Sichuan Shijiayi Technology logo Sichuan Shijiayi Technology Co., Ltd

Privacy Policy

Effective Date: May 18, 2026

Data Controller: Sichuan Shijiayi Technology Co., Ltd

Office Address: No. C-630, 4th Floor, Building D, No. 8 Olympic North Road, East District, Panzhihua, 617000, CN

Website: scshijiayi.com

Business Support: support@scshijiayi.com

Key Accounts: luoqi1@scshijiayi.com

1. Scope and Applicability

This Privacy Policy applies to our websites, software products, information systems, and mobile applications published in app marketplaces including Google Play and Apple App Store. It applies to users in Europe, North America, and other jurisdictions where our services are available.

2. Services Covered by this Policy

Our processing activities support technical service, technical development, technical consultation, technical exchange, technology transfer, technology promotion, information technology consulting services, software development, information system integration services, data processing services, enterprise management consulting, marketing planning, business information consulting, and online/offline commerce support.

3. Personal Data We Collect

  • Account and identity data: name, username, organization, role, language preference, support ticket information.
  • Contact data: email address, communication history, customer support records.
  • Device and technical data: device model, OS version, app version, locale, IP-derived region, diagnostic events, crash logs.
  • Usage data: feature interactions, session timestamps, navigation and performance metrics, aggregated analytics.
  • Transaction and service data: service configuration parameters, deployment metadata, operational logs.
  • Advertising and attribution data (where enabled): ad unit events, impression/click events, conversion attribution IDs, consent signals, frequency capping IDs.

4. Sensitive Data and Special Categories

We do not intentionally request sensitive personal data unless strictly required by contract, law, or explicit consent. Where sensitive information is unavoidable, we apply strict access control, encryption, minimization, and legal safeguards.

5. Lawful Bases for Processing

  • Contractual necessity: to provide requested services and app functionality.
  • Legitimate interests: to secure systems, improve products, detect abuse, and maintain service quality.
  • Consent: for optional analytics, personalized advertising, push notifications, and region-specific tracking requirements.
  • Legal obligations: for compliance, accounting, audit, and lawful authority requests.

6. How We Use Personal Data

  • Deliver technical services, software, and mobile management app capabilities.
  • Provide information system integration and data processing operations.
  • Operate customer support, key-account management, and service communications.
  • Perform product analytics, quality assurance, incident response, and release management.
  • Manage app store publication lifecycle, policy checks, and regional compliance workflows.
  • Enable lawful ad monetization in supported products.

7. Mobile Application and App Marketplace Compliance

For Google Play and Apple App Store distribution, we maintain disclosures and controls that align with app marketplace privacy and data safety requirements, including:

  • Data type disclosure and purpose declaration in app store listing and policy pages.
  • Collection and sharing declarations for analytics, diagnostics, and advertising.
  • User consent pathways, account deletion pathways where applicable, and clear data request channels.
  • Privacy labels and policy links in app metadata and in-app menus.
  • Review-response governance for policy updates and SDK requirement changes.

8. Advertising, Mediation, and Monetization Compliance

Where ad monetization is used, our applications may integrate one or more advertising SDKs or mediation platforms. We implement region-aware consent, age controls, data minimization, and vendor configuration for lawful operation.

Common ad formats: splash ads, rewarded video ads, interstitial ads, banner ads, and native placements where permitted.

Representative ad or mediation platforms that may be used depending on product and region: Google AdMob, Google Ad Manager, Unity Ads, AppLovin, AppLovin MAX, ironSource LevelPlay, Meta Audience Network, TikTok Pangle, Mintegral, Liftoff Vungle, Chartboost, InMobi, Moloco, Amazon Publisher Services, Smaato, PubMatic, OpenX, AdColony (legacy support), Fyber (legacy support), Start.io, Verve Group, HyprMX, Ogury, BidMachine, and other approved providers.

  • Consent collection is managed through compliant mechanisms such as region-aware consent dialogs and IAB TCF-compatible signals where required.
  • Users may manage personalized ad preferences through in-app controls and platform-level advertising settings.
  • For child-directed experiences or teen-restricted contexts, we disable personalized ads, apply age screens, and restrict ad categories according to law and platform policies.
  • We avoid prohibited content targeting and enforce policy filters, ad content controls, and fraud monitoring.

9. Cookies, SDKs, and Similar Technologies

We use cookies, local storage, SDK identifiers, and related technologies for security, session continuity, analytics, and ad operations. Where required by law, non-essential technologies are activated only after valid consent.

