Privacy Policy

We believe in transparency. This policy explains how Burnonray collects, protects, and uses your personal information when you interact with our blockchain deployment services. Your privacy matters to us, and we're committed to keeping your data secure.

Last Updated: January 15, 2025

Information We Collect

When you use our blockchain deployment services or visit our website, we collect several types of information to provide you with the best possible experience and service.

Information You Provide Directly

  • Contact Information: Name, email address, phone number, and company details when you reach out to us or request consultations
  • Project Details: Technical specifications, deployment requirements, and business objectives you share during consultations
  • Account Information: Username, password, and profile information if you create an account with our services
  • Communication Records: Messages, emails, and call recordings from our interactions
  • Payment Information: Billing addresses and transaction details (payment processing is handled by secure third-party providers)

Automatically Collected Information

  • Website Usage Data: Pages visited, time spent on site, click patterns, and navigation behavior
  • Technical Information: IP address, browser type, device information, operating system, and connection details
  • Performance Metrics: Website loading times, error messages, and system performance data
  • Location Data: General geographic location based on IP address (not precise location tracking)

Important Note: We never collect sensitive personal data such as government identification numbers, financial account details, or private blockchain keys without explicit consent and legitimate business purposes.

How We Use Your Data

Your information helps us deliver better blockchain deployment services and maintain professional relationships with our clients. Here's exactly how we use the data we collect:

Primary Service Delivery

  • Providing blockchain deployment consultations and technical services
  • Customizing solutions based on your specific requirements and technical needs
  • Managing project timelines, deliverables, and milestone tracking
  • Offering technical support and troubleshooting assistance
  • Processing service agreements and handling billing procedures

Communication and Support

  • Responding to inquiries, support requests, and consultation requests
  • Sending project updates, technical notifications, and service announcements
  • Scheduling meetings, calls, and deployment sessions
  • Providing educational content about blockchain technology and best practices

Service Improvement

  • Analyzing website usage patterns to improve user experience
  • Gathering feedback to enhance our service offerings
  • Identifying common technical challenges to develop better solutions
  • Testing new features and deployment methodologies

Legal and Business Operations

  • Complying with legal obligations and regulatory requirements in Taiwan
  • Protecting against fraud, security threats, and unauthorized access
  • Maintaining accurate business records and documentation
  • Resolving disputes and handling legal matters when necessary

Data Sharing Practices

We believe in minimal data sharing. Your information stays with us unless there's a specific, legitimate reason to share it. Here are the only circumstances where we might share your data:

Service Providers and Partners

  • Cloud Infrastructure: Secure hosting providers that store our data with strict confidentiality agreements
  • Payment Processors: Trusted financial service providers for handling transactions securely
  • Technical Specialists: Qualified blockchain experts who assist with complex deployments under confidentiality agreements
  • Communication Tools: Email and messaging services used for business communications

Third-Party Requirements: All service providers must meet our security standards and sign data protection agreements. They can only use your information for the specific services they provide to us.

Legal Requirements

We may disclose information when legally required to do so, such as:

  • Responding to court orders, subpoenas, or legal processes
  • Complying with Taiwan government regulations and data protection laws
  • Protecting our rights, property, or safety, or that of our clients
  • Investigating potential fraud or security breaches

Business Transfers

In the unlikely event of a merger, acquisition, or sale of business assets, your information may be transferred to the new entity, but only under equivalent privacy protections.

With Your Consent

We'll always ask for your explicit permission before sharing your information for any other purposes not covered in this policy.

Security Measures

Protecting your data is fundamental to our business. We implement multiple layers of security to keep your information safe from unauthorized access, theft, or misuse.

Technical Safeguards

  • Encryption: All data is encrypted both in transit and at rest using industry-standard AES-256 encryption
  • Access Controls: Multi-factor authentication and role-based access limit who can view your information
  • Secure Infrastructure: Data is stored in SOC 2 Type II certified data centers with physical security measures
  • Network Security: Firewalls, intrusion detection systems, and regular security monitoring protect against cyber threats
  • Regular Updates: Software and systems are kept current with the latest security patches

Operational Security

  • Employee Training: Our team receives regular privacy and security training
  • Background Checks: All personnel with data access undergo security clearance procedures
  • Confidentiality Agreements: Every team member signs strict non-disclosure agreements
  • Limited Access: Data access is restricted to employees who need it for their specific job functions

Monitoring and Response

  • 24/7 security monitoring and automated threat detection
  • Regular security audits and penetration testing by third-party experts
  • Incident response procedures for quickly addressing any security concerns
  • Regular backups and disaster recovery planning to protect data integrity

Security Breach Protocol: In the unlikely event of a security incident, we'll notify affected users within 72 hours and work with authorities as required by Taiwan law.

Your Privacy Rights

You have significant control over your personal information. Here are your rights and how to exercise them:

Access and Portability

  • Right to Access: Request a copy of all personal information we hold about you
  • Data Portability: Receive your data in a commonly used, machine-readable format
  • Information About Processing: Learn how your data is being used and who has access to it

Correction and Deletion

  • Right to Correction: Update or correct any inaccurate or incomplete information
  • Right to Deletion: Request removal of your personal data when it's no longer needed
  • Right to Restriction: Limit how we process your information in certain circumstances

Control Over Communications

  • Opt-Out Rights: Unsubscribe from marketing communications at any time
  • Communication Preferences: Choose how and when we contact you
  • Consent Withdrawal: Withdraw consent for data processing where applicable

How to Exercise Your Rights

To exercise any of these rights, contact us using the information provided at the end of this policy. We'll respond to your request within 30 days and verify your identity to protect your information.

