Personal Information Protection and Privacy Policy
This Policy only applies to web service or APP of ZKBio Entrance.
Lastly updated on: Aug, 2022
If you have any question, comment or suggestion, please contact us via the following means:
Email: sales@zkteco.com
This Policy will help you understand the following:
n Personal information collection rules
n How we protect your personal information
n Your rights
n How we handle personal information of minors
n How this Policy is updated
n How to contact us
Xiamen ZKTeco Information Technology Co., Ltd. and its affiliates (hereinafter referred to "ZKTeco", or "Company" or "We") understands the importance of personal data and will do everything possible to protect your personal information. We are committed to preserving your trust in us by protecting your personal information based on the following principles: responsibility in accordance with authority, purpose specification, informed consent, minimal necessary, security safeguard, subject participation, openness and transparency, etc. ZKTeco also commits to protect your personal information by implementing appropriate security measures in accordance with industry accepted security standards.
Before using any products (or services), please read this Policy carefully and make sure you have fully understood and agreed to this Policy. By using any products or services, you acknowledge that you have fully understood and agreed to this Policy.
I Personal information collection rules
(1) Which of your personal information will be collected by us
1. When you use ZKBio Entrance, we will collect the following information of yours:
The service features we offer must operate based on specific data. If you choose to use such service features, you must provide or allow us to collect necessary information, including: User name, email address, phone number and device serial number.
2. You may choose to provide or allow us to collect the following information: personal photo, address, industry and company’s name.
Although such information is not necessarily required for running our service features, but it is very important for us as it may help us to improve our service quality and develop new products or services. We will not force you to provide such information and your denial will not affect your use of the service features.
3. When you use the service features, our software will request you to grant the following system privileges related to personal information: enable live photos, and enable geo-location.
If you deny the request, we will not be able to provide the service features. In addition to the above, you may choose to grant our software other system privileges.
When you contact us, we may keep a record of the contents of our communication or your contact information, which allows us to contact you or assist you with problems, as well as the solution of related issues and their outcomes.
(2) How we use your personal information
1. For necessary personal information, we will use the following information to maintain and improve existing service features and develop new ones.
Information Type | Purpose of Use | Storage Period |
User name | Used for user identification | During service period |
Email Address | Used to assign an account name | During service period |
Phone number | Used to assign an account name | During service period |
Device serial number | Used to register devices to get online and access corresponding services. | During service period |
2. For unnecessary personal information, we will use that for the following purposes:
Information Type | Purpose of Use | Storage Period |
Personal photo | Used to upload device photos during troubleshooting | During service period |
Address | Used to divide the area where the device is located, facilitating device classification and management | During service period |
Industry | Used to statistics that devices were used on which industry. | During service period |
Company | To help operation company to know they customer information | During service period |
(3) How we use Cookies and similar technologies
1. Cookies
Cookies and similar technologies are widely used in the Internet. To ensure the smooth operation of our website, we will store a small data file named Cookie in your computer or mobile device. A Cookie typically contains identifiers, site names, and some numbers and characters. With the Cookie, our website can store your preference and other data. We will not use Cookies for any other purpose than that specified in this Policy. You may manage the Cookie according to your own preference or delete it. You may choose to delete all Cookies saved in your computer, and most of the web browsers have a feature to block the Cookies. But if you do this, you will need to change the user settings each time you visit our website.
2. Other similar technologies
In addition to Cookies, we will also use other similar technologies such as website beacons and pixel tags on our website to help us understand your preference for products or services and improve our customer service.
(4) How we share, transfer and disclose your personal information
1. Share
Without your explicit consent, we will not share your personal information with any other company, organization and individual.
We may share your personal information with an external institution if required by laws and regulations or government authorities.
2. Transfer
We will not transfer your personal information to any other company, organization or individual, except under the following circumstances:
a) Transfer with your explicit consent: with your explicit consent, we will transfer your personal information to other parties;
b) If any merger, acquisition or bankruptcy process involves transfer of your personal information, we will request the new company or organization in possession of your personal information to continue to be bound by the personal information protection policy, or we will request the new company or organization to seek your permission again.
