O-KAM Pro隐私政策English

Below is the English translation, preserving the original structure and content as closely as possible.

**Preface**

This product is a software-and-hardware integrated product provided by Shenzhen Weipai IoT Intelligent Technology Co., Ltd. (hereinafter referred to as “we” or the “Company”). Smart hardware devices include, but are not limited to, the smart hardware device of this product (hereinafter referred to as the “Camera”) and the smart doorbell hardware device (hereinafter referred to as the “Doorbell”). After binding with the mobile client software “Xiaoying Kankan” (hereinafter referred to as the “APP”), you may control the smart hardware devices through the APP and view videos captured by the smart hardware devices in real time and historical recorded videos on the APP. At the same time, we also provide image and video event alarms, sound event alarms, and voice intercom functions through the APP. Thank you very much for your trust in us. We are fully aware of the importance of personal information to users, and we also understand that providing effective protection for users’ personal information is the cornerstone of the healthy and sustainable development of our business. Thank you for using and trusting our products and services. We know that this trust has been hard-earned, and we will protect your personal information in accordance with mature industry security standards by adopting corresponding security protection measures so as to make this trust even stronger.

This Privacy Policy will help you understand the following:

I. How We Collect and Use Your Personal Information

II. How We Store Your Personal Information

III. How We Share, Transfer, Account-Ban, and Publicly Disclose Your Personal Information

IV. How We Protect Your Personal Information

V. How We Use Cookies and Similar Technologies

VI. Your Rights to Manage Personal Information

VII. Protection of Minors’ Personal Information

VIII. Scope of Application of the Privacy Policy

IX. Changes and Revisions to the Privacy Policy

X. How to Contact Us

XI. Effectiveness of the Privacy Policy

We hope to explain to you through this Privacy Policy how we collect, use, store, share, and transfer your personal information and the information of smart hardware devices when you use this product APP to manage smart hardware devices, as well as the ways we provide for you to access, update, delete, and protect such information. Before using the APP, please be sure to carefully read and understand this Privacy Policy, and use our products or services only after confirming that you fully understand and agree to it. Once you begin using the products and services of this product, it means that you have fully understood and agreed to this Policy, and agree that we collect, use, store, and share your relevant information in accordance with this Privacy Policy. If you have any questions, comments, or suggestions regarding the content of this Policy, you may contact us through the various contact methods provided in this Privacy Policy.

**I. How We Collect and Use Your Personal Information**

Purpose

In accordance with the requirements of laws and regulations, and following the principles of lawfulness, legitimacy, necessity, and good faith, we collect and use your personal information only for the purpose of realizing the functions of the “Xiaoying Kankan” products and services you choose to use.

Please note:

Due to differences in technical implementation methods (different mobile operating systems), the scope of personal information involved or the methods of collection under different forms of application software may vary. If the actual form of this software or its functions you use is not entirely consistent, the actual use shall prevail.

We will collect and use your personal information as described in this Privacy Policy. Among them, sensitive information relating to you will be involved, including the facial recognition features of you and your family members, voiceprint information, location information, and the purchase and consumption records of this product. For the purposes and uses of collecting and using such sensitive information, please refer to the functional description section below. Once leaked, illegally provided, or abused, sensitive personal information may endanger personal and property safety and may easily cause damage to personal reputation and physical and mental health. Therefore, we will adopt compliant technologies to encrypt/store the sensitive information that you explicitly consent to and voluntarily provide, so as to protect the security of your personal information.

We do not indirectly obtain your personal information through other channels such as sharing, transfer, or collection of public information. If in the future it becomes necessary to indirectly obtain your personal information through other channels, we will only obtain the minimum amount of information necessary to realize the business functions of the product or service, and will clearly inform you and seek your express consent before collecting and using it. At the same time, before collecting information, we will ensure the legality of the information source and understand the scope of the authorization and consent already obtained by the provider of personal information for the processing of such personal information, including the purpose of use and the authorized consent for transfer, sharing, and public disclosure. If the personal information processing activities required for our business exceed such scope of authorization and consent, we will obtain your express consent within a reasonable period after obtaining the personal information or before processing the personal information.

The details of the purposes and uses for which we collect and use your information are as follows:

**(I) To Realize the Core Functions of This Product**

Core functions refer to the basic functions that support the normal operation of the APP and the provision of services. If you do not agree to our collection and use of the personal information necessary to provide you with services, you will not be able to use this product.

Information collected through account registration

After you install this product APP on your mobile phone, you need to register or log in to our account on the APP before use. When registering our account, you need to provide your mobile phone number and set an account password, or use the one-tap login function to register and log in. Based on our cooperation with telecommunications carriers, when you use the “One-Tap Login” function, the carrier will, with your express consent, send your mobile phone number to us so that we can provide you with convenient login services. If you refuse to provide your mobile phone number, you will not be able to use the “One-Tap Login” method to register and log in to our account, but this will not affect your registration and login through other methods, nor will it affect the normal use of other functions. You may modify your avatar, nickname, and password through “Me -> Modify Personal Information”.

When you cancel our account, we will stop using and delete the above information or anonymize your personal information, unless otherwise provided by laws and regulations.

Binding smart hardware devices

After you log in to the APP, you may connect and bind the APP to smart hardware devices through acoustic sensing. To realize the binding between the APP and smart hardware devices, we need to obtain your location information (used to obtain the Wi-Fi list), Wi-Fi network information, the on/off and network connection status of the smart hardware devices and the mobile phone, smart hardware device model, mobile carrier, mobile operating system and version, mobile phone model, and the local storage space of the mobile phone. The above information will be uploaded to our company’s servers to prevent access to and management of smart hardware devices by identities other than yourself, thereby better protecting the security of your information. You may unbind smart hardware devices and delete all your personal information related to the smart hardware devices through “Settings -> Unbind and Delete This Camera” and “Settings -> Unbind and Delete This Doorbell”.

Viewing video footage captured by smart hardware devices

After binding smart hardware devices, you may view real-time video footage and historical recorded videos captured by the smart hardware devices through the APP. You may also save the videos locally or share them with friends through third-party applications. When you share videos with friends through third parties, we will not obtain any information about your third-party applications, including related account information. When your mobile phone is connected to a Wi-Fi network, logged in to the APP, and you have purchased the “Cloud Storage” service or inserted a memory card into your mobile phone, you may view and manage historical video records captured by the smart hardware devices through “Cloud Storage” and “TF Card Recording” in the APP. When you use the “Cloud Storage” service, provided that the smart hardware devices are enabled and connected to Wi-Fi, we will encrypt and upload all videos recorded by the smart hardware devices to our company’s servers, so as to synchronize them to different devices and protect the video files. Such video files are retained for only 7 days. If you use the “Card Recording” service, the videos captured by the smart hardware devices are stored only locally and will not be uploaded to our servers.

