Findema APP Privacy Policy

Update Date: July 01, 2025

Effective Date: July 01, 2025

Welcome to use the Source Factory APP (hereinafter referred to as "this application"). We highly value your privacy and personal information security. This privacy policy aims to clearly explain to you how we collect, use, store, and protect your personal information, as well as the rights you enjoy. Please read and understand this policy carefully before using this application.

I. Platform Compliance Statement

1. ‌Apple App Store‌
   • This policy strictly complies with Section 5.1.1 of the App Store Review Guidelines, explicitly listing all collected data types (such as device identifiers, location data) and distinguishing between essential and optional information.
   • Privacy label declaration: Device identifiers are used for crash analysis, location data is only used after user authorization. Official policy link: Apple Privacy Policy.
2. ‌Google Play‌
   • Complies with the "User Data" section requirements of the Google Play Developer Program Policy, prohibiting irrelevant permission calls, specifies server locations.
   • Data security certification: ISO 27001 certified. Official policy link: Google Privacy Standards.

II. Core Content (Common to Both Platforms)

1. Data Collection and Usage

• ‌Device Identifiers (IMEI/OAID)
• To ensure system stability and security when using our products/services, prevent illegal access to your personal information, and more accurately prevent fraud and protect account security
• ‌User Email
• For account registration and login (as a unique identifier for creating accounts, password recovery, and receiving security verification codes)
• ‌Camera/Album Permissions
• To enable users to upload images for visual search.
• ‌Search History and Commission Requests
• To allow users to conveniently view their previous search records and commission history
• ‌Credits Usage and Order Information (New)
• To support image search deductions, credits package purchases, and order inquiries, we will record your credits balance, recharge history, deduction details, order number, payment amount, and payment time for billing, abuse prevention, and after-sales service.
• Payment is processed through PayPal. We do not store your credit card or payment password information.
• ‌Feedback Content (New)
• When you submit feedback, you may upload images and provide titles and descriptions. This information is used for issue diagnosis and product optimization, and is accessible only to internal technical support staff.
• ‌Personal Center Information
• The credits balance and account status displayed in your personal center are generated based on the above data to enhance transparency and user experience.
• ‌Third-party Account Login (Apple/Google/Facebook)
• To allow for convenient and fast registration and login, we support signing in via Apple, Google, or Facebook accounts. Upon your authorization, we will obtain the following information:
• Apple Sign In: Only your nickname and email address (if you choose “Hide My Email”, a unique anonymous relay email will be provided).
• Google Sign In: Publicly available Google account information including nickname, profile picture, and email address.
• Facebook Login: Nickname, profile picture, and email address (subject to your privacy settings on Facebook).
• The aforementioned information is solely utilized for establishing and linking your account within this application and shall not be employed for any other purposes. You may directly contact us to unbind the corresponding account or unbind third-party accounts.

2. Third-party SDK Compliance

• ‌DCloud uni-app
• ‌Purpose: Provides application framework support, statistical analysis, and log monitoring.
  • Collected data: Unique device identifiers (IMEI/OAID), SIM card IMSI, application launch logs.
  • Privacy Policy: DCloud User Terms of Service.
• ‌Payment SDK (PayPal)
  • Purpose: Enables payment processing when users purchase credits packages.
  • Collected data: Transaction receipts, device identifiers, network environment (processed directly by PayPal).
  • Privacy Policy: PayPal Privacy Policy
• ‌Third-party Login SDKs (Apple Sign In / Google Sign In / Facebook Login)
  • Purpose: Allows users to quickly register and log in using their Apple, Google, or Facebook accounts.
  • Collected Data:
  • Apple Sign In: Anonymous device identifier, nickname, email address (or anonymized relay email).
  • Google Sign In: Google Account ID, nickname, profile picture, email address.
  • Facebook Login: User ID, nickname, profile picture, email address (if publicly available).
  • Data Handling: All information is transmitted securely via OAuth 2.0 protocol encryption. We do not access or store your third-party account passwords.
  • Privacy Policies:
  • Apple Privacy Policy
  • Google Privacy Policy
  • Facebook Privacy Policy

3. Data Security and Storage

• Encryption technology: Sensitive data (such as passwords and payment credentials) is stored using AES-256 encryption.
• Storage duration: All associated data will be deleted within 30 days after account cancellation; order information is retained for 6 months to support after-sales service.
• Cross-border transmission: Servers are located in Alibaba Cloud's US data center, complying with GDPR and PIPL requirements, with standard contractual clauses in place to ensure data security.

III. User Rights Protection

1. ‌Transparent Control Rights‌
   • Permission management:
     • iOS: Settings → Privacy → Disable camera/album permissions.
     • Android: Settings → App permissions → Turn off "Phone permission" (stops device ID collection).
   • Basic search functions (such as patent viewing) remain available when authorization is denied.
2. ‌Data Operation Rights‌
   • Query/Correction: Self-service through "Account Settings - Personal Information".
   • Data deletion: Supports deletion of individual search history or feedback entries; automatic data clearance after account cancellation.
   • Withdraw consent: Users may withdraw processing authorization at any time via system settings or by contacting customer service.
   • For accounts created through third-party login, you can directly contact us to unbind the corresponding account, and the system will stop using the third-party information.

IV. Children Protection Clause

• Registration prohibited for users under 13 (COPPA compliance).
• No active collection of data from users aged ≤16 (GDPR compliance). If such data is inadvertently collected, it will be deleted within 24 hours.

V. Policy Updates and Notifications

• Significant changes (such as data usage adjustments) will be notified through:
  • ‌iOS‌: In-app pop-ups (compliant with Apple push specifications).
  • ‌Android‌: Google Play Store update announcements.
• Users can regularly view historical versions through "Account Settings - Privacy Center". This update includes information on credits purchases, order management, feedback submission, and third-party account login (Apple/Google/Facebook).

VI. Contact Us

• ‌Apple-specific channel‌: Submit requests via Privacy Inquiry.
• ‌Google-specific channel‌: "Data Request" form in the developer backend.
• ‌General channels:
  • Phone: 400-118-9662
  • Email: support@cnfdm.com
  • Address: Building 2, 1st Floor, R&D Park Zone B, High-tech District, Ningbo, Zhejiang, China