Updated date: August 16, 2024
Effective date: August 16, 2024
Shenzhen Vatilon Electronics Co., Ltd (as hereinafter defined)("we","us","our" or "Vatilon") is a global provider of AIoT products, solutions and full-stack capabilities, a leader with the Internet of Things (IoT), artificial intelligence (AI), big data, and cloud computing technologies as the core, providing global users with network camera products, display control products, smart equipment products, storage and computing products, smart lock products, and management platform products for application to smart cities, transportation, Internet of Things and other fields. Vatilon is committed to building a better world by providing professional, reliable and cutting-edge products and services.
Vatilon is committed to protecting your personal information and privacy and maintaining your trust with us. We abide by the following principles to protect your personal information: integrity, consent, clear purpose, restricted collection, minimum necessary, transparency, balanced rights with responsibility, security, and privacy compliance.
This privacy policy is intended to help you understand: 1) your personal information that we collect; 2) how we collect your personal information; 3) how we use your personal information; 4) how we protect your personal information and your rights; 5) answers to your questions and how to contact us. Understanding these contents is essential for you to exercise your personal rights and protect your personal information. Please read through this policy carefully before you use or accept our products or services. Please be aware, this policy is not applicable to situations where your personal information is collected by other third parties.
This policy contains the following sections:
The definition of personal information shall be defined by your local laws.
Non-personal information refers to data other than personal information that cannot be directly linked to any specific individual, such as occupation, language, zip code, area code, serial number, URL, and automatically recorded browse data, product and unique product identifier of your mobile device, video contents without personal information, country/region and time zone of the connected product, geographical location, identifier of mobile network operator, device software platform, and hardware information, etc.
According to the Provisions on the Scope of Necessary Personal Information Required for Common Types of Mobile Internet Applications, the Wanan Pro app falls into the Practical tools category, the basic functional services are smart home assistant, and the necessary personal information required are account information, monitoring device information (such as device serial number, device IP, device port information, etc.).
|
Information collected
|
Control method
|
Purpose
|
| Model of your mobile phone |
For first-time use, a pop-up window will appear to notify you. When the collection
method, collection contents or collection purpose are changed, we will notify you of the changes
and ask for your permission.
|
To determine the push service
|
| Operating system type and version of mobile phone |
When you use our app, we will need you to authorize us certain permissions in your mobile phone. If you refuse such permissions, you will be unable to use the relevant functions, but it will not affect your normal use of other functions of the app. For information about permissions that we ask for, refer to the table below. Please note that we ask for the permissions only when you use the relevant functions. You can turn off the permissions at any time in the system settings of your mobile phone. Once the permissions are turned off, we will stop using these permissions.
| Type | No. | Permission | Level | Application scenario | Function |
| Location | 1 | ACCESS_FINE_LOCATION access precise location | Sensitive | Add Wi-Fi device; Initialize JPush service | Obtain Wi-Fi information to connect device to network; network connection request from JPush server to ensure stable and continuous JPush service |
| Camera | 2 | CAMERA camera | Sensitive | Read QR code to add device, retrieve device password; face import function | Use camera to read QR code to obtain device information to add device or retrieve password; import face information to device |
| MIC | 3 | RECORD_AUDIO allow sound recording | Sensitive | Device audio intercom, doorbell intercom; set custom alarm sound | Two-way audio between user and device; record custom alarm sound as an alarm-triggered action |
| Storage | 4 | READ_EXTERNAL_STORAGE read external storage | Sensitive | Read QR code to add device, retrieve device password; face import function | Used to scan QR code in album to add device or import face information into device |
| 5 | WRITE_EXTERNAL_STORAGE write to external storage | Sensitive | Import snapshots or videos into system album | Download snapshots or videos to system album | |
| Network | 6 | ACCESS_NETWORK_STATE obtain network status | Common | When app is running | Used to obtain network status information to improve video communication efficiency |
