heiman Privacy Policy

Our Privacy Policy will take effect on February 16, 2023. From this date onwards, this Privacy Policy can provide privacy details on how we manage your personal information for Heiman products and services. Please take a moment to familiarize yourself with our Privacy Policy and let us know if you have any questions.

Please take a moment to familiarize yourself with our Privacy Policy and let us know if you have any questions.

Our commitment to you

Shenzhen Heiman Technology Co., Ltd.(hereinafter referred to as "Heiman", "we", "our" or "us") highly value your privacy. heiman is a smart device control and management platform provided to you by Heiman.

Your privacy is extremely important to us. This Privacy Policy is a statement and commitment covering the aspect of privacy for Heiman’s heiman app and constitutes an integral part of the Heiman Privacy Policy. In the event of any inconsistency between the Heiman Privacy Policy and another specific agreement involving heiman, the terms of this Privacy Policy shall take precedence. Matters not expressly provided for under this Privacy Policy shall by governed by the Heiman Privacy Policy. We recommend that you carefully read the Heiman Privacy Policy and pay particular attention to provisions on “protection, security measures, and cross-border data transfers of information of minors”.

This Privacy Policy was formulated to fully take your needs into account. It is important that you fully understand our personal information collection and usage practices and ensure that you are ultimately able to exercise control over the personal information you provide to us. This Privacy Policy sets out how we collect, use, disclose, process, and store any information that you provide to us when you use our heiman app. As used in this Privacy Policy, “personal information” means information that can be used to identify an individual, either from that information alone or in conjunction with other related information. We will only use this information in strict accordance with this Privacy Policy.

Ultimately, we hope to give our users the best experience possible. Should you have any questions about our data handling practices as described in this Privacy Policy, please contact us by visitinghttp://heimantech.com so that we can respond to your specific concerns. We would be happy to receive any feedback you may have.

I. What Information We Collect and How We Use It

(I) Circumstances which require you to authorize us to collect and use your personal information

Personal information is collected in order to provide you with products and/or services as well as to ensure legal compliance on our part with applicable laws, regulations, and other regulatory documents. You have the right to choose whether or not to provide this information. However, in most cases, if you do not provide such information, we may be unable to provide corresponding services to you, or we may be unable to respond to a problem you encounter. These features include:

(1) Smart device connections

In order to provide you with heiman services and allow you to securely connect to and manage smart devices, we may collect your Wi-Fi information, location information, account login information, information related to your mobile phone and smart device, and information associated with your heiman account and smart device. This information will be used to provide you with various functionality including pairing with and connecting to smart devices, discovering nearby devices, and device management. Specific examples involving the above information are set out below:

Self start: Haiman Smart Home provides users with functions such as group control device status intelligent scenes. This function can perform some linkage operations when the Haiman Smart Home is not opened, but it will receive relevant instructions in the background for software self start wake-up to achieve relevant functions!!
Account login information: heiman account, nickname, and profile picture information.
Mobile phone related information: Hardware-based identifiers (MAC address, Android ID), phone model, OS version, OS language, country or region, App Store version, screen size and resolution, CPU, and display device related information.
Information to be collected during connection to a smart device: Based on the type of the smart device you need to get connected to, we may collect the following information:

Smart devices connected via Wi-Fi: Wi-Fi information (SSID, BSSID, MAC address of Wi-Fi, Wi-Fi password), MAC address of the device, and device ID.

After establishment of a local connection via Bluetooth, smart devices connected via Wi-Fi: Wi-Fi information (SSID, BSSID, MAC address of Wi-Fi, Wi-Fi password), MAC address of the device, and MAC address of Bluetooth on the device.

Smart devices connected via Bluetooth: MAC address of Bluetooth on the device, and device ID.

Smart devices connected via Zig-bee: MAC address of the device, and device ID.

(2) Using smart devices for home management:

We may collect information that you provide relating to room settings for smart devices in order to facilitate smart home management. This will allow you to enjoy greater convenience when using smart devices (for example, when using multiple smart lights, being able to quickly identify that a light is in a bedroom instead of a living room).

