${_('@All confidential data is transferred between you and QNAP Cloud via authenticated and encrypted protocols. QNAP Cloud API uses HTTPS (HTTP over TLS), which is adopted as the standard for online transactions or banking. It provides authentication and protection against eavesdropping, tampering and message forgery.@')}$

${_('@The data storage is protected by multiple layers of security in the world-class data centers. The access to the data is strictly restricted and the access is logged for anomaly detection and auditing. The data is encrypted before saved to the storage media, and the encryption keys are stored and managed on separated media.@')}$

${_("@Your account and device information can only be accessed after your QNAP Account (QID) is authenticated. Your QID is further protected by two-factor authentication, which offers an extra layer of security to ensure that you're the only person who can access your account, even if someone knows your password. In addition, your QID login password will never be stored on any devices, and you can always revoke the access right granted to a device.@")}$

${_('@The QNAP Cloud server keeps a detailed account log, which makes auditing capabilities possible for your QID. Users can monitor the account activity logs to check the abnormal account status. Those audit messages will be sent to notify users via email when an important change occurs (such as a sign-in attempt with the QID using a new device).@')}$

${_('@We offer extensive services for remote access to your device and also provide mechanisms for you to control the services that are set to be made accessible or disabled, according to your network environments and security requirements. The granular control allows you to comply with the principle of least privilege.@')}$

${_('@We run myQNAPcloud services on world-class data centers that provide excellent network connectivity and robust facilities. The services are hosted on redundant servers with the scale-out capability. Important data is replicated in real time and periodically backed up. We also deploy continuous service monitoring and log analysis systems, and so, any service degradation can be detected and recovered in a timely fashion.@')}$

${_('@Our privacy principles guide us to work hard to design the best solutions and execute the well-defined procedures to safeguard your privacy:@')}$

• ${_('@When we collect your data, we collect only the data that we need to serve you.@')}$
• ${_('@We put you in control of your privacy with easy-to-use tools and clear choices.@')}$
• ${_('@If you leave the service or delete you data, we will remove your data from our systems.@')}$
• ${_('@We respect your local privacy laws and fight for legal protection of your privacy as a fundamental human right.@')}$
• ${_('@We are transparent about data collection and processing so that you can make informed decisions.@')}$

${_('@You have certain rights in respect of the information that we hold about you, including:@')}$

• ${_('@To request a copy of your personal data which we hold about you.@')}$
• ${_('@To request that we correct any personal data if it is found to be inaccurate or out of date.@')}$
• ${_('@To request to erase your personal data where it is no longer necessary for us to retain such data.@')}$
• ${_('@To withdraw your consent to the processing your personal data in reliance of your consent.@')}$
• ${_('@To restrict our processing of your personal data or to object to us using your personal data.@')}$
• ${_('@The right to lodge a complaint regarding our processing of your data, with the competent authority where you reside or in which your data is processed.@')}$

${_('@Your rights may be restricted in circumstances where we also have compelling legitimate grounds for processing your data which override your interests and rights, or if we need to continue to process the data for the establishment, exercise or defense of legal claims.@')}$

${_('@Please also be advised that if you exercise the rights to erase data, restrict or object to our processing, or to withdraw your consent, we may not be able to continue our services to you if the necessary data is missing for processing.@')}$

${_('@We design our products and services that offer you flexibilities to choose what data you would like to share with us, to stop the sharing, or to delete the shared data anytime. Your data is transferred to QNAP Cloud only when a feature is enabled, and only the data required for that specific feature will be transferred. If the data is stored in QNAP Cloud, you will be able to review and modify the data by the user interface on QNAP devices, software, or websites. If you decide to disable the feature, your data in QNAP Cloud for the feature will be deleted.@')}$

${_('@If you do not agree with the way in which a specific feature processes your data, you may choose not to use the feature. QNAP Cloud is designed to allow you to utilize the most features of it without requiring you to supply all of your data. For example, you may still use your QID to access all the services without providing your personal profile picture.@')}$

${_('@If you are not satisfied with QNAP Cloud, or if you have any questions, you are very welcome to contact us.@')}$

${_('@We also collect data in a form that does not, on its own, permit direct association with any specific individual. We may collect your activities on our website, cloud services, software, and hardware. The information is anonymized before being stored to our servers, and it is aggregated and used to help us provide more useful information to our customers and to understand which parts of our website, products, and services are of most interest.@')}$

${_('@A cookie is a small file placed onto your device that enables QNAP Cloud features and functionality. Cookies play an important role. Without them, using the web would be a much more frustrating experience.@')}$

