INFSHOPS Privacy Agreement

Welcome to INFSHOPS! We understand the significance of your personal information, and your trust is crucial to us. In order to safeguard the security of your personal information, we adhere to legal regulations and industry best practices. With this in mind, we have formulated the following "Privacy Agreement" to help you fully comprehend our privacy policy.

Before using INFSHOPS products or services, please carefully read and understand this agreement, paying special attention to the terms marked in bold/underlined. Please confirm your thorough understanding and agreement before proceeding with usage. If you have any questions, feedback, or suggestions regarding the content of this agreement, feel free to contact us.

This Privacy Agreement will provide comprehensive information on the following:

I. How we collect and use your personal information;

II. How we use Cookies and similar technologies;

III. How we share, transfer, and publicly disclose your personal information;

IV. How we protect your personal information;

V. How you can exercise your personal information rights;

VI. How we handle the personal information of children;

VII. How your personal information is transferred globally;

VIII. How this agreement is updated;

IX. How to contact us.

Part One: Definitions

[Personal Information] Personal information refers to various information recorded electronically or by other means that can identify the specific identity of a natural person individually or in combination with other information, reflecting the activities of a specific natural person.

[Sensitive Personal Information] Sensitive personal information includes identification card numbers, mobile phone numbers, personal biometric information, bank account details, property information, trajectory, transaction information, and the personal information of children aged 14 and below.

[Personal Information Deletion] Personal information deletion refers to the act of removing personal information in systems involved in daily business functions, rendering it in a state that is not retrievable or accessible.

Part Two: Privacy Statement

I. How we collect and use your personal information;

1. Consent for Customer Information: If you are a merchant, your customers need to understand how you, as the data controller, handle and collect their personal information. When using INFSHOPS, you must obtain your customers' consent to authorize INFSHOPS and other third parties to use and access their personal information. Additionally, if you are collecting any sensitive personal information from customers (including information related to medical or health conditions, race or ethnic origin, political beliefs, religious or philosophical beliefs, union membership, or sexual orientation), it signifies that you are aware and have obtained explicit, express consent from the customers. Based on this, you can authorize INFSHOPS and other third parties to use and access this sensitive personal information.

When Using INFSHOPS, we may need to collect and use your personal information, including the following:

1.To achieve the basic functions of providing INFSHOPS to you, you must authorize us to collect and use the necessary information. If you refuse to provide the relevant information, you will be unable to use INFSHOPS normally.

2.To achieve additional functions of providing INFSHOPS to you, you may choose to authorize us to collect and use information. If you refuse to provide this information, you may not be able to use the related additional functions or achieve the intended functional effects, but it will not affect your normal use of the basic functions of INFSHOPS.

(1) Personal Information You Directly Provide to Us and We Collect:

We collect and use your personal information for the following purposes outlined in this statement:

1.Assisting You in Becoming Our User:

Basic Services:

Merchant Registration | Shop Creation:

When you register as an INFSHOPS user and create a store, you need to provide email, password, shop name, shop domain, name, phone number, country/region, industry, and business scale for store creation. If you only need to use browsing services, registration as our user and providing the above information are not required.

User Registration:

When you register as an end-user of an INFSHOPS merchant, you need to provide email, name, and password to create your account. If you only need to use browsing services, creating an account as an end-user of INFSHOPS or INFSHOPS merchant is not required, and the above information is not necessary.

Product Ordering:

When you place an order for a product, you need to provide email, recipient's name, and shipping address. The act of submitting an order signifies your agreement to this agreement and authorizes the merchant to use your shipping-related information to facilitate accurate delivery.

Additional Services:

Adding Customers:

If you are a merchant and add customers, your submission indicates that you have informed the customers of all the information you filled out and obtained their authorized consent. Please obtain consent again when opening the marketing email collection.

Special Benefits:

If you choose to provide real name, gender, date of birth, residence, nickname, avatar, ID number, WeChat ID, and other non-mandatory personal information defined by the merchant, we can provide personalized services for you. Your nickname and avatar will be publicly displayed to ensure transaction recognition.

