Beijing Xinyu Engineering Management Consulting Co., Ltd. ("Xinyu," "we," "us," or "our") collects information to provide and improve our services. This includes:
1.1 Information You Provide Directly
Account Information: Name, email address, phone number, company name, job title, postal address, and profile information when you create an account or subscribe to our services.
Payment Information: Credit card numbers, bank account details, and billing addresses for payment processing.
Communication Data: Messages, inquiries, feedback, and other communications you send to us.
Project Information: Engineering project details, specifications, documents, and related data you submit through our services or mobile applications.
User-Generated Content: Any content you create, upload, or share through our platforms, including photos, reviews, and comments.
Usage Data: Pages visited, features used, time spent on pages, click patterns, and other usage statistics.
Location Data: General geographic location based on IP address, and with your consent, precise GPS location.
Log Data: Server logs, crash reports, and performance data.
2. How We Use Your Information
We use the information we collect for the following purposes:
To provide, maintain, and improve our engineering consulting services
To develop and deliver our mobile applications
To process transactions and send related information
To send technical notices, updates, security alerts, and support messages
To respond to your comments, questions, and customer service requests
To monitor and analyze trends, usage, and activities in connection with our services
To detect, investigate, and prevent fraudulent transactions and other illegal activities
To personalize and improve our services and deliver content relevant to your interests
To provide advertising and measure the effectiveness of advertising campaigns
To comply with legal obligations and enforce our terms and policies
3. Information Sharing and Disclosure
We may share your information in the following circumstances:
Service Providers: We share information with third-party vendors, service providers, and contractors who perform services for us, including payment processing, data analysis, email delivery, hosting services, and customer support.
Business Transfers: If we are involved in a merger, acquisition, asset sale, or bankruptcy, your information may be transferred as part of that transaction.
Legal Requirements: We may disclose information if required by law, court order, or government request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
With Your Consent: We may share your information with third parties when you explicitly consent to such sharing.
Aggregate Data: We may share anonymized, aggregated data that cannot reasonably identify you with third parties for research, marketing, analytics, or other purposes.
4. Data Security
We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:
Encryption of data in transit using TLS/SSL
Encryption of sensitive data at rest
Regular security assessments and penetration testing
Access controls and authentication measures
Employee training on data protection and security
Incident response procedures and breach notification protocols
While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.
5. GDPR Compliance (European Union)
If you are located in the European Economic Area (EEA), we process your personal data in accordance with the General Data Protection Regulation (GDPR). This section explains our practices:
5.1 Legal Basis for Processing
We process your personal data based on one or more of the following legal grounds:
Contractual Necessity: Processing necessary to perform our contract with you or to take steps at your request before entering into a contract.
Legitimate Interests: Processing necessary for our legitimate interests or the legitimate interests of third parties, provided such interests are not overridden by your rights.
Consent: Processing based on your explicit consent, which you may withdraw at any time.
Legal Obligation: Processing necessary to comply with our legal obligations.
5.2 Data Subject Rights under GDPR
If you are an EEA resident, you have the following rights:
Right of Access: Obtain confirmation of whether we process your personal data and access your data.
Right to Rectification: Request correction of inaccurate personal data.
Right to Erasure: Request deletion of your personal data under certain circumstances.
Right to Restrict Processing: Request restriction of processing under certain circumstances.
Right to Data Portability: Receive your data in a structured, commonly used, machine-readable format.
Right to Object: Object to processing based on legitimate interests or for direct marketing.
Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.
Right to Lodge Complaint: Lodge a complaint with a supervisory authority, particularly in your country of residence.
5.3 EU Representative
We have appointed an EU representative to act as our point of contact for GDPR matters. You can contact our EU representative at: eu.representative@xinyutechai.com
6. CCPA Compliance (California)
If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information. This section explains our CCPA compliance:
6.1 Categories of Personal Information Collected
In the preceding 12 months, we have collected the following categories of personal information:
Identifiers: Name, email address, phone number, postal address, IP address, device identifiers.
Commercial Information: Records of services purchased, payment history, transaction information.
Know: Request disclosure of the categories and specific pieces of personal information collected, the purpose of collection, and whether it was sold or disclosed.
Delete: Request deletion of your personal information, subject to certain exceptions.
Opt-Out: Opt-out of the sale of your personal information. Note: We do not sell personal information for monetary consideration.
Non-Discrimination: Not be discriminated against for exercising your CCPA rights.
