Privacy Policy

Last Updated: April 3, 2026

1. Introduction

Beijing Huoli Science And Trade Co., Ltd ("Company", "We", "Us", or "Our") operates globally and is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information across all our services, applications, and platforms.

2. Information We Collect

We collect information that you provide directly and information collected automatically through your use of our services:

  • Account Information: Name, email address, contact details, payment information
  • Usage Data: Device information, IP address, browser type, pages visited, duration of visit
  • Location Data: GPS location (only with explicit permission)
  • Communications: Messages, support tickets, feedback you provide
  • Payment Information: Billing address, purchase history (processed securely)

3. How We Use Your Information

We use collected information for the following purposes:

  • Providing and improving our mobile applications and services
  • Processing transactions and sending related information
  • Personalizing user experience and analytics
  • Communicating about updates, support, and promotional offers
  • Detecting and preventing fraud and abuse
  • Complying with legal obligations and protecting rights

4. Compliance with Global Regulations

4.1 General Data Protection Regulation (GDPR)

For residents of the European Union and EEA countries, we comply with GDPR requirements:

  • Legal basis for processing includes consent, contract fulfillment, and legitimate interests
  • You have rights to access, rectify, erase, and port your data
  • Data retention is limited to necessary purposes
  • Privacy by design is incorporated into all our services

4.2 California Consumer Privacy Act (CCPA)

For California residents, we provide:

  • Right to know what personal information is collected
  • Right to delete personal information under certain circumstances
  • Right to opt-out of sale of personal information
  • Non-discrimination for exercising privacy rights

4.3 China Personal Information Protection Law (PIPL)

As a China-based company, we adhere to PIPL standards:

  • Explicit consent for personal data processing
  • Clear data processing purposes and scope
  • Secure data storage with encryption
  • Data subject rights including access and deletion

4.4 Other Regional Privacy Laws

We comply with privacy regulations including LGPD (Brazil), PDPA (Thailand), and applicable laws in jurisdictions where we operate.

5. Developer Policy Compliance

For developers using our platform, we ensure compliance with:

  • Apple App Store: Privacy Policy requirements, App Tracking Transparency compliance, IDFA management
  • Google Play Store: Data safety requirements, permission justification, Children's Policy compliance
  • Children's Requirements: COPPA (US), GDPR Article 8 (EU), PIPL protections for minors
  • Age Gating: Appropriate age verification mechanisms for age-restricted content

6. Monetization Platform Compliance

Our applications implement proper compliance with major monetization platforms:

  • Google AdMob: Ad policy compliance, user data protection, COPPA and GDPR adherence
  • Meta Audience Network: Privacy compliance, data usage restrictions, tracking guidelines
  • Apple iAd: App-specific privacy, user tracking preferences
  • Other Ad Networks: Compliance with individual network privacy requirements

7. Data Security

We implement comprehensive security measures:

  • End-to-end encryption for sensitive data transmission
  • SSL/TLS protocols for all communication
  • Secure data storage with industry-standard encryption
  • Regular security audits and penetration testing
  • Access controls and authentication mechanisms

8. Third-Party Services

Our applications may integrate with third-party services including:

  • Payment processors (Apple Pay, Google Pay, Stripe)
  • Analytics services (Firebase, Mixpanel, Amplitude)
  • Cloud storage providers
  • Advertising networks

We ensure these partners maintain appropriate data protection standards. Please review their privacy policies for additional information.