Account Information Display: If you already have an INFSHOPS account, we may display your aforementioned personal information in the INFSHOPS merchant interface. This includes the operations you have performed on INFSHOPS and the products and services associated with your INFSHOPS account. The displayed information encompasses your profile, promotional benefits, and transaction orders, all conveniently presented through the personal center page.

We respect your choices regarding the information displayed on your INFSHOPS personal center account.

2. Providing Product or Service Information Display:

During your use of our services, to identify abnormal account states, we may automatically collect your usage information and store it as network log information, including:

Device Information: We collect and record device-related information based on your specific operations during software installation and/or usage. This includes MAC address, device model, operating system version, device settings, unique device identifier, device environment, mobile application list, and hardware/software characteristic information. It also encompasses location-related information for the device, including GPS location you authorize, as well as WLAN access points and base station sensor information.

Service Log Information: When you use INFSHOPS, we automatically collect detailed usage information for service log preservation. This includes browsing, clicking to view, searching queries, favorites, adding to the shopping cart, transactions, after-sales service, attention and sharing information, and posting information. Additionally, we collect IP address, browser type, telecommunications operator, language in use, and access date and time.

To understand product adaptability, we collect and record device-related information based on your specific operations during software installation and/or usage. This includes MAC address, device model, operating system version, device settings, unique device identifier, device environment, mobile application list, and hardware/software characteristic information.

For providing you with more convenient and personalized information display, search, and push services, we automatically collect detailed usage information for service log preservation. This includes browsing, clicking to view, searching queries, favorites, adding to the shopping cart, transactions, after-sales service, attention and sharing information, and posting information. It also involves extracting your preference characteristics, generating indirect audience profiles based on feature tags, and using them for display, information push, and possible commercial advertising. You can opt out of personalized recommendations by turning off the personalized recommendation switch, after which we will no longer provide you with the aforementioned personalized services.

3. Providing Cart Addition Functionality:

While browsing a merchant's store or the INFSHOPS website/client, you have the option to add items and/or services you find interesting to your shopping cart. During your use of the aforementioned functionality, we collect service log information, including records of items added to the cart, to facilitate the described function and other purposes explicitly communicated to you.

4. Assisting You in Placing Orders and Managing Orders:

When you place an order for specific items and/or services on a merchant's store or the INFSHOPS website/client, our system generates an order for your purchase. During the ordering process, you are required to provide at least your recipient's name, shipping address, recipient's contact phone number, and email address. The order includes details of the purchased items and/or services, a unique order number, the order creation time, and the amount to be paid. We collect this information to help you complete the transaction smoothly, ensure the security of your transaction, allow you to check order details, provide customer service and after-sales support, and for other purposes explicitly communicated to you.

If you are placing an order for someone else, you need to provide the aforementioned personal information of the actual purchaser. If this involves the personal information of a child, you must obtain consent from the corresponding guardian before providing such information.

To facilitate your understanding and management of order information, we collect the order information generated during your use of our services for display and easy order management. Additionally, you can provide additional information, such as alternative contact numbers and preferred delivery times, to ensure accurate delivery of the purchased items or services.

5. Assisting You in Completing Payment:

To complete the payment for your order, you need to choose a payment method. You must select a third-party payment company or financial institution to provide payment services. We will share your order payment-related information, order security-related device information, and other necessary information required by anti-money laundering laws with the chosen third-party payment company. If you choose a financial institution for payment, we will also share necessary information, including your bank card number and expiration date, with the respective financial institution you selected.

To ensure we are promptly informed and can confirm the progress and status of your payment, as well as provide you with after-sales and dispute resolution services, you agree that we may collect information related to the payment progress from the transaction party you selected, the payment company, or other financial institutions you choose.

