Privacy Policy

Controller: Suzhou Yimeiwen Information Technology Co., Ltd. (YMWTech)

Office Address: 8256, Room 101, Building 20, No. 9 Nanguandu Road, Economic Development Zone, Wuzhong District

Website: ymwtech.com

Support Contact: support@ymwtech.com

Key Account Contact: hebin@ymwtech.com

Effective Date: 2026-05-19

1. Scope and Applicability

This Privacy Policy applies to all YMWTech websites, mobile applications, and related services distributed through Google Play, Apple App Store, and other lawful marketplaces. It covers users in the EU/EEA, UK, US, Canada, Australia, Latin America, and other regions where our services are available.

2. Data We Collect

• Account and profile data (name, email, organization, role, account ID)
• Contact and communication data (support and business correspondence)
• Transaction and service data (orders, invoices, product/service usage)
• Device and technical data (device, OS, app version, IP, logs)
• Consent and preference data (privacy settings, cookie/ad consent)
• Age and eligibility signals (age gate, parental consent where required)

3. Legal Bases for Processing

We process data under one or more legal bases: contract performance, legitimate interests, legal obligations, consent, and vital interests. For advertising and analytics, we rely on consent where required by law.

4. Purposes of Processing

• Provide and improve our products and services
• Operate app store distribution and maintain listing quality
• Customer service, business coordination, and account management
• Security, fraud prevention, and incident response
• Advertising, monetization, and analytics (with consent)
• Legal, regulatory, and audit obligations

5. App Marketplace and Platform Compliance

We comply with Google Play Developer Program Policies, Apple App Store Review Guidelines, and all relevant marketplace requirements. We provide required privacy disclosures, data safety labels, and age-appropriate design as mandated by each platform and jurisdiction.

6. Advertising, SDKs, and Monetization

Our apps may integrate third-party advertising SDKs and mediation platforms (e.g., Google AdMob, AppLovin, Unity Ads, etc.). Ad delivery may be contextual or personalized, depending on user consent and regional law. We implement consent flows for GDPR, CCPA, and other applicable frameworks. We do not knowingly serve personalized ads to children or restricted users.

7. Cookies and Similar Technologies

We use cookies, local storage, SDK identifiers, and pixels for authentication, analytics, and advertising. Non-essential cookies are only activated after consent. Essential cookies remain active for core service operation and security.

8. International Data Transfers

Data may be processed outside your country of residence. We use lawful transfer mechanisms (e.g., Standard Contractual Clauses, adequacy decisions) and apply appropriate safeguards as required by GDPR and other laws.

9. Data Retention

We retain personal data only as long as necessary for service delivery, legal compliance, and dispute resolution. Data no longer needed is deleted, anonymized, or irreversibly aggregated.

10. Data Sharing and Recipients

• Cloud infrastructure and analytics providers
• Payment and financial processors
• Advertising and mediation partners (with consent)
• Professional advisors and legal counsel
• Authorities and regulators as required by law

All recipients are required to process data under contractual protections and applicable law.

11. Security Measures

We apply layered security controls including encryption, access management, audit logging, and incident response. No system is completely risk free, but we continuously improve our defenses and monitoring.

12. Children and Age-Sensitive Users

Our services are intended for users who meet the legal age in their jurisdiction. We do not knowingly collect personal data from children where prohibited. Parental consent is required where mandated by law. If we discover unauthorized child data collection, we delete it promptly.

13. Your Rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to processing of your data, and to withdraw consent. To exercise rights, contact support@ymwtech.com. We may verify your identity before fulfilling requests.

14. Regional Policy Adaptation

• EU/EEA & UK: GDPR, ePrivacy, age-appropriate design, and transparency requirements
• US: CCPA/CPRA, state privacy laws, COPPA for children, and Do Not Sell/Share rights
• Canada: PIPEDA and provincial privacy laws
• Brazil & LATAM: LGPD and local data protection laws
• Australia & APAC: Australian Privacy Act and local requirements

15. Policy Updates

We may update this policy to reflect legal, technical, or business changes. Material updates will be published with a revised effective date. Where required, we will provide additional notice or request renewed consent.

16. Contact and Complaints

For privacy inquiries, rights requests, or complaints, contact support@ymwtech.com. For key accounts, contact hebin@ymwtech.com. You may also lodge a complaint with your local data protection authority where applicable.

17. How to Exercise Your Rights

You may exercise your privacy rights by contacting us at support@ymwtech.com. Please specify the nature of your request (e.g., access, correction, deletion, objection, restriction, portability, or withdrawal of consent). We will respond within the timeframes required by applicable law and may request additional information to verify your identity.

18. Automated Decision-Making

We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects, unless required by law or with your explicit consent. If such processing occurs, you will be informed and have the right to request human intervention.

19. Data Protection Officer / Contact

If you have questions about this policy or our data practices, you may contact our Data Protection Officer at support@ymwtech.com or by mail at our office address above.

20. Policy Effective Date and Interpretation

This Privacy Policy is effective as of May 19, 2026. We reserve the right to interpret and update this policy as required by law or business needs. In case of discrepancies between language versions, the English version shall prevail.

Data may be processed in jurisdictions different from your residence. Where required, we apply lawful transfer mechanisms such as Standard Contractual Clauses, supplementary safeguards, and access controls. We evaluate transfer risks and apply contractual and technical protections proportionate to the data category.

10. Retention

We retain personal data only as long as necessary for service delivery, legal compliance, dispute resolution, security, and audit obligations. Retention periods vary by data type and legal requirement. Data no longer needed is deleted, anonymized, or irreversibly aggregated.

11. Data Sharing and Recipients

• Infrastructure and cloud service providers.
• Analytics and monitoring providers.
• Payment, invoicing, and financial processing providers where relevant.
• Advertising and mediation partners for monetization operations.
• Professional advisors, auditors, and legal counsel.
• Authorities and regulators when required by law.

We require recipients to process data under contractual protections and applicable law.

12. Security Measures