Updated: 2025-01-14

HONG KONG KAYNIKON TECHNOLOGY LIMITED and its affiliates and subsidiaries (hereinafter referred to as “we”, “our”, “KAYNIKON”) are committed to protecting your privacy. This Privacy Statement (hereinafter referred to as the “Statement”) describes how we process personal data and protect the privacy of information when you use the following services, products and related mobile applications (collectively, the “Products”) below. In this Privacy Statement, “Personal Data” means information that can identify an individual, whether used alone or in combination with other information. “Smart Device” refers to non-standard computing devices that have a human-machine interface and can transmit data over a wireless network, including: smart cameras, smart home appliances, smart wearable devices, smart air purification devices, etc. “App” refers to a mobile application developed by KAYNIKON that enables end users to remotely control smart devices and connect to the KAYNIKON IoT platform. For other branded apps powered by KAYNIKON, it is up to our customers to decide what personal data to collect through our Products. We collect information based on our customers’ requests, and the processing of such information is limited to providing the services agreed between our customers and us. If you are a user of our customers and you do not want customers who use our services to contact you, please contact the customer directly and inform them of your request. What personal data do we collect? In order to provide you with our services, we will ask you to provide the personal information necessary for such services. If you do not provide personal information, we may not be able to provide you with our products or services. Collection of personal information: Some third-party SDKs or similar applications that are connected may collect your personal information. If you use such services provided by third parties in our services, you agree that they will directly collect and process your information. We will evaluate the legality, legitimacy and necessity of such third-party services to collect personal information, require such third parties to take protective measures for your personal information, and strictly comply with relevant laws, regulations and regulatory requirements. Obtaining mobile device identification code and status: used to obtain the IMEI of the user’s device, uniquely identify the user through the IMEI, so as to provide statistical user numbers, and not enabling it will not affect the normal use of the application.

Information you voluntarily provide to us

o Account or user profile data: When you register for our account, we may collect some of your information, such as your email address, phone number, and user name. During your interaction with our products, we may further collect nicknames, avatars, country codes, language preferences or time zone information in your account.

o Feedback: When you use the feedback and suggestion features in our products, we collect your email address, mobile phone number and feedback content so that we can handle your questions and device failures in a timely manner.

Information we collect automatically

o Device information: When you interact with our products, we automatically collect device information, such as the device’s MAC address, IP address, wireless connection information, operating system type and version, application version number, push notification identifier, log files and mobile network information.

o Usage data: During your interaction with our websites and services, we automatically collect usage data related to visits, clicks, downloads, sending/receiving messages and other uses of our websites and services.

o Log information: When you use our app, application logs and exception stacks may be uploaded.

o Location information: We collect information about your real-time precise or non-precise geolocation only when you use our specific products or services (such as selecting a default country when logging in or registering with them).

o Album permissions: Based on image-related services, used to select image files from the album;

o Camera/camera permissions: Based on camera shooting services, used to scan code to add devices, take photos and upload pictures;

o Storage permissions: Used to ensure the stable operation of the client, from normal startup of the App, saving or reading pictures.

Smart device related information:

o Basic information of smart devices: When you use a smart device connected to our services, we may collect some basic information of the smart device, including device name, device ID, online status, activation time, firmware version and upgrade information.

o Smart device report information: When you use our products, we may collect information reported by your device. For example, a smart camera may collect images or videos it captures. Purpose and legal basis for processing personal data The purposes for which we process your information are as follows:

Providing you with services: We process your account and user profile data, device information, usage data, location information and smart device related information to provide the products and services you request or purchase. The legal basis for such processing is our performance of the terms of use of the service in the contract signed with you.

Improving our services: We process your device information, usage data, location information, and smart device related information to ensure the functionality and security of our products, develop and improve our products and services, analyze our operational efficiency, and prevent fraud or inappropriate use. The legal basis for such processing is our performance of the relevant terms of use of services in our contract with you.

Non-marketing communications: We process your personal data to send you important information about the services; changes to terms, conditions, and policies; and/or other administrative information. Because such information is important, you may not be able to opt out of receiving such emails. The legal basis for such processing is our performance of the relevant terms of use of services in our contract with you.

Marketing communications: We process your personal data to provide you with marketing and promotional information about our products and services. In the above cases, each email we send you contains instructions allowing you to opt out of receiving such emails. In addition, if you agree to participate in our sweepstakes, contests, or other promotions, we may use your personal data to administer such activities. The legal basis for such processing is your consent.