6.3 California "Shine the Light" Law
California's "Shine the Light" law (Civil Code Section 1798.83) permits California residents to request information about our disclosure of personal information to third parties for direct marketing purposes. To make such a request, please contact us at privacy@xinyutechai.com.
6.4 California Privacy Rights Act (CPRA)
We comply with the California Privacy Rights Act (CPRA), which provides additional rights including the right to correct inaccurate personal information, limit the use of sensitive personal information, and opt-out of automated decision-making.
7. COPPA Compliance (Children's Privacy)
We are committed to complying with the Children's Online Privacy Protection Act (COPPA) and similar international children's privacy laws. Our practices include:
7.1 Age Restriction
Our services and mobile applications are not intended for children under 13 years of age (or 16 for EEA residents). We do not knowingly collect personal information from children under these ages.
7.2 Parental Consent
If we become aware that we have collected personal information from a child under 13 without verified parental consent, we will take steps to delete that information as soon as possible. Parents or guardians who believe their child's information has been collected can contact us at privacy@xinyutechai.com.
7.3 Parental Rights
Parents have the right to:
Review their child's personal information
Request deletion of their child's personal information
Refuse further collection or use of their child's information
Consent to collection without consenting to third-party disclosure
8. Age Restrictions
Our services are subject to various age restrictions depending on jurisdiction:
United States (COPPA): Services not intended for children under 13 years of age.
European Union (GDPR): Services not intended for children under 16 years of age (or lower age as defined by member states, minimum 13).
United Kingdom (UK GDPR): Services not intended for children under 13 years of age.
Canada (PIPEDA): Services not intended for children under 13 years of age without parental consent.
Australia (Privacy Act): Services not intended for children under 16 years of age without parental consent.
Other Jurisdictions: Age restrictions may vary by country. Users must meet the minimum age requirement of their jurisdiction.
If you are under the minimum age, you may only use our services with verifiable parental or guardian consent. We reserve the right to verify age and request parental consent at any time.
9. Mobile Applications
Our mobile applications for iOS and Android platforms collect additional information:
9.1 App-Specific Permissions
Our apps may request the following permissions:
Camera: To capture photos and documents for project documentation
Photo Library: To select existing photos for project materials
Location: To provide location-based services and track project site visits
Notifications: To send push notifications about project updates and alerts
Contacts: To facilitate collaboration with team members (optional)
Calendar: To sync project milestones with your calendar
9.2 Mobile App Features
Our mobile applications provide the following features:
Business Management App: Event planning, calendar management, contact management, analytics
Material Procurement App: Product catalog, price comparison, order management, delivery tracking
9.3 App Store Compliance
Our apps comply with the following app store requirements:
Apple App Store: We comply with Apple's App Store Review Guidelines, including data collection disclosures, privacy nutrition labels, and ATT (App Tracking Transparency) framework requirements.
Google Play Store: We comply with Google Play's Developer Program Policies, including data safety form requirements and Play Store listing disclosures.
10. Advertising and Third-Party Ad Networks
Our mobile applications may include advertising from third-party ad networks. This section details our advertising practices and the ad networks we integrate with.
10.1 Types of Advertising We Use
Splash Ads (Splash Screen Ads): Full-screen advertisements displayed when the app is launching, typically lasting 3-5 seconds with a close button
Rewarded Video Ads: Video advertisements that users voluntarily watch in exchange for in-app rewards such as premium features, virtual currency, or content unlocks
Interstitial Ads: Full-screen advertisements displayed at natural transition points in the app, such as between levels or after completing a task
Banner Ads: Rectangular advertisements displayed at the top or bottom of the screen, typically remaining visible while users navigate through the app
Native Ads: Advertisements designed to match the visual style and format of the app's content
Playable Ads: Interactive advertisements that allow users to preview app features or games before downloading
10.2 Third-Party Ad Networks
We use multiple third-party advertising networks to maximize ad revenue and provide relevant advertisements. Each ad network has its own privacy policy and data collection practices.
10.3 Ad Network Data Collection
Third-party ad networks may collect the following information:
Device identifiers ( IDFA, GAID)
Device information (type, OS version, screen size)
Location data (with consent)
Usage data and app interaction patterns
Cookie data and similar tracking technologies
IP address and network information
In-app purchases and ad viewing history
10.4 Opting Out of Personalized Advertising
You may opt out of personalized advertising through your device settings:
iOS: Settings > Privacy > Apple Advertising > Turn off Personalized Ads
Android: Settings > Google > Ads > Turn off Ad Personalization
Additionally, many ad networks offer opt-out options through industry initiatives like the Digital Advertising Alliance (DAA) and Network Advertising Initiative (NAI).