(3) Device sharing

We provide support for you to share smart devices with others through heiman accounts. Sharing a smart device with someone else allows them to also control the device. In order to enjoy this feature, we may collect your account ID, the ID you provide relating to the account with which you share access, and shared device information (including device ID, device name, device verification key, and sharing status of device). Such information allows us to give you the ability to share device control and usage with the accounts of other heiman users as well as to display the device’s sharing status on the My Devices page in the heiman app.

(4) App and smart device updates:

To ensure you can continue enjoying the latest heiman services, we may use the version information of your heiman app and phone model in order to provide you with updates to the heiman app. We may also collect a list of your connected smart devices and associated version information in order to provide you with smart device updates so that you can use the latest version of the service (including firmware version).

(5) Smart scenes (smart device connections):

We provide support for you to configure certain rules to establish smart connections between devices under specific conditions. In order to enjoy this feature, we may collect your location information, smart scene rule settings, and designated device status so as to enable specific device functions to be executed according to the commands you give. (For example, enabling a light to turn on whenever a sensor detects someone passing by). Please rest assured that this functionality cannot be enabled without your express consent and rule configurations.

(II) Circumstances which you may authorize us to collect and use your personal information

To make you enjoy better control and management of smart devices provided by heiman, we may collect and use your personal information in the following additional features. If you do not provide these personal information, you can still use the basic services of heiman, but you may not be able to use such valuable additional features. These additional features include:

• User feedback: We may collect feedback from you on issues that you report to us, a feedback log, and any phone numbers or email addresses that you provide to us. This information will be used to help us better understand any problems you encounter as well as to allow us to contact you.

• Log information: When you use our app, system and exception logs may be uploaded, including your IP address, language used, version of the operating system, date or time of access, etc.

Please note that device information and service log information alone is information that cannot identify a specific natural person. If we combine such non-personal information with other information to identify a specific natural person, or use it in combination with personal information, such non-personal information will be treated as personal information during the period of combined use, and we will anonymize and de-identify such information unless we obtain your authorization or unless otherwise required by law or regulation.

(III) Situations where we obtain your personal information from a third party

Under certain conditions permitted by law, we may obtain your personal information from a third party. For example, with the smart scenes function (smart device connections), if you provide authorization, we may obtain the device status of the smart device from the area where the smart device is located in order to determine whether to activate a smart scene (for example, if you configure a rule to turn on a light whenever someone walks by a sensor). You can add or remove smart connection rules on the “Smart” page. You can also choose whether to enable or disable smart connections on the Smart Devices page.

(IV) Non-personal information

We may also collect other types of information which are not directly or indirectly linked to an individual and which may not be defined as personal information according to applicable local laws. Such information may include statistical data generated when you use a specific service, such as including clicks, page redirects, and browsing time Such information is collected in order to improve the services we provide to you.

(V) heiman permission instructions

In addition, the following device permissions may be triggered when you use heiman. In order to enable you to better manage your information, we will inform you the purpose of using this permission and the possible impact on your use of the service if you do not turn on this permission at the same time when you apply for the permission in the process of using the product, please check it carefully. You can choose whether to authorize the following permissions before using certain functions. At the same time, you can change the authorization status at any time through the permission setting page of your device.

The following are the details of the relevant functions and calling privileges, listed for your reference:

Read and write external storage space: used to read and write photos and files on the device in the functions of sweep code acceptance sharing device, sweep code binding device, user feedback, etc.
Location permission: Used to determine the city to get and display local weather information, discover nearby smart devices, and discover nearby WLAN list.
Camera permission: used to accept sharing devices in sweep, sweep bound devices, take photos and upload user avatars, take photos and upload user feedback images.
Microphone permission: for voice control devices, bound to the camera through the APP and the camera intercom.
Turn on WLAN permission: for WiFi device binding.
Enable Bluetooth permission: for WiFi devices that support Bluetooth Assisted Pairing to use Bluetooth Assisted Pairing.

(VI) You are fully aware that your consent is not required for us to collect or use personal information in the following circumstances :

Related to national security, national defense security.
Related to public safety, public health, and vital public interests.
Related to crime investigation, prosecution, trial and execution of judgments, etc.
For the purpose of safeguarding the life, property and other significant legitimate rights and interests of the subject of personal information or other individuals but for which it is difficult to obtain the consent of the individual.
Where the personal information collected is disclosed to the public by the subject of the personal information himself/herself.
Where your personal information is collected from information that is lawfully and publicly disclosed, such as lawful news reports, government information disclosure and other channels.
That which is necessary to enter into a contract at your request.
Necessary for maintaining the safe and stable operation of the products and/or services provided, such as detecting and disposing of malfunctions of products and/or services.
Necessary for legitimate news reporting.
Necessary for academic research institutions to conduct statistical or academic research in the public interest and to de-identify personal information contained in the results of the academic research or description when the results are made available to the public.