| 7 | ACCESS_WIFI_STATE obtain Wi-Fi information | Common | When app is running | Used to obtain network status information to improve video communication efficiency | |
| 8 | INTERNET connect to network | Common | When app is running | For Internet connection using SIM card | |
| 9 | CHANGE_NETWORK_STATE edit network status | Common | When app is running | Update device status after network changes | |
| 10 | CHANGE_WIFI_STATE change Wi-Fi status | Common | When app is running | Update device status after network changes | |
| 11 | RECEIVE_BOOT_COMPLETED automatic startup at system boot | Common | When app is running | Used for Android persistent connection | |
| 12 | SYSTEM_ALERT_WINDOW display on top of other apps | Common | When a dialog box opens | Request for floating box permission to pop up a dialog box in the system | |
| 13 | READ_PHONE_STATE read mobile phone status and identity | Common | When using the push service | User obtains mobile phone’s device feature code information | |
| 14 | VIBRATE control device vibration | Common | When using the push service | Used for vibration reminder when the mobile phone receives a notification message from push service such as Mi Push | |
| 15 | DISABLE_KEYGUARD allow app to disable keyboard guard when it is not safe | Common | When on-screen keyboard is opened | Allow app to disable keyboard lock | |
| 16 | WAKE_LOCK prevent mobile phone from going into sleep status | Common | When video is playing | Used for video playing to prevent mobile phone screen from going to sleep | |
| 17 | FLASHLIGHT control flashlight | Common | When scanning QR code | Control flashlight to scan QR code to connect smart device in low-light environment | |
| 18 | MODIFY_AUDIO_SETTINGS change audio settings | Common | Device audio intercom or doorbell intercom | Used for audio settings when having two-way audio with device or doorbell | |
| 19 | BATTERY_STATS | Common | When app is running | Used for data processing before shutdown due to low battery | |
| 20 | MOUNT_UNMOUNT_FILESYSTEMS | Common | When saving or reading video tutorial or configuration file | Permission to read files in SD card | |
| 21 | C2D_MESSAGE | Common | When initializing the push service | Used to receive notification messages | |
| 22 | RECEIVE_USER_PRESENT | Common | When initializing the push service | Used to wake up the screen or unblock radio when receiving alarm notifications | |
| 23 | DOWNLOAD_WITHOUT_NOTIFICATION | Custom | Download upgrade file, configuration file or tutorial video | Used for file download | |
| Push service | 24 | com.coloros.mcs.permission.SEND_MCS_MESSAGE | Custom | When initializing push service | Used for message push service on OPPO mobile phones |
| 25 | com.heytap.mcs.permission.SEND_MCS_MESSAGE | Custom | When initializing push service | Used for message push service on OPPO mobile phones | |
| 26 | com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE | Custom | When initializing push service | Used for message push service on OPPO mobile phones | |
| 27 | com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE | Custom | When initializing push service | Used for message push service on OPPO mobile phones | |
| 28 | USE_FULL_SCREEN_INTENT | Common | When initializing push service | Full screen notification, click doorbell notification in background | |
| 29 | PROCESS_PUSH_MSG | Custom | When initializing push service | Used for message push service on Huawei mobile phones | |
| 30 | MIPUSH_RECEIVE | Custom | When initializing push service | Used for message push service on Xiaomi mobile phones | |
| 31 | JPUSH_MESSAGE | Custom | When initializing push service | Used for the JPush message push service | |
| Bluetooth | 32 | BLUETOOTH | Common | When app is running | Used to connect to a paired Bluetooth device and achieve audio adaptation to the Bluetooth device |
| 33 | BLUETOOTH_ADMIN | Common | When app is running | Used to discover and pair Bluetooth devices and provide audio to the Bluetooth devices | |
| Light sensor | 34 | SENSOR_SERVICE | Common | When scanning QR code | Used to prompt user to turn on flashlight when scanning QR code in low-light environment |
| Notification bar | 35 | NOTIFICATION_SERVICE | Common | When using notification service | Used to display or clear notifications in the bar |
| Window service | 36 | WINDOW_SERVICE | Common | When obtaining window size | Used to fit the window size in the app screen |
| Soft keyboard | 37 | INPUT_METHOD_SERVICE | Common | When using soft keyboard | Used to display soft keyboard when entering mobile phone number, username, password, etc. |
| Power status | 38 | POWER_SERVICE | Common | When local video is playing | Used to wake up the screen when local video is playing |
| Clipboard | 39 | CLIPBOARD_SERVICE | Common | When using attendance service | Used to copy URL when exporting attendance reports |
When you use our service to save video related contents, such as video clips, live video streams, images (user contents), message notifications, etc., we will collect video images captured by your camera and push video images to you so you can save the contents that you need. Such information is necessary for the function. If you refuse to provide such information, you will not be able to save the contents you need.