3. Public disclosure
We will only disclose your personal information in the following circumstances:
a) With your explicit consent;
b) Law-based disclosure: we may disclose your personal information in cases where such disclosure is required by laws, legal proceedings, litigation or government authorities, including in cases:
² Related to personal information controller’s performance of obligations prescribed by laws and regulations;
² Directly related to national security or national defense security;
² Directly related to public safety, public health or vital public interests;
² Directly related to crime investigation, prosecution, trial and judgment execution;
² Where such disclosure is necessary for protecting the vital legitimate interests such as life and property of the subject of personal information or any other individual while it is difficult to obtain the consent therefrom;
² Where the personal information involved is disclosed to the public by the subject itself;
² Where such disclosure is necessary for signing and performing the contract concerned according to the requirements of the subject of personal information;
² Where the personal information is collected from legally and publicly disclosed information, such as legal news reports and publicized government information;
² Where such disclosure is necessary for maintaining safe and stable operation of the products/services provided, such as identification or disposal of failures of products/services;
² Where the personal information controller is a news agency and such disclosure is necessary for legal news reporting;
² Where the personal information controller is an academic research institute, and such disclosure is necessary for statistics or academic research in the public interest, and the personal information contained in the results of academic research or description provided externally is de-identified.
Please note that according to law, sharing, transferring or disclosing personal information does not include the scenario in which personal information is de-identified in such a way that the recipient of such information cannot restore the information or re-identify the subject of personal information before it is shared, transferred, or disclosed. As a result, we may store or process such information without notifying you or obtaining your consent.
II How we protect your personal information
(1) We are very concerned about the security of personal data. We will adopt appropriate physical, management and technical measures to protect your personal data from unauthorized access, disclosure, use, modification, damage, or loss. For example, we will protect data confidentiality using encryption technology, protect data from malicious attacks using protection mechanisms, limit the access to personal data to authorized personnel by deploying the access control mechanism, and enhance the awareness of personnel of the importance of personal data protection by providing security and privacy protection training. We will try our best to protect your personal data, but you should be aware that no security measure is impeccable.
(2) We will store your personal information for as long as is necessary to achieve the goals outlined in this Policy, unless extension of such period is required or permitted by law. The data storage period may vary due to different scenarios and different products and services. We mainly determine the storage period based on the following considerations: time needed to complete our services, which includes providing products and services, maintaining corresponding transaction and business records, controlling and improving the performance and quality of products and services, ensuring safety of systems, products and services and dealing with possible inquiries or complaints from users and problem identification; whether the user concerned agrees with a longer storage period; and special requirements of laws or contracts. We will keep your account registration information for as long as we need it to provide you with services. You may also choose to cancel your account. After your cancellation, we will stop providing products and services to you based on your account, and will delete your personal data, unless otherwise required by law.
(3) In case of unfortunate occurrence of any personal information security incident, we will notify you in accordance with laws and regulations (within no later than 30 natural days) of the particulars and possible impact of the incident, measures we have taken or will take, suggestions on how you should prevent and minimize risks and remedies available to you, etc, via email, letter, phone call or notification. If it is difficult to inform all subjects one by one, we will post an announcement in a reasonable and effective manner. Meanwhile, we will make a report on how we have handled the incident to the higher authority in accordance with the requirements of the regulatory body.
(4) Despite our security measures, the Internet environment is not 100% safe. Please be aware that there is no "perfect security measure" on the Internet, but we will try our best to ensure safety of your information.
(5) To ensure good browsing experience, a third party other than us or our partners (hereinafter referred to as the "third party") may send contents or website links to you. We have no control over the third party. You may choose whether to access the links, contents, products, and services provided by the third party. We have no control over the third-party privacy or data protection policies as the third party is not bound by this Policy. Before you submit personal information to the third party, please read its privacy protection policies.
III Your rights
In accordance with Chinese laws, regulations, standards, and established practices of other countries and jurisdictions, we will protect your rights to:
(1) Access your personal information
You have the right to access your personal information, unless otherwise provided by laws and regulations. You may access your personal information by APP’ account to check.
