Legal
Last updated: January 1, 2026. Effective immediately for all Zxingtech mobile applications and services.
This Privacy Policy applies to Jiangyin Zuxing Technology Development Co., Ltd ("Zxingtech," "we," "our," or "us"), a company registered in Jiangyin, Jiangsu Province, China. Our registered address is: 210, Building 15, No. 18 Guoyuan Road, Chengjiang Street, Jiangyin, Jiangsu, 214300, China.
This policy governs all personal data collected and processed by Zxingtech through:
By using our applications, website, or services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with this policy, please discontinue use of our services.
Our mobile apps integrate third-party advertising and analytics SDKs that collect data independently under their own privacy policies. Please refer to Section 5 for a detailed list of all advertising partners and what data they collect.
We use collected data for the following purposes:
| Purpose | Legal Basis (GDPR) | Data Used |
|---|---|---|
| Providing and operating our services and apps | Contract performance | Account data, usage data |
| Responding to business inquiries and support requests | Contract / Legitimate interest | Contact form data, email |
| Displaying personalized and contextual advertising | Consent / Legitimate interest | Device ID, ad ID, usage data |
| Measuring and optimizing ad performance | Consent / Legitimate interest | Impression, click, conversion data |
| App crash analysis and performance improvement | Legitimate interest | Crash logs, device data |
| Security, fraud detection, and abuse prevention | Legal obligation / Legitimate interest | IP address, device ID |
| Compliance with legal obligations | Legal obligation | All applicable data |
| Business analytics and product improvement | Legitimate interest | Anonymized/aggregated usage data |
Some of our mobile applications offer free-tier access supported by third-party advertising. We display the following types of advertisements within our apps:
By default, ads served through our advertising partners may be personalized based on your interests, prior browsing behavior, and demographic information collected by those partners across their ad networks. You have the right to opt out of personalized advertising. Instructions for doing so are provided in Section 22 (Your Privacy Rights).
Where required by applicable law (e.g., GDPR, CCPA), we present users with a consent mechanism before serving personalized advertisements. If you deny consent, only non-personalized (contextual) ads will be shown.
Our apps integrate SDKs from multiple advertising networks to serve and measure ads. Each partner operates under its own privacy policy, which we link to below. These partners may independently collect and process data about your device and usage behavior.
Provider: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Data Collected: Advertising ID, device identifiers, IP address, usage data, app events, interest categories, demographic inference, location (approximate)
Ad Formats: Banner, interstitial, rewarded video, open screen (app open ads), native
Privacy Policy: https://policies.google.com/privacy
Opt Out: https://adssettings.google.com
Provider: Meta Platforms, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Data Collected: Advertising ID, device model, OS version, network type, ad interaction data, behavioral signals, custom audiences from Meta accounts
Ad Formats: Banner, interstitial, rewarded video, native
Privacy Policy: https://www.facebook.com/privacy/policy
Opt Out: Facebook Ad Preferences
Provider: Unity Technologies, 30 3rd Street, San Francisco, CA 94103, USA
Data Collected: Advertising ID, device fingerprint, session data, ad interaction events, install attribution, A/B test participation
Ad Formats: Rewarded video, interstitial, banner, playable ads
Privacy Policy: https://unity.com/legal/privacy-policy
Provider: AppLovin Corporation, 1100 Page Mill Road, Palo Alto, CA 94304, USA
Data Collected: Advertising ID, device type, OS, network type, ad response data, mediation bidding signals, behavioral data from AppLovin's ad network
Ad Formats: Rewarded video, interstitial, banner, open screen, MREC
Privacy Policy: https://www.applovin.com/privacy/
Opt Out: https://www.applovin.com/optout
Provider: Liftoff Mobile, Inc. (formerly Vungle, Inc.), 900 Middlefield Road, Redwood City, CA 94063, USA
Data Collected: Advertising ID, device identifiers, ad performance data, user segment data, LTV signals
Ad Formats: Rewarded video, interstitial, native, playable ads
Privacy Policy: https://liftoff.io/privacy-policy/
