At YiLing Technology Co.,Ltd. and its affiliated companies (“Yiling”, “we”,”our company”, “our” or “us”), we respect your privacy and treat your information with the utmost care.

This Privacy Policy explains how we collect, handle, and disclose your information through this website(www.yilinggo.com), products, customer support, and other services (collectively referred to as “Product”, “Products” or “Services”), as well as any other third party services or products that link to this Privacy Policy.

This Policy may be amended or updated from time to time to reflect changes in our practices with respect to the Processing of Personal Data, Personal Information, or changes in applicable law. We encourage you to read this Policy carefully and to regularly check this page to review any changes we might make in accordance with the terms of this Policy.

By agreeing to this Privacy Policy in your account setup or by using our Products, or any other third party services or products that link to this Privacy Policy, you consent to the processing of your information as set forth in this Privacy Policy.

1.Information Collection
At Yiling, we believe that you can have great products and great privacy. This means that we strive to collect only the personal data that we need. We may collect a variety of information, including:

● Collection of Personal Data:
You directly provide Yiling with most of the data we collect. There are the following sources we collect your information with your consent:

● Data provided to us:We obtain Personal Data when those data are you provided to us directly (e.g., when you register an account with us; where you contact us via email or telephone, or by any other means, or when you provide us with your business card).

● Relationship data:We collect or obtain Personal Data in the ordinary course of our relationship with you (e.g., we provide a service to you).

● Data you make public:We collect or obtain Personal Data that you manifestly choose to make public, including via social media (e.g., we may collect information from your social media profile(s), if you make a public post about us).

● Site data:We collect or obtain Personal Data when you visit any of our Sites or use any features or resources available on or through a Site.

● Registration details:We collect or obtain Personal Data when you use, or register to use, any of our Sites, products, or services.

● Content and advertising information:If you interact with any third party content or advertising on our Site(including third party plugins and cookies) we receive Personal Data from the relevant third party provider of that content or advertising.

● Third party information:We collect or obtain Personal Data from Facebook and other third parties you use to log in to the Services (“Third-Party Accounts”), such as your name, your user name, avatar, social account, and other details you may have on your Third-Party Account profile. We do not have access to your Third-Party Account passwords.

● Categories of Personal Data we Process:

● Account Information: Your Yiling account and related account details, including contact phone number, email address, passwords, social account and third-party avatar.
● Contact Information: We may need your contact information such as your name, email address, shipping address and phone number when you place an order or contact us for customer service.
● Data relating to our Sites: Internet Protocol (IP) address; internet service provider; referring/exit pages; language settings; dates and times of connecting to a Site.
● Server logs: records of events on our servers, including search queries; IP addresses; hardware settings; browser type; browser language; the date and time of request; referral URL; and certain cookies that identify your browser or Account.
● Payment information: invoice records; payment records; billing address; payment method; last four digits of bank account number or credit card number; cardholder or account holder name; card or account security details; card “valid from” date; card expiry date.

Third-Party Payment Processor: We use a third-party payment processor (currently Paypal) to assist in securely processing your personally identifiable payment information. When you place an order through the Services, the credit card information that you provide is encrypted and transmitted directly to Paypal. We do not store your credit card information and do not control and are not responsible for Paypal or its collection or use of your information. You may find out more about how Paypal stores and uses your credit card information by accessing Paypal’s privacy policy.

● Content and advertising data: records of your interactions with our online advertising and content, records of advertising and content displayed on pages displayed to you, and any interaction you may have had with such content or advertising (e.g., mouse hover, mouse clicks, any forms you complete in whole or in part).
● Views and opinions: any comments, views and opinions that you choose to send to us, or publicly post about us on social media platforms.
● Cookie data: personal data collected via cookies and other similar technologies
● Other Information You Provide to Us: Details such as the time, topic and content of your communications with Yiling.

You are not required to provide the personal data that we have requested. However, if you choose not to do so, in many cases we will not be able to provide you with our products or services or respond to requests you may have.

2.Purposes of Processing
Yiling uses personal data to power our Services, to process your transactions, to communicate with you, for security and fraud prevention, and to comply with law. We may also use personal data for other purposes with your consent.

