Privacy and Data Protection Policy

Last Updated: April 10, 2025

We value your privacy and are committed to safeguarding your personal data. This Privacy and Data Protection Policy outlines how we collect, use, disclose, and protect your information when you visit our website, interact with its features (e.g., dashboards, feedback forms), or use our services.

By continuing to use our website, you agree to the terms of this policy.

1. Types of Information We Collect

• Contact Information: Name, email address, and message content submitted via the Contact Us form.
• Feedback Data: Comments or input submitted through the in-app Feedback Form (for registered users).
• IP Address:
  • Logged with consent for website visitors (via cookies).
  • Automatically recorded for registered users upon accepting our Terms and Conditions.
• Authentication Logs: Collected by Auth0, including login and activity records.
• Technical Information: Browser type, device, operating system, time zone, and referring URLs.
• Usage Data: Page visits, dashboard activity, clickstream data, and session duration.

2. How We Collect Your Information

• Direct User Input: When you contact us or submit feedback via forms.
• Cookies and Analytics Tools: With user consent, for session and analytics purposes.
• Authentication and Login Systems: When you log in to access dashboards via Auth0.
• Dashboard Usage: Through interactions with embedded Tableau visualizations.

3. Cookies and JWT Tokens

We use cookies and JWT tokens to ensure secure functionality and enhance user experience.

Types of Cookies Used:

• Essential Cookies (e.g., JWT Tokens): Used for authentication, session control, and secure dashboard access.
• Session Cookies: Manage login states and navigation.
• Analytics Cookies (with consent): Collect anonymized performance and usage data.

JWT Tokens:

• Secure authentication and access control.
• Preventing unauthorized access to dashboards.
• Storing limited metadata (e.g., last login time) for security purposes.

These tokens do not track users beyond authentication.

4. How Your Information Is Used

• Authenticating and securing user access.
• Operating and improving embedded dashboards.
• Responding to inquiries via the Contact Us form.
• Processing feedback for service improvement.
• Monitoring security, system performance, and usage trends.
• Meeting legal and regulatory requirements.

5. Feedback Form Submission

Registered users may submit feedback via the in-app form. We collect:

• Feedback content (comments, suggestions, etc.).
• Submission metadata (e.g., user ID, timestamp).
• Related technical information.

This information is used to:

• Improve our website, services, and user experience.
• Address bugs, feature requests, or support issues.
• Analyze user satisfaction and service quality.

6. System and Application Logs

Our systems include web applications, dashboards, chat interfaces, and server-side services that may log technical and user activity. These logs may contain:

• IP addresses, session IDs, and user agent data.
• Input submitted via forms or chatbots.
• Timestamps and diagnostic error messages.

Logs are generated and stored on our internal infrastructure. We use them strictly for:

• Platform security.
• Troubleshooting and bug fixing.
• Performance monitoring.
• Internal auditing.

They are not used for advertising or profiling. Logs are stored securely and retained only as operationally necessary.

7. Use of Third-Party Services

We utilize third-party service providers to support platform functionality:

• Auth0 - For user authentication and session security.
• Tableau - For dashboard rendering and interactive data visualization.
• Web Hosting and Analytics Providers - For infrastructure, traffic monitoring, and performance optimization.

All providers are contractually obligated to protect your data and comply with applicable laws.

8. Data Retention Policy

Personal data is retained only as long as necessary to fulfill:

• The original purpose of collection.
• Legal and regulatory obligations.
• Internal operational and audit needs.

This includes logs, form submissions, access data, and metadata.

9. Data Security Measures

We employ multiple safeguards to protect your information, including:

• TLS/HTTPS encryption.
• Role-based access controls.
• Secure authentication protocols.
• Continuous system monitoring.

While we strive for the highest standards, no method of transmission over the internet is completely secure.

10. International Data Transfers

Your personal data may be stored or processed in countries outside your jurisdiction. When applicable, we implement appropriate safeguards in compliance with international data protection regulations.

11. Policy Updates

We may revise this policy periodically. Updates will be reflected by the Last Updated date above. Continued use of our services implies acceptance of the updated policy.

12. Contact Us

If you have any questions or concerns about this Privacy Policy or would like to submit a data access request, please contact:

Data Protection Officer
Email: it@daikai.com
Phone: +65 6863 2856