ChinaStory App Privacy Policy

Last Update / Effective Date: November 1, 2023 

Software developer: [Chinaso Inc.]

ChinaStory Database App understands the importance of personal information, and will make every effort to secure your personal information. We will use and disclose your personal information in accordance with the provisions of this Privacy Policy (the "Policy"). Therefore, we are providing this Policy to remind you that you are expected to read and understand this Policy carefully before using the App and related services so that you can make your own appropriate choices in accordance with the guidelines.

This Policy describes the following contents:

1.How we collect and use personal information

2.How we use cookies and similar technologies

3.How we share, transfer and disclose your personal data

4.How we protect your personal data

5.Your rights

6.Revisions and updates to this Policy

7.How to contact us

We will set up noticeable consent and decline buttons during your use of our products and services, and we will default to you not clicking them until you have checked the consent box in person. We do not collect any information about you before you click the consent button.

We collect information that you voluntarily provide when using the services or as a result of using in the following ways to provide you with services, optimize our services, and protect your account security:

1. HOW WE COLLECT AND USE PERSONAL INFORMATION

Personal information refers to various information recorded electronically or otherwise that can identify a specific natural person or reflect the activities of a specific natural person in combination with other information. We will only collect and use your personal information for the following purposes described in this Policy:

(1) Personal information we directly collect and use

We collect information that you voluntarily provide on your own initiative when you use the services and through automated means during the use of the features or receipt of the services in the following ways:

a) In order to ensure your normal use of our services, maintain the normal operation of our services, improve and optimize your service experience and safeguard your account security, we collect your device identification, hardware parameters, system version, network status, location information and records and system log information to ensure the safety of the operation and provision of services. We record network log information, as well as the frequency of use of software and related services, crash data, overall installation, usage, and performance data information.

b) To provide you with supplementary functions or services

When you use the picture save and voice assistant functions, we will access your photo and microphone functions with your consent.

(I) Permission to access the album: This permission is used to save pictures. If you use the download picture or video function, we may authorize to write this album storage or read the downloaded content according to your storage permission.

() Permission to access the microphone: This permission is used to implement voice search. The voice information we collect is only for operation command recognition (or voice to text recognition), we will not actively store your voice command information, and will not use such information for purposes other than voice control playback function.

c) To collect information from user installation lists

To provide better content search function, collecting information from user installation lists will be used to determine whether the current content source app is already installed, whether it can be opened properly, and to ensure that the information is not stored to the backstage. If you are interested in that source app because of the search content, you can choose to open it to read more content by yourself, or not to open it if you reject it.

d) Permission to phone and call management

This permission is used by the third party SDK. In order to avoid interrupting your recording, voice recognition function and the process of watching and listening to video and audio, and to facilitate our detection of your call status, we need to obtain the phone status permission.

e) In addition, in accordance with relevant laws, regulations and national standards, we may collect and use your relevant personal information without seeking your consent in the following cases:

ldirectly related to national security, national defense security and other national interests; directly related to public safety, public health, public information and other significant public interests;

ldirectly related to the investigation, prosecution, trial and enforcement of crimes;

lfor the purpose of safeguarding your or other individuals’ life, property, reputation and other significant legitimate rights and interests but it is difficult to obtain your consent;

lwhere the personal information collected is disclosed by you to the public on your own;

lwhere personal information is collected from information that is lawfully and publicly disclosed, such as lawful news reports, government information disclosure and other channels;

lnecessary to enter into and perform a contract at your request;

lnecessary for maintaining the safe and stable operation of the products or services provided, such as detecting and solving of malfunctions of the products or services;

lnecessary to conduct legitimate news reporting;

lnecessary for conducting statistical or academic research in the public interest, and when it provides the results of academic research or descriptions to the public, to de-identify the personal information contained in the results;

lother cases specified by laws and regulations.

f) Please understand that the features and services we provide to you are constantly being updated and developed. If a feature or service is not included in the aforementioned description and information is collected from you, we will separately explain the content, scope and purpose of information collection to you through page prompts, interactive processes, website announcements etc. so that to obtain your consent.

(2) Personal information we collect and use with third party SDKs

a) The service of GeTui

The information collected and used during the push notification service provided by GeTui:

(I)Device information: device serial number, device identification code(IMEI,Adroid ID,Advertising ID,IMSI,ICCID) will be used to generate a unique ID for push targets, i.e., CID. Device information including device platform, device manufacturer, and device brand helps GeTui SDK developers provide you with better push services and experiences.

(II)MAC address. Purpose: Ensure the accurate delivery of message push and the accurate identification of message devices. Device brand, Device model, and System Version Used to optimize the availability of channel resources and improve the arrival rate and stability of message push.

(III)Application list information: GeTui uses the technology of merging links for technical push, which means GeTui SDK will randomly combine multiple push links into one when they are active on one device, so as to save power and traffic for you. That is the reason the application list information is needed. Smart push is provided to recommend contents more in line with your needs according to application list information, so as to reduce the disturbance of useless push notifications.