6. Assisting in Completing the Delivery of Goods or Services:

To ensure the smooth, safe, and accurate delivery of the goods and/or services you purchased, we disclose order-related delivery information to the supply chain companies providing logistics information systems and technical services for INFSHOPS and INFSHOPS merchants. This information is synchronized with the corresponding logistics delivery entities as specified by the providers of the goods and/or services. You acknowledge and agree that the relevant logistics delivery entities unavoidably become aware of and use your delivery information for the purpose of completing the delivery.

To promptly understand and confirm the delivery progress and status and to provide you with after-sales and dispute resolution services, you agree that we may collect information related to the delivery progress from the relevant logistics service entities.

7. Providing Security Assurance:

To enhance the security of your use of our services and those provided by our affiliated companies and partners, protect the personal and property safety of you, other users, or the public from harm, better prevent phishing websites, fraud, network vulnerabilities, computer viruses, network attacks, and network intrusions, and more accurately identify situations that violate laws and regulations or INFSHOPS-related agreement rules, we embed third-party developed application security SDKs in the application. These SDKs collect information about your device and service log information. We may also use or integrate your membership information, transaction information, device information, service log information, and information obtained from our affiliated companies or partners that you have authorized or shared in accordance with the law. This information is used for comprehensive risk assessment of your account and transactions, identity verification, detection, and prevention of security incidents, and to take necessary recording, auditing, analysis, and disposal measures in accordance with the law.

(2) Optional Authorization of Personal Information:

To provide you with more convenient, high-quality, and personalized products and/or services, and to enhance your overall experience, we may collect and use your personal information for the following additional services. If you choose not to provide this information, it will not affect your basic use of INFSHOPS for browsing, searching, purchasing, etc. However, you may miss out on the enhanced user experience these additional services offer. These additional services include:

1.Camera-Based Services:

oYou can use this feature for scanning purposes, such as logging in or shopping, after granting camera access permission. Please note that even with your consent to enable camera permission, we will only capture photos when you actively click on the camera icon within the app or record videos.

2.Photo/Video Access and Upload Services from the Album (Image/Video Library):

oAfter granting album access permission, you can use this feature to upload your photos/images/videos for functions like changing your avatar or adding products.

3.Phone Status-Based Services:

oTo ensure the security of your account and usage, you need to authorize us to read the local identifier.

4.Mounted File System-Based Services:

oTo provide file storage services, including images, you need to authorize us to read SD card information.

5.Automated Notification Reception at Boot/Ignore Battery Optimization/Sort System Tasks Services:

oWith your permission, you can receive customer service messages on startup.

6.Call-Based Services:

oAfter granting permission, you can view logistics information for orders in transit, select the delivery person's phone number, and make a call.

7.System Account List Access Services:

oIf you are an overseas user, you need to enable this permission for us to read information and complete customer service message pushes.

8.Installed App List-Based Services:

oAfter granting permission, we can collect your list of installed apps to push the latest messages and avoid duplicate downloads.

9.System Log Reading Services:

oAfter granting permission, we can collect error logs generated online in case of crashes to troubleshoot issues, without involving personal user information.

10.System Setting Read/Write Services:

oAfter granting permission, we can record your system configuration information to identify and troubleshoot problems through auxiliary means.

11.Current Configuration Change-Based Services:

oAfter granting permission, we can display pop-up prompts to users to enable Wi-Fi. After user confirmation, Wi-Fi can be turned on.

Your Understanding and Agreement:

You understand and agree that the additional services listed in items 1 to 4 may require you to enable access permissions for your device's camera, photo library, and/or phone status to facilitate the collection and use of information related to these permissions. If you are an iOS user, you have the option to decide whether to enable or disable these permissions in your device settings. Please note that enabling any of these permissions indicates your authorization for us to collect and use the relevant personal information to provide corresponding services. If you disable any of these permissions, it signifies the withdrawal of your authorization, and we will no longer collect and use the relevant personal information based on that specific permission, nor can we provide you with services associated with that permission. However, your decision to disable permissions will not affect the information collected and used based on your previous authorization.