Yiling uses your personal data only when we have a valid legal basis to do so:

● To honor our contractual commitments to you: Much of our processing of personal data is to meet our contractual obligations to our users, or to take steps at users’ requests in anticipation of entering into a contract with them. For example, we handle personal data on this basis to allow you to sign up for our services.
● Consent: Where required by law, and in some other cases, we handle personal data on the basis of your implied or express consent.
● Legitimate interests: In many cases, we handle personal data on the ground that it furthers our legitimate interests in commercial activities in ways that are not overridden by the interests or fundamental rights and freedoms of the affected individuals. This includes: operating our business and services; providing security for our websites, products; marketing; receiving payments; preventing fraud; and knowing the customer to whom we are providing services.
● Legal compliance: We need to use and disclose personal data in certain ways to comply with our legal obligations (such as our obligation to share data with tax authorities).

Yiling uses your personal data only for the purposes described below:

● Provide Our Services

We use your information to fulfill our agreements with you and provide you with our Services, we process your personal information as necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract, including but not limited to:

● Managing your information and accounts, including registration;
● Providing the Services to you, including providing access to certain areas, functionalities, and features of our Services;
● Answering requests for customer or technical support;
● Communicating with you about your account, activities on our Services, and policy changes; and administrative purposes.

● Administrative Purposes

We use your information for various administrative purposes, including but not limited to:

● Pursuing our legitimate interests such as direct marketing, research and development (including marketing research), network and information security, and fraud prevention;
● Detecting security incidents, protecting against malicious, deceptive, fraudulent or illegal activity, and prosecuting those responsible for that activity;
● Measuring interest and engagement in our Services;
● Improving, upgrading or enhancing our Services;
● Developing new products and Services;
● Ensuring internal quality control and safety;
● Authenticating and verifying individual identities, including requests to exercise your rights under this policy;
● Debugging to identify and repair errors with our Services;
● Auditing relating to interactions, transactions and other compliance activities;
● Sharing information with third parties as needed to provide the Services;
● Enforcing our agreements and policies;
● Complying with our legal obligations.

● Other Purposes

We also use your information for other purposes as requested by you or as permitted by applicable law.

1.We may use personal information for other purposes that are clearly disclosed to you at the time you provide personal information or with your consent.
2.Automated Decision Making.We may engage in automated decision making, including profiling. Yiling’s processing of your personal information will not result in a decision based solely on automated processing that significantly affects you unless such a decision is necessary as part of a contract we have with you, we have your consent, or we are permitted by law to engage in such automated decision making. If you have questions about our automated decision making, you may contact us as set forth in “Contact Us” below.
3.De-identified and Aggregated Information.We may use personal information and other information about you to create de-identified and/or aggregated information, such as de-identified demographic information, de-identified location information, information about the device from which you access our Services, or other analyses we create.

3.Information Storage

The information that we collect from you will be processed primarily in the JP and the United States but may be transferred to and stored at/processed in other countries.

We retain personal data only for so long as necessary to fulfill the purposes for which it was collected, including as described in this Privacy Policy or in our service-specific privacy notices, or as required by law.

We will retain your personal data for the period necessary to fulfill the purposes outlined in this Privacy Policy and our service-specific privacy summaries. When assessing retention periods, we first carefully examine whether it is necessary to retain the personal data collected and, if retention is required, work to retain the personal data for the shortest possible period permissible under law.

4.Marketing

You can opt out of having your information being used by Yiling for performance-based advertising by accessing your mobile device settings and following the most recent published instructions. If you limit ad tracking, you will still see advertisements (even ones sourced from Yiling’s network), but we will no longer be able to use the personal information described above in Section 1 to serve you with more relevant ads.

In addition, the advertising identifier (along with any information collected about that identifier) that was previously assigned to you will also be disassociated. This means that if at a later stage, you decide to opt back in, we will not be able to use any of your past information for advertising purposes, and you will (for all practical purposes) be a new user of our system.

