Last updated: Aug, 2023
1. What Information We Collect
2. How We Store Your Personal Information
3. How We Share Your Personal Information
4. How We Protect Your Personal Information
5. How long do we retain your personal information?
6. Your Rights
7. How We Process Children’s Personal Information
8. How Your Personal Information is Transferred Globally
9. How This Policy is Updated
11. Contact Us
Data Controller: Guangzhou Shiyuan Innovation Technology Co., Ltd. are the controllers (or similar term under applicable laws) of any information processed in connection with this Policy.
It is our policy to comply with applicable data protection laws. We reserve the right to change the provisions of this Policy from time to time. We encourage you to periodically review this page for the latest information on our privacy practices.
I. What Information We Collect
The term of “personal information” or “personal data” means information that specifically identifies an individual (such as a name, mobile number, email address, or other account number), and information about that individual’s location or activities (such as information about your use of our Service, IP addresses or mobile device identifiers) when directly linked to personally identifiable information. Personal information also includes demographic information such as date of birth, gender, geographic area, and preferences when such information is linked to other personal information that identifies or may identify you.
Personal information does NOT include “anonymized” information, which is data we collect about the use of our Service or about a group or category of products, services or users, or other data from which individual identities or other personal information has been removed so that the individual concerned cannot be identified directly or indirectly. Such data helps us understand trends and our users’ needs so that we can better consider new features or otherwise tailor our Service. This Policy in no way restricts or limits our collection and use of such information.
We may collect information that you voluntarily provide to us, information that we collect automatically through your use of our Services. More information about the categories and sources of information is provided below.
1. Information provided by you
For the sake of contacting you, understanding your or your company’s potential demands and distributing your demands to our account managers located in different regions of the world, we collect certain following information about you which is necessary for us to achieve the abovementioned purposes, including:
Please notice that if you refused to offer the information mentioned above, we will be not able to contact with you, understand your or your company’s potential demands and distribute your demands to our account managers located in different regions of the world.
Subscribe to MAXHUB newsletter
You may subscribe to MAXHUB newsletter by checking the option on the Contact Us Page or voluntarily submitting your email. Once you subscribe to MAXHUB newsletter, we may deliver MAXHUB newsletter to you by processing your email. You can modify your subscription or unsubscribe at any time. You may also refuse to subscribe for MAXHUB newsletter or unsubscribe, which will have no impact on other services provided by us.
Other Contact Information
You may voluntarily submit the certain following information about you to us so that we may better understand your potential demands or contact you with phone, including:
Your refusal of offering such two categories of information mentioned above will not impact our contact with you.
2. Information we collect automatically
please see our Cookies Notice
3. Information from third-party sources
We currently do not collect information from third-party sources. In case we collect information third-party sources, we will clearly notify you and obtain your get your authorization before any information collection from third-party sources.
4. Special categories of information
We do not request or intend to collect any “special categories of information”, such as any information on health, race, religion, political opinions or philosophical beliefs, sexual preferences or orientation. We also want to kindly remind you to be cautious when sharing this information about yourself (or others) in our Services.
II. How We Store Your Personal Information
The personal information we collect and generate in our operations is processed and stored in a third-party cloud storage located in Singapore.
We store your personal information in response to the requirements of laws, regulations or our commercial purposes. We will delete or anonymize your personal information beyond the above retention period.
III. How We Share Your Personal Information
We may share some of your personal information with authorized partners who cooperate with us providing products and services. We will not share your personal information with third parties for their own marketing or commercial purposes.
1. Affiliated companies: At present, we will not share your personal information with our affiliated companies. In case your personal information may be shared with our affiliated companies, we will only share your information within our affiliated companies for legitimate and explicit purposes, and only share the information necessary to provide the Services, and are bound by the purposes stated in this Policy (which means that these companies will use your personal information in the same way as we can under this Policy, including provide part of the functions of the Product, preventing illegal use and supporting users). If the affiliated companies wish to change the purpose of processing, we will state it in the corresponding notice of the specific services.
2. Authorized partners: For the performance of certain features or to provide you with better Services and a better user experience, some of our Services will be provided by our authorized partners (including customer relationship management service providers, data storage services providers, mail service providers etc.). We uphold the principles of minimization, necessity, and legality to carry out such sharing. Before sharing information, we will require authorized partners to take relevant confidentiality and security measures to process personal information in accordance with this Policy and applicable laws in your jurisdiction.
3. Corporate transactions: Where a merger, acquisition or bankruptcy liquidation takes place, if transfer of personal information is involved, we will request the new company or organization which obtains your personal information to be subject to this Policy, otherwise we will ask such company or organization to acquire your authorization and consent again.