For items 5 to 10, the additional services require you to enable corresponding permissions or agree to specific authorizations in your device settings to facilitate the collection and use of information related to these permissions. You can independently determine whether to enable or disable these permissions in your mobile device system settings.

(3) Contacting You:

In order to provide you with comprehensive service information and deliver a more efficient and high-quality service experience, our staff may reach out to you through your contact information (email). If you do not wish to be contacted by our staff based on the aforementioned scenarios, you can contact INFSHOPS customer service for assistance.

(4) Exceptions to Obtaining Consent:

You should be fully aware that in the following circumstances, we may collect and use personal information without obtaining your consent:

1.Related to national security and national defense security;

2.Related to public safety, public health, and significant public interests;

3.Related to criminal investigation, prosecution, trial, and execution of judgments;

4.Necessary for the protection of the life, property, and other significant legitimate rights and interests of the individual but difficult to obtain the individual's consent;

5.The collected personal information is voluntarily disclosed to the public by the individual;

6.Collected from legally disclosed information, such as lawful news reports, government information disclosures, and other channels; except when you explicitly refuse or dealing with such information would harm your significant interests.

7.Necessary for signing a contract at your request;

8.Necessary for the safe and stable operation of the provided products and/or services, such as discovering and handling faults in products and/or services;

9.Necessary for lawful news reporting;

10.Necessary for academic research conducted by academic research institutions for public interests, and when providing the results of academic research or descriptions to the public, de-identification processing is performed on the personal information contained in the results;

11.Other circumstances stipulated by laws and regulations.

(5) Usage Rules for Personal Information:

1.If the information you provide contains the personal information of other users, you must ensure that you have obtained legal authorization before providing this information to INFSHOPS. If it involves the personal information of children, you need to obtain the consent of the corresponding guardian before publishing, and in such cases, the guardian has the right to contact us to request correction or deletion of content related to the child's personal information.

2.We may, based on the authorization of the merchant, send marketing text messages to you through SMS service providers on behalf of the merchant. If you wish to unsubscribe from text messages from a particular merchant, you can unsubscribe using the method indicated in the message.

3.After collecting your personal information, we will use technical means to de-identify the information, making it impossible to identify the subject. Please understand and agree that in this case, we have the right to use the de-identified information. Without disclosing your personal information, we have the right to analyze and commercialize the user database.

4.Please understand and agree that for all personal information provided by you when using our products and/or services, unless you delete or refuse our collection through system settings, it will be considered continuous authorization during your use of our products and/or services. When you deactivate your account, we will stop using and delete your personal information.

5.We will use the collected personal information for technical transformation, network maintenance, fault troubleshooting, internal policy and process formulation, and generate internal reports. De-identified information that cannot identify your identity and cannot be restored will be used to establish databases and for commercial use. However, this statistical information does not contain any personally identifiable information.

6.When displaying your personal information, we will use methods such as content replacement and generalization to desensitize your information to protect its security.

7.When we use your personal information for purposes not specified in this privacy statement, or when personal information collected for specific purposes is used for other purposes, we will seek your explicit consent in advance. Please understand that the products and/or services we provide to you will continue to be updated and changed. If you choose to use other products and/or services not listed in this privacy statement, we will explain the purpose, method, and scope of information collection in detail and seek your consent through agreements, page prompts, etc., before collecting your personal information. If you do not agree to provide the above information, you will not be able to use the product and/or service, but it will not affect your use of existing products and/or services.

(6) Sharing of Personal Information with Third Parties:

Please be aware that to ensure the provision of services as described in this privacy statement, we may share necessary personal information with affiliated companies, service providers, and business partners, among other third parties. These third parties may include our logistics service providers, payment service providers, advertising and marketing service providers, and other business partners. These third parties may process your personal information on behalf of INFSHOPS or for one or more purposes specified in this privacy statement. We ensure that personal information necessary for providing you with services is shared only for legitimate, legal, necessary, specific, and explicit purposes.

INFSHOPS will conduct due diligence and sign data sharing or data processing agreements to ensure that third-party service providers comply with privacy laws in mainland China. Third-party service providers may also have their subprocessors. At the same time, we will take necessary technical and managerial measures to protect your personal information security as much as possible.

