本隱私政策說明你使用 ChopsBook 平台與相關服務時，我們如何收集、使用、披露與保護你的資料。
This Privacy Policy describes how we collect, use, disclose, and protect your information when you use the ChopsBook platform and related services.

本政策適用於我們運營之網站、行動 App、API 以及你透過這些服務與我們互動時所涉及的資料處理行為。
This Policy applies to our website, mobile app, APIs, and all interactions you have with us via these services concerning data processing.

若你透過第三方服務或網站連結至我們平台，該第三方的隱私政策可能另有規範，不受本政策約束。
If you access our platform via third-party services or linked sites, their privacy policies may apply and are not governed by this Policy.

本平台位於加拿大安大略省，因此我們在處理個人資訊時會遵循加拿大聯邦法規 PIPEDA（《個人資訊保護與電子文件法》）。
We are based in Ontario, Canada, and therefore when handling personal information, we comply with the federal Canadian law PIPEDA (Personal Information Protection and Electronic Documents Act).

PIPEDA 要求組織在商業活動過程中收集、使用或披露個人資訊時，必須符合法定原則與取得使用者同意。
PIPEDA requires organizations to follow statutory principles and obtain user consent when collecting, using, or disclosing personal information in the course of commercial activity.

如果資料跨境傳輸或處理，我們會採取適當措施（例如加密、合同條款）以保護資料安全。
If data is transferred or processed across borders, we will take appropriate safeguards (e.g., encryption, contractual clauses) to protect it.

若某些省有與 PIPEDA 類似之地方法律，我們將在適用時遵循該地方法規。
If provinces have privacy laws substantially similar to PIPEDA, we will comply with those local laws where applicable.

我們可能從你主動提供的資料與自動收集之技術資料中取得資訊。
We may obtain information from data you actively provide and from automated technical means.

3.1 你主動提供的資料 / Data You Provide

• 帳戶資料（姓名、電郵、使用者名稱、密碼等）
  Account data (name, email, username, password, etc.)
• 聯絡資料（電話、地址等，如適用）
  Contact information (phone number, address, if applicable)
• 使用者內容：評論、照片、評分、地點標記等等
  User content: reviews, photos, ratings, location tags, etc.
• 交易與付費資訊（若你使用付費功能）
  Transaction and payment information (if you use paid features)
• 客服聯絡與回饋資料
  Customer support and feedback data

3.2 自動收集資料 / Automatically Collected Data

• 裝置資訊：型號、作業系統、瀏覽器版本等
  Device information: model, OS, browser version, etc.
• 網絡／連線資料：IP 位址、ISP、訪問時間等
  Network/connection info: IP address, ISP, access timestamps, etc.
• 日誌資料：使用行為、頁面訪問、互動紀錄等
  Log data: usage behavior, page visits, interaction logs, etc.
• Cookies、web beacons、localStorage、sessionStorage 等技術
  Cookies, web beacons, localStorage, sessionStorage, and similar technologies
• Session / 會話資料：登入狀態、臨時上下文等
  Session data: login state, temporary contexts, etc.
• 快取 / 緩存資料：靜態資源或部分回應之暫存
  Cache data: caching of static resources or partial responses

• 提供、運營與維護平台服務
  Provide, operate, and maintain the platform and services
• 用於身份驗證、安全與風險偵測
  For authentication, security, and risk detection
• 處理交易、付款、訂閱等
  Processing transactions, payments, subscriptions, etc.
• 發送通知、平台訊息、行銷活動
  Sending notifications, platform messages, marketing campaigns
• 分析與報告、系統優化
  Analytics & reporting, system optimization
• 個性化推薦與內容排序
  Personalization, recommendation, and content ranking
• 客服支援、申訴處理
  Customer support, complaint handling
• 法律義務、調查及合規需求
  Legal compliance, investigations, and regulatory obligations
• 平台權利維護與防範濫用
  Protecting platform rights and preventing abuse

若我們欲將資料用於本政策未列之用途，我們將提前通知你並在必要時取得額外同意。
If we intend to use data for purposes not listed here, we will notify you in advance and, if required, obtain additional consent.