(IV)Network information and location-related information: In order to maximize the stability of the network connection and establish long links, GeTui SDK shall acknowledge the status and float of the network to achieve a stable and continuous push service. GeTui SDK can push contents according to different scenes. Location information will be helpful for GeTui SDK to provide you with the targeted push of offline scenes, recommending contents more in line with your needs, so as to reduce the disturbance of useless push notifications.

(V)Cellular network information and call status. Purpose: To ensure the uniqueness of CID, improve the stability and accuracy of message push.

(VI)Obtain the READ_PHONE_STATE permission. Purpose: To ensure the uniqueness of CID, improve the stability and accuracy of message push.

(VII) Obtain the WRITE_EXTERNAL_STORAGE permission. Purpose: To ensure the uniqueness of CID, improve the stability and accuracy of message push

b) The service of U-Share

[Umeng] U-Share helps your app or game to quickly have multi-platform sharing function domestically and overseas, and provides you with sharing return flow data analysis service to help your product develop and promote. The information collected and used by U-share:

(I)We need to collect the Unique Device Identifier (hereinafter referred to as UDID) (such as IMEI / MAC / IDFA / Open UDID/ GUID, SIM card IMSI information),device serial number, and the public information of social media accounts where you need to share to provide you with one-click share service. U-Share is equipped with an anti-cheat function, which eliminates cheating devices and distinguish valid share channels by getting location information. U-Share can also correct the geographical distribution data of users and make report data more accurate.

(II)Cellular network information and call status. Purpose: To obtain the IMEI of the user's device and uniquely identify the user through the IMEI, so as to provide social sharing services.

(III)Obtain the READ_PHONE_STATE permission. Purpose: To obtain the IMEI/UDID/ IMSI of the user's device and uniquely identify the user through the IMEI, so as to provide social sharing services.

c) Tingyun SDK

Tingyun SDK is included in our product, which needs to collect your UDID and approximate location (latitude and longitude) to provide statistics and analysis service.

d) Tencent Browsing Service (X5)

Tencent browse service, subject name: com.Tencent.

The SDK collects information/permissions and uses them as follows:

(1) Device information: device serial number,IMSI,and IMEI. Purpose: Browser kernel upgrade and disable detailed control. Enhance the browsing experience.

(2) wifi status and parameters. Purpose: Determine whether Wi-Fi is connected and optimize the network.

(3) Location information and nearby wifi information. Usage: Triggered when the user actively opens the third-party web page and the web page itself needs to locate the location.

(4) Obtain the ACCESS_NETWORK_STATE permission to access the network status. Use: When opening web content through SDK, network connection is required.

e) Tencent Bugly

In order to acquire information of APP crashes, we need to collect your personal information including log information (log customized by the third-party developer, log fetched by Logcat, and information of APP crash stack), device identifier, network information, system name, system version and country code.

The SDK collects information/permissions and purpose of collecting:

(1)device serial number,Software installation list. Purpose: Determine the ANR status of the current process, troubleshoot crash problems, and help improve APP stability

f) Sensors SDK

The SDK collects information/permissions and uses them as follows:

(1)Device information (IDFA, operating system, system version, IMEI and MAC address) and device serial number. Purpose: Correlate them so that you can get a consistent service across these devices.

(2)device connection information (browser type, telecom carrier, language used). Purpose: Correlate them so that you can get a consistent service across these devices.

(3)device status information (device sensor data, device application installation list). Purpose: Correlate them so that you can get a consistent service across these devices.

(4)Cellular network information and call status. Usage: Allows applications to obtain device IMEI. This permission is used for in-app promotion and collection of $carrier attributes

(5) Obtain the READ_PHONE_STATE permission. Usage: Allows applications to obtain device IMEI. This permission is used for in-app promotion and collection of $carrier attributes

g) iFLYTEK SDK

When you use voice search, we should be allowed to access the voice and track the connection.

h) Bangcle Frame, com.fort.andjni, etc

In order to prevent the mobile application from being damaged by cracking, piracy, secondary packaging, injection and decompilation in the process of operation and promotion, to ensure the security and stability of the program. The overall logical structure of the mobile application is protected to ensure the user experience of the mobile application. These third-party SDKS will collect device information (IMEI) and user information (IMSI)

i)Bar code scanning SDK

(1) The SDK collects permissions of camera and photo album.

(2) Purpose: Scan the bar code. 

j) Other SDK                                                       

(1) sdk name: 

com.sina.weibo, com.alipay, com.tencent.open, com.tencent.tauth

(2)Permissions and Information collected:

(I) We need to collect the Unique Device Identifier (hereinafter referred to as UDID) (such as IMEI / MAC / IDFA / Open UDID/ GUID, SIM card IMSI information),device serial number, and the public information of social media accounts where you need to share to provide you with share service.