${_('@We use cookies on our websites (such as qnap.com and myqnapcloud.com) and mobile applications. Any browser visiting these sites will receive cookies from us. We use cookies for the following three purposes:@')}$

• ${_('@Security: We use security cookies to authenticate users, prevent fraudulent use of login credentials, and protect user data from unauthorized parties. We also use cookie to keep track of your trusted computers, on which two-step authentication is skipped for your convenience.@')}$
• ${_('@Preferences: These cookies allow our websites to remember information that customizes the behaviors of the websites, such as your preferred language or the region you are in.@')}$
• ${_('@Performance: We use this type of cookies to collect information about how visitors use a website. For example, it helps us understand which pages receive most visits, how long the page is loaded, and if they get error messages. These cookies do not collect information that identifies a visitor. All information these cookies collect is aggregated and therefore anonymous. It is only used to improve how a website works.@')}$

${_('@DNT is a concept@')}$

${_('@Most browsers automatically accept cookies as the default setting. You can modify your browser setting by editing your browser options to reject our cookies or to prompt you before accepting a cookie. Most browsers also provide functionality that lets you review and erase cookies. However, if a browser does not accept cookies or if a user rejects a cookie, it may also stop you from saving customized settings like login information, and some portions of our websites may not function properly.@')}$

${_('@Your QID is the account that you use for everything you do with QNAP Cloud, like registering a QNAP NAS to myQNAPcloud in order to enable remote access service and event notification, buying a license on QNAP License Store, using QNAP mobile apps to connect to your NAS registered in myQNAPcloud, and more.@')}$

${_('@When you create a QID on QNAP Account Center website, we may collect your name, email address, phone number, IP address, and profile photo, and when you link your QID with your accounts of a cloud service, like Facebook and Google, we may collect your account information. Your account preferences like languages and time zones are also maintained, and your account activities are logged for your security review.@')}$

${_('@We use your QID information for identifying you, granting your access, and communicating with you. Your friends who also have QID can identify you on QNAP Cloud based on your QID. For example, Your friends can create share links on their QNAP NAS and send invitation to you through the email you designate in QID profile. You can also optionally maintain a list of your contacts based on their email and QID. Because your names and profile picture is accessible for other QID users in QNAP Cloud,@')}$

${_('@When you sign in your QNAP ID via QNAP products, mobile and PC applications, and web browsers, we may collect the basic configurations and IP address of the connecting software and device.@')}$

${_('@You may sign in at QNAP Account Center website (https://account.qnap.com/) to view your QID profile data.@')}$

${_('@myQNAPcloud provides the remote connection service for many QNAP products. When you register your QNAP device to myQNAPcloud, the basic configurations and remote connection information, such as IP address, port numbers, and URLs of the your device is constantly transferred to and stored in QNAP Cloud, such that you and your friends can successfully connect to your QNAP device by QNAP software and websites simply with your device name or URLs. For your privacy, myQNAPcloud also allows you to control who can retrieve the connection information of your device. myQNAPcloud provides only the connection service, and the access to the files or services in your device still require you to enter your username and password of your device.@')}$

${_('@You can enable event push notification for your QNAP NAS after you register your NAS to myQNAPcloud. When enabling the notification on your mobile apps or browsers, the configuration of your mobile apps and browsers will be stored in QNAP Cloud servers, such that when there are new events, the event data can be routed correctly to your mobile apps and browser@')}$

${_('@The event data is transferred to our servers and then forwarded to the push notification service providers according to the type of your devices receiving the events. For Apple devices and Safari, the push notification service is APNS (Apple Push Notification Service) and for Android, Chrome, and Firefox, the push notification service is Google FCM (Firebase Cloud Messaging). QNAP Cloud servers collect only the connection information, and do not store your event data.@')}$

${_('@You may view your devices that receive event data from QNAP Cloud and delete them anytime on the user interface of QNAP NAS. If you unregister your NAS from myQNAPcloud, the information for the mobile apps will be also deleted.@')}$

${_('@If your NAS with QTS is not initialized or powered up without any usable disks, your NAS will report itself to QNAP Cloud for you to discover and identify the NAS by Cloud Key or Cloud Install website (https://install.qnap.com). We may collect the connection information and basic hardware information of your NAS when your NAS is connected to the Internet and before it is initialized.@')}$

${_('@If you connect to Cloud Install website at the same network of your NAS, your browser may be redirected to the user interface of the NAS, and the initial setting will be conducted via the direct connection between your browser and the NAS without the intervention of QNAP Cloud. However, if you are located in a different network, QNAP Cloud servers will need to route the traffic between your browser and the NAS. Only the connection information is logged by the servers for security operations, while the traffic data only passes through the servers without leaving any traces of its contents. You may choose to cease the initial setting and relocate to the network of your NAS.@')}$

