At AscendNova, we understand that trust forms the foundation of every successful business relationship. When you choose us for mobile app testing and validation services, you're sharing sensitive information about your applications, user data, and business processes. This privacy policy explains exactly how we handle that responsibility.

We've written this document in plain language because legal jargon shouldn't hide important information about your data. If something isn't clear, please reach out to us directly.

During our mobile app testing services, we collect different types of information depending on your specific needs:

We only collect information that's necessary for delivering quality testing services. If we need additional data for a specific test scenario, we'll always ask for your explicit permission first.

Your data serves specific purposes in our testing workflow. We use collected information to conduct thorough app testing, generate detailed reports about performance and security, and communicate findings with your development team.

Sometimes we analyze patterns across different test projects to improve our testing methodologies, but this analysis never includes personally identifiable information or proprietary business data.

You maintain significant control over your data throughout our partnership. Here's what you can do:

Security isn't just a checkbox for us—it's built into every aspect of our operations. We encrypt all data transfers using industry-standard TLS protocols and store sensitive information in encrypted databases with restricted access.

Our testing environments are isolated from production systems, and we regularly audit our security practices. Every team member undergoes security training and signs confidentiality agreements.

We also maintain cyber insurance and incident response procedures, though we hope never to need them.

Different types of data have different retention periods based on business needs and legal requirements:

We occasionally work with specialized testing tools and cloud infrastructure providers to deliver comprehensive services. These partnerships are carefully vetted, and we never share client data without explicit consent.

When third-party tools are necessary, we use data processing agreements that extend the same privacy protections to these services. You'll always know which external tools are involved in your specific project.

We never sell client information or use it for marketing purposes beyond our direct business relationship.

While we primarily operate within Taiwan, some testing scenarios might require international cloud infrastructure or specialized tools. When this happens, we ensure adequate protection through approved transfer mechanisms and only work with providers that meet our security standards.

You'll be informed if your project requires any international data processing, and we'll explain the specific protections in place.

We review and update this privacy policy annually or when significant changes occur in our data practices. You'll receive notification of material changes via email at least 30 days before they take effect.

Minor clarifications or formatting improvements won't trigger notifications, but we'll always update the "last modified" date at the top of this document.