II. How We Use Cookies and Similar Technologies

(1) Use of Cookies:

To ensure the normal operation of the website, provide you with a more relaxed browsing experience, and recommend content that may interest you, we store cookies, Flash cookies, or other local storage provided by your browser or associated applications on your computer or mobile device (collectively referred to as "Cookies"). With the help of Cookies, the website can store your preferences or the product data in your shopping cart.

If your browser or browser add-ons allow, you can modify the acceptance level of Cookies or reject our Cookies. However, doing so may affect your secure access to our website and prevent you from using some of the services we provide.

(2) Web Beacons and Pixel Tags:

In addition to Cookies, we also use other similar technologies such as web beacons and pixel tags on the website. For example, emails we send to you may contain links to content on our website. If you click on such a link, we will track this click to help us understand your product or service preferences for the purpose of improving the customer service experience proactively. Web beacons are typically transparent images embedded in websites or emails. With the help of pixel tags in emails, we can determine if an email has been opened. If you do not want your activities to be tracked in this way, you can unsubscribe from our mailing list at any time.

III: How We Share, Transfer, and Publicly Disclose Your Personal Information

(1) Sharing

We will not share your personal information with companies, organizations, or individuals outside of service providers, except under the following circumstances:

1.Sharing based on your Active Choices: If you voluntarily purchase goods and services through INFSHOPS, we will share your order information and essential transaction-related details with relevant providers of goods and services. This sharing is done to fulfill your purchasing needs and facilitate subsequent after-sales services. You can verify the identity of your transaction partner by checking the information provided on the main page of the provider's business activities, including their business license details.

If you log in to your INFSHOPS account through a third-party platform in collaboration with INFSHOPS, we will, based on your choices, display certain user information, order details, and behavioral data on the third-party platform. This is to ensure that you can access the services provided by INFSHOPS. You have the option to cease using the services of the third-party platform at any time.

2.Sharing with Explicit Consent: Upon obtaining your explicit consent, we will share your personal information with other parties. For example, if we delegate a third party to provide products or services to you, we will share the aforementioned information with that third party only after obtaining your consent. If you decline to provide such information, we will be unable to fulfill the related delivery services.

3.Sharing in Legal Circumstances: We may share your personal information externally in compliance with legal requirements, litigation dispute resolution needs, or requests from administrative and judicial authorities according to the law.

4.Sharing with Affiliated Companies: To facilitate services provided to you based on your INFSHOPS account, recommend information of potential interest, or protect the personal and property safety of INFSHOPS' affiliated companies, other users, or the public from harm, your personal information may be shared with our affiliated companies with your consent. We will share only necessary personal information, subject to the purposes stated in this privacy statement. In case of sharing your sensitive personal information or if affiliated companies change the purpose of using and processing personal information, we will seek your authorization once again.

5.Sharing with Authorized Partners: We may entrust authorized partners to provide specific services or represent us in performing functions. Before delegation, we will seek your consent through the signing of agreements. We will share your information only for legitimate, justifiable, necessary, specific, and explicit purposes. Authorized partners will have access to the information required to fulfill their duties and are prohibited from using this information for any other purposes.

Currently, our authorized partners fall into the following categories:

1.Facilitating Merchant Services: To enable merchants using our software to fulfill your service needs, we provide your order information, payment details, shipping address, and contact information to the relevant merchants.

2.Suppliers, Service Providers, and Other Collaborators: We share information with suppliers, service providers, and other collaborators supporting our business. These collaborations include providing technical infrastructure services, analyzing the usage of our services, measuring service effectiveness, offering customer service, facilitating payments, or conducting academic research and surveys.

6. Other Forms of Sharing

1.Based on Reasonable Business Practices: For example, when we plan to engage in capital market activities (including but not limited to IPOs, bond issuances), subject to due diligence.