(II) Cellular network information and call status. Purpose: To obtain the IMEI of the user's device and uniquely identify the user through the IMEI, so as to provide social sharing services.

(III) Obtain the READ_PHONE_STATE permission. Purpose: To obtain the IMEI/UDID/ IMSI of the user's device and uniquely identify the user through the IMEI, so as to provide social sharing services.

(3) How we store personal information

a) Storage location: we shall store your personal information collected and generated during domestic operation within the People’s Republic of China in accordance with laws and regulations.

b) Storage period: we will retain your personal information during the period necessary for providing the product services. After the necessary period, we will delete or anonymize your personal information, unless otherwise stipulated by laws and regulations or reasonably extended for the purpose of finance, audit, dispute resolution, etc.

2. HOW WE USE COOKIES AND SIMILAR TECHNOLOGIES

Cookies and similar technologies are often used on the Internet. When you use the product and enjoy the services of ChinaStory, we may use relevant technologies to send one or more cookies or anonymous identifiers to your device to collect and store information when you access and use this product. Cookies and similar technologies are used to realize the following functions or services:

(1) Ensure the safe and efficient operation of the product and services

We may set cookies or anonymous identifiers for authentication and security, so that we can confirm whether you log in to the service safely, or whether you encounter illegal acts such as embezzlement and fraud. These technologies will also help us improve service efficiency and login and response speed.

(2) Provide you with easier visit experience

The use of such technology can help you eliminate the steps and processes of repeatedly filling in personal information and entering search content.

3. HOW WE SHARE, TRANSFER AND DISCLOSE YOUR PERSONAL DATA

(1) Sharing      

Your personal information shall not be shared with any other company, organization or individual except for the following circumstances:

a) sharing with express consent: We will share your personal information with other parties after obtaining your express consent;

b) your personal information may be shared in accordance with laws and regulations or mandatorily requirements by government authorities.

c) sharing with authorized partners: Some of our services will be provided by authorized partners only for the purposes stated herein. We may share certain part of your personal information with our partners to provide better customer service and user experience. For example, companies that we hire to provide third-party data statistics and analysis services may need to collect and access personal data for data statistics and analysis. In such cases, these companies must comply with our data privacy and security requirements. We will only share your personal information for lawful, legitimate, necessary, specific and explicit purposes and will only share as much personal information as is necessary to provide the services. The shared information is de-identified and anonymized, and the shared third party cannot re-identify the natural person subject of such information. We will enter into strict confidentiality agreements with companies, organizations and individuals with whom we share personal information, requiring them to handle personal information in accordance with our instructions, this Privacy Policy and any other relevant confidentiality and security measures.

(2) Transfer

We will not transfer your personal information to any company, organization or individual except for the following circumstances:

a) transfer with obtaining your express consent: We may transfer your personal information to other parties after obtaining your express consent.

b) in the case of merger, acquisition, bankruptcy or liquidation involving the transfer of personal information, we will require successors that holds your personal information to continue to be bound by this privacy policy; otherwise, we will require the company or organization to obtain your consent again.

(3) Disclosure

We will only publicly disclose your personal information under the following circumstances:

a) with your express consent;

b) disclosure based on law: We may publicly disclose your personal information when required by laws, legal procedures, lawsuits or government authorities.

4. HOW WE PROTECT YOUR PERSONAL DATA

(1) Industry-standard security measures have been used to protect the personal information you provide from unauthorized access, public disclosure, use, modification, damage or loss. We shall take all reasonably practicable steps to protect your personal information. For example, the exchange of data (such as credit card information) between your browser and the "Service" is protected by SSL encryption; Secured HTTPS browsing shall be provided for our website; Encryption shall be adopted to ensure the confidentiality of data; Trusted protection mechanisms shall be used to protect our data from malicious attacks; Access control mechanisms shall be deployed to ensure that only authorized personnel have access to personal information; security and privacy protection training courses shall be conducted to enhance staff's awareness of the importance of protecting personal information.

(2) We will take all reasonable and feasible measures to ensure that irrelevant personal information is not collected. We will only retain your personal information for the period is necessary to achieve the purpose stated in the policy, unless an extended retention period is required or permitted by law.

(3) The Internet is not an absolute secured environment. We strongly recommend that you do not send personal information through email, instant messaging and other unencrypted communication methods with our other users. Please use a complex password to help us keep your account secure.

(4) The Internet environment is not 100 percent secured and we shall do our best to ensure or vouch for the security of any information you send us. If our physical, technical or management protection facilities are breached, resulting in unauthorized access, public disclosure, tampering or destruction of information and lead to the damage of your legitimate rights and interests, then we will bear the corresponding legal liabilities.