Provider: InMobi Pte. Ltd., 30 Cecil Street, #19-08 Prudential Tower, Singapore 049712
Data Collected: Advertising ID, device ID, network data, location (where permitted), behavioral profiling for audience segmentation
Ad Formats: Banner, interstitial, rewarded video, native, video
Privacy Policy: https://www.inmobi.com/privacy-policy
Opt Out: InMobi Opt-Out
Provider: Chartboost, Inc. (a Zynga subsidiary), 185 Berry St., Suite 4000, San Francisco, CA 94107, USA
Data Collected: Advertising ID, device model, network type, game/app usage metrics, install attribution data
Ad Formats: Interstitial, rewarded video, banner
Privacy Policy: https://www.chartboost.com/privacy-policy/
Provider: Digital Turbine / Fyber / Tapjoy, 110 SE 6th Street, Ft. Lauderdale, FL 33301, USA
Data Collected: Advertising ID, device identifiers, user action data (offer completions), engagement metrics
Ad Formats: Offerwall, rewarded actions, interstitial
Privacy Policy: https://www.digitalturbine.com/privacy-policy/
Provider: Digital Turbine, Inc., 110 SE 6th Street, Ft. Lauderdale, FL 33301, USA
Data Collected: Advertising ID, device fingerprint, demographics (age band, gender where available), video completion rates
Ad Formats: Rewarded video, interstitial, banner, native
Privacy Policy: https://www.digitalturbine.com/privacy-policy/
Provider: Bytedance Ltd. / TikTok Pte. Ltd., 1 Raffles Quay, #26-10, Singapore 048583
Data Collected: Advertising ID, device model, OS, network type, ad interaction data, approximate location, app install/open events
Ad Formats: Banner, interstitial, rewarded video, native, video, open screen
Privacy Policy: https://www.pangleglobal.com/privacy
Provider: Criteo SA, 32 Rue Blanche, 75009 Paris, France
Data Collected: Advertising ID, browsing and purchase intent signals, cross-device identifiers, email hashes (where provided)
Ad Formats: Banner, interstitial, native, video retargeting
Privacy Policy: https://www.criteo.com/privacy/
Opt Out: Criteo Opt-Out
Provider: Amazon.com, Inc., 410 Terry Ave. North, Seattle, WA 98109, USA
Data Collected: Advertising ID, device data, app usage signals, Amazon purchase history (for Amazon account users), bid stream data
Ad Formats: Banner, interstitial, video, native
Privacy Policy: Amazon Privacy Notice
Provider: Mintegral International Limited (Mobvista group), One Island East, 18/F, 18 Westlands Road, Quarry Bay, Hong Kong
Data Collected: Advertising ID, device model, OS, app usage events, ad interaction data, install attribution
Ad Formats: Rewarded video, interstitial, banner, native, playable, end card
Privacy Policy: https://www.mintegral.com/en/privacy/
Provider: Smaato, Inc. (a Verve Group company), 150 Spear Street, Suite 800, San Francisco, CA 94105, USA
Data Collected: Advertising ID, device signals, geo data (approximate), publisher-supplied audience segments
Ad Formats: Banner, interstitial, video, MRAID rich media
Privacy Policy: https://www.smaato.com/privacy/
Provider: StartApp Inc., 22 West 19th Street, New York, NY 10011, USA
Data Collected: Advertising ID, device model, OS, app usage, approximate location, interest-based segments
Ad Formats: Interstitial, banner, rewarded, native
Privacy Policy: https://www.startapp.com/policy/privacy-policy/
Provider: Ogury Ltd., 68 King William Street, London, EC4N 7DZ, UK
Data Collected: Advertising ID, mobile device data, user journey data within apps, interest profiles
Ad Formats: Thumbnail ad, interscroller, interstitial, video
Privacy Policy: https://ogury.com/privacy-policy/
Provider: BidMachine, Inc., 228 Park Ave S, PMB 20587, New York, NY 10003, USA
Data Collected: Advertising ID, device data, bid stream data, publisher-provided targeting signals
Ad Formats: Banner, interstitial, rewarded video, native
Privacy Policy: https://bidmachine.io/privacy-policy/
Provider: Yandex LLC, 16, Leo Tolstoy Street, Moscow 119021, Russian Federation / Yandex Europe B.V., Netherlands
Data Collected: Advertising ID, device identifiers, app usage events, Yandex account linkage (where applicable), audience segments
Ad Formats: Banner, interstitial, rewarded video, native
Privacy Policy: https://yandex.com/legal/confidential/
Our applications published on the Apple App Store include Apple-required "App Privacy" nutrition labels that summarize what data each app collects and how it is used. Categories we disclose in accordance with Apple's guidelines include:
In compliance with Apple's App Tracking Transparency (ATT) framework, our apps display the standard iOS permission prompt before accessing the IDFA for advertising purposes. You may deny this permission at any time without losing access to core app functionality.