Please note that the videos recorded by smart hardware devices may capture the facial features of you, your family members, or third-party individuals. In order to protect the privacy information and privacy rights of all parties, please read and understand the “Disclaimer Agreement for This Product” through “Me -> General Settings -> About” when installing, using, and controlling smart hardware devices through the APP, and fully understand the responsibilities, obligations, and rights of both you and us. Videos from smart hardware devices are important privacy information of you and your family. If uploaded, we will strictly encrypt and store them on our servers, will not use the recorded videos for any other purpose, and will not share them with any third party.

Controlling smart hardware devices

After binding smart hardware devices, you may control the functional services of the camera through “Camera -> Settings” in the APP, including camera naming, real-time preview, enabling alarms, push notifications, albums, or control the functions of the doorbell through “System Settings”, including the doorbell monitoring range, enabling loitering alarms, tamper-removal alarms, and receiving push messages related to the doorbell. The information you set and provide will be uploaded to our servers as instructions for the smart hardware devices, so as to realize control over the smart hardware devices.

4. Message Center function. This function provides one month of around-the-clock camera-recorded videos and playback, provided that the camera is turned on. You may set the functions of the Message Center in “Me -> Camera Settings -> Motion Detection Alarm”, including detection period, sensitivity, and message type. At the same time, you may set the message reminder method through “Me -> Motion Detection Alarm -> Reminder Method”. To receive message reminders in a timely manner, you need to enable system notification permissions and allow background running. Your settings information and the related information you provide will be uploaded to our servers to send relevant instructions to the camera. After turning it off, we will no longer provide you with alarm services or message reminders, but this will not affect your use of other functions.

Special Reminder

According to Article 214-1 of the Criminal Law of the People’s Republic of China and the relevant provisions of Article 1032 of the “Mingfa Code”, we kindly remind you:

It is strictly prohibited to install any form of video recording or audio recording equipment in spaces involving the privacy of others or personal privacy, such as hotel rooms, changing rooms, bathrooms, and bedrooms.

Acts such as secretly photographing or peeping into the privacy of others may constitute the crime of infringing citizens’ personal information or the crime of illegally using special equipment for eavesdropping or secret photographing, and may be subject to criminal penalties of up to seven years of fixed-term imprisonment.

**(II) To Realize the Additional Functions of This Product**

Additional functions refer to service functions other than core functions and third-party functions, which require you to choose independently whether to enable them. For functions that you do not enable, we will not collect your personal information. At the same time, you may disable the additional functions through the deactivation paths mentioned below. After disabling them, we will no longer collect or use your personal information, and this will not affect your use of the core functions of the APP.

1. Screenshot recording. This function allows you to take screenshots of videos when viewing videos recorded by the camera. You may view the screenshot recordings and photos in “Me -> Album”. Your screenshot recordings will be uploaded to the server for synchronized viewing across different devices. We will not use your screenshot recordings for any other purpose, nor will we share them with any third party.

2. Human body detection. We will identify the facial features of persons recorded by smart hardware devices to realize alerts for abnormal movements by strangers and to protect the safety of your family and household. You may view the list of persons who appeared in front of the smart hardware devices (especially the doorbell) and were captured in the past two days, along with related recordings. At the same time, you may annotate family members and friends who frequently appear in front of the camera so as to better monitor abnormal movements by strangers.

3. Sharing smart hardware devices. You may invite friends to share smart hardware devices through the QR code for sharing smart hardware devices. When you share the QR code for smart hardware devices with friends, we will not obtain any information about your account.

After the contact accepts the invitation, they may only view the real-time footage recorded by the smart hardware devices and all alarm message records at any time. You may manage the list of invited family members in “Settings -> Device Sharing”.

4. Purchasing Cloud Storage. Cloud Storage provides you with the functional service of watching and saving historical videos captured by smart hardware devices through the APP at any time. To use this function, you need to purchase Cloud Storage. When you choose to purchase and pay for a Cloud Storage package service for smart hardware devices, you may make payment through third-party payment methods (including WeChat and Alipay). We only obtain the type of Cloud Storage package you purchase, the smart hardware devices you select, and the status information of whether the payment is successful, so as to provide you with related Cloud Storage services, and we will not obtain any information from the third-party payment account.

**(III) To Realize the Third-Party Functions of This Product**

Third-party functions refer to functions provided by third-party software and service providers. Only for lawful, legitimate, necessary, specific, explicit purposes and for the purposes stated in this Privacy Policy, and only with your express authorization and consent, will we share necessary user data with third parties in order to provide you with related services. We ensure that third parties will not use the shared information for any other purpose. At the same time, when you choose to use third-party functions and services, you need to provide your personal information in accordance with the requirements of the third party. The information you provide is uploaded directly to the third party’s servers. We will neither obtain nor mutually share with the third party any information about you personally. Before using third-party products, please carefully read the relevant agreements and policies of the third-party products and comply with the third-party service agreements in the course of using their product functions.

**(IV) Invocation of Device Permissions**

In the process of providing services, this product APP will invoke certain device permissions on your mobile phone. Below are the business functions corresponding to the permissions invoked by the APP, the purposes of invoking such permissions, and whether we ask you before invoking them. You may choose to turn off some or all permissions in your device settings, thereby refusing the APP to collect corresponding personal information. On different devices, the display and deactivation methods of permissions may vary. Please refer to the instructions or guidance of the device and system developer. Please note that enabling any permission means that you authorize us to collect and use the relevant personal information to provide you with corresponding services, and disabling any permission means that you have withdrawn the authorization. We will no longer continue to collect and use the relevant personal information based on the corresponding permission, and will also stop providing you with the corresponding service. However, your act of disabling permissions will not affect the information collection and use previously carried out based on your authorization.

Device Permission: Phone permission

Corresponding Business: Core functions

Purpose of Invoking the Permission: For risk control and operational security assurance

Whether We Ask: Yes

Whether the User Can Disable the Permission: Yes

Device Permission: Location permission

Corresponding Business: Core functions

Purpose of Invoking the Permission: To obtain the list of Wi-Fi networks at your location and enable smart hardware devices to connect to the Wi-Fi network you select

Whether We Ask: Yes

Whether the User Can Disable the Permission:

Device Permission: Storage permission

Corresponding Business: Core functions

Purpose of Invoking the Permission: Local storage on the mobile phone of videos and images captured and recorded by smart hardware devices

Whether We Ask: Yes

Whether the User Can Disable the Permission: Yes

Device Permission: Camera permission

Corresponding Business: Additional functions

Purpose of Invoking the Permission: To add or share smart hardware devices by scanning QR codes

Whether We Ask: Yes

Whether the User Can Disable the Permission: Yes

Device Permission: Microphone permission

Corresponding Business: Additional functions

Purpose of Invoking the Permission: Intercom calls

Whether We Ask: Yes

Whether the User Can Disable the Permission: Yes

**(V) Improving Our Products and Services**

Product improvement and optimization. In order to continuously improve our products, eliminate and reduce product crashes, and provide you with better product functions and services, we will obtain the following information about your mobile phone and the bound smart hardware devices through the public interfaces of the mobile operating system: the International Mobile Equipment Identity (IMEI) of the mobile phone, network device address (MAC), carrier, mobile phone model, mobile system version number, system number, system ID number, screen resolution, Internet access type, APP name in the mobile phone, version number, package name, the province and city information where the mobile phone is located, APP usage time and frequency, and APP crash log information. These are used to count the number of users of our products, analyze product usage, troubleshoot the causes of crashes, and optimize product functions. Such information does not involve information related to your personal identity.

