隐私政策 / Privacy Policy

目录 / Contents

术语与法律基础
我们如何收集与使用您的个人信息
个人信息的共享、转移、委托处理与公开披露
个人信息跨境提供
信息存储与安全
您的权利与实现方式
未成年人保护
平台治理与内容合规
消费者权益保障
投诉与申诉
本政策的更新
联系我们（个人信息保护相关）
法律适用与争议解决
更新与生效

附录

附录 A：平台特定隐私说明（适用于 iOS / Google Play / 小米 / 华为）
附录 B：第三方信息共享清单（iOS）
附录 C：iOS 权限与用途说明
附录 D：第三方信息共享清单（Android）
附录 E：Android权限与用途说明（Google Play/小米/华为通用）
附录 F：用户可控开关与路径（建议集中于“我的—隐私设置”）

《隐私政策》
更新日期：2025年9月26日

主体：上海缘起网络技术有限公司（以下简称“公司”或“我们”）
适用范围：本政策适用于由上海缘起网络技术有限公司开发并运营的“EmoHug”APP在中国大陆提供的产品功能及相关服务（以下统称“本服务”）。
在使用本服务前，请您仔细阅读并充分理解本政策全部条款。如您不同意本政策的任何内容，请立即停止使用本服务。

1. 术语与法律基础
• 个人信息、敏感个人信息、个人信息处理者、去标识化/匿名化、自动化决策等，均以《中华人民共和国个人信息保护法》之定义为准。
• 我们处理个人信息的法律依据包括：取得您的明示同意；为订立、履行合同所必需；履行法定职责或者法定义务所必需；应对突发公共卫生事件或者紧急情况下为保护自然人生命健康和财产安全所必需；在合理范围内为公共利益（如新闻报道、舆论监督）处理所必需；以及法律、行政法规规定的其他情形。

2. 我们如何收集与使用您的个人信息
我们遵循最小必要、公开透明、目的限定原则，仅为以下目的处理信息。如拟变更处理目的或方式，将再次征得您的同意（敏感信息会单独征得同意）。

2.1 注册与账号管理

【重点提示】我们处理的敏感个人信息

为向您提供注册/登录与交易服务，我们可能在取得您单独同意后处理以下敏感个人信息：

手机号码：用于注册、登录、身份验证与账号安全（含运营商一键登录场景）。
支付相关信息：订单号、商品/服务信息、交易状态等（不包含银行卡号）。

您可以拒绝提供上述信息，但可能无法使用与该信息直接相关的功能，不影响其他功能的正常使用。

    • 基本注册信息：昵称、头像、性别、生日、手机号码、电子邮箱等。
    • 登录方式：除手机/邮箱登录外，若您选择第三方社交登录（如微信），我们亦提供 Apple ID 登录（或具等效隐私特性的登录服务），以降低数据暴露与广告用途风险。（iOS 要求对第三方/社交登录提供具隐私特性的补充登录方式）。
    • 账号安全：用于验证与风控的信息（如短信/邮件验证码、登录/操作日志、IP 等）。
    • 设备标识与平台差异声明：我们不会通过收集设备属性组合进行指纹识别，也不会采集操作系统禁止访问或与核心功能无关的设备标识（如 MAC 地址、应用安装列表等）。在 Android 端，我们遵循“最小必要”原则和平台相关限制。在 iOS 端，我们不会采集 IMEI、MAC 地址、应用安装列表等信息；如确需设备标识，将仅限于 IDFV、IDFA（经您通过 ATT 授权同意）及推送 Token。

2.2 服务与内容交互
     • 您输入或上传的内容：文本、语音、图片、视频、文档等，仅用于提供智能交互、内容生成、检索与展示等功能。
     • 设备与使用信息：会话启动/停止时间、崩溃日志、点击与操作记录、系统版本、网络状态等，用于保障稳定性与改进体验。
     • 您选择/上传的图片或视频可能包含拍摄时间、设备信息或位置信息等元数据（例如照片的 EXIF 地理标签）。我们仅在实现展示/上传等对应功能所必需范围内处理该等信息；如您不希望图片包含位置信息，可在系统相机设置中关闭“照片定位”，或选择不含位置信息的图片上传。

2.3 支付与订单
当您购买增值服务/订阅时，我们接收订单号、商品/服务信息、支付状态等必要信息。iOS 端交易由 Apple IAP/Apple Pay 处理，我们不接触您的银行卡号等敏感支付信息。

