Personal information protection policy

Personal information protection policy

This policy is only applicable to the Todaair products or services of Jiangmen Todaair Electronics Co., Ltd., including Todaair and Todaair.

Latest update date: January 31, 2023.

If you have any questions, comments or suggestions, please contact us through the following contact methods:

E-mail: tdsh2@toddair.cn

Tel: 0750-3671877

Fax:/

This policy will help you understand the following:

◼ 1、 How do we collect your personal information

◼ 2、 How do we use your personal information

◼ 3、 How do we entrust, share, transfer and publicly disclose your personal information

◼ 4、 How do we protect your personal information

◼ 5、 Your rights

◼ 6、 How do we deal with children’s personal information

◼ 7、 How to transfer your personal information globally

◼ 8、 How to update this policy

◼ How to contact us

Todaair understands the importance of personal information to you and will do its best to protect your personal information safe and reliable. We are committed to maintaining your trust in us and abide by the following principles to protect your personal information: the principle of consistency of power and responsibility, the principle of clear purpose, the principle of choice and consent, the principle of minimum necessity, the principle of ensuring security, the principle of subject participation, the principle of openness and transparency, etc. At the same time, we will take corresponding security measures to protect your personal information according to the mature security standards in the industry.

Please read and understand this Personal Information Protection Policy carefully before using our products or services.

Additional services for storing permissions:

We apply to you for this permission to ensure the stable operation of the client. After you enable our permission to read/write to your device storage, we will read or write necessary information such as pictures, files, crash log information from your device storage space to provide you with information publishing or local recording of crash log information.

1、 What personal information do we collect about you

(1) The business functions we provide need to rely on some information to run. If you choose to use this business function, you need to provide us with or allow us to collect the necessary information, including:

Network identity (including system account, applet avatar, applet nickname, etc.);

Personal device information (including device model, device MAC address, unique device identifier, device parameters and system information, signal strength information, networking information, Bluetooth device information);

Application information (application crash information, notification switch status, social platform OpenlD, AppID, UniID, time, page);

Personal location information (including travel information, precise positioning information, longitude and latitude)

Our product is developed based on DCloud uni-app (5+App/Web2App). During application operation, you need to collect your unique device identification code (IMEI/android ID/DEVICE_ID/IDFA, SIM card IMSI information, OAID) to provide statistical analysis services, and improve performance and user experience through application startup data and abnormal error log analysis, so as to provide better services for users. For details, please visit DCloud User Service Terms. (DCloud user service terms hyperlink to: https://ask.dcloud.net.cn/protocol.html ）

(2) You can provide or allow us to collect the following information at your own option:

When you use the browse search service, we collect your device information: Wifi information, MAC address, IMSI, bssid, IMEI information in order to enable you to quickly search for the information you need. Please note that separate device information cannot identify you individually.

When you use the map and location service, we will obtain the following necessary information: connection WIFI information, location information (GNSS information, WIFI address and signal strength information, base station ID data information, sensor information, mobile phone signal strength information).

Information obtained from third-party partners; We may obtain information generated or shared by you when using third-party partner services. For example, when you log in to the third-party partner service using your WeChat account, we will obtain your name and login time to facilitate your authorization management. Please read the user agreement or privacy policy of the third-party partner service carefully.

If you do not authorize, we will not be able to provide this business function. In addition to the above permissions, you can freely choose whether to grant other system permissions to the App.

(4) The above information will be stored in the People’s Republic of China. If cross-border transmission is required, we will obtain your authorization and consent separately.

2、 How do we use your personal information

(1) For necessary personal information, we will use it to provide this business function.

Help you register your Todaair account: If you want to use the products or services provided by Todaair, you need to register a Todaair account first. This operation will use your account information.

Provide you with security functions: including transaction security, site security, and account security. In order to more accurately identify and prevent attacks and protect your account security, including forming a risk control label/portrait/model, judging whether it belongs to the IP/device blacklist, whether it is a real device/simulator, whether to install risk software/APP, etc. After you agree to this privacy policy, we will automatically collect your device information or software information, such as your IP address and the model used by your mobile device Version and device identification code (such as IDFA/IMEI/IMSI/OAID/Android ID/OPENUDID/GUID), SIM card information, device application installation list, device MAC information, network type/network status, wireless network information connected to the device (such as SSID/BSSID/status/MAC). We will collect and upload the above information based on the minimum frequency required for safety and risk control.

When we want to use the information for other purposes not specified in this policy, we will obtain your consent again in the form of confirmation agreement, copy confirmation action under specific scenarios, etc. in accordance with the requirements of laws, regulations and national standards.

(2) For unnecessary personal information, we will use it for the following purposes:

Improve the products or services of the Todaair platform: We may de-identify the collected information and conduct research, statistical analysis and prediction to improve the content and layout of the Todaair platform, provide product or service support for business decisions, and improve our products and services. We may use your order data for data analysis, so that we can understand your location, preferences, or match with data from other sources (including third parties), so as to develop and improve our products and services. We may invite you to participate in the market survey through the contact information provided by you, and analyze and measure your interest in our products, services and websites based on the information provided by you to participate in the market survey, so as to develop and improve our products and services. If you choose not to participate in market research and provide relevant information, it will not affect your basic functions of using the Todaair platform.

(3) If we use your information beyond the above purposes, we will explain it to you again and ask for your consent in advance.

3、 How do we entrust, share, transfer and publicly disclose your personal information

(1) Entrusted processing

Some specific modules or functions in this business function are provided by external suppliers. For example, we will hire service providers to assist us in providing customer support.