**(VI) Security Assurance**

To improve the security of your use of the services provided by us, our affiliated companies, and our partners; to protect the safety of you, other persons, or the public from infringement upon personal and property safety; to better prevent security risks such as phishing websites, fraud, network vulnerabilities, computer viruses, cyberattacks, and network intrusion; and to more accurately identify circumstances that violate laws, regulations, or our relevant agreement rules, we may use or integrate your account information, smart hardware information, APP usage information, and the information that our affiliated companies and partners have obtained with your authorization or shared in accordance with the law, for identity verification, detection, and prevention of security incidents, and take necessary recording, auditing, analysis, and handling measures in accordance with the law.

**(VII) Exceptions to Obtaining Authorized Consent**

According to relevant laws and regulations, your authorized consent is not required for collecting your personal information under the following circumstances:

1. Related to national security or national defense security;

2. Related to public safety, public health, or major public interests;

3. Related to criminal investigation, prosecution, trial, and execution of judgments;

4. For the purpose of safeguarding major lawful rights and interests such as the life and property of the subject of personal information or other individuals, but where it is difficult to obtain your consent;

5. Where the personal information collected is disclosed by yourself to the public;

6. Where personal information is collected from legally disclosed information, such as lawful news reports and government information disclosure channels;

7. Necessary for entering into a contract at your request;

8. Necessary for maintaining the safe and stable operation of the products or services provided, such as discovering and handling failures of the product or service;

9. Necessary for lawful news reporting;

10. Necessary for statistical or academic research conducted by academic research institutions based on the public interest, provided that when academic research or descriptive results are provided externally, the personal information contained in the results is de-identified;

11. Other circumstances provided by laws and regulations.

**(VIII) Clipboard**

[Purpose of Use] In situations where you share or receive shared information, participate in activities, etc., we need to access your clipboard and read the passcodes, sharing codes, and links contained therein to realize functions or services such as redirection, sharing, and activity linkage.

[Special Note] The systems of some mobile phones and other terminal devices may prompt that the clipboard is being read, but such system prompts cannot distinguish whether clipboard information is being collected, and false positives cannot be ruled out. Therefore, if you find any similar prompt, please contact us so that we can locate the issue.

**(IX) Gravity Sensor**

[Purpose of Use] In order to enable you, when watching live video, local recording playback, or Cloud Storage playback, to automatically rotate the video from portrait mode to landscape mode by rotating your phone, we need to use your gravity sensor to detect that the mobile phone has been rotated horizontally, thereby enabling automatic video rotation.

**(X) Self-Start and Associated Start Explanation**

1. In order to ensure that this application can normally receive client push messages while it is closed or running in the background, and to play the user’s customized ringtone during push, this application must use the self-start capability. It will therefore wake up this application for self-start or associated start by sending broadcasts through the system at a certain frequency, which is necessary for realizing functions and services.

2. When you open content push messages, after obtaining your explicit consent, the APP will redirect and open the relevant content. Without your consent, there will be no self-start or associated start.

3. When you open files downloaded within this App, a third-party App will be started in association.

You may quickly understand our collection and use of your personal information through the following “Personal Information Collection List”.

[Registration and Login]

Information involved: types include registered region, mobile phone number, email address, verification code, and account password;

Purpose of use: used to create an account, log in to an account, and verify information when retrieving a password.

[Personal Profile]

Information type: avatar and nickname;

Purpose of use: used to improve online identity information.

[Device Binding and Networking]

Information type: account ID, device name, device model, device MAC address, device UID, network information such as the Wi-Fi currently connected to by the device (including device IP address, Wi-Fi MAC address, Wi-Fi name (SSID), Wi-Fi password, signal strength), and Bluetooth MAC address;

Purpose of use: helps users realize secure connection, management, and use of smart devices.

[Viewing Smart Device Information]

Information type: includes device UID, device name, device time zone, device network information (LAN IP address, device MAC address, connected SSID), indicator light status, TF card status, and SIM card status;

Purpose of use: used to view smart device information.

[Smart Device Settings]

Information type: settings-related device information, including indicator light settings, TF card recording settings, white light settings, motion detection settings, video settings, working mode settings, call mode settings, rebooting the device, network settings, device volume settings, PTZ operations, voice intercom, picture arrangement method settings, and PTZ move-to settings;

Purpose of use: used to configure smart devices.

[Real-Time Smart Device Footage]

Information type: sound switch status, real-time smart device footage information (including current timestamp), device battery level, and signal status;

Purpose of use: used to view real-time smart device footage.

[Order List]

Information type: order information and payment records;

Purpose of use: used to record purchased services and generate orders.

[Coupon Redemption]

Information type: coupons;

Purpose of use: used to redeem services or enjoy discounts through coupons.

[Third-Party Advertising Delivery]

Information type: includes device brand, device model, software system version, screen density, screen resolution, device language, device time zone, SIM card information (mcc&mnc), CPU information, available storage size, AndroidID, OAID, reboot time, total disk space, total system memory, IDFV, ODID, device MAC address, IMEI, IMSI, ICCID, GAID (GMS services only), MEID, hardware serial number build_serial, IDFA; network information, carrier information, Wi-Fi status, network signal strength, IP address; application information (application package name, running process information, version number, application foreground/background status, software list information); sensor information (linear acceleration sensor, magnetic field sensor, rotation vector sensor, acceleration sensor, gyroscope sensor, precise location information, coarse location information (Wi-Fi list, WLAN access points such as SSID and BSSID, base stations)); performance data (such as crash data and performance data). Note: such information is directly collected and used by third-party SDKs;

Purpose of use: for third-party programmatic advertising delivery, anti-fraud in advertising, and advertising monitoring attribution statistics.

[Live Intercom]

Information type: voice information;

Purpose of use: used for voice calls with smart devices.

[Smart Device Recording and Playback]

Information type: recorded video files, recording time, and alarm event types;

Purpose of use: used to store videos for playback.

[Device Sharing]

Information type: shared account information and smart device permissions;

Purpose of use: used to share devices with other users for use and control of smart devices.