2.4安全与合规
为防止欺诈与滥用、保障账号与交易安全，我们可能处理设备标识（IDFV、经 ATT 同意后的 IDFA）、IP、异常行为日志、安全校验结果等，并与仅用于安全目的的服务提供商进行校验。

2.5AI 生成内容免责声明
本APP所提供的全部互动内容均由人工智能技术自动生成，仅供参考，内容可能存在不完整、不准确、延迟或具有误导性的情况。用户在使用过程中应具备独立判断能力，自行甄别和核实相关内容，并独自承担因使用本APP相关内容而产生的全部风险及后果，本公司对此不承担任何责任。如出现不当或侵权内容，您可在 App 内举报，我们将及时处置。

2.6 特别声明（仅适用于“情绪陪伴/自我关怀”）
本应用提供的 AI 情绪陪伴与自我关怀服务仅用于日常情绪管理和支持，不能替代专业的心理咨询、心理治疗或医疗服务。如您正在经历严重的心理困扰、抑郁、焦虑或其他精神健康问题，请务必寻求具有资质的心理咨询师或医疗专业人员的帮助。若因依赖本应用而延误或替代专业诊疗，本公司不承担任何责任。

2.7 Cookie 与同类技术（含 SDK/本地存储）
     • 应用可能通过本地存储、Keychain、Token、分析 SDK 等实现会话维持、反作弊与统计分析。
     • 搜索词等单独信息如无法识别特定自然人不属于个人信息；一旦与其他信息结合可识别个人时，将按个人信息管理。
     • 跟踪声明（iOS/ATT）：进行跨应用广告定向或归因前，我们会弹出系统授权提示；如您拒绝，我们不会进行上述跟踪，亦不会访问 IDFA。

3. 个人信息的共享、转移、委托处理与公开披露
     • 委托处理：为实现消息推送、号码一键登录、云存储/内容审核、数据分析等功能，我们可能委托第三方处理必要信息，并通过合同要求其仅为本政策所述目的处理、实施等同安全措施。
     • 共享：仅在必要、最小范围内与合作伙伴共享与该功能直接相关的数据，并记录共享台账。
     • 转移/公开披露：原则上不对外转移或公开披露您的个人信息；如因合并/重组/依法披露确有必要，我们会依法评估并告知您。
     • 法律合规要求：可能据法律法规或监管机关依法提出之要求提供必要信息。
     • 第三方清单：见《附录 B：第三方信息共享清单（iOS）》、《附录 D：第三方信息共享清单（Android）》；我们将在应用内长期公示并按版本更新。

4. 个人信息跨境提供
我们的服务器位于中国境内。如因 APNs 推送、邮件中继、云加速或其他场景确需向境外提供必要且最小化的信息，我们将依据适用规则采取数据出境安全评估、个人信息出境标准合同（SCC）备案或认证等合规路径，并充分告知并取得相应同意。

5. 信息存储与安全
     • 存储期限：在达成处理目的所必需的最短期间内保存；法律另有要求的，从其规定；到期后删除或匿名化。
     • 安全措施：访问控制、最小权限、TLS 传输加密、存储加密、脱敏/去标识化、零信任、分级分类与事件应急响应；发生安全事件时，按法定程序通知您与主管机关
     • 免责条款：请妥善保管账号与验证要素，避免向第三方泄露。因您自身原因（如账号泄露、操作不当、授权第三方、设备 Root/越狱、弱口令等）导致的信息泄露、丢失、被盗用、被篡改或其他损失，公司不承担责任。

6. 您的权利与实现方式
     • 访问、复制、纠正、删除个人信息；您可在账号设置中访问、更正或删除您的个人信息。如无法直接操作，您可通过客服申请。
     • 账号注销：路径“我的—设置—账号—注销账号”；账号一旦注销将无法恢复。注销后我们将删除或匿名化处理您的信息（法律要求留存的除外）；处理结果将在 15 个工作日内通过站内信/邮件告知；若您的账号中存在积分或虚拟资产，请在注销前妥善处理。
     • 数据可携（在符合法律规定与技术条件可行时）；
     • 自动化决策的解释与拒绝权；
     • 投诉与申诉：见第 10 条。
为保护您或他人合法权益，我们可能在响应上述请求前进行身份核验。

