This policy only applies to the products or services of [ TOZO Health APP ]
Last updated date: [ April 10 , 2024 ]
If you have any questions, comments or suggestions, please contact us through the following contact information:
Email: [info@tozostore.com]
Tel : [+1 (800) 282 9088]
This policy will help you understand the following:
How we collect and use your personal information
How we protect your personal information
Your rights
How we process children's personal information
How your personal information is transferred globally
How to update this policy
How to contact us
[ TOZO Health APP ] understands the importance of personal information to you and will do its best to protect the safety and reliability of your personal information. We are committed to maintaining your trust in us and abiding by the following principles to protect your personal information: principle of consistency of rights and responsibilities, principle of clear purpose, principle of choice and consent, principle of minimum necessity, principle of ensuring security, principle of subject participation, principle of openness and transparency, etc. At the same time, [ TOZO Health APP ] promises that we will take corresponding security protection measures to protect your personal information in accordance with mature security standards in the industry.
Please read and understand this "Personal Information Protection Policy" carefully before using our products or services.
1.Positioning SDK
(1) Fields and purposes of personal information collected
| SDK type | Personal information collected | Collection purpose | Is it necessary | Call frequency |
|---|---|---|---|---|
| Positioning SDK (Android, IOS) | IDFA | Tracking, troubleshooting, diagnosis, and statistical services for various problems | No (developer configurable) | Get 1 time per startup |
| OAID | Tracking, troubleshooting, diagnosis, and statistical services for various problems | No (developer configurable) | Get 1 time per startup | |
| Application name | Service authentication, tracking, troubleshooting, diagnosis, and statistics of various problems in services | yes | Take as you go | |
| Application version number | Service authentication, tracking, troubleshooting, diagnosis, and statistics of various problems in services | yes | Take as you go | |
| Equipment brand and model | Tracking, troubleshooting, diagnosis, and statistical services for various problems | yes | Get 1 time per startup | |
| operating system | Tracking, troubleshooting, diagnosis, and statistical services for various problems | yes | Take as you go | |
| Carrier information | Help improve network positioning accuracy | yes | Get 1 time per positioning | |
| Screen Resolution | Tracking, troubleshooting, diagnosis, and statistical services for various problems | yes | Get 1 time per startup | |
| IP address | Provide network positioning | yes | Get every network request | |
| GNSS information | Obtain satellite status, optimize and judge satellite positioning effects | yes | User configurable (up to 1s/time) | |
| Network Type | Used to identify the current network status (4G/5G or WiFi) | yes | Obtained when the network changes | |
| WiFi status | Used to identify network status and information to assist positioning | yes | Obtained every time positioning is requested | |
| WiFi parameters | Used to identify network status and information to assist positioning | yes | Obtained every time positioning is requested | |
| WiFi list | Used to identify network status and information to assist positioning | yes | Obtained every time positioning is requested. Developers can configure the scanning interval. | |
| WiFi signal strength information | Used to identify network status and information to assist positioning | yes | Obtained every time positioning is requested | |
| WiFi gateway address | Used to identify network status and information to assist positioning | yes | Each wifi information is obtained once per request for positioning. | |
| SSID | Used to identify mobile hotspots and optimize positioning effects | yes | Obtained once each time positioning is requested, 1 time/s | |
| BSSID | Used for server-side network WiFi positioning | yes | Obtained once each time positioning is requested, 1 time/s | |
| Base station information | Used for server-side positioning of network base stations | yes | Obtained once each time positioning is requested, 1 time/s | |
| Sensor information (vector, acceleration, pressure) | Used for auxiliary positioning | yes | Get 1 time per request | |
| Device signal strength information | Help improve network positioning accuracy | yes | Obtained regularly for each request | |
| Latitude and longitude | Provide users with precise location information | yes | User configurable (up to 1 time/second) |
(2) Device permissions
| system version | Permission name | Function description | Is it necessary | Permission application time |
|---|---|---|---|---|
| Android | Location | Depending on the permissions authorized by the user (precise positioning, rough positioning), it is used to return the end user's precise or rough location information to the application, and for developers to provide corresponding services based on the user's location information. | yes | Determined by the developer application, turned on when you agree to grant this permission to the developer application |
| Always allow access to location | Used to return the user's location information to the application in the background scenario, and for developers to provide corresponding services based on the user's location information. | no | ||
