Mobile Privacy Policy

Eco Cat Mobile App

Intro

This Privacy Policy (the "Policy") applies only to the Android version of the EcoCat mobile application (the "App"). The developer of the application is the Ecotrade Group company.

Please read and fully understand the full text of this policy before using/continuing to use the app, and use/continue to use it after agreeing to the entire content. Unless otherwise stated, disagreement with the policy or its updates (we will promptly notify you of such updates) may affect your normal use or continued normal use of the app.

Your agreement to this policy means that you have understood and agreed that in relevant scenarios, we will process your relevant personal information in order to achieve functional operation. However, this does not mean that as soon as you start using our app, we will process all personal information covered in this policy. Only when you use certain functions, we will process your relevant personal information in accordance with the "minimum necessary" principle for the purpose of providing services to you.

In addition to this guideline, under certain circumstances, we will inform you in a timely manner (including but not limited to updating this guideline, re-signing documents, page prompts, pop-up windows, in-site letters, emails, website announcements or other means that are convenient for you to know ) will explain to you in detail the purpose, method, scope and other rules of processing the corresponding information, and process it after obtaining your authorization and consent.

This policy will help you understand the following:

Collection and Use of Personal Information
Application access to third-party SDK directory
Phone permissions that the app needs to use
Storage and Transfer of Information
Information Sharing
your rights
Policy change
age limit
Jurisdiction and International Arbitration
Cancellation and Contact Channels

1. Collection and use of personal information

We will follow the principles of legality, legitimacy, minimum necessity, openness and transparency, and collect and use the personal information you actively provide during the use of our applications or that arise from the use of our products and/or services. In order to allow you to use the application services normally, we may collect your personal information in accordance with the principles of legality, legitimacy and necessity. After collecting your personal information, we will strictly protect your information security in accordance with laws and regulations. We have prepared this checklist so that you can quickly understand the circumstances in which we collect your personal information. We strive to ensure the security of your personal information to prevent leakage, tampering, loss, improper use, unauthorized access and disclosure, etc. of personal information.

We will collect the following information that you voluntarily provide when using the service, and that you collect through automated means during the process of using the function or accepting the service. To help you quickly understand the main situation of our collection and use of your personal information, we It is explained in the form of a checklist:


Type of information:	email address
Functional scene:	Register a user account
Is it possible to refuse to provide:	Yes
Effects of refusal to provide:	Users cannot read catalog prices, submit shopping carts, and access multiple app features

Type of information:	cellphone number
Functional scene:	Register a user account
Is it possible to refuse to provide:	Yes
Effects of refusal to provide:	Users cannot read catalog prices, submit shopping carts, and access multiple app features

Type of information:	password
Functional scene:	Register a user account
Is it possible to refuse to provide:	Yes
Effects of refusal to provide:	Users cannot read catalog prices, submit shopping carts, and access multiple app features

Type of information:	nation
Functional scene:	Register a user account
Is it possible to refuse to provide:	Yes
Effects of refusal to provide:	Users cannot read catalog prices, submit shopping carts, and access multiple app features

Type of information:	Name
Functional scene:	submit cart
Is it possible to refuse to provide:	Yes
Effects of refusal to provide:	User cannot submit shopping cart

Type of information:	address
Functional scene:	submit cart
Is it possible to refuse to provide:	Yes
Effects of refusal to provide:	User cannot submit shopping cart

Type of information:	Bank information
Functional scene:	submit cart
Is it possible to refuse to provide:	Yes
Effects of refusal to provide:	User cannot select bank transfer as payment method

2. The application accesses the third-party SDK directory

In order to ensure the stable operation of the application or realize related functions, we may access software development kits (SDKs) provided by third parties to achieve the aforementioned purposes. We will carry out strict security monitoring on the SDK that partners obtain personal information to protect the security of your personal information.

The relevant third-party SDKs we access to are listed in the following directory. Please note that the type of personal information processing of third-party SDKs may change due to version upgrades, policy adjustments, etc., please refer to the official instructions published by them.