2.Via Application Programming Interfaces (APIs) and Software Development Kits (SDKs) with Third Parties: Necessary data sharing occurs through APIs, SDKs, and software tools with third parties. Different versions of third-party SDKs may vary, typically including third-party account login, sharing, third-party payment, vendor push notifications, statistics, etc. We conduct rigorous security checks on third parties and stipulate data protection measures.

Regarding how third parties collect and use your personal information, we recommend referring to the relevant service agreements and privacy statements of third-party SDKs. If you wish to further understand the third-party SDKs we integrate, please read the Third-Party SDK Documentation.

For companies, organizations, and individuals with whom we share personal information, we enter into strict data protection agreements. We require them to process personal information in accordance with our instructions, this privacy statement, and any other relevant confidentiality and security measures.

(2) Transfer

We will not transfer your personal information to any company, organization, or individual, except in the following cases:

1.Transfer with Explicit Consent: We will transfer your personal information to others with your explicit consent.

2.In Case of Merger, Acquisition, or Bankruptcy: In the event of a merger, acquisition, bankruptcy liquidation, or other situations involving mergers, acquisitions, or bankruptcy liquidations, if it involves the transfer of personal information, we will require the new entity holding your personal information to continue to be bound by this statement. Otherwise, we will request the entity to seek your authorization and consent again.

If (a) your business operates in California for profit or economic gain, and (b) you are subject to the California Consumer Privacy Act (CCPA), pursuant to CCPA requirements, INFSHOPS will not sell your personal information to third parties, and in the past twelve months, we have not sold any personal information.

(3) Public Disclosure

We will only publicly disclose your personal information in the following situations:

1.Explicit Consent or Based on Your Active Choices: With your explicit consent or based on your active choices, we may publicly disclose your personal information.

2.Legal Violations or Violations of INFSHOPS Rules: If we determine that you have violated laws and regulations or seriously violated INFSHOPS-related agreement rules, or to protect the personal and property safety of INFSHOPS, its affiliated companies, users, or the public from harm, we may disclose information about you, including relevant violations and the measures INFSHOPS has taken against you, with your consent obtained through methods such as SMS notifications or pop-ups, in accordance with laws, regulations, or INFSHOPS-related agreement rules. For example, if you sell counterfeit goods and seriously violate INFSHOPS rules, we may publicly disclose information about your store and the penalties imposed.

(4) Exceptions to Obtaining Prior Authorization for Sharing, Transfer, and Public Disclosure of Personal Information

Sharing, transferring, and publicly disclosing your personal information are exempted from obtaining your prior authorization in the following circumstances:

1.Required by Laws and Regulations or Authorities: Information provided in accordance with the requirements of laws and regulations or competent authorities such as administrative, judicial agencies, and national departments.

2.Protection of Legitimate Rights and Interests: For the protection of the major legitimate rights and interests of yourself or other individuals but is difficult to obtain the consent of the individual.

3.Information Publicly Disclosed by Yourself: Personal information that you voluntarily make public.

4.Collection from Legitimate Publicly Disclosed Information: Collection of personal information from legally publicly disclosed information, such as legal news reports, government information disclosure, and other channels.

According to legal regulations, sharing, transferring, and publicly disclosing de-identified personal information, ensuring that the data recipient cannot recover and re-identify the data subject, do not constitute sharing, transferring, and publicly disclosing personal information. For such data, there is no need to separately notify you and obtain your consent for its storage and processing.

IV: How We Protect Your Personal Information

(1) Information Security Measures

To ensure the security of your information, we strive to implement various security measures in line with industry standards. This includes establishing reasonable system norms and implementing appropriate security technologies to prevent unauthorized access, public disclosure, use, modification, damage, or loss of your personal information.

We employ trusted protection mechanisms to prevent data from malicious attacks. For instance, we use SSL encryption technology when exchanging data (such as credit card information) between your browser and the "service." Additionally, our website provides a secure browsing mode (https) to safeguard your data during transmission. We encrypt personal information using encryption technology to ensure data confidentiality. Various de-identification techniques are applied to enhance the security of personal information during usage, such as order inquiries and displays. It's important to note that there is no absolutely secure method of Internet transmission or electronic storage. Therefore, we cannot guarantee the absolute security of your personal information.