4. Legal obligations and rights: We will only publicly disclose your personal information if it is mandatorily required by laws, in compliance with subpoena, legal proceedings, legal actions or compulsory request by supervisory department of government agencies. If we sincerely believe that disclosure is necessary to protect our rights, ensure your or others’ safety, investigate fraud or respond to government, we may publicly disclose your personal information.
IV. How We Protect Your Personal Information
1. We have taken reasonably feasible and technical measures to protect collected services-related data. However, please be attention, even if we undertake reasonable measures to protect your data, there is no website, internet transmission, computer system or wireless connection that are definitely safe.
2. We have taken safeguarding measures in accordance with industry standards to protect the personal information you provided and prevent data from unauthorized access, public disclose, use, modification, damage or loss. We take all reasonably practical measures to protect your personal information. In particular:
(1) We encrypt a lot of information. For instance, we do not store your password but only store the Hash value after your password’s double layer SHA as a proof of security authentication. The HASH algorithm of SHA is irreversible. Therefore, no one can find your password according to the Hash value. We periodically review practices regarding information collection, storage and possessing (including physical security measures), to prevent various systems from unauthorized access.
(2) We use computer system that has limited access and merely allow our employees who need to know personal information in order to help us process it or authorized staff from the Services companies to access personal information. These people are required to comply with strict contractual confidentiality obligations. Failure to comply with the obligations will lead to legal liabilities or termination of contract with us.
(3) The security of your information is extremely important to us. Therefore, we endeavour to ensure the security of your Personal information and implement measures such as security encryption during storage and transmission to prevent your information from unauthorized access, use, or disclosure. At the same time, no one can access the specific content of some encrypted data except the users themselves.
3. In case of personal information security incident is likely to result in high risk to the rights and freedoms of personal information subjects, we will promptly inform you of the relevant information related to the leakage by email.
V. How long do we retain your personal information?
2. We may retain your personal information for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you. When we no longer need to use your information, we will remove it from our systems and records and / or take steps to anonymise it promptly so that you can no longer be identified from it.
3. To determine the appropriate retention period for personal information, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting, or other requirements.
4. However, we may continue to retain certain data to the maximum extent permitted by applicable laws. If you would like to delete your data, please refer to the heading of “Your Rights” below.
VI. Your Rights
As the subject of the personal information, you are entitled to have the rights provided by the privacy laws in your jurisdiction. Your rights may include part or all of those described underneath. You can exercise your rights entitled by the privacy laws in your jurisdiction at any time by sending us relevant requests to firstname.lastname@example.org. Your rights may include:
1. Right to be informed:
We publish this Policy to inform you of how we handle your personal information. We are committed to the transparency of the use of your information.
2. Right to access your personal information:
You have the right to access personal information we hold about you, how we use it, and who we share it with.
3. Right to correct your personal information:
You have the right to correct your information where that information is not accurate. You can correct your personal information by contacting us via the email stated in this Policy.
4. Right to delete your personal information:
You can delete your account or remove certain personal information that we have stored about you. However, please note that we may need to retain personal information if there are valid grounds under data protection laws for us to do so (e.g., for the defense of legal claims or freedom of expression) but we will respond to you and let you know if that is the case.
5. Right to restrict processing:
In limited circumstances, you have the right to request us to stop processing your personal information we hold about you other than for storage purposes in certain circumstances.
6. Right to data portability:
You can request a copy of certain data in a machine-readable form that can be transferred to another provider if such right is requested by the privacy laws in your jurisdiction.
7. Right of Refusal:
In certain circumstances (including where data is processed on the basis of legitimate interests or for the purposes of marketing) you may object to that processing.
If you are located in the European Economic Area (“EEA”), you may also object to the processing of your personal information for certain purposes:
To stop receiving marketing communications from us: you may demand that we stop any direct marketing to you, at any time. You will find a link or instructions to unsubscribe in any such communications (including newsletters) from us.
For other purposes: you may object to the processing of your personal information where such processing is based on a legitimate interest as described above. Please describe the reasons relating to your particular situation to justify your request. If applicable, we will stop the processing unless we have compelling legitimate grounds.
8. Right to Withdraw Consent:
You may withdraw your consent for the processing of your personal information by submitting a request to us via email. We will deal with your request within a reasonable time frame from the time when the request was received, and thereafter not processing your personal information as per your request.
Please note that your withdrawal of consent could result in certain legal consequences. Depending on the extent to which you authorize us to process your personal information, it may mean that you will no longer be able to enjoy the use of our services. However, any decision on your part to withdraw your consent or authorization will not affect personal information processing previously performed with your permission.
