LINE Pay Privacy Policy
LINE Pay Taiwan Limited (the “Company”) will process customer information as described below in its services, including the issuance of prepaid payment instruments, payment services such as funds transfer services, and electronic payment services (collectively, the “Services”). The term “customer” as used in this Privacy Policy shall include business operators or individuals that use the Services to provide products and/or services or perform the transactions thereof.
The Company deems the protection of customer information as a priority management issue. In addition to those prescribed within this Privacy Policy, the Company will protect personal information by complying with the Personal Information Protection Act of the Republic of China(“the Act”) in the countries or regions in which it engages in business, and endeavor to appropriately protect customer information in line with this Privacy Policy.
1. Acquisition of Customer Information
The Company will acquire customer information in the Services according to the following methods.
(1) Customer information collected directly from the customer using the Services
• Customer’s registration information
Customer’s name, address, occupation, gender, date of birth, password, phone number, nationality, email address, company name/organization name, division name/title, location of company, and other contact information, information related to the representative, etc., information related to the business description and substantial controlling person, other corporate information, information related to public certificates such as a driver’s license and resident certificate
• Information related to customer’s transactions
Credit card information, information related to the customer’s bank account, and purpose of transactions
• Other information
All information provided from the customer to the Company incidental to the provision of the Services
(2) Customer information collected in relation to the use of the Services
• Cookie information, customer’s status of use of the Services (including access logs, etc.), information regarding customer’s terminal, online activities, location information, information related to customer’s communications (including IP address, browser information, browser language preferences, etc.)
• Information related to the issuance, purchase, transfer, use, remittance, cashing and extinguishment of the Services, payment information, information related to hobbies, preferences, opinions and evaluations, and other information related to the Services and their use, individual number and specific personal information (the customer’s individual number and specific personal information are hereinafter collectively referred to as the “Specific Personal Information, etc.”)
• ID and authentication information, etc. (the customer’s ID and authentication information, etc. are hereinafter collectively referred to as the “Authentication Information”) of websites operated by financial institutions and other third parties (including third parties in a foreign country; hereinafter the same).
(3) Customer information collected from business partners and third parties
• Information such as account balance, transaction history, and usage history collected from third parties such as financial institutions by using the customer’s Authentication Information or through API integration
• All information including personal information provided by business partners, etc. to the Company incidental to providing the Services to the customer
• The Company may collect, from business partners, etc., information such as the customer’s identifiers (internal identifier, advertisement identifier, etc.), one-way encrypted (hashed) email address and phone number, information regarding the customer’s terminal, online activities, location information, information related to the customer’s communication (including IP address, browser information, browser language preferences, etc.) in order to use the same for distributing advertisements from business partners, etc., measuring the effectiveness of advertisements, creating and providing statistical information and so on.
2. Purposes of Use of Customer Information
The Company may use the collected customer information for the following purposes. Furthermore, the Company will not handle the collected customer information beyond the scope of the purposes of use unless the customer’s consent has been obtained or it is otherwise permitted under the Act. The Company will take proper measures so that the customer information will not be used outside the permitted purposes.
(1) For the provision, improvement and development of the Services
• For registering customer information and opening an account in relation to the Services
• For enabling the customer to use the Services smoothly
• For executing transactions related to the customer’s purchase of products and/or services through the Services
• For processing the billing in cases such as the purchase of products and use of paid services
• For analyzing the status of use of the Services, and creating statistical data related to the use of the Services
• For improving the service level of the Services
• For sending materials related to the Services
• For identity verification in cases where the customer uses the Services or makes inquiries
• For answering inquiries from the customer and providing other customer support
• For soliciting, selling, and introducing products and services and performing questionnaire surveys from the Company, LY Corporation, LINE’s financial group companies (meaning LINE Credit Corporation, LINE Securities Corporation, and LINE Xenesis Corporation; hereinafter the same.), foreign companies providing LINE Pay services (meaning LINE Pay Taiwan Limited and LINE Pay (Thailand) Company Limited; hereinafter the same ), and their partner companies
• For drawing lots and sending prizes in campaigns, etc.
• For planning, developing and providing new features or services related to the Services
• For data management and data security of customer information
• For making necessary communications such as important announcements related to the Services
(2) For the prevention of unauthorized use of the Services
• For preventing unauthorized use
• For identity verification and communication in the event of any unauthorized use
(3) For personalization and advertisement distribution
• For analyzing the customer’s transaction history and online activities and information collected from LY Corporation, LINE’s financial group companies, and foreign companies providing LINE Pay services and delivering information based on such analysis, such as information related to the Services that meets the customer’s needs or advertisements of advertisers other than the Company
• For analyzing the customer’s transaction history and online activities and information collected from LY Corporation , LINE’s financial group companies, and foreign companies providing LINE Pay services and providing customized Services to the customer based on such analysis
3. Handling of Sensitive Information
(1) Handling of Sensitive Information
Except for the following cases, the Company will not collect or use Sensitive Information (*) or provide Sensitive Information to any third parties.
