Privacy Policy

Effective Date: 2026-03-25

This Privacy Policy describes how Beijing Haoyichuang Technology Co., Ltd. ("we", "our", "us") processes personal data in mobile applications, mobile games, websites, and associated services. This policy is designed to support developer policy adaptation, app store adaptation, monetization platform adaptation, global privacy regulation adaptation, and global age-management adaptation.

1. Scope and Roles

We may act as a data controller or a data processor depending on specific projects. In co-development and co-operation projects, responsibilities are defined by contract and data processing agreements. For self-developed products, we usually act as the controller.

2. Data We Process

• Account and identity data: user identifiers, login tokens, support contact records.
• Device and technical data: device model, OS version, app version, language, crash and performance diagnostics.
• Usage and event data: gameplay or feature interactions, session duration, funnel events, anti-fraud signals.
• Transaction data: in-app purchase receipts, subscription status, order identifiers, refund or dispute references.
• Advertising and attribution data: ad engagement events, campaign source signals, consent status.

3. Purpose and Legal Basis

• Service delivery and account management.
• Security, fraud prevention, abuse prevention, and service integrity.
• Performance analytics and product improvement.
• Monetization support including subscriptions, IAP, premium feature access, VIP benefits, and ads.
• Compliance with legal obligations and store policy obligations.

Depending on region, legal bases may include contract necessity, legitimate interests, legal obligations, or user consent.

4. Developer Policy and Store Adaptation

4.1 Google Play Adaptation

• Data safety section alignment and regular audits of disclosed processing activities.
• Permission minimization and purpose limitation for runtime permissions.
• Children and family policy adaptation, ad and content controls for child-directed products.
• Subscription disclosure standards for pricing, billing period, auto-renewal, and cancellation routes.

4.2 Apple App Store Adaptation

• App Privacy Nutrition Labels aligned with actual data usage and third-party SDK behavior.
• App Tracking Transparency (ATT) compliance for tracking authorization and fallback behavior.
• Guideline 5.1 privacy requirements adaptation including consent and data minimization.
• Subscription and in-app purchase policy adaptation with transparent user communication.

5. Monetization Platform Adaptation

• SDK due-diligence and contract control for ad networks, mediation platforms, and attribution providers.
• Configurable consent mode and regional ad controls to respect privacy choices.
• Risk controls for invalid traffic, click inflation, and payment abuse.
• Data sharing restriction by environment, purpose, and retention strategy.

6. Global Privacy Regulation Adaptation

• GDPR/UK GDPR: rights management, lawful basis mapping, DPIA workflow where required.
• CCPA/CPRA: notice requirements, opt-out handling, and consumer rights requests.
• PIPL and PRC data regulations: localization and cross-border transfer governance where applicable.
• Other regional laws: LGPD and additional jurisdiction-specific obligations as required by launch markets.

7. Global Age Management Adaptation

• Age-screening design with risk-graded experience controls.
• Child and teen data restrictions, including personalized ad limitations where required.
• Parental notice and consent flows where legally required.
• Compliance with COPPA, regional youth safety obligations, and store-specific family policy requirements.

8. Data Sharing and Third Parties

We may share data with cloud infrastructure providers, analytics providers, payment processors, ad partners, and customer support tools, strictly under contracts and only for lawful and declared purposes.

9. Security, Retention, and International Transfer

• Encryption in transit and at rest where applicable.
• Role-based access controls, logging, and operational monitoring.
• Retention schedules based on legal, contractual, and service necessity standards.
• Cross-border transfer safeguards such as contractual clauses and internal governance controls.

10. Data Subject Rights

Depending on jurisdiction, users may request access, correction, deletion, portability, restriction, objection, or withdrawal of consent. To submit a request, contact: support@haoyichuang.com.

11. Contact Information

Beijing Haoyichuang Technology Co., Ltd.
No.206-003, No.7, Juyuan W. Road, Mapo Town, Shunyi District Beijing, 100000 China
Business: qiaoyeying@haoyichuang.com
Support: support@haoyichuang.com