Privacy Policy

This Privacy Policy elaborates on the rules of personal information collection, storage, use, encryption protection, third-party sharing restriction, and user rights protection implemented by our suncare skincare retail platform. It clarifies the types of collected information, the purpose of data usage, information security protection measures, and user independent management rights of personal privacy. This policy applies to all website visitors, registered members, order purchasers, and service consultation users worldwide. By accessing the platform, registering an account, placing orders, and using shopping services, users fully agree to the information collection and usage rules stipulated in this Privacy Policy. The platform strictly abides by global data protection regulations and international privacy industry norms, and is committed to protecting user personal information from leakage, tampering, and unauthorized abuse. All revised privacy terms will be published on the official page and take effect immediately.

We only collect necessary personal information voluntarily provided by users in the process of account registration, order placement, transaction payment, logistics delivery, and after-sales service consultation, and do not actively collect sensitive private information without user explicit consent. The collected basic information includes user account registration nickname, login credential information, contact communication details, full name for receiving goods, detailed delivery address, postal code, and order transaction record data. Transaction-related information includes payment channel verification data, order product selection records, consumption amount records, and after-sales service application history.

We also automatically collect non-identifiable browsing data through official website technical tools, including page browsing track, product click preference, residence region access label, device model, browser type, and network access environment. Such data cannot locate a single specific user personally, and is only used for platform operation optimization, product category recommendation, and user shopping experience improvement, without involving private identity information.

We will never collect sensitive personal information including identity certificate number, biological feature data, religious belief, health privacy information, and private asset details under any circumstances. All information collection follows the principle of minimal necessity, only acquiring data required for completing transaction and service functions, and refusing excessive private information collection. Users can independently choose not to fill in non-essential information during registration and order placement, and the platform will not force mandatory filling to affect normal shopping procedures.

All collected user personal information is only used for legitimate and reasonable platform operation and service provision purposes, and will not be used for irrelevant commercial activities without user authorization. The core usage purposes include: completing user account registration and identity authentication, processing order placement, payment confirmation, and logistics delivery arrangement; verifying order authenticity and preventing malicious false orders; providing after-sales return, refund, and customer service support; pushing suncare product updates, skincare popular science content, and official preferential activity notifications; optimizing website page layout, product category layout, and recommending matching sunscreen products according to user browsing preferences.

We use non-identifiable browsing data to analyze user consumption habits, popular product demand, and regional shopping preferences, so as to adjust product supply structure, optimize inventory allocation, and improve overall platform operational efficiency. Personal account information is used to maintain member rights and interests, accumulate consumption points, and redeem exclusive discounts and limited benefits. All information usage is limited within the service scope of the platform, and does not exceed the reasonable expectations of users.

We will not use user personal information for illegal marketing, spam message push, and unauthorized commercial promotion without user consent. For service notifications necessary for order logistics and after-sales processing, users cannot unsubscribe voluntarily to ensure the normal completion of transaction services; for non-essential promotional content, users have the right to cancel subscription at any time to stop receiving information pushes.

The platform adopts international industry-standard data encryption technology, secure cloud server storage system, and firewall protection mechanism to fully protect user personal information security. All private data is stored in encrypted form, with strict access authority setting to prevent unauthorized internal staff from viewing, copying, and leaking user information. Internal data management implements hierarchical access control, only granting information query authority to operational and customer service personnel who need to handle order and after-sales business, and signing strict confidentiality agreements with all internal employees to restrict private information disclosure behavior.

We establish a complete data security emergency response mechanism to deal with potential risks such as system loophole attack, data intrusion, and information leakage in a timely manner. Regular technical maintenance, system vulnerability detection, and security system upgrade are conducted to continuously enhance the ability to resist network security risks. User payment information adopts third-party official encrypted payment channels, and the platform does not store complete bank card and payment account sensitive data, effectively reducing the risk of financial privacy leakage.

User personal information will be retained in accordance with legal and operational reasonable storage cycles: order transaction data and logistics records are stored for a long time to facilitate after-sales inquiry and order traceability; inactive account partial privacy data will be automatically encrypted and archived after a period of inactivity. We will not actively delete valid user information at will; users can independently apply for account cancellation and personal information deletion through official channels.

We will never sell, rent, transfer, or disclose user personal information to any third-party commercial institutions, marketing platforms, and unrelated enterprises without explicit user authorization and legal mandatory requirements. Under limited necessary conditions, we only share the minimum required user information with cooperative logistics carriers, third-party payment institutions, and official customs clearance service providers, and sign strict privacy protection agreements with all cooperative third parties to bind their information security protection obligations.

All third-party partners can only use the shared information to complete designated service links such as logistics delivery and payment settlement, and are prohibited from using the information for additional marketing promotion, user information collection, and commercial resale. Once the third party violates privacy protection agreements and causes user information leakage, the platform will terminate the cooperative relationship permanently and pursue corresponding responsibilities in accordance with industry norms.

In the event of legal mandatory requirements such as judicial investigation, regulatory official inspection, and legal dispute evidence provision, the platform will truthfully provide user personal information in accordance with official formal procedures, and ensure that the provided information is only used for legal official purposes. We will notify users of information disclosure matters within a reasonable time limit under the premise of complying with legal regulations.

Users enjoy independent rights to inquire, view, modify, supplement, and delete their personal account information at any time through the personal center interface. Users can independently update delivery address, contact information, and account login password to ensure the accuracy and security of private data. Users have the right to close personalized product recommendation functions, turn off promotional message push, and restrict non-essential information collection permissions.

Users can submit an application for account cancellation and permanent deletion of personal privacy information through official customer service channels. After verifying user identity, the platform will complete account logout and information clearing within the processing cycle, and no longer retain or use the user’s relevant personal data. For information leakage suspected to be caused by platform loopholes, users can feedback through official service channels, and we will initiate emergency investigation and risk control processing immediately, and give a clear processing result and solution.

We regularly update the Privacy Policy according to changes in global data protection regulations, network security technology upgrades, and platform service adjustment needs. Users are advised to check the policy content regularly; continued use of the platform’s shopping and browsing services after policy updates is deemed acceptance of the revised privacy terms. The platform adheres to the principle of user privacy first, and constantly improves information protection mechanisms to create a safe and secure shopping environment for all global users.