| network access | Used to access location services to help developers provide you with location functions, and access to WiFi information will be used for network location | yes | ||
| IOS | position | Depending on the permissions authorized by the user (precise positioning, rough positioning), it is used to return the end user's precise or rough location information to the application, and for developers to provide corresponding services based on the user's location information. | yes | |
| Always allow access to location | Used to return the user's location information to the application in the background scenario, and for developers to provide corresponding services based on the user's location information. | no | ||
| advertising logo | Used to track, troubleshoot, diagnose, and collect statistics on various problems in services to ensure the safe and normal operation of products and services. | no | ||
| network access | Used to access location services to help developers provide you with location functions, and access to WiFi information will be used for network location | yes |
2.Map SDK
(1) Fields and purposes of personal information collected
| SDK type | Personal information collected | Collection purpose | Is it necessary | Call frequency |
|---|---|---|---|---|
| Map SDK (Android, iOS, HarmonyOS) | IDFA | Tracking, troubleshooting, diagnosis, and statistical services for various problems | No (developer configurable) | Get 1 time per startup |
| OAID | Tracking, troubleshooting, diagnosis, and statistical services for various problems | No (developer configurable) | Get 1 time per startup | |
| Application name | Service authentication, tracking, troubleshooting, diagnosis, and statistics of various problems in services | yes | Take as you go | |
| Application version number | Service authentication, tracking, troubleshooting, diagnosis, and statistics of various problems in services | yes | Take as you go | |
| Equipment brand and model | Tracking, troubleshooting, diagnosis, and statistical services for various problems | yes | Get 1 time per startup | |
| operating system | Tracking, troubleshooting, diagnosis, and statistical services for various problems | yes | Take as you go | |
| Carrier information | Used for map display and determining network status | yes | Get 1 time per run | |
| Screen Resolution | Used for map display | yes | Take as you go | |
| Sensor information (vector, acceleration, pressure, direction, geomagnetism) | Used to show direction perspective | yes | Get every time you run | |
| Device signal strength information | Used for map display and determining network status | yes | Get every time you run |
(2) Device permissions
| system version | Permission name | Function description | whether must | Permission application time |
|---|---|---|---|---|
| Android | network access | Used to access map services to help developers provide map functions to you | yes | Determined by the developer application, turned on when you agree to grant this permission to the developer application |
| IOS | network access | Used to access map services to help developers provide map functions to you | yes |
3. How we use your personal information
For necessary personal information, [ provide you with the following TOZO Health APP products and services and use the necessary information. If you refuse to provide corresponding information, you will not be able to use TOZO Health APP products and services normally. At the same time, within the scope of calling permissions determined by the developer, we will call some of your device permissions. You can check the permission status in the device's settings function or "Privacy Settings", and you can choose to turn on or off some or all permissions. Please note that once you close any permission, it means that you have canceled the authorization. We will no longer continue to process relevant personal information based on the corresponding permission, and we will not be able to provide you with the services corresponding to this permission. However, your decision to turn off permissions will not affect previous functions such as personal information processing based on your authorization , as well as meeting the requirements of relevant laws and regulations.
4.How we entrust you to process, share, transfer and publicly disclose your personal information
(1) Entrusted processing
Certain specific modules or functions in this business function are provided by external suppliers. For example, we may engage service providers to assist us in providing customer support. We will sign strict confidentiality agreements with the companies, organizations and individuals we entrust to process personal information, requiring them to process personal information in accordance with our requirements, this personal information protection policy and any other relevant confidentiality and security measures.
(2) Share
We will not share your personal information with any company, organization or individual outside our company unless we obtain your explicit consent. Currently, we will ask you for your express consent to share personal information in the following situations:
a) we determine that disclosure is reasonable to enforce our terms and conditions, protect our operations or users, or where significant public interest is involved .
Third-party entity: AutoNavi Software Co., Ltd.
b) [ Amap’s open platform is designed to return user location information to applications and provide developers with corresponding services based on the user’s location information. [https://lbs.amap.com/pages/privacy/ ]
We may share your personal information externally in accordance with laws and regulations, or in accordance with the mandatory requirements of government authorities.