II. Sharing Your Personal Information with Third Party Service Providers

We do not sell any personal information to third parties. To help us provide you with products and services described in this Privacy Policy, we may, where necessary, share your personal information with our third party service providers and business partners. Heiman will conduct due diligence and have contracts in place to ensure that third-party service providers comply with the applicable privacy laws in your jurisdiction. Location-based service providers: The location-based services component of our services is provided by third party providers including AutoNavi. In order to offer you location-based services, we may provide information such as your device identifier information to any of these service providers. If we share your personal information with these third parties, we will use encryption technology or other means to keep your information secure. We perform reasonable reviews of the data security practices of companies and organizations with which we share personal information and/or also sign strict data processing agreements with them. Furthermore, we require third parties to take adequate measures to safeguard your information and to strictly comply with applicable laws, regulations, and regulatory requirements.

III. Retention Policy

We will retain personal information for the period of time needed to fulfill the purpose for which it was collected as described in this Privacy Policy, or we will retain personal information in order to comply with applicable legal requirements. We will cease to retain your personal information and will delete or anonymize it once the purpose of collection is fulfilled, or after we confirm your request for deletion or cancellation, or after we discontinue the corresponding product or service. We will continue to retain relevant information in accordance with applicable laws even if further information processing is unrelated to the original purpose of collection, provided that doing so would be in the public interest or for scientific or historical research or statistical purposes.

IV. Your Rights

(I) Settings control

Modify personal information such as your nickname or profile picture. To do so, open the heiman app and go to “Me -> Settings -> Personal data”.
Enable or disable smart device connections.
Log into or out of your heiman Account.

If you have previously consented to our use of your personal information for the purposes described above, you may change your decision at any time by contacting us in writing or by email at 2880680361@qq.com.

(II) Your rights to your personal information

Subject to the applicable laws and regulations of your country or region, you have the right to request access to, correct, and/or delete any personal information we have about you (hereinafter referred to as a “request”).

For details relating to the personal information in your heiman account, If you have previously consented to our use of your personal information for the purposes described above, you may change your decision at any time by contacting us in writing or by email at 2880680361@qq.com. This Privacy Policy requires any request you make to meet the following conditions:

To safeguard your personal information, your request should be made in writing through our designated request channel (unless oral requests are expressly permitted by local law);
Provide enough information for us to verify your identity and ensure that the requester is the data subject or is otherwise legally authorized to request the information;
Once we have a sufficient amount of information and confirm that we are able to process your request, we will respond to your request within the period specified by applicable data protection laws. Specifically:
We may provide to you, in accordance with your request and applicable laws and regulations, a free copy of the record of personal information about you that we have collected and processed. However, if you make an additional request regarding related information, we reserve the right, pursuant to applicable law, to charge you a reasonable fee for your data access request based on actual management costs involved.
If you believe that any information we have about you is incorrect or incomplete, you may request to correct or modify your personal information based on the purpose of use.
Subject to your applicable laws and regulations, you may have the right to ask us to delete your personal data. We will conduct an evaluation according to your request for deletion and, if corresponding rules are met, we will take corresponding steps, including technical measures, to carry out your request. After you delete or after we assist you in deleting your information, it may not be possible for us to immediately delete corresponding information from our backup systems due to applicable laws and security technologies. In such event, we will ensure your personal information is kept secure and prevent it from being subjected to any further processing until the backup can be cleared or anonymized. For example, the “E-Commerce Law of the People’s Republic of China” requires your goods and services information and transaction information to be retained for a period of no less than three (3) years from the date of completion of the transaction.
We have the right to refuse to process requests considered to be frivolous or vexatious, requests that harm the privacy of others, extremely unrealistic requests, requests that would require a disproportionate technical effort, requests that are not required to be granted under local law, and requests involving information already available to the public or given under confidential conditions. We may also refuse a request in cases where we believe that certain aspects of a request to delete or access data might cause us to be unable to legally use the data for the aforementioned anti-fraud and security purposes.

