Effective date: January 1, 2022
Welcome to use the products and/or services (hereinafter collectively referred to as “YiDun Services”) provided by Hangzhou NetEase ZhiQi Technology Co., Ltd. and its affiliates (hereinafter collectively referred to as “we” or “NetEase YiDun”). We always attach great importance to the protection of personal information. When you use YiDun services, you, as our customer, we may collect and use your personal information. At the same time, you, as the data controller, decide the purpose and method of processing personal information of the end users of your products and/or services (hereinafter referred to as the “end Users”) the purpose and method of processing personal information.We may act as a data processor in the process of providing you with YiDun services, accept your entrustment and collect and use the relevant personal information of the end users according to your instructions . We hope that through this "NetEase YiDun Privacy
Policy (hereinafter referred to as the “Policy”) to clearly introduce how we handle your and end users’ personal information, so as to better protect your and end users’ Rights.
If you disagree with any content of this policy or your end user disagrees with our collection and use of their personal information to provide corresponding services in accordance with this policy, you shallould immediately stop using YiDun services. Your use or continued use of YiDun services means that you agree and will ensure that the end user fully understands and agrees thatwhat we collect, use, store, share, transfer and disclose your and end user’s personal information in accordance with this policy (including updated versions).If you do not obtain the consent of the end user in advance, the related liabilities responsibilities will be entirely borne by you.
After reading this policy, if you and the end user have any questions about this policy , you can contact us through the feedback channels listed in “How to Contact Us” section of this policy , and we will answer it as soon as possible.
This policy will help you understand the following:
I. How we collect and use personal information ofabout you and end users II. Authorization and use of the personal information of end users
III. How do will we share, transfer, and publicly disclose personal information about you and end users
IV. How do will we store the personal information of you and the end user
V. How to protect the personal information of you and the end user
VI. How do will we manage the personal information of you and end users
VII. How dowill we deal with the information of minors
VIII. Amendments and notifications
IX. How to contact us
We will, in accordance with relevant laws and regulations, follow the principles of fairness, lawfulness, and necessity, and for the purposes described in this policy, collect and use the personal information that you proactively provide during the use of the YiDun service, and those generated by your use of the YiDun service and . Personal information of you and/or end users generated by your end users’ useing your products and/or services.
Please understand that due to changes in business strategies and related requirements of laws and regulations, the business functions of YiDun services may also undergo changes and developments. If we want to use your and/or end-user’s personal information for other purposes not specified in this policy or collect additional personal information not mentioned, we will obtain your consent separately collect additional information through page prompts, interactive processes, website announcements or other methods to get your consent. During this process, you can contact us through the feedback channels listed in “How to Contact Us” section of this policy , and we will answer as soon as possible.
1.1 In order to complete the necessary activities such as the registration, login, management and real-name authentication of the YiDun service account, you need to submit true, legal and valid information. The information you may need to submit includes: your basic account information , including user name ,mobile phone number , email address , account password,your identity information , including your name ,ID number , front and back photos of your ID card , including your personal Image of ahand-held ID card photo containing your personal Image ; your product information, including your product name, industry classification ;your contact information, including contact name , contact phone number and QQ number ; your corporate information: including company name,unified society Credit code , front and back photos of the legal representative’s ID card.
In order to achieve the purpose of real-name authentication, you agree and authorize us to provide, inquire, and verify your aforementioned information to relevant identity authentication agencies (such as credit reporting agencies, government departments, etc.) either by ourselves or by entrusting a third party.
1.2 In order to ensure the normal operation of YiDun services, protect your or a third party’s personal and property safety from infringement, and better prevent security risks such as phishing websites, fraud, network vulnerabilities, computer viruses, network attacks, and network intrusions, and more accurately identify violations of laws and regulations or relevant protocol rules of YiDun services, we will record and save the details of your login and use of YiDun services during your use of YiDun services and save them as web logs , including Internet Protocol (IP) Address , Internet Service Provider (ISP) ,browser type , access date and time , software and hardware characteristics information, and web browsing records.
We collect this information to provide you with better services. In order to achieve this purpose, we will also use your information for the following purposes: (1) Contact you to solve problems; (2) Improve the quality of our services; (3) ) Other uses permitted by you.
Based on your entrustment and instructions, we may need to collect and use the relevant personal information of your end users in order to realize the basic business functions of the YiDun service. YiDun services include but are not limited to content security, business security services, mobile security services, and public opinion monitoring services. Please note that only some YiDun services need to collect and use the personal information of the end user and the personal information of the end user we collect will be different depending on the YiDun service you choose. The following will list in detail the basic business functions of the YiDun service to collect and use end-user personal information and the types of information necessary to realize this function. The collection and use of such personal information requires you to obtain the end user’s consent.