注：iOS/Apple 对“支持账号创建的 App 必须提供账号删除”有明确要求；Google Play 亦要求应用内与网页端可发起账号与数据删除，并在 Data safety 中填报删除链接。

7. 未成年人保护
本服务仅面向年满 18 周岁的用户。我们不主动收集未成年人信息；如发现误收集，将及时删除。如您发现未成年人使用，请立即与我们联系。

8. 平台治理与内容合规
我们将依据法律法规与平台规则对违法违规内容与行为进行审核、标记、限制或删除，并可对严重违规采取封禁等措施；涉及国家安全、社会秩序等风险的，将依法报告相关机关。

9. 消费者权益保障
     1. 知情权保障：我们将通过公告或提示告知用户信息收集与使用规则。
     2. 公平交易：涉及付费项目时，我们会以清晰、显著的方式提示，避免误导或欺诈。
     3. 申诉机制：用户如认为自身权益受侵害，可通过客服渠道申诉，我们将在 15 个工作日内处理。

10. 投诉与申诉
     • 邮箱：service@yuanqi.com
     • App 内：问题反馈
     • 我们将在 15 个工作日内回复并给出处理结果；对结果不满意，您可向消协或监管机关投诉或依法诉讼。

11. 本政策的更新
因法律、业务或技术变化，我们可能修订本政策。重要变更将以弹窗/站内信/页面公告方式提示；继续使用视为同意更新内容。

12. 联系我们（个人信息保护相关）
     • 个人信息保护负责人（DPO/专员）：通过 service@yuanqi.com 联系（主题请注明“PIPL/隐私”）
     • 通信地址：上海市（以官网公示为准）

13. 法律适用与争议解决
本政策适用中华人民共和国法律。若发生争议，双方首先友好协商；协商不成，提交公司所在地有管辖权的人民法院解决。

14. 更新与生效
本政策解释权归上海缘起网络技术有限公司所有。本政策自【2025年9月26日】起生效。我们会根据法律法规的变化或服务内容的调整对本政策进行修订，并以适当方式提示您。本政策的附录为本政策不可分割的组成部分，与正文具有同等法律效力。

附录 A：平台特定隐私说明（适用于 iOS / Google Play / 小米 / 华为）

A. Apple iOS（App Store）
     1. 登录与账号删除
我们在 iOS 端提供具隐私保护特性的登录方式（如 “使用 Apple 登录”或等效方案）。如您的账号由我们托管，我们在应用内提供可见的账号删除入口，并在法定/承诺时限内处理您的删除请求。
     2. 跟踪与标识符（ATT/IDFA）
涉及跨 App 广告定向或归因前，我们会通过 App Tracking Transparency（ATT）弹窗征得您的授权；如您拒绝，我们不进行此类跟踪，亦不会访问 IDFA。
     3. 数据披露与第三方组件透明度
我们会在 App Store 产品页按要求公示本应用及所嵌入第三方代码/SDK涉及的数据类型与用途，并保持更新与一致性。

附录 B：第三方信息共享清单（iOS）
移动一键登录 SDK
提供方：中移互联网有限公司
收集信息类型：手机号（经您操作授权）、IMSI（运营商鉴权）
使用目的：一键登录
使用场景：登录注册
获取方式： SDK 本机采集
处理规则：隐私地址

联通一键登录 SDK
提供方：中国联合网络通信集团有限公司
收集信息类型：手机号（经您操作授权）、IMSI（运营商鉴权）
使用目的：一键登录
使用场景：登录注册
获取方式： SDK 本机采集
处理规则：隐私地址

电信一键登录 SDK
提供方：中国电信集团有限公司
收集信息类型：手机号（经您操作授权）、IMSI（运营商鉴权）
使用目的：一键登录
使用场景：登录注册
获取方式： SDK 本机采集
处理规则：隐私地址

第三方仅在提供服务所必需范围内处理数据；不得用于无关目的；处理规则以其隐私政策为准；您可拒绝相关采集，但可能影响相应功能，不影响核心使用。

附录 C：iOS 权限与用途说明
     • NSCameraUsageDescription：用于拍摄头像/上传图片或扫码完成功能。
     • NSMicrophoneUsageDescription：用于语音输入/音视频互动。
     • NSPhotoLibraryUsageDescription：用于从相册选择图片/视频以便上传或分享。
     • NSPhotoLibraryAddUsageDescription：用于将生成内容/下载文件保存到您的相册。

