Chengdu Yaoyuan Technology Co. , Ltd. (hereinafter referred to as"We", English name: Chengdu Yaoyuan Technology Co. , Ltd.) understands the importance of personal information to you and is committed to protecting your personal information security and legitimate rights and interests. This privacy policy describes how we collect, use, store, share, transfer, and publicly disclose your personal information, as well as the rights and protections you enjoy. This policy applies to the processing of personal information provided through our website (yaoyuantechweb.com ) and related technical services (including technical development, technical consulting, technical services, etc.) .
Please read and understand this privacy policy carefully before using our services. If you do not agree with this policy, please do not use our services, it shall be deemed that you have fully understood and agreed to the policy in its entirety.
Definition and scope of application
1.1 core definitions
-1.1. Personal information: means information recorded electronically or otherwise which, individually or in combination with other information, is capable of identifying a particular natural person or of providing information about the activities of a particular natural person, including but not limited to name, identity document number, contact information, address, location information.
- 1.1.2 sensitive personal information: means personal information that, if disclosed, is unlawfully provided or misused, is likely to endanger the safety of the person or property, harm a person's reputation, physical or mental health or infringe on other significant legitimate rights and interests of the person, including but not limited to identity card number, bank account information, biometric information, precise location information, etc. .
-1.1.3 data controller: refers to the organization or person who has the right to determine the purpose and method of personal information processing. In this context, it refers to Chengdu Yaeyuan Technology Co. , Ltd. .
- 1.1.4 data subject: refers to the specific natural person to which the personal information refers, namely you.
1.2 scope
-1.2.1 this policy applies to all our personal information processing activities through the official website and related services, this includes, but is not limited to, scenarios where you register for an account, provide consulting services, submit requirements, and use technical development services.
-1.2.2 this policy does not apply to products or services provided to you by third parties through our services. Third parties' actions with respect to personal information are subject to their own privacy policies and we are not jointly and severally liable.
-1.2.3 if we have a separate privacy policy for a particular service, this policy shall apply in preference to the processing of personal information on that service.
2. Collection and use of personal information
2.1 types of personal information collected
-2.1.1 basic identity information: When you register for an account or consulting service, we may collect your name, mobile phone number, e-mail address, company name, etc. , for identity verification, service communication, and demand response.
-2.1.2 service related information: depending on the specific need for technical services, development or consulting, you may need to provide us with project related information, this includes, but is not limited to, project requirements documents, contact information, relevant technical parameters, etc. . If third-party collaboration is involved, the necessary contact information for the collaborating parties may be collected (you need to ensure that you have obtained third-party authorization) .
- 2.1.3 devices and log information: When you visit our website, we may use cookies and similar technologies to collect information about your device model, operating system version, browser type, IP address, access time, page view history, click history, etc. , used to optimize the official website performance, statistical traffic, security services.
- 2.1.4 sensitive personal information: only where necessary for the provision of the service and with your express consent, we collect sensitive personal information (such as identity documents for qualification checks and bank account information for billing purposes) with additional encryption protection.
2.2 legal basis for collection and use
-2.2.1. Obtain your express consent: we will obtain your prior express consent, in writing or online, for situations such as the collection of sensitive personal information or the presentation of marketing information to you.
-2.2.2 the collection of project requirements for the provision of technology development services to you and the collection of account information for the purpose of completing the settlement of fees are necessary for the performance of the service contract between the parties.
- 2.2.3 compliance with legal and regulatory requirements, such as the collection or provision of relevant personal information in fulfilment of statutory obligations pursuant to lawful administrative and judiciary requests.
- 2.2.4 protection of significant lawful interests of you or others: in emergency situations, in order to protect your or other natural persons' life, property and other significant lawful interests, and can not obtain your consent in time to collect the necessary information.
2.3 restrictions on information usage
2.3.1 We Will Use Your Personal information only for the purposes specified in this policy, and we will obtain your express prior consent for the use of the information for other purposes not specified in this policy, and re-inform the purpose and scope of use.
2.3.2 we follow the"Least necessary" principle and collect and use only the personal information necessary to provide the service, and not more than is necessary to collect the information.
3. Use of Cookie and similar technologies
3.1 purpose
3.1.1 to enhance your experience, we will use cookies and local storage to remember your login status (e.g. logged-in account information) , preferences (e.g. language selection) , etc. , to avoid repeated input of information; at the same time for the statistics of official website traffic, analysis of user behavior habits, to optimize the official website function and service quality.
3.2 control
3.2.1 you can manage or disable cookies through your browser's settings, which are available in the browser's help center. If you disable cookies, some of the services that rely on cookies, such as automatic login and personalized preference preservation, may not work properly.
3.2.2 we do not use cookies to collect more personal information than is necessary, and we use protection measures such as encryption to protect information collected by cookies.
4. Storage of personal information
4.1 storage locations
4.1.1 the personal information we collect is mainly stored in the Ali cloud servers in the Chinese mainland territory, which meets the geographical requirements for data storage under international regulations such as China's and the EU's GDPR. If you need to transfer personal information overseas, we will obtain your explicit consent in advance, and ensure data security through data exit security assessment, signing standard contracts and other compliance methods.