2.1 YiDun Content Security Service
YiDun content security services, are based on our years content security protection experience, to provide you with efficient and low-cost content security solutions, including audio detection services, video detection services, document detection services, audio and video detection services, converged media detection services, and websites content detection inspection service, text detection inspection service, image detectioninspection service.
2.1.1 In audio detection, video detection, document detection, audio and video detection, converged media detection and website content detection services, we will detect whether the content you submit is illegal or not and identify the publisher of the relevant content to help you efficiently filter the content of pornography , gambling, violence, etc. In order to achieve the above-mentioned service purposes, you need to submit corresponding inspection information to be detected to us, including: audio , video , document and other content information released by end users , user account and IP address information of End User . We will only detect inspect the specified content according to the inspection information you submit, and will not actively collect and use any personal information of the end user.
2.1.2 In the text detection and image detection services, we will detect pornography, violent terrorism and other illegal information and your personalized content and identify the publisher of the relevant content to help you efficiently filter and delete the relevant information. To achieve the above purpose of the service, you need to submit the appropriate submission of information to be detected to us, including: end-users text , picture and end user account information (account , phone number , nickname , gender , user rating , registration time , the number of friends , fans nNumber , friend relationship ), device information (device ID , ID type , device MAC address,
international mobile device identification code , IDFV) , log information (APP version , recipient ID , sender/receiver , group chat ID , room ID , post ID , main comment ID ,commodity ID , IP address) . We will only inspect the specified content according to the inspection information you submit, and will not actively collect and use any personal information of the end user.
2.2 YiDun Business Security Service
YiDun business security services, are based on our rich big data and artificial intelligence technology, to ensure business security from the source, and solve business security problems intelligently and efficiently for you, including behavioral verification code services, SMS verification codes and number verification services, and real person verification services , marketing anti-cheating service, registration and login protection service, device fingerprint service.
2.2.1 In behavioral verification code services, marketing anti-cheating services, registration protection services, login protection services, and device fingerprint services, we need to accurately identify devices and user operations and perform corresponding analysis and judgments. In order to achieve the above service purposes, we need to obtain the end user’s device information , log information, and application information.
2.2.2 In the SMS verification code service, we need to send SMS to the end user. In order to achieve the above service purposes,we will collect and use the end user’s mobile phone number.
2.2.3 In the number authentication service (including one-key login service and number authentication service), we will integrate the corresponding third-party service functions of China Mobile, Telecom, and China Unicom. The third party will directly collect and use the personal information of the end user. The user needs to click to agree to the above-mentioned third-party privacy documents, and they will be directly responsible to you and the end user. We do not collect any personal information of end users.
2.2.4 In the real person information authentication service (including ID card authentication, real person authentication, live detection, face comparison, face detection, ID card OCR recognition, bank card three/four element recognition, phone number three element recognition service ), we need to check whether the person, ID,phone number, and bank card number are consistent with each othersame. In order to achieve the above service purposes, we will collect and use different personal information according to the type of service you choose, as follows:
220.127.116.11 ID card authentication service: We will collect and use the end user’s name , ID number , and front and back photos of the ID;
18.104.22.168 Real person authentication service: We will collect and use the end user’s name , ID number , and face image information;
22.214.171.124 Living body detection service, face detection service, face retrieval service, face comparison service: We will collect and use the end user’s facial recognition information (static and/or dynamic) , as well as obtain the end user’s Device camera permissions;
126.96.36.199 ID card OCR service: We will collect and use the front and back photos of your ID card, and identify the end user’s face image , gender , age , address , birthday , ethnicity , ID card validity period , card issuing authority information from it;
188.8.131.52 Phone number two-element/three-element identification service: We will collect and use the end user’s name, mobile phone number , and ID number (only the three elements of phone number are required);
184.108.40.206 Bank Card Three/Four Elements Recognition Service: We will collect and use the end user’s name , ID number , bank card number , and phone number (only required by the bank’s four elements).
In order to realize the services described in Article 2.2.4, you agree that we will provide the end-user personal information described in this aArticle to third parties, and we will evaluate the legality, legitimacy, and necessity of such personal information collectioned by such third-party services. These third parties will be required by us to take protective measures technology for your personal information and strictly abde by relevant laws, regulations and regulatory requirements.