[Monitoring Management]

Information type: includes video content, event records, event type records, detection area settings, detection period settings, detection type settings, and detection sensitivity;

Purpose of use: used to identify and record video content according to user settings.

[Motion Detection, AI Intelligent Recognition]

Information type: alarm video footage generated by smart devices and alarm event recognition results;

Purpose of use: to analyze and label video data through AI large-model capabilities, describe events with AI, and conduct AI model training.

[Telephone Alarm]

Information type: telephone number, time when telephone reminders are needed, device information, etc.;

Purpose of use: to notify users by phone after an event occurs.

[4G Data Traffic]

Information type: traffic card ICCID, order information, and payment records;

Purpose of use: to activate 4G data traffic.

[Help Center, User Reviews, Online Customer Service]

Information type: includes device information, issue description, account information, device setting status, and logs;

Purpose of use: to improve products or services and enhance user experience.

**(XI) Security Assurance and Operations**

Scope of use of personal information

[Client terminal device information required to maintain the normal operation of basic functions]

According to the specific permissions granted by you during software installation and use, the client terminal device information for installing and using this software includes client type, client version number, device model, operating system version number, operating system language, IP address, network access method and carrier, installed application package names (application installation list/application list), SIM card status, running list/running processes/task list.

[Smart IoT hardware device information required to maintain the normal operation of basic functions]

After your smart hardware devices are successfully bound, relevant information of such smart hardware devices, including type, model, firmware number, MAC address, system version number, and system settings.

Please note that when the system setting is to allow hardware devices to upgrade automatically (this setting is enabled by default for some hardware devices), we will automatically install and run upgrade packages for you when available to ensure effective compatibility between your smart hardware devices and the client software you use.

[Log information required to maintain the normal operation of basic functions]

Detailed usage of the service will be preserved as relevant network logs. We record the basic information of your client terminal device (client type, client version number, device model, operating system version number, operating system language), network information (IP address, network connection method, and carrier), and your operation records (page exposure, button clicks, lagging, crash data).

Please note that client terminal device information and log information alone are information that cannot identify the identity of a specific natural person. If it is necessary to combine such non-personal information with other information to identify the identity of a specific natural person, or to combine it with personal information, then during the period of combined use, such non-personal information will be regarded as personal information. Except where your authorization is obtained or otherwise provided by laws and regulations, we will anonymize or de-identify such personal information.

Sensitive permissions invoked: Not involved

Use of third-party SDKs

Those involved in the Android and iOS versions and used only for Android applications and iOS development, which do not collect or use your personal information and do not invoke sensitive permissions, are all listed in detail in the “Third-Party Information Sharing List”, which you may click to view.

Umeng SDK (Android, iOS) [analyzes and counts system errors and improves APP stability] functions as follows:

1. The personal information collected and used includes [device identifiers (android ID, IDFA, OPENUDID, GUID, OAID), location information, device information (installed application package names/application installation list/application list, application identifiers, application versions, application distribution channels, independent device identifiers, device models, sensor parameters, terminal manufacturers, terminal operating system versions, session start/stop times, locale, time zone, network status (WiFi ssid), hard disk, CPU and battery usage), and network information (IP address)];

2. The sensitive permissions invoked include [write external storage, read external storage, access coarse location information, and access precise location information].

Other rules on the use of personal information

1. In order to improve our products and services, we will invite you by in-site messages or by email, SMS, telephone, or other means to participate in customer surveys and activities related to our products or services.

2. After collecting your personal information, once we anonymize your information data by technical means, such anonymized information will no longer be able to identify the information subject, and we have the right to directly use it without obtaining your consent, and to analyze the user database and make commercial use of it.

**II. How We Store Your Personal Information**

Personal information collected and generated by us within the territory of the People’s Republic of China will be stored within the territory of the People’s Republic of China and does not involve cross-border transfer. If, in the future, your relevant personal information involves cross-border data processing and it is indeed necessary to transmit the relevant personal information collected within the territory to overseas institutions, we will do so in accordance with laws, administrative regulations, and the provisions of relevant regulatory authorities. Before any cross-border transfer of data, we will seek your consent and permission again before transmitting the data. At the same time, we will ensure that the place and purpose of data transmission are explained in detail in the Privacy Policy so that you can always understand where your personal information is stored. Meanwhile, we will adopt corresponding encryption, anonymization, and other technologies to ensure that your personal information is sufficiently protected during transmission. We store your personal information only for the shortest period necessary for the purposes of this Policy and for the period required by laws and regulations. In order to provide you with Cloud Storage services, the maximum storage duration of videos captured by smart hardware devices on the server is based on the term of the “Cloud Storage” package you purchased. When you no longer use Cloud Storage, the relevant video files will no longer be stored on the server. If you stop using the APP or unbind the smart hardware devices, we will immediately stop collecting your personal information, anonymize the personal information you have provided to us, and delete it within 3 years. If the period for which we store your personal information exceeds the retention period (3 years), we will directly delete or anonymize your information. If we stop operating our products or services, we will promptly stop the activities of continuing to collect your personal information, notify you of the cessation of operations individually or by announcement, and delete or anonymize the personal information stored by us.

**III. How We Share, Transfer, Account-Ban, and Publicly Disclose Your Personal Information**

**(I) Sharing**

We will not share your personal information with any company, organization, or individual, except in the following circumstances:

Where we have obtained your explicit consent, we will share your personal information with other parties.

We may share your personal information externally in accordance with laws and regulations, as required for the resolution of litigation disputes, or in response to lawful requests made by administrative or judicial authorities.

Within the scope permitted by laws and regulations, where necessary to safeguard the interests, property, or safety of us, our affiliates or partners, you, our other users, or the public from damage, we may share your personal information.

Sharing among affiliated companies: where our affiliates provide services to you or to us, we may share your personal information with our affiliated companies. However, we only share necessary personal information, and the processing of your information by affiliates is subject to this Privacy Policy. If affiliates wish to change the purpose of processing your personal information, they will seek your authorization and consent again.

Sharing with partners: only for lawful, legitimate, necessary, specific, explicit purposes and for the purposes stated in this Privacy Policy, and with your express authorization and consent, will we share necessary personal information (or the SMS or incoming call number you report), aggregated information, anonymized information, or other information that cannot identify your personal identity (for example, we may inform application developers how many people have installed applications developed by them) with our suppliers, service providers, consultants, agents, third-party advertisers, application developers, open platforms, or other partners, in order to provide better customer service and user experience. These suppliers, service providers, consultants, and agents may provide us with technical infrastructure services, analyze how our services are used, measure the effectiveness of advertisements and services, provide customer service and payment services, conduct academic research and surveys, or provide legal, financial, and technical advisory services.

For companies, organizations, and individuals with whom we share personal information, we will sign strict data protection agreements requiring them to process personal information in accordance with our instructions, this Privacy Policy, and any other relevant confidentiality and security measures.

