Welcome to the China International Import Expo (hereinafter referred to as "CIIE") Information Platform (hereinafter referred to as "the Platform"). This Personal Information and Privacy Protection Policy (hereinafter referred to as "the Policy") is also applicable to your (hereinafter referred to as "you" or "users") access to and use of the website of the Platform, relevant mobile websites (including the web version marked by the uniform resource locator “www.ciie.org” and the corresponding optimized version for mobile devices), WeChat official account, mini programs, and mobile APPs.

The term "you" or "users" in the Policy includes exhibitors of CIIE, purchasers, professional audiences as well as other subjects who visit, browse, apply for account registration, log in or use website services and the other services.

We (the organizer of the CIIE) attach great importance to the protection of your personal information. The Policy is formulated in accordance with the relevant laws, regulations and standards of the People's Republic of China (excluding Hong Kong, Macao and Taiwan for the purpose of the Policy), aiming at explaining how we collect, process and protect your personal information and how you safeguard your legitimate rights and interests.

Please read carefully before using our products and/or services and confirm that you have fully understood the contents of the Policy, and make the choices you deemed appropriate according to the guidelines of the Policy. In terms of your sensitive personal information in the Policy, we will mark it in bold for reminding.

Clicking the "Accept" button of the Policy means that you expressly agree that we can collect, use, save, share, transfer, publicly disclose and protect your personal information in accordance with the Policy. Disagreement with the Policy or its updates may affect your normal use or continued use of our products and/or services.

Latest update: July 2021.

If you have any questions or concerns about the Policy or related issues, please contact us through the contact information provided in [IX. How to contact us].

Important Notes:

This Policy does not apply to the functions or services provided to you by any third parties through the aforementioned web pages and APPs. The information you provide to any third parties are not subject to this Policy. We suggest that you review the third party’s information protection statement to find out how they process your information. When you use any third-party services, you shall bear the consequences arising from providing your personal information to or sharing the same with others.

Part I Definitions

Functions or services provided by the Platform: refer to the integrated multi-terminal system and the mobile client terminal (including the official website, official APPs, WeChat official account and mini program, official Weibo, and official facebook account of the CIIE) with a series of functions including registration and signing up developed under the organization of and operated and managed by the official organizer of the CIIE for the representatives of various countries, social organizations, overseas enterprises, domestic trading groups, professional audiences, media reporters and service staff participating in the CIIE and Hongqiao Economic Forum.

Provider of functions and services of the Platform: refers to the official organizer of the CIIE, including China International Import Expo Bureau and National Convention and Exhibition Center (Shanghai) Co., Ltd. (hereinafter referred to as “We/Our/Us”).

Users: refer to natural persons, legal persons or other organizations that accept this Policy, unless specifically indicated or stated in this policy.

Personal information: refers to various kinds of information recorded electronically or in other ways that can identify the identity of a specific natural person or can reflect the activities of a specific natural person alone or in combination with other information.

Personal sensitive information: including ID number, mobile phone number, personal biometric information, bank account number, property information, track of whereabouts, transaction information, personal information of children under 14-year-old (inclusive), etc.

Personal information deletion: refers to the act of removing or deleting personal information from the systems involved in daily business functions to keep it in a state that cannot be retrieved or accessed.

Network services: refer to the services such as business promotion, business handling, business inquiry and activity consultation provided by the Platform to users based on the Internet.

Part II: Content of Network Services

I. The Platform provides the following network services for the users

1) Information services such as news, pictures, videos, audios, announcements and guides released by the Platform ;

2) Services such as registration, login, safe exit, password retrieval, password modification, personnel entry, and certificate information inquiry for specific users such as exhibitors, trading groups, professional audiences and media reporters of the CIIE;

3) Services such as business handling, payment, and inquiry for specific users such as exhibitors of the CIIE;

4) Services such as mobile navigation, positioning, traffic information, and translation;

5) Services such as supply and demand matching of exhibitors and trading groups;

6) Services such as supporting insurance, transportation, aviation, catering and advertising for the CIIE;

7) Services such as forums and activities related to the CIIE;

8) Other services provided by the Platform for users.

II. The Platform has the authority to adjust the specific content of network services according to the CIIE's business development. The service content provided by the Platform may subject to change at any time without special notice by the CIIE. The CIIE will not make commitment on providing or not providing network services.