(2) Minimization of Data Collection and Retention

We will take reasonable and feasible measures to avoid collecting irrelevant personal information. We will retain your personal information only for the period necessary to achieve the purposes stated in this declaration unless there is a mandatory retention requirement by law. For example, the "E-commerce Law of the People's Republic of China" requires the retention of information related to goods and services, transaction information for no less than three years from the completion of the transaction. Our criteria for judging the retention period include:

1.Completion of transaction purposes related to you, maintenance of corresponding transaction and business records, and response to your queries or complaints.

2.Ensuring the security and quality of the services we provide to you.

3.Whether you agree to a longer retention period.

4.Existence of other special agreements on the retention period.

After the retention period for your personal information has expired, we will delete your personal information or anonymize it according to applicable legal requirements.

(3) Account Security

Please use a complex password to assist us in ensuring the security of your account. We will make every effort to ensure the security of any information you send to us. If our physical, technical, or managerial protection facilities are compromised, leading to unauthorized access, public disclosure, tampering, or destruction of information, resulting in damage to your legitimate rights and interests, we will bear corresponding legal responsibilities.

(4) Notification of Personal Information Security Incidents

In the event of a personal information security incident, we will inform you in accordance with legal and regulatory requirements. The notification will include the basic information of the security incident, potential impacts, measures we have taken or will take, self-prevention and risk reduction suggestions, and remedies for you. We will notify you through methods such as email, letters, phone calls, or push notifications. If it is difficult to notify individuals one by one, we will announce it in a reasonable and effective manner.

Additionally, we will report the handling of personal information security incidents to the relevant regulatory authorities as required.

V: Exercising Your Personal Information Rights

(1) Inquiry, Correction, and Supplementary Information

You have the right to inquire about, correct, or supplement your information. You can do so through the following methods:

1.Consumer Role:

oVisit the merchant's store, choose "My - Personal Information," and inquire about, correct, or supplement personal profile and account-related information.

2.Merchant Role:

oLog in to the INFSHOPS official website, go to the homepage, and choose "Personal Account" for inquiry, correction, or supplementation.

oUse the "INFSHOPS" App, enter "My - Personal Information," and inquire about, correct, or supplement.

For information that you cannot view or correct, please contact INFSHOPS customer service by phone or seek assistance from online customer service to help you inquire about, correct, or supplement your information.

(2) Deletion of Your Personal Information

You can request the deletion of personal information in the following circumstances:

1.If our processing of personal information violates laws and regulations.

2.If we collect and use your personal information without obtaining your explicit consent.

3.If our processing of personal information seriously violates our agreement with you.

4.If you no longer use our products or services, or you voluntarily cancel your account.

5.If we cease to provide products or services to you.

If we decide to respond to your deletion request, we will also notify the subjects who have obtained your personal information from us as much as possible and request them to delete it promptly (unless otherwise provided by laws and regulations, or these subjects have independently obtained your authorization).

After you or we assist you in deleting the relevant information, due to applicable laws and security technologies, we may not be able to immediately delete the corresponding information from the backup system. We will securely store your personal information and isolate it from any further processing until the backup can be cleared or anonymized.

(3) Changing the Scope of Your Authorized Consent or Withdrawing Your Consent

Each business function requires some basic personal information to be completed (see "Part One" of this Privacy Statement). In addition to this, you can set or withdraw your consent through methods such as the "Personal Information" page or by contacting customer service.

Please understand that each business function requires some basic personal information to be completed. When you withdraw your consent or authorization, we cannot continue to provide services corresponding to your withdrawn consent or authorization, and we will no longer process your relevant personal information. However, the decision to withdraw consent or authorization does not affect the processing of personal information carried out based on your previous authorization.

(4) Account Logout

You can apply for an account logout directly through our products or by contacting us through the methods listed in this privacy statement.

