POTATO AI General Privacy Policy
Last Updated: 21 November 2024
Introduce
This Privacy Policy applies to all activities conducted by FASTPOTATO PTE. LTD. and its AI affiliates and subsidiaries (collectively, 'POTATO' or 'we'), except for PotatoVPN. POTATO is the controller of Users' personal information and data and is responsible for providing Users with this Privacy Policy. In the event of a conflict between the privacy policies of all POTATO-owned AI products and this Privacy Policy, this document shall prevail.
Data We Collect
Information Collection Overview
In the course of providing our services, POTATO may collect and process the following information from users to enhance user experience and ensure the stability and security of our services.
- Information You Provide
- Account Data : We collect your email address to deliver personalized services to you.
- Payment Data : This includes your subscription status, payment methods, subscribed packages, subscription time, and transaction ID, which we use to facilitate VIP services and provide troubleshooting support.
- Image Data : Images you provide, which may include photos taken with your device's camera or other images you choose to upload, are used to enhance the quality of our service.
- Document Data : The files you upload, which may include PDFs and other formats, enable us to provide specific features such as document processing and improve overall service quality.
- Other Information You Provide : Messages, images, email addresses, or other content you send via email, used to optimize our service and for analytical purposes.
- Automatically Collected Data
- Cookies : We use cookies to store user preferences, recognize user sessions, analyze traffic, and gather information on user interactions with our services. This helps us improve the overall user experience and provide targeted services.
- Usage Data : User interaction data with the service, used to gain insights into service usage and enhance the user experience.
- Analytics Data : Crash logs and related diagnostics data, used to improve your experience with the service by ensuring stability and performance.
- Device Information : Data such as device model, operating system version, application version, time zone, and random ID, which support essential features and functionalities of the services.
- Security Data : IP address (collected on the website only) to safeguard against network attacks, for instance, severing connections in the event of attempted server attacks.
By collecting and processing this information, we aim to provide a higher quality, personalized, and secure service experience for our users, while continuously optimizing and improving our service features.
For detailed information regarding the data collection practices specific to each product, please refer to the respective product's privacy policy document.
How we share your data
At FASTPOTATO PTE. LTD. (POTATO), we prioritize the privacy and security of your personal information. Here's a summary of our data-sharing practices to ensure transparency:
We collect and utilize user data primarily for customer support, improving service functionality, and troubleshooting issues. Importantly, we do not share personally identifiable information (such as usernames or email addresses) with third-party AI model providers or developers. However, when leveraging third-party APIs for services like chat or content generation, these third-party developers may access anonymized user data for model training and improvement.
When you engage with third-party platforms, such as placing an order through them, those platforms may collect certain information about you. We encourage users to review the privacy policies of these third parties to understand their data collection practices.
Additionally, to enhance your user experience, we may use aggregated data to personalize the services we provide, such as recommending additional tools or suggesting relevant topics of discussion. This process does not involve disclosing any personal information to external parties.
For advertising and traffic analytics, we collaborate with reputable third-party providers. These partners are selected based on their reliability and global presence, and they adhere to strict privacy standards, including the Limited Use requirements of the Google API Services User Data Policy. Such analytics help us optimize service performance and better understand user engagement without compromising your privacy.
As part of our commitment to transparency and data protection, we ensure that any sharing of data is done in accordance with applicable laws and regulations, and with clearly defined purposes that align with enhancing your experience with our services.
For detailed information regarding the third-party data collection practices and privacy policies specific to each product, please refer to the respective product's privacy policy document.
Data Security
We use exceptionally strong safeguards to protect the privacy of all our records, including your Personal Data, including:
We implement physical, business and technical security measures.
We periodically review our information collection, storage and processing methods to prevent unauthorised access to our systems.
Our Data Security Officer assesses the security of internal and external information processing and corrects misbehaviour in a timely manner.
Data security training is required for all employees.
A dedicated data incident response procedure is in place to identify and recover from vulnerabilities in the event of a security incident.