10. Data Sharing and Recipients

  • Cloud hosting and infrastructure providers.
  • Analytics and monitoring service providers.
  • Advertising and attribution partners when monetization is enabled.
  • Professional advisers and auditors under confidentiality obligations.
  • Law enforcement or regulators where legally required.

We do not sell personal information in a manner prohibited by applicable law. Where laws define "sale" or "sharing" broadly (for example in certain U.S. states), users can exercise opt-out rights as described below.

11. International Data Transfers

Personal data may be processed in multiple jurisdictions. For cross-border transfers, we apply legally recognized safeguards such as standard contractual clauses, transfer risk assessments, contractual security obligations, and equivalent legal mechanisms where required.

12. Data Retention

  • Retained for as long as needed to deliver contracted services and legitimate business operations.
  • Shorter retention where local law mandates deletion timelines.
  • Extended retention where needed for legal claims, tax, security investigations, or audit defense.
  • Deletion, anonymization, or secure archival after purpose expiration.

13. Security Controls

  • Access control with role-based permissions and least-privilege principles.
  • Transport encryption and encryption at rest where appropriate.
  • Security monitoring, vulnerability management, and incident response workflows.
  • Vendor due diligence and contractual security requirements.

14. Age Policy and Child Protection

  • Our services are generally intended for users who are at least 16 years old unless a lower age is legally permitted in the user jurisdiction and parental authorization is obtained where required.
  • For services likely to be accessed by minors, we implement age gates, parental controls, restricted profiling, and ad personalization limits.
  • We comply with child-protection requirements including COPPA-style controls in the United States when applicable, and equivalent protections under UK, EU, and other local regimes.
  • If we learn that prohibited child data was collected without required authorization, we delete it promptly and disable affected processing.

15. Regional Privacy Rights and Notices

15.1 European Economic Area and European Union

Users may exercise rights to access, rectification, erasure, restriction, objection, portability, and consent withdrawal under GDPR and related national laws. Users may lodge complaints with competent supervisory authorities.

15.2 United Kingdom

We apply UK GDPR and Data Protection Act standards, including lawful basis, transparency, and rights management equivalent to EEA protections.

15.3 Switzerland

We process personal data consistent with Swiss data protection requirements, including transparency and rights to information, correction, and deletion where applicable.

15.4 United States (Federal and State-Level Notices)

Residents of California, Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Delaware, Iowa, Nebraska, New Hampshire, New Jersey, and other states with comprehensive privacy statutes may request access, correction, deletion, portability, and opt-out from certain targeted advertising or profiling activities as required by law.

15.5 Canada

We align operations with federal and provincial privacy obligations (including PIPEDA and applicable provincial frameworks), with rights to access and correction as applicable.

15.6 Brazil

We support LGPD rights including confirmation of processing, access, correction, anonymization, portability, deletion, information about sharing, and revocation of consent.

15.7 Mexico, Chile, Colombia, Argentina, and Other Latin American Jurisdictions

We provide notice and rights response mechanisms aligned with local data protection rules, including ARCO-style rights where applicable.

15.8 Australia and New Zealand

We observe privacy principles and transparency standards required under local privacy laws, including complaint handling and correction pathways.

15.9 Singapore, Malaysia, Thailand, Indonesia, Philippines, Vietnam, and Other Asia-Pacific Jurisdictions

We implement data handling controls that align with applicable consent, purpose limitation, access, correction, retention, and transfer restrictions.

15.10 Japan and South Korea

We align service processing with local legal obligations regarding notice, transfer, purpose limitation, and user rights requests.

15.11 Middle East and Africa

Where local privacy frameworks apply, we adapt disclosure, consent, transfer, and security controls to meet jurisdiction-specific legal expectations.

16. Automated Decision-Making and Profiling

We do not use fully automated decisions with legal or similarly significant effects unless legally permitted and accompanied by required safeguards and review options.

17. Third-Party Links and External Services

Our services may contain links to third-party websites and SDK-dependent services. Their data handling is governed by their own policies. We encourage users to review those policies carefully.

18. Data Subject Request Process

To exercise privacy rights, contact us at support@scshijiayi.com. We may verify identity before fulfilling requests. Authorized agent requests may require additional documentation.

19. Complaint Handling and Regulatory Contact

If you have concerns about our privacy practices, contact us first. We will investigate and respond within legally required timelines. You may also contact your local supervisory or regulatory authority.

20. Policy Updates

We may update this Privacy Policy to reflect legal, technical, or operational changes. Material updates will be posted with a revised effective date. Continued use after an update indicates acknowledgment, subject to rights provided by applicable law.