Back Home

Privacy Policy

This Privacy Policy explains how ToCard collects, uses, shares, and protects personal data when you use our website, products, and related services.

Last Updated

  • March 3, 2026

Information We Collect

  • Account data: identifiers such as email address and authentication-related metadata.
  • Usage data: logs, device/browser information, and feature interaction events.
  • User content: URLs, topics, prompts, and card content submitted to use the service.
  • Support data: messages, attachments, and diagnostic details you provide in support requests.

How We Use Information

  • Provide, maintain, and secure core product functionality.
  • Generate, store, and improve AI-assisted outputs and product performance.
  • Respond to support requests and communicate important service updates.
  • Detect abuse, enforce policies, and comply with legal obligations.

Legal Bases and Consent

  • Depending on your region, we rely on contract necessity, legitimate interests, legal obligations, or consent.
  • Where consent is required for specific processing (such as certain cookies), you may withdraw it at any time.
  • Withdrawal does not affect the lawfulness of processing performed before withdrawal.

Data Sharing

  • Service providers: hosting, analytics, security, and operational vendors under contractual safeguards.
  • Legal and compliance: when required by law, regulation, or valid legal process.
  • Business transactions: in connection with mergers, financing, or asset transfers, subject to applicable protections.
  • We do not sell personal data in exchange for direct monetary payment.

Data Retention and Security

  • We retain data for as long as necessary to provide services, resolve disputes, and meet legal requirements.
  • Retention periods vary by data type, account status, and legal context.
  • We use reasonable technical and organizational measures to protect data, but no system is 100% secure.

Your Rights

  • Depending on applicable law, you may request access, correction, deletion, portability, restriction, or objection.
  • You may also request account closure and deletion of eligible personal data.
  • To submit a request, contact support@tocard.cn with sufficient details for verification.

Children's Privacy

  • ToCard is not intended for children under the minimum age required by applicable law in your jurisdiction.
  • If you believe a child submitted personal data, contact us and we will take appropriate action.

International Transfers and Policy Changes

  • Your information may be processed in jurisdictions different from your own, subject to applicable safeguards.
  • We may update this Privacy Policy from time to time.
  • If we make material changes, we will update the date above and, where required, provide additional notice.