III. The Platform only provides network services. The users shall solely bear the communication devices related to the network services (such as computers, mobile phones, modems and other devices related to accessing the Internet) and the expenses required for the communication services (such as telephone charges, broadband charges and mobile traffic charges for accessing the Internet).

Part III: Legal Statement

I. Ownership

The symbols, logos, texts and graphics of the CIIE and the Platform and the combination thereof, as well as other symbols, logos, service names, etc. of the the Platform are exclusive logos of the "China International Import Expo" in China and other countries. Without our written authorization, no one is allowed to display, use or otherwise process (including but not limited to reproduce, communicate, display, mirror, upload and download) such logos, or show others that you have the right to display, use or otherwise process the same.

The intellectual property rights of all the products, services, technologies of the Platform and all the application programs or the components/functions thereof (hereinafter referred to as “Technical Services”) shall be owned by the Platform or the right holder thereof. Unless otherwise stated, the Platform has all rights (including but not limited to copyrights, trademark rights, patent rights, trade secrets and all other related rights) to publish documents and other information (including but not limited to texts, graphics, pictures, photographs, audio, video, icons, colors, layout designs and electronic documents) on its website. Without our permission, no one is allowed to use the above contents (including but not limited to monitoring, reproducing, rebroadcasting, displaying, mirroring, uploading or downloading any content published on the Platform with any program or equipment). Anyone who is authorized to browse, reproduce, print and communicate the functions and service information of the Platform shall not use such content for any commercial purposes and must indicate the source thereof and declare that the right thereto vests in us.

II. Limitation of Liability

The information (including but not limited to personal information, user name, company name, contact person and contact information, relevant pictures, news, etc.) uploaded, provided or published by the user of the the Platform shall be provided by such user on his/her own subject to all liabilities according to law.

The Platform hereby reminds you that during your use of the functions and services of the Platform, you shall abide by the laws of the People’s Republic of China, and may not endanger network security or use the functions and services provided by the Platform to infringe others’ reputation, privacy, intellectual property rights and other legitimate rights and interests. Notwithstanding the aforesaid, the Platform does not assume any liability for the purpose of your use of the functions and services provided by the Platform. If you commit any illegal use, we have the right to suspend your account and report the incident to the relevant departments according to law.

III. Intellectual Property Protection

We respect intellectual property rights, and oppose and combat any infringement thereof. Any organization or individual who believes that the functions and services provided by the Platform may infringe their legitimate rights and interests may call the Service Hotline of the China International Import Expo at 021-968888 and submit a written Notice of Infringement to the Platform along with legal and valid supporting materials. We will, upon our receipt of the written notice and the legal and valid supporting materials from the intellectual property right owner, deal with such issues as soon as possible according to law.

Part IV: Privacy Protection Policy

The Policy will help you to understand the following contents:

· How we collect and use your personal information

· How we use Cookies and similar technologies

· How we process, share, transfer and publicly disclose your personal information through entrustment

· How we protect your personal information

·  Your rights

·  How we process the personal information of children

·  How your personal information is transferred globally

·  How to update the Policy

·  How to contact us

I. How we collect and use your personal information

(I) Circumstances where we collect personal information from you and types of personal information we collect from you

1 Account Registration

During the account registration process, we will collect necessary personal information from you, including: basic personal data (such as name, fixed telephone number, mobile phone number, and e-mail address), personal identity information (such as ID card number and passport number), basic enterprise information (such as unified social credit code or registration number, legal representative, identity information of legal representative, enterprise address, enterprise contact telephone number, enterprise website, and enterprise e-mail address) and account password of enterprise users;

After you become a user of the Platform, you can modify your personal information, such as your date of birth, gender, household address, residential address, contact address, education background, ethnicity, and e-mail. After you de-register your account on your own, we will stop providing you with our products or services and process your personal information according to the requirements set forth in the applicable laws.

With respect to the account de-registration process, you may call the Service Hotline of the China International Import Expo at 021-968888.

2. Information generated by using functions and services of the Platform

1) Information you provided to us

You can give your feedback on your user experience of the functions or services provided by the Platform via the Service Hotline of the China International Import Expo at 021-968888 during your use of such functions or services to help us better understand your experience of and demand for our functions or services, thus improve our functions or services.