For companies, organizations and individuals entrusted by us to process personal information, we will sign strict confidentiality agreements with them, requiring them to process personal information in accordance with our requirements, this personal information protection policy and any other relevant confidentiality and security measures.

(2) Share

We will not share your personal information with any company, organization or individual other than our company, unless we obtain your explicit consent. At present, we will ask you for your authorization to share personal information under the following circumstances.

Sharing with explicit consent: based on the need to provide specific business scenarios, we will share your personal information with other parties after obtaining your explicit consent. If it is necessary to share your information with a third party in order to provide services to you, we will assess the legality, legitimacy and necessity of the information collected by the third party, and obtain your consent in the form of confirmation agreement, copy confirmation under specific scenarios, pop-up prompt, or confirm that the third party has obtained your consent.

We may share your personal information according to laws and regulations or the mandatory requirements of the competent government departments.

(3) Transfer

We will not transfer your personal information to any company, organization or individual, except for the following circumstances:

a) Transfer with explicit consent: After obtaining your explicit consent, we will transfer your personal information to other parties;

b) When it comes to merger, acquisition or bankruptcy liquidation, if it comes to personal information transfer, we will require the new company or organization that holds your personal information to continue to be bound by this personal information protection policy, otherwise we will require the company or organization to ask for authorization from you again.

(4) Public disclosure

We will only publicly disclose your personal information under the following circumstances:

a) After obtaining your explicit consent;

b) Disclosure based on law: We may publicly disclose your personal information under the circumstances of laws, legal proceedings, litigation or mandatory requirements of the competent government departments.

4、 How do we protect your personal information

(1) We have used industry-standard security protection measures to protect the personal information you provide from unauthorized access, public disclosure, use, modification, damage or loss. We will take all reasonable and feasible measures to protect your personal information. Todaair attaches great importance to information security and has set up a special responsible team to supervise personal information processing activities and the protection measures taken.

(2) We have obtained the following certifications:

Todaair has made great efforts to provide you with information protection, adopted appropriate management, technical and physical security measures, and established an information security assurance system suitable for business development with reference to domestic and foreign information security standards and best practices.

(3) Our data security capabilities:

We will adopt security protection measures in line with industry standards, including establishing reasonable system specifications and security technology to prevent your personal information from unauthorized access, use, modification, and data damage or loss.

Todaair’s network services adopt encryption technologies such as transport layer security protocol, and provide browsing services through https and other ways to ensure the security of user data during transmission.

Todaair uses encryption technology to encrypt and save user personal information, and isolates it through isolation technology.

Todaair uses strict data access rights and identity authentication technology to protect personal information and avoid illegal use of data.

(4) We will take all reasonable and feasible measures to ensure that irrelevant personal information is not collected. We will only retain your personal information for the period required to achieve the purpose stated in this policy, unless the retention period needs to be extended or permitted by law.

(5) We will regularly update and disclose the relevant contents of the security risk, personal information security impact assessment and other reports. You can get it through the following ways: telephone, WeChat official account push notification.

(6) The Internet environment is not 100% secure. We will try our best to ensure or guarantee the security of any information you send us. If our physical, technical, or management protection facilities are damaged, resulting in unauthorized access, public disclosure, tampering, or destruction of information, resulting in damage to your legitimate rights and interests, we will bear corresponding legal responsibilities.

(7) In the event of an unfortunate personal information security incident, we will promptly inform you of the basic situation and possible impact of the security incident, the disposal measures we have taken or will take, the suggestions you can take to prevent and reduce risks independently, and the remedial measures for you in accordance with the requirements of laws and regulations. We will promptly inform you of the relevant information of the event by mail, letter, telephone, push notification, etc. When it is difficult to inform the personal information subject one by one, we will take reasonable and effective ways to release the announcement.

At the same time, we will also actively report the disposal of personal information security incidents according to the requirements of regulatory authorities.

5、 Your rights

In accordance with the relevant laws, regulations and standards of China and the general practices of other countries and regions, we guarantee that you exercise the following rights with respect to your personal information:

(1) Access your personal information

You have the right to access your personal information, except for the exceptions specified by laws and regulations. If you want to exercise the data access right, you can access it by yourself in the following ways: Home page - identity authentication, to access, correct, supplement and delete the certificate information.

If you cannot access these personal information through the above links, you can contact us at any time using our web form, or send an email to tdsh2@todaair.cn , we will reply to your visit request within 30 days.

We will provide you with other personal information generated during the use of our products or services as long as we do not need too much investment. If you want to exercise data access, please send an email to tdsh2@todaair.cn

(2) Correct your personal information

When you find that there is an error in the personal information we process about you, you have the right to ask us to make corrections. You can apply for correction through the methods listed in “(I) Access your personal information”.

If you are unable to correct these personal information through the above link, you can contact us at any time by using our web form and send to tdsh2@todaair.cn , we will reply to your correction request within 30 days.

(3) Delete your personal information

In the following cases, you can request us to delete personal information:

a) If we handle personal information in violation of laws and regulations;

b) If we collect and use your personal information without your consent;

c) If our behavior of handling personal information violates the agreement with you;

d) If you no longer use our products or services, or you cancel your account;

e) If we no longer provide you with products or services.

If we decide to respond to your request for deletion, we will also notify the entities that have obtained your personal information from us and require them to delete it in a timely manner, unless otherwise specified by laws and regulations, or these entities have obtained your independent authorization.

When you delete information from our service, we may not delete the corresponding information in the backup system immediately, but will update the backup