附录 D：第三方信息共享清单（Android）
微信开放平台
提供方：腾讯科技（深圳）有限公司
收集信息类型：设备标识（由微信 SDK 产生）、头像/昵称（经授权）、登录 Token
使用目的：第三方登录、分享、微信支付（如适用）
使用场景：注册/登录/分享/支付
获取方式： SDK 本机采集/回传
处理规则：隐私地址

移动一键登录 SDK
提供方：中移互联网有限公司
收集信息类型：手机号（经您操作授权）、IMSI（运营商鉴权）
使用目的：一键登录
使用场景：登录注册
获取方式： SDK 本机采集
处理规则：隐私地址

联通一键登录 SDK
提供方：中国联合网络通信集团有限公司
收集信息类型：手机号（经您操作授权）、IMSI（运营商鉴权）
使用目的：一键登录
使用场景：登录注册
获取方式： SDK 本机采集
处理规则：隐私地址

电信一键登录 SDK
提供方：中国电信集团有限公司
收集信息类型：手机号（经您操作授权）、IMSI（运营商鉴权）
使用目的：一键登录
使用场景：登录注册
获取方式： SDK 本机采集
处理规则：隐私地址

附录 E：Android权限与用途说明（Google Play/小米/华为通用）
     • 相机（CAMERA）：拍摄头像/扫码。
     • 麦克风（RECORD_AUDIO）：语音输入/音视频互动。
     • 照片/媒体（READ_MEDIA_ / READ_EXTERNAL_STORAGE）*：上传或分享所选媒体。

附录 F：用户可控开关与路径（建议集中于“我的—隐私设置”）
     • 账号注销：入口我的—设置—账号—注销账号

Privacy Policy
Updated on: September 26, 2025

Entity: Shanghai Yuanqi Network Technology Co., Ltd. (hereinafter, the “Company” or “we”)
Scope: This Privacy Policy applies to the “EmoHug” mobile application developed and operated by Shanghai Yuanqi Network Technology Co., Ltd., and the products and related services provided within the territory of Mainland China (hereinafter collectively referred to as the "Services").
Before using the Services, please carefully read and fully understand all the terms of this Privacy Policy. If you do not agree with any part of this Privacy Policy, please immediately cease using the Services.

1. Definitions and Legal Basis
• The terms Personal Information, Sensitive Personal Information, Personal Information Processor, De-identification/Anonymization, and Automated Decision-making shall have the meanings as defined under the Personal Information Protection Law of the People’s Republic of China (PIPL).
• The legal bases on which we process personal information include: obtaining your explicit consent; where it is necessary for the conclusion or performance of a contract; where it is necessary for fulfilling statutory duties or obligations; where it is necessary to respond to public health incidents or other emergencies to protect the life, health, and property of natural persons; where it is necessary for the public interest within a reasonable scope (such as news reporting and public opinion supervision); and other circumstances permitted by laws and administrative regulations.

2. How We Collect and Use Your Personal Information
We adhere to the principles of data minimization, openness and transparency, and purpose limitation, and process information only for the purposes set out below. If we intend to change the purposes or methods of processing, we will seek your renewed consent (and will obtain separate consent for sensitive information).

2.1 Registration and Account Management

Important Notice: Sensitive Personal Information

To provide registration/login and transaction services, we may process the following Sensitive Personal Information only after obtaining your separate consent:

Mobile phone number: used for registration, login, identity verification, and account security (including one-click carrier login, if applicable).
Payment-related information: order number, product/service details, and transaction status (excluding bank card numbers).

You may refuse to provide the above information, but certain related functions may be unavailable. Other functions will not be affected.

     • Basic registration information: nickname, profile photo, gender, date of birth, mobile phone number, email address, etc.
     • Sign‑in methods: in addition to mobile/email sign‑in, if you choose third‑party social sign‑in (e.g., WeChat), we also provide Apple ID sign‑in (or a sign‑in method with equivalent privacy protections) to reduce data exposure and advertising‑use risks. (iOS requires a privacy‑preserving supplemental sign‑in option when third‑party/social login is used.)
     • Account security: information used for verification and risk control (e.g., SMS/email verification codes, login/operation logs, IP address, etc.).
     • Device identifiers and platform‑specific statement: we will not construct device fingerprints by collecting combinations of device attributes, nor will we collect device identifiers that the operating system prohibits access to or that are unrelated to core functions (such as MAC address, app installation lists, etc.). On Android, we follow the minimum necessary principle and relevant platform restrictions. On iOS, we do not collect IMEI, MAC addresses, or app installation lists; where a device identifier is necessary, it will be limited to IDFV, IDFA (subject to your ATT authorization/consent), and push tokens.