2) Information collected by us during your use of functions and services

To provide you with more tailor-made intelligent hardware or software, web page display and search results, understand product adaptability, and identify abnormal account status, we may automatically collect and save your personal information such as your whereabouts information and web browsing history on the Platform , including but not limited to:

Device information: We will receive and record the information on your device (such as device model, platform name, equipment identifier, system version, device manufacturer, serial number of the hardware, public IP address of the device, IMEI serial number, carrier name, mobile phone number, mobile country code and mobile network code, browser UA, physical address of network card, version and type of the operating system, CPU model and machine name) and information on your device location (such as IP address, GPS/BeiDou location information and sensor information that can provide the relevant information such as Wi-Fi access point, Bluetooth and base station) based on the specific authority granted by you during the software installation and use.

Log information: When you use the functions or services provided via our website or client, we will automatically collect, as the network log to save, the information in relation to your detailed usage of our services, Such information includes your search and inquiry, IP address, browser type, telecom carrier, preferred language, date and time of visit, records of web pages visited, call status information, etc.

Please note that the device and log information and search keyword alone cannot identify a specific natural person. If we use such non-personal information in combination with other information to identify a specific natural person or use it in combination with personal information, such non-personal information will be regarded as personal information during the combined use; except for with your authorization or unless otherwise provided by laws and regulations, we will make such personal information anonymous and de-identified.

When you contact us, we need your necessary personal information to verify your identity, so as to ensure your account security. We may save your message/call records and contents (such as account information, other information you provide to prove relevant facts, or your phone number, e-mail address or other contact information you provide) to get back to you, help you solve your issues, or record the solutions to and results of the concerned issue.

3) Information collected by us during your use of personalized services recommended

To provide you with better and more personalized services (for example, providing more personalized but consistent services across different servers or devices and more suitable input recommendation, customer service or information push), to understand product adaptability and to identify abnormal account status, we will collect relevant information on your use of services including device information, logs, and service use information.

Logs: We will automatically collect detailed information on your use of our functions and services provided by our web pages or client terminal and save the same as web logs. Such information includes your IP address, type of browser, telecom carrier, preferred language, date and time of access and access duration, characteristics of software and hardware, records of web pages requested and the function or service Cookies information of the the Platform.

Service use information: We will record the information you submitted and setting information (e.g., remember password, time of password change, etc.) generated from your use of the functions or services of the Platform.

4) Location information (such as precise positioning information)

It refers to the information on your location collected by us when you activate the device positioning function and use the related services provided by us based on location, for example, the geographical location information collected by us through GPS or WiFi when you use our services through mobile devices with positioning function.

5) Other additional services

Those with various needs during the CIIE can make inquiries on the Platform via instant messaging, leaving messages, etc. If you want to use this function, you may need to provide us with the real name, personal identification information (ID card number, passport number, etc.), contact information, etc. according to the management requirements of the real-name registration system, so that we can carry out real-name authentication.

In order to improve our service, we may ask you for your opinions or intentions through questionnaire survey, opinion collection or other marketing survey activities. If you choose to participate, you may need to provide personal information such as name, gender, age, preference and hobbies.

For the above additional services, you can still use other functions normally when you choose not to provide this personal information.

6) Collection of your personal information from a third party

We may collect your personal information indirectly from a third party, which only happens under the circumstance when we confirm that the third party has obtained your authorization and consent for sharing relevant data with us, or when the third party is permitted or required to disclose your personal information to us according to law.

We will ask the third party to make a commitment to the legality and compliance of personal information sources. In case of any illegal acts by the third party, we will explicitly ask the other party to bear corresponding legal responsibilities.

We will understand the scope of authorization and consent of personal information processing obtained by the third party, including the purpose of use, whether the subject of personal information authorizes the transfer, sharing, public disclosure, deletion, etc.

This personal information obtained from third parties will be used to provide services for you and to ensure the accuracy of your relevant records we have. If our processing activities of personal information exceed the authorized consent obtained by the third party, we will obtain your express consent, directly or through the third party providing the information, within a reasonable period of time when obtaining the personal information or before processing the personal information.

For the avoidance of ambiguity, the above situations do not correspond to the types of personal information we collect. Personal information collected in one of the above situations may also be collected in other situations mentioned above.