SDK name:	Crashlytics
purpose of usage:	Crashlytic was founded in 2011 as a tool for mobile app developers to save and analyze app crash information
Types of Personal Information Collected:	Crashlytics install UUID, Crash traces, Breakpad minidump formatted data, Android ID
Privacy Policy Link:	http://try.crashlytics.com https://firebase.google.com/support/privacy

SDK name:	Facebook Android SDK
purpose of usage:	For integrating Android applications with the Facebook platform
Types of Personal Information Collected:	Explicit Events, Implicit Events, Automatically Logged Events, Facebook App ID, Mobile Advertiser ID - iOS IDFA or Android ID, from requested metadata
Privacy Policy Link:	https://firebase.google.com/support/privacy

SDK name:	Facebook Common Android SDK
purpose of usage:	N/A
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://www.facebook.com/business/m/one-sheeters/gdpr-developer-faqs

SDK name:	Facebook Core Android SDK
purpose of usage:	N/A
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/facebook/facebook-android-sdk

SDK name:	Facebook Infer Annotation
purpose of usage:	Annotations for Infer Static Analyzer
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://mvnrepository.com/artifact/com.facebook.infer.annotation/infer-annotation

SDK name:	Facebook Login Android SDK
purpose of usage:	For integrating Android applications with the Facebook platform
Types of Personal Information Collected:	Application events, configuration data, error messages, short-term data
Privacy Policy Link:	https://www.facebook.com/business/m/one-sheeters/gdpr-developer-faqs

SDK name:	Facebook Share Android SDK
purpose of usage:	For integrating Android applications with the Facebook platform
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/facebook/facebook-android-sdk

SDK name:	Flexbox for Android
purpose of usage:	Flexbox for Android
Types of Personal Information Collected:	N/A
Privacy Policy Link:	N/A

SDK name:	Fresco
purpose of usage:	An Android library for managing images and the memory they use
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/facebook/fresco

SDK name:	Fresco Animated Gif
purpose of usage:	Support animated gifs
Types of Personal Information Collected:	N/A
Privacy Policy Link:	N/A

SDK name:	Fresco Drawee
purpose of usage:	A fast, feature-rich image display library for Android
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/facebook/fresco https://mvnrepository.com/artifact/com.facebook.fresco/drawee

SDK name:	Fresco ImagePipeline
purpose of usage:	The underlying image loading mechanism of the Fresco library
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://mvnrepository.com/artifact/com.facebook.fresco/imagepipeline

SDK name:	Glide SDK
purpose of usage:	Android audio mp3 recorder
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/bumptech/glide

SDK name:	IntelliJ IDEA SDK
purpose of usage:	Android development tools function integration SDK
Types of Personal Information Collected:	N/A
Privacy Policy Link:	N/A

SDK name:	Lottie SDK
purpose of usage:	Mobile Application Animation Effects Framework
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/airbnb/lottie-android

SDK name:	Okhttp
purpose of usage:	OkHttp is an efficient HTTP library
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://square.github.io/okhttp/

SDK name:	Okio
purpose of usage:	Modern I/O API for Java
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/square/okio

SDK name:	React-native
purpose of usage:	A framework for building native apps with React
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/facebook/react-native

SDK name:	Reactive Streams
purpose of usage:	Reactive Streams JVM Specification
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/reactive-streams/reactive-streams-jvm

SDK name:	Retrofit
purpose of usage:	Renovation of network request library based on OkHttp encapsulation
Types of Personal Information Collected:	N/A
Privacy Policy Link:	N/A

SDK name:	RxJava
purpose of usage:	A library for composing asynchronous and event-based programs using the Java VM's observable sequences
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/ReactiveX/RxJava

SDK name:	Shimmer
purpose of usage:	A simple, flexible way to add flickering effects to any view in your Android app
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/facebook/shimmer-android

SDK name:	SoLoader
purpose of usage:	Native code loader for Android
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/facebook/SoLoader

SDK name:	bouncycastle
purpose of usage:	Bouncycastle is an open source third-party cryptographic algorithm library
Types of Personal Information Collected:	N/A
Privacy Policy Link:	N/A

SDK name:	card.io-Android-source
purpose of usage:	Provides fast and easy credit card scanning in the mobile app
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/card-io/card.io-Android-source

SDK name:	fabric
purpose of usage:	Powerful Tools, One Simple Platform
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://docs.fabric.io/android/fabric/overview.html

SDK name:	facebook-android-sdk
purpose of usage:	For integrating Android applications with the Facebook platform
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/facebook/facebook-android-sdk

SDK name:	grpc-java
purpose of usage:	Java gRPC implements RPC over HTTP/2
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/grpc/grpc-java

SDK name:	jcip
purpose of usage:	concurrent annotation
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/aeten/net.jcip.annotations

SDK name:	otto
purpose of usage:	An enhanced Guava-based event bus, emphasizing Android support
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/square/otto

SDK name:	react-native-camera
purpose of usage:	React Native's camera component, also supports barcode scanning
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/lwansbrough/react-native-camera

