Welcome to Hime AI (hereinafter referred to as “This Application”). We place high importance on user privacy and the protection of personal data, and strictly comply with international General Privacy Protection Guidelines and relevant regional data regulations (including but not limited to the European Union‘s General Data Protection Regulation (GDPR), the United States‘ California Consumer Privacy Act (CCPA), Singapore‘s Personal Data Protection Act (PDPA), and others), and are committed to providing you with a secure and transparent AI service experience. This Privacy Policy is designed to clearly inform you about how we collect, use, store, protect, and share your personal data, as well as the relevant rights you enjoy. Please read and understand this Policy carefully before using this Application. By using this App, you have given your consent to our processing of your personal data in accordance with this Policy.
1. Definition and scope
1.1 Core Definitions
1.1.1 Personal Data
Means any information related to an identified or identifiable natural person, including but not limited to account information, device information, conversation data, uploaded content, etc., excluding information that cannot be associated with a personal identity after being anonymized or de-identified.
1.1.2 Data Controllers
Means an entity with the right to determine the purpose, manner, and scope of personal data processing. The controller of personal data in this application is the Hime AI operating entity.
1.1.3 AI-Generated Content
Means content such as text, images, audio, etc. generated by this application based on your input instructions and AI models, with the intellectual property ownership and responsibility for use of such content stipulated separately by both parties.
1.2 Applicability Scope
This Policy applies to all data processing activities that arise during your use of the Hime AI App and related AI services (including but not limited to intelligent conversations, content generation, data analysis, etc.). If you switch to third-party services through this App, the privacy policies of the third-party services are determined by themselves and are independent of this App, and we are not responsible for protecting the privacy of third-party services.
2. Data Collection and Acquisition
2.1 Information Proactively Provided
Information that you voluntarily provide to us during the use of this Application, including but not limited to:
2.1.1 Account Related Information
If you register to use this application account, you will need to provide an email address (if you use a third-party account Quick Login, you will receive basic information such as the unique identifier of the third-party account that you authorize, a nickname, and so on) for account login, authentication, security notifications, and service push.
2.1.2 Entering and Uploading Information
Text instructions, spoken content, uploaded documents, images, audio, and other materials that you enter when using AI services are used by this Application to generate matching results, complete analysis tasks, and optimize the service experience. You control and are responsible for the legality of this information.
2.2 Automatically Collected Information
To ensure the proper operation of the application and optimize the effectiveness of AI services, we will automatically collect relevant information generated by your use of this application, strictly following the “data minimization” principle:
2.2.1 Device Information
Includes device model, OS version, unique device identifiers (such as UUID, OAID), network type (WiFi/mobile network), IP address attribution (precise only to the country/region level), for adapting to AI capabilities, troubleshooting operations, and preventing security risks.
2.2.2 Usage and Logging Information
Includes AI service usage records (feature type, duration of use, type of generated content), operation logs, error reporting, application access time, used to analyze user behavior patterns, optimize AI model response efficiency, and fix technical problems.
3. Purposes and ways of data use
3.1 Core AI Service Provision
3.1.1 Service Implementation
Based on your input instructions and uploads of materials, run AI models to generate corresponding content, complete data analysis, provide intelligent Q&A services, and more, ensuring that the services accurately match your needs.
3.1.2 Service Continuity Assurance
Temporarily stores your conversation transcripts, generated content, and action preferences for cross-device synchronization and history query functionality. You can manually delete this type of data at any time, and once deleted, it‘s irreversible.
3.2 AI Services Optimization and Improvement
3.2.1 Model Optimization
Use anonymized, deidentified usage data (not containing personally identifiable information) for training and optimization of AI models to improve model response speed, content generation accuracy, and service stability, ensuring compliance with ISO/IEC 42001 artificial intelligence management system standards.
3.2.2 Experience optimization
Analyze user preferences using log information to optimize application interface design, feature interaction logic, and provide you AI service recommendations that are more relevant to your needs, without forcing push of irrelevant content.
3.3 Compliance and security assurance
It is used to prevent, detect and handle fraud, misuse of AI services, uploading illegal content, and other irregularities. It complies with international data protection regulations and related legal requirements, protects your legitimate rights and interests as well as those of others, and prevents security risks from AI-generated content.
4. Data Storage and Protection
4.1 Storage Specifications
4.1.1 Storage locations
Your personal data will be stored in data centers compliant with ISO/IEC 27001 Information Security Management System standards. The specific storage locations will be reasonably arranged according to the requirements of your region and data regulations, ensuring that the level of data protection does not fall below the relevant international standards.