2.3 YiDun Mobile Security Service
YiDun mobile security services provide one-stop security solutions for mobile applications to ensure your application code securiy, data security and operational security, including anti-plug services, Android and iOS application reinforcement services, SDK reinforcement services, and security component services.
In the anti-plug-in service, we need to detect whether the equipment, end user operation, and network environment are abnormal. In order to achieve the above service purposes, we need to collect the end user’s device information , log information , and application information.
(1) the device information including a device unique identifier ( device serial number , the IMEI , the MAC address , Android ID , IDFV ), deviceequipment brand , device name , device type and device type of system , detailed setting and version information . We also need to obtain the end user’s device information related permissions.** .
(2) Log information , we need to obtain the log information of the end user, including 1) Network related information : device IP address , router identification ( BSSID , SSID , MAC ) and IP address , network operator information , network connection status ; 2) Operational information : end-user startup , click , and installation behavior information . We also need to obtain the location permission of the end user (the iOS system needs to obtain the location permission to obtain WIFI information).
(3) Application information . We will collect the Bundle ID of the IOS application you developed and/or the application package name , application name , version number , and application signature information of the Android application you developed on the end user’s device.
If we combine this type of non-personal information with other information to identify a specific natural person, or combine it with personal information, during the combined use period, this type of non-personal information will be treated as personal information, unless obtained your authorization is obtained or otherwise provided by laws and regulations, we will anonymize and de-identify this type of information.
According to relevant laws and regulations, the collection of information about you and end users in the following situations does not require your consent:
(1) It is directly related to national security and national defense security;
(2) It is directly related to public safety, public health, and major public interests;
(3) Directly related to criminal investigation, prosecution, trial, and execution of judgments;
(4) In order to protect the life, property and other major legal rights of you, the end user or other individuals, but it is difficult to obtain the consent of the person;
(5) The personal information collected is disclosed to the public by you and the end user
at your own discretion;
(6) It is nNecessary forto signing and performing the contract according to your requirements, but only if you have obtained the end user’s consent;
(7) Collecting personal information from legally publicly disclosed information, such as legal news reports, government information disclosure and other channels;
(8) It is nNecessary forto maintaining the safe and stable operation of YiDun services, such as discovering and disposing of product and/or service failures;
(9) It is nNecessary forto carrying out legal news reports;
(10) When it is necessary forto conducting statistical or academic research in public interest, and when the results of academic research or description are provided to the outside, the information contained in the results is de-identified;
(11) Other circumstances stipulated by laws and regulations.
As the end user’s personal information controller, we accept your entrustment and provide you with data processing services according to your instructions, but we cannot control how the end user’s personal information is used. You should collect, use, and authorize us to collect and use your end user’s personal information in a manner that complies with applicable laws and ethical obligations.
If you accept this policy and use YiDun services in your products and/or services, you need to ensure that you have complied with and will continue to comply with applicable laws, regulations and regulatory requirements and the provisions of this policy, including but not limited to:
Will comply with all applicable laws, regulations and regulatory requirements related to the collection of information from end users;
End users have been provided with easy-to-operate rights realization and information management mechanisms, explaning how users exercise their right of choice, how to access, correct their personal information, exercise their right to delete,and change the scope of their authorization and consent.
If you cannot meet the foregoing conditions or your end user disagrees with NetEase YiDun’s collection and use of personal information in accordance with this policy, you should not continue to use YiDun’s services; your continued use shall be deemed that you have agreed and to have been agreed and given to NetEase. We guaranteed to us that all your end users have agreed that we have the right to collect and use their personal information to provide corresponding services. In any case, if you fail to obtain the consent of the end user in advance so that we have the right to collect and use their personal information to provide services, all liabilitiesresponsibilities incurred thereby shall be borne by you. If any loss is caused to us, you shall be compensated us in full.
we will not share your end user’s personal information with any third party:
We will only transfer the personal information of you or the end user in the following situations:
We will only publicly disclose the personal information of you or the end user in the following circumstances:
Unless otherwise stipulated by laws and regulations, regulatory authorities or you and us, we will only store your and end users’ personal information for the period necessary for the purposes described in this policy and within the shortest time limit. If we terminate the service or operation, we will promptly stop the activities of continuing to collect personal information, and at the same time, we will comply with relevant laws and regulations to notify you in advance, and delete or anonymize the relevant personal information after terminating the service or operation, except as otherwise. Except the law specified by laws and regulations or regulatory authorities.
