Information We Collect

ShineMotion collects various types of information to provide our financial analysis software and improve your experience. We believe in being completely transparent about what data we gather and why.

Methods of Data Collection

• Direct input when you register for our services or use our financial analysis tools
• Automatic collection through cookies and similar technologies during website visits
• Information from third-party integrations you authorize (accounting software, banks)
• Customer support interactions and feedback submissions
• Marketing communications and survey responses

How We Use Your Data

Your information helps us deliver reliable financial analysis tools and continuously improve our services. Here's exactly how we use the data we collect:

Core Service Provision

• Processing your financial data to generate analysis reports and insights
• Maintaining your account and providing customer support
• Delivering software updates and new feature notifications
• Ensuring data synchronization across your connected financial accounts

Service Improvement

• Analyzing usage patterns to enhance user interface and experience
• Identifying common financial analysis needs to develop new features
• Testing software performance and fixing technical issues
• Conducting research to improve our algorithms and analytical capabilities

Legal and Administrative Purposes

• Complying with financial regulations applicable in Laos and international jurisdictions
• Processing payments and managing subscription billing
• Responding to legal requests and protecting against fraud or security threats
• Maintaining business records as required by law

We operate under the principle of data minimization — we only collect and use information that's necessary for these stated purposes. We don't sell your personal information to third parties, and we don't use your financial data for advertising purposes.

Data Sharing Practices

ShineMotion takes a careful approach to data sharing. We limit sharing to essential business operations and never sell your personal information.

Authorized Third-Party Services

We may share limited information with trusted service providers who help us operate our business:

• Cloud Infrastructure Providers: For secure data storage and software hosting
• Payment Processors: To handle subscription payments and billing (they receive only necessary payment information)
• Customer Support Tools: To provide efficient technical assistance and resolve issues
• Analytics Services: For understanding software usage patterns (anonymized data only)

Financial Institution Integrations

When you connect your bank accounts or accounting software to ShineMotion, we use secure, encrypted connections. We only access the specific financial data you authorize and never store your banking credentials.

Legal Disclosure Requirements

We may disclose your information when required by law, such as:

• Responding to valid legal requests from authorities in Laos or other jurisdictions
• Protecting our legal rights or defending against legal claims
• Preventing fraud, security breaches, or other harmful activities
• Complying with financial reporting regulations

Security Measures

Protecting your financial information is our top priority. We implement multiple layers of security to safeguard your data against unauthorized access, theft, or misuse.

Technical Security Measures

• Encryption: All data is encrypted using AES-256 encryption in storage and TLS 1.3 during transmission
• Access Controls: Multi-factor authentication and role-based access limits who can view your information
• Network Security: Firewalls, intrusion detection systems, and regular security monitoring
• Secure Infrastructure: We use enterprise-grade cloud services with proven security track records
• Regular Backups: Encrypted backups ensure data availability without compromising security

Operational Security Practices

• Regular security audits and vulnerability assessments
• Employee training on data protection and privacy best practices
• Incident response procedures for potential security breaches
• Limited access to customer data on a need-to-know basis
• Secure development practices including code reviews and testing

Your Role in Security

While we implement robust security measures, you also play an important role in protecting your information:

• Use a strong, unique password for your ShineMotion account
• Enable two-factor authentication when available
• Keep your browser and devices updated with latest security patches
• Log out of your account when using shared computers
• Report any suspicious activity to our support team immediately

In the unlikely event of a data breach that affects your information, we will notify you within 72 hours and provide clear information about what happened and what steps we're taking to address it.

Your Rights and How to Exercise Them

You have significant control over your personal information. We respect your privacy rights and make it easy to exercise them through your account settings or by contacting our support team.

Response Timeframes

We aim to respond to all privacy requests within 15 business days. Complex requests may take up to 30 days, and we'll keep you informed of our progress. There's no charge for most requests, though we may charge a reasonable fee for excessive or repetitive requests.

Data Retention and Deletion

We keep your information only as long as necessary for legitimate business purposes, legal requirements, or as long as you maintain an active account with us.

Active Account Data

• Profile Information: Retained while your account is active and for 2 years after account closure
• Financial Analysis Data: Stored for the duration of your subscription plus 5 years for business continuity
• Usage Analytics: Aggregated data retained indefinitely; individual usage data deleted after 3 years
• Customer Support Records: Maintained for 4 years to improve service quality

Inactive Account Handling

If your account remains inactive for 18 months, we'll contact you about potential data deletion. After 24 months of inactivity, we begin the deletion process while preserving any information required for legal compliance.