(II) Our use of your personal information

1) When we provide services, we will use your personal information for identity verification, customer service, prevention of security incidents, fraud monitoring, archiving and backup to ensure the security of the products and services we provide to you.

2) We will use your personal information to help us design new services and improve our existing services through information and data analysis.

3) We will use your personal information to better understand how you use our services, so as to tailor our services to meet your personalized demands, such as language setting, location setting, personalized help services and instructions, or make other responses to you and other users who use our services.

4) We will use your personal information to provide advertisements that you care about or advertisements that are related to you to replace the general advertisements. When you use our services, we may use your information to send you e-mails, short messages or push notifications. If you don't want to receive such information, you can cancel your subscription according to our relevant tips.

5) We will use your personal information to evaluate the effect of advertising and other publicity and promotion activities in our services and make improvement to them.

6) We will use your personal information for software certification or management of software upgrade.

7) We will use your personal information to engage you in the survey of our products and services.

8) After collecting your personal information, we will de-identify the data by technical means, and the de-identified information cannot identify the subject. Please understand and agree that we have the right to use the de-identified information under this circumstance, and that we have the right to holistically analyze and utilize the user database including your personal information subject to relevant laws and regulations.

9) In case we intend to use the information for other purposes not stated in this Policy, we will seek your prior consent.

(III) Content of mobile terminal authority

1. Scope of mobile terminal authority

1) To ensure the security, legitimacy, login identity authenticity and account security when you use the mobile terminal, we will collect the following basic information of your terminal device: MAC address, terminal's unique identification code, SIM card information, IMSI information, IMEI information, terminal version model, network IP, owner number, network type and mobile phone brand information;

2) To ensure normal operation of the mobile terminal, load H5 pages normally, and normally display the pages and functions you requested, we require you to authorize the mobile terminal to receive the content of pictures and multimedia in your terminal device and obtain the terminal storage function;

3) If you need to use the intelligent voice translation and intelligent voice assistant functions of the mobile terminal, you need to authorize the mobile terminal to access the microphone of your terminal device, otherwise, you will not be able to use the corresponding functions and services;

4) If you need to use the positioning and navigation function, you need to authorize the mobile terminal to access the location information of your terminal device, otherwise, you will not be able to use the corresponding services;

5) If you need to use the public WIFI in the venue, you need to authorize the mobile terminal to access the mobile network information, WIFI connection information and change of terminal network connection status of your terminal device, otherwise, you will not be able to use the corresponding functions and services;

6) If the mobile terminal involves functions such as face recognition and real-name authentication, you need to authorize the mobile terminal to access the camera of your terminal device, otherwise, you will not be able to use the corresponding functions;

7) If you need to call the official hotline of CIIE or call the relevant persons when you find suitable information on supply and demand, you need to authorize the mobile terminal to obtain the read-write access to contacts in the address book and the call access of your terminal device. If you contact by e-mail, you need to authorize the mobile terminal to read the APP list and start the e-mail related APPs of your terminal device. If you contact via SMS or MMS, you need to authorize the terminal device to obtain the read and write access to SMS/MMS of your terminal device. Otherwise, you will not be able to directly use the corresponding functions and services.

You may also write down or copy the contact information of related contact persons, and input or paste the contact information to external applications, so as to contact the corresponding contact persons.

8) If you update or upgrade the mobile terminal through its own update and upgrade functions, you need to authorize the mobile terminal to install files and read APP list, otherwise, you will not be able to use the corresponding functions;

9) To help you better understand the latest information on CIIE, we may push relevant information through the mobile terminal;

You can view and cancel such authorization information in the terminal device. For specific operation, you can view "VII. Your rights" to obtain detailed cancellation methods.

2. Circumstances where third-party service providers collect information

In some specific business service scenarios, for the purposes of improvement of business processing capacity, improvement of response speed or other considerations, we may use software development kits ("SDKs" for short) provided by competent third-party service providers to provide service to you. Such SDKs may collect and use your personal information subject to your authorization. Such SDKs include:

1) Tencent SDK: It is mainly used for face recognition, mobile page framework and other functions;

2) ZxingSDK: It is mainly used for code scanning recognition and other functions;

3) Naviguy SDK: It is mainly used for navigation, positioning and other functions in the venue;

4) Translation SDK: It is mainly used for intelligent translation, intelligent assistant and other functions;

5) WeChat SDK: It is mainly used for WeChat payment, WeChat mini program pull-up, WeChat login and other functions;

6) Alipay SDK: It is mainly used for Alipay payment and other functions.