2.2 Use of Services and Content Interactions
     • Content you input or upload: text, voice, images, video, and documents, used solely to provide intelligent interactions, content generation, retrieval, display, and related functions.
     • Device and usage information: session start/stop times, crash logs, clickstream and operation records, OS version, network status, etc., used to ensure stability and improve user experience.
     • Photos or videos you select/upload may contain metadata such as capture time, device information, or location information (e.g., EXIF geotags). We process such metadata only to the extent necessary to provide the relevant features (such as display/upload). If you do not want location metadata to be included, you may disable “Location” for photos in your system camera settings or upload media without location metadata.

2.3 Payments and Orders
When you purchase value‑added services/subscriptions, we receive necessary order information such as order number, product/service details, and payment status. On iOS, transactions are processed by Apple IAP/Apple Pay; we do not access your bank card numbers or other sensitive payment information.

2.4 Security and Compliance
To prevent fraud and abuse and to ensure account and transaction security, we may process device identifiers (such as IDFV and, where applicable, IDFA upon your authorization under ATT), IP addresses, abnormal activity logs, and security verification results. Such information may be verified with service providers solely for security purposes.

2.5 Disclaimer Regarding AI-Generated Content
All interactive content provided by the App is automatically generated by artificial intelligence and is for reference purposes only. Such content may be incomplete, inaccurate, delayed, or misleading. Users shall exercise independent judgment, verify the relevant content, and assume all risks and consequences arising from their use of the App’s content. The App assumes no liability whatsoever for any such risks and consequences. If any improper or infringing content appears, you may report it through the App, and we will address it promptly.

2.6 Special Statement: Emotional Companion / Self-Care Services
The AI-based Emotional Companion and Self-Care features provided by this App are intended solely for daily emotional management and general support. They are not a substitute for professional psychological counseling, psychotherapy, or medical services. If you are experiencing severe psychological distress, depression, anxiety, or other mental health issues, please promptly seek help from a qualified psychologist or healthcare professional. The Company shall not be liable for any consequences arising from reliance on these services as a substitute for, or delay in, professional diagnosis or treatment.

2.7 Cookies and Similar Technologies (including SDKs/Local Storage)
     • The App may use local storage, Keychain, push tokens, analytics SDKs, and similar technologies to maintain sessions, prevent abuse, and perform statistical analysis.
     • Standalone data points such as search terms that cannot identify a specific natural person do not constitute personal information; once combined with other information to identify a person, we will manage them as personal information.
     • Tracking statement (iOS/ATT): before any cross‑app advertising targeting or attribution, we will present the system authorization prompt; if you refuse, we will not conduct such tracking and will not access IDFA.

3. Sharing, Transfer, Entrusted Processing, and Public Disclosure of Personal Information
     • Entrusted processing: to enable functions such as message push, one‑click mobile login, cloud storage/content moderation, and data analytics, we may entrust third parties to process necessary information and require them by contract to process data only for the purposes stated in this Policy and to implement equivalent security measures.
     • Sharing: we share only the minimum necessary data directly related to the relevant function with partners and keep a sharing register.
     • Transfer/Public disclosure: as a rule, we do not transfer or publicly disclose your personal information. If necessary due to merger/restructuring or statutory disclosure, we will conduct legal assessments and notify you as required.
     • Legal compliance: we may provide necessary information in accordance with laws/regulations or upon lawful requests from competent authorities.
     • Third-Party List: See Appendix B: Third-Party Information Sharing List (iOS) and Appendix D: Third-Party Information Sharing List (Android). We will make this information publicly available within the App on a long-term basis and update it according to each version.

4. Cross‑Border Provision of Personal Information
Our servers are located in China. If it becomes necessary to provide minimal and necessary information outside China (e.g., for APNs push, email relay, content acceleration, or other scenarios), we will, in accordance with applicable rules, adopt compliance paths such as data export security assessment, Standard Contract for the Cross‑Border Transfer of Personal Information (SCC) filing, or certification, and will fully inform you and obtain corresponding consent.