11. Google AdMob Integration
Our mobile applications integrate with Google AdMob, Google's mobile advertising platform. This section details our AdMob implementation:
11.1 What is AdMob?
Google AdMob is a mobile advertising platform that enables app publishers to monetize their applications through in-app advertising. AdMob uses Google's advertising technologies to serve ads from Google advertisers and third-party networks.
11.2 AdMob Data Collection
When you use our apps that integrate AdMob, Google may collect:
Device identifiers ( IDFA, Android ID)
Device information and settings
Apps installed and usage patterns
Location data (with user consent)
IP address and network information
Ad interaction data and viewing history
In-app purchase events
11.3 AdMob Ad Formats
We implement the following AdMob ad formats:
Admob Splash Ads: Full-screen ads displayed during app launch
Rewarded Ads: User-initiated video ads with in-app rewards
Interstitial Ads: Full-screen ads at natural break points
Banner Ads: Standard banner advertisements
Native Ads: Customizable ads matching app design
11.4 Google AdMob Privacy Policy
Google's privacy practices are governed by the Google Privacy Policy. We encourage you to review Google's Privacy Policy at: https://policies.google.com/privacy
11.5 AdMob User Metrics and Analytics
AdMob provides us with analytics data about app usage and ad performance. This helps us improve our apps and optimize advertising revenue.
11.6 AdMob Compliance
We comply with Google's AdMob policies including:
Accurate disclosure of data collection in app store listings
Implementation of appropriate ad loading and frequency capping
Proper handling of ad content and user experience
Compliance with restricted content policies
11.7 Managing AdMob Data
You can manage how Google uses your information for advertising by visiting:
Google Ads Settings: https://adssettings.google.com
Your Google Account: https://myaccount.google.com/data-and-privacy
12. Meta/Facebook Audience Network
Our mobile applications may integrate with Meta's Audience Network for advertising purposes.
12.1 Data Collection by Meta
When you use our apps that integrate Meta Audience Network, Meta may collect:
Device identifiers and advertising IDs
Device characteristics and settings
Apps installed and usage information
User activities within apps
Location information (with consent)
Information about your interactions with ads
IP address and connection information
12.2 Meta Audience Network Ad Formats
Facebook Splash Ads: Launch screen advertisements
Rewarded Videos: Voluntary video ad viewing for rewards
Interstitial Ads: Full-screen advertisements
Banner Ads: Standard display advertisements
Native Ads: Ads integrated into app content
12.3 Meta Privacy Controls
Meta offers various privacy controls:
Facebook Ad Preferences: https://www.facebook.com/adpreferences
Your Facebook Information: https://www.facebook.com/help/1701730696752390
12.4 Meta Data Policy
For more information about Meta's data practices, please review the Meta Data Policy: https://www.facebook.com/privacy/policy
13. Unity Ads
Our mobile applications may integrate with Unity Ads for advertising and monetization.
13.1 Unity Ads Overview
Unity Ads is a monetization platform provided by Unity Technologies that enables advertisers to reach players in Unity-powered games and apps.
13.2 Data Collected by Unity Ads
Unity Ads may collect:
Device identifiers ( IDFA, GAID)
Device information (model, OS version, screen resolution)
IP address and network type
App usage and session data
Ad interaction and viewing data
Location data (with consent)
Unity-specific identifiers
13.3 Unity Ads Formats
Unity Splash Ads: Launch screen ads
Rewarded Video Ads: Incentive-based video advertisements
Interstitial Ads: Full-screen video or display ads
Banner Ads: Standard banner advertisements
Playable Ads: Interactive demo advertisements
13.4 Unity Privacy and Opt-Out
For Unity's privacy policy and opt-out options, visit: https://unity.com/legal/privacy-policy
You can opt out of Unity's targeted advertising at: https://unity.com/legal/privacy-choices
14. AppLovin
Our mobile applications may integrate with AppLovin for advertising and user acquisition.
14.1 About AppLovin
AppLovin is a mobile advertising platform that connects app publishers with advertisers through programmatic advertising technology.
