Privacy Policy

Ai Art (collectively, "this website", "we", "us", or "our"), respects your privacy. We hereby develop this Privacy Statement (referred to as "this Statement") to help you understand how we collect, use, disclose, protect, store, and transmit your personal data. Please take a moment to read this Statement carefully and contact us if you have any questions.

This Statement applies to our products and services that display or mention this Statement.

I. How We Collect and Use Your Personal Data

1. How We Collect Your Personal Data

Personal information refers to any type of information recorded electronically or otherwise relating to an identified or identifiable natural person, excluding information that has been anonymised. We may collect your personal data when you use our products or services or interact with us. Different types of data will be collected, depending on the service you use and your interactions with us. In some cases, you can choose not to provide such data, but this may prevent us from providing you with corresponding products or services, or may mean that we cannot respond to or resolve any issues you have raised. The personal and sensitive user data we collect includes but is not limited to:

- Personal identifiers (such as name, email address)

- Device identifiers

- Camera data (when you use camera-related features)

- App usage data

- Device information and other installed apps list

When providing you with related products or services, we may also collect and summarise statistics, such as website visits, app downloads, and product sales volume, to understand how our products and services are used. For the purposes of this Statement, the preceding statistics are regarded as non-personal data. We will try our best to isolate your personal data from non-personal data and use them separately. The personal data mixed with non-personal data will still be treated as personal data.

We will collect and use your personal data only for the purposes described in this Statement and Product Privacy Notice. The following are some examples of personal data we may collect:

(1) Personal data that you provide to us

You need to register an ID of this website to enjoy certain functions or services. When you register an ID of this website or log in to your ID, we may ask you to provide relevant personal data.

(2) Information that we collect when you use services

When you use our products and services, we will collect your device information and how you and your device interact with our products and services. Such information includes:

a. Device and app information, such as the device name, device identifier, device activation time, hardware model, operating system version, app version, software identifier, and device and app settings (such as region, language, time zone, and font size).

b. Mobile network information, such as the public land mobile network (PLMN) provider ID, geographical location (cell ID of the area where the device is located), and Internet protocol (IP) address.

c. Log information. When you use our services or view content provided by us, we will automatically collect and log some information, such as the time of access, access count, IP address, and event information (such as errors, crashes, restarts, and updates).

(3) Information from third-party sources

When permitted by local laws, we may also obtain other information about you, your device, or service usage from public or legitimate commercial sources. For example, we obtain your information from the third party when you log in to our website through a third-party social media account, or when your contact information is uploaded by others who use our communication services.

2. How We Use Your Personal Data

We use your personal data only on a legal basis. According to applicable local laws, we may use your personal data for the following purposes under one of the legal bases: your consent; necessary to perform/enter into a contract between you and us; necessary to protect the legitimate interests of you or others; necessary to fulfil legal obligations; and necessary to protect the legitimate interests of enterprises:

(1) Register and activate our products or services that you have purchased;

(2) Register your ID of this website so that you can enjoy a wider range of functions;

(3) Deliver, activate, or verify the products and services you have requested, or perform changes and provide technical support and after-sales services for such offerings at your request;

(4) Notify you of operating system updates and installations;

(5) Provide individualized user experience and content;

(6) Carry out internal audit, data analysis, and research; analyse business operation efficiency and measure market shares; and improve our products and services;

(7) Troubleshoot problems after you send error details to us;

(8) Synchronise and store the data you have uploaded or downloaded, as well as the data needed for upload and download operations;

(9) Improve our loss prevention and anti-fraud programs;

(10) Comply with applicable local laws/regulations,or comply with legal government requirements.

3. Data Security and Transfer

We handle all personal and sensitive user data securely, including:

- Using modern encryption technologies (such as HTTPS) for data transmission

- Implementing runtime permissions for accessing Android permission-controlled data

- Never selling personal and sensitive user data to third parties

"Selling" means exchanging or transferring personal and sensitive user data to third parties for monetary compensation. User-initiated data transfers (e.g., when a user uses an app feature to transfer files to a third party) are not considered selling.

II. How We Entrust, Share, Transfer, and Disclose Your Personal Data

1. Sharing

Sharing refers to the process in which we provide personal data to other personal data processors, and both parties can independently determine the data processing purposes and methods. We will not share your personal data with external parties, except in the following cases:

(1) Sharing with your consent: After obtaining your consent, we will share your authorised personal data with third parties designated by you.