Legal Retention Requirements

Some information must be retained longer due to legal obligations:

• Financial transaction records: 7 years as required by Laos business law
• Tax-related documentation: 6 years or as specified by applicable tax authorities
• Audit trails and compliance records: 5 years for regulatory purposes

Secure Deletion Process

When we delete your data, we use secure deletion methods that make recovery impossible. Backup copies are also systematically removed according to our data retention schedule.

International Data Transfers

As a technology company serving customers internationally, some of your data may be processed or stored in countries outside of Laos. We ensure appropriate protections are in place for all international transfers.

Transfer Safeguards

• We only use cloud providers and service partners with strong data protection commitments
• All international transfers are protected by encryption and secure transmission protocols
• We implement contractual safeguards with third-party processors to ensure data protection
• Regular audits verify that international partners maintain appropriate security standards

Data Processing Locations

Your information may be processed in the following regions, all chosen for their strong data protection frameworks:

• Southeast Asian data centers for optimal performance and regulatory alignment
• European Union facilities that comply with GDPR standards
• United States servers operated by privacy-certified cloud providers

Regardless of where your data is processed, we maintain the same high standards of protection and your privacy rights remain unchanged.

Cookies and Tracking Technologies

We use cookies and similar technologies to improve your experience with ShineMotion, remember your preferences, and analyze how our software is used.

Types of Cookies We Use

• Essential Cookies: Required for basic functionality like login sessions and security features
• Preference Cookies: Remember your settings and customization choices
• Analytics Cookies: Help us understand usage patterns and improve our software
• Performance Cookies: Monitor system performance and identify technical issues

Managing Cookie Preferences

You can control cookie settings through:

• Your browser settings to block or delete cookies
• Our cookie preference center in your account settings
• Opting out of analytics tracking while maintaining essential functionality

Note that blocking essential cookies may affect core software functionality, but you can always disable analytics and preference cookies without impacting your ability to use ShineMotion.

Third-Party Tracking

We don't allow third-party advertising networks to track you on our platform. Any third-party services we use (like customer support tools) are bound by strict privacy agreements and can only access information necessary for their specific function.

Third-Party Services and Integrations

ShineMotion integrates with various financial institutions and business software to provide comprehensive analysis capabilities. We maintain strict standards for all third-party relationships.

Financial Institution Connections

When you connect your bank accounts or financial services:

• We use read-only access through secure, industry-standard APIs
• Your banking credentials are never stored on our systems
• You can disconnect any integration at any time through your settings
• We only access transaction data you specifically authorize

Business Software Integrations

• Accounting Software: QuickBooks, Xero, and other platforms for comprehensive financial analysis
• Payment Processors: Stripe and similar services for subscription management
• Customer Support: Secure help desk systems to provide technical assistance
• Cloud Storage: Enterprise-grade storage solutions for data backup and synchronization

Vetting Process for Partners

Before integrating any third-party service, we evaluate:

• Their data protection policies and security measures
• Compliance with relevant privacy regulations
• Track record for data security and customer protection
• Contractual commitments to protect your information

Policy Updates and Changes

We periodically update this privacy policy to reflect changes in our services, legal requirements, or privacy practices. We're committed to keeping you informed about any significant changes.

Types of Updates

• Minor Updates: Clarifications, contact information changes, or small wording improvements
• Significant Changes: New data collection practices, changes in data sharing, or updated rights and procedures
• Legal Updates: Changes required by new regulations or legal requirements in Laos or internationally

How We Notify You

For significant policy changes, we will:

• Send email notifications to your registered account email at least 30 days before changes take effect
• Display prominent notices in your ShineMotion dashboard
• Update the "Last Modified" date at the top of this policy
• Provide a summary of key changes in our notification

Your Options After Updates

If you disagree with policy changes, you can:

• Adjust your privacy settings to limit data collection or sharing
• Export your data before the changes take effect
• Contact our support team to discuss your concerns
• Close your account if the changes are unacceptable to you

Continuing to use ShineMotion after receiving notification of policy changes indicates your acceptance of the updated terms.