14.2 Data Collected by AppLovin
AppLovin may collect:
Device identifiers and advertising IDs
Device characteristics and specifications
Operating system and app version
Network connection information
App usage and engagement data
Ad viewing and interaction data
Location information (with consent)
Impression and conversion data
14.3 AppLovin Ad Formats
AppLovin Splash Ads: Launch advertisements
Rewarded Ads: Reward-based video advertisements
Interstitial Ads: Full-screen advertisements
Banner Ads: Standard display ads
Native Ads: Content-matched advertisements
Capsule Ads: Interactive ad units
14.4 AppLovin Privacy Options
AppLovin provides privacy controls and opt-out mechanisms. For more information: https://www.applovin.com/privacy
To opt out of AppLovin advertising: https://www.applovin.com/optout
15. ironSource
Our mobile applications may integrate with ironSource for advertising and app monetization.
15.1 ironSource Overview
ironSource is a mobile app growth and monetization platform that helps app publishers maximize their revenue through various ad formats and user acquisition services.
15.2 Data Collected by ironSource
ironSource may collect:
Device identifiers ( IDFA, GAID, Android ID)
Device type, model, and manufacturer
Operating system and version
Screen resolution and display information
Network type and carrier information
App usage and session data
Ad impression and click data
Conversion and install data
Location data (with consent)
15.3 ironSource Ad Formats
ironSource Splash Ads: Launch screen ads
Rewarded Videos: Incentive-based video ads
Interstitial Ads: Full-screen video and display ads
Banner Ads: Standard banner advertisements
Native Ads: Integrated content advertisements
Playable Ads: Interactive demo ads
Offerwall Ads: Reward-based offer walls
15.4 ironSource Privacy
For ironSource's privacy policy and data practices: https://developers.ironsrc.com/ironsource-mobile/general/privacy-policy
To manage your ironSource data choices: https://www.ironsrc.com/privacy-policy/opt-out-postbacks
16. Vungle
Our mobile applications may integrate with Vungle for advertising and monetization.
16.1 Vungle Overview
Vungle, now part of Traeger's Digital Entertainment division, is a leading mobile video advertising platform known for high-quality video ad experiences.
16.2 Data Collected by Vungle
Vungle may collect:
Device identifiers and advertising IDs
Device specifications and capabilities
Operating system and version
Device performance and specifications
App installation and usage data
Video ad viewing and completion data
Interaction with advertised content
Location information (with consent)
IP address and network information
16.3 Vungle Ad Formats
Vungle Splash Ads: Launch advertisements
Rewarded Video Ads: User-initiated video ads for rewards
Interstitial Ads: Full-screen video advertisements
Banner Ads: Standard display advertisements
End Card Ads: Post-video recommendation cards
16.4 Vungle Privacy
For Vungle's privacy policy: https://vungle.com/privacy
For Vungle's opt-out information: https://vungle.com/privacy/opt-out
17. Chartboost
Our mobile applications may integrate with Chartboost for advertising and monetization.
17.1 Chartboost Overview
Chartboost is a mobile game advertising and monetization platform that focuses on in-app bidding and programmatic advertising solutions.
17.2 Data Collected by Chartboost
Chartboost may collect:
Device identifiers and advertising IDs
Device type, model, and specifications
Operating system and version
App and game session data
Ad impression and click data
Video view-through and completion rates
Conversion tracking data
Location data (with consent)
IP address and connection information
17.3 Chartboost Ad Formats
Chartboost Splash Ads: Launch advertisements
Rewarded Video Ads: Incentive-based video ads
Interstitial Ads: Full-screen advertisements
More Apps Ads: App promotion walls
Playable Ads: Interactive demonstrations
17.4 Chartboost Privacy
For Chartboost's privacy policy: https://www.chartboost.com/privacy
For Chartboost's opt-out options: https://www.chartboost.com/privacy/#opted-out
18. MoPub
Our mobile applications may integrate with MoPub, now part of AppLovin, for advertising mediation and monetization.
18.1 MoPub Overview
MoPub was a monetization platform that provided ad mediation services, helping publishers manage multiple ad networks through a single SDK. It has been integrated into AppLovin's technology.
18.2 Data Collected by MoPub/AppLovin
MoPub/AppLovin may collect:
Device identifiers and advertising IDs
Device characteristics and specifications
Operating system and app information
App usage and engagement metrics
Ad impression and interaction data
Location information (with consent)
Network and connection data
Publisher-provided user identifiers
18.3 MoPub Ad Formats
Splash Ads: Launch advertisements
Rewarded Video Ads: Incentive-based video ads
Interstitial Ads: Full-screen advertisements
Banner Ads: Standard display ads
Native Ads: Custom-format advertisements
18.4 MoPub Privacy
For MoPub/AppLovin's privacy policy: https://www.applovin.com/privacy
For MoPub's legacy opt-out options: https://www.mopub.com/legal/privacy
19. InMobi
Our mobile applications may integrate with InMobi for advertising and monetization.