3. Subject to national laws, regulations and relevant policies, the following services of the Platform may collect corresponding information

To ensure the security, availability and stability of the services and help us better understand the operation of the mobile terminal, we may record and read relevant information, including the frequency of using the client, crash data, overall usage, performance data and APP sources.

(IV) Exceptions of consent

Within the scope permitted by laws, we can collect and use your personal information under the following circumstances without obtaining your authorization and consent, and we may not respond to your requests for correction/modification, deletion, cancellation, withdrawal of consent and request for information:

1) Those related to national security and national defense security;

2) Those related to public safety, public health and major public interests;

3) Those related to judicial or administrative law enforcement such as criminal investigation, prosecution, trial and execution of judgment;

4) For the purpose of safeguarding the life, property, and other significant legal rights of you or any other individual, and it is difficult to get your consent in time;

5) Personal information disclosed to the public by yourself;

6) When the personal information is collected from legally disclosed sources, such as legal news reports, government information publicity and other sources;

7) When it is necessary for signing and performing relevant agreements or other written documents with you;

8) When it is necessary formaintaining the safe and stable operation of the products or services provided, such as detecting and disposing of failures in the products or services;

9)Information necessary for legitimate news reporting;

10)Information necessary foracademic research institutions to conduct statistical or academic researches for public interests, with personal information subject to de-identification and when the results of the academic research or description are made available to the public;

11) Other circumstances specified by laws and regulations.

Please note that if you agree that we use the above information and permission, you will authorize us to collect and use such personal information. If you close the permissions, you will cancel these authorizations, and we will cease to collect and use your personal information, nor can we provide you with relevant functions corresponding to these authorizations. Your disabling of the authorization will not affect the processing of personal information based on your authorization as described previously. You may view [V. Your rights] to obtain detailed methods to cancel authorization.

Please rest assured that the personal information we collect and use is obtained through legal channels subject to your authorization except for the above exceptions, and we will not indirectly obtain your personal information through any illegal channels.

II. How we use Cookies and similar technologies

(I) Cookies

To make your access experience easier, when you use the functions or services provided by the the Platform, we may collect and store the relevant data of your access to such functions or services with various technologies. When you visit or revisit the functions or services provided by the the Platform, we can identify you and provide you with better and more services based on data analysis. This includes identifying you with small data files to understand your use habits, help you avoid the steps of repeatedly entering account information, or help judge your account security. These data files may be Cookies, Flash Cookies or other local storage provided by your browser or associated applications (hereinafter collectively referred to as “Cookies”). Please understand that some of our services can only be implemented through Cookies. If allowed by your browser or browser add-on service, you can modify the acceptance level of Cookies or reject Cookies of the the Platform; however such rejection may render you unable to use some of the functions and services relying on the Cookies under certain circumstances.

(II) Pixel tags and client terminal beacons

Web pages often contain some electronic pixel tags, called “single-pixel GIF files” or “web beacons”, which can help the website calculate the users who browse the web pages or visit some Cookies. We will collect the information on your browsing activities with web beacons, such as the address of the pages you visit, the address of the reference page you visit previously, the time you stay on the page, your browsing environment, and display settings.

The Platform uses pixel tags in emails to find out whether an email has been opened. If you don't want us to track your activities in this way, you may unsubscribe from our mailing list at any time.

(III) Do Not Track

Many web browsers are equipped with the Do Not Track function, which can issue Do Not Track requests to websites. At present, major Internet standards organizations have not yet established policies to specify how websites should respond to such requests. But if your browser is enabled with Do Not Track function, all our websites will respect your choice.

III. How we process, share, transfer and publicly disclose your personal information through entrustment

(I) Commissioned process

Some of our modules or functions may be provided by external service providers. For example, we may hire a professional data processing service organization to provide technical support for data analysis for the Platform .

We will sign strict confidentiality agreements with the companies, organizations and individuals with whom we entrust to process your personal information, requiring them to handle your personal information in accordance with our requirements, the Policy and all other relevant measures for confidentiality and security.