If you are unable to access your personal information through the above link, you can always use our Web Form to contact us, or send an email to service@zkteco.com.
For other personal information generated during your use of our products or services, we will provide you with such information as long as it does not require much of our inputs. If you want to exercise your right to access your personal data, please send an email to service@zkteco.com.
(2) Correct your personal information
Upon noticing any of your personal information we processed is wrong, you have the right to request us to make corrections. You may submit the request via means listed in Item "(1) Access your personal information".
If you cannot submit the request through the above link, you can email to service@zkteco.com.
(3) Delete your personal information
In the following cases, you may request us in writing to delete your personal information:
1. We process your personal information in violation of laws and regulations;
2. We collect or use your personal information without your consent;
3. We process personal information in violation of the agreement with you;
4. You can no longer use our products or services, or you have canceled your account; or
5. We are no longer providing you with products or services.
In circumstances prescribed by applicable laws, you have the right to revoke your consent to our processing of your personal data at any time. However, the cancellation will have no bearing on the legality and effectiveness of your personal data that we previously processed with your consent, or other appropriate legitimacy.
(4) Respond to your request
To safeguard security, you may need to provide a request in writing or otherwise prove your identity. We may ask you to provide proof of your identity before processing your request.
We will give you a response within 14 days. If you are unsatisfied, you may complain through the following means: service@zkteco.com.
We do not charge a fee for your reasonable request in principle. However, depending on the circumstances, we may charge a fee to cover our costs for repeated requests or requests that exceed reasonable boundaries. We may reject requests that are unnecessarily repetitive or require massive technological inputs (such as development of new systems or fundamental modification of existing practices), or requests that are detrimental to the legitimate rights and interests of others or are very impracticable (such as involving information stored on backup tapes).
We may not respond to your request in the following circumstances:
1. The request is related to personal information controller’s performance of obligations prescribed by laws and regulations;
2. The request is directly related to national security or national defense security;
3. The request is directly related to public safety, public health or vital public interests;
4. The request is directly related to crime investigation, prosecution, trial and judgment execution;
5. The personal information controller has sufficient evidence that the subject of personal information is subjectively malicious or abusing his/her rights;
6. Not responding to the request is for protecting the vital legitimate interests such as life and property of the subject of personal information or any other individual, while it is difficult to obtain the consent therefrom;
7. Responding to request of the subject of personal information will bring serious damage to the legitimate rights and interests of the subject or any other individual or organization; or
8. The request involves trade secrets.
IV How we handle personal information of minors
Our products, website and services are mainly designed for adults. Without consent of parents or guardians, minors shall not create their own account. If you are a minor, it is recommended that you ask your parents or guardian to read this Policy carefully, and only use our services or information provided by us with consent of your parents or guardian.
We will only use or disclose personal information of minors collected with their parents' or guardians' consent if and to the extent that such use or disclosure is permitted by law or we have obtained their parents' or guardians' explicit consent, and such use or disclosure is for the purpose of protecting minors.
Upon noticing that we have collected personal information of minors without the prior consent from verifiable parents, we will delete such information as soon as possible.
V How this Policy is updated
Our personal information protection and privacy policy is subject to change from time to time.
Without your explicit consent, we will not cut your rights you are entitled to under this Policy. We will post any change to this Policy on our website.
For major changes, we will also provide a more prominent notification (for some services, we will send notice via email, stating the particulars of changes to this Policy).
Major changes referred to in this Policy include, but are not limited to:
1. Major changes of our service model, such as change of purpose, type or way of use of personal information;
2. Major changes in ownership structure or organizational structure, such as changes caused by business adjustment, bankruptcy, merger and acquisition;
3. Change of the party with which we share personal information or to which we transfer or disclose personal information;
4. Major changes in your rights of participating in the handling of personal information or the way you exercise such rights;
5. Changes of the department responsible for personal information security, or of the contact information or of the channel for filing a complaint;
We will also archive the previous versions of this Policy for your reference.
VI How to contact us
If you have any question, comment or suggestion about this Policy, please contact us by email: service@zkteco.com,. Normally, we will reply within xx days. More contact information is available on our website (http://www.zkteco.com).