Global Privacy Policy
Beijing Hongdu Tengyu Technology Co., Ltd. ("Hongdu Tengyu", "we", "us", or "our") maintains the highest standards of data integrity and transparency. This policy outlines our rigorous methodologies for safeguarding user information across our global digital footprint.
1. Developer Policy & Global Compliance
Our infrastructure is engineered for absolute compliance with the Google Play Developer Distribution Agreement and the Apple App Store Review Guidelines (Section 5). We utilize Privacy Manifests to ensure zero-discrepancy reporting to platform holders.
2. Comprehensive Data Collection
2.1 Technical Telemetry: We collect IDFA, AAID, and precise device telemetry (CPU, GPU, memory, thermal state) exclusively to ensure application stability and optimize performance tiers.
2.2 Behavioral Data: Granular clickstream and session logs are utilized to refine game balance and UI/UX friction points.
3. Third-Party SDKs & Data Processors
We conduct quarterly security audits on all third-party integrations. The following entities process data on our behalf:
| SDK Provider | Core Purpose | Data Categories | Policy |
|---|---|---|---|
| Google AdMob | Ad Mediation | Device ID, Coarse Location | View |
| AppsFlyer | Attribution | IP, Install Timestamp | View |
| Firebase | Analytics/Crash | OS Version, Crash Logs | View |
| Sentry | Error Monitoring | Stack Traces, Memory State | View |
4. Purpose and Legal Basis
We process data based on Contractual Necessity (account management), Legitimate Interest (anti-cheat/analytics), and Explicit Consent (targeted ads).
5. Adherence to Global Standards
We fully support GDPR (EEA), UK-GDPR, CCPA/CPRA (California), and PIPL (China). We utilize localized storage nodes to meet regional data residency requirements.
6. Global Age Management & COPPA
We deploy Neutral Age Gates. For minors, we automatically sever all social API links and disable behavioral advertising tracking.
7. Advanced Data Security & Internal Controls
7.1 Encryption: AES-256 for data at rest and TLS 1.3 for data in transit.
7.2 Breach Notification Protocol: In the event of a confirmed breach, we notify relevant authorities (e.g., CNIL, ICO) within 72 hours and high-risk users within 5 business days.
7.3 Access Controls (RBAC): Employee access is governed by a strict "Need-to-Know" principle. All database queries involving personal data are audit-logged and retained for 2 years.
8. International Data Transfers
Cross-border transfers from the EEA/UK are protected by Standard Contractual Clauses (SCCs) approved by the European Commission.
9. Exercising Your Data Rights: Step-by-Step
Right to Access
Request your data via Settings > Account > Data Export. A JSON report will be delivered within 48 hours.
Right to Erasure
Delete your account via Settings > Privacy > Delete Account. Purge completed within 30 days.
Right to Rectification
Modify profile details in-app or email support@hongduty.com for immutable record updates.
10. AI-Driven Decision Making & Automated Processing
Hongdu Tengyu utilizes machine learning to enhance user experience:
- Dynamic Difficulty Adjustment (DDA): Real-time calibration of game challenge levels based on session performance.
- Predictive Churn Modeling: Identifying disengagement patterns to trigger personalized retention rewards.
- Ad Frequency Optimization: Algorithms that balance revenue generation with user satisfaction.
11. Cookies, Local Storage & Tracking
11.1 Essential: Session tokens and CSRF protection (HttpOnly).
11.2 Analytics: Firebase/GameAnalytics caching gameplay metrics locally for batched transmission.
11.3 Preferences: LocalStorage for language and sound settings.
12. Contact Our Data Protection Officer
For all privacy-related inquiries or to appeal automated decisions:
Office of the DPO
Email: support@hongduty.com
Beijing Hongdu Tengyu Technology Co., Ltd.
Room 214, 2nd Floor, Building 1, No. 35 Zhenxing Road, Changping District, Beijing, China.