After you log out of your account, we will stop providing products and/or services to you. Upon your request, unless otherwise provided by laws and regulations, we will delete your personal information.

(5) Refusal of Automated Decision-Making

In certain business functions, we may make decisions based on non-human automatic decision-making mechanisms such as information systems and algorithms. If these decisions significantly affect your legitimate rights and interests, you have the right to request an explanation, and we will provide appeal methods without infringing on INFSHOPS's business secrets or other users' rights and social public interests.

(6) Obtaining a Copy of Your Personal Information

You have the right to obtain a copy of your personal information. If you need a copy of the personal information we have collected about you, you can contact us through the contact information specified in this privacy statement. Subject to relevant legal requirements and technical feasibility, we will provide you with a copy of your personal information according to your request.

(7) Other

If, for your legitimate and rightful interests, you need to exercise the above rights concerning the personal information of deceased users, you need to provide proof that you are their close relative or executor. We will, in accordance with personal information protection laws, provide support to the extent possible for your requests.

(8) Responding to Your Requests

To ensure security, you may need to provide a written request or other means to prove your identity. We will ask you to verify your identity first and then process your request.

We will respond within 15 days. If you are dissatisfied, you can file a complaint through INFSHOPS customer service.

For reasonable requests, we generally do not charge fees. However, for multiple repeated requests beyond reasonable limits, we may charge a certain fee at our discretion. We may refuse requests that are not directly related to your identity, are unreasonably repetitive, require too much technical means (such as developing new systems or fundamentally changing current practices), pose risks to the legitimate rights and interests of others, or are impractical.

In the following situations, we will be unable to respond to your requests as required by laws and regulations:

1.Related to our fulfillment of legal obligations.

2.Related to national security and defense security.

3.Related to public safety, public health, and significant public interests.

4.Crime investigation, prosecution, trial, and execution of judgments.

5.Substantial evidence indicating that the data subject has malicious intent or abuses their rights.

6.Your requests would result in severe damage to your or other individuals' legitimate rights and interests.

7.Cases involving business secrets.

VI. Handling of Children's Personal Information

The term "children" in this statement refers to individuals under the age of 14. Without the consent of parents or guardians, children are not allowed to create their user accounts. If you are a minor, it is recommended that you have your parents or guardians carefully read this Privacy Statement and use our services or provide information to us only with their explicit consent.

For cases where personal information of minors is collected with the consent of parents or guardians, we will only use, share, transfer, or disclose this information in situations permitted by laws and regulations, with explicit consent from parents or guardians, or when it is necessary to protect the interests of minors. If we discover that we have collected personal information of children without obtaining verifiable parental consent in advance, we will make efforts to delete such data as soon as possible.

VII. Global Transfer of Your Personal Information

Currently, all data storage for INFSHOPS is located within mainland China.

VIII. How This Statement Will Be Updated

Our Privacy Statement may undergo changes. We will not restrict your rights under this Privacy Statement without your explicit consent. Any changes to the Privacy Statement will be published on a dedicated page in the INFSHOPS Rules Center.

For significant changes, we will provide more prominent notifications, including but not limited to notifying you through announcements on the INFSHOPS Rules Center or even providing pop-up prompts.

Significant changes referred to in this statement include, but are not limited to:

1.Significant changes in our service model, such as the purpose of processing personal information, types of processed personal information, and the ways personal information is used.

2.Significant changes in our control, such as changes in information controllers due to mergers or reorganizations.

3.Significant changes in the main objects of personal information sharing, transfer, or public disclosure.

4.Significant changes in your rights and the ways you exercise them regarding personal information processing.

5.Changes in the department responsible for personal information security, contact information, and complaint channels.

6.Personal information security impact assessment reports indicating high risks.

IX. How to Contact Us

If you have any questions, opinions, or suggestions regarding the content of this statement, or if you discover that your personal information may have been leaked or if you believe you need to revoke, correct, or delete your personal information authorization, you can contact us by emailing