deleted or destroyed, electronic data shall be processed using secure deletion methods to ensure data cannot be recovered. Records of deletion methods, timing, and other relevant details shall be retained for at least five years.

Privacy Policy Updates

Pawjot will periodically update this Privacy Policy as the operating environment changes. If members have any questions about Pawjot's privacy statement or matters related to personal data, they may contact Pawjot customer service at [email protected].