TOTORO TECHNOLOGY CO., LIMITED owns and operates islandenjoy.com. Safeguarding your privacy rights is one of our key priorities on this online platform (hereinafter called "the Site"). This Privacy Policy outlines how we gather, utilize, disclose, and share your personal information when you engage with our Site, its services, or any associated products (collectively referred to as "the Services")—whether you do so directly or through third-party partners.

Scope

This Privacy Policy applies solely to information collected via our Services and does not regulate how third parties manage data. This includes external websites, applications, or organizations that can be accessed through links on our platform.

1. Information Collection Practices

We collect information in the following scenarios:

When you visit our Site

During interactions with our Advertising Platform or its advertisements

Through engagement with platforms operated by our business partners

Data Categories

Provided Information: This covers your full name, contact information (e.g., physical address, phone number, and email address), demographic details (such as gender, date of birth, and identification numbers), work history, and educational qualifications.

Automated Data: This includes technical identifiers (like IP addresses, device IDs, and advertising IDs), information about your web browser and device, records of your session activities, and data related to your interactions with advertisements.

Cookies & Tracking: These tools are employed to monitor user behavior, improve site performance, and deliver personalized content. If you wish, you can adjust cookie settings through your web browser.

Third-Party Sources: This refers to data acquired from reliable external sources, including service providers, advertising partners, and other relevant organizations.

2. Purpose of Processing

We use your data to:

To provide and enhance our Services

To meet user requests and improve user experience

To carry out analytics and research

To tailor content and advertising

Ensure system security and legal compliance

Provide customer support and feedback to partners

Promote our services and advertising campaigns

Legal Basis

Processing relies on:

Contractual necessity for service delivery

Legitimate interests (e.g., fraud prevention, ad effectiveness measurement)

Legal obligations under applicable jurisdictions

Explicit user consent where required

3. Data Sharing

We may disclose information to:

Business partners (publishers, advertisers, service providers)

Regulatory authorities in compliance with legal obligations

Successor entities in mergers/acquisitions

International Transfers

We retain the right to transfer data across international boundaries in accordance with relevant data protection laws and regulations. To ensure that these cross-border data transfers meet legal obligations, we utilize standard contractual clauses and put in place suitable protective measures.

4. Security Measures

We have implemented technical and organizational safeguards to protect data during both transmission and storage. While no system can be entirely risk-free, we follow security protocols that align with industry standards.

5. Retention Policy

Data is retained for the duration necessary to fulfill operational and legal requirements, unless extended retention is mandated by law.

6. User Rights

You may exercise the following rights:

Access, correction, or deletion of personal data

Data portability

Withdrawal of consent

Objection to processing

Lodging complaints with supervisory authorities

7. Regional Rights

For EU/UK Residents: Pursuant to the General Data Protection Regulation (GDPR), you are entitled to additional rights, such as the right to restrict data processing and the right to oppose automated decision-making.

For California Residents: In accordance with the California Consumer Privacy Act (CCPA), your rights include the choice to opt out of data sales, the ability to request data deletion, and access to protections against discriminatory practices.

8. Marketing Preferences

You may opt out of marketing communications via unsubscribe links in emails or by contacting SottoTrivisonno224@gmail.com.

9. Children's Privacy

We comply with the Children's Online Privacy Protection Act (COPPA) and GDPR-K regulations, and we do not purposefully collect information from individuals under the age of 16. If a parent or legal guardian has reason to believe that their child’s data has been collected, they may contact our Data Protection Officer (DPO) to request its removal.

10. Contact Information
For inquiries or rights exercises, contact our Data Protection Officer at SottoTrivisonno224@gmail.com.