(II) Sharing

For the convenience of your contact and communication with other users of the CIIE, the personal information (but excluding ID number and passport number) filled in and submitted by you on the website of the CIIE will be shared between the supplier and the demander participating in the CIIE (e.g., between you as a purchaser and exhibitors, and between you as an exhibitor and purchasers). You confirm and expressly agree that we can share your information with specific subjects in the above form. We will take appropriate technical measures for your information to ensure information security.

In addition, we will share your personal information with third parties under the following circumstances:

1) We will share your personal information with third parties other than exhibitors of CIIE and purchasers after obtaining your consent;

2) We may share your personal information according to laws and regulations, dispute resolution procedure needs, or mandatory requirements of administrative and judicial authorities;

3) We will share your personal information with our affiliated parties. We will only share necessary personal information and are bound by the purpose stated in the Policy. If we share your sensitive personal information (such as your personally identifiable information) or affiliated parties change the purpose of using and processing personal information beyond the scope of the Policy, we will seek your consent again;

4) We may share your personal information with authorized partners of the CIIE to ensure the smooth supply and completion of our products and/or services. However, we will share your personal information for legal, legitimate, necessary, specific, and clear purposes only, and will share your personal information to the extent necessary to provide services. Our partners have no right to use the shared personal information for any other purposes.

We will sign strict confidentiality agreements with the companies, organizations and individuals with whom we share your personal information, requiring them to handle your personal information in accordance with our instructions, the Policy and all other relevant measures for confidentiality and security.

The functions or services of the China International Import Expo Platform contain links to other websites. Except as otherwise provided by laws, the China International Import Expo Platform is not liable for the privacy protection measures adopted by such other websites. We may add the links to the websites of our business partners or shared brands at any time if necessary, but will only provide them with general information instead of disclosing your identity.

(III) Transfer

We will not transfer your personal information to any company, organization, and individual except for the following circumstances:

1) We will transfer your personal information to a third party after obtaining your explicit consent;

2) In case of merger, acquisition, dissolution or bankruptcy liquidation, if personal information transfer is involved, we will inform you of such transfer, and ask the new company or organization holding your personal information to continue to be bound by the Policy, otherwise, we will ask the company or organization to ask for your consent again.

(IV) Public disclosure

We will only publicly disclose your personal information under the following circumstances:

1) Your explicit consent is obtained.

2) Law-based disclosure: We may publicly disclose your personal information under the circumstances required by laws, legal procedures or relevant competent government departments.

IV. How we protect your personal information

(I) Information storage location

We will store all the collected information in the territory of China in accordance with laws and regulations. However, as our platform provides the functions and services to global users, as for the personal information collected or generated when users outside the territory of the People’s Republic of China are using the functions or services of the Platform , the users have to agree to transfer back to and store on the servers within the territory of the People’s Republic of China, otherwise, our platform cannot provide any services for you. In this case, we will protect your personal information with adequate measures according to this Policy.

(II) Period of information storage

We will only keep your personal information for the period required to achieve the purpose stated in the Policy, unless otherwise stipulated by laws and regulations. When the retained personal information exceeds the retention period, we stop operating services or after you cancel your account, we will delete or anonymize your personal information. If such measures cannot be taken (because, for example, your information has been stored in the backup archive), we will safely store your personal information and avoid further processing before such information can be deleted.

(III) How we protect your personal information

We attach great importance to your personal information security, establish an information security guarantee system in strict accordance with laws and regulations such as Cybersecurity Law of the People's Republic of China, Baseline for Classified Protection of Cybersecurity, Data Security Law of the People's Republic of China and Personal Information Security Specification, and take technical measures and other necessary measures to protect your personal information security.

1) We have a data security management system centered on data life cycle, which improves the security of the whole system from organization set-up, system design, personnel management, product technology and other aspects. At present, our information system has passed the certification of information system security protection grade (Grade 3).

2) We use encryption, desensitization and other technologies in our platform to improve the security of personal information; use a trusted protection mechanism to prevent malicious attacks on personal information; deploy access control mechanism to prevent unauthorized access; establish a security management center under which there is an information protection department and a data security emergency response organization to promote and protect personal information security; and organize regular training courses on security and privacy protection. Our measures are designed to provide you with a level of security commensurate with the risk of processing your personal information.

3) We will take reasonable and feasible measures to try to avoid collecting irrelevant personal information.