DATA RETENTION
How we store your data
Your usage data will only be stored for no more than 48 hours, after which it will be automatically deleted.
Again, our guiding principle towards data collection is to collect only the minimal data to maintain our service. Therefore, we delete your personal data as soon as it is unnecessary to store.
Where We Store Your Data
When you use our Service, you may be using servers located in a variety of different countries. However, there is a difference between use and storage. The data we collect are mostly stored in servers located in the European Union.
Since we are a Singapore company, we may access the data outside from the EU when necessary, for example, when user support is required.
In all cases, we follow generally accepted standards and security measures to protect the personal data submitted to us, both during transmission and once we receive it. We always strive to protect your data to the maximum extent we can.
COUNTRY-SPECIFIC PROVISIONS
In addition to the general privacy practices outlined in our Privacy Policy, certain jurisdictions impose additional legal requirements and obligations. The following country-specific provisions are intended to address and comply with these local laws. Users residing in the European Union and California should review these sections carefully to understand their rights and our obligations under the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), respectively.
Your Rights Under GDPR
The General Data Protection Regulation (GDPR) of the European Union (EU) requires us to specifically underline users' rights in the EU, which are:
- The right to be informed.
- The right to access.
- The right of rectification.
- The right to erasure, or the right to be forgotten.
- The right to restrict processing.
- The right to data portability.
- The right to object.
- Rights in relation to automated decision-making and profiling.
Legal Basis
POTATO is committed to user privacy globally, and our existing practices reflect that through minimal collection of data and ensuring users have control over their personal information. GDPR requires us to outline those practices in a specific manner for users in the EU.
In line with the GDPR, we collect and process the data outlined in this Privacy Policy on one of the following bases, depending on the circumstances:
- For the purposes of fulfilling our contractual obligations to users, including:
- Providing users with the Services and Apps they have requested.
- Managing user subscriptions and processing payments.
- Providing customer support.
- For a legitimate interest associated with the operation of our business, including:
- Enhancing the quality, reliability, and effectiveness of our Site, Services, and Apps.
- Communicating with customers to provide information and seek feedback related to our Services and Apps.
You can exercise your rights under GDPR to access, transfer, correct, delete, or object to the processing of your personal information by contacting us at
[email protected].
Your Rights Under CCPA
If you are a California resident, your privacy rights are outlined in the California Consumer Privacy Act (CCPA). As per definitions in CCPA, POTATO does not sell your personal information to non-affiliated third parties.
If you would like to know further information regarding your legal rights under California law or would like to exercise any of them, please contact us at:
[email protected].
Age Restriction
We are committed to protecting the privacy and security of minors. Our services are intended to be used by individuals who meet the minimum age requirement as specified by local laws. The specific age restrictions for each product may vary; therefore, we encourage you to refer to the respective product's privacy policy for detailed information.
We do not actively collect age information. It is your responsibility to ensure that you are legally permitted to use our services. If you are a minor in your jurisdiction, please ensure that you have obtained consent and are under the supervision of a parent or legal guardian.
your rights
You have the right to access, correct, delete, or object to the processing of your personal information by contacting us at
[email protected].
It should be noted that you may make up to 3 requests to us per year and we may charge a reasonable fee for each additional request to exercise any such right during such 12-month period. We will respond to your request within 30 days. If reasonably necessary, we may extend this by a further 30 days on notice to you.
However, deleting information may prevent you from continuing using our Services.
Privacy Policy Updates
POTATO may update this Privacy Policy from time to time for reasons such as changes in laws, industry standards, and business practices. POTATO will post updates to this page and update the "Last Updated" date above. If we make updates that materially alter your privacy rights, we will also provide you with advance notice, such as via email or through the Services. If you disagree with such an update to this policy, you may cancel your services account. If you do not cancel your account before the date the update becomes effective, your continued use of our services will be subject to the updated Privacy Policy.
Contact Us
If you have any further questions on this Privacy Policy, please feel free to contact our Data Security Officer:
[email protected]