9. User Rights

Depending on your location, you may have the following rights:

  • Right to access your personal data
  • Right to correct inaccurate information
  • Right to delete your information (with exceptions)
  • Right to data portability
  • Right to withdraw consent
  • Right to object to processing
  • Right to lodge complaints with privacy authorities

10. Children's Privacy

We are committed to protecting children's privacy:

  • Applications marked as children's apps do not use behavioral advertising
  • Parental consent is obtained where required by law
  • No collection of personal information from children under 13 without parental consent
  • Applications comply with COPPA, GDPR, and PIPL provisions for minors

11. Age Policy Adaptation

We implement comprehensive age verification and management systems aligned with global regulations:

Global Age Standards

  • United States (COPPA): Children under 13 require verifiable parental consent. No behavioral advertising to users under 13.
  • Europe (GDPR): Age of digital consent ranges from 13-16 depending on member state. Parental consent required for users below the digital age of consent.
  • China (PIPL): Children under 14 require consent from parent or guardian. Enhanced protections for processing children's personal information.
  • Other Regions: Compliance with local age restrictions including UK, Canada, Australia, and other jurisdictions.

Age Verification Mechanisms

  • Age gate implementation at service access points
  • Parental consent verification systems
  • ID verification integration where legally required
  • Regular compliance audits with age-gating effectiveness

Age-Restricted Services

  • Content rating compliance (ESRB, PEGI, USK, ClassInd, etc.)
  • Age-appropriate monetization strategies
  • Restricted advertising to minors
  • Enhanced parental controls for under-18 users

Parental Controls

  • Parents/guardians can manage child account settings
  • Options to restrict in-app purchases for minor accounts
  • Real-time notifications for account activity
  • Easy account termination by parents/guardians

12. Privacy Data Adaptation & Processing

We maintain strict protocols for privacy data handling across different regulatory frameworks:

Data Classification & Handling

  • Personal Information: Names, email addresses, phone numbers - encrypted storage and transmission
  • Sensitive Personal Data: Payment information, health data, biometric data - enhanced encryption and access controls
  • Behavioral Data: Usage patterns, preferences - anonymized where possible, pseudonymized when necessary
  • Location Data: GPS coordinates - processed only with explicit user consent, encrypted in transit and at rest

Data Processing Basis

  • Consent-Based: Explicit user consent required with clear opt-in/opt-out mechanisms
  • Contract Performance: Data necessary to deliver requested services
  • Legal Obligation: Data required by applicable laws and regulations
  • Legitimate Interest: Balanced against user privacy rights, with transparent disclosure

Privacy-Enhancing Technologies

  • End-to-end encryption for communications
  • Data minimization practices - collect only necessary information
  • Differential privacy techniques for analytics
  • Secure multi-party computation for data analysis
  • Homomorphic encryption for processing encrypted data

Data Subject Rights Implementation

  • Right to Access: Users can request all personal data we hold within 30 days
  • Right to Rectification: Users can correct inaccurate personal information
  • Right to Erasure: Users can request deletion of personal data (subject to legal obligations)
  • Right to Restrict Processing: Users can limit how their data is used
  • Right to Data Portability: Users can receive their data in portable format
  • Right to Object: Users can object to specific data processing activities

Cross-Border Data Transfers

  • Standard Contractual Clauses for EU-to-non-EU transfers
  • Binding Corporate Rules for intra-group transfers
  • Adequacy decisions where applicable
  • Transfer Impact Assessments per GDPR Article 34
  • Dual compliance with both source and destination country regulations

Privacy by Design

  • Privacy considerations included in all product development phases
  • Data protection impact assessments for new services
  • Privacy-first default settings
  • Regular privacy audits and third-party assessments

13. Cookies and Tracking

We use cookies and similar tracking technologies:

  • Necessary cookies for basic functionality
  • Performance cookies to improve user experience
  • Users can control cookie preferences through browser settings
  • GDPR-compliant consent mechanism for non-essential cookies

12. Data Retention

We retain personal data only as long as necessary for the purposes stated in this Privacy Policy. Retention periods vary by data type and are governed by legal requirements and business needs.

13. International Data Transfers

As we operate globally, data may be transferred internationally. We implement Standard Contractual Clauses and other mechanisms to ensure adequate protection when transferring data outside your country of residence.

14. Contact Us

For privacy-related inquiries or to exercise your rights:

15. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated effective date. Your continued use of our services constitutes acceptance of the updated policy.