Home Privacy Policy
by Sheena

Mercury Digital LLC Privacy Policy

Effective Date: 4 June 2025

This Privacy Policy (the “Policy”) explains how Mercury Digital LLC (“Mercury,” “we,” or “our”) collects, processes, uses, and protects your personal data when you use https://app.mdigi.net/ (the “Site”) and the associated SaaS platform (collectively, the “Service”). If you disagree with any part of this Policy, please discontinue your use of the Service immediately.

1. Scope of Application

This Policy applies to all personally identifiable information you provide—or that is generated—while using the Site and its extensions (including APIs, web forms, and mobile interfaces). It does not apply to third‑party websites or services; please consult their respective privacy policies.

2. Collection & Use of Personal Data

  1. Sources & Categories
    Account Registration: name, email, phone, company/organization details, and billing information.
    Interactive Features (support mailbox, surveys, feedback): the content you voluntarily provide and associated timestamps.
    System Logs: IP address, browser type, device identifiers, access time, browsing and click records.
  2. Purposes of Use
    • To provide, operate, and improve the Service.
    • Customer support, billing, and information‑security safeguards.
    • Marketing or promotional purposes with your explicit consent.
    • Compliance with legal, accounting, and tax obligations.
  3. Retention Period
    • Personal data are retained only for as long as necessary to fulfill the stated purposes or as required by law or contract. Once the purpose is fulfilled or the period expires, data are deleted or anonymised.

3. Your Rights

Subject to applicable laws (e.g., Taiwan PDPA, GDPR, CCPA), you may:

  • Request access or copies of your data.
  • Request correction or supplementation.
  • Request cessation of collection, processing, or use.
  • Request deletion.

Please contact [email protected]; we will respond within statutory time limits.

4. Data‑Security Measures

  • Firewalls, intrusion detection, endpoint protection, and regular vulnerability scans safeguard our servers.
  • Sensitive data (e.g., credentials, passwords) are encrypted at rest and in transit using industry standards.
  • BigQuery OAuth: When GA4 BigQuery integration is enabled, the system requests permission to your specified project and dataset via Google OAuth 2.0. You may revoke access at any time in Google Cloud Console.
  • Member Data Uploads: CRM member files—including email, phone number, and transaction history—are transmitted securely over TLS 1.2 or higher and stored encrypted at rest using AES‑256. Each organization’s data is logically isolated, and upon contract termination, all data is securely deleted within 30 days, or immediately upon request.
  • Access Auditing: All API calls that access BigQuery or member data are logged and periodically reviewed to detect anomalies.
  • Data are accessible only to authorized personnel under the principle of least privilege; all staff sign confidentiality agreements.
  • Third‑party processors must meet equivalent security and confidentiality standards and are subject to periodic audits.

5. Third‑Party Sharing & Disclosure

Mercury will not sell, rent, or share your personal data with third parties except:

  1. With your prior explicit consent.
  2. As required by law or valid governmental order.
  3. To protect life, body, freedom, or property.
  4. For statistical or academic research in the public interest, provided data are de‑identified.
  5. To complete a transaction or provide the Service via necessary third‑party processors (e.g., payment gateways, cloud hosting) within the scope required.

6. Cookies & Tracking Technologies

We use cookies and similar technologies to:

  • Keep you signed in and deliver personalised experiences.
  • Analyse traffic and improve functionality.
  • Conduct marketing and remarketing.
    You may refuse or delete cookies via browser settings, but certain features may not function properly.

7. Policy Updates

We may revise this Policy from time to time and will post the updated version on the Site. Significant changes will be notified by email or in‑product message. Continued use of the Service constitutes acceptance of the revised Policy.