Privacy Policy

page.legalPolicy.lastUpdated 2026-05-21
page.legalPolicy.version 1.2.0

IMPORTANT NOTICE

GOVERNING LANGUAGE / CONTROLLING VERSION. This English version is a translation provided for the convenience and reference of international users only. The official Traditional Chinese version of this Privacy Policy (version 1.2.0) constitutes the sole authoritative and legally binding version. In the event of any inconsistency, ambiguity, discrepancy, or conflict between this English translation and the Traditional Chinese version, the Traditional Chinese version shall prevail and govern in all respects.

INTRODUCTION

Whoscall Lens (formerly "TrustLens"; the "Service") is provided by Gogolook Co., Ltd. (the "Company"). The Company values your privacy and the security of your data. In order to protect the personal data and privacy rights of you ("you" or the "user"), before you use the Service on the Company's official website (the "Website"), other applications, or the ChatGPT platform, or on any affiliated website, web-based campaign, or application linked by the Company, we must inform you of the following matters and ensure that you understand the rights and obligations you may exercise. This Privacy Policy forms part of the Terms of Service. However, your personal-data protection rights and the Company's related obligations may differ depending on your location, your individual circumstances, and applicable law. This Privacy Policy is not intended to exclude, limit, or conflict with any applicable personal-data, privacy, or data-protection law; in the event of any inconsistency or conflict between this Privacy Policy and an applicable mandatory legal provision, such applicable legal provision shall prevail.

The Service is intended to help users identify suspicious messages, images, URLs, telephone numbers, accounts, website screenshots, conversation screenshots, or other content that may involve fraud, phishing, impersonation, malicious links, or other digital risks. By using the Service or by submitting images, text, questions, votes, reports, or other content, you acknowledge that you understand and agree to the data-processing practices set out in this Policy.

1. Purposes and Categories of Personal Data

In order to provide the Service and its related functions—including image-based scam-risk identification, anonymous sharing, community-case creation, popular-case aggregation, similar-case matching, voting, reporting, browsing, anti-fraud database maintenance, service-quality improvement, usage-behavior analysis, system-security maintenance, abuse prevention, fraud prevention, legal compliance, and other legitimate business purposes related to the operation of the Service—the Company collects, processes, and uses your data.

The purposes for which the Company may collect data in connection with the Service are limited to the following scope:

  1. Scam-Risk Identification To provide scam-risk determinations, the Company processes content that you proactively upload or submit, such as images, screenshots, text descriptions, queries, URLs, telephone numbers, or accounts, as well as your reports, votes, or comments on community cases.

  2. Image and AI Processing Data Images you upload are transmitted to the Company's systems through an encrypted channel and may be processed by the Company's systems and by third-party AI or image-recognition services for text recognition, image-feature analysis, scam-risk analysis, similar-image matching, deduplication, and anti-fraud database matching. The Company may retain the original images, the analysis results, and the de-identified technical data necessary to support the functioning of the Service. The scope of such third-party service providers is set out in Section 4.

  3. Community Cases and Anti-Fraud Alerts To help other users identify similar scam risks, content you submit may, after de-identification or masking, be incorporated into the anti-fraud database or community-alert materials. The processing methods, protective measures, and your opt-out rights are set out in Section 8.

  4. Data Processing for ChatGPT Apps and Third-Party Platforms When you link to or use the Service through ChatGPT Apps or another related third-party platform, that platform may, in order to complete your request, transmit to the Company the data relevant and necessary to that request. The Company will receive, process, and use, on a one-time basis, only the data necessary to complete that particular service request, including but not limited to the image or image reference you submit, the content of your query, language settings, region or market code, and necessary technical logs. Except as necessary to provide the Service, the Company will not proactively request, collect, or store your complete conversation history with ChatGPT or such third-party platform, broad contextual information, precise location information (such as GPS coordinates or street address), or any data field unrelated to the particular risk analysis. The methods of collection, processing, and use of such data are set out in Section 2 of this Policy.

  5. Automatically Logged System Data To maintain service security, detect abnormal use, and ensure system operation, the Company automatically records technical information regarding your use of the Service, such as IP address, time of use, browser type, language settings, operating system, server and error logs, security-event logs, and your operational records within the Service (such as the timestamps of queries, reports, or votes).

  6. Cookies and Similar Technologies (Website Version Only) When you use the Website version of the Service, the Company may record your use of the Service through cookies or similar technologies. In the ChatGPT Apps version, the Service does not use cookies or website-analytics tools to track your conversation content or cross-site behavior. The distinction is further described in Sections 9 and 10.

  7. Customer Service, Complaints, and Rights-Request Data When you submit a complaint, inquiry, or personal-data rights request to the Company's customer service or privacy contact, the Company will process the name, contact information, request content, and handling records you provide in order to verify your identity, locate the relevant data, and respond to your request.

The Service collects your personal data in accordance with the principle of data minimization and does not require you to proactively provide personal data not directly related to the functions of the Service, such as scam-risk analysis. However, the images or text content you upload may themselves contain personal data, sensitive data, special category of personal data, or third-party data, such as names, telephone numbers, email addresses, social-media accounts, addresses, transaction information, bank account numbers, conversation content, or other identifiable information. Please confirm and mask any unnecessary personal data or sensitive information before uploading.

You may use the platform and/or the Service through a third-party platform, application, or website, such as ChatGPT, OpenAI-related applications, or other third-party services. In such a case, that third-party platform may, in accordance with its terms of service, privacy policy, and your authorization or privacy settings, provide or transmit to the Company data relating to your use of the Service.

The scope of data the Company may obtain will depend on the functionality and data-sharing mechanisms of that third-party platform and on your privacy settings and authorizations within that third-party platform or application. The Company will collect, process, use, and retain such data only to the extent necessary to provide the Service and in accordance with this Privacy Policy and applicable law.

2. Data Processing in the ChatGPT Apps Version

The Service may provide image-based scam-risk identification through ChatGPT. When you use the Service within ChatGPT, the Company receives, processes, and uses the relevant data only to the extent directly necessary to fulfill the seven collection purposes listed in Section 1.

This section further explains the data-processing practices of the ChatGPT Apps version. With respect to the processing of data when you use the Service through ChatGPT, this section shall apply with priority; matters not addressed in this section remain subject to the other applicable provisions of this Privacy Policy.

2.1 Data That ChatGPT Apps May Receive

The Service operates in accordance with the principle of data minimization and receives, processes, and uses the relevant data only to the extent necessary to complete the particular tool request and to maintain service security. The categories of data the Company may receive through ChatGPT are as follows:

  1. Images or Image References Submitted by the User For example, screenshots of scam messages, website screenshots, conversation screenshots, photos, or other image content that you upload to ChatGPT and ask the Service to analyze. Such data is used for scam-risk identification.

  2. User Questions or Task Descriptions For example, queries related to image-based scam-risk analysis such as "Is this a scam?" or "Is this website safe?" Such data is used to understand the purpose of your request and to generate the analysis result.

  3. Language Settings For example, language settings and region or market codes (such as zh-TW, en, ja-JP, ko-KR, th-TH), used to generate analysis results in the corresponding language.

  4. Coarse Region or Market Code For example, TW, US, JP, KR, or TH, used to match scam patterns, telephone numbers, URLs, domains, accounts, or risk data for the corresponding region. The Service does not proactively request or use GPS coordinates, street addresses, cities, or other precise location information for analysis.

  5. Community-Case or Voting Query Settings For example, whether to match or display community anti-fraud cases, similar cases, popular cases, voting results, alert information, or other data related to scam-risk identification.

  6. Service-Security and Audit Data Technical logs necessary to maintain system security, prevent abuse, troubleshoot errors, conduct audits, and comply with legal obligations—for example, server connection logs, error logs, security-event logs, abnormal-use logs, or other necessary system logs.

Except as necessary to complete the particular image-based scam-risk analysis, to maintain service security, or to comply with legal obligations, the Service does not proactively request, capture, reconstruct, or infer your complete conversation history with ChatGPT, nor does it proactively collect broad contextual information or context unrelated to the particular analysis. The Service processes only the images, text fragments, and necessary parameters that you, ChatGPT, or the system transmit to the Service in order to complete that request.

2.2 Purposes of Data Use in ChatGPT Apps

The Company uses the images, question text, analysis results, and necessary technical data obtained through ChatGPT only within the scope of the following purposes:

  1. conducting scam-risk analysis, including identifying suspicious text, telephone numbers, URLs, accounts, payment requests, phishing links, brand impersonation, fake investment, fake customer service, fake romance, fake transactions, or other scam-risk indicators that may appear in an image;
  2. generating and returning analysis results, including scam-risk reports, risk levels, reasoning, related cases, community alert information, and safety recommendations directly relevant to the user's query;
  3. after de-identification, anonymization, masking, or other reasonable protective measures, incorporating the relevant scam patterns, risk features, or case information into the anti-fraud database, community anti-fraud cases, similar cases, popular cases, or public alert materials, in order to help other users identify related scam risks (see Section 8);
  4. service security and abuse prevention, including detecting abnormal use, preventing attacks, troubleshooting errors, conducting audits, handling disputes, and complying with legal obligations; and
  5. after de-identification or anonymization, using the relevant data to improve scam-detection capabilities, the accuracy of the Service, and the user experience.

