Statement for Using Third-Party SDK

We use third-party software tool development kits (SDK) embedded in our mobile applications, and we conduct strict security monitoring of the application programming interfaces (API) and third-party SDK used by our authorized partners to obtain relevant information. We agree with our authorized partners on strict data protection measures so that they may handle personal information in accordance with the express purposes, manner, scope of use, service descriptions, relevant privacy policy, and any other relevant confidentiality and security measures. Some third-party SDK may call or obtain your information. We list the names, purposes of use, types of personal information collected, operating companies, official websites and links to privacy policies of these third-party SDK as follows:

 

We may adjust the third-party SDK we use and modify this statement in a timely manner to meet our constantly evolving business needs and regulatory requirements. Please note that third-party SDK may also change the type of personal information they collect due to version upgrades, function optimization, etc. We attach links to the official websites and privacy policies of the operating companies of SDK for your reference, please refer to their published official documents.

I. Category of Login to Share

1. Tencent QQ Connect

Purpose of use: to provide users with a third-party login function for QQ and help them share information to QQ

Using Scenario: if users login through QQ and share information to QQ         

Collecting or Sharing Method: SDK native capture

Type of personal information collected: device information (IMEI), App installation list

Operating Company: Shenzhen Tencent Computer System Co. LTD

Official website: https://connect.qq.com/

Link to Privacy Policy: https://wiki.connect.qq.com/QQ互联SDK隐私保护声明

 

2. WeChat Open Platform

Purpose of use: to provide users with a third-party login function for WeChat and help them share information to WeChat

Using Scenario: if users login through Wechat and share information to Wechat         

Collecting or Sharing Method: SDK native capture  

Type of personal information collected: network connectivity status, App installation list,device information (IMEI, MAC address)         

Operating Company: Shenzhen Tencent Computer System Co. LTD

Official website: https://open.weixin.qq.com

Link to Privacy Policy:

https://weixin.qq.com/cgi-bin/readtemplate?lang=zh_CN&t=weixin_agreement&s=privacy

 

3. Sina Weibo

Purpose of use: to provide users with a third-party login function for Weibo and help them share information to Weibo

Using Scenario: if users login through Weibo and share information to Weibo         

Collecting or Sharing Method:SDK native capture

Type of personal information collected: network connectivity status,device information (MAC address, IMEI, WIFI SSID, IMSI, SimSerialNumber)       

Operating Company: Beijing Weimeng ChuangKe Network Technology Co., Ltd

Official website: https://open.weibo.com

Link to Privacy Policy:

https://weibo.com/signup/v5/privacy?spm=a1zaa.8161610.0.0.4f8776217Wu8R1

 

4. Facebook

Purpose of use: to provide users with a third-party login function for Facebook and help them share information to Facebook

Using Scenario: if users login through Facebook and share information to Facebook        

Collecting or Sharing Method:SDK native capture

Type of personal information collected: network connectivity status,device information

Operating Company: Facebook, Inc.

Official website: https://developers.facebook.com/

Link to Privacy Policy: https://www.facebook.com/privacy/explanation

 

5. Twitter SDK

Purpose of use: to provide users with a third-party login function for Twitter and help them share information to Twitter.

Using Scenario: if users login through Twitter and share information to Twitter        

Collecting or Sharing Method:SDK native capture

Type of personal information collected: network connectivity status,device information

Operating Company: Twitter, Inc.

Official website: https://twitter.com/

Link to Privacy Policy: https://twitter.com/en/privacy

 

6. Ali Cloud One-Click Login

Purpose of use: to provide users with one-click login function through Ali Cloud.

Using Scenario: if users login using Ali one-click login function         

Collecting or Sharing Method: SDK native capture

Type of personal information collected: IP address, network type, IMSI, device model, mobile operating system

Operating Company: Alibaba Cloud Computing Co., LTD

Official website: https://www.aliyun.com/

Link to Privacy Policy:

http://terms.aliyun.com/legal-agreement/terms/suit_bu1_ali_cloud/suit_bu1_ali_cloud201902141711_54837.html?spm=5176.19720258.J_9220772140.90.e9392c4aI0ZPtl

7.  Singpass One-Click Login

Purpose of use: to provide users with one-click login function through Singpass.

Using Scenario: if users login using Singpass login function        

Collecting or Sharing Method: SDK native capture

Type of personal information collected: IP address, network type, IMSI, device model, mobile operating system

Operating Company: Assurity Trusted Solutions Pte Ltd

Official website: https://www.singpass.gov.sg/main/

Link to Privacy Policy:

https://www.singpass.gov.sg/home/ui/terms-of-use

https://www.assurity.sg/privacy.html

 

 

8. IPification One-Click Login

Purpose of use: to provide users with mobile phone number verification during registration and login to improve customer experience.

Using Scenario: if users registrate and login using IPification one-click login function   

Collecting or Sharing Method: User-initiated input or SDK native capture

Type of personal information collected: mobile phone numbe, network connectivity status, basic device information (device type, device model, mobile operating system, whether dual card), MNC, MCC, IP address

Operating Company: BENEFIT VANTAGE LIMITED

Official website: ​https: //www.ipification.com/

Link to Privacy Policy: https://www.ipification.com/legal

II. Category of Push

1. Aurora Push

Purpose of use: to implement mobile app offline message push.

Using Scenario: if the App pushes offline messages to users' devices         

Collecting or Sharing Method:SDK native capture

Type of personal information collected: device identifier (IMEI, Android ID, MAC), application information (App installation list), device parameters and system information (device type, model, operating system type, hardware information), network information (IP address, Wi-Fi information, base station information)

Operating Company: Shenzhen Hexun Huagu Information Technology Co., LTD

Official website: https://www.jiguang.cn/

Link to Privacy Policy: https://www.jiguang.cn/license/privacy

 

2. Huawei Push

Purpose of use: to implement Huawei device app offline message push.

Using Scenario: if the App pushes offline messages to users' Huawei devices         

Collecting or Sharing Method: SDK native capture

Type of personal information collected: AAID, Token

Operating Company: Huawei Device Co., LTD

Official website:

https://developer.huawei.com/consumer/cn/codelab/HMSPushKit/index.html#0

Link to Privacy Policy: https://consumer.huawei.com/cn/privacy/privacy-policy/

 

3. Xiaomi Push

Purpose of use: to implement Xiaomi device app offline message push.

Using Scenario: if the App pushes offline messages to users' Xiaomi devices        

Collecting or Sharing Method: SDK native capture

Type of personal information collected: device identifier (IMEI, MAC), application information (system notification switch status, App installation list), device parameters and system information (device type, model, operating system type, hardware information), network information (IP address, Wi-Fi information, base station information)

Operating Company: Beijing Xiaomi Mobile Software Co. LTD

Official website: https://dev.mi.com/console/appservice/push.html

Link to Privacy Policy: https://dev.mi.com/console/doc/detail?pId=1822

4. VIVO Push

Purpose of use: to implement VIVO device app offline message push.

Using Scenario: if the App pushes offline messages to users' Vivo devices         

Collecting or Sharing Method:SDK native capture

Type of personal information collected: device identifier (IMEI, MAC), device parameters and system information (device type, model, operating system type, hardware information), network information (IP address, Wi-Fi information, base station information)

Operating Company: Vivo Mobile Communication Co., LTD

Official website: https://dev.vivo.com.cn/home

Link to Privacy Policy: https://www.vivo.com.cn/about-vivo/privacy-policy

 

5. OPPO Push

Purpose of use: to implement OPPO device app offline message push.

Using Scenario: if the App pushes offline messages to users' OPPO devices         

Collecting or Sharing Method: SDK native capture

Type of personal information collected: device information (IMEI number, Serial Number, device model, phone operating system version), network information (IP or domain connection result, current network type), notification bar status (notification bar permission, user click behavior)

Operating Company: GuangDong Oppo Mobile Telecommunications Corp., Ltd.

Official website: https://push.oppo.com/

Link to Privacy Policy: https://www.oppo.com/cn/service/help/640?id=640&name=服务政策&hdscreen=1

 

6. Google Push

Purpose of use: to implement Google device app offline message push

Using Scenario:if the App pushes offline messages to users' Google devices         

Collecting or Sharing Method:SDK native capture

Type of personal information collected: device information (Android ID, Google Advertising ID, phone operating system version), network information (network type, IP or domain connection result)

Operating Company: Google Inc.

