Privacy Policy
Privacy Policy
Rafa Intelligence Co., Ltd. (“we” or “the Company”) is committed to protecting your personal data and privacy. This Privacy Policy explains how we collect, use, store, share, and protect the information you provide or generate when using the Lava services (hereinafter referred to as “the Service”).
1. Scope of Application
This policy applies to all services provided by Lava, including but not limited to:
- Lava App and its features (registration, matching, messaging, date booking, question interactions, check-ins, etc.)
- Official website and online activity forms
- User support and complaint channels
If a specific feature has its own dedicated privacy notice, that notice shall take precedence.
2. Information We Collect
1. Information You Provide Voluntarily
- Registration Data: phone number, email address, nickname, gender, date of birth, etc.
- Profile Information: photos, videos, interests, self-introduction, value-based Q&A results
- Activity and Interaction Records: chat logs, match history, event participation, check-in data
- Payment Information: tokenized payment credentials for bookings or events (processed via third-party payment gateways)
- Feedback and Communication: customer support records, user feedback, survey responses
2. Information Collected Automatically
- Device Information: IP address, device model, OS version, app version, language settings, etc.
- Usage Behavior: feature usage frequency, swipe history, page views, click events
- Login and Error Logs: login timestamps, system errors, crash reports
- Cookies and Local Storage: used for login sessions, user preferences, and anonymous identifiers
3. Information Collected with Your Consent
- Precise Location Data: If you enable location services, we may use GPS to suggest nearby venues or events.
- Third-Party Login Data: When logging in via Facebook, Google, Apple, or Line, we only access the basic profile information you authorize (such as name, email, profile photo).
3. How We Use Your Information
Purpose | Description |
Provide Core Services | For essential operations such as registration, login, matching, messaging, and date booking |
Security & Fraud Prevention | To verify accounts, prevent fake profiles, and detect malicious activity |
Personalized Recommendations | To suggest potential matches or events based on your behavior and responses |
Customer Support | To respond to inquiries, address issues, and manage complaints |
Event & Marketing Notifications | To send updates, promotions, and content that may interest you (opt-out available anytime) |
Service Improvement & Analytics | To analyze usage trends and enhance service functionality and user experience |
Legal Compliance | To meet data retention and disclosure requirements under accounting, tax, and cybersecurity laws |
4. How We Share Information
We only share personal data with third parties under the following circumstances:
Recipient | Purpose & Conditions |
Third-Party Service Providers | Such as payment processors, cloud services, and push notification providers, only to the extent required and under confidentiality agreements |
Legal Authorities | In compliance with court orders, legal procedures, or official investigations |
Corporate Transactions | In the event of a merger, acquisition, or asset transfer, we will notify users and ensure data protection continuity under this policy |
Other Users | Only for information you choose to make public (e.g., profile pages, event cards); contact info or private content will not be shared without consent |
5. Data Storage & Retention Period
Data Type | Retention Period | Handling Method |
Account & Profile Data | 3 years from last login | Accounts inactive for 3 years will be deactivated and deleted or anonymized |
Chat & Interaction Logs | 2 years | Stored for dispute resolution and security purposes; archived or deleted thereafter |
Booking & Transaction Records | 5 years | Retained in accordance with tax and financial regulations |
Customer Support Records | 3 years | Maintained for investigation purposes; deleted after expiration |
Users may request account deletion via the App’s “Settings” menu. Upon confirmation, data will be erased within 30 days, except where legal obligations apply.
6. Your Rights
You may exercise the following rights regarding your personal data:
- Request access to your personal data
- Request a copy of your data (a reasonable fee may apply)
- Request correction of inaccurate or incomplete data
- Request to stop the collection, processing, or use of your data
- Request deletion of your personal data
To make a request, please email: service@lava.tw
We will respond within 15 business days.
7. Restrictions for Minors
Lava is strictly for use by individuals aged 18 and above. If we discover that a minor has registered, their account and all associated data will be deleted immediately.
8. Data Security Measures
We implement the following safeguards to protect your personal information:
- Encrypted transmission (TLS 1.2 or higher) and encrypted storage (AES-256)
- Access control for employees and regular security training
- Anomaly detection systems and automated blocking of suspicious activity
- Biannual penetration testing to assess and strengthen system security
- In the event of a data breach, we will initiate notification and response procedures within 72 hours
9. Policy Changes
If we make any significant changes to this policy, we will notify you in advance via the Lava App, email, or official announcements. Continued use of the Service after updates implies your acceptance of the new terms.
Legal Basis and Applicable Jurisdiction
- This policy complies with Taiwan’s Personal Data Protection Act, the GDPR (for users in the EU), and platform-specific regulations (e.g., Apple/Google app store requirements).
- In the event of disputes, both parties agree that the laws of the Republic of China (Taiwan) shall govern, and the Taipei District Court shall serve as the court of first instance.
For any questions regarding these Terms, please contact: