Legal

Privacy Policy

Effective Date: 2026-05-13

This Privacy Policy applies to Chengdu Mengqiu Xiaojiang Sports Technology Co., Ltd, including our website (mengqiuxiaojiang.com), mobile management applications, and related online and offline services in sports technology, consulting, event operations, youth training support, commerce, and digital services.

1. Controller and Contact Information

Data Controller: Chengdu Mengqiu Xiaojiang Sports Technology Co., Ltd

Office Address: 459 Hongxing Road, Xindu Street, Xindu District, negative 102-103, Chengdu, 610000, CN

Website: https://mengqiuxiaojiang.com

Business Support Email: support@mengqiuxiaojiang.com

Key Account Email: yangyuankun1@mengqiuxiaojiang.com

2. Scope of This Policy

This policy covers data processing in:

• Our website and business contact channels.
• Mobile applications distributed through Google Play, Apple App Store, and other lawful channels.
• Sports technology