5.Share and Transfer

● Share

We will not share your personal information with any company, organization or individual other than Yiling except in the following cases:

● Sharing with explicit consent: After obtaining your explicit consent, we will share your personal information with other parties.
● Fulfilling legal obligations: We may share your personal information externally in accordance with laws and regulations or the mandatory requirements of government authorities.
● Disclosures to Protect Us or Others: We may access, preserve, and disclose any information we store associated with you to external parties if we, in good faith, believe doing so is required or appropriate to: comply with law enforcement or national security requests and legal process, such as a court order or subpoena; protect your, our, or others’ rights, property, or safety; enforce our policies or contracts; collect amounts owed to us; or assist with an investigation or prosecution of suspected or actual illegal activity.
● Disclosure in the Event of Merger, Sale, or Other Asset Transfers: If we are involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, purchase or sale of assets, or transition of service to another provider, your information may be sold or transferred as part of such a transaction, as permitted by law and/or contract.
● Sharing with our affiliates: Where permitted by law, we may share your information with our affiliates in order to provide you with Yiling products and services. We will only share necessary personal information and subject to the purposes stated in this Privacy Policy. If the affiliated company wants to change the purpose of processing personal information, it will ask for your authorization again.
● Sharing with authorized partners: Some of our Services will be provided by authorized partners only for the purposes stated in this policy. We may share some of your personal information with our partners to provide better customer service and user experience.We will only share your personal information for legal, legitimate, necessary, specific and explicit purposes, and only share personal information necessary to provide services. Our partners are not authorized to use the shared personal information for any other purpose. Usually our partners are:
● Third-party service providers: Provide us with payment facilitation, package shipping, electronic message processing and other services. Some of your personal information may be collected directly by third-party service providers and subject to their privacy policies.

● Transfer

We will not transfer your personal information to any company, organization, or individual unless we obtain your express consent, or when a merger, acquisition, or bankruptcy liquidation is involved, if the transfer of personal information is involved, we will require a new holder of your Companies and organizations with personal information continue to be bound by this Privacy Policy, otherwise, we will require the company and organization to seek your authorization and consent again.

International Data Transfers. We may transfer to, process, and store the data we collect about you in countries other than the country in which the data was originally collected, including the United States, JP, China, or other destinations. Those countries may not have the same data protection laws as the country in which you provided the data. When we transfer your data to other countries, we will protect the data as described in the Privacy Policy and comply with applicable legal requirements providing adequate protection for the international data transfer.

6.Your Rights

You have several rights under the data privacy legislation. This includes, under certain circumstances, the right to:

● Request access to your personal data

You have the right to obtain a copy of the personal data we hold about you and certain information relating to our processing of your personal data.

● Request correction of your personal data

You are entitled to have your personal data corrected if it is inaccurate or incomplete. You can update your personal data at any time by logging into your account and updating your details directly, or by emailing us at support@Yiling.net.

● Request erasure of your personal data

This enables you to request that Yiling delete your personal data, where there is no good reason for us continuing to process it. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.

● Request restriction of processing of your personal data

You have a right to ask Yiling to suspend the processing of your personal data in certain scenarios, for example if you want us to establish the accuracy of the data, or you have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it. Where processing is restricted, we are allowed to retain sufficient information about you to ensure that the restriction is respected in future.

● Request the transfer of your personal data

You have the right to obtain a digital copy of your personal data or request the transfer of your personal data to another company. Please note though that this right only applies to automated data which you initially provided consent for us to use or where we used the data to perform a contract with you.

● Object to processing of your personal data

You have the right to object to the processing of your personal data where we believe we have a legitimate interest in processing it (as explained above). You also have the right to object to our processing of your personal data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process your data which override your rights and freedoms.

● Request human intervention for automated decision making and profiling

You have the right to request human intervention where we are carrying out automated decision-making when processing your personal data. This form of processing is permitted where it is necessary as part of our contract with you, providing that appropriate safeguards are in place or your explicit consent has been obtained.

We will try to respond to all legitimate requests within one month. Occasionally, it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated. We may need to request specific information from you to help us confirm your identity and ensure your right to exercise any of the above rights. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.

Right to lodge a complaint

If you have any concerns or complaints regarding the way in which we process your data, please email us directly at support@Yiling.net. You also have the right to make a complaint to the data protection regulator in the US or EU or in other competent authority). We would, however, appreciate the chance to deal with your concerns before you approach the data protection regulator, so please do contact us in the first instance.

If you wish to exercise any of these rights, please email us at support@Yiling.net.

7.Cookies

Cookies are small text files that are sent to or accessed from your web browser or your computer’s hard drive. Cookies typically contains the name of the domain (internet location) from which the cookies originated, the “lifetime” of the cookies (i.e., when it expires) and a randomly generated unique number or similar identifier. Cookies also may contain information about Device, such as: user settings, browsing history, and activities conducted while using the Services.