Official website: https://firebase.google.com/docs/cloud-messaging

Link to Privacy Policy: https://firebase.google.com/support/privacy?hl=zh-cn

 

III. Category of Statistics

1. Sensors SDK

Purpose of use: for statistics and analysis of data

Using Scenario: if users use the pre-set processes and functions        

Collecting or Sharing Method: SDK native capture

Type of personal information collected: network status, device property information (hardware serial number, unique device identifier, IMEl, network device hardware MAC address, software list, IMSI information, advertising identifier IDFA), device connection information (browser type, telecom operator, language used) and device status information (device sensor data, device app installation list) 

Operating Company: Sensors Network Science and Technology (Beijing) Co., Ltd.

Official website: https://www.sensorsdata.cn/

Link to Privacy Policy: https://www.sensorsdata.cn/terms/privacy.html

 

IV. Category of Advertisement Placement

1.  Google Ads ID SDK

Purpose of use: to calculate the effect of various promotion channels on GooglePlay and improve promotion efficiency

Using Scenario:if users agree to the privacy policy, the app is initialized for the first time      

Collecting or Sharing Method:SDK native capture

Type of personal information collected: Google Ads ID,device information

Operating Company: Google LLC 

Official website: https://developers.google.com/identity/sign-in/android/

Link to Privacy Policy: https://policies.google.com/privacy

 

2. AppsFlyer Platform Promotion & Statistics 

Purpose of use: to promote advertisements.

Using Scenario: if users agree to the privacy policy, the app is initialized for the first time      

Collecting or Sharing Method: SDK native capture

Type of personal information collected: network connectivity status,device identification information (IDFA, GAID, IDFV, AAID, MAC address), user uuid.

Operating Company: AppsFlyer Ltd.

Official website: https://www.appsflyer.com/​

Link to Privacy Policy: https://www.appsflyer.com/legal/services-privacy-policy/​

 

3. Huawei Ads ID SDK

Purpose of use: to count the marketing effect of Huawei applications and improve the promotion efficiency.

Using Scenario:if users who use Huawei mobile devices agree to the privacy policy and the App initializes for the first time

Collecting or Sharing Method:SDK native capture

Type of personal information collected: huawei App market advertising ID, device information

Operating Company: Huawei Technologies Co., Ltd

Official website: https://developer.huawei.com/

Link to Privacy Policy: https://consumer.huawei.com/cn/privacy/privacy-policy/

V. Others

1.  Ali Cloud DNS Encryption

Purpose of use: to enhance service domain name resolution capability, reduce network problems in the process of App access to the server, and improve user experience.

Using Scenario: if users cannot resolve the domain name when using the App to make a request to the server, resulting in the inability to access the service

Collecting or Sharing Method: SDK native capture

Type of personal information collected: network connectivity status,Network information (App network request service domain name)

Operating Company: Alibaba Cloud Computing Co., LTD

Official website: https://www.aliyun.com/

Link to Privacy Policy:http://terms.aliyun.com/legal-agreement/terms/suit_bu1_ali_cloud/suit_bu1_ali_cloud201902141711_54837.html?spm=5176.19720258.J_9220772140.90.e9392c4aI0ZPtl

 

2. Huawei App Gallery Connect

Purpose of use: to collect the App running status of online users, record network connectivity status of App and improve APP stability

Using Scenario: record the App crashes or network problems, and upload when connecting to Wi-Fi         

Collecting or Sharing Method:SDK native capture

Type of personal information collected: network status, App installation list,Huawei ID information, device identifier, setting information of operating system , device hardware information, network information, operator information

Operating Company: Huawei Device Co., LTD

Official website: https://developer.huawei.com/consumer/cn/

Link to Privacy Policy: https://consumer.huawei.com/cn/privacy/privacy-policy/

 

3. Firebase

Purpose of use: to record App running crashes and network request failure issues

Using Scenario: record the App crashes or network problems, and upload when connecting to Wi-Fi         

Collecting or Sharing Method: SDK native capture

Type of personal information collected: network connectivity status, device identification information (IDFA, GAID, IDFV, AAID, MAC address), user uuid, Google Advertising ID

Operating Company: Google LLC 

Official website: https://firebase.google.com/

Link to Privacy Policy: https://policies.google.com/privacy

 

