隱私權政策與服務條款 Privacy Policy & Terms

1. 隱私權政策 (Privacy Policy) 1. Privacy Policy

1.1 我們收集的資訊 1.1 Information We Collect

我們會收集您直接提供給我們的資訊，例如填寫聯絡表單、預約諮詢，或透過第三方平台溝通時。這可能包括您的姓名、電子郵件地址、電話號碼與公司詳情。 We collect information you provide directly to us, such as when you fill out a contact form, book a consultation, or communicate with us via third-party platforms. This may include your name, email address, phone number, and company details.

1.2 我們如何使用您的資訊 1.2 How We Use Your Information

我們使用收集到的資訊來提供、維護與改進我們的服務，包括： We use the information we collect to provide, maintain, and improve our services, including:

• 回應您的評論、問題與請求。 Responding to your comments, questions, and requests.
• 向您發送技術通知、更新、安全警報與支援訊息。 Sending you technical notices, updates, security alerts, and support messages.
• 與您溝通有關 LIYON Global 提供的產品、服務、優惠與活動。 Communicating with you about products, services, offers, and events offered by LIYON Global.

1.3 資料與安全保護 1.3 Data Protection

我們採取適當的技術與組織措施來保護您的個人資訊安全。我們不會出售、交易或租賃您的個人識別資訊給他人。 We implement appropriate technical and organizational measures to protect the security of your personal information. We do not sell, trade, or rent your personal identification information to others.

1A. 醫療特種個人資料補充條款（ProBrain 適用） 1A. Medical Sensitive Personal Data Supplement (ProBrain)

本補充條款適用於使用 ProBrain 產品（AI 診所營運系統）之醫療機構及其病患。ProBrain 處理之資料可能包含個人資料保護法第 6 條所定義之「特種個人資料」（包括醫療、健康檢查相關資料）。 This supplement applies to healthcare institutions and their patients using the ProBrain product (AI clinic operations system). Data processed by ProBrain may include "sensitive personal data" as defined in Article 6 of Taiwan's Personal Data Protection Act (PDPA), including medical and health examination records.

1A.1 資料蒐集之法律依據 1A.1 Legal Basis for Collection

依據個人資料保護法第 6 條第 1 項，醫療特種個人資料之蒐集、處理或利用，須符合下列條件之一： Under Article 6(1) of the PDPA, collection, processing, or use of sensitive medical personal data requires at least one of the following conditions:

• 法律明文規定（如醫療法、傳染病防治法）。Explicit legal provision (e.g., Medical Care Act, Communicable Disease Control Act).
• 公務機關執行法定職務所必要。Necessary for a government agency to perform statutory duties.
• 當事人自行公開或其他已合法公開之個人資料。Data voluntarily made public by the data subject or otherwise lawfully publicized.
• 經當事人書面同意。Written consent from the data subject.
• 為維護當事人之生命、身體、自由或財產上之利益所必要。Necessary to protect the data subject's life, body, freedom, or property interests.

ProBrain 之資料蒐集以「經當事人書面同意」為主要法律依據。醫療機構應於啟用 ProBrain 前，取得病患之書面同意（含電子簽名），告知資料蒐集目的、類別、利用期間、地區、對象及方式。 ProBrain primarily relies on "written consent from the data subject" as the legal basis. Healthcare institutions must obtain written consent (including electronic signatures) from patients before activating ProBrain, informing them of the purpose, categories, duration, regions, recipients, and methods of data use.

1A.2 資料處理架構（BYOC） 1A.2 Data Processing Architecture (BYOC)

ProBrain 採用 BYOC（Bring Your Own Cloud）架構： ProBrain uses a BYOC (Bring Your Own Cloud) architecture:

• 所有病患資料儲存於醫療機構自有的 Google Cloud 帳號中，LIYON Global 不持有、不儲存、不存取任何病患個人資料。All patient data is stored in the healthcare institution's own Google Cloud account. LIYON Global does not hold, store, or access any patient personal data.
• 基礎設施費用由醫療機構直接支付予 Google，帳單寄送至醫療機構。Infrastructure costs are billed directly to the healthcare institution by Google.
• LIYON Global 僅提供系統設定、AI 模型部署與技術支援服務，不接觸原始病患資料。LIYON Global only provides system configuration, AI model deployment, and technical support — without accessing raw patient data.

