Mengdayang logo Chengdu MengdayangTechnology Co., Ltd

Privacy Agreement

Effective Date: May 13, 2026. This Privacy Agreement explains how Chengdu Mengdayang Technology Co., Ltd handles personal data for website services, business communications, enterprise projects, and mobile applications published on app marketplaces including Google Play and Apple App Store.

1. Data Controller and Contact

Data Controller: Chengdu Mengdayang Technology Co., Ltd

Office Address: Room 6-20, 3rd Floor, No. 116 Yuju An East Road, Jinniu District (Declaration Commitment), Chengdu, 610000, CN

Business Support: support@mengdayang.com

Key Account Contact: yuanchuan1@mengdayang.com

2. Scope of This Agreement

  • Official website and online communication channels.
  • Mobile management applications and related digital products.
  • Applications distributed through app stores including Google Play, Apple App Store, and other lawful marketplaces where applicable.
  • Business support, enterprise consulting, and service operations.

3. Information We Collect

3.1 Information You Provide

  • Contact data: name, company name, job title, email address, phone number, and country/region.
  • Business details: project requests, technical requirements, procurement and support information.
  • Support communications: message content, attachments, and follow-up records.

3.2 Information Collected Automatically

  • Device information: device model, operating system version, language, network type, app version, device identifiers where permitted by law.
  • Log and diagnostic data: crash logs, performance metrics, event timestamps, and usage telemetry.
  • Network data: IP address and approximate region for security and anti-abuse controls.
  • Cookie and similar technologies for website stability, analytics, and preference management.

3.3 Information from Third-Party Partners

  • App marketplace data such as install status, transaction status, and policy notices.
  • Advertising and analytics partner data where integrations are enabled and legally permitted.

4. Purposes and Legal Bases

  • Service delivery and account operations.
  • Security, anti-fraud, abuse prevention, and incident response.
  • System maintenance and quality optimization.
  • Customer support and business communication.
  • Compliance with legal obligations and regulator requests.
  • Advertising monetization operations for eligible applications.

Depending on jurisdiction, legal bases include contract performance, legitimate interests, legal obligations, consent, and public interest requirements.

5. App Marketplace Privacy and Policy Alignment

5.1 Google Play

  • Data Safety declarations are maintained and updated to reflect data collection, sharing, encryption, and deletion practices.
  • We align with Google Play Developer Program Policies, Families Policy when applicable, and User Data policy requirements.
  • Use of Android Advertising ID follows user choice and platform restrictions.
  • Runtime permissions are requested only when necessary for app functionality.

5.2 Apple App Store

  • Privacy Nutrition Labels are maintained for data categories and purposes.
  • App Tracking Transparency (ATT) consent is requested before cross-app tracking where required.
  • IDFA access is conditioned on permission status.
  • We align with Apple App Store Review Guidelines and platform safety requirements.

6. Advertising, Monetization, and SDK Disclosures

Some applications may include app monetization modules and ad mediation. Supported formats may include App Open Ads, Rewarded Video Ads, Interstitial Ads, and Banner Ads. Depending on product scope and region, we may integrate one or more of the following platforms:

  • Google AdMob
  • Google Ad Manager
  • AppLovin MAX
  • Meta Audience Network
  • Unity Ads
  • ironSource
  • Mintegral
  • Pangle
  • InMobi
  • Liftoff Monetize (Vungle)
  • Chartboost
  • Fyber
  • Moloco
  • Smaato
  • Start.io
  • Digital Turbine
  • Amazon Publisher Services
  • Tapjoy
  • PubMatic
  • Yandex Ads
  • Direct demand partners and mediation adapters as commercially required

For these integrations, data that may be processed includes device identifiers, advertising identifiers, approximate geolocation, ad interaction events, IP address, and anti-fraud signals, subject to user consent and applicable law. Partner privacy policies and data processing terms apply in addition to this agreement.

7. Consent Management and User Choice

  • Where required by law, we request explicit consent before processing non-essential data or personalizing ads.
  • Users may withdraw consent in app settings, system settings, or by contacting support.
  • Cookie and SDK preferences are managed through notice layers and controls where technically available.
  • Opt-out choices for interest-based advertising are respected according to regional legal requirements.