9. Right to Refuse Automated Decision:
You may have rights not to be bound by automatic decisions, including user profiling, if such right is requested by the privacy laws in your jurisdiction.
10. Right to lodge complaints to the supervisory authority:
To help us verify that you are the subject of the personal information and exercise your rights outlined above, we may require you to provide sufficient proof of identification. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.
If you are concerned about the way in which we are managing your personal information and think we may have breached any relevant laws and obligations, please contact us.
We will respond and reply to you as soon as possible. Generally, we will reply to you within one (1) month upon receipt of your request (If necessary, we may extend it by an additional two (2) months as permitted by law. We will inform you the reason for the extension within the aforementioned 30-day period, such as the request is too complicated or too much in volume). In certain circumstances, you can also contact the Administrator of your company/school to exercise your rights more easily.
If you feel we have not resolved your concern, you have the right to lodge a complaint with your local privacy or data protection regulator.
VII. How We Process Children’s Personal Information
Our Services are mainly adult-oriented and we do not offer services directly to a child or use personal information of children for the purposes of marketing. A child should not create his/her own user account. We treat anyone under 16 years old (or equivalent minimum age in relevant jurisdiction) as a child. We do not knowingly collect any information about or market to children, minors or anyone under the age of 16. If you are less than 16 years old, we request that you do not submit information to us. If we become aware that a child, minor or anyone under the age of 16 has registered with us and provided us with personal information, we will take steps to terminate that person’s registration.
VIII. How Your Personal Information is Transferred Globally
If we need to transfer personal information outside of your jurisdiction, whether to our affiliates or third-party service providers, we will comply with related applicable laws. We will take corresponding protective measures according to the requirements of applicable laws to ensure data security.
If personal information collected and generated in the European Economic Area is transferred to countries outside the European Economic Area, we will ensure that proper protective measures are taken to comply with General Data Protection Regulation (“GDPR”).
For more information on protection measures on personal information in scenario of cross border data transfer, please contact us.
IX. How This Policy is Updated
In case of any inconsistency between this Policy and other privacy policies on personal information management related to the Services, this Policy will prevail to the extent of the inconsistency.
XI. Contact Us
Mailing Address: No. 1 YiChuang Road , Huangpu District, Guangzhou City, Guangdong Province P.R.China
United States Addendum
Minimum Age. In the United States, the minimum age for users is 13. We therefore do not knowingly collect any personal information from children under the age of 13 in the United States without parental consent, unless permitted by law. If we learn that a child under the age of 13 has provided us with personal information, we will delete it in accordance with applicable law.
California Consumer Privacy Act. For Users who are California residents, you have the following extra rights under the California Consumer Privacy Act, and you have the right to be free from unlawful discrimination for exercising your rights under the Act:
You have the right to request that we disclose certain information to you and explain how we have collected, used and shared your personal information over the past 12 months.
You have the right to request that we delete your personal information that we collected from you, subject to certain exceptions.
We did not sell personal information and therefore did not process requests for opt-out of sale.
California “Shine The Light” Law. For users located in California, we do not share your personal information with third parties for those third parties’ direct marketing purposes.
In addition, under California law, operators of online services are required to disclose how they respond to “do not track” signals or other similar mechanisms that provide consumers the ability to exercise choice regarding the collection of personal information of a consumer over time and across third party online services, to the extent the operator engages in that collection. At this time, we do not track our Users’ personal information over time and across third-party online services. This law also requires operators of online services to disclose whether third parties may collect personal information about their users’ online activities over time and across different online services when the users use the operator’s service. We do not knowingly permit third parties to collect personal information about an individual User’s online activities over time and across different online services when using the Service.
As noted above, we may also disclose your personal information as part of, or during negotiations of, any merger, sale, divestiture, or transfer of all or a portion of the company assets, financing or acquisition or in any other situation where personal information may be transferred as one of our business assets.
We will not unlawfully discriminate against you for exercising your rights. Please submit your request by sending an email to email@example.com. Once we receive your request, we may verify it by requesting information sufficient to confirm your identity, including by asking you to verify information about your use of the Service. If you would like to use an authorized agent to exercise your rights, we may request evidence that you have provided such agent with power of attorney or that the agent otherwise has valid written authority to submit requests to exercise rights on your behalf. Not all kinds of requests can be made by authorized agents in all states.
[If you are a California, Colorado, Connecticut or Virginia consumer and] if we refuse to take action on your request, you may appeal this refusal within a reasonable period after you have received notice of the refusal. You may file an appeal by contacting us at firstname.lastname@example.org
De-identified information. Where we maintain or use de-identified data, we will continue to maintain and use the de-identified data only in a de-identified fashion and will not attempt to re-identify the data.