(2) Sharing under statutory circumstances: We may share your personal data in accordance with laws/regulations, litigation resolution requirements, or legal requirements of administrative and judicial authorities.

(3) Sharing with our affiliates: Your data may be shared with our affiliates. We will share your data with our affiliates only for specific, definite, and legitimate purposes. We will only share data necessary for providing services. For example, in order to avoid repeated registration of IDs, we need to verify the global uniqueness of the account to be registered.

We will perform security assessment on the sharing behaviour and personal data receivers, and sign a data protection agreement or strict non-disclosure agreement with them, requiring them to abide by this Statement and take appropriate confidentiality and security measures when processing your personal data.

2. Transfer

If personal data transfer is involved due to merger & acquisition, division, dissolution, or bankruptcy, we will send prior notifications to you to specify the receivers' names and contact information, and require them to abide by this Statement when processing your personal data. The receiver who attempts to change the original processing purpose or method shall obtain your consent again.

3. Public Disclosure

We will disclose your personal data only in the following cases:

(1) After obtaining your consent;

(2) On legal or reasonable grounds: We may disclose your information when required by laws, legal procedures, litigation, or public and government authorities.

III. How We Protect Your Personal Data

The security of your personal data is important to us. We have adopted standard industry practices to protect your personal data from unauthorised access/disclosure/use/modification, damage, or loss. To this end, we take the following measures:

1. We take all reasonable and feasible measures to ensure that the personal data collected is minimal and relevant to what is necessary in relation to the purposes for which they are processed. We will retain your personal data for no longer than is necessary for the purposes stated in this Statement, unless otherwise extending the retention period is required or permitted by law.

2. We use cryptographic technologies to ensure the confidentiality of data transmission and storage, and implement trusted protection mechanisms to protect data and data storage servers from attacks.

3. We deploy access control mechanisms to permit only authorised access to your personal data. In addition, we limit the number of authorised personnel and implement hierarchical permission management based on service requirements and personnel levels. Access to personal data will be logged and reviewed by authorised personnel on a regular basis.

4. We carefully select business partners and service providers and incorporate personal data protection requirements into commercial contracts, audits, and appraisal activities.

5. We organise security and privacy protection training courses, tests, and publicity activities to raise employees' personal data protection awareness.

We are fully committed to protecting your personal data. Nevertheless, no security measure is perfect, and no product, service, website, data transmission, computer system, or network connection is absolutely secure.

If any personal data security incident occurs, we will notify you, pursuant to local legal requirements, of the basic information about the security incident and its possible impact, measures that we have taken or will take, suggestions about active defence and risk mitigation, and remedial measures. The notification may take the form of an email, text message, push notification, etc. When it is difficult to inform data subjects individually, we will take appropriate and effective measures to release a Security Notice. In addition, we will also report the handling status of personal data security incidents as required by supervisory authorities.

IV. How You Can Manage Your Personal Data

1. Personal Data Subjects' Rights, Such as Access, Correction, and Deletion

According to local laws, personal data subjects or their agents can submit requests for exercising data subjects' rights (referred to as "requests") to us.

(1) Requesting methods and channels

Data subjects' requests must be submitted in writing. The requests are equally valid even if the requester does not specify the laws on which the requests are based. In general, verbal requests are not valid unless otherwise permitted by local laws.

Data subjects' requests can be submitted through this website. If a data subject initiates a request via email or other channels, we will instruct the data subject to raise an official request through one of the aforementioned channels to facilitate progress communication and result feedback.

(2) Validity of requests

Most laws require data subjects to comply with specific requirements when they initiate requests. This Statement requires data subjects to:

a. Submit requests through dedicated request channels (namely, this website).

b. Provide sufficient information for us to verify their identities (to ensure those who initiate the requests are the data subjects themselves or those authorised by them).

c. Ensure that their requests are specific and feasible.

(3) Request processing period

We will make every effort to respond within a necessary and reasonable time frame upon receiving a request to access personal data.

(4) Request results

After a request is submitted, the following may occur:

a.The request is rejected.