19.1 InMobi Overview
InMobi is a global mobile advertising and data platform that helps brands, publishers, and app developers engage users through relevant mobile advertising.
Rewarded Video Ads: User-initiated video ads with rewards
Interstitial Ads: Full-screen video and display ads
Banner Ads: Standard display advertisements
Native Ads: Contextually relevant advertisements
Rich Media Ads: Interactive advertising units
19.4 InMobi Privacy Controls
For InMobi's privacy policy: https://www.inmobi.com/privacy-policy
To opt out of InMobi targeted advertising: https://www.inmobi.com/page/opt-out
20. Pangle
Our mobile applications may integrate with Pangle for advertising and monetization.
20.1 Pangle Overview
Pangle is a global video advertising platform, formerly known as TikTok for Business Ads SDK, that provides programmatic video advertising solutions for app publishers.
20.2 Data Collected by Pangle
Pangle may collect:
Device identifiers and advertising IDs
Device information and specifications
Operating system and version
App information and usage patterns
Ad impression and interaction data
Video viewing behavior and completion rates
Location information (with consent)
IP address and network information
User engagement metrics
20.3 Pangle Ad Formats
Pangle Splash Ads: Launch advertisements
Rewarded Video Ads: Incentive-based video advertisements
Interstitial Ads: Full-screen video ads
Banner Ads: Standard display advertisements
Native Ads: Integrated content advertisements
Playable Ads: Interactive demo advertisements
20.4 Pangle Privacy
For Pangle's privacy policy: https://www.pangleglobal.com/privacy
For TikTok/Pangle data access and deletion: https://www.tiktok.com/legal/report/privacy
21. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. When we transfer personal data internationally, we ensure appropriate safeguards are in place:
Standard Contractual Clauses: We use EU-approved standard contractual clauses for transfers from the EEA.
adequacy Decisions: We rely on adequacy decisions where the European Commission has determined a country provides adequate protection.
Binding Corporate Rules: We may use approved binding corporate rules for intra-group transfers.
Consent: In some cases, we may obtain your explicit consent for international transfers.
Countries where we process data include the United States, China, Singapore, and other countries where our service providers operate.
22. Data Retention
We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. The criteria used to determine our retention periods include:
The length of time we have an ongoing relationship with you
Whether there is a legal obligation to retain the data
Whether retention is advisable in light of our legal position
Applicable industry standards and practices
When personal data is no longer needed, we securely delete or anonymize it. If complete deletion is not immediately possible, we will securely store the data until deletion becomes possible.
23. Your Rights
Depending on your location, you may have various rights regarding your personal information. We are committed to honoring these rights:
23.1 Global Rights
Access: Request a copy of the personal information we hold about you
Correction: Request correction of inaccurate or incomplete information
Deletion: Request deletion of your personal information
Portability: Receive your data in a portable format
Objection: Object to certain processing activities
Restriction: Request restriction of processing under certain circumstances
23.2 How to Exercise Your Rights
To exercise any of these rights, please contact us at:
Email: privacy@xinyutechai.com
Mail: Privacy Team, Room 415-4594, Town Government Office Building, No. 143 Yong'an Street, Taishitun Town, Miyun District, Beijing, 100000, China
We will respond to your request within the timeframe required by applicable law (typically 30 days for GDPR requests).
24. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. We will notify you of any material changes by:
Posting the updated policy on our website and apps
Updating the "Last Updated" date at the top of this policy
Sending an email notification for significant changes
Providing in-app notices for mobile application changes
We encourage you to review this policy periodically. Your continued use of our services after changes become effective constitutes acceptance of the updated policy.
25. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Room 415-4594, Town Government Office Building
No. 143 Yong'an Street, Taishitun Town
Miyun District, Beijing, 100000
China
Email:
Privacy Inquiries: privacy@xinyutechai.com
General Support: support@xinyutechai.com
Enterprise Clients: xinxiaohan@xinyutechai.com
We are committed to resolving any concerns about your privacy. If you are not satisfied with our response, you may have the right to lodge a complaint with your local data protection authority.