Our Services use the following cookies:

● Strictly necessary cookies, which are required for the operation of the Services. Without them, for example, you would not be able to use your Account.
● Analytical/performance cookies, allow Yiling to recognize and count the number of visitors, learn how visitors navigate the Services and improve the Services.
● Functionality cookies, which Yiling uses to recognize you when you return to the Services.
● To learn more about cookies and web beacons, visit www.allaboutcookies.org.
● Analytics services: Yiling also uses analytics services, such as Google Analytics, to collect and analyze your information. Generally, analytics services do not identify individual users. Many analytics services allow you to opt-out of data collection.

8.Security of Your Information

We take steps to ensure that your information is treated securely and in accordance with this Privacy Policy. Unfortunately, no system is 100% secure, and we cannot ensure or warrant the security of any information you provide to us. We have taken appropriate safeguards to require that your personal information will remain protected and require our third-party service providers and partners to have appropriate safeguards as well. To the fullest extent permitted by applicable law, we do not accept liability for unauthorized disclosure.

By using our Services or providing personal information to us, you agree that we may communicate with you electronically regarding security, privacy, and administrative issues relating to your use of our Services. If we learn of a security system’s breach, we may attempt to notify you electronically by posting a notice on our Services, by mail or by sending an email to you.

9.Children’s Information

Another part of our priority is adding protection for children while using the internet. We encourage parents and guardians to observe, participate in, and/or monitor and guide their online activity.

Yiling does not knowingly collect any Personal Identifiable Information from children under the age of 13 in EU, or age under 14 in US (or other age as required by local law). If you think that your child provided this kind of information on our website, we strongly encourage you to contact us immediately and we will do our best efforts to promptly remove such information from our records.

If we become aware that a child has provided us with personal information in violation of applicable law, we will delete any personal information we have collected, unless we have a legal obligation to keep it, and terminate the child’s account.

10.Supplemental Notice for California Residents

This Supplemental California Privacy Notice only applies to our processing of personal information that is subject to the California Consumer Privacy Act of 2018 (“CCPA”). The CCPA provides California residents with the right to know what categories of personal information Yiling has collected about them and whether Yiling disclosed that personal information for a business purpose (e.g., to a service provider) in the preceding 12 months. California residents can find this information below:

The categories of sources from which we collect personal information and our business and commercial purposes for using personal information are set forth in Section 1 to 3 above, respectively.

“Sales” of Personal Information under the CCPA

For purposes of the CCPA, Yiling does not “sell” personal information, nor do we have actual knowledge of any “sale” of personal information of minors under 16 years of age.

Additional Privacy Rights for California Residents

● Non-Discrimination.California residents have the right not to receive discriminatory treatment by us for the exercise of their rights conferred by the CCPA.
● Authorized Agent.Only you, or someone leg ally authorized to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child. To designate an authorized agent, please contact us as set forth in “Contact Us” below and provide written authorization signed by you and your designated agent.
● To protect your privacy, we will take steps the following steps to verify your identity before fulfilling your request. When you make a request, we will ask you to provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative, which may include asking you for additional proof of identity and asking questions regarding your account and use of our Services.

If you are a California resident and would like to exercise any of your rights under the CCPA, please contact us as set forth in “Contact Us” below. We will process such requests in accordance with applicable laws.

● California Shine the Light. The California “Shine the Light” law permits users who are California residents to request and obtain from us once a year, free of charge, a list of the third parties to whom we have disclosed their personal information (if any) for their direct marketing purposes in the prior calendar year, as well as the type of personal information disclosed to those parties.
● Right for minors to remove posted content. Where required by law, California residents under the age of 18 may request to have their posted content or information removed from the publicly-viewable portions of the Services by contacting us directly as set forth in “Contact Us” below or logging into their account and removing the content or information using our self-service tools.

11.Supplemental Notice for Nevada Residents

If you are a resident of Nevada, you have the right to opt-out of the sale of certain Personal Information to third parties who intend to license or sell that Personal Information. Please note that we do not currently sell your Personal Information as sales are defined in Nevada Revised Statutes Chapter 603A. If you have any questions, or to request that we do not sell your information in the future, please “Contact Us” as set forth below with the subject line “Nevada Do Not Sell Request”..

The rights of Users
Users may exercise certain rights regarding their Data processed by the Owner.