(III) Withdrawal of consent

You may withdraw your consent for the collection, use, and/or disclosure of your personal information in our possession or control by submitting a request.Depending on the specific service you are using, you can contact us at 2880680361@qq.com to do so. We will process your request within a reasonable time frame from the time when the request was received, and thereafter not collect, use and/or disclose your personal information as per your request. Please note that your withdrawal of consent could result in certain legal consequences. Depending on the extent to which you authorize us to process your personal information, it may mean that you will no longer be able to enjoy the use of Heiman products or services. However, any decision on your part to withdraw your consent or authorization will not affect personal information processing previously performed with your permission.
Please note that the withdrawal of your consent may lead to certain legal consequences. Depending on the scope of the information you authorize us to process, this may result in you not being able to enjoy Heiman's products or services. However, your decision to withdraw your consent or authorization will not affect the processing of personal information that was previously carried out on the basis of your authorization.

(IV) Cancellation of service or account

If you wish to cancel a specific product or service, Depending on the specific service you are using, you can contact us at 2880680361@qq.com to do so. If you wish to cancel your heiman account, please exercise caution before doing so, as canceling your account will prevent you from being able to enjoy the full line of Heiman products and services. To protect the legitimate rights and interests of you and others, we will determine whether to grant your cancellation request based on your usage of Heiman products and services. For example, if you an outstanding amount due, we will not be able to immediately grant your request.

V. HOW YOUR PERSONAL INFORMATION IS TRANSFERRED GLOBALLY

Heiman runs and controls facilities worldwide to process and back up personal information. Currently, Heiman runs data centers in China, Singapore, the United States, Germany, Russia, and Singapore. For the purposes of this Privacy Policy, your information may be transferred to these data centers according to applicable laws.

We may also share your personal information with our Third Party Service Providers and business partners, therefore, your information may also be transferred to other countries or regions. The jurisdiction of these facilities worldwide may not implement the same personal information protection standards as in your jurisdiction. Risk may exist depending on different data protection laws. However, this does not change any of our commitments to comply with this Privacy Policy and safeguard your personal information.

Specifically,

• The personal information collected and generated during our operations in the mainland of the People's Republic of China will be stored in the data centers operated in China's mainland, except for information that is allowed for cross-border transfer according to applicable laws.

• The personal information we collect and generate during our operations in Germany is processed and stored in our data centers in Germany, except for those allowed for cross-border transmission under relevant Russian laws.

• The personal information collected and generated during our operations in the United States is stored in data centers in the United States.

• The personal information collected and generated during our operations in Singapore will be stored in the data centers operated in Singapore.

To the extent that we may need to transfer your personal information outside of your jurisdiction, whether to our affiliated companies or Third Party Service Providers, we shall do so in accordance with the applicable laws. We will ensure that all transfers will be carried out in accordance with requirements under your applicable local data protection laws by putting in place consistent and appropriate safeguards. You can contact us at 2880680361@qq.com

According to the requirements of EU GDPR, the Life IoT platform has done measures related to privacy protection and data security, and the privacy protection is realized through technical solutions to meet the product compliance requirements of GDPR.

Heiman has successfully passed the SOC1 and SOC2 audit standards set by the American Institute of Certified Public Accountants (AICPA) and the Cloud Security Alliance (CSA). You will have the right to contact us via email: 2880680361@qq.com to be informed of the security mechanisms in place.

VI. Third Party Websites and Services

Our Privacy Policy does not apply to products or services offered by a third party. heiman products or services may include, depending on which ones you use, third-party products or services such as location-based services. Some products or services may be provided in the form of links to third-party websites, while others may be in the form of SDKs, APIs, etc. Third parties may collect your information when you use such products or services. For this reason, we strongly suggest that you read the third party’s privacy policy just as you have taken the time to read ours. We are not responsible for and cannot control how third parties use the personal information that they collect from you. Our Privacy Policy does not apply to other websites that are linked via our services.