(*) The term “Sensitive Information” means special care-required personal information and information on individuals’ medical records, healthcare, genetics, sex life, physical examination and criminal records.
• Cases in which the handling of Sensitive Information is based on the Act:
• Cases in which there is a need to provide Sensitive Information to credit card companies, financial institutions and payment agencies affiliated with the Company for the inspection and criminal investigation of any unauthorized use of the Services
• Cases in which the handling of Sensitive information is necessary for the protection of people's lives, bodies or property
• Cases in which the handling of Sensitive information is especially necessary for the improvement of public hygiene and the promotion of the sound growth of children
• Cases in which there is a need to offer cooperation to a national government organ, local public entity, or a person entrusted thereby in their performance of affairs prescribed in the Act
• Cases in which there is a need to collect, use, or provide to a third party, any Sensitive Information of its employees, etc. concerning their affiliation to or membership in a political or religious group or labor union within the scope necessary for the performance of affairs relating to withholding taxes, etc.
• Cases in which the Company collects, uses, or provides to a third party, any Sensitive Information to the extent necessary for performing the transfer of rights and obligations arising from inheritance procedures
• Cases in which the Company uses any biometric information, which falls under the category of Sensitive Information, based on the consent of the principal for the purpose of identity verification
4. Provision of Customer Information
Except for the following cases, the Company will not provide customer information to any third party.
• Cases in which the customer’s prior consent has been obtained
• Cases based on the Act
• Cases in which the customer breaches the terms of use of the Services and there are sufficient grounds to determine that personal information needs to be disclosed in order to protect the Company’s rights, property or services
• Cases in which there is a need to protect a human life, body or fortune, and when it is difficult to obtain the customer's consent
• Cases in which there is a special need to enhance public hygiene or promote the fostering of healthy children, and when it is difficult to obtain the customer's consent
• Cases in which there is a need to cooperate in regard to a central government organization or a local government, or a person entrusted by them to perform affairs prescribed by the Act, and when there is a possibility that obtaining the customer's consent would interfere with the performance of the said affairs
• Cases in which customer information is succeeded in the Company’s business succession based on merger, company split, business transfer or any other reason
Notwithstanding the above, the Company will not provide Specific Personal Information to any third party, other than in cases based on the Act.
In case that a customer selects a credit card payment as the payment method in the Services, the customer must agree that in order to execute the credit card transaction the Company provides customer information to credit card companies, financial institutions, and our affiliated payment service providers, etc.
5. Disclosure of Customer Information to Contractors
The Company may entrust all or part of the processing of the customer information to a domestic or foreign contractor to the extent necessary to achieve the purposes of use. In that case, the Company will establish a structure to properly manage customer information: complying with the Act in assessing the suitability of contractors, stipulating clauses regarding the duty of confidentiality in the contract and taking other necessary measures, while also ensuring compliance by the contractors with their country’s systems to protect personal information.
For details regarding foreign contractors, please see 7.(2) below.
6. Sharing of Customer Information among Group Companies
The Company will share and jointly use customer information in the following manner.
[Customer information to be shared]
• Customer information (but excluding Sensitive Information) collected by the Company as described in 1. above.
[Scope of recipients]
• LY Corporation , LINE’s financial group companies, and foreign companies providing LINE Pay services
The Company will establish a structure to properly manage customer information: complying with the Act in assessing the suitability of the recipients, stipulating clauses regarding the duty of confidentiality in the contract and taking other necessary measures, while also ensuring compliance by the recipients with their country’s systems to protect personal information.
For details regarding foreign recipients, please see 7.(2) below.
[Recipients’ purposes of use of customer information]
• For achieving the purposes of use indicated in the foregoing “2. Purposes of Use of Customer Information”
• For analyzing the customer’s status of use and creating statistical data at LY Corporation, LINE’s financial group companies, and foreign companies providing LINE Pay services
• For providing, improving, and developing the Services offered by LY Corporation, LINE’s financial group companies, and foreign companies providing LINE Pay services
• For preventing unauthorized use of the Services at LY Corporation, LINE’s financial group companies, and foreign companies providing LINE Pay services
• For personalization and distributing advertisements by LY Corporation, LINE’s financial group companies, and foreign companies providing LINE Pay services.
