Privacy policy

(Last Updated: November 1, 2025)

This Privacy Policy (hereinafter referred to as "this Policy") is established by Taiwan and Yaliutu Co., Ltd. (hereinafter referred to as "the Company" or "we") to explain how your (hereinafter referred to as "user" or "customer") personal data is collected, processed, and used when using the RAGTAG service (hereinafter referred to as "the Service"). We fully understand the importance of protecting users' privacy and personal data, and are committed to complying with Taiwan's Personal Data Protection Act (hereinafter referred to as "PDPA") and related regulations to properly manage users' personal data.

1. Scope of Application

This policy applies to the company's operations within Taiwan, including the recycling and sales services of second-hand goods, as well as the collection, storage, processing, and sharing of personal data involved in the e-commerce platform (including websites and applications).

2. Definition of Personal Data

"Personal Data" refers to information that can identify an individual, including but not limited to name, phone number, address, email address, identification number, etc. Additionally, technical information related to user devices (e.g., IP address, cookie data, browsing behavior records, device type) may also be considered personal data.

3. Collection and Sources of Personal Data

(1) Information actively provided by users:

For example: name, address, phone number, email, and other contact details.

Transaction-related information: order records, payment information, and delivery addresses.

Identity verification documents (such as copies of identification cards or other legally required documents).

Responses to questionnaires or information provided during consultations.

(2) Automatically collected information:

Device and network information (e.g., IP address, cookie ID, browsing records, etc.).

Behavioral data recorded during usage (e.g., clicks, duration of stay).

(3) Information provided by third parties:

For example, transaction-related documents required by delivery companies or payment institutions.

Basic information obtained when users link with third-party platforms (such as social media accounts).

4. Purpose of Using Personal Data

The company will reasonably use your personal data for the following purposes:

Transaction and service fulfillment: purchase of goods, payment processing, delivery, and related after-sales services.

User authentication: performing identity verification requirements and legally mandated procedures (e.g., age verification).

Service optimization: improving service quality, website security, and user experience based on user behavior analysis.

Marketing activities: providing product recommendations, promotional information, and event invitations (consent will be obtained when necessary).

Legal compliance: fulfilling legal obligations or requirements from regulatory authorities when necessary.

5. Recipients and Conditions of Data Sharing

The company will only provide your personal data to third parties under the following circumstances:

Legal requirements: such as court orders or lawful requests from regulatory authorities based on relevant regulations.

Service needs: projects requiring third-party participation such as delivery, payment processing, or system operations.

Establishing security safeguards: taking necessary measures to prevent situations that may harm user safety.

With explicit user consent: obtaining your written/electronic consent in specific situations.

When personal data involves sharing or entrusting third-party processing, the company will ensure that third parties provide appropriate protection in accordance with legal requirements.

6. Data Retention Period

Your personal data will only be retained for the period necessary to fulfill the collection purposes. After the retention period ends or the data usage purpose is achieved, we will delete or anonymize your data appropriately.

7. Data Security Management

The company commits to adopting appropriate technical and internal management measures to protect your personal data, including but not limited to:

Setting data access permissions to prevent unauthorized data viewing.

Using data encryption technology and firewalls.

Regularly training internal personnel to update security awareness and implement best practices for privacy protection.

8. Users' Legal Rights

According to personal data regulations, users have the following rights regarding their personal data:

Inquire and review the content of personal data.

Update or correct inaccurate personal data.

Request to stop using or delete personal data.

Withdraw authorization rights (but the legality of data processing before withdrawal is unaffected).

To exercise the above rights, please contact us using the contact information below and submit your request.

9. Cookies and Related Technologies

Our website uses cookies and related technologies (such as web beacons) to optimize user experience and analyze website traffic. Users can disable cookies through browser settings, but this may affect the normal use of some functions.

10. International Data Transfer

When we need to transfer your personal data abroad (e.g., to Japan), we will take appropriate protective measures required by personal data laws to ensure data security and privacy protection.

11. Amendments to This Policy

To respond to legal amendments or service changes, this policy may be revised at any time. Major revisions will be announced in advance on the company's official website. Continued use of the service will be deemed as acceptance of the new privacy policy version.

12. Contact Information

If you have any questions or wish to exercise your rights, please contact us:

Taiwan and Aruto Co., Ltd.

22853452 (Postal Code)

5F-2, No. 248, Section 3, Nanjing East Road, Songshan District, Taipei City

Phone: 02-2778-8363

Email: [Contact Email]