XenLock Privacy Policy

Last Updated: 2025/12/18 Effective Date: 2024/3/7

XenLock (hereinafter referred to as “we”, “us”, or “our”) is committed to protecting your personal privacy.

This Privacy Policy (“this Policy”) applies to the products and/or services we provide. When you use our services, we may collect and process your relevant information. Therefore, please read this Policy carefully to understand our rules regarding the collection and processing of your personal information (including how we collect, use, store, and share such information), as well as the methods we provide for you to access, update, delete, and protect this information.

By agreeing to this Privacy Policy, or by starting or continuing to use our products or services in an appropriate manner without contacting us to express an objection, you are deemed to have fully understood and agreed to this Policy. If you have any questions, comments, suggestions, or complaints during the reading process—especially if you believe that our handling of personal information has infringed upon your lawful rights and interests—you may submit a complaint or suggestion through appropriate regulatory channels or contact us via the following method:

Privacy Matters: contact@xhjcn.ltd

This Policy mainly explains the following:

  1. What personal information we collect
  2. The purposes and legal bases for processing personal information
  3. With whom we share your personal information
  4. Self-start and associated start-up description
  5. Transfer of collected information
  6. Your rights related to personal information
  7. Information security protection measures
  8. Information retention period
  9. Protection of children’s personal information
  10. Statement on policy changes
  11. Contact us

Definitions

In this Policy:

  1. Personal Information:

    Various types of information recorded electronically or otherwise that can identify a natural person either independently or in combination with other information, or reflect specific activities of a natural person.

  2. Sensitive Personal Information:

    Including biometric information, communication records and content, health-related information, transaction information, precise location information, etc. When the collection of sensitive personal information is involved, we will obtain your explicit consent through prominent and clear notice before collection.

  3. Smart Devices:

    Non-standard computing devices produced or manufactured by hardware manufacturers that have human–machine interfaces and can transmit information via wireless networks.

  4. Application:

    Mobile applications (clients) developed by us that allow end users to remotely control smart devices.

I. Personal Information We Collect

To provide you with our services, we may require you to provide necessary personal information. If you do not provide such information, we may be unable to offer corresponding products or services.

1. Information You Voluntarily Provide

  1. Account Registration Information:

    When you register an account, we collect your account name and contact information, including email address, phone number, username, and login credentials. During your interaction with our products, we may also collect nickname, country and country code, language preference, or time zone information.

    If you choose to log in via a third-party account, we will obtain the information you authorize the third party to share (such as default avatar, nickname, and region) for quick login, in accordance with our agreement with the third party and their published privacy policy.

  2. User Feedback:

    When you submit feedback or suggestions, we may collect your email address, phone number, feedback content (including uploaded images or videos), and issue logs to help us promptly resolve application or device-related issues.

Information Collected Based on Additional Features

To provide a better user experience, we may collect and use your personal information for the following additional services. If you do not provide such information, core services will remain available, but these additional features may not function properly.

  1. Location-based Services:

    With your authorization, we collect location information to support device network configuration. You may disable location access at any time in your system settings.

  2. Album (Photo/Video Library) Access:

    Used for uploading photos or videos to report device issues.

  3. Storage Permission (Android):

    Used to ensure application stability, store files, images, and crash logs.

  4. Notification Permission:

    Used to push product or service-related notifications and alerts.

  5. Floating Window Permission (Android):

    Used to display real-time camera footage in a floating window.

  6. Bluetooth-related Services:

    Used for device control, status retrieval, discovery, and pairing.

  7. Face ID (iOS only):

    Used for secure and convenient password-free login. Face ID data is processed solely by the iOS system and is not collected or stored by us.

  8. Accelerometer and Gravity Sensors:

    Used for screen orientation adaptation, barcode/QR code scanning, or identity verification during tenant check-in.

  9. Facial Recognition Data:

    Facial photos are converted into facial feature values for face-unlock functionality. Facial photos are not stored. Feature values are stored only within the lock device and deleted upon reset.

II. Purposes and Legal Bases for Processing Personal Information

We process your personal information for the following purposes:

  1. Providing Services
  2. Improving Services
  3. Non-marketing Communications
  4. Legal Compliance

III. With Whom We Share Your Personal Information

We only share your personal information in ways you are aware of, including service providers, business partners, affiliates, or when required by law.

IV. Self-start and Associated Start-up Description

To ensure timely receipt of push notifications, the application may use self-start or associated start-up mechanisms as required for functionality.

V. Transfer of Collected Information

Your personal information may be transferred, stored, and processed across different countries or regions in compliance with applicable laws.

VI. Your Rights Regarding Personal Information

You have the right to access, modify, delete, or withdraw consent regarding your personal information at any time.

VII. Information Security Measures

We adopt reasonable physical, administrative, and technical measures to protect your personal information.

VIII. Information Retention Period

We retain personal information only for the minimum period necessary to fulfill the purposes described in this Policy or as required by law.

IX. Protection of Children’s Personal Information

We attach great importance to the protection of children’s personal information and comply with applicable laws regarding minors.

X. Policy Updates

We may update this Policy periodically and will notify you of any material changes through appropriate means.