5. Information Storage and Security
     • Retention period: We retain personal information for the shortest period necessary to achieve the processing purposes; where laws require otherwise, such requirements prevail; upon expiry, information will be deleted or anonymized.
     • Security measures: Access controls, least‑privilege management, TLS transport encryption, storage encryption, masking/de‑identification, zero‑trust, classification/grading, and incident response; in the event of a security incident, we will notify you and competent authorities in accordance with legal procedures.
     • Disclaimer: Please keep your account credentials and verification factors safe and do not disclose them to third parties. The Company is not responsible for information leakage, loss, theft, tampering, or other damage caused by your own actions, such as account leakage, improper operations, authorizing third parties, device rooting/jailbreaking, weak passwords, etc.

6. Your Rights and How to Exercise Them
     • Access, copy, rectify, and delete personal information. You can access, correct, or delete your personal information in account settings; if you cannot do so directly, you may apply via customer service.
     • Account cancellation (deletion): path “Me → Settings → Account → Delete Account.” Once deleted, the account cannot be restored. After deletion, we will delete or anonymize your information (except where retention is required by law). We will notify you of the result via in‑app message/email within 15 business days. If your account contains points or virtual assets, please handle them before deletion.
     • Data portability (where permitted by law and technically feasible).
     • Rights regarding automated decision‑making: explanation and refusal rights.
     • Complaints and appeals: see Section 10.
To protect your or others’ lawful rights and interests, we may need to verify your identity before responding.

Note: iOS/Apple explicitly requires that apps supporting account creation must provide in‑app account deletion; Google Play also requires both in‑app and web‑based account/data deletion and the submission of a deletion link in Data safety.

7. Protection of Minors
The Services are intended only for users aged 18 and above. We do not proactively collect minors’ information; if such collection is discovered, we will promptly delete it. If you discover a minor using the Services, please contact us immediately.

8. Platform Governance and Content Compliance
We will review, label, restrict, or remove illegal or rule‑violating content and behaviors in accordance with laws, regulations, and platform rules, and may impose account bans for serious violations. Risks involving national security or public order will be reported to competent authorities as required by law.

9. Consumer Rights Protection
     1. Right to know: we will inform users of information collection and use rules through notices or prompts.
     2. Fair dealing: where paid items are involved, we will provide clear and prominent reminders to avoid misleading or fraudulent practices.
     3. Appeals: if you believe your rights and interests have been infringed, you may file a complaint via customer service; we will process it within 15 business days.

10. Complaints and Appeals
     • Email: service@yuanqi.com
     • In‑App: Feedback
     • We will reply and provide a handling outcome within 15 business days. If you are dissatisfied, you may complain to consumer associations or regulators, or pursue legal action in accordance with law.

11. Changes to This Policy
We may revise this Policy due to changes in laws, business, or technology. Material changes will be notified via pop‑ups, in‑app messages, or page announcements. Your continued use of the Services constitutes acceptance of the updated Policy.

12. Contact Us (Personal Information Protection)
     • Personal Information Protection Officer (DPO/Designated Officer): contact via service@yuanqi.com (please indicate “PIPL/Privacy” in the subject line)
     • Mailing address: Shanghai, PRC (as published on our official website)

13. Governing Law and Dispute Resolution
This Policy is governed by the laws of the People’s Republic of China. In case of any dispute, the parties shall first seek an amicable resolution. Failing that, the dispute shall be submitted to the people’s court with jurisdiction at the Company’s domicile.

14. Updates and Effective Date
Shanghai Yuanqi Network Technology Co., Ltd. reserves the right of final interpretation of this Privacy Policy. This Policy shall take effect on [September 26, 2025]. We may revise this Policy from time to time in response to changes in applicable laws, regulations, or our services, and will notify you in an appropriate manner. The appendices to this Privacy Policy form an integral part of the Policy and have the same legal effect as the main text.