(3) Transfer
We will not transfer your personal information to any company, organization or individual, except in the following circumstances:
a) Transfer with explicit consent: After obtaining your explicit consent, we will transfer your personal information to other parties;
b) When a merger, acquisition or bankruptcy liquidation is involved, if personal information is transferred, we will require the new company or organization that holds your personal information to continue to be bound by this personal information protection policy, otherwise we will require the company to , the organization will seek your authorization and consent again.
(4) Public disclosure
We will only publicly disclose your personal information under the following circumstances:
a) After obtaining your explicit consent;
b) Disclosure based on law: We may publicly disclose your personal information when required by law, legal proceedings, litigation or government authorities.
(1) Security services
In order to fulfill the security obligations stipulated by the law, maintain and improve the security of the products and services provided by us and our affiliates and partners, and protect the personal safety and property safety of you or other users or the public, and better prevent phishing websites , fraud, network vulnerabilities, computer viruses, network attacks, network intrusions, malicious programs and other security risks, to more accurately identify violations of laws and regulations or agreements and rules related to Amap products and services, we need to collect and use your equipment Information (such as device identification information (IDFA, OAID), current application information (application name, application version number), device parameters and system information (device brand and model, operating system, operator information, screen resolution), IP address, GNSS information, network type, SSID, BSSID, WiFi status, WiFi parameters, WiFi list, WiFi signal strength information, base station information sensor information (vector, acceleration, pressure), device signal strength information, WiFi gateway address), location information, Service log information, and may use or integrate information that we, our affiliates and partners have obtained your authorization or shared in accordance with the law to conduct identity verification, identify violations, detect and prevent security incidents, and take necessary measures in accordance with the law. Recording, auditing, analysis, and disposal measures .
(2) Technical Processing Description ( This description is transcribed from Amap )
Please be aware that in accordance with applicable laws and regulations, we may conduct aggregation, de-identification, research, statistical analysis, prediction, big data calculation, etc. on the collected personal information to help evaluate, improve, and design the various services we provide. products and services so that we can provide more accurate and convenient services, or provide product and service support for business decisions and carry out operational activities.
We will follow industry-leading data security technologies such as de-identification, anonymization, and pseudonymization, as well as use privacy-preserving computing technologies such as federated learning, secure multi-party computing, and confidential computing based on the situation. On the premise that specific individuals cannot be identified, we will The collected data will be aggregated, fused, analyzed, mined and processed without further notification to you and without your consent. We will take technical measures and other necessary measures to process the data, conduct aggregated, anonymous group analysis and research on the data in a form that cannot identify or infer personal information, and may also use the data for machine learning or algorithm model training. It also provides data technology services, such as helping to optimize advertising and marketing effects, assisting in business decision-making analysis, and conducting business location analysis, etc. If you have signed a corresponding authorization agreement or document with a credit reporting agency (such as Baihang Credit Research, Pudao Credit Research, etc.), a financial institution or other institution, based on your aforementioned authorization and this policy, we will synthesize your personal information. Statistics, analysis or processing and providing data processing results to the aforementioned institutions.
(3) Others ( this description is copied from Gaode )
Please understand that the services we provide you are constantly updated and developed. If you choose to use other services not covered by the above description, and we need to collect your information based on that service, we will update this policy or explain the scope and purpose of information collection to you in other ways, and inform the developer to obtain your information. of consent.
In accordance with the relevant laws, regulations, and standards of Washington State in the United States , as well as common practices in other countries and regions, we guarantee that you can exercise the following rights with respect to your personal information:
(1) Access your personal information
For other personal information generated during your use of our products or services, we will provide it to you as long as we do not need to invest too much. If you want to exercise your data access rights, you can apply for access to your personal information by email [ info@tozostore.com ]
(2) Correct your personal information
When you discover an error in the personal information we process about you, you have the right to ask us to make corrections. You can submit a correction request through the method listed in "Access Your Personal Information", and we will respond to your correction request within [ 30 days ] .
(3) Delete your personal information
You can make a request to us to delete personal information under the following circumstances:
(1) If our processing of personal information violates laws and regulations;
(2) If we collect and use your personal information without your consent;
(3) If our processing of personal information violates our agreement with you;
(4) If you no longer use our products or services, or you cancel your account;
(5) If we no longer provide products or services to you.