[Person responsible for management of customer information]
• The Company
7. Storage and Transfer of Customer Information
(1) Storage of customer information)
The Company stores customer information in a data center located in Japan, and uses cloud services, SaaS, etc. of outside business operators located in Japan and the United States. When handling customer information in countries or regions outside of Japan, the Company takes proper security control measures upon comprehending the legal systems of such countries or regions.
(2) Transfer of customer information to foreign countries
In the handling of customer information described in 4. to 6. above, there may be cases where customer information stored in the foregoing data center is accessed from a foreign country and transferred to a foreign company in the following cases.
Even in the foregoing cases, the Company will take measures such as obligating the transferee to perform proper security control based on the service contract, etc. and otherwise managing and supervising the transferee, take proper encryption measures in the access path to the customer information, and take other necessary measures to appropriately protect customer information complying with the Company’s security standards.
• Provision of credit card payment service
In case that a customer selects a credit card transaction as the payment method in the Services, in order to execute the credit card transaction, the Company will provide customer information to credit card companies, financial institutions, and our affiliated payment service providers, etc. (including their contractors) located in the following countries or regions.
Transferees of customer’s credit card information and information related to customer’s transactions:
• CyberSource International, Inc. (the United States)
• Development and operation of system (contractor)
Companies (including group companies and their contractors) located in the following countries or regions may access customer information for the development and operation of the services of LY Corporation and LINE’s financial group companies, and foreign companies providing LINE Pay services. Employees of such companies will access customer information to the extent required to conduct their above-described business.
Transferees of customer’s registration information, information related to customer’s transactions, and information related to customer’s use of the Services:
• LINE Pay Plus Corporation (Korea)
• LINE Financial Corporation (Korea)
• LINE Plus Corporation (Korea)
• Information regarding transferees
The Company will establish a structure to properly manage customer information: complying with the Act in assessing the suitability of the transferees, stipulating clauses regarding the duty of confidentiality in the contract and taking other necessary measures, while also ensuring compliance by the transferees with their country’s systems to protect personal information.
8. Security Control Measures
The Company will endeavor to store and manage customer information in an accurate and up-to-date manner, and take necessary and appropriate security control measures to prevent the leakage, etc. of customer information. The Company will also provide necessary and appropriate supervision regarding employees and contractors (including subcontractors) to handle customer information.
For the security control measures being taken by the LY Group, please see Safety Management Measures for Personal Data.
9. Rights of Customers
(1) Request for notification of purposes of use and disclosure of personal information
Except for the following cases, the customer has a right to request the Company to notify the purposes of use or to disclose personal information by taking the procedures separately prescribed by the Company. )
• Cases in which there is a possibility of harming the data subject or a third party's life, body, fortune or other rights and interests as a result of such notification or disclosure
• Cases in which there is a possibility of seriously interfering with the Company’s proper implementation of its business as a result of such notification or disclosure
• Cases in which such disclosure may result in a violation of the Act
• Cases in which it cannot be confirmed that the person requesting the disclosure of personal information is the data subject
When the customer requests the disclosure of personal information, the customer may be required to pay a disclosure fee according to the procedures separately prescribed by the Company.
(2) Request for correction, addition, deletion of personal information
If, as a result of the disclosure of personal information, the customer determines that the contents of the personal information retained by the Company are not factual, the customer may request the correction, addition or deletion of personal information according to the procedures separately prescribed by the Company. Upon such request, the Company will promptly conduct an inspection to the extent required for achieving the purposes of use, and correct, add or delete the personal information based on such result.
(3) Request for suspension of use and suspension of provision to a third party
The customer may request the Company to suspend the use of personal information or suspend the provision of personal information to a third party based on the Act.
In addition to the above, customers may at any time confirm and correct their registered information such as the email address and password on the service site. While the provision of personal information from the customer to the Company is voluntary, if the Company does not receive the necessary information, there may be cases where the customer is unable to use part of the Services.
10. Information of Former Members
When a customer deletes an account for the Services, the Company will properly handle their customer information according to the Act.
11. Revision of this Privacy Policy
This Privacy Policy may be revised, and the Company will notify any important revisions to the Customer in an easy-to-understand manner.
12. Inquiries
If you have any inquiries regarding this Privacy Policy or have any questions, complaints or inquiries in relation to the handling of personal information in the Services, please contact us via https://contact-cc.line.me/serviceId/11399.
Policy Supplementing LY Corporation’s User Information Provision Policy
LY Corporation will provide the Company with information for use of the Services provided by the Company.
List of Items Added to LINE Pay Privacy Policy
Policy Supplementing LINE Pay Privacy Policy Applicable to Use of Services Provided by LINE Credit Corporation
This supplemental policy will apply to customers using certain services provided by LINE Credit Corporation.
Established on December 16, 2014
Revised on May 31, 2024