An example of third-party terms and a privacy policy which apply when you use the aforementioned products or services is provided below:：

Location-based service provider’s privacy policy:

Tencent Maps

Privacy Policy

OAID, system attributes, operating system and version, system settings, operator base station information (Cell ID), WIFI information (WiFi status, WIFI parameters, nearby WIFI list, connected WIFI), sensor information (gravity sensor, gyroscope sensor, acceleration sensor, magnetic field sensor, rotation vector sensor), Bluetooth information Accurate location information (GPS information): The permissions required to implement SDK product functions include location permissions (mandatory), network permissions (mandatory), Bluetooth scanning permissions (optional), network and WiFi status permissions (optional), foreground service permissions (optional), and background positioning permissions (optional).

In order to improve the accuracy and success rate of positioning services and provide continuous positioning services for specific continuous positioning scenarios, Tencent Maps third-party SDK will collect user positioning information for weather function display, locate the user's location to display local weather conditions.
Third party sharing or payment:

WeChat Privacy Protection Guidelines

Get your basic WeChat information for WeChat payment service.

Outline of Weibo's Personal Information Protection Policy

We obtain content posted by users, location information for microblog sharing services. Obtain IP addresses, device models, unique device identifiers, location information, installed application information, and other technical information about the device.

In order to assist in registering a Weibo account and providing opened Weibo services, it is necessary to provide personal information such as cell phone number, email address and mailing address to the Weibo third-party SDK. If you need to use certain specific functions (such as authentication, finding address book friends, marking precise location, settlement revenue, etc.), you may also need to provide sensitive personal information such as precise location information, address book, ID number, facial recognition features, payment account number, etc. to the Weibo SDK.

Alipay App Payment Client SDK Privacy Statement

Obtain camera rights of the device for providing Alipay face recognition service, collect common device information (such as IMEI/IMSI, SIM card serial number/MAC address), and network information for security risk control during the Alipay service.
Message push :

Huawei push's privacy policy

Get device and network information, interaction record information, log information for Huawei push service.

OPPO push's privacy policy

Get mobile device ID, mobile device model information, etc. for push service.

Xiaomi push's privacy policy

Get login account, Space ID (if using split space function), device related information (IMEI number, device model, phone OS, etc.), application information (APP version number, etc.), network related information (IP or domain connection result, current network type), system language information, message sending result information, etc. for Xiaomi push service.

Alipush's Privacy Policy

Get mobile device ID, mobile device model information, etc. for push service.
Statistical analysis of third-party application crash logs:

Tencent Bugly. bugly website: https://bugly.qq.com/v2/index If you have questions about how we use Bugly, please contact us at 2880680361@qq.com Contact us.

Bugly SDK personal information protection rules

Personal information provided by App developers and/or end-users voluntarily or collected by us directly; Personal information of App developers and/or end-users obtained from App developers. It mainly includes: log information (including: third-party developer custom logs, Logcat logs, and App crash stack information), device ID (including: androidid and idfv), networking information, system name, system version, and country code.

[AU+] Privacy Policy

Get cell phone number, address information, for AU statistical analysis, information push, social development, smart authentication, application crash monitoring, smart hyperlink service
Platform Service Provider Agreement

Ali Life IoT platform

AliCloud Link Life IoT Platform Service Agreement

It will read the content copied in the clipboard by user's quick paste, when the user actively copies the password or other information, for password recognition or quick paste.

Read the contents of your clipboard to determine if you have the relevant password code information when you open the app or switch the app from the background to the foreground.

Reads your clipboard to help quickly paste the copy when you are actively copying in preparation for a quick paste.

Read the app installation list and device Mac address when using App 10

VII. Contact Us

If you have any questions or feedback regarding this Privacy Policy, or if you have any questions regarding how we collect, use, or disclose your personal information, please contact us at the address below or via email: 2880680361@qq.com and mention that your message is in reference to the “Privacy Policy”. Our dedicated response team will be able to handle any issues you may have about rights requests or questions about your personal information. If you have a particularly critical issue that needs to be addressed, we may ask you to provide us with more information. If you are not satisfied with the response you receive, you may escalate your complaint to the applicable regulatory authority in your jurisdiction. Upon request, we will provide you with information on how to file a complaint based on your actual circumstances.

Address:

No.4, Dafu Industrial Zone, Guanlan Street, Longhua District, Shenzhen City, Guangdong Province, China

App Name:

heiman

Developed by:

Shenzhen Heiman Technology Co., Ltd.