If we decide to respond to your deletion request, we will also notify the entities that obtained your personal information from us and require them to delete it promptly, unless otherwise provided by laws and regulations, or these entities obtain your independent authorization.
When you delete information from our services, we may not delete the corresponding information in the backup system immediately, but we will delete the information when the backup is updated.
(4) Change the scope of your authorization and consent
Each business function requires some basic personal information to be completed. You can give or withdraw your authorization or consent at any time for the collection and use of additional personal information.
(5) Personal information subject cancels account
You can cancel your previously registered account at any time, and you can do it yourself in the following ways: [ TOZO Health APP: My interface—Settings—Account and security—Cancel account—Select the type of cancellation reason—Still want to log out—Complete cancellation ]
After canceling your account, we will stop providing products or services to you and delete your personal information according to your request, unless otherwise provided by laws and regulations.
(6) In response to your above request
For security reasons, you may be required to provide a written request or otherwise prove your identity. We may ask you to verify your identity before processing your request.
We will respond within [ 30 days ] . If you are not satisfied, you can also complain through the following channels: [ info@tozostore.com ]
In principle, we do not charge fees for your reasonable requests, but for repeated requests that exceed reasonable limits, we will charge a certain cost depending on the circumstances. For those that are gratuitously repetitive, require excessive technical means (for example, require the development of new systems or fundamentally change existing practices), pose risks to the legitimate rights and interests of others, or are very impractical (for example, involving information stored on backup tapes) request, we may deny it.
(7) We will not be able to respond to your request under the following circumstances:
1. Relevant to the personal information controller’s performance of obligations stipulated in laws and regulations;
2. Directly related to national security and national defense security;
3. Directly related to public safety, public health, and major public interests;
4. Directly related to criminal investigation, prosecution, trial and execution of judgments;
5. The personal information controller has sufficient evidence to show that the personal information subject has subjective malice or abused rights;
6. To protect the life, property and other major legitimate rights and interests of the personal information subject or other individuals but it is difficult to obtain the consent of the individual;
7. Responding to the request of the personal information subject will cause serious damage to the legitimate rights and interests of the personal information subject or other individuals or organizations; involving business secrets.
Our products, websites and services are primarily intended for adults. Children should not create their own personal information subject account without the consent of a parent or guardian.
For cases where we collect personal information from children with parental consent, we will only use or publicly disclose this information as permitted by law, with the explicit consent of the parent or guardian, or as necessary to protect the child.
Although local laws and customs may define children differently, we consider anyone under the age of 14 to be a child.
If we discover that we have collected personal information from children without first obtaining verifiable parental consent, we will seek to delete the data as quickly as possible.
Our privacy policy may change.
We will not reduce your rights under this Privacy Policy without your explicit consent. We will post any changes to this policy on this page.
For major changes, we will also provide a more prominent notice ( we will send a notice via email explaining the specific changes to the privacy policy).
Major changes referred to in this policy include but are not limited to:
1. Our service model has undergone major changes. Such as the purpose of processing personal information, the type of personal information processed, the use of personal information, etc.;
2. We have undergone major changes in ownership structure, organizational structure and other aspects. Such as changes in owners caused by business adjustments, bankruptcy mergers, etc.;
3. The main objects to whom personal information is shared, transferred or publicly disclosed change;
4. Significant changes in your rights to participate in the processing of personal information and how you exercise them;
5. When our responsible department, contact information and complaint channels for handling personal information security change;
6. When the personal information security impact assessment report indicates that there is a high risk.
If you have any questions, comments or suggestions about this privacy policy, please contact us through the following methods: [ +1 (800) 282 9088 ].
We have established a dedicated department for personal information protection (or personal information protection specialist), and you can contact it through the following methods: [ +1 (800) 282 9088 ]. Under normal circumstances, we will reply within [ 30 days ].
This policy shall be interpreted and governed by the laws of the State of Washington, USA. Any disputes of any kind between you and us shall be resolved amicably through negotiation. If negotiation fails, either party has the right to submit the dispute to the people's court with jurisdiction over the location of [Tozo, Seattle, Washington, USA] for litigation resolution.