SDK name:	react-native-device-info
purpose of usage:	Get device information
Types of Personal Information Collected:	Device Model and OS Model
Privacy Policy Link:	https://github.com/rebeccahughes/react-native-device-info

SDK name:	react-native-image-picker
purpose of usage:	Allows to select media from the device library or directly from the camera using the native UI
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/react-community/react-native-image-picker

SDK name:	react-native-linear-gradient
purpose of usage:	A <LinearGradient> component for react-native
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/react-native-community/react-native-linear-gradient

SDK name:	Stripe Android SDK
purpose of usage:	Get basic information
Types of Personal Information Collected:	Name, contact information, payment information (including bank account information and bank payment) and/or payment card number, CVC code and expiration date
Privacy Policy Link:	https://stripe.com/it/privacy-center/legal

SDK name:	Android Infrastructure Kotlin SDK
purpose of usage:	Provides applications with basic Kotlin language functionality
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://kotlinlang.org/

SDK name:	Android Infrastructure SDK
purpose of usage:	Provides basic Android functionality to your app
Types of Personal Information Collected:	N/A
Privacy Policy Link:	N/A

SDK name:	The play-services-Location component of Google GMS suite
purpose of usage:	play-services-Location component of Google GMS Suite
Types of Personal Information Collected:	N/A
Privacy Policy Link:	N/A

SDK name:	Google Gson
purpose of usage:	JSON parsing library
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/google/gson

SDK name:	Firebase Analytics SDK
purpose of usage:	Firebase is a real-time data cloud service platform owned by Google, designed to allow applications to provide real-time response data services
Types of Personal Information Collected:	Mobile advertising id, idfv /Android id, Firebase install id, Analytics application instance id
Privacy Policy Link:	https://firebase.google.com/support/privacy

SDK name:	Google protobuf
purpose of usage:	Protocol Buffers - Google Data Interchange Format
Types of Personal Information Collected:	N/A
Privacy Policy Link:	https://github.com/google/protobuf

SDK name:	OneSignal SDK
purpose of usage:	Provide push notification service
Types of Personal Information Collected:	App usage, in-app purchases, device identifiers, rough locations, email addresses, IP addresses, device information
Privacy Policy Link:	https://onesignal.com/privacy_policy

SDK name:	Intercom SDK
purpose of usage:	Provide real-time customer service
Types of Personal Information Collected:	Contact information, rough location, user content, search history, device ID, usage data
Privacy Policy Link:	https://www.intercom.com/legal/privacy#personal-data-collected-by-intercom

3. The phone permissions that the app needs to use

In order to ensure the realization of application product functions and the purpose of safe and stable operation, we may apply for or use the relevant permissions of the operating system; in order to better protect your right to know, we use the following list to list the relevant operating system permissions that the product may apply for and use. Description, you can manage and set relevant permissions according to actual needs. With the upgrade of the product, the application and use of operating system permissions may change. We will adjust this description in accordance with these changes in a timely manner to ensure that you are informed of the application and use of permissions in a timely manner.


Permission type:	Background location
In-app permission features:	Allow apps to access location information in the background
Whether to deny authorization:	no
Effects of Denial of Authorization:	Can't access application

Permission type:	rough positioning
In-app permission features:	User's latitude and longitude information can be obtained through wireless network or mobile base station
Whether to deny authorization:	no
Effects of Denial of Authorization:	Can't access application

Permission type:	accurate locating
In-app permission features:	Allows to receive satellite positioning information via GPS
Whether to deny authorization:	N/A
Effects of Denial of Authorization:	N/A

Permission type:	camera
In-app permission features:	Allow the app to access the camera and take pictures
Whether to deny authorization:	Yes
Effects of Denial of Authorization:	Users cannot take and upload pictures

Permission type:	Access the Gmail list
In-app permission features:	List of allowed access to Gmail accounts
Whether to deny authorization:	N/A
Effects of Denial of Authorization:	N/A

Permission type:	read contacts
In-app permission features:	Allows the application to read the user's contact information
Whether to deny authorization:	N/A
Effects of Denial of Authorization:	N/A

Permission type:	read external storage
In-app permission features:	Allows an application to read files in the device's external storage
Whether to deny authorization:	Yes
Effects of Denial of Authorization:	Users cannot download invoices

Permission type:	Read phone status
In-app permission features:	Allow applications to access phone status
Whether to deny authorization:	N/A
Effects of Denial of Authorization:	N/A

Permission type:	record audio
In-app permission features:	Allow application to record sound via phone or headset
Whether to deny authorization:	N/A
Effects of Denial of Authorization:	N/A

Permission type:	write to external storage
In-app permission features:	Allow programs to write to external storage
Whether to deny authorization:	Yes
Effects of Denial of Authorization:	Users cannot download invoices

4. Storage and Transfer of Information

storage period

We will save your personal information for the shortest time necessary to achieve the purpose of processing your personal information, unless you exercise the right to delete, cancel your account or otherwise stipulated by laws and regulations (for example: the "E-commerce Law" stipulates: commodity and Service information and transaction information shall be kept for no less than three years from the date of completion of the transaction). After the above storage period is exceeded, we will delete or anonymize your personal information.