1A.3 資料類別與用途 1A.3 Data Categories and Purposes

ProBrain 系統可能處理之特種個人資料類別包括： Categories of sensitive personal data that ProBrain may process include:

• 術後追蹤紀錄（療程類型、術後狀態回報、異常通報）Post-operative tracking records (procedure type, post-op status, anomaly reports)
• 病患聯絡資訊（LINE ID、電話，用於 AI 自動關懷訊息發送）Patient contact information (LINE ID, phone, for AI automated care messages)
• 耗材使用紀錄（與特定病患療程關聯之耗材批號與到期日）Consumable usage records (batch numbers and expiry dates linked to specific patient procedures)
• 客戶回訪與行銷標籤（RFM 分群，不含診斷資料）Customer revisit and marketing tags (RFM segmentation, excluding diagnostic data)

上述資料之蒐集目的限於：術後照護品質提升、異常即時攔截、耗材安全管控、合規行銷。不得用於研究、廣告投放或第三方共享。 The above data is collected solely for: post-operative care quality improvement, real-time anomaly interception, consumable safety control, and compliance marketing. It shall not be used for research, advertising targeting, or third-party sharing.

1A.4 資料安全措施 1A.4 Data Security Measures

• 傳輸加密：所有資料傳輸採 HTTPS/TLS 加密。Encryption in transit: All data transfers use HTTPS/TLS encryption.
• 防竄改驗證：每則 AI 發送之訊息附帶 SHA-256 雜湊值，可驗證訊息完整性。Tamper-proof verification: Each AI-sent message includes a SHA-256 hash for integrity verification.
• HITL（Human-in-the-Loop）：高風險操作（如行銷訊息發送）需經人員確認。HITL (Human-in-the-Loop): High-risk operations (e.g., marketing message sending) require human confirmation.
• 九層 AI 降級策略：當 AI 信心不足時，自動降級為人工處理。9-layer AI degradation strategy: When AI confidence is low, automatically escalates to human handling.
• 存取控制：基於角色的存取權限（院長、護理師、行銷人員各有不同權限）。Access control: Role-based permissions (director, nurse, and marketing staff have different access levels).

1A.5 當事人權利 1A.5 Data Subject Rights

依據個人資料保護法第 3 條，當事人就其個人資料享有以下權利： Under Article 3 of the PDPA, data subjects have the following rights regarding their personal data:

• 查詢或請求閱覽。Right to inquire or request access.
• 請求製給複製本。Right to request copies.
• 請求補充或更正。Right to request supplementation or correction.
• 請求停止蒐集、處理或利用。Right to request cessation of collection, processing, or use.
• 請求刪除。Right to request deletion.

病患行使上述權利時，應向其就診之醫療機構提出申請（因資料儲存於醫療機構自有雲端帳號）。醫療機構應於收到請求後 30 日內回應。如涉及 ProBrain 系統技術操作，醫療機構可聯繫 LIYON Global 協助處理。 Patients should submit requests to their healthcare institution (as data is stored in the institution's own cloud account). The institution must respond within 30 days. For ProBrain system technical operations, the institution may contact LIYON Global for assistance.

1A.6 資料保留與刪除 1A.6 Data Retention and Deletion

醫療機構應依據醫療法第 70 條（病歷保存至少 7 年）及個人資料保護法規定，自行制定資料保留期限。ProBrain 系統支援資料到期自動標記與匯出功能，協助醫療機構合規執行資料生命週期管理。服務終止時，所有資料保留於醫療機構自有雲端帳號中，LIYON Global 不保留任何副本。 Healthcare institutions should establish data retention periods in accordance with Article 70 of the Medical Care Act (medical records must be preserved for at least 7 years) and the PDPA. ProBrain supports automatic data expiry tagging and export to assist institutions with compliant data lifecycle management. Upon service termination, all data remains in the institution's own cloud account — LIYON Global retains no copies.