**(II) Transfer**

We will not transfer your personal information to any other company, organization, or individual, except under the following circumstances:

As our business develops, we and our affiliated companies may engage in mergers, acquisitions, asset transfers, or other similar transactions. If such transactions involve the transfer of your personal information, we will require the new company, organization, or individual holding your personal information to continue to be bound by this Policy; otherwise, we will require such company, organization, or individual to obtain your authorization and consent again.

Where required by laws, regulations, legal procedures, mandatory governmental requirements, or judicial rulings.

Where a transfer is made with your explicit consent; that is, after obtaining your explicit consent, we will transfer the personal information we have obtained about you to other parties.

**(III) Disclosure**

We will publicly disclose your personal information only under the following circumstances:

1. Your explicit consent has already been obtained.

2. We may publicly disclose your personal information where required by laws, legal procedures, litigation, or mandatory requirements of governmental authorities.

3. Within the scope permitted by laws and regulations, where disclosure is necessary to safeguard the interests, property, or safety of us, our affiliates or partners, you, our other users, or the public from damage.

4. Other circumstances provided by laws and regulations. According to law, the sharing, transfer, or public disclosure of de-identified personal information, where the data recipient cannot restore and re-identify the subject of the personal information, does not constitute external sharing, transfer, or public disclosure of personal information. The preservation and processing of such data do not require separate notice to you or your consent.

**(IV) Account Ban**

Applicable to serious violations (such as posting illegal information, fraud, malicious marketing, bulk registration, etc.);

“We regret to inform you that your account has been permanently restricted from use because it does not comply with cybersecurity regulations and platform security requirements. Please strictly observe national laws and regulations and use the Internet in a civilized manner. Thank you for your understanding and cooperation.”

At this point, the user cannot log in through conventional means and cannot have the ban lifted.

**IV. How We Protect Your Personal Information**

We have adopted security protection measures that comply with industry standards to protect the personal information you provide and prevent data from unauthorized access, public disclosure, use, modification, damage, or loss. We will take all reasonably practicable measures to protect your personal information.

We attach great importance to the security of your personal information and will endeavor to take reasonable security measures to protect it. At present, we have passed the information system security graded protection filing and testing of the Ministry of Public Security of China and obtained the “National Information Security Classified Protection Level III Certification” approved and issued by the public security authorities. At the same time, we have also passed the internationally authoritative ISO 27001 Information Security Management System certification.

We will encrypt identifiable personal identity information during transmission and storage to ensure data confidentiality. For the International Mobile Equipment Identity (IMEI) and network device address (MAC) of your mobile device, we will anonymize and encrypt them on your mobile device using the MD5 algorithm, and only collect and upload the anonymized and encrypted identifiers.

If you have registered our account, we may conduct proper risk control management by analyzing your login time, IP, number of logins, and other information. If there is any suspected login operation not performed by yourself, we will notify you by SMS to prevent our account from being logged into by someone else. For data exchange between your mobile phone and our client, we use both our custom encryption scheme and HTTPS dual encryption for transmission to ensure the security of data transmission.

If our application adopts WebView technology, we will perform URL validation on all file protocols used in WebView and restrict access to sensitive data of this application and SD card data, so as to avoid malicious theft of any private files and sensitive information of our product without special permissions, thereby causing leakage of your personal information.

We deploy access control mechanisms on the server side and adopt the principle of minimum sufficient authorization for staff who may have access to your personal information, and we regularly verify the list of access personnel and access records.

The server systems where we store your personal information are all operating systems that have been security-hardened. We will audit and monitor server operations. If we discover that a server operating system announced externally has a security issue, we will promptly upgrade server security at the first time to ensure the security of all our server systems and applications.

We regularly organize training for our staff on laws and regulations related to personal information protection so as to strengthen their awareness of protecting your personal privacy.

If, unfortunately, an incident occurs in which our physical, technical, or management protection measures are compromised, we will promptly activate the emergency response plan to prevent the security incident from escalating, report it to the national competent authorities in accordance with laws and regulations, and promptly inform you of the basic situation of the security incident, possible impacts, measures already taken or to be taken, and the like by reasonable and effective means such as push notifications and announcements.

**V. How We Use Cookies and Similar Technologies**

The Xiaoying Kankan APP does not currently use Cookies or similar technologies.

**VI. Your Rights to Manage Personal Information**

During your use of the APP, you may access and manage your personal information in the following ways:

**(I) Accessing and Correcting Your Personal Information**

You may correct your account information and the personal information you provide, including your account password, nickname, avatar, etc., through “Me -> Modify Personal Information”.

**(II) Deleting Your Personal Information**

Under the following circumstances, you have the right to require our company to delete your personal information:

1. We collected your personal information without seeking your explicit consent.

2. Our processing of your personal information violates the requirements of laws and regulations.

3. We used and processed your personal information in violation of our agreement with you.

4. You canceled our account, uninstalled, or no longer use our products (or services).

5. We have stopped providing services to you.

You may contact us through the methods provided in Section IX of this Privacy Policy to request deletion of your personal information, and we will reply within 15 working days. After we delete your personal information from the server, we may not immediately delete the corresponding data from the backup system, but will delete such information when the system updates the backup information.

**(III) Canceling Your Personal Account**

You may cancel your account at any time through “Me -> Account and Security”. Please note that if you choose to cancel your account, your account will no longer be usable and the related account information will be cleared. You will no longer be able to log in through the account to use our product functions and services. After you cancel your account, except where laws and regulations require us to retain relevant information, we will stop providing you with the corresponding products (or services), and will delete or anonymize your personal information within 10 working days.

Cancellation process: Log in to the account -> Home page -> Me -> Account and Security -> Cancel Account

Special reminder: canceling your Xiaoying Kankan account is an irreversible act. Once you cancel your Xiaoying Kankan account, you will no longer be able to use Xiaoying Kankan products/services. We will delete or anonymize the information related to your Xiaoying Kankan account. We recommend that you make this choice carefully. If you need to terminate the cancellation midway, you may log in to the account that is being canceled and choose “Continue Login” to terminate it. Once cancellation is completed, it cannot be terminated, and you may choose to re-register an account to use our products/services.

**(IV) Withdrawing Your Consent or Authorization**

In the APP, you may withdraw your consent and authorization in the following ways.

(1) You may withdraw authorization and consent for this product APP through the permission management interface by using [local mobile phone: Settings -> Permission Management -> Enable or Disable the Corresponding Permission]. In other forms, you may also use [“Me” page -> System Permissions -> Enable or Disable the Corresponding Permission].

(2) You may disable related functions or unbind smart hardware devices through the specific deactivation paths and methods in the functional descriptions in “I. How We Collect and Use Your Personal Information” of this Privacy Policy. Disabling means withdrawing the authorization corresponding to that function.

