2.1 Personal Data You Provide

By using our services, you may provide us with the following personal data:

a. Account Data This includes your name and email address. If you choose to log in via a third-party platform (e.g., Google), we may receive your authentication data from the login service, and your account details (depending on your platform settings), such as your name, email address, or unique user identifier.

b. Messages and Content This includes any content containing personal data that you provide in unstructured formats while using our services, such as conversations with AI characters or messages sent to us that contain personal information.

c. Payment & Transaction Data When you purchase paid services, our third-party payment processors provide us with your order number and payment status.

2.2 Automatically Collected Personal Data

We automatically collect the following data:

a. Device and Network Data This includes your device’s operating system, manufacturer, and model; your browser type and version; IP address; device and cookie identifiers; language settings; and general location data (e.g., city, state, or geographic region).

b. Usage Data This includes information about how you use our services, such as pages you visit, links and buttons you click, and other interactions with our features.

We and our service providers use cookies, scripts, or similar technologies to manage services and collect information about you and your use of the services. These technologies help us identify you, customize or personalize your experience, provide you with additional products or services, and analyze the use of our services to make them more useful to you. Most internet browsers allow you to delete or manage cookie functions and adjust your privacy and security preferences. However, please note that disabling our cookies may mean that you cannot fully enjoy our services.

3.1 General Principles Regarding Personal Data Processing

In accordance with this Privacy Policy, personal data is processed by TCI ENTERTAINMENT HONGKONG LIMITED as the data controller based on the following fundamental principles: (i) compliance with legal and good faith requirements, (ii) accuracy and, where necessary, kept up to date, (iii) processed for specific, explicit, and legitimate purposes, (iv) limited to what is necessary for the processing purposes, adhering to the principle of data minimization; and (v) stored for the period specified by relevant laws and regulations or as required for the processing purposes.

a. General Principles Regarding Personal Data Processing

3.2 Our Use of Your Personal Data

We collect your personal data for the following purposes:

a. Operating and Managing Services

(i)Legal Basis: Necessary for the performance of a contract
(ii)Reason and Manner of Using Your Personal Data: To provide and maintain the content and functionality of the services. To fulfill obligations arising from the contract entered into with you. To create your account and profile. To facilitate payments and transactions, including payments for subscription services. To respond to your inquiries, feedback, or questions and to conduct troubleshooting. To manage our relationship with you, including sending you information related to our services.
(iii)Categories of Personal Data: Account information, personal profile information, messages and content, interests and preferences, payment and transaction data, device and network data, usage data.

b. Providing Core Functionality of Services

(i)Legal Basis: Necessary for the performance of a contract
(ii)Reason and Manner of Using Your Personal Data: To provide you with a personalized AI chatbot experience. To enable you to engage in personalized and secure conversations and interactions with the AI chatbot, and to allow the AI chatbot to learn from your interactions to improve its dialogue capabilities.
(iii)Categories of Personal Data: Account information, personal profile information, messages and content, interests and preferences, payment and transaction data, device and network data, usage data.

c. Monitoring and Protecting Services

(i)Legal Basis: Legitimate Interests
(ii)Reason and Manner of Using Your Personal Data: To prevent fraud, criminal activities, and misuse of our services, and to ensure the security of our information technology systems, infrastructure, and networks (including testing, system maintenance, support, etc.).
(iii)Categories of Personal Data: Account information, personal profile information, messages and content, interests and preferences, payment and transaction data, device and network data, usage data.

d. Analyzing Service Usage Trends

(i)Legal Basis: Legitimate Interests
(ii)Reason and Manner of Using Your Personal Data: To aggregate, anonymize, and de-identify personal data. To analyze the usage and effectiveness of our services. To improve and enhance the functionality of our services. To develop our business and marketing strategies.
(iii)Categories of Personal Data: Account information, personal profile information, messages and content, interests and preferences, payment and transaction data, device and network data, usage data.

e. Performance of Service Contracts and Compliance with Legal Obligations

(i)Legal Basis: Legitimate Interests; Consent where required by applicable laws
(ii)Reason and Manner of Using Your Personal Data: To enforce and comply with our terms and policies. To protect the rights, privacy, safety, or property of ourselves and others. To ensure the integrity of our services. To maintain transaction records and comply with legal proceedings.
(iii)Categories of Personal Data: Account information, personal profile information, messages and content, interests and preferences, payment and transaction data, device and network data, usage data.

4.1 Service Providers

We share your personal data with companies and individuals that provide services on our behalf or assist in operating our services or business (such as hosting, IT support, customer service, email delivery, website analytics, and more). These service providers are contractually obligated to keep your personal data confidential and to use it only for the purposes for which we disclose it to them.

4.2 Professional Advisors

When necessary, we may share aggregated data with professional advisors (such as lawyers, auditors, banks, or insurance companies) to enable them to provide us with professional services.

4.3 Authorities and Other Parties

We may share personal data with relevant authorities when required by law or at the request of law enforcement or regulatory agencies.

4.4 Business Transferees

If we are involved in strategic transactions, restructuring, bankruptcy, takeovers, etc., your personal data and other information may be shared with counterparties or other parties assisting in the transaction during the due diligence process, and may be transferred to successors or affiliates along with other assets as part of such transaction.

4.5 Affiliates

For purposes such as optimizing operations and developing services, we may share your personal data with our affiliates when necessary.

Cookies and similar technologies (such as device identifiers) are commonly used across the Internet. When you visit our website or use our services, we may employ these technologies to send one or more cookies or anonymous identifiers to your device, enabling us to collect and recognize information about your website access and usage patterns. We strictly adhere to using cookies only for the purposes specified in this policy and will not utilize them for any other purposes. We primarily use cookies and similar technologies to enable the following features and services:

5.1 Ensuring Secure and Efficient Operation of Products and Services

We may use authentication and security cookies or anonymous identifiers to verify login attempts, detect and prevent unauthorized access, fraudulent activities, and other malicious behavior. These technologies also help improve service efficiency by streamlining login processes and enhancing system response times.

5.2 Enhancing Your Browsing Experience

These technologies simplify your access by remembering your information, search history and form inputs (e.g., saved searches, auto-filled forms).

5.3 Managing Cookie Settings

Most browsers allow users to clear cached data, including cookies, through browser settings. Please note that clearing cookies may disable certain features or services that depend on cookie technology.

9.1  You have the right to request a copy of the personal data we have collected about you. Where applicable, we will provide the personal data in a portable, machine-readable, and user-friendly format.

9.2  You have the right to request the correction of your personal data if it is inaccurate. You may also supplement your personal data if it is incomplete.

9.3  You may request the deletion of your personal data, including your SalloChat account and related information. To delete your account, please contact us at: contact@sallochat.com. Please note that once you submit an account deletion request, you will no longer be able to use SalloChat. Please consider this carefully. We will also delete your personal data when the original processing purposes no longer exist, or when the retention period expires.

9.4  Right to Withdraw Consent. You may withdraw your consent for us to process your personal data at any time by contacting us at contact@sallochat.com. Please note that the withdrawal of consent does not affect the lawfulness of any processing carried out before the withdrawal. Upon receiving your request, we will process it promptly and cease further processing unless otherwise required by law.

9.5  Other Rights. For instance, you may object to or restrict our use of your personal data.
To exercise these rights, please contact us using the methods provided in Section 14 (Contact Us). For security of your personal data, we may need to verify your identity (e.g., by requesting supporting documentation) before processing requests. We will respond to all valid requests in accordance with applicable laws and regulations.