Third-party SDK name: Xiaomi Push (Android)

o Purpose: Push messages

o Function type: Push notification function

o Description: Your OAID (applicable to Android Q and above systems), MEIDMD5, Android ID, VAID, AAID, and your MID (applicable to MIUI system), device model information.

Third-party SDK name: Huawei Push (Android)

o Purpose: Push messages

o Function type: Push notification function

o Description: Your ID, application ID, application package name, server public IP address. If you create a message push task on the AppGallery Connect website, the usage frequency, task name, message content and push scope (application token, or topic name, or audience group name) of each Huawei Push function will be collected by us.

Third-party SDK name: OPPO Push (Android)

o Purpose: Push messages

o Function type: Push notification function

o Description: Your device related information (Serial Number, User ID, Android ID, Google Advertising ID, mobile phone Region settings, device model, mobile phone battery level, mobile phone operating system version and language), application information using push services (APP package name and version number, running status), push SDK version number, network related information (IP or domain name connection result, current network type), message sending result, notification bar status (notification bar permissions, user click behavior), lock screen status (whether the screen is locked, whether the screen is allowed to be locked).

Third-party SDK name: VIVO Push (Android)

o Purpose: Push messages

o Function type: Push notification function

o Description: Device and application information: including the operating system version number, application information, device identifier (SIM, mobile country code and mobile network number of vivo Android devices), mobile operator, language used, system settings, device and application data during your use of vivo devices and services.

Third-party SDK name: Meizu Push (Android)

o Purpose: Push messages

o Function type: Push notification function

o Description: Collect device attribute information (hardware model, operating system version, device configuration, unique device identifier, international mobile equipment identity code IMEI, network device hardware address MAC, advertising identifier IDFA), network status.

Third-party SDK name: Alibaba One-click Login SDK

o Purpose: Provide users with one-click login mode

o Function type: Convenient account login

o Description: One-click login service is provided by Alibaba Network Technology Co., Ltd. We may provide your mobile phone number information to Alibaba Network Technology Co., Ltd. to provide you with one-click login service. Your network type and device information (IP address, device manufacturer, device model, mobile operating system, application vendor identifier (IDFV), SIM card or International Mobile Subscriber Identity (IMSI) information, etc.) may be collected

Third-party SDK name: China Mobile Number Authentication SDK

o Purpose: Provide mobile phone number password-free number verification service

o Function type: password-free number cooperation service

o Description: Collection type, current mobile phone number mask, network type, switch wifi and cellular network channels, device information (including IP address, device manufacturer, device model, mobile operating system, SIM card information SIM State, SIM card information ICCID).

Third-party SDK name: China Unicom Number Authentication SDK

o Purpose: Provide Unicom mobile phone number password-free number verification service

o Function type: password-free number cooperation service

o Description: Collection type, current mobile phone number mask, network type, switch wifi and cellular network channels, device information (including IP address, device manufacturer, device model, mobile operating system, SIM card information SIM State, SIM card information ICCID).

Third-party sdk name: China Telecom Number Authentication SDK

o Purpose of use: Provide China Telecom mobile phone number password-free number verification service

o Function type: password-free number cooperation service

o Description: Collection type, current mobile phone number mask, network type, switch wifi and cellular network channel, device information (including IP address, device manufacturer, device model, mobile phone operating system, SIM card information SIM State, SIM card information ICCID).

Third-party sdk name: Umeng

o Purpose of use: data statistics, one-click authorization

o Collection type: device information (IMEI/=MAC/ANDROID ID/IDFA/GUID/SIM card IMSI/geographic location, etc.)

o Description: Obtain the IMEI, device MAC address, software installation list of the user’s device, obtain the device hardware serial number, obtain Android_ID, and uniquely identify the user through IMEI for data statistics analysis and authorization, so as to provide you with refined services. SDK name: Umeng Push SDK, purpose of use: APP message push, operator: Umeng Tongxin (Beijing) Technology Co., Ltd., personal information types collected: device information (IMEI/MAC/Android ID/IDFA/OAID/OpenUDID/GUID/SIM card IMSI/ICCID), location information, network information, privacy policy link: https://www.umeng.com/page/policy

Third-party SDK name: Firebase

o Purpose of use: Google Push

o Collection type: device information (get running process information get Android_ID), abnormal log record

o Description: Get the Android_ID of the user’s device, uniquely identify the user through Google services, and use Google data push to provide you with refined services.