Please understand that each business function requires some basic personal information in order to be completed (see Section I of this Privacy Policy). When you withdraw your consent or authorization, we will no longer be able to continue providing the services corresponding to the withdrawn consent or authorization, nor will we continue processing the corresponding personal information. However, your decision to withdraw consent will not affect the personal information processing previously carried out based on your authorization.

**VII. Protection of Minors’ Personal Information**

When minors use our products (or services), the consent and authorization of their guardians are required. We recommend that the parents or guardians of minors read this Privacy Policy on their behalf, and recommend that minors seek the consent and guidance of their parents or guardians before submitting personal information. If you are the guardian of a minor and have any questions regarding the personal information of the minor under your guardianship, you may contact us through the contact information in Section IX of this Privacy Policy.

**VIII. Scope of Application of the Privacy Policy**

This Privacy Policy applies only to this product. Our other products and services will use the privacy policies of the relevant products or services. In particular, this Privacy Policy does not apply to the following circumstances:

1. Information collected by third-party products (or services) into which our products (or services) are embedded.

2. Information collected by third-party services, advertisements, or other companies, organizations, or individuals integrated into our products (or services).

We hereby remind you that when using third-party products and/or services, please carefully read the relevant user agreements and privacy policies presented to you by the third party, and properly safeguard and prudently provide your personal information.

**IX. Changes and Revisions to the Privacy Policy**

Our Privacy Policy may change. Without your explicit consent, we will not restrict the rights you should enjoy under this Privacy Policy. For major changes to this Privacy Policy, we will also provide prominent notice (for example, when the APP is revised or upgraded, or when you log in again, we will notify you in a timely manner by pop-up window). Major changes referred to in this Policy include, but are not limited to:

1. Major changes to our service model, such as the purpose of processing personal information, the types of personal information processed, and the manner of use of personal information;

2. Major changes in our control, such as changes in ownership caused by mergers and acquisitions and restructuring;

3. Changes in the main recipients of sharing, transfer, or public disclosure of personal information;

4. Major changes to your rights to participate in personal information processing and the ways in which such rights are exercised;

5. Changes to the department responsible for personal information security processing, contact information, and complaint channels;

6. When the personal information security impact assessment report indicates a high risk.

**X. How to Contact Us**

If you have any questions, comments, suggestions, or complaints about our Privacy Policy and our processing of your personal information, please contact us through the following methods:

Domestic customer service after-sales service telephone: `0731-88672100`

Overseas customer service after-sales service telephone: `0016468142996` (number belongs to the United States)

Overseas after-sales email: `oksmart2022@outlook.com`

Domestic after-sales service hours: `08:00-23:00`

Overseas after-sales service hours: `20:00-11:00` (Beijing Time)

Under normal circumstances, we will respond to your request within 15 working days.

You may also write to us at:

Address: `401-1, Building 10, Phase I Plant, CEC Software Park, No. 39 Jianshan Road, Lugu Subdistrict, Yuelu District, Changsha City, Hunan Province`

Postal Code: `410205`

If you are dissatisfied with the response received, you may complain to relevant regulatory authorities such as cyberspace administration, public security, and market supervision authorities, or file a lawsuit with a judicial authority. If you need our assistance in providing information on relevant complaint channels, we will do our best to provide it.

**XI. Effectiveness of the Privacy Policy**

This version of the Privacy Policy was updated on December 15, 2020, and will officially take effect on December 15, 2020.

**Appendix I: Definitions**

Personal Information: refers to all kinds of information recorded electronically or by other means that can identify a specific natural person independently or in combination with other information, or reflect the activities of a specific natural person. Personal information includes: basic information (including personal name, birthday, gender, address, personal telephone number, and email address); personal identity information (including ID card, military officer card, passport, driver’s license, etc.); personal biometric information (including voiceprints, fingerprints, facial features, etc.); online identity information (including system account, IP address, etc.); personal property information (including bank accounts, transaction and consumption records, game redemption codes, and other virtual property information); personal communication information (including address book contents, etc.); personal Internet usage records (including website browsing records, software usage records, click records, etc.); commonly used personal device information (including hardware model, device MAC address, software list, unique device identification code such as IMEI/IDFA/AndroidID/OPENUDID/GUID/SIM card IMSI, and other information describing the basic status of commonly used personal devices); personal location information (including travel tracks, precise positioning information, accommodation information, longitude and latitude, etc.).

Sensitive Personal Information: refers to personal information that, once leaked, illegally provided, or abused, may endanger personal and property safety and may easily cause damage to personal reputation, physical and mental health, or discriminatory treatment, etc. Sensitive personal information includes: personal property information (including bank accounts, transaction and consumption records, game redemption codes, and other virtual property information); personal biometric information (including voiceprints, fingerprints, facial features, etc.); personal identity information (including ID card, military officer card, passport, driver’s license, etc.); and other information (including address books, travel tracks, web browsing records, accommodation information, and precise positioning information).

De-identification: refers to the process of technically processing personal information so that the subject of the personal information cannot be identified without the aid of additional information.

Anonymization: refers to the process of technically processing personal information so that the subject of the personal information cannot be identified and the processed information cannot be restored.

Deletion of Personal Information: refers to the act of removing personal information from systems involved in realizing daily business functions so that it remains in a state that cannot be retrieved or accessed.

Children: refers to minors under the age of fourteen.

**Appendix II: Explanation of Third-Party SDK Partners and Shared Information**

In order to ensure the realization of the relevant functions of this product and the safe and stable operation of the application, we may integrate software development kits (SDKs) provided by third parties to achieve relevant purposes. We will conduct strict security monitoring on SDKs used by partners to obtain information in order to protect data security.

We list the relevant third-party SDKs integrated by us in the catalog below. We recommend that you carefully read and understand the privacy policies of third parties. The current third-party SDKs integrated into this product are as follows:

Partner Type: Third-party payment service partner

Partner Name: Alipay Open Platform

Purpose of Cooperation: Provide third-party payment services

Method of Cooperation: Embedded third-party SDK

Shared Personal Information Fields: None

Partner Type: Social service partner, third-party payment service partner

Partner Name: WeChat Open Platform

Purpose of Cooperation: Provide third-party login and sharing services; provide third-party payment services

Method of Cooperation: Embedded third-party SDK

Shared Personal Information Fields: None

Privacy Policy: [https://mp.weixin.qq.com/cgi-bin/announce?action=getannouncement&key=1503979103&version=1&lang=zh_CN&platform=2]

Partner Type: Push notification service partner

Partner Name: Xiaomi Open Platform

Purpose of Cooperation: Provide push notification services for Xiaomi devices

Method of Cooperation: Embedded third-party SDK; the SDK collects and transmits personal information

Shared Personal Information Fields: Device MAC address, unique device identifier, location information, application list

Partner Type: Push notification service partner

Partner Name: Huawei Push Service

Purpose of Cooperation: Provide push notification services for Huawei devices

Method of Cooperation: Embedded third-party SDK; the SDK collects and transmits personal information