(5) After the unfortunate occurrence of personal information security incidents, we will, in accordance with the requirements of laws and regulations, timely inform you of the basic situation and possible impact of security incidents, the disposal measures we have taken or will take, the suggestions regarding the prevention and reduce of risk and the remedial measures for you. We will timely inform you of the information related to the event by email, letter, phone, push notification and other ways. If it is difficult to inform the subject of personal information one by one, we will take a reasonable and effective way to release the announcement. At the same time, we will also take the initiative to report the disposal of personal information security incidents in accordance with the requirements of regulatory authorities.

Please understand that due to technical limitations and risk prevention limitations, even though we have tried our best to strengthen security measures, we cannot always guarantee 100% security of information. Problems may occur in the system, communication and network used by ChinaStory products and related services due to circumstances beyond our control.

5. YOUR RIGHTS

We take the management of your personal information very seriously and make every effort to protect your right to inquiry, access, modify, delete, withdraw consent and authorization, cancel your account, file complaints and report, and set up privacy functions for your personal information so that you can protect your privacy and security.

(1) Inquiry, access and modification of personal information

If you want to access, edit the account information in your account or change your password, you can log in to your account and perform such operations in [My].

You can also contact us through the contact information disclosed in this privacy policy and ask us to modify your personal information.

(2) Delete personal information

You can also contact us through the contact information disclosed in this privacy policy and ask us to delete personal information.

(3) Change the scope of your authorization consent or revoke the authorization

a) Permission to change or withdraw sensitive information

You can delete information, change privacy settings, and turn off geographic location, camera and microphone permissions in the operating system of the device itself to change the scope of consent or withdraw your authorization. After you withdraw your consent, we will no longer process the corresponding personal information, and we will no longer be able to provide you with services corresponding to the withdrawal of your consent or authorization. However, your decision to withdraw your consent will not affect the processing of personal information that has already been carried out previously based on your authorization.

b) Refuse to accept push and marketing information

You can turn off "Push Notification" to reject all the push of messages from ChinaStory in "Settings".

(4) Cancel the account

If you wish to cancel your account, you can do so by clicking [ME] at the bottom. Then you need to choose [Account & Security] - [Account Deletion] to delete your account.

You can also submit your account cancellation application 10 working days in advance. After receiving the application, we will cooperate to cancel and delete your account. After we verify your user identity, we will release your mobile phone number and email address to achieve the effect of cancellation. After you voluntarily cancel your account, we will stop providing you with products or services and delete your personal information or make it anonymous for processing in accordance with the requirements of applicable laws.

(5) Complaints and reports

You can make a complaint or report in accordance with our publicity policy. If you think that your personal information rights may be infringed, or you find clues that your personal information rights have been infringed (for example, you think that we collect your personal information in violation of the law or the agreement of both parties), you can contact us by click User Feedback to enter the user feedback interface. We will timely feedback your complaints and reports after verification. Or you can contact us in the following ways:

Email: haogushi_pub@chinaso.com;

Tel: (+86 10)88055799

We will review the issues involved as soon as possible and deal with them within fifteen working days.

(6) Access to the privacy policy

You can view the entire content of this privacy policy on the registration page, or on the login page, or view the entire content of this privacy policy through https://www.chinastory.cn/en-ysbhzc/index.html.

(7) Inform you of operation suspension

If we cease operations of this app, we will promptly cease the activities of collecting your personal information, inform you of the notice of cessation of operations by individual delivery or public announcement, and delete or anonymize your personal data.

6. REVISIONS AND UPDATES TO THIS POLICY

You are supposed to understand and agree that in order to continuously improve the products and services, we may from time to time introduce optimized features which may increase or change the scope, purpose and methods of collecting and using personal information. In this regard, we may adjust or change this privacy policy from time to time, and the adjusted or changed content will be effective 7 days after the notification or announcement, unless otherwise mandated by laws, regulations or regulatory requirements. If you continue to use any of our services or visit our related websites after the privacy policy is adjusted or changed, it means that you agree to be bound by the updated privacy policy and its related policies. We will prominently remind you to update through notification or in app pop-up so that you can keep up to date with the latest version of our privacy policy.

7. HOW TO CONTACT US

If you think that your personal information rights may be infringed, or you find clues of infringement of personal information rights, or you have complaints, suggestions, questions and reports about personal information protection, you can contact us in the following ways:

Email: haogushi_pub@chinaso.com

Tel: (+86 10)88055799

We will review the issues involved as soon as possible and deal with them within 15 working days.