No Cost to You: We don't charge fees for reasonable requests to access, correct, or delete your information. For excessive or repetitive requests, we may charge a minimal administrative fee.

Data Retention

We keep your information only as long as necessary for business purposes and legal requirements. Here's our approach to data retention:

Active Client Data

  • Project information is retained during active service periods and for two years after project completion
  • Communication records are kept for three years to support ongoing client relationships
  • Technical documentation is maintained for five years to assist with future deployments or support

Inactive Account Data

  • Inactive accounts are automatically deleted after three years of no activity
  • Marketing contact information is removed after two years without engagement
  • Website usage data is anonymized after 18 months

Legal and Financial Records

  • Financial records are retained for seven years as required by Taiwan tax law
  • Legal documents and contracts are kept for the duration specified in the agreement plus seven years
  • Compliance records are maintained according to relevant regulatory requirements

Secure Deletion Process

When data reaches the end of its retention period, we use secure deletion methods that make the information irrecoverable. This includes overwriting storage media and destroying physical records according to industry best practices.

International Transfers

Our primary operations are based in Taiwan, but some of our service providers operate internationally. Here's how we handle cross-border data transfers:

Transfer Safeguards

  • All international transfers use encryption and secure transmission protocols
  • We only work with countries and companies that provide adequate data protection
  • Standard contractual clauses ensure consistent privacy protections across borders
  • Regular audits verify that international partners maintain security standards

Primary Transfer Locations

  • Cloud Storage: Some data may be stored in secure facilities in the United States or Europe
  • Support Services: Technical support may involve specialists in other countries under strict confidentiality agreements
  • Communication Services: Email and messaging providers may process data internationally

Your Control: If you prefer to limit international transfers of your data, contact us to discuss alternative arrangements. We'll work to accommodate your preferences while maintaining service quality.

Cookies and Tracking

Our website uses cookies and similar technologies to improve your experience and understand how our services are used.

Types of Cookies We Use

  • Essential Cookies: Required for basic website functionality and security
  • Performance Cookies: Help us understand how visitors use our site to improve performance
  • Functional Cookies: Remember your preferences and provide personalized experiences
  • Analytics Cookies: Provide insights into website usage and user behavior patterns

Managing Your Cookie Preferences

You have several options for controlling cookies:

  • Adjust your browser settings to block or delete cookies
  • Use our cookie preference center to customize your selections
  • Opt out of analytics tracking while maintaining essential functionality
  • Clear cookies periodically through your browser settings

Third-Party Tracking

We use trusted analytics providers to understand website performance. These services may place their own cookies, but they're bound by strict privacy agreements and cannot use your information for other purposes.

Third-Party Services

We work with carefully selected partners and service providers who help us deliver better blockchain deployment services. Here's what you need to know:

Service Provider Categories

  • Infrastructure Providers: Cloud hosting, content delivery networks, and server management
  • Communication Tools: Email services, video conferencing, and project management platforms
  • Analytics Services: Website analytics and performance monitoring tools
  • Payment Processors: Secure financial transaction handling and billing management

Partner Selection Criteria

All third-party services must meet our strict requirements:

  • Industry-recognized security certifications and compliance standards
  • Strong privacy policies and data protection practices
  • Willingness to sign data processing agreements with privacy protections
  • Regular security audits and transparent reporting practices

Your Interaction with Third Parties

When you use our services, you may interact with third-party tools or platforms. While we choose partners carefully, you should review their privacy policies for complete information about how they handle data.

Taiwan Legal Compliance

As a Taiwan-based company, we comply with all relevant local laws and regulations regarding data protection and privacy.

Personal Information Protection Act (PIPA) Compliance

  • We collect personal information only for legitimate business purposes
  • Clear consent is obtained before collecting sensitive personal data
  • Individuals have the right to access, correct, and delete their personal information
  • We maintain detailed records of data processing activities

Business Registration and Oversight

  • Our company is legally registered in Taiwan with proper business licenses
  • We maintain compliance with Taiwan Ministry of Economic Affairs requirements
  • Financial records follow Taiwan Generally Accepted Accounting Principles
  • Regular compliance reviews ensure ongoing adherence to local laws

Cross-Border Data Transfer Compliance

When transferring data internationally, we ensure compliance with Taiwan's regulations on cross-border data flows and maintain equivalent privacy protections.

Children's Privacy

Our blockchain deployment services are designed for business and professional use. We do not knowingly collect personal information from children under 13 years of age.

Age Verification

  • Our services require users to be at least 18 years old or have parental consent
  • We include age verification in our registration processes
  • Professional service agreements require adult signatories

If We Discover Child Information

If we learn that we've collected information from a child under 13, we'll delete it immediately and notify parents or guardians as required by law.

Policy Updates

We may update this privacy policy periodically to reflect changes in our practices, services, or legal requirements.

Notification Process

  • Material changes will be announced via email to registered users
  • Website notifications will highlight significant policy updates
  • We'll provide at least 30 days' notice before implementing major changes
  • The "Last Updated" date at the top of this policy shows when changes were made

Your Options

If you disagree with policy changes, you have the right to:

  • Withdraw consent for data processing where applicable
  • Request deletion of your personal information
  • Terminate your account and discontinue services
  • Contact us to discuss your concerns about the changes

Privacy Questions and Contact Information

We're here to answer your privacy questions and help you exercise your rights. Don't hesitate to reach out if you need assistance or have concerns about how we handle your information.

Email contact@burnonray.com
Phone +886229652471
Address 3F-6, No. 385號, Xingshan Rd
Neihu District, Taipei City
Taiwan 114

We aim to respond to all privacy inquiries within 48 hours during business days. For urgent matters, please call us directly.