In principle, we only store personal information about you and end users in China. However, in the following circumstances, we may provide personal information about you and end users outside China, or store personal information about you and end users outside China:
We ask you to pay special attention: different countries or regions have their own regulatory requirements for the collection, storage, use, and sharing of personal information. You should actively comply with the laws, regulations and regulatory requirements of each country or region . In order to prevent you from violating local regulatory requirements due to your ignorance of the laws and regulations related to the protection of personal information in the country or region where your end user is located, we strongly recommend that you only use YiDun services within China. If you apply the YiDun service outside of China, you should follow the
local legal requirements for cross-border transfer of personal information to ensure that the storage of personal information in China meets local regulatory requirements . In particular, when cross-border transfers involve Russia, India, EUthe Europe, the United States and other countries or regions, please pay attention to the personal information regulatory requirements of these countries and regions . You agree that the risks and liabilitiesresponsibilities arising from cross-border transmission will be borne by you. If any form of loss occurs to us, you are responsible for giving us full compensation.
We attach great importance to information security, set up a dedicated security team, and take all reasonable and feasible measurestechnology to protect the personal information of you and end users:
We will adopt security technology measures that comply with industry standards, including encryption and other technologies to encrypt and store your and end users’ personal information, and isolate them through isolation technology to prevent your and end users’ personal information from being unauthorized access, use and modification to avoid data damage or loss.
We have an industry-advanced data security management system centered on personal information and around the data life cycle, which improves the security of the entire system in multiple dimensions from organizational construction, system design, and personnel management. We manage and regulate the storage and use of personal information by establishing a data classification and grading system, data security management specifications, and data security development specifications.
We only allow those who need to know this information to access the personal information of you and the end user, and set up strict access control and monitoring mechanisms for this purpose. We also require all personnel who may have access to the personal information of you and end users to fulfill the corresponding confidentiality obligations.
We attach importance to information security compliance work, and have passed many international and domestic security certifications, such as ISO27001 information security management system certification, information system security level protection certification, etc., to fully protect your and end users’ information with industry-leading solutions.
In order to deal with the possible risks of personal information leakage, damage and loss, we have formulated a number of systems to clarify the classification and classification standards of security incidents and security vulnerabilities and the corresponding processing procedures. We have also established an emergency response team for security incidents, in accordance with the requirements of the security incident handling regulations, launching safety plans for different security incidents, stopping losses, analyzing, positioning, formulating remedial technology, and tracing and combating with relevant departments.
Please understand that due to technical limitations and risk prevention limitations, even if we have tried our best to strengthen security measurestechnology, we cannot always guarantee 100% security of information. In the event of a security incident such as the leakage of personal information, we will initiate an emergency plan to prevent the expansion of the security incident, report it in time in accordance with the “National Cybersecurity Incident Emergency Plan” and other relevant regulations, and notify you of the relevant situation in the form of emails, push notifications, announcements, etc. , and give you safety advice.
You need to understand that the system and communication network you use for YiDun service may occurcause problems matters due to circumstances beyond our control. In order to more effectively protect the information security of you and end users, we also hope that you can strengthen self-protection. If your physical, technical, or management protection facilities are damaged, resulting in unauthorized access to your and end users’ personal information , public disclosure, tampering, or destruction, the risks and responsibilities arising therefrom will be borne by you, and we will not be liable for this.
(1) Access, update and delete
We encourage you to update and modify your personal information to make it more accurate and effective. We will adopt appropriate technology or provide contact channels for submitting applications to ensure that you can access, update and delete your personal information as much as possible.
If you want to inquire, modify or delete some of your personal information, you can contact us through the feedback channels listed in the “How to Contact Us” section of this policy to exercise your rights, except as otherwise provided by laws and regulations. When accessing, updating, correcting and deleting the aforementioned information, we may require you to verify your identity to ensure information security.
(2) Account cancellation
We provide you with a way to cancel your account. In compliance with the agreed conditions of our terms of service and relevant laws and regulations, you can contact us through the feedback channels listed in the “How to Contact Us” section of this policy to cancel your YiDun account . When you log out of your account, we may require you to perform identity verification to ensue information security.
(3) Change the scope of your authorization
You can always choose whether to disclose personal information to us. Some personal information is necessary forto usinge YiDun services. For additional personal information collected, you can change the scope of your authorization for ourto continued to collection of the information or withdraw your authorization by deleting the information, turning off the device function, etc.