 

 ChinaStory APP隐私政策

更新日期:2023111

生效日期:2023111

应用名称: ChinaStory

开发者名称:中国搜索信息科技股份有限公司

 ChinaStory深知个人信息对您的重要性,并会尽全力保护您的个人信息安全可靠。我们会按照本隐私权政策的规定使用和披露您的个人信息。因此,我们制定本隐私政策并特别提示:希望您在使用 ChinaStory产品及相关服务前仔细阅读并理解本隐私政策,您可以按照指引做出您的适当选择。

本隐私政策将帮助您了解以下内容:

一、我们如何收集和使用个人信息

二、我们对 Cookie 和同类技术的使用

三、我们如何共享、转让、公开披露您的个人信息

四、我们如何保护您的个人信息

五、您的权利

六、隐私政策的修订和通知

七、如何联系我们

在您使用产品服务的过程中会设置明确的同意和拒绝按钮,在您勾选同意前我们将默认为您不勾选。且在您点击同意按钮前,我们不会提前收集任何您的信息。

我们会按照如下方式收集您在使用服务时主动提供的或因为使用服务而产生的信息,用以向您提供服务、优化我们的服务以及保障您的账户安全:

一、我们如何收集和使用个人信息

个人信息是指以电子或者其他方式记录的能够单独或者与其他信息结合识别特定自然人身份或者反映特定自然人活动情况的各种信息。我们仅会出于本政策所述的以下目的,收集和使用您的个人信息:

(一)我们直接收集与使用的个人信息

我们会按照如下方式收集您在使用服务时主动提供的,以及通过自动化手段收集您在使用功能或接受服务过程中产生的信息:

1.为保障您正常使用我们的服务,维护我们服务的正常运行,改善及优化您的服务体验并保障您的账号安全,我们会收集您的设备标识、硬件参数、系统版本、网络状态、位置信息及记录、系统日志信息,以便确保运行与提供服务的安全,我们会记录网络日志信息,以及使用软件及相关服务的频率、崩溃数据、总体安装、使用情况、性能数据信息。

2.为您提供辅助功能或服务

当您使用保存图片时,在您授权同意后,我们会访问您的存储功能。当您长按图片或内容时,在您授权同意后,我们会访问您的剪贴板,将内容复制或者剪切到剪贴板上,供您使用复制或剪切功能。

1)存储权限:此权限用于存储图片等文件

2)剪贴板权限:此权限用于用户将内容保存至剪贴板

3.收集用户安装列表信息

为提供更好的内容搜索功能,收集用户安装列表信息将用于判断当前内容来源的APP是否已经安装,是否可以打开,且信息并没有存储到后台。如果用户因为搜索内容对该来源APP感兴趣,可以自行选择打开查看更多内容,如果拒绝则不会打开。

4.电话和管理通话权限

第三方SDK用到的此权限,为避免打断您的录音、语音识别功能以及观看、收听视频音频等过程,便于我们检测您的来电状态,我们需要调取电话状态权限。

5.另外,根据相关法律法规及国家标准,以下情形中,我们可能会收集、使用您的相关个人信息无需征求您的授权同意:

与国家安全、国防安全等国家利益直接相关的;与公共安全、公共卫生、公共知情等重大公共利益直接相关的;

与犯罪侦查、起诉、审判和判决执行等直接相关的;

出于维护您或其他个人的生命、财产、声誉等重大合法权益但又很难得到本人同意的;

所收集的个人信息是您自行向社会公众公开的;

从合法公开披露的信息中收集个人信息的,如合法的新闻报道、政府信息公开等渠道;

根据您要求签订和履行合同所必需的;

用于维护所提供的产品或服务的安全稳定运行所必需的,例如发现、处置产品或服务的故障;

为开展合法的新闻报道所必需的;

出于公共利益开展统计或学术研究所必要,且其对外提供学术研究或描述的结果时,对结果中所包含的个人信息进行去标识化处理的;

法律法规规定的其他情形。

6.请您理解,我们向您提供的功能和服务是不断更新和发展的,如果某一功能或服务未在前述说明中且收集了您的信息,我们会通过页面提示、交互流程、网站公告等方式另行向您说明信息收集的内容、范围和目的,以征得您的同意。

(二)我们使用的第三方SDK收集与使用的个人信息

1.个推服务 

个推服务,主体名称:com.getuicom.fortcn.com.chinatelecomcom.igexin.pushcom.g.gysdk

sdk搜集的信息/获取的权限,及其用途如下:

1)设备序列号,IMEIAdroid IDAdvertising IDIMSIICCID。用途为:保证消息推送的准确下发和消息设备的准确识别。设备品牌、设备型号及系统版本用于优化通道资源的有效性,提升消息推送的到达率和稳定性。

2MAC地址。用途为:用来确认网络设备位置的位址,保证消息推送的准确下发和消息设备的准确识别。设备品牌、设备型号及系统版本用于优化通道资源的有效性,提升消息推送的到达率和稳定性    

2)应用列表信息。用途为:获取同一手机中安装的所有应用的列表,用于随机合并多个app推送链路成一条链路,以达到为用户省电省流量的目的;通过该信息推荐更符合您用户需要的推送内容,减少无用推送信息对用户的打扰。

3)网络信息,位置相关信息。用途为:最大程度保持网络连接的稳定性,建立长连接,个推SDK需要了解设备的网络状态和变化,从而实现稳定连续的推送服务。个推SDK提供应景推送功能,位置相关信息将有助于个推SDK为您提供线下场景的精细化推送,可以为您推荐更符合您需要的推送内容,减少无用推送消息对您的打扰。