• 服務提供商與承包商（如主機、分析、寄信服務）
  Service providers and contractors (hosting, analytics, email services)
• 合作商家（在交易或優惠情境下）
  Partner businesses (in transaction or promotion scenarios)
• 第三方服務平台（若你授權整合）
  Third-party service platforms (if you authorize integration)
• 法律要求、法院命令、政府調查
  Legal requirements, court orders, government investigations
• 緊急情況下為保護生命／財產安全
  Emergencies to protect life or property safety
• 公司併購、重組或資產轉讓時披露資料
  Disclosure during mergers, reorganizations, or asset transfers
• 匿名化或合併資料方式發布統計資訊
  Anonymized or aggregated data shared for statistical purposes

我們不會將你的個人資料販售予無關第三方。
We will not sell your personal information to unrelated third parties.

我們使用 Cookie、web beacons、localStorage、sessionStorage 等技術，以識別裝置、保存偏好與提升體驗。
We use cookies, web beacons, localStorage, sessionStorage, and similar technologies to identify devices, store preferences, and enhance user experience.

為提升性能，我們可能在伺服器端或客戶端使用快取 (cache) 儲存靜態資源或部分 API 回應。
To improve performance, we may cache static resources or partial API responses on the server or client side.

你可以在瀏覽器設定中拒絕或限制 Cookies，但這可能影響平台部分功能。
You can refuse or limit cookies in your browser settings, but this may impair some platform features.

當你登入時，我們會建立 session 以維持登入狀態與使用體驗。
When you log in, we establish a session to maintain login state and user experience.

Session 資料會儲存在伺服器端（如 session store）及前端技術（如 Cookie / token）中。
Session data is stored server-side (e.g. session store) and via front-end mechanisms (e.g. cookies / tokens).

Session 中只保留必要資料，不包含敏感資料，並在登出或過期後清除。
Only necessary data is stored in sessions, not sensitive data, and sessions are cleared upon logout or expiration.

長時間不活動的 session 會自動失效以降低風險。
Inactive sessions for extended periods will automatically expire to mitigate risk.

我們僅保留你的資料於達成本政策目的所需期間，之後會刪除或匿名化處理。
We retain your data only as long as necessary for the purposes described herein, then delete or anonymize it.

當你請求刪除帳戶或資料，我們會依程序處理，但某些資料（如交易記錄）可能依法保留。
If you request account or data deletion, we will comply procedurally, but certain records (e.g. transaction logs) may be retained per legal requirements.

我們採取合理技術與組織措施保護資料安全，包括加密、存取控管、日誌記錄等。
We implement reasonable technical and organizational measures to protect data, including encryption, access controls, logging, etc.

儘管如此，無法保證絕對安全。如發生資料外洩，我們會根據法規通知受影響使用者與主管機關。
Nonetheless, absolute security cannot be guaranteed. In case of breach, we will notify affected users and regulatory authorities per law.

我們的服務不針對 13 歲以下兒童。如發現有人未經同意提供資料，我們會刪除並終止其使用。
Our services are not directed to children under 13. If data is submitted without proper consent, we will delete it and terminate access.

• 查詢 / 存取：請求我們提供你所持有之資料副本
  Access: request a copy of your data held by us
• 更正 / 更新：若資料不正確，你可請求修正
  Correction / Update: request to correct inaccurate data
• 刪除 / 撤回同意：在合理情況下請求刪除資料或撤回同意
  Deletion / Withdraw Consent: request deletion or withdrawal of consent where reasonable
• 限制 / 反對處理：在特定情況下請求限制或反對資料處理
  Restrict / Object: request limitation or objection to data processing in certain circumstances
• 提出申訴 / 向監管機構投訴
  Lodge a complaint: file a complaint with the relevant data protection authority

我們可能會在處理請求時要求你進行身份驗證以保護資料安全。
We may require identity verification when processing requests to protect your data.

若資料傳輸至加拿大以外地區，我們會採取適當保障措施（如加密、合同條款）確保安全。
If data is transferred outside Canada, we will adopt appropriate safeguards (e.g. encryption, contractual clauses) to ensure security.

接收國的資料保護法律可能不同，但我們仍承諾遵守本政策與適用法規。
Recipient countries may have different data protection laws, but we commit to adhere to this Policy and applicable legal standards.

我們保留隨時修訂本政策之權利，並於本頁發布最新版。
We reserve the right to revise this Policy at any time and will post the latest version on this page.

若有重大變更，我們會提前通知你（例如電郵或平台公告）。
For material changes, we will provide advance notice (e.g. email or site announcements).

你在變更後持續使用服務，即視為你同意新版政策。
Your continued use of the service after changes constitutes acceptance of the updated Policy.

若你對本政策有疑問、請求或意見，請聯絡我們：
If you have questions, requests or feedback about this Policy, please contact us at:

電子郵件 / Email： chopsbook@gmail.com