(4) Constrain the automatic decision-making of the information system
In some business functions, we may only make decisions based on non-manual automatic decision-making mechanisms including information systems and algorithms. If these decisions significantly affect your legal rights, you have the right to ask us for an explanation, and we will also provide appropriate remedies.
(5)The possible impact of deletion, cancellation and withdrawal of authorization
When you delete a certain personal information or withdraw a certain authorization, we will no longer be able to provide you with the corresponding service, and will no longer process your corresponding personal information; when you log out of your account, we will stop providing you with all YiDun services, and delete your personal information or make anonymization processing according to your request, except as otherwise provided by laws and regulations.
In any case, the above decision you make will not affect the previous personal information processing based on your authorization, and as a result, you cannot continue to use all or part of the YiDun service. The corresponding consequences and losses shall be borne by you. We It will be processed in accordance with our terms of service and corresponding rules.
Since your end user is not a direct customer of NetEase YiDun, you should comply with applicable laws, regulations and regulatory requirements and the provisions of this policy, and provide end users with easy-to-operate methods in response to end users’ access, update, and deletion of their personal information , log off the account, change the scope of theirits authorizationlicense agreement and other requests.
If you have doubts or difficulties during the operation and our cooperation is necessary for youus to complete, you can through this policy “How to Contact Us” feedback channels listed in the section contact us to exercise your rights, we will process it based on your commission, laws and regulationslegal regulations and the provisions of this policy. If the end user chooses to directly make a related request to NetEase YiDun, in order to protect the legitimate rights and interests of you, the end user and others, we will require the user to verify his identity. After verifying with you, we have the right to process the user’s related request in accordance with laws and regulations and the provisions of this policy.
In any case, as the data controller of the end user, you should be responsible for the response and processing of the end user’s request. If any loss is incured to us you cause any loss to us due to your reasons, you should compensate us in full.
In order to ensure safety, you and the end user may need to provide a written request or prove their identity in other ways. We may ask you and the end user to verify your identity before processing the request. For reasonable requests from you and the end user, we do not charge fees in principle, but for repeated requests, that requests exceeding reasonable extentslimits, we will charge a certain cost depending on the circumstances. For those requests that who have nothing to do with us, repeat for no reason, require excessive technology (for example, the need to develop new systems or fundamentally change existing practices), bring risks to the legitimate rights and interests of others, or are very
impractical (for example, involving the information storage on backup tapes) request, we may refuse.
In the following situations, we will not be able to respond to requests from you and end users:
(1) Related to our fulfillment of obligations stipulated by laws and regulations;
(2) Directly related to national security and national defense security;
(3) It is directly related to public safety, public health, and major public interests;
(4) Directly related to criminal investigation, prosecution, trial, and execution of judgments;
(5) We have sufficient evidence to show that you or the end user are subjectively malicious or abuse of rights;
(6) In order to protect the life, property and other major legal rights of you, the end user or other individuals, but it is difficult to obtain the consent of the person;
(7) Responding to requests from you and the end user will cause serious damage to the legitimate rights and interests of you, the end user or other individuals or organizations;
(8) Involving commercial secrets.
Restricted by existing technologies and business models, it is difficult for us to proactively identify information about minors. If we collect the personal information of minors without knowing it or collect the personal information of minors without the prior consent of a verifiable guardian, the guardian can notify us to delete it., Iif we find the aforementioned circumstances, we will also take the initiative to delete without your consent, unless the law requires us to retain such information.
In order to provide you with better services, we may revise the terms of this policy in a timely manner based on the update of YiDun services and relevant requirements of laws and regulations, and such revisions constitute part of this policy. We will post any changes to this policy on this page. For major changes, we will also provide more prominent significant notifications (such as website announcements, push notifications, pop-up prompts). The major changes referred to in this policy include but are not limited to:
We may issue service-related announcements when necessary (for example, when we suspend a certain service due to system maintenance). You may not be able to cancel these service-related announcements that are not promotional in nature.
We have established a dedicated department for personal information protection, which will protect your personal information and the personal information of end users in accordance with this policy. If you and the end user complain and report about the information security of YiDun service, or have any questions, comments or suggestions about this policy, privacy measurestechnology, and the personal information of you and the end user, please contact NetEase YiDun’s personal information protection personnelal information protection . To contact the personnelstaff, you can send an email to Privacy@service.netease.com, or write to the following address: Netease Phase II Personal Information Protection Specialist (Received), No. 399, Wangshang Road, Binjiang District, Hangzhou; Zip code: 310052.
Under normal circumstances, we will reply within fifteen working days after receiving relevant questions, comments or suggestions and verifying the identity.