4)蜂窝网络信息,通话状态。用途为:确保CID的唯一性、提升消息推送稳定性和准确性。

5)获取READ_PHONE_STATE权限。用途为:允许对手机状态进行只读访问,包括当前的蜂窝网络信息、任何正在进行的通话的状态。确保CID的唯一性、提升消息推送稳定性和准确性。

6)获取WRITE_EXTERNAL_STORAGE权限,即写入外部存储权限。用途为:允许应用程序写入外部存储,确保CID的唯一性、提升消息推送稳定性和准确性。

2.友盟分享服务 

【友盟+】主体名称:com.umeng

sdk搜集的信息/获取的权限,及其用途如下:

1)设备序列号。用途为:用于一键分享服务。

2IMEI。用途为:用于一键分享服务。

3Mac地址,用途为:用于一键分享服务。

4GUID,用途为:用于一键分享服务。

5IMSI。用途为:用于一键分享服务。

6)设备硬件序列号。用途为:用于一键分享服务。

7)蜂窝网络信息,通话状态。用途为:获取用户设备的IMEI,通过IMEI对用户进行唯一标识,以便提供社会化分享服务。

8)获取READ_PHONE_STATE权限。允许对手机状态进行只读访问,包括当前的蜂窝网络信息、任何正在进行的通话的状态。用途为:获取用户设备的IMEI、设备硬件序列号、GUIDIMSI等信息,通过IMEI对用户进行唯一标识,以便提供社会化分享服务。

3.听云sdk 

我们的产品集成听云SDK,听云SDK需要收集您的唯一设备识别码及粗略地理位置(经纬度)以提供统计分析服务。

4.腾讯浏览服务(X5 

腾讯浏览服务,主体名称:com.tencent.smtt

sdk搜集的信息/获取的权限,及其用途如下:

1)设备信息(设备型号、操作系统、CPU类型)。用途为: 浏览器内核升级和禁用细化控制。

2)设备序列号。用途为:用于一键分享服务。

3IMEI。用途为: 优化用户浏览体验。

4IMSI,用途为: 优化用户浏览体验。

5wifi状态和参数。用途为:判断Wi-Fi是否连接,进行网络优化。

6)位置信息,附近wifi信息。用途为:用户主动打开第三方网页且网页自身需要定位位置时触发。

7)获取ACCESS_NETWORK_STATE 访问网络状态权限。用途为:通过SDK打开网页内容时需要网络保持连接。

5.腾讯bugly

腾讯bugly为移动开发者提供专业的异常上报和运营统计,帮助开发者快速发现并解决异常,同时掌握产品运营动态,及时跟进用户反馈。

6.神策SDK 

神策数据,主体名称:com.sensorsdata

sdk搜集的信息/获取的权限,及其用途如下:

1)设备序列号,用途为:主要用于分析和增加搜集的准确性

2)设备信息:包括设备属性信息(硬件序列号、唯一设备标识符、国际移动设备身份码IMEI、网络设备硬件MAC地址、软件列表、IMSI信息、广告标识符IDFA),设备连接信息(浏览器类型、电信运营商、使用的语言)以及设备状态信息(设备传感器数据,设备应用安装列表)。用途为:将它们进行关联,以便能在这些设备上为您提供一致的服务

2)蜂窝网络信息,通话状态。用途为:允许应用获取设备 IMEI,采用 App 内推广和采集 $carrier 属性时会用到此权限

3)获取READ_PHONE_STATE权限。用途为:允许应用获取设备 IMEI,采用 App 内推广和采集 $carrier 属性时会用到此权限

7.科大讯飞SDK 

当您使用语音搜索功能的时候,我们需要申请获取语音权限、网络状态监听权限。

8.梆梆安全加固框架, com.fort.andjni等第三方SDK

为了防止移动应用在运营推广过程中被破解、盗版、二次打包、注入、反编译等破坏,保障程序的安全性、稳定性,对移动应用的整体逻辑结构进行保护,保证了移动应用的用户体验。这些第三方SDK将收集设备信息(IMEI)及用户信息(IMSI)以及设备序列号。

9.网易云信点播

网易云信点播,主体名称:com.netease.neliveplayer

sdk搜集的信息/获取的权限,及其用途如下:

1)设备序列号,IMSIIMEI,设备类型,设备名称,设备型号,系统版本,运行状态信息,浏览器类型名称及版本信息。用途为:为保障云信直播点播服务运行安全,了解产品适配度及标识最终用户。

2)获取READ_PHONE_STATE权限。用途为:为保障云信直播点播服务运行安全,了解产品适配度及标识最终用户。

10.其他SDK: com.sina.weibo(微博)com.alipay(支付宝,mPaaS,阿里乘车码,阿里芝麻信用实名认证,芝麻认证)com.tencent.open(腾讯开放平台;微信;QQ) com.tencent.tauth(腾讯开放平台;微信;QQ)