When you use the message notification function, we need to collect the unique feature value of
your client (such as the unique value generated based on your device's IMEI or UDID) and the
language of your mobile phone. The purpose is to provide precise alarm message notification in
the language you prefer.
Such information is necessary for the function. If you refuse to provide such
information, you will not be able to use the alarm subscription function, but it will not
affect your normal use of other functions. You can choose to turn off the
function and clear information about the unique feature value of your client.
Off-site push requires the push permission in your device.
When you use the push function, JPush needs to collect the above device information and mobile phone language to realize the push function in your mobile phone (depending on the device manufacturer, the SDK may integrate Huawei Push Kit, Mi Push, OPPO Push, Vpush, and JPush).
When you use device adding functions, we may need to collect the serial number, register code, password, and model of your device, and Wi-Fi information of your client. The purpose is to configure network on your device and bind your device. Such information is necessary for the function. If you refuse to provide such information, you will not be able to add your device.
When you scan the QR code to add a device, we need the permission to access your camera.
When you use our device connection service, to ensure your normal use of our service, we will collect information including the model, UDID, IP address, MAC address, software version, network connection method and type, latitude and longitude (if applicable), and operation records of your device. Such information is necessary for the service. If you refuse to provide such information, you may not be able to connect your device to cloud.
When you use the live view function, we will collect the serial number, IP address, port number, and video stream information of your device in order to provide you with live streams of your device. Such information is necessary for the function. If you refuse to provide such information, you will not be able to use the live view function, but it will not affect your normal use of other functions.
When you use analysis, comparison functions and alarm service based on user benchmark information (including face/human body recognition, license plate/vehicle recognition, attendance management, fingerprint unlocking, if applicable to your device), you need to enter the benchmark information such as face images, license plate information, attendance personnel information, fingerprints into the system in advance. Such information is necessary for the service. If you refuse to provide such information, you will not be able to use the relevant analysis, comparison functions and alarm service, but it will not affect your normal use of other functions.
When you use the device sharing function, we need to collect certain information in order to implement the sharing, including the device serial number, your nickname, and the usernames with which you want to share the device. Such information is necessary for the function. If you refuse to provide such information, you will not be able to use the device sharing function, but it will not affect your normal use of other functions. The sharing function is active only when you use it; it is not permanently active.
When you need our support and contact us through email, telephone or our customer support tools, we need to collect information including your name, phone number or email address, enterprise or organization, device usage, device serial number, device account during the process of communication. The purpose is to verify your product and identity and provide precise service support. If you refuse to provide such information, we will not be able to provide support services to you.
3) Sharing, transfer and disclosure of personal information
When we provide you with certain services, we need to share your personal information with authorized partners, carefully selected service providers, or national regulatory agencies, only for legal, justified, necessary, specific, and definitive purposes, and only share the information necessary for us to provide services. The organization that shares your personal information has no right to use the shared personal information for any other purposes irrelevant to our products or services. For companies, organizations, and individuals with whom we share personal information, we will sign strict data protection agreements with them, demanding them to process personal information as per our instructions, this privacy policy, and any other relevant confidentiality and security measures.
We will not transfer your personal information to any other companies, organizations or individuals, except in the following situations:
We will disclose your personal information only under the following circumstances:
4) Storage and protection of personal information
Unless otherwise explicitly permitted by law or by you, we will retain your personal information only for the length of time required for the purposes bound by this privacy policy. During the period that you use our products or receive our services, we will continuously keep your personal information for you. If you cancel your account or proactively delete your personal information, we will delete or anonymize your personal information within 48 hours after receiving your request, unless otherwise stated in law or agreement.
The information that we collect from you may be transferred to serves maintained outside your country (and, for individuals located in the EU, outside of the European Economic Area)-including Singapore, Frankfurt, Vietnam, and USA.