${_('@It is advised to keep your Cloud Key confidential and not to keep your NAS uninitialized for a long time. The connection of an uninitialized NAS to QNAP Cloud servers remain only 24 hours, and after that the data will be deleted.@')}$

${_('@You may install IFTTT Agent and grant IFTTT service access your NAS for receiving event messages from your NAS, like detecting new files in a folder, or for executing actions for your NAS, like download a file from other cloud services to a folder. QNAP Cloud interacts with IFTTT service for authentication and protocol transformation, and the traffic between IFTTT and your NAS is via myQNAPcloud CloudLink servers. Only the connection information is logged by the servers for security operations, while the traffic data only passes through the servers without leaving any traces of the contents. You may disable the connection on the IFTTT web site.@')}$

${_('@QNAP NAS allows you to connect your NAS to 3rd-party services in order to access your data and services in the 3rd-party cloud services. For example, your QTS Notification Center can send event messages via your Gmail account, and Hybrid Backup Sync can continuously synchronize your data between your NAS and your Dropbox.@')}$

${_('@If a 3rd-party cloud service requires you to grant access permissions to QNAP NAS via OAuth protocol, QNAP Cloud provides the connection service (connector.myqnapcloud.com) that facilitates the OAuth operations between your NAS and the 3rd-party cloud service. Once the operations are completed, your NAS can connect to the 3rd-party cloud services directly, without the intervention of QNAP Cloud. The servers collect only the connection information, and do not store the data of the OAuth operations.@')}$

${_('@When you purchase licenses at License Store or myQNAPcloud SSL certificates, we may collect your information of your connecting device and billing information you enter or returned from payment service providers, such as names, billing address, VAT, and payment method. We use the information to complete transactions, generate receipts, report taxes, and for auditing, fraud prevention and legal compliance.@')}$

${_('@We use certified third-party payment services to securely process your payment, and your detailed payment information, such as your credit card number is not processed by our servers. The payment is processed by ECPay if you choose to pay with NT Dollar, and processed by Paypal if you choose to pay with other currencies or with your Paypal account.@')}$

${_('@By deleting your QID, all your purchased items and payment records will be deleted. However, we will remove your transaction history after the minimum storage period based on our legal obligations.@')}$

${_('@When you install a license on a QNAP product@')}$

${_('@Some license products are offered by third-party providers, like McAfee anti-virus software and myQNAPcloud SSL certificates, and they require us to report the device identification information for their billing and auditing purposes. The shared data is strictly restricted only for aggregated statistics, like counting the number of activated licenses of all customers for the product, and none of your QID or device information is shared.@')}$

${_('@You may view the license information on the user interface of your QNAP product or on the License Store website (https://license.qnap.com). By deleting your QID, all your purchased licenses will become invalid. We will remove your transaction history after the minimum storage period based on our legal obligations.@')}$

${_('@AfoBot is a product of QNAP and IEI. The hardware is manufactured by IEI, while the software and the cloud service is offered by QNAP. You need to have a QID account for using AfoBot, and AfoBot is currently available only in certain regions. The cloud services of AfoBot share certain infrastructure with other products, like QID, device registration, and push notification.@')}$

${_('@In order to inform you of important system-wide messages, such as system maintenance, security advices, or updates to the terms and policies of QNAP Cloud, or to inform you of personalized messages, such as your purchases, the registration of your devices, or reset password, based on the services you are using, we may send you messages according to your QID profile settings. Because these messages are not for marketing purposes, and the information is important to your interaction with us, you may not opt out of receiving some of such messages.@')}$

${_('@We may communicate with email as the preferred facility. However, in some cases, such as you provide only phone number or you enable the two-step verification with SMS (Short Message Service), we may send you messages via SMS. You are responsible for keeping your email address and phone number of your QID profile correct in order to receive the messages.@')}$

${_('@We use AWS (Amazon Web Service) to deliver our email to you. For email for system-wide announcements, we may embed tracker in the email in order to track if the announcements are delivered effectively to the users. For SMS, we use Twilio as our service provider, and the SMS messages are pure text.@')}$

${_('@If you are communicating with our support staff via Helpdesk (helpdesk.qnap.com), you may know its privacy policy on the Helpdesk website.@')}$