上述sdk搜集的信息/获取的权限,及其用途如下:

1)设备序列号。用途为:用于分享服务。

2IMEI。用途为:用于分享服务。

3Mac地址,用途为:用于分享服务。

4GUID,用途为:用于分享服务。

5IMSI。用途为:用于分享服务。

6)设备硬件序列号。用途为:用于分享服务。

7)蜂窝网络信息,通话状态。用途为:获取用户设备的IMEI,通过IMEI对用户进行唯一标识,以便提供社会化分享服务。

8)获取READ_PHONE_STATE权限。允许对手机状态进行只读访问,包括当前的蜂窝网络信息、任何正在进行的通话的状态。用途为:获取用户设备的IMEI、设备硬件序列号、GUIDIMSI等信息,通过IMEI对用户进行唯一标识,以便提供社会化分享服务。

(三)我们如何存储个人信息

1.存储地点:我们依照法律法规的规定,将在境内运营过程中收集和产生的您的个人信息存储于中华人民共和国境内。

2.存储期限:我们仅在为提供产品服务之目的所必需的期间内保留您的个人信息,超出必要期限后,我们将对您的个人信息进行删除或匿名化处理,但法律法规另有规定的或出于财务、审计、争议解决等目的需要合理延长期限的除外。

二、我们如何使用 Cookie 和同类技术

Cookie 和同类技术是互联网中的通用常用技术。当您使用 ChinaStory产品及相关服务时,我们可能会使用相关技术向您的设备发送一个或多个 Cookie 或匿名标识符,以收集和存储您访问、使用本产品时的信息。我们使用 Cookie 和同类技术主要为了实现以下功能或服务:

(一)保障产品与服务的安全、高效运转

我们可能会设置认证与保障安全性的 Cookie 或匿名标识符,使我们确认您是否安全登录服务,或者是否遇到盗用、欺诈等不法行为。这些技术还会帮助我们改进服务效率,提升登录和响应速度。

(二)帮助您获得更轻松的访问体验

使用此类技术可以帮助您省去重复填写个人信息、输入搜索内容的步骤和流程。

三、我们如何共享、转让、公开披露您的个人信息

(一)共享

我们不会向其他任何公司、组织和个人分享您的个人信息,但以下情况除外:

1.在获取明确同意的情况下共享:获得您的明确同意后,我们会与其他方共享您的个人信息;

2.我们可能会根据法律法规规定,或按政府主管部门的强制性要求,对外共享您的个人信息;

3.与授权合作伙伴共享:仅为实现本隐私权政策中声明的目的,我们的某些服务将由授权合作伙伴提供。我们可能会与合作伙伴共享您的某些个人信息,以提供更好的客户服务和用户体验。例如,我们聘请来提供第三方数据统计和分析服务的公司可能需要采集和访问个人数据以进行数据统计和分析。在这种情况下,这些公司 必须遵守我们的数据隐私和安全要求。我们仅会出于合法、正当、必要、特定、明确的目的共享您的个人信息,并且只会共享提供服务所必要的个人信息。我们所共享的个人信息是去标识化、匿名化处理后的信息,共享第三方无法重新识别此类信息的自然人主体。

对我们与之共享个人信息的公司、组织和个人,我们会与其签署严格的保密协定,要求他们按照我们的说明、本隐私政策以及其他任何相关的保密和安全措施来处理个人信息。

(二)转让

我们不会将您的个人信息转让给任何公司、组织和个人,但以下情况除外:

1.在获取明确同意的情况下转让:获得您的明确同意后,我们会向其他方转让您的个人信息;

2.在涉及合并、收购或破产清算时,如涉及到个人信息转让,我们会在要求新的持有您个人信息的公司、组织继续受此隐私政策的约束,否则我们将要求该公司、组织重新向您征求授权同意。

(三)公开披露

我们仅会在以下情况下,公开披露您的个人信息:

1.获得您明确同意后;

2.基于法律的披露:在法律、法律程序、诉讼或政府主管部门强制性要求的情况下,我们可能会公开披露您的个人信息。

四、我们如何保护个人信息安全

(一)我们已使用符合业界标准的安全防护措施保护您提供的个人信息,防止数据遭到未经授权访问、公开披露、使用、修改、损坏或丢失。我们会采取一切合理可行的措施,保护您的个人信息。例如,在您的浏览器与服务之间交换数据(如信用卡信息)时受 SSL 加密保护;我们同时对我们网站提供 https 安全浏览方式;我们会使用加密技术确保数据的保密性;我们会使用受信赖的保护机制防止数据遭到恶意攻击;我们会部署访问控制机制,确保只有授权人员才可访问个人信息;以及我们会举办安全和隐私保护培训课程,加强员工对于保护个人信息重要性的认识。