Appendix A: Platform‑Specific Privacy Notice (for iOS / Google Play / Xiaomi / Huawei)

A. Apple iOS (App Store)
     1. Sign‑in and account deletion
On iOS, we offer privacy‑preserving sign‑in options (e.g., Sign in with Apple or an equivalent). If your account is hosted by us, we provide a visible in‑app account‑deletion path and will process your deletion request within the stated or legally required timeframes.
     2. Tracking and identifiers (ATT/IDFA)
Before any cross‑app ad targeting or attribution, we will seek your authorization via the App Tracking Transparency (ATT) prompt. If you refuse, we will not conduct such tracking and will not access IDFA.
     3. Data disclosure and third‑party component transparency
On the App Store product page, we disclose the categories of data collected by the App and embedded third‑party code/SDKs and keep such disclosures accurate and up to date.

Appendix B: Third-Party Information Sharing List (iOS)
China Mobile One-Click Login SDK
Provider: China Mobile Internet Co., Ltd.
Types of Information Collected: Mobile phone number (authorized by user action), IMSI (operator authentication)
Purpose of Use: One-click login
Usage Scenarios: Login / Registration
Collection Method: Collected locally by SDK
Processing Rules: Privacy Policy URL

China Unicom One-Click Login SDK
Provider: China United Network Communications Group Co., Ltd.
Types of Information Collected: Mobile phone number (authorized by user action), IMSI (operator authentication)
Purpose of Use: One-click login
Usage Scenarios: Login / Registration
Collection Method: Collected locally by SDK
Processing Rules: Privacy Policy URL

China Telecom One-Click Login SDK
Provider: China Telecommunications Corporation
Types of Information Collected: Mobile phone number (authorized by user action), IMSI (operator authentication)
Purpose of Use: One-click login
Usage Scenarios: Login / Registration
Collection Method: Collected locally by SDK
Processing Rules: Privacy Policy URL

Third parties process data only to the extent necessary to provide their services; data must not be used for unrelated purposes; their processing rules are subject to their own privacy policies; you may refuse such collection, which may affect related functions but does not affect core use.

Appendix C: iOS Permissions and Intended Uses
     • NSCameraUsageDescription: used to take profile photos/upload images or to scan codes to complete features.
     • NSMicrophoneUsageDescription: used for voice input or audio/video interactions.
     • NSPhotoLibraryUsageDescription: used to select photos/videos from the library for upload or sharing.
     • NSPhotoLibraryAddUsageDescription: used to save generated content/downloaded files to your photo library.

Appendix D: Third-Party Information Sharing List (Android)
WeChat Open Platform
Provider: Tencent Technology (Shenzhen) Co., Ltd.
Types of Information Collected: Device identifier (generated by WeChat SDK), avatar/nickname (upon authorization), login token
Purpose of Use: Third-party login, sharing, WeChat Pay (if applicable)
Usage Scenarios: Registration / Login / Sharing / Payment
Collection Method: Collected and transmitted locally by SDK
Processing Rules: Privacy Policy URL

China Mobile One-Click Login SDK
Provider: China Mobile Internet Co., Ltd.
Types of Information Collected: Mobile phone number (authorized by user action), IMSI (operator authentication)
Purpose of Use: One-click login
Usage Scenarios: Login / Registration
Collection Method: Collected locally by SDK
Processing Rules: Privacy Policy URL

China Unicom One-Click Login SDK
Provider: China United Network Communications Group Co., Ltd.
Types of Information Collected: Mobile phone number (authorized by user action), IMSI (operator authentication)
Purpose of Use: One-click login
Usage Scenarios: Login / Registration
Collection Method: Collected locally by SDK
Processing Rules: Privacy Policy URL

China Telecom One-Click Login SDK
Provider: China Telecommunications Corporation
Types of Information Collected: Mobile phone number (authorized by user action), IMSI (operator authentication)
Purpose of Use: One-click login
Usage Scenarios: Login / Registration
Collection Method: Collected locally by SDK
Processing Rules: Privacy Policy URL

Appendix E: Android Permissions and Intended Uses (Applicable to Google Play/Xiaomi/Huawei)
     • Camera (CAMERA): take profile photos/scan codes.
     • Microphone (RECORD_AUDIO): voice input/audio‑video interactions.
     • Photos/Media (READ_MEDIA_ / READ_EXTERNAL_STORAGE)*:* upload or share selected media.

Appendix F: User-Controllable Toggles and Access Paths (centralized under “Me → Privacy Settings”)
     • Account deletion: entry point + risk reminder + progress updates (≤ 15 business days); Google Play additionally requires a web deletion entry and the link to be filed in the store’s Data safety.