The Company will not use data obtained through ChatGPT for advertising delivery, cross-service tracking, commercial-behavior profiling, or other conduct unrelated to the foregoing purposes of scam-risk analysis, anti-fraud database maintenance, community anti-fraud case creation, service security, service improvement, or legal compliance. The Company also does not sell users' personal data to third parties.

2.4 Content of ChatGPT Apps Tool Responses

The content returned by the Service through ChatGPT is, in principle, limited to the information necessary to complete the user's request, including:

  1. the scam-risk level or determination result;
  2. the reasoning for the determination and an explanation of the suspicious indicators;
  3. the key content of the image relevant to the scam determination;
  4. anti-fraud cases, similar cases, popular cases, a summary of community discussion, voting information, alerts, or recommendations relevant to the content of that image; and
  5. recommended safety actions the user may take.

Except as necessary to complete the user's request, maintain service security, troubleshoot errors, or comply with legal obligations, the Service will, in principle, not display in the user-visible tool response any diagnostic information, internal logs, telemetry data, advertising identifiers, system identifiers (such as session ID, trace ID, or request ID), or logging metadata unrelated to the user's request.

2.5 Relationship with the OpenAI / ChatGPT Platform

When you use the Service through ChatGPT:

  • the Company is responsible, in accordance with this Policy and applicable law, only for the data that the Service actually receives and processes;
  • ChatGPT or OpenAI, as the platform and data-transmission channel through which you use the Service, will process your data in accordance with its own terms of service, privacy policy (https://openai.com/policies/privacy-policy/), and platform settings. Your other conversations, account, or settings within ChatGPT, or data independently collected, processed, or used by OpenAI, fall outside the scope of this Policy; and
  • the Company returns the Service's tool-analysis results to ChatGPT, which displays the Service's analysis report, alerts, and recommendations to you. When you use ChatGPT or OpenAI-related services, you should also review and comply with their applicable terms of service and privacy policy.

3. Period, Region, Recipients, and Methods of Use of Personal Data

3.1 Period of Use

The Company adopts different retention periods according to the type of data and the purpose of processing, and complies with the principle of data minimization:

  1. Original images you proactively submit Retained until completion of image recognition, scam-risk analysis, deduplication, community-case review, security checks, and necessary service purposes, for a maximum of one (1) year; after expiry, they are deleted or irreversibly de-identified, unless retention is otherwise necessary for legal, dispute-handling, information-security-incident-investigation, abuse-prevention, or anti-fraud case-maintenance purposes.

  2. De-identified technical data and analysis results Retained for a maximum of three (3) years to support the identification of identical or similar scam patterns, anti-fraud database maintenance, and service-quality improvement. Such data can no longer directly identify you.

  3. Community anti-fraud alert materials Retained for the duration of the anti-fraud purpose. The Company will periodically review the necessity of such retention; where a rights holder lawfully requests deletion and there is no need to retain the data, or where the data no longer serves the anti-fraud purpose, the Company will delete it, cease its public display, or further anonymize it, as further described in Section 8.

  4. System-security, audit, and error logs Retained for a maximum of three (3) years; however, where an information-security incident, abuse investigation, judicial investigation, dispute, or legal obligation is involved, retention may be extended to the extent necessary.

  5. Customer-service, complaint, deletion-request, and rights-exercise records Retained for one (1) year after completion of the handling of the request, or for the period necessary for legal, dispute-handling, audit, and rights-protection purposes.

  6. Cookies and website-analytics data (Website version only) Retained for the retention period configured for each cookie or analytics tool, for a maximum of one (1) year. See Section 10 for details.

Where law, a court, a competent authority, a judicial investigation, dispute handling, a contract, an information-security incident, abuse prevention, or another legally permissible ground requires a longer retention period, the Company may extend retention to the extent necessary.

3.2 Region of Use and Cross-Border Transfer

The regions in which data is used include the Company's place of business (Taiwan), the locations of the servers of cloud-service providers (including Japan and the United States), the locations of third-party service providers engaged as processors, the locations at which the ChatGPT / OpenAI platform transmits or processes data, and the domestic and overseas locations of the recipients listed in Section 3 and Section 4 of this Policy.