Shared Personal Information Fields: Unique device identifier

Partner Type: Push notification service partner

Partner Name: OPPO Push Service

Purpose of Cooperation: Provide push notification services for OPPO devices

Method of Cooperation: Embedded third-party SDK; the SDK collects and transmits personal information

Shared Personal Information Fields: Unique device identifier

Partner Type: Push notification service partner

Partner Name: VIVO Push Service

Purpose of Cooperation: Provide push notification services for VIVO devices

Method of Cooperation: Embedded third-party SDK; the SDK collects and transmits personal information

Shared Personal Information Fields: Unique device identifier

Partner Type: Push notification service partner

Partner Name: Getui Push Service

Purpose of Cooperation: Provide push notification services for the mobile client

Method of Cooperation: Embedded third-party SDK; the SDK collects and transmits personal information

Shared Personal Information Fields:

(1) Device information: device identifiers (see “Privacy Policy”), device platform, device manufacturer, used to generate a unique push target ID (CID) and device ID (GID), thereby ensuring the accurate delivery of push messages and accurate identification of message devices. Device brand, device model, and system version are used to optimize the effectiveness of channel resources and improve the delivery rate and stability of push messages. In addition, to ensure the uniqueness of CID and improve the stability and accuracy of push messages, you also need to authorize storage permissions (`WRITE_EXTERNAL_STORAGE`, `READ_EXTERNAL_STORAGE`) and device permissions (`READ_PHONE_STATE`).

(2) Application list information: we use merged-link technology for technical push. When a device has multiple APP push links active simultaneously, we will randomly merge them into one link to save power and data usage for users, so we need to obtain application list information. At the same time, we provide intelligent push functions and recommend push content that better meets your needs through this information, reducing disturbance caused by useless push information. You may choose to enable or disable this service, but disabling it will increase power and data consumption.

(3) Network information and location-related information: in order to maintain the stability of network connections to the greatest extent and establish long links, we need to understand the network status and changes of the device, thereby realizing stable and continuous push services. We provide contextual push functions. Location-related information helps us provide you with refined push in offline scenarios and recommend push content that better meets your needs, reducing disturbance caused by useless push messages.

(Device identifiers include IMEI, IDFA, Android ID, MAC, OAID, Advertising ID, Serial Number, IMSI, UAID, ICCID, and IDFV.)

(Network information includes IP address, Wi-Fi information (`ssid`, `bssid`), base station information, and carrier information.)

(4) In order to ensure the timeliness of your receipt of messages, when you use push notification services, you may authorize us to adjust links and mutually reactivate SDK push processes that have been shut down, so as to ensure the effective reach of push messages. To ensure the stable operation and functional realization of our push services so that you can use and enjoy more functions and services, our services will integrate SDKs and APIs provided by partners. We will conduct strict security inspections on the SDKs and APIs of partners that obtain information, and agree with partners on strict data protection measures requiring them to process personal information in accordance with this Policy and any other relevant confidentiality and security measures. Details of the partners we access are as follows, and we recommend that you read the relevant privacy policies:

SDK Name: Zhuoxin ID

Information involved: weak device characteristics (characteristics that do not have uniqueness and stability): device information (device manufacturer, device model, device system information), device network information (device networking method and status information), and device environment information (screen brightness, battery status and country, and device application information such as version and installation information of common applications on the device)

Purpose of Use: Provide device identification and security risk control services

Partner Entity: China Academy of Information and Communications Technology

Collection Method: SDK collection

Partner Official Website Link: [https://zxid.caict.ac.cn/]

Partner Privacy Policy Link: [https://zxid.caict.ac.cn/privacy]

Partner Type: Data storage service partner

Partner Name: Qiniu Cloud

Purpose of Cooperation: Provide third-party data storage services

Method of Cooperation: Embedded third-party SDK; the SDK collects and transmits personal information

Shared Personal Information Fields: Device MAC address, unique device identifier, user avatar information

Partner Type: Data analysis service partner

Partner Name: Umeng SDK

Purpose of Cooperation: APP operation statistics and analysis

Method of Cooperation: Device information (`IMEI/MAC/Android ID/IDFA/OAID/OpenUDID/GUID/SIM IMSI/ICCID`), location information, and network information

Shared Personal Information Fields: We collect device information (`IMEI/MAC/Android ID/OAID/IDFA/OpenUDID/GUID/SIM IMSI/ICCID/geolocation`, etc.) to uniquely identify devices and provide device application performance monitoring services; by collecting location information, we provide anti-fraud services, eliminate fraudulent devices, and troubleshoot the causes of application performance crashes.

Partner Type: BeiZi SDK

Partner Name: BeiZi Network

Purpose of Cooperation: Adjust advertising delivery strategies based on user device information; provide statistical analysis services based on user device information; conduct basic anti-fraud analysis based on user device information; realize the normal display and interaction functions of advertisements based on user device information; optimize code defects through crash information to minimize App crashes; optimize SDK performance by collecting performance data during SDK operation; and count advertising data for advertisers to count delivery results, including but not limited to requests, displays, clicks, and conversions for advertising process analysis. The acquired information is used only for functional realization and will not be collected and stored.

Method of Cooperation: Embedded third-party SDK

Shared Personal Information Fields:

Collected information

[Android and iOS common information] device brand, device model, device time zone, device language, system version, developer application name, application version number, application package name, network type, UserAgent information, network status, crash information, performance data, screen height and width, screen orientation, screen DPI information, system update time, boot time, USB debugging mode, carrier, CPU, application process name, application process information, running status, disk space, physical memory

[Android-exclusive information] device IDs (`OAID`, `GAID`) (`IMEI` collected only with user authorization); [iOS-exclusive information] device IDs (`IDFA` collected only with user authorization), `IDFV`

Permissions obtained

[Android] Internet access, network status, phone Wi-Fi status, installed applications; [iOS] network permissions, device information (`IDFA`)

Partner Type: Tencent Youlianghui SDK

Partner Name: Youlianghui

Purpose of Cooperation: Advertising delivery and monitoring attribution based on user device information; optimize code defects through crash information to minimize App crashes; optimize SDK performance by collecting performance data during SDK operation; and count advertising data for advertisers to count delivery results, including but not limited to requests, displays, clicks, and conversions.

Method of Cooperation: Embedded third-party SDK

Shared Personal Information Fields: location information; device information (device manufacturer, device name, device model); device identifiers (`[Android] Android_ID`, `[iOS] IDFA, IDFV`); application information (running list/running processes/task list, installed package names/application installation list/application list); usage data (product interaction data, advertising data); diagnostic data (crash diagnostics, performance data); network information (Wi-Fi information, SSID, BSSID, Android ID, carrier, IP address); acceleration sensor; magnetic field sensor

Partner Type: Pangle SDK

Partner Name: Pangle

Purpose of Cooperation: advertising delivery cooperation, advertising attribution, anti-fraud; reduce App crashes and provide stable and reliable services; we may also conduct de-identified research, statistical analysis, and prediction on the information you provide or that we collect, in order to improve and enhance the services of the Pangle platform and provide product or technical service support for users’ marketing decisions.