Third-party sdk name: io.agora (sound network; agora)

o Purpose of use: for video calls and voice calls

o Function type: video and voice

o Description: apply for device information, read and write storage, geographic location, camera permissions; collect IMEI, WIFI address, WIFI BSSID address, MAC address, OAID, IP address, network information, audio and video information.

Third-party sdk name: AutoNavi Positioning

o Purpose of use: map location service

o Collection type: device information (get running process information, get current user location)

o Description: get device serial number, get location information, get sensor information, get Android_ID, so as to provide you with refined services.

Third-party SDK name: Huawei Unified Scanning SDK (Android version)

o Purpose of use: Provide code generation or scanning capabilities for developer applications

o Description: Huawei Software Technologies Co., Ltd. provides service capabilities, and collects personal information types: text information, pictures, sensor information (accelerometer, light sensor), network information, in-app device identifier, basic application information, device hardware information, operator information (operator name), system information (system settings, system properties, device model, operating system), Wi-Fi information (Wi-Fi status), information about your use of this application.

Compliance: We will process your personal data as we deem necessary or appropriate:

(a) Comply with applicable laws and regulations;

(b) Comply with legal process;

(c) Respond to requests from public and government agencies;

(d) Fulfill our terms and conditions;

(e) Protect our operations, business and systems;

(f) Protect the rights, privacy, safety or property of us and/or other users including you; and

(g) Seek available remedies or reduce the losses we may suffer.

Message push: The app is connected to third-party push functions such as Huawei and Umeng. Device message push is a product notification reminder. You can customize the product’s alarm conditions and monitor the product status in real time. When running the product, if the value of a certain function exceeds the normal state, or you need to notify the user of certain real-time information, you can reach the user with the message as soon as possible to ensure the normal operation of the product.

Get your storage and camera permissions: When using the photo inspection function, we need to obtain the following permissions: camera, read, write external storage, so that users can modify personal information such as avatars. When you use the above functions, you may be asked to access the phone camera, album and storage space permissions. If you refuse, this function will not be available.However, you can continue to use other functions.

About the targeted push of scene recommendations: turn off the targeted scene push function in My-Settings-About-Personalized Recommendations

About logout: log out of the account in My-Settings-Account and Security-Logout Account. Generally, the data will be logged out or cleared within 7 days.

Third-party sdk name: WeChat SDK

o Purpose of use: login, sharing, voice recognition

o  Type of information obtained: stored personal files, network information Official website link: https://open.weixin.qq.com/

Third-party sdk name: QQSDK

o Purpose of use: login, sharing

o  Type of information obtained: stored personal files, reading mobile phone status and identity, network information Official website link: https://open.tencent.com

Third-party SDK name: Alipay payment

Purpose: IPC device cloud storage payment

Function type: payment function device identifier (IMEI, MEID, IMSI, BSSID, SSID, Android ID, device MAC address), device permissions (audio and video, call logs, calendar, SMS, address book, storage information, sensor information, location information), network information (IP and gateway address, mask, DNS, WLAN access point, Wi-Fi access point and list, RSSI, Bluetooth paired device), application information, application list privacy policy link: https://render.alipay.com/p/c/k2cx0tg8

SDK name: Qiniu Cloud Object Storage

o Purpose: for APP image upload and storage

o Official website/privacy policy link: https://search.maven.org/search?q=com%2Fqjiniu%2Fqiniu-android-sdk

SDK name: Sentry abnormal log collection SDK

o Purpose: Used to provide client online exception log collection function, personal information collection method: embed third-party SDK, SDK collects and transmits personal information, personal information collection scope: device ID (including: Android ID), network information, system name, system version and country code, you can visit https://sentry.io/welcome/ to learn about Bugly online exception log collection privacy policy

SDK name: Tencent Cloud Object Storage

o Purpose of use: used to upload and store APP pictures

o Official website/privacy policy link: https://cloud.tencent.com About self-start and associated startup instructions:

(1) Rules and necessity: In order to ensure that this application can normally receive the broadcast information pushed by the client when it is closed or running in the background, this application must use the (self-start) capability under specific functions, and there will be a certain frequency of sending broadcasts through the system to wake up this application from self-start or associated startup behavior, which is necessary for realizing functions and services.