(IV) Handling of security incidents

To address possible risks such as disclosure, damage and loss of personal information, we have formulated a number of systems to clearly define the classification and grading standards for security incidents and security vulnerabilities and the corresponding processing procedures. At the same time, we have established a special emergency response team for security incidents of the Platform , which will launch security plans for different security incidents according to the requirements of security incident handling standards, stop loss, conduct analysis, carry out positioning, develop remedial measures, and work with relevant departments on origin tracing and analysis.

In case of any unfortunate personal information security incidents, we will inform you within at most 30 natural days according to the requirements of laws and regulations the basic information and possible impacts of the same, the treatment measures taken or will be taken, suggestions regarding risk prevention and reduction on your own, remedial measures offered to you, etc. We will inform you of the relevant fact by mail, letter, telephone, push notifications, etc. We will take a reasonable and effective way to publish the announcement if it is difficult to inform the personal users one by one.

Meanwhile, we will also report the disposal of the incident according to the requirements of the regulatory authorities.

Although there is no 100% secure network transmission or electronic storage method, resulting in the impossibility of us to guarantee the absolute security of personal information, we will take appropriate technical and organizational safeguard measures to protect your information from theft, loss, abuse and any unauthorized access, copy, collection, use, disclosure, change or damage.

Please use a relatively complex password in order to assist us in ensuring the security of your account.

If you have any questions about our personal information protection, please contact us according to the contact information agreed in this privacy policy. If you find your personal information (especially your account and password) leaked, please contact us immediately according to the contact information agreed in [IX. How to contact us] of this privacy policy, so that we can take corresponding measures.

V. Your rights

(I) Access to your personal information

You have the right to log in to your account at any time and access your personal information by yourself, unless otherwise stipulated by laws and regulations.

You can also exercise this right by contacting us through the contact information provided in "IX. How to contact us".

(II) Correct your personal information

You are entitled to request us to make corrections if you find any of your personal information processed by us is wrong. You can log in to your account and correct your personal information.

You can also exercise this right by contacting us through the contact information provided in [IX. How to contact us].

(III) Delete your personal information

You can request us to delete personal information through the contact information provided in "IX. How to contact us" under the following circumstances:

1) Where our processing of personal information is against laws or regulations;

2) Where we collect or use your personal information without your consent;

3) Where our processing of personal information violates the agreement with you;

4) Where you no longer use our products or services, or you have canceled your account; and

5) Where we no longer provide products or services for you.

When we decide to respond to your request for deletion, we will also notify the entities that obtained your personal information from us to delete it in time, unless otherwise stipulated by law and regulations, or these entities obtain your independent authorization.

When you delete the information from our service, we may not delete the corresponding information in the backup system immediately, but we will delete the information when the backup is updated.

(IV) Change the scope of your authorization or withdraw your authorization

Within the scope of your authorization to us to collect and process your personal information, you can change the scope of your authorization to us to process your information or withdraw your authorization by changing settings, etc. Users can close the relevant privacy authorization in "Mobile Phone Settings -> Permissions", specifically:

Android mobile phone: Settings -> Applications -> Permissions.

iOS mobile phone: Settings -> Privacy -> Permissions -> Applications.

We will push exhibition information and service information to your smart terminal equipment by algorithms, but you have the right to unsubscribe at any time. You can unsubscribe by changing the settings on your smart terminal device. You can also exercise this right by contacting us through the contact information provided in [IX. How to contact us].

Please understand that some basic personal information is required to enable each business function, and that when you cancel your consent or authorization, we cannot continue to provide you with the service for which you cancel your consent or authorization, and will no longer process the corresponding information. However, your decision to withdraw the consent or authorization does not affect the previous information processing based on your authorization.

(V) Cancel your account

You can log in to your account and cancel it. To cancel your account number, you can click the Cancel button on the Personal Information Details page, read and agree to the cancellation prompt.

You can also contact us according to the contact information set forth in [IX. How to contact us], and we will cancel your account on the platform after verifying your identity.

(VI) Obtain a copy of personal information

You can log in to your account and obtain a copy of your personal information.

You can also exercise this right by contacting us through the contact information provided in [IX. How to contact us].