Method of Cooperation: Embedded third-party SDK

Shared Personal Information Fields:

Collected information

[Device information]

[Both platforms] basic information such as device brand, model, software system version, resolution, network signal strength, IP address, device language, and sensor information

[Android only] AndroidID

[iOS only] basic information such as mobile system reboot time, total disk space, total system memory, number of CPUs, and IDFV

For the purpose of optimizing advertising delivery effects, you may choose whether to provide the following information to Pangle:

[Both platforms] wireless network SSID name, Wi-Fi router MAC address, device MAC address (for iOS, only applicable below iOS 3200 version)

[Android only] device identifiers (such as IMEI, OAID, IMSI, ICCID, GAID (GMS services only), MEID, device serial number `build-serial`; specific fields vary depending on software and hardware versions)

[iOS only] device identifiers (such as IDFA; specific fields vary depending on software and hardware versions)

Application process name

Running status

[Application information]

[Android only] developer application name, application package name, version number, application foreground/background status

For the purpose of optimizing advertising delivery effects, you may choose whether to provide Pangle with:

[Android only] application list information

[Advertising information] [Both platforms] interaction data such as advertising display, clicks, and conversions

[Location information] For the purpose of optimizing advertising delivery effects, you may choose whether to provide Pangle with the following information: location information

[Performance data]

[Both platforms] such as crash data and performance data

To reduce App crashes and provide stable and reliable services

[Other information] carrier information and device time zone

Partner Type: BaiQingteng SDK

Partner Name: Baidu Alliance

Purpose of Cooperation: maintain the stability of network connections for mobile applications and provide stable and continuous promotion or messaging services; in order to push certain messages to end users that may consume a large amount of battery power and mobile data only when the end user’s device is connected to Wi-Fi, thereby reducing battery and mobile data consumption; and to optimize promotion/messaging service experience based on the activity of each mobile application on the end user’s device.

Method of Cooperation: Embedded third-party SDK

Shared Personal Information Fields:

Collected information: hardware model, operating system version, device configuration, unique device identifier, IMEI, SIM information IMSI, iOS advertising identifier (`IDFA`), Android advertising identifier (`OAID`), Android Id, device location information (location information obtained through GPS, Bluetooth, or Wi-Fi signals), hardware device information, operating system version, the date, time, and duration of the end user’s access to the service, location information, and application list information

Permissions obtained: [Android optional] network status, phone Wi-Fi status, application list, read and write external storage card, obtain running task list, obtain coarse location; [iOS] network permissions, device information (`IDFA`), obtain coarse location

Partner Type: Mango Aggregation SDK

Partner Name: Mango

Method of Cooperation: Embedded third-party SDK

Shared Personal Information Fields: hardware model, operating system version, device configuration, unique device identifier, IMEI, SIM information IMSI, iOS advertising identifier (`IDFA`), Android advertising identifier (`OAID`), Android Id, device location information (location information obtained through GPS, Bluetooth, or Wi-Fi signals), hardware device information, operating system version, the date, time, and duration of the end user’s access to the service, location information, and application list information

Partner Type: JD SDK

Partner Name: JD

Purpose of Cooperation: adjust advertising delivery strategies based on user device information; provide statistical analysis services based on user device information; conduct basic anti-fraud analysis based on user device information; realize the normal display and interaction functions of advertisements based on user device information; optimize code defects through crash information to minimize App crashes; optimize SDK performance by collecting performance data during SDK operation; and count advertising data for advertisers to count delivery results, including but not limited to requests, displays, clicks, and conversions for advertising process analysis. The acquired information is used only for functional realization and will not be collected and stored.

Method of Cooperation: Embedded third-party SDK

Shared Personal Information Fields: [iOS] device information: device identifiers (`IDFA`, `IDFV`), device platform, device manufacturer and brand, device model and system version, device serial number; network information: IP address, Wi-Fi information (`ssid`, `bssid`), base station information, carrier information, and location-related information. [Android] device information, network information, location-related information, and application list information, specifically device platform, device manufacturer, device brand, device model and system version, `OAID`, `AndroidID`, `BSSID`, `SSID`, `OAIDIP` address, sensors, base station information, carrier information, application list/installed application package names/application installation list, Advertising ID, GPS location information, and Wi-Fi connection information (`ssid`, `bssid`)

Partner Type: Kuaishou SDK

Partner Name: Kuaishou

Method of Cooperation: Embedded third-party SDK

Shared Personal Information Fields: network information (`bssid`, carrier, Wi-Fi information), device identifiers (`android_id`, `BSSID`, `SSID`, `OAID`, `IDFA`), application information (running list/running processes/task list), acceleration sensor, gyroscope sensor, sensor, gravity sensor, location information

Partner Type: UBiX Merak SDK

Partner Name: UbiX

Purpose of Cooperation:

Advertising delivery and monitoring attribution based on user device information

Optimize code defects through crash information to minimize App crashes

Optimize SDK performance by collecting performance data during SDK operation

Count advertising data for advertisers to count delivery results, including but not limited to requests, displays, clicks, and conversions

Method of Cooperation: Embedded third-party SDK

Shared Personal Information Fields:

Location information, device information (device manufacturer, device name, device model), device identifiers (`[Android] Android_ID, OAID [iOS] IDFA, IDFV`), application information (running list/running processes/task list, installed package names/application installation list/application list), usage data (product interaction data, advertising data), diagnostic data (crash diagnostics, performance data), network information (Wi-Fi information, SSID, BSSID, Android ID, carrier, IP address), acceleration sensor, magnetic field sensor

Partner Type: Meishu

Partner Name: Meishu Aggregated Advertising SDK

Purpose of Cooperation:

Adjust advertising delivery strategies based on user device information

Provide statistical analysis services based on user device information

Conduct basic anti-fraud analysis based on user device information

Realize the normal display and interaction functions of advertisements based on user device information

Optimize code defects through crash information to minimize App crashes

Optimize SDK performance by collecting performance data during SDK operation

Count advertising data for advertisers to count delivery results, including but not limited to requests, displays, clicks, and conversions, for advertising process analysis

The acquired information is used only for functional realization and will not be collected and stored

Method of Cooperation: Embedded third-party SDK

Shared Personal Information Fields: network information (`bssid`, carrier, Wi-Fi information), device identifiers (`android_id`, `BSSID`, `SSID`, `OAID`), application information (running list/running processes/task list), acceleration sensor, gyroscope sensor, sensor, gravity sensor, location information

Partner Type: Octopus SDK

Partner Name: Octopus Advertising