When our products or services stop operating, we will notify you in the form of notices, announcements, etc., and delete your personal information or anonymize it within a reasonable period of time, unless otherwise provided by laws and regulations.

5. Information sharing

Outsourced processing of personal information

Some functions of the platform may be provided by external service providers. For example, we may employ professional data processing service agencies to provide technical support for data analysis for our platform.

For companies, organizations and individuals that we entrust to process personal information, we will sign agreements with them to stipulate the purpose, time limit, processing methods, types of personal information, protection measures, and the rights and obligations of both parties, etc. Supervision of personal information processing activities.

Sharing with third parties outside our company

In order to provide you with comprehensive products and services, in some cases, we need to share your personal information with third-party companies, organizations or individuals outside our company. We will only share your personal information with third parties for the purposes that are lawful, legitimate, and minimally necessary and as specified in this policy, and will only share necessary personal information. If a third party changes or processes your personal information beyond the scope of your original consent, we will require the third party to obtain your consent again.

For companies, organizations and individuals with whom we share personal information, we will require them to strictly abide by our measures and requirements on data privacy protection, including but not limited to personal information processing in accordance with data protection agreements, commitments and relevant data processing policies. processing, to avoid identifying individuals, and to protect privacy.

If we need to transfer personal data overseas due to business needs, we will inform you of the overseas recipient's name or name, contact information, processing purpose, processing method, type of personal information, and your exercise as the subject of personal information to the overseas recipient. rights, methods and procedures, etc., and obtain your separate consent.

6. Your rights

delete personal information

You may request us to delete your personal information by contacting us through the methods provided in Section 10 of this Policy in the following circumstances:

If our processing of personal information violates laws and regulations;
If we collect and use your personal information without your consent;
If you consent to our collection and use of your personal information and then withdraw your consent;
If our processing of personal information violates our agreement with you;
If you no longer use our products or services, or you log out of your account;
if we no longer provide you with products or services;
If the purpose of processing your personal information has been achieved, cannot be achieved or is no longer necessary to achieve the purpose of processing;
If the retention period for your personal information has expired.

Logout

After you log out of the app account, we will stop providing you with all products and/or services of the app, and process your personal information through anonymization and other methods in accordance with relevant laws and regulations, or delete personal information related to your account, but Unless otherwise stipulated by laws, regulations or regulatory agencies on the storage time of user information. You may contact us through the methods provided in Section 10 of the Policy and request to cancel your account.

We will review the issues involved as soon as possible and give feedback within the 15th day or the time limit stipulated by laws and regulations.

In order to ensure security, if you make a request to us, we will process your request after verifying the identity of the subject of your personal information.

For your reasonable requests, we do not charge fees in principle, but for repeated requests that exceed reasonable limits, we will charge a certain cost as appropriate. For those requests that are technically difficult to achieve, do not need to be responded to according to laws and administrative regulations, or when responding to your requests would violate laws and administrative regulations, we may refuse and explain the reasons to you.

7. Policy Changes

We may revise this policy from time to time. When the terms of this policy are changed, we will remind you of the changed privacy protection guidelines when the version is updated, and explain the effective date to you. When there are material changes to the policy, we will also provide a more prominent notice to inform you of the changes.

The above "material changes" include:

The name or name and contact details of the personal information processor;
The purpose and method of processing personal information, the type of personal information processed, and the retention period;
the manner and procedures by which individuals exercise their rights under this law;
Other matters that shall be notified as required by laws and administrative regulations.

Please read the changed privacy protection guidelines carefully. Your continued use of the app indicates that you agree to our handling of your personal information in accordance with the updated policy. If the purpose of processing personal information, the method of processing and the type of personal information processed are changed, we will obtain your consent again.

8. Age Restrictions

You must be at least 18 years old to use this app.

9. Logout and Contact Channels

If you have any questions or complaints or suggestions about policies or personal information protection, or when you need to cancel your account, you can send your inquiries or requests to [email protected].

Last update on : 30/01/2023