Cross-border transfer protections. When your data is transferred to a region outside the Company's place of business, the Company will ensure that the data is appropriately protected by adopting additional encryption or de-identification measures.

3.3 Recipients of Data

The Company may, to the extent necessary, provide data to, or engage the following parties to process data:

  1. Infrastructure and security service providers: providers of cloud computing, storage, networking, DDoS protection, and security-audit services.
  2. AI content-analysis service providers: for example, Google Cloud Vision API or equivalent enterprise services, which process data only within the scope of the scam-risk-analysis purpose for which the Company has engaged them.
  3. Anti-fraud data sources: anti-fraud intelligence sources used to match scam patterns.
  4. The OpenAI / ChatGPT platform: as the data-transmission and result-display channel for the ChatGPT Apps version (see §2.5).
  5. Other users of the Service: limited to the scope of display of community anti-fraud alert materials (see Section 8).
  6. Internal personnel, affiliates, and parties to corporate transactions: all of whom are bound by confidentiality obligations and comply with protection standards no lower than those in this Policy.
  7. Competent authorities and judicial authorities: in cooperation with the requests of authorities of competent jurisdiction in accordance with the law.

The Company will ensure that all engaged processors process the relevant data only for the engaged purpose and to the extent necessary, in accordance with contract, confidentiality obligations, and applicable law, and may not exceed the purposes of collection and use agreed in this Policy.

3.4 Methods of Use

The Company may process data by automated or other non-automated means, including but not limited to electronic documents, databases, cloud storage, AI analysis, content analysis, de-identification, anonymization, statistical analysis, community-case display, popular-case aggregation, customer-service handling, audits, security monitoring, and legal-compliance operations.

Automated-decision notice. The scam-risk determination of the Service involves automated analysis. However, the analysis results of the Service are for reference only and do not give rise to any automated decision that produces legal effects concerning you or that significantly affects you. You may exercise your own judgment as to whether to rely on the risk alerts or recommendations provided by the Service.

5. Restricted Data and Sensitive Data

The Service does not require you to upload or provide the following data, and you should not submit, through ChatGPT Apps, the Website version of the Service, an application, or any other channel of the Service, any image or text containing the following:

  1. credit-card numbers, complete payment-card data, or other data subject to the Payment Card Industry Data Security Standard (PCI DSS);
  2. protected health information, medical records, case histories, diagnoses, prescriptions, medical-examination results, or other medical-related sensitive data;
  3. government-issued identity-card numbers, social-security numbers, passport numbers, driver's-license numbers, residence-permit numbers, or other government identifiers;
  4. passwords, API keys, access tokens, refresh tokens, MFA / OTP verification codes, private keys, mnemonic phrases, or other authentication secrets; and
  5. data that, under applicable law, constitutes sensitive or special-category personal data and is not necessary to complete the scam-risk analysis.

If the foregoing data inadvertently appears in your submitted content

Because a scam message itself may contain the foregoing sensitive information (for example, a phishing SMS disguised as a bank notice), if you inadvertently include such data in an image or text, the Company will process it only to the extent necessary to identify and reduce the scam risk; where technically feasible, the Company will proactively mask, ignore, or decline to process unnecessary sensitive data, and will not use such data for advertising delivery, cross-service tracking, commercial-behavior profiling, or AI-model training, or for any purpose unrelated to scam-risk analysis.

If you discover that content you have submitted contains the foregoing data, please notify the Company immediately through the contact methods set out in this Policy, and the Company will assist in handling the matter within thirty (30) days.

6. Protective Measures

To ensure the security of personal data, the Company has established information-security and management systems. Data in transit is protected by SSL / TLS encrypted communication mechanisms to reduce the risk of unauthorized interception or tampering. In accordance with internal access-control rules, the Company implements account management, role-based permissions, access controls, and operation-log management to ensure that only authorized personnel may process the relevant data. The Company also conducts security audits, vulnerability scans, abnormal-event monitoring, and risk assessments on a regular or ad hoc basis, and has established procedures for the reporting of, and response to, abnormal events, in order to promptly prevent and address data leakage, tampering, loss, unauthorized access, or other information-security incidents. With respect to service providers, partners, or other third parties engaged by the Company, or that assist the Company in processing, using, or retaining users' personal data, in the course of providing the Service, the Company will, according to the nature of their services and the scope of their data processing, require them to comply with the information-security standards, confidentiality obligations, and personal-data-protection requirements agreed by contract with the Company, and may, as appropriate, periodically review their performance, in order to ensure that the overall data-protection measures remain continuously effective. If an information-security incident involving a third party occurs, the Company will take necessary measures in accordance with applicable law and its internal procedures, including incident investigation, risk control, performance of notification obligations, and assisting users in exercising their relevant rights, and will clarify, in accordance with the law, the respective responsibilities of the Company, the third party, and the relevant parties.