4.1.2 Storage Period
Store your personal data only for the period necessary to fulfill the purposes of use stipulated in this Policy agreement: Account information is retained for 180 days from the date you actively sign out of the account; conversation transcripts, generated content are retained until you manually delete them or they are automatically deleted after signing out of the account; usage log information is retained for no more than 12 months; except as required by law and regulations.
4.2 Security Protection Measures
4.2.1 Technical Protection
Techniques such as HTTPS encrypted transmission, data encrypted storage, access permissions control, security vulnerability scanning, and penetration testing are used to prevent personal data from being illegally obtained, tampered with, leaked, or damaged; AI training data is de-sensitized to ensure data security.
4.2.2 Management Protection
Strictly limit data access rights, authorize only necessary personnel to process personal data; conduct privacy protection training and audits for relevant personnel, sign non-disclosure agreements, clarify data processing responsibilities, and comply with ISO/IEC 27701 privacy information management system standards.
5. Data Sharing and Disclosure
5.1 Sharing limitations and scenarios
We promise not to sell or lease your personal data to any third party, only share it in the following limited circumstances, and appropriate safeguards will be taken before sharing:
5.1.1 Third-party service providers
In order to provide services such as AI computing support, cloud storage, etc., relevant data may be shared with strictly screened third-party service providers, such providers are required to comply with this Policy and the Data Protection Agreement, adopt equal levels of privacy protection measures, and may not be used without permission for other purposes.
5.1.2 Disclosure of Compliance Requirements
In accordance with the legal requirements of judicial authorities, regulatory bodies, or in order to comply with international legal and regulatory obligations, we may disclose necessary personal data. We will do our best to verify the legitimacy of the request before disclosing, and we will notify you to the extent permitted by law (unless prohibited by law and regulations).
5.2 Anonymous Use of Data
We can anonymize and de-identify personal data for processing that no longer points to any individual. The processed data can be used for statistical analysis, industry research, AI model training, and other purposes. This type of data can be freely used and shared.
6. User Data Rights
6.1 Core Rights
6.1.1 Access and Query Rights
You have the right to query the personal data we hold about you, including account information, conversation transcripts, usage logs, etc., which can be requested by contacting our customer service email address.
6.1.2 Correction and Supplementary Rights
If you find that your personal data is inaccurate or incomplete, you have the right to request us to correct or supplement it, and we will process it promptly after verification.
6.1.3 Right to delete (right to be forgotten)
You have the right to request us to delete your personal data when the purposes of the data processing have been achieved, the storage period has expired, or you withdraw your consent or log out of your account, except as otherwise required by law and regulations.
6.1.4 Right to Revoke Consent
You can revoke your consent to data processing at any time (for example, refusing to provide device information required for non-core functionality), but revoking your consent may result in some AI functions not working properly, and we will clearly inform you of the scope of the impact.
6.2 Ways of exercising your rights
You can submit a rights exercise application through the contact email provided at the end of this policy. We will verify and provide feedback on the processing results within 30 business days after receiving the application to ensure that your rights are effectively protected.
7. Data Protection for Minors
7.1 Applicable Prerequisites
This App is not intended for use by minors under the age of 16. If you are a minor, you must use this App with the consent and assistance of your guardian, and you must not voluntarily provide personal data.
7.2 Guardians‘ Rights
If a guardian discovers that a minor has unauthorized use of this App and provided personal data, they can notify us by contacting us via email. We will immediately verify and delete the relevant data, while suspending the use of that account.
8. Policy Updates and Notifications
8.1 Policy Updates
We may amend this Privacy Policy in accordance with changes in international data regulations and upgrades to AI service capabilities. The revised policy will be published in a prominent location within the application and will be marked with the new effective date to ensure compliance with the latest compliance requirements.
8.2 Notification Methods
Critical revisions will be notified to you via app pop-ups, account-linked mailboxes, and so on, and your continued use of this app is considered to agree to the revised policy. You can view the latest version of the privacy policy within the app at any time.
9. Processing of Sensitive Personal Information
9.1 Processing Principles
If your input content, uploaded materials contain sensitive personal information such as biometrics, health data, religious beliefs, etc., we will only process them with your separate consent, clearly informing you of the purpose of the processing and the impact on your rights and interests.
9.2 Special Restrictions
The use of sensitive personal information for non-business core functions such as AI model training and ad push is prohibited. After processing, sensitive personal information will be immediately deleted without additional retention.
10. Contact
If you have questions about this Privacy Policy, need to exercise your data rights, or report privacy-related concerns, please contact us at the following email address: franklinepeter41@gmail.com. We will respond promptly and process your claim within 30 business days.
The final interpretation of this Privacy Policy belongs to the entity operating Hime AI.