Our applications published on Google Play include a completed Data Safety section disclosing:
We do not sell your personal data to third parties. We share data only in the following circumstances:
We retain personal data only for as long as necessary for the purposes stated in this policy:
| Data Category | Retention Period |
|---|---|
| Account data | Duration of account + 3 years after deletion |
| Contact form / inquiry data | 5 years (business correspondence requirements) |
| App usage analytics | 26 months (Google Analytics default), then aggregated |
| Advertising data (via ad partners) | Per each partner's retention policy (typically 13–24 months) |
| Crash logs | 90 days |
| Financial/trade records | 7 years (Chinese accounting regulations requirement) |
You may request deletion of your personal data at any time (see Section 22). Note that some data may be retained to comply with legal obligations even after a deletion request.
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, destruction, alteration, or disclosure. Our security measures include:
In the event of a data breach affecting your rights and freedoms, we will notify you and applicable regulatory authorities as required by law (within 72 hours under GDPR, and within applicable timeframes under other regional laws).
In compliance with the Children's Online Privacy Protection Act (COPPA), 15 U.S.C. 6501 et seq., and the COPPA Rule (16 C.F.R. Part 312):
In the EU/EEA, the age of digital consent varies by member state (typically 13–16 years old). In states where the minimum age is 16, we do not process personal data of users under 16 for advertising purposes without verified parental consent. Users aged 13–15 in applicable member states may use our apps with limited data processing (non-personalized ads only).
Parents or legal guardians who believe their child has provided personal data to us without consent may contact us at support@zxingtech.com to request review, correction, or deletion of such data.
If you are located in the EU or EEA, the General Data Protection Regulation (EU) 2016/679 ("GDPR") applies to our processing of your personal data.
Some advertising partners are located outside the EEA (primarily in the USA). Data transfers to these partners are protected by:
If you are located in the United Kingdom, the UK GDPR (as retained in UK law by the European Union (Withdrawal) Act 2018) and the Data Protection Act 2018 apply. Our legal bases, data subject rights, and safeguards for data transfers are equivalent to those described for EU GDPR (Section 11), applied under UK law. Data transfers from the UK rely on UK International Data Transfer Agreements (IDTAs) or the UK-US Data Bridge where applicable. You may lodge complaints with the Information Commissioner's Office (ICO): ico.org.uk.
If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) grants you specific rights regarding your personal information.
In the preceding 12 months, we have collected the following categories of personal information (as defined in Cal. Civ. Code 1798.140):
To exercise your California rights, submit a request to support@zxingtech.com with subject line "California Privacy Request" or use the contact form. We will verify your identity and respond within 45 days (extendable by an additional 45 days with notice).
Authorized agents: You may designate an authorized agent to make requests on your behalf by providing written authorization.
If you are located in Brazil, the Lei Geral de Proteção de Dados (LGPD) (Law No. 13,709/2018) applies to our processing of your personal data. We process Brazilian residents' data based on the following LGPD legal bases: execution of a contract (Art. 7, V), legitimate interest (Art. 7, IX), compliance with legal obligations (Art. 7, II), and consent (Art. 7, I) for advertising personalization.
Your rights under LGPD include: confirmation that your data is processed, access to your data, correction of incomplete/inaccurate data, anonymization or deletion of unnecessary data, data portability, deletion of data processed with consent, information about data sharing, and the right to revoke consent. To exercise these rights, contact our Data Protection Officer at support@zxingtech.com.
