Privacy Policy

Last updated: 2026-04-10

Vivaloop ("the Platform") values your personal data protection. This Privacy Policy explains how we collect, use, and protect your personal data, in compliance with Taiwan's Personal Data Protection Act (PDPA).

1. Types of Data Collected

• Account data: email address, username, display name, profile photo

• Google OAuth data (optional): basic Google account profile

• User-generated content: tank profiles, posts, photos, comments, stories

• Trading data: listing details, approximate location (city/district)

• Usage data: page views, feature usage (collected anonymously via Google Analytics)

2. Purpose of Data Use

• Providing and maintaining platform services

• Displaying your public profile, tanks, and posts

• Facilitating trading features

• Sending notifications (in-app notifications)

• Improving platform experience and debugging

• Complying with legal obligations

3. Data Storage and Security

• Data is stored on Supabase (PostgreSQL cloud database) with servers in Tokyo

• All transmissions are encrypted via HTTPS

• Database uses Row Level Security (RLS) to ensure only authorized users can access data

• Photos are stored in secure cloud storage

4. Third-Party Services

• Supabase: database and authentication

• Google Analytics: anonymous usage statistics (can be disabled in browser settings)

• Vercel: website hosting

• Cloudflare R2: image storage

5. Cookie Usage

The Platform uses essential cookies to maintain your login session and preferences. Google Analytics may use third-party cookies for anonymous statistics. You can manage cookies through your browser settings.

6. Your Rights

Under Taiwan's PDPA, you have the right to:

• Access and review your personal data

• Request copies of your data

• Request corrections or supplements

• Request cessation of collection, processing, or use

• Request deletion of your personal data

7. Data Retention

Your account data is retained until you actively delete your account. After account deletion, we will remove your personal data within a reasonable time, though anonymized statistical data may be retained.

8. Children's Privacy

The Platform does not target children under 13. If we discover that we have inadvertently collected personal data from children, we will promptly delete it.

9. Policy Changes

Changes to this policy will be posted on this page with an updated date. Significant changes will be communicated via in-app notifications.

10. Contact Us

For any privacy-related questions, please contact us through the in-app feedback feature.