(二)我们会采取一切合理可行的措施,确保未收集无关的个人信息。我们只会在达成本政策所述目的所需的期限内保留您的个人信息,除非需要延长保留期或受到法律的允许。

(三)互联网并非绝对安全的环境,而且电子邮件、即时通讯及与其他我们用户的交流方式并未加密,我们强烈建议您不要通过此类方式发送个人信息。请使用复杂密码,协助我们保证您的账号安全。

(四)互联网环境并非百分之百安全,我们将尽力确保或担保您发送给我们的任何信息的安全性。如果我们的物理、技术或管理防护设施遭到破坏,导致信息被非授权访问、公开披露、篡改或毁坏,导致您的合法权益受损,我们将承担相应的法律责任。

(五)在不幸发生个人信息安全事件后,我们将按照法律法规的要求,及时向您告知:安全事件的基本情况和可能的影响、我们已采取或将要采取的处置措施、您可自主防范和降低风险的建议、对您的补救措施等。我们将及时将事件相关情况以邮件、信函、电话、推送通知等方式告知您,难以逐一告知个人信息主体时,我们会采取合理、有效的方式发布公告。

同时,我们还将按照监管部门要求,主动上报个人信息安全事件的处置情况。

请您理解,由于技术的限制以及风险防范的局限,即便我们已经尽量加强安全措施,也无法始终保证信息百分之百安全,ChinaStory产品及相关服务所用的系统、通讯和网络,有可能因我们可控范围外的情况而发生问题。

五、您的权利

我们非常重视您对个人信息的管理,并尽全力保护您对于您个人信息的查询、访问、修改、删除、撤回同意授权、注销账号、投诉举报以及设置隐私功能权利,以使您有能力保障您的隐私和安全。

(一)个人信息查询、访问、修改

如果您希望访问或编辑您的账户中的账户信息、更改您的密码,您可以登录账号通过【我的】的方式执行此类操作;

您也可以通过本隐私政策中披露的联系方式联系我们,向我们提出修改个人信息的请求。

(二)删除个人信息

您也可以通过本隐私政策中披露的联系方式联系我们,向我们提出删除个人信息的请求。

(三)改变您授权同意范围或撤销授权

1.改变或撤回敏感信息权限

您可以在ChinaStory产品中删除信息、更改隐私设置以及在设备本身操作系统中关闭地理位置、摄像头、麦克风权限改变同意范围或撤回您的授权。当您撤回同意后,我们将不再处理相应的个人信息,我们将无法继续为您提供撤回同意或授权所对应的服务。但您撤回同意的决定,不会影响此前基于您的授权已经开展的个人信息处理。

2.拒绝接受推送及营销信息

您可以通过设置关闭推送通知拒绝来自ChinaStory的全部消息的推送。

(四)注销账户

您可以提前【10】个工作日提交账户注销申请,收到申请后我们将会配合注销删除您的账号。我们在核实您的用户身份后,会释放您的手机号和邮箱,达到注销的效果。在您主动注销账户之后,我们将停止为您提供产品或服务,根据适用法律的要求删除您的个人信息,或使其匿名化处理。

(五)投诉举报

您可按照我们公示的制度进行投诉或举报。如果您认为您的个人信息权利可能受到侵害,或者发现侵害个人信息权利的线索(例如:认为我们收集您的个人信息违反法律规定或者双方约定),您可以通过点击用户反馈,进入用户反馈界面与我们联系。我们核查后会及时反馈您的投诉与举报。或通过以下方式与我们联系:

邮箱:jianyi@chinaso.com

电话:(+86 1088055719

我们将尽快审核所涉问题,并在十五个工作日内处理。

(六)访问隐私政策

您可以在注册页面,或者在登录页面查看本隐私政策的全部内容或通过http://www.chinastory.cn/ysbhzc/index.html查看本隐私政策全部内容。

(七)停止运营向您告知

如我们停止运营,我们将及时停止收集您个人信息的活动,将停止运营的通知以逐一送达或公告的形式通知您,并对所持有的您的个人信息进行删除或匿名化处理。

六、隐私政策的修订和通知

您理解并同意,基于不断完善产品和服务的目的,我们将不时推出优化功能,可能增加或变更收集、使用个人信息的范围、目的和方式。对此,我们可能适时会对本隐私权政策进行调整或变更,除法律法规或监管规定另有强制性规定外,经调整或变更的内容一经通知或公布后的7日后生效。如您在隐私权政策调整或变更后继续使用我们提供的任一服务或访问我们相关网站的,则表示您同意受到更新后的隐私政策及其相关政策的约束。我们会通过信息推送或应用内弹窗的方式显著提醒您更新的内容,以便您能及时了解隐私政策的最新版本。

七、如何联系我们

如果您认为您的个人信息权利可能受到侵害,或者发现侵害个人信息权利的线索,或者对个人信息保护问题有投诉、建议、疑问、举报,您可以通过以下方式与我们联系:

邮箱:jianyi@chinaso.com

电话:(+86 1088055719

我们将尽快审核所涉问题,并于十五个工作日内处理。