For users located in China, the Personal Information Protection Law (PIPL) (Zhong Hua Ren Min Gong He Guo Ge Ren Xin Xi Bao Hu Fa, effective November 1, 2021) governs our handling of personal information. As a Chinese company, Zxingtech is registered and operates in compliance with PIPL requirements including:
If you are located in South Korea, the Personal Information Protection Act (PIPA) applies. We process South Korean users' personal information in compliance with PIPA, including obtaining appropriate consent for collection and third-party sharing, providing notice of the retention period, and allowing users to withdraw consent and request deletion. South Korean users may contact the Personal Information Protection Commission (PIPC) for complaints. To exercise your rights, contact us at support@zxingtech.com.
For users in Thailand, the Personal Data Protection Act B.E. 2562 (PDPA) applies. We collect and process personal data with appropriate lawful basis (consent, contract, legitimate interest, or legal obligation). Thai users have the right to: access their personal data, request correction, request erasure, object to processing, restrict processing, and withdraw consent. Contact us at support@zxingtech.com to exercise these rights.
For users in Malaysia, the Personal Data Protection Act 2010 (PDPA Malaysia) applies. We process personal data in accordance with the seven data protection principles of the Malaysian PDPA: general principle, notice and choice, disclosure, security, retention, data integrity, and access principles. Malaysian users may contact us to exercise their access and correction rights.
For users located in Canada, the Personal Information Protection and Electronic Documents Act (PIPEDA) applies federally, and Quebec's Law 25 (Act to modernize legislative provisions as regards the protection of personal information) applies to Quebec residents.
We collect, use, and disclose personal information only with your knowledge and consent, and only for purposes that a reasonable person would consider appropriate. Canadian users have the right to access their personal information and to challenge its accuracy. Quebec residents have additional rights under Law 25 including the right to data portability and the right to be de-indexed. To exercise your rights, contact us at support@zxingtech.com. You may also lodge a complaint with the Office of the Privacy Commissioner of Canada (OPC) or the Commission d'acces a l'information (CAI) in Quebec.
For users located in Australia, the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs) apply. We collect personal information in accordance with the APPs, including being transparent about our data practices, using and disclosing personal information only for the primary purpose of collection or a related secondary purpose you would reasonably expect, taking reasonable steps to protect personal information from misuse, interference, and loss, and allowing you to access and correct your personal information. You may lodge a complaint with the Office of the Australian Information Commissioner (OAIC): oaic.gov.au.
If you are located in a jurisdiction not specifically addressed above, we still process your data in accordance with applicable local law and apply at minimum the protections described in this policy. Our baseline commitment to all users worldwide includes: purpose limitation (using data only for stated purposes), data minimization (collecting only what is necessary), security safeguards, and your right to contact us with any privacy concern. Where local law requires additional measures, we apply them.
Our website (www.zxingtech.com) uses the following types of cookies and tracking technologies:
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential / Strictly Necessary | Session management, form CSRF protection, cookie consent preference storage | Session / 12 months |
| Performance / Analytics | Page view counting, user flow analysis (Google Analytics) | Up to 26 months |
| Functional | Language preference, UI state persistence | 12 months |
| Advertising | Retargeting, conversion tracking (only with consent) | 30–90 days |
You can manage your cookie preferences at any time using your browser settings. Note that disabling essential cookies may affect website functionality. Our mobile apps do not use browser cookies; they use device-level advertising identifiers governed by the app store and device OS privacy settings.
Regardless of your location, you have the following rights regarding your personal data:
We will verify your identity before processing your request and respond within the timeframe required by applicable law (generally 30–45 days, with possible extension for complex requests).
As a Chinese company serving a global audience, personal data we collect may be transferred to and processed in countries outside your own, including China, the United States, Singapore, and the European Union. We take the following steps to ensure your data is protected during international transfers:
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:
Your continued use of our apps or website after the effective date of the updated policy constitutes acceptance of the changes. If you do not agree with the updated policy, you must discontinue use of our services.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
| Data Controller | Jiangyin Zuxing Technology Development Co., Ltd |
|---|---|
| Registered Address | 210, Building 15, No. 18 Guoyuan Road, Chengjiang Street, Jiangyin, Jiangsu Province, 214300, China |
| Privacy / DPO Email | support@zxingtech.com |
| Enterprise Contact | liyinmei1@zxingtech.com |
| Website | www.zxingtech.com |
For EU/EEA users: If you are not satisfied with our response, you have the right to lodge a complaint with your local supervisory authority. A list of EU supervisory authorities is available at: edpb.europa.eu.