7. Exercise of Personal Data Rights

Except as otherwise provided by law, you may request that the Company:

  1. inquire into or review the personal data relating to you that the Company holds;
  2. provide a copy of such data;
  3. supplement or correct such data;
  4. cease the collection, processing, or use of such data;
  5. delete such data;
  6. delete the images, question text, analysis results, or related records you uploaded through the Service or ChatGPT;
  7. remove the relevant images, cases, or analysis results from community cases, similar cases, popular cases, or public-display pages; and
  8. object to or restrict the non-necessary use of data.

Upon receiving your request, the Company will review it and respond within a reasonable period in accordance with applicable law, in principle no later than thirty (30) days. If, due to business needs, data location, identity verification, technical limitations, legal obligations, dispute handling, information-security-incident investigation, or other legitimate reasons, the Company is unable to process the request within that period, the Company will separately notify you of the reasons and the estimated handling schedule.

To protect data security, the Company may ask you to provide information necessary to help locate the data and verify the request—for example, the date and platform of your submission, the image or case link, your contact email, relevant screenshots, or other information sufficient to confirm the scope of the request.

Where, in accordance with legal provisions, as necessary to carry out its business, to prevent fraud or abuse, to maintain service security, to handle disputes, to preserve an audit trail, or for other legal-compliance purposes, the Company is unable to delete, cease the use of, or change your personal data in whole or in part as you request, the Company will explain the reasons to you in accordance with applicable law and will, to the extent necessary, adopt alternative measures, such as restricting processing, ceasing external display, archiving, or reducing the identifiability of the data. Where the data has been irreversibly anonymized, or has been aggregated into statistics that cannot identify a specific individual, the Company will no longer be able to process, change, or delete the data as you request. You may freely choose whether to provide the relevant personal data and its categories; however, if you decline to provide the data necessary for the operation of the Service, the Company may be unable to provide image analysis, community-case matching, risk reports, the location of data for deletion or removal requests, or other necessary services.

8. Community Sharing, Anonymization, and Public Display

To help users identify scam risks, the Service may incorporate the images, text, telephone numbers, URLs, accounts, analysis results, risk indicators, or de-identified data submitted by users into the anti-fraud database, community cases, similar cases, popular cases, public alerts, or other anti-fraud information made available for users' reference.

According to the nature of the data and technical feasibility, the Company will adopt masking, de-identification, anonymization, aggregation, or other reasonable protective measures to reduce the risk of directly identifying an individual. However, if the image or text you submit itself contains identifiable information—such as a name, account, avatar, conversation content, address, telephone number, email, transaction data, or other personal data—other users or third parties may still infer the identity of the data subject from the content, tone, context, or associated information.

Therefore, please confirm the content before uploading or sharing, and avoid submitting personal data, sensitive data, confidential data, or third-party privacy information not necessary for the scam determination. The Website version of the Service provides an image-masking function, and you are advised to use that function to mask information you do not wish to make public or have processed before sharing. ChatGPT Apps does not provide an image-masking function; please mask or remove unnecessary information yourself before uploading through ChatGPT.

If you believe that any community case, popular case, or publicly displayed content involves the personal data, privacy, rights infringement, or other improper content concerning you or a third party, you may submit a request for deletion, removal, cessation of use, or a complaint to the Company through the contact methods set out in this Policy.

9. Cookies and Similar Technologies

When you use the Service or related websites, the system records your visit or usage footprint through cookies or other similar technologies—such as local storage, pixel tags, fingerprinting, SDKs, or device identifiers—in order to provide a more complete service experience and to help the Company understand and manage the use of the Service.

The foregoing purposes include but are not limited to:

  1. ensuring the operation of the basic functions of the website or application, such as login status, language settings, and security verification;
  2. conducting platform traffic analysis, user-behavior statistics, and research on product or service usage patterns;
  3. optimizing interface design and functionality to improve the smoothness and stability of platform operation;
  4. providing relevant content or notifications based on user preferences in order to improve the overall user experience; and
  5. maintaining service security, preventing abuse, and detecting abnormal use.