In particular, Users have the right to do the following:

Withdraw their consent at any time. Users have the right to withdraw consent where they have previously given their consent to the processing of their Personal Data.
Object to processing of their Data. Users have the right to object to the processing of their Data if the processing is carried out on a legal basis other than consent. Further details are provided in the dedicated section below.
Access their Data. Users have the right to learn if Data is being processed by the Owner, obtain disclosure regarding certain aspects of the processing and obtain a copy of the Data undergoing processing.
Verify and seek rectification. Users have the right to verify the accuracy of their Data and ask for it to be updated or corrected.
Restrict the processing of their Data. Users have the right, under certain circumstances, to restrict the processing of their Data. In this case, the Owner will not process their Data for any purpose other than storing it.
Have their Personal Data deleted or otherwise removed. Users have the right, under certain circumstances, to obtain the erasure of their Data from the Owner.
Receive their Data and have it transferred to another controller. Users have the right to receive their Data in a structured, commonly used and machine readable format and, if technically feasible, to have it transmitted to another controller without any hindrance. This provision is applicable provided that the Data is processed by automated means and that the processing is based on the User’s consent, on a contract which the User is part of or on pre-contractual obligations thereof.
Lodge a complaint. Users have the right to bring a claim before their competent data protection authority.
Details about the right to object to processing
Where Personal Data is processed for a public interest, in the exercise of an official authority vested in the Owner or for the purposes of the legitimate interests pursued by the Owner, Users may object to such processing by providing a ground related to their particular situation to justify the objection.

Users must know that, however, should their Personal Data be processed for direct marketing purposes, they can object to that processing at any time without providing any justification. To learn, whether the Owner is processing Personal Data for direct marketing purposes, Users may refer to the relevant sections of this document.

How to exercise these rights
Any requests to exercise User rights can be directed to the Owner through the contact details provided in this document. These requests can be exercised free of charge and will be addressed by the Owner as early as possible and always within one month.

Additional information about Data collection and processing
Legal action
The User’s Personal Data may be used for legal purposes by the Owner in Court or in the stages leading to possible legal action arising from improper use of this Application or the related Services.
The User declares to be aware that the Owner may be required to reveal personal data upon request of public authorities.

Additional information about User’s Personal Data
In addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information concerning particular Services or the collection and processing of Personal Data upon request.

System logs and maintenance
For operation and maintenance purposes, this Application and any third-party services may collect files that record interaction with this Application (System logs) use other Personal Data (such as the IP Address) for this purpose.

Information not contained in this policy
More details concerning the collection or processing of Personal Data may be requested from the Owner at any time. Please see the contact information at the beginning of this document.

How “Do Not Track” requests are handled

This Application does not support “Do Not Track” requests.
To determine whether any of the third-party services it uses honor the “Do Not Track” requests, please read their privacy policies.

Changes to this privacy policy

The Owner reserves the right to make changes to this privacy policy at any time by giving notice to its Users on this page and possibly within this Application and/or – as far as technically and legally feasible – sending a notice to Users via any contact information available to the Owner. It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom.

Should the changes affect processing activities performed on the basis of the User’s consent, the Owner shall collect new consent from the User, where required.

Definitions and legal references
Personal Data (or Data)
Any information that directly, indirectly, or in connection with other information — including a personal identification number — allows for the identification or identifiability of a natural person.

Usage Data
Information collected automatically through this Application (or third-party services employed in this Application), which can include: the IP addresses or domain names of the computers utilized by the Users who use this Application, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User’s IT environment.

User
The individual using this Application who, unless otherwise specified, coincides with the Data Subject.

Data Subject
The natural person to whom the Personal Data refers.

Data Processor (or Data Supervisor)
The natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Controller, as described in this privacy policy.

Data Controller (or Owner)
The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data, including the security measures concerning the operation and use of this Application. The Data Controller, unless otherwise specified, is the Owner of this Application.

This Application
The means by which the Personal Data of the User is collected and processed.

Service
The service provided by this Application as described in the relative terms (if available) and on this site/application.

European Union (or EU)
Unless otherwise specified, all references made within this document to the European Union include all current member states to the European Union and the European Economic Area.

Cookies
Small sets of data stored in the User’s device.

Legal information
This privacy statement has been prepared based on provisions of multiple legislations, including Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation).

This privacy policy relates solely to this Application, if not stated otherwise within this document.