(VII) Constraint on automatic decision-making by information system

For some business functions, we may make decisions based solely on non-manual automatic decision-making mechanisms such as information systems and algorithms. If these decisions significantly affect your legitimate rights and interests, you have the right to ask us for an explanation. We will also provide complaint methods on the premise of not infringing on the business secrets or other user rights and interests and the public interest.

(VIII) Response to your above requests

To ensure security, you may need to provide a written request or prove your identity in other ways. We may ask you to verify your identity before processing your request.

We will reply to your request within thirty (30) days, unless otherwise stipulated in the Policy. If you are not satisfied or have any questions, you can contact us through the contact information provided in "IX. How to contact us".

For your reasonable request, we will not charge you any fees in principle, but for repeated requests beyond the reasonable limit, we will collect a certain cost as appropriate. We may reject the requests that repeatedly occur without justified reason, require too many technical measures (for example, it is required to develop new systems or fundamentally change the existing practices), pose risks to the legitimate rights and interests of others, or are very impractical (for example, involving information stored on back-up tapes).

We will not be able to respond to your request according to relevant laws and regulations in case of the following circumstances:

1) Directly related to national security and national defense security;

2) Directly related to public safety, public health and vital public interests;

3) Directly related to crime investigation, prosecution, trial and execution of the judgment, etc.;

4) Proofed by sufficient evidence that you have subjective malice or abuse of rights;

5) Seriously prejudicial to your, other individuals' or organizations' legitimate rights and interests if your request is responded to;

6) Related to business secrets.

VI. How we process the personal information of children

The functions and services of the Platform are mainly for adults. The minors are not allowed to create their own user accounts without the consent of their guardians.

We will not take the initiative to collect personal information from minors directly. For the collection of personal information of children with the consent of guardians, we will use or publicly disclose the same only when permitted by law, agreed by guardians or when it is necessary for the protection of children.

Although the laws and customs of different countries define minors differently, we deem anyone under the age of 14 as a minor.

If we find that we have collected the personal information of children without the prior consent of the authenticated guardians, we will delete the relevant data as soon as possible.

VII. How your personal information is transferred globally

In principle, the personal information collected and generated during our operations within the People’s Republic of China will be stored in its territory.

However, as our system platform provides the functions and services to global users, as for the personal information collected or generated when users outside the territory of the People’s Republic of China are using the functions or services of the Platform , the users have to agree to transfer back to and store on the servers within the territory of the People’s Republic of China, otherwise the current functions or services of the the Platform may not be used normally. In this case, we will protect your personal information with adequate measures according to this Policy.

VIII. How to update the Policy

We may update the Policy in good time to adapt to the development of law, technology or commerce. However, without your explicit consent, we will not reduce the rights you are entitled to under the Policy. We will publish the latest version of the Privacy Policy on this page, and you can view the latest update time of the Policy at the "Latest Update Date" at the top of the Policy.

If we make major changes to the Policy, we will notify you in an appropriate way. After the change of the Policy, your continued use of our services means that you have fully read, understood and are willing to be bound by the revised Privacy Policy. Such changes to the Privacy Policy will apply from the effective date specified in the push notification. If you disagree with the updated privacy policy, you should stop visiting and/or using the Platform .

Material changes referred to in the Policy include, but are not limited to:

1) Significant changes to our service mode; Such as the purpose of processing personal information, the type of personal information processed, and the manner to use personal information;

2) Significant changes to our ownership structure and organizational structure, etc.; Such as changes of ownership caused by business adjustments, bankruptcies, M&A, etc.;

3) Changes to main objects which the personal information is shared with, transferred to or publicly disclosed to;

4) Significant changes to your right to participate in the processing of personal information as well as the mode of exercising that right;

5) Changes to the department that is responsible for the personal information security, its contact information, and the complaint channel; and

6) The impact assessment report on personal information security indicates a high risk. We will also archive the old version of this Policy for your reference.

IX. How to contact us

If you have any questions, opinions or suggestions about this Policy, please call the official service hotline of CIIE at +86-21-968888.

We will review the relevant issues as soon as possible and reply within thirty (30) days after verifying your user identity.

If you are not satisfied with our reply, or you think that our ways to process personal information have damaged your legitimate rights and interests, you can negotiate with us. If negotiation fails, you can and agree to submit the relevant disputes to the People's Court with jurisdiction where we are located and apply the laws of the People's Republic of China (excluding Hong Kong, Macao and Taiwan).