The Company may, on its own or by engaging trusted partners, use cookies or other technical tools to record, access, and collect your online-behavior data, and to analyze and process it within a reasonable scope.

Online-behavior data refers to non-directly-identifiable data generated when you use the Service on related platform websites or social media, including but not limited to IP address, cookie ID and its content, unique identifiers, domain name, device information, time of use, browser type, language settings, approximate geographic location, operating system, server logs, web searches, browsing and click records, usage patterns and statistical information, or behavioral tags generated by partners through their analysis and inference.

The Company does not sell users' personal data. Except for the purposes expressly disclosed in this Policy, the Company will not use the foregoing data for cross-service tracking, commercial-behavior profiling, or advertising delivery unrelated to the Service.

You may refuse, delete, or restrict the use of cookies through your browser or device settings. However, if you disable necessary cookies, certain functions or personalization settings of the Service may not operate normally. The Company will comply with the relevant laws and regulations and will appropriately handle the foregoing data in accordance with this Policy.

10. Distinction Between ChatGPT Apps and Website Tracking Technologies

The Website version of the Company's Service may use cookies, Google Analytics, or similar technologies in accordance with the Cookies section of this Policy.

However, when you use only the image-based scam-risk-analysis tool of the Service within ChatGPT Apps, the Company does not track your complete conversation content within ChatGPT or your cross-site browsing behavior through the Company's website cookies or Google Analytics.

The ChatGPT Apps version processes the images, question text, language, region or market code, community-case query settings, analysis results, and necessary technical logs needed to complete the tool request, and uses them for the purposes listed in Section 2 of this Policy.

If you click a link from ChatGPT Apps to go to the Company's website, a forum page, a case page, or a third-party website, the cookies, analytics tools, privacy policy, and terms of use of that website will apply separately.

11. Privacy of Children and Minors

The Service is a free anti-fraud tool and does not require users to register, log in, or provide any identity or age information. The Company cannot, and will not proactively, verify a user's age.

The content of the Service (scam-risk identification and anti-fraud alerts) is designed for the general public, including users aged 13 or older (or the minimum age at which, under local law, an individual may independently consent to the processing of personal data). The Service is not designed for children under the age of 13 and does not proactively market to, or provide services to, children under the age of 13.

However, if the content submitted by a user (for example, an image or text) clearly indicates a child's identity (for example, the user states in the question that they are a child, or the submitted image is clearly of an object belonging to a child), the Company will:

  • not incorporate that content into community anti-fraud alert materials; and
  • where technically feasible, handle the relevant records in accordance with the deletion mechanism in Section 7 of this Policy.

If you are a parent or legal guardian and become aware that your child has provided personal data to us, please contact us immediately. We will take reasonable measures to delete such data to the extent permitted by law, unless we are under a legal obligation to retain it.

Recommendations for Minor Users Aged 13–17

The Service is suitable for use by adolescents and can help them identify scam patterns commonly targeted at adolescents (such as fake romance, fake part-time jobs, and gaming scams). The Company encourages parents or legal guardians to accompany and guide their children in using the Service, in particular by:

  • helping to confirm that uploaded images do not contain sensitive or third-party personal data;
  • helping to understand the risk-analysis results provided by the Service (which are for reference only and are not legal or professional advice); and
  • guiding them to seek help from a trusted adult when they encounter a suspected scam.

12. Amendments to This Policy

To protect your privacy rights, the Company will amend this Policy from time to time in light of business needs, adjustments to service functions, changes to third-party services, changes in law, requirements of competent authorities, information-security needs, and technological developments.

Amendments to this Policy take effect upon announcement. If an amendment involves the purpose of data processing, the categories of data, the scope of public display, third-party recipients, user controls, or other material changes, the Company will notify users by website announcement, in-service notice, email, or other appropriate means.

Your continued use of the Service after an amendment to this Policy takes effect is deemed to constitute your having read and understood the amended content. If you do not agree to the amended content, please cease using the Service; you may also submit a personal-data rights request to the Company through the contact methods set out in this Policy.

13. Contact

If you wish to exercise any of the foregoing rights, or have any comment or question regarding this Privacy Policy, the data-processing practices of the Service, data use in the ChatGPT Apps version, the display of community cases, the removal of popular cases, the deletion of images, or any matter relating to your personal data, you may contact the Company's customer service or privacy contact:


Reminder: This English text is a reference translation only. The official Traditional Chinese Privacy Policy (version 1.2.0) shall prevail in the event of any discrepancy.