Jump to main content
Secure Processing Taiwan Operations
FirelyX Logo

Privacy Policy

Last Updated: January 15, 2025

We handle your information with care. This policy explains what we collect, why we need it, and how we protect it. We've written this in plain language because legal jargon helps nobody.

Information We Collect

When you work with FirelyX, we gather specific information to provide our financial reporting automation services. Here's what we collect and why it matters.

Business Contact Information

Your name, email address, phone number, and company details. We need this to communicate with you about your financial reporting setup and answer questions that come up during implementation.

Financial System Data

To automate your reporting, we access transaction records, account structures, and reporting configurations from your existing systems. This data flows through our secure integration points but isn't permanently stored on our servers unless you specifically authorize long-term access for ongoing automation.

Usage Information

We track how you interact with our platform — which reports you generate, when you log in, what features you use most. This helps us improve the service and catch potential issues before they affect your workflow.

Technical Data

IP addresses, browser types, device information. Standard web stuff that helps us maintain security and compatibility across different systems.

How We Use Your Information

Everything we collect serves a specific purpose related to delivering and improving our automation services.

Information Type Primary Use Retention Period
Contact Details Service communication and support Duration of relationship plus 2 years
Financial Data Report generation and automation As long as automation is active
Usage Patterns Service improvement and troubleshooting 18 months from collection
Technical Logs Security monitoring and system maintenance 90 days rolling window

We don't sell your data. Period. We don't share it with advertisers or use it for purposes unrelated to your financial reporting automation.

Data Protection and Security

Financial data demands serious protection. Here's how we approach security without getting too technical.

All data transmissions use TLS 1.3 encryption. Your financial information travels through encrypted channels and sits in encrypted databases. We maintain SOC 2 Type II compliance and undergo annual security audits.

  • Access controls limit who can view your data internally — only team members directly supporting your account
  • Multi-factor authentication protects all administrative access points
  • Regular security testing identifies vulnerabilities before they become problems
  • Automated monitoring detects unusual access patterns in real-time
  • Data backups occur daily with encrypted storage in geographically separate locations

Despite these measures, no system is perfectly secure. If a breach occurs, we'll notify you within 72 hours and explain what happened and what we're doing about it.

Your Rights Under Taiwan Law

Taiwan's Personal Data Protection Act gives you specific rights. We respect these rights and make exercising them straightforward.

Access and Correction

You can request a copy of all personal data we hold about you. If something's wrong, tell us and we'll fix it within five business days. There's no charge for reasonable requests, though we might ask for identification to verify it's really you.

Data Portability

Want your data in a format you can use elsewhere? We'll export it as CSV or JSON files within ten business days of your request.

Deletion Requests

You can ask us to delete your data. We'll comply unless we have a legal obligation to retain certain records — like tax documentation or audit trails. When we can't delete something, we'll explain why in plain language.

Processing Restrictions

If you think we're handling your data incorrectly, you can request that we pause processing while we investigate. Your service might be limited during this period, but we'll work quickly to resolve concerns.

Data Sharing and Transfers

We keep data sharing minimal. Here's the complete list of situations where your information might be shared.

  • Cloud infrastructure providers who host our systems under strict data processing agreements
  • Payment processors when you make transactions — they receive only necessary billing information
  • Legal authorities if required by Taiwan law or valid court orders
  • Professional advisors bound by confidentiality obligations
  • Service providers who help with specific technical functions under written confidentiality agreements

Your data primarily stays within Taiwan. When we use international service providers — like cloud infrastructure — we ensure they maintain equivalent protection standards and comply with Taiwan's cross-border data transfer requirements.

Cookies and Tracking

Our platform uses cookies for essential functions and service improvement. You have control over most of them.

Essential Cookies

These keep you logged in and remember your preferences. The platform won't work properly without them, so they're not optional.

Analytics Cookies

We track general usage patterns to understand which features work well and which need improvement. These don't identify you personally — we see aggregated trends, not individual behavior.

Managing Cookie Preferences

Your browser settings let you block or delete cookies. Just know that blocking essential cookies will break core functionality like staying logged in.

Data Retention

We don't keep information longer than necessary. Different data types have different retention schedules based on business needs and legal requirements.

Active client data stays accessible while you use our services. After your service ends, we retain essential records for two years to handle any follow-up questions or issues. Financial transaction logs are kept for seven years to comply with Taiwan tax regulations.

When retention periods expire, we securely delete data using methods that prevent recovery. This includes overwriting storage locations and destroying backup copies.

Children's Privacy

Our services target businesses, not individuals under 18. We don't knowingly collect information from minors. If we discover we've accidentally collected such data, we'll delete it immediately.

Changes to This Policy

Privacy practices evolve as regulations change and services expand. When we update this policy, we'll post the new version here and update the date at the top.

For significant changes that affect how we handle your data, we'll send direct notification via email at least 30 days before the changes take effect. This gives you time to review updates and ask questions.

Third-Party Links

Our platform might link to external sites or integrate with third-party financial systems. Those services have their own privacy policies. We're not responsible for how they handle data once you leave our platform.

Before connecting third-party services, review their privacy practices. Some integrations require sharing specific data to function — we'll always tell you what's being shared before you authorize the connection.

Questions About Privacy?

If something in this policy isn't clear, or you want to exercise your data rights, reach out directly.

Email: support@firelyx.com

Phone: +886 6 221 0701

Mail: No. 135, Cuiping Rd, Nanzih District, Kaohsiung City, Taiwan 811

We respond to privacy inquiries within three business days. For complex requests, we'll acknowledge receipt immediately and provide a timeline for full response.