We are committed to safeguarding your information security and have a dedicated team responsible for the research, development and application of a variety of security technologies and programs. We use data encryption and access control mechanisms to establish internal control systems to ensure only the authorized personnel can access your personal information, to publicize security and privacy protection requirements to the related personnel, and to publicize protection measures such as the information security protection system to all the staff. At the same time, we have been granted information security management system certification (ISO27001 international standard), and will regularly hire independent third-party organizations to evaluate our information security management system. Through these rigorous measures, we try our best to protect your information from unauthorized access, use and disclosure. However, please understand that in the Internet industry, due to the limits of current technologies and all kinds of possible malicious attack methods, even if we do everything that we can to strengthen our security measures, it is impossible to guarantee 100% security of information. Please be aware, the systems and communication networks that you use while using our products and/or services may encounter security issues due to factors that are beyond our control.
The security of your personal information also depends on your cooperation with us in security measures. We provide you with a username and password so you can access our products, websites or services, and you are responsible for the confidentiality of such information. We request that you do not share such information with anyone, and we will also regularly review the technologies that we use and the strategies used to implement information collection.
We have established dedicated management systems, procedures and organizations to safeguard information security. We strictly limit the scope of people who have access to the information, demand their compliance with confidentiality obligations, and conduct audits regularly.
In the event of a security incident such as personal information leakage, we will initiate an emergency plan to prevent the expansion of the security incident and promptly inform you in the form of push notifications, announcements, etc.
5) Your rights
6) Third-party services
Our products and/or services may be connected to or linked to websites or other services provided by the third party, for example, when you use the share function to share some of your information to third-party services. These functions may collect your information (including your log information) in order to operate properly. We will only share your information for legitimate, necessary, and specific purposes. For third-party service providers with whom we share information, we demand them to fulfill confidentiality obligations and take corresponding security measures.
In order to achieve the purposes stated in this policy, we may connect SDK or other similar applications provided by third-party service providers, and share with them certain information about you that we collect in accordance with this policy, so as to provide better customer service and user experience. At present, the third-party service providers we connect include the following types:
Such third-party services are operated by the relevant third party; your using their services or providing information to them are subject to the terms of service/or privacy protection statements of the corresponding third party (not this policy).
For information about third-party services that we are currently using, please refer to the table below.
| Third-party SDK | Description |
| JPush | Operator: Shenzhen Hexun Huagu Information Technology Co. Ltd. |
| Function: Push notifications | |
| Application scenario: Provide notification push service. When you use the push service of the APP, Jpush SDK needs to use the auto-launch function so that you can receive messages (such as alarms) pushed by the app when it is closed or running in the background. At the certain frequency, the app will start automatically or start the third-party app after being wakened by the system. | |
| Scope of collected personal information Device parameters and system information (device type, device model, system version, and related hardware information), device identifiers (IMEI, IDFA, Android ID, GID, MAC, OAID, VAID, AAID, IMSI, MEID, UAID, SN, ICCID, SIM information), network information (IP address, Wi-Fi information, base station information, DNS address, DNCP address) and location information, app list and active status information (application crash information, notification switch status, app application list and active status, app application page information, app function event related information) |
|
| Purpose of collecting personal information Device parameters and system information: used to identify user's device type, device model, system version, etc., to ensure accurate message delivery Device identifier: used to identify user uniquely and ensure accurate delivery of push messages Network information and location information: used to improve network connection requests from SDK to JPush server to ensure stable and continuous service and realize the push function App list and active status information: used to save battery and data traffic for user |
|
| Required sensitive permissions: storage, location | |
| Privacy policy: https://www.jiguang.cn/license/privacy | |
| Bugly | Operator: Shenzhen Tencent Computer System Co., Ltd |
| Function: Collect program crash information | |
| Application scenario: Collect application error information at runtime, and report to the backend for analyzing and improving the application | |
| Scope of collected personal information: Log information, device ID, networking information, system name, system version, and country code | |