${_('@Data anonymization refers to a type of data processing that removes or modifies data to make it very difficult or impossible to identify a person or to associate some data to a person. It is an important technique adopted by us, because it allows us to retain important data while keeping your privacy safe and minimizing the risk of security breach.@')}$

${_('@We apply different techniques and techniques of data anonymization based on the sensitivity of the data and the usage of the anonymized data. For example, we may remove the email address in our access logs while retaining the other parts of the logs, such that the logs can still be useful to know the access but there is no way to know who did the access. We may also modify the IP address in our access logs by masking the last byte of the IP address, such that we may still be able to roughly derive the location originating the access but there is no way to trace it back to specific device or person.@')}$

${_('@Data analytics is the process of examining data sets in order to draw conclusions about the characteristics of a group of entities instead of specific entity. It allows us to make more-informed decisions like budgeting and prioritizing features. The data generated from the data analytics is aggregated data and does not contain personal information.@')}$

${_('@We may conduct data analytics based on the data generated directly or indirectly when you interact with QNAP Cloud. For example, we may derive the ratio of preferred languages in our user community based on the settings of preferred language of each QID user. We may also count the number of connections based on the access logs in our servers.@')}$

${_('@In some cases, we may collect your usage data from QNAP products in order to help us understand how we can improve our products, and the collected data may be transferred to QNAP Cloud servers periodically. The data does not contain information that can identify you or your device. For example, the data is about the version of your operating system, the settings of your software, or the number of your access to a feature, and it does not contain hardware serial number, your names, or your contents in the devices. QNAP software will start collecting the data only after receiving your explicit consent, and it provides user interface for you to stop the collection anytime. Because the collected data is anonymized by nature, it is not considered as personal data and thus cannot be exported or deleted.@')}$

${_('@QNAP Cloud may utilize 3rd-party services to help us collect and analyze our data. Currently we utilize GA (Google Analytics) to collect usage data for its websites, and some of our mobile apps embed Fabric (a Google subsidiary) for analytics and crash report analysis. We follow the guidelines of the service providers to anonymize the collected data. We use Google Cloud to store and process the anonymized analytics data. Although the data is anonymized, we consider the as important asset and have policies for protection, retention, and access.@')}$

${_('@It is important for customers to know the geographic location of the data that they have entrusted to a cloud service, especially for companies who operate in highly regulated industries, or in countries with data protection laws.@')}$

${_('@QNAP is a global business, and we may transfer personal information to countries other than the country in which the data was originally collected. However, when we transfer your personal information to other countries, we will protect that information as described in our Privacy Policy.@')}$

${_('@QNAP Cloud services are delivered to our customers in different regions, and we have servers around the globe in order to deliver good performance and reliability. The location of core servers and data is in AWS and Google Cloud Platform data centers in the United States. We also have regional servers in Linode, Digital Ocean, and Google Cloud to serve customers outside China, and located in Alibaba Cloud and west.cn to serve customers in China. All the servers are directly managed by QNAP cloud operation team in Taiwan.@')}$

${_('@In order for our customer service team to help you better utilize our products and troubleshoot issues in your usage, we may share your information to the country where the customer service team who work on your support request is located.@')}$

${_('@Because of the differences in the type and usage of your data, the way data is retained and deleted may be different. You can delete some data whenever you like on the user interfaces of our products, some data is deleted automatically by the predefined policy, and we may retain some data for longer periods of time when necessary. When you delete data, we follow a deletion policy to make sure that your data is safely and completely removed from our servers or retained only in anonymized form.@')}$

${_('@When you delete your data in our system, we immediately start the process of making it inaccessible from any users and programming interfaces. However, in order to protect our users and customers from accidental data loss, and to help us recover from potential disasters with minimized data loss, we may need to briefly delay the deletion or maintain backup for your data. Your data may remain on the systems for up to 6 months until the backup is deleted.@')}$

${_('@Sometimes business and legal requirements oblige us to retain certain information, for specific purposes, for an extended period of time, regardless of your deletion. For example, we need to maintain your payment and license for longer periods of time as required for tax or accounting purposes, and your direct communications with QNAP.@')}$

${_('@In some cases, rather than provide a way to delete data, we store it for a predetermined period of time. For each type of data, we set retention timeframes based on the reason for its collection. For example, we keep non-anonymized access logs at servers for 3 months in case we need to extract detailed information from the logs for troubleshooting our services. The logs are encrypted and guarded with strong access control.@')}$

${_('@As with any deletion process, things like routine maintenance, unexpected downtime, software defects, or failures in data transfer may cause delays in the processes and timeframes defined in this article. We maintain systems designed to detect and remediate such issues.@')}$