Requests from data subjects may be declined in the following situations, including but not limited to:

(a) Local laws do not grant relevant rights to data subjects;

(b) The identity of the requester cannot be verified;

(d) The requested information is related to the compensation that we will make or receive as a result of an ongoing dispute, and the disclosure of such information is likely to damage our interests;

(e) The retained information is used for statistical and research purposes only, and the publication of statistics and research results does not reveal personal identities;

(f) Other situations stipulated by laws.

If we decline a request from a data subject, we will provide the requester with a formal explanation.

b.The request is accepted.

If none of the situations described in (1) occurs, we will honor the request of the data subject. To increase the likelihood that the request will be accepted, please provide as detailed information as possible when submitting your request, such as the request type, specific content, information about the information holder (such as the account name you use for our products and services), and time frame in which the information was generated or processed (requests within a shorter period of time have a higher likelihood of being accepted).

(5) Special notes

a. Only legal guardians or legally authorised persons have the right to access the personal data of others.

b. Most laws/regulations specify the circumstances under which an organisation may not provide data to data subjects. These cases include scenarios when providing data may undermine ongoing efforts against terrorism; when the data subject has made repeated requests, or when obtaining and providing such information would consume disproportionate resources.

c. Typically, we will not provide the following information:

(a) Information about others: Requests from data subjects may involve other individuals besides the data subject. We will not provide such information, unless authorised by the relevant individuals.

(b) Repeated requests: If the data subject initiates the same or similar requests related to one data subject for multiple times, and the data has not changed since the last time we provided the data, we will not provide a copy of the data in most cases. Additionally, we have no obligation to provide information that has been publicly available.

(c) Confidential opinions: We are not obligated to provide the requested information if such information is a confidential opinion.

(d) Special documents: We will not disclose any special information in response to requests for accessing personal data. Typically, special information includes any confidential documents (such as attorney/client communication), and information that obtains or expresses a corresponding legal opinion (irrespective of whether it is related to the lawsuit itself or related to information from court proceedings).

2. Withdrawal of Consent

If allowed by applicable laws, you have the right to withdraw your consent at any time when we process your personal data based on your consent. However, the withdrawal of consent shall not affect the lawfulness and effectiveness of your personal data processing based on your consent before the withdrawal is made, or affect any data processing based on another justification other than your consent.

V. How We Process the Personal Data of Minors

We attach great importance to the protection of minors' personal data. We will provide services and protection for minors in strict accordance with national laws/regulations. Parents or other guardians should also take appropriate measures to protect minors, including monitoring their use of products or services.

We treat anyone under the age of 14 (or the age stipulated by local laws) as a child. Children are not allowed to create their own IDs of this website without the consent of their parents or other guardians. We will strictly restrict the entrusted processing, sharing, transfer, and public disclosure of children's personal data in accordance with laws/regulations. If the guardian needs to access, correct, or delete the personal data of the person under guardianship at any time, please contact us according to Chapter 8 "How to Contact Us." If we find that we have collected children's personal data without obtaining the prior consent from authenticated parents or other guardians, we will manage to delete the data as soon as possible.

VI. Links to Third-Party Websites, Products, and Services

To ensure smooth user experience, this website, our products, and services may contain links to third-party websites, products, and services. Our products and services may also use or provide products or services from third parties. We do not have control over third-party websites, products, and services, but you can choose whether to access these links.

We also have no control over the privacy or data protection policies of third parties, as such third parties are not bound by this Statement. Before submitting personal data to third parties, please read and refer to their privacy or data protection policies.

VII. Updates to This Statement

We reserve the right to update this Statement at any time. This Statement may be updated from time to time. For the latest version, please visit our official website. If major changes are made to this Statement, we may notify you through different channels, for example, posting a notice on our website or sending you direct notification.

VIII. How to Contact Us

If you have any questions, comments, or suggestions, please contact us via the online customer service or via email to wplIpzqw@ncps.cc.

For any compliance or legal-related inquiries, please reach out to us at wplIpzqw@ncps.cc. We’ll be happy to assist you!

Generally, we will answer your questions within the time frame specified by laws/regulations. If you are not satisfied with our reply, especially if you feel that our personal data processing has violated your legal rights and interests, you can submit complaints or report to local privacy protection regulators.

Last updated: December 9, 2025