| Privacy policy: https://privacy.qq.com/document/priview/fbd2c3f898df4c1c869925dd49d57827 | |
| Mi Push | Operator: Xiaomi Corporation |
| Function: Push notifications | |
| Application scenario: Push notifications via the MIUI system to Xiaomi phone users | |
| Scope of collected personal information Device identifier (OAID, encrypted Android ID), application information (application package name, version number and running status), device information (device manufacturer, device model, device memory, operating system version, Mi push SDK version, home area of device, SIM card operator name, current network type) |
|
| Purpose of collecting personal information Device identification, application information: used to push message to your device in a timely manner App information: Used to push and display messages according to your device and system types |
|
| Privacy policy: https://dev.mi.com/console/doc/detail?pId=1822 | |
| Huawei Push Kit | Operator: Huawei Technologies Co., Ltd. |
| Function: Push notifications | |
| Application scenario: Push notifications via the EMUI system to Huawei phone users | |
| Scope of collected personal information Application information (AppID, SDK version number, application version number and application package name), in-app device identifier (AADI, Push Token), device information (device type, device model, system type, system version, country code) |
|
| Purpose of collecting personal information Used to support push messages and count the success rate of calling Huawei Push SDK APIs |
|
| Privacy policy: https://developer.huawei.com/consumer/cn/doc/development/HMSCore-Guides/sdk-data-security-0000001050042177 | |
| OPPO PUSH | Operator: Guangdong HeyTap Technologies Co., Ltd |
| Function: Push notifications | |
| Application scenario: Push notifications via the OPPO system to OPPO phone users | |
| Scope of collected personal information Device information (IMEI or OAID, serial number, IMSI, user ID, Android ID, Google Advertising ID, region settings, device model, battery level, operating system version and language), application information (app package name and version number, running status), push SDK version number, network information (IP or domain name connection result, current network type), message sending result, notification bar status, lock screen status |
|
| Purpose of collecting personal information Push messages that meet technical standards according to your system, device, application information, etc. to your device terminals in a timely manner |
|
| Privacy policy: https://open.oppomobile.com/wiki/doc#id=10288 | |
| Vpush | Operator: Guangdong Tianchen Technologies Co., Ltd |
| Function: Push notifications | |
| Application scenario: Push notifications via the vivo system to Vivo phone users | |
| Scope of collected personal information Device and app information (operating system version number, app installation list, language in use, system settings), device identifier (such as IMEI, ICCID, EMMCID/UFSID, oaid/vaid/aaid, SN code and IMSI, Android id, mobile country code and mobile network ID of vivo Android devices, etc.), MAC address, mobile network operator, log information, and location information |
|
| Purpose of collecting personal information Push messages to your device terminal in a timely manner |
|
| Privacy policy: https://www.vivo.com.cn/about-vivo/privacy-policy | |
| Baidu Speech Synthesis | Operator: Beijing Baidu Netcom Science Technology Co., Ltd. |
| Function: Text-to-speech conversion | |
| Application scenario: Custom alarm sound for device | |
| Scope of collected personal information: network status, Wi-Fi status, permission to read/write external storage. | |
| Privacy policy: https://ai.baidu.com/ai-doc/REFERENCE/Jkdyl0v3v |
7) Auto-launch and launch third-party app
8) Privacy of minors
We do not provide any of our services to minors under 14 years of age (or equivalent minimum age set by the relevant jurisdiction). If we find any account associated with or registered by a minor under 14 years of age (or equivalent minimum age set by the relevant jurisdiction), we will immediately delete the relevant account information. If we find that we have collected personal information of minors without prior verifiable parental consent, we will try to delete the relevant data as soon as possible.
If you are the parent or guardian of a minor under the age of 14 (or equivalent minimum age set by the relevant jurisdiction), and you believe that your minor has disclosed her/his personal information to us, please contact us immediately through your local Vatilon service phone number or e-mail address. Parents or guardians of minors who are under 14 years of age (or equivalent minimum age set by the relevant jurisdiction) can check and ask us delete the minor's personal information and prohibit us from using it. In cases where we collect personal information of minors with the consent of the parents/guardians, we will only use or publicly disclose the information when permitted by law, expressly allowed by the parents or guardians, or when necessary to protect the minors.
9) Contact us
We have set up a dedicated department to protect your personal information. If you have any questions, comments or suggestions regarding this privacy policy or your personal information, please contact us via the following methods:
We will process your inquiry or request within fifteen working days after verifying your identity.
10) Revisions to privacy policy
This privacy policy is subject to revisions from time to time, and such revisions shall constitute a part of this privacy policy. When the terms of this policy are changed, we will show you the changed policy in the form of push notifications and pop-up windows when you log in and upgrade the version. Please note that we will collect, use and store your personal information according to the updated policy only after you click the Agree button in the pop-up window.