4.2 storage life
4.2.1 we store personal information only for the minimum period necessary for the purposes of the service, following the"Storage limit" principle: the account information is retained for 2 years after you close the account; Service-related information (e.g. project requirements, communication records) will be retained for 3 years after completion of the service (compliance with contract retroactivity and anti-money laundering regulations) ; equipment and log information will be retained for 6 months. After the expiration date, we will delete or anonymize your personal information in an irreversible manner (such as encryption shattering) .
4.3 storage security measures
- 4.3.1 the technical level: the use of AES-256 encryption technology to encrypt the storage of personal information, the deployment of firewalls, intrusion detection systems and other protective measures to defend against malicious attacks; the implementation of logging sensitive operations, ensure that the operation is traceable.
- 4.3.2 management level: establishment of an access control mechanism that only authorizes access to personal information and is strictly necessary for the performance of their duties; regular training for employees on data security and privacy protection; Sign a non-disclosure agreement.
5. Sharing, transfer and public disclosure of personal information
5.1 sharing
5.1.1 we will not freely share your personal information with any third party. We will only share your personal information if:
- 5.1.1.1 shared with a third party of your choice with your express consent;
- 5.1.1.2 sharing with authorized partners: for the purpose of completing payment services, information related to the transaction (without the full bank card number) with third-party payment agencies; for the purpose of conducting data analysis; SHARE anonymized access data (no personally identifiable information) with Google Analytics
- 5.1.1.3 to be shared with relevant authorities in accordance with legal and regulatory requirements and administrative or judiciary legal directives;
-5.1.1.4. Share with affiliates: share only necessary information, and affiliates are bound by this policy to re-obtain your consent for any change in purpose.
5.2 transfer
5.2.1 we do not transfer your personal information at will, only in the following circumstances:
- 5.2.1.1 with your express consent;
- 5.2.1.2 where a transfer of assets such as a merger, acquisition or liquidation is involved, the transferee will be required to continue to fulfil its personal information protection obligations or be required to re-obtain your consent.
5.3 public disclosure
5.3.1 we will publicly disclose your personal information only with your express consent or as required by law and regulations, and will protect your interests by desensitization and other means.
6. Your right to personal information
According to GDPR and China's"Personal Information Protection Law" and other regulations, you enjoy the following personal information rights, we will provide you with a convenient way to exercise:
6.1 access
6.1.1 you can access your account information, service history and other personal information through the"Personal Center" on the official website; for a more detailed copy of the information, you can email support@yaoyuantechweb.com. We will reply to your request within 30 days.
6.2 right of correction
6.2.1 if you find that your personal information is incorrect or incomplete, you can correct your basic information through the"Personal Centre", or contact us by email to correct other information. We will verify and process it within 3 working days.
6.3 right to delete
6.3.1 you may apply by email to have your personal information deleted, and we will complete the process within 15 days if the information is out of storage, we have used it in violation of our agreement, or you have cancelled your account. Except for information that laws and regulations require to be retained.
6.4 withdrawal of consent
6.4.1 you may withdraw your consent to the collection, use, and sharing of personal information at any time by contacting us via our privacy settings website or by email. After the withdrawal of consent, we will stop the relevant processing activities, but does not affect the previous consent-based legal processing.
6.5 restriction of discretion
6.5.1 if you believe that there are errors, illegal processing, etc. , you may apply to restrict us from processing your personal information, and we will suspend processing after verification.
6.6 right to data portability
6.6.1 you may apply to export your personal information in a structured, machine-readable format, which we will provide within 30 days.
7. Protection of personal information of minors
7.1 our services are mainly for adults. If a minor (under the age of 16) is using our services, he or she must be accompanied by a guardian to read this policy and obtain the Guardian's express consent.
7.2 we will provide special protection to the personal information of minors. If guardians apply to enquire, correct or delete the personal information of minors, they will be provided with proof of guardianship.
8. Privacy Policy Update
8.1 updating mechanism
8.1.1 if we need to update this policy due to changes in laws and regulations, changes in service functions, etc. , an update notice will be posted prominently on the front page of the official website, indicating the effective date. We will inform you by pop-up window, email and so on for the major updates, such as the expansion of collection scope and the change of rights, which will take effect only with your consent.
8.2 historical version queries
8.2.1 a historical version of this policy can be found on the privacy policy-historical version page of our website. We will retain the previous version for at least 3 years.
9. Contact us
9.1 if you have any questions, complaints or suggestions regarding this policy, or need to exercise your right to personal information, you may contact us by:
- 9.1.1 name of company: Chengdu Yaoyuan Technology Co. , Ltd.
- 9.1.2 official website: yaoyuantechweb.com
- 9.1.3 support@yaoyuantechweb.com
9.2 we will verify and respond to your feedback within 30 days of receipt. If you are not satisfied with the results, you can complain to your local data protection regulator.
10. Other articles
10.1 the establishment, entry into force, implementation, interpretation and dispute resolution of this policy shall be governed by the Law of the People's Republic of China. If you have a dispute with us over this policy, it should first be settled through consultation, or, failing that, submitted to the Chengdu Arbitration for arbitration.
10.2 this policy is our core agreement with you regarding the protection of your personal information. If other terms of service are inconsistent with this policy, this policy shall prevail.