(2) Application scenarios: If the user clicks one-click login when logging into the APP, the APP must have the ability to start automatically, and then it will automatically obtain the solution provider’s phone card and other information; if the APP module has message push, when the APP user triggers an alarm and family message, the corresponding message will be pushed to the user, and the log detection program will be automatically started.

(3) Necessary user authorization service: When you open the third-party voice authorization service, after obtaining your explicit consent, you will be redirected to the third-party voice platform to open the relevant content. Without your consent, there will be no associated startup.

At KAYNIKON, we only share your personal data in ways that you know. We may share your personal data with the following participants:

Disclose your personal data to third-party service providers who provide us with certain business-related services, such as website hosting, data analysis, payment and credit card processing, infrastructure supply, IT services, customer support services, email sending services, and other similar services, so that they can provide services to us.

Disclose your personal data to customers and other business partners who directly or indirectly provide you with smart devices and/or the networks and systems you use to access and use our websites and services.

To affiliates or other third parties in the event of a reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock, including, without limitation, in connection with any bankruptcy or similar proceedings. In such event, you will be notified via email and/or our website of any change in ownership, any incompatible new uses of your personal information, and your choices regarding your personal information.

As we deem necessary or appropriate to:

(a) comply with applicable laws and regulations;

(b) comply with legal process;

(c) respond to requests from public and government authorities, including those outside your country of residence;

(d) enforce our terms and conditions;

(e) protect our operations, business and systems;

(f) protect the rights, privacy, safety or property of us and/or other users, including you; and

(g) pursue available remedies or limit any damages we may sustain.

To subsidiaries or affiliates within our group for regular business operations.

In addition to the third parties listed above, we disclose your personal data to other third parties only with your consent. Rights in relation to personal data We respect your rights while keeping your personal data. You can exercise any of the following rights:

Through the “User Profile – Personal Center” in our products

Email us at kaynikontech.iot@gmail.com There is no charge and we will respond within 30 days. If you plan to email us, please clearly state in your request what information you want to change, whether you want your personal information to be deleted from our database, or what restrictions you want us to have on our use of your personal information. Please note that for security reasons, we may ask you to verify your identity before further processing your request. You can:

Request access to the personal data we process about you;

Request that we correct inaccurate or incomplete personal information about you;

Request the deletion of your personal data;

Request temporary or permanent restrictions on our processing of some or all of your personal data;

Request that we transfer your personal information to you or a third party when we process your data based on your consent or a contract with you and when we process your data automatically; and opt out of or object to our use of your personal data when we use your data based on your consent or our legitimate interests.

Information Security Safeguards

We take commercially reasonable physical, administrative and technical safeguards to maintain the integrity and security of your personal information. KAYNIKON provides a variety of security strategies to effectively ensure the security of user and device data.

In terms of device access, we use KAYNIKON proprietary algorithms to ensure data isolation, access authentication and authorization application.

In terms of data communication, we support communication using security algorithms and transmission encryption protocols and commercial-grade information encryption transmission based on dynamic keys.

In terms of data processing, strict data filtering and verification and a complete data audit process are adopted.

In terms of data storage, all confidential information of users will be securely encrypted for storage.

If you believe for any reason that your interaction with us is no longer secure (for example, you believe that the security of your KAYNIKON account has been compromised), please send an email to kaynikontech.iot@gmail.com to inform us immediately.

Information Retention Period

We will process your personal data for the shortest period to achieve the purposes described in this Privacy Statement, unless it is required to be retained for a longer period under specific legal requirements. We will determine the appropriate retention period based on the amount, nature and sensitivity of the personal data, and we will destroy your personal data after the retention period ends. If we are unable to perform the above actions for technical reasons, we will take appropriate measures to prevent your personal data from being used further.

About Changes to Policy Statement

We may update this Privacy Statement in accordance with changes in our information practices. If we make any significant changes, we will notify you by email (sent to the email address specified in your account) or by posting a notice on the mobile application before the change takes effect. We recommend that you review this page regularly for the latest information on our privacy practices.

Applicable Law and Jurisdiction

This policy is formulated in accordance with the laws of the Hong Kong Special Administrative Region and is governed by the laws of the Hong Kong Special Administrative Region.

If you have any questions about our practices or this Privacy Statement, please contact us as follows:

Company Name: HONG KONG KAYNIKON TECHNOLOGY LIMITED

Postal Address: ROOM 517,NEW CITY CENTRE,2 LEI YUE MUN ROAD,KWUN TONG, KOWLOON.HK

Email: kaynikontech.iot@gmail.com