8. Country and Regional Policy Adaptation

We adapt privacy operations by region. The following references summarize major frameworks we support. Where local law provides stronger rights or stricter obligations, local law prevails.

  • European Union and EEA: GDPR and ePrivacy obligations, including legal basis, DPIA where needed, cross-border safeguards, and data subject rights.
  • United Kingdom: UK GDPR and Data Protection Act 2018.
  • Switzerland: Revised Federal Act on Data Protection.
  • United States: Federal and state privacy rules, including CCPA/CPRA (California), VCDPA (Virginia), CPA (Colorado), CTDPA (Connecticut), UCPA (Utah), and equivalent state-level legislation as enacted.
  • Children privacy in the United States: COPPA compliance where child-directed processing may occur.
  • Canada: PIPEDA and provincial privacy law requirements.
  • Brazil: LGPD requirements for lawful processing and user rights.
  • Mexico, Argentina, Chile, Colombia, and other Latin American jurisdictions: adaptation to applicable data protection frameworks.
  • Australia and New Zealand: Privacy Act obligations and related principles.
  • Japan: APPI compliance requirements.
  • South Korea: PIPA requirements and security controls.
  • Singapore, Thailand, Malaysia, Indonesia, Philippines, and Vietnam: compliance alignment with local privacy and electronic transaction requirements where applicable.
  • India: Digital personal data protection obligations and localization-aware processing controls where required.
  • Middle East and Africa jurisdictions: adaptation to sectoral and national privacy requirements based on service deployment.

9. Age Policy and Child Protection

  • Our services are designed for general business and enterprise use unless otherwise stated.
  • Where apps may reach minors, age-appropriate design and content controls are applied.
  • If a service is not intended for children under the legally relevant age threshold, we do not knowingly collect personal data from children without required parental consent.
  • For child-directed or mixed-audience experiences, we configure ad and analytics behavior according to platform and legal requirements, including limited or non-personalized ads where required.

10. Data Sharing and Disclosure

  • Service providers and infrastructure partners under contractual confidentiality and data protection obligations.
  • App marketplaces, analytics providers, and ad monetization partners where integration is enabled.
  • Authorities, regulators, courts, or law enforcement where legally required.
  • Corporate transaction counterparties under appropriate confidentiality controls.

We do not sell personal information in a manner prohibited by law. Where a legal definition of "sale" or "sharing" applies to targeted advertising, users are provided with legally required opt-out controls.

11. Cross-Border Data Transfers

Data may be processed in multiple countries for service delivery. We apply lawful transfer mechanisms such as standard contractual clauses, adequacy decisions, data processing agreements, and supplemental technical safeguards where required.

12. Data Retention

  • Personal data is retained only for as long as necessary for stated purposes, contractual commitments, dispute resolution, tax/accounting obligations, and legal compliance.
  • Retention periods differ by data category and jurisdiction.
  • When retention periods expire, data is deleted, anonymized, or securely archived in accordance with law.

13. Security Measures

  • Transport encryption and secure storage controls.
  • Role-based access and least-privilege governance.
  • Security monitoring, vulnerability management, and incident handling processes.
  • Supplier risk management and contractual data security obligations.

14. Your Rights

Depending on jurisdiction, you may have rights to access, correction, deletion, portability, restriction, objection, and withdrawal of consent. You may also have rights related to automated decision-making and profiling where applicable. Submit requests via support@mengdayang.com. We verify identity and respond within legally required timeframes.

15. Do Not Track and Regional Preference Signals

Some browsers and systems send privacy preference signals. Where law requires recognition of such signals, we make commercially reasonable efforts to honor them based on technical feasibility and verified scope.

16. Third-Party Services and External Links

Our products may link to third-party websites, SDKs, and services. Their privacy practices are governed by their own policies. We recommend reviewing those documents before use.

17. Data Breach Response

We maintain incident response procedures to identify, contain, assess, and notify relevant stakeholders and authorities when legally required.

18. Updates to This Agreement

We may update this Privacy Agreement to reflect legal, technical, or operational changes. Updated versions will be published on this page with a revised effective date.

19. Contact and Complaints

General privacy inquiries: support@mengdayang.com

Key account privacy coordination: yuanchuan1@mengdayang.com

You may also lodge a complaint with your local data protection authority where applicable.