4. GEETEST SDK 

Purpose of use: to provide image verification code verification

Using Scenario: if users login        

Collecting or Sharing Method: SDK native capture

Type of personal information collected: device information (cellular network type, device name, device model, system type, system version, timestamp of application device information)

Operating Company: Wuhan JiYi Network Technology Co., LTD

Official website: https://www.geetest.com/ 

Link to Privacy Policy: https://www.geetest.com/Private

 

5. Google Recaptcha

Purpose of use: to prevent malicious programs from attacking interfaces such as login and registration, and to reduce the interference of authentication to users

Using Scenario: If users enter the phone number and password, it is collected when clicking on login. If users fail the verification for the first time, the second time is in the nine-square verification.

Collecting or Sharing Method: SDK native capture

Type of personal information collected: browser type and settings, device type and settings, operating system, mobile network information (including carrier name and phone number), and app version number

Operating Company: Google LLC

Official website: https://firebase.google.com/

Link to Privacy Policy: https://policies.google.com/privacy

 

6. QrCodeScan-Zxing

Purpose of use: to generate the QR code image corresponding to the URL for users easily extract the link information.

Using Scenario: if users share stock details page and post details         

Collecting or Sharing Method: SDK native capture

Type of personal information collected: none

Operating Company: GitHub Inc. 

Official website: https://github.com/zxing/zxing/wiki/Getting-Started-Developing

Link to Privacy Policy: https://zxing.github.io/zxing/licenses.html

 

7. Qiniu Cloud DNS SDK

Purpose of use: to enhance the service domain name resolution capability to reduce network problems during App access to the server and improve user experience

Using Scenario: if the App resolves a network domain name before users initiate  network requests         

Collecting or Sharing Method: SDK native capture

Type of personal information collected: IP address, network information (App network request service domain name)

Operating Company: GitHub Inc.

Official website: https://www.qiniu.com

Link to Privacy Policy: 

https://github.com/qiniu/happy-dns-java/blob/master/LICENSE

 

8. Tencent Cloud        

Purpose of use: upload video

Using Scenario: users upload video when posting  

Collecting or Sharing Method: SDK native capture  

Type of personal information collected: MAC address, IP address

Operating Company: Shenzhen Tencent Computer System Co., Ltd.     

Official Website: https://cloud.tencent.com          

Link to Privacy Policy: https://cloud.tencent.com/document/product/301/11470   

 

9. Volcano Live SDK         

Purpose of use: to enhance the quality of live streaming to provide users with a stable and smooth webcasting experience    

Using Scenario: users enter the community to watch a live stream 

Collecting or Sharing Method: SDK native capture        

Type of personal information collected: user community nickname, user uuid, device identification information (device name, device model, system type, system version)      

Operating Company: Beijing Volcano Engine Technology Co., Ltd.           

Official Website: https://www.volcengine.com/

Link to Privacy Policy:

https://sf6-draftcdn-tos.pstatp.com/obj/ies-hotsoon-draft/VolcLive/60f47d15-7d66-4b6d-adc3-517b3c9d66d5.html

  

VI. Sdk Applied When Using the Account Opening Function Provided By Tiger Brokers

1.  Face++ SDK

Purpose of use: for personal verification when the third party provides account opening service to enhance service security.

Using Scenario: if users open an account for identity verification         

Collecting or Sharing Method: SDK native capture

Type of personal information collected: network status, device information (mobile phone model, brand, manufacturer, name), system information (such as system version, system type, fingerprint, etc.), gravity sensor information, camera information, application list, bluetooth, process information, application calling stack information, camera settings (flash, camera), user face image, personal documentation images (only used for image information identification, do not store or share user information)  

Operating Company: Beijing Megvii Technology Limited

Official website: https://www.faceplusplus.com.cn/

Link to Privacy Policy: https://www.faceplusplus.com.cn/privacy-policy/

2. Onfido SDK 

Purpose of use: for personal verification when the third party provides account opening service to enhance service security.

Using Scenario: if users open an account for identity verification         

Collecting or Sharing Method: SDK native capture

Type of personal information collected: network connectivity status, camera settings, user face image, device information (device model, brand, manufacturer, name), gravity sensor information, camera information

Operating Company: Onfido Inc.

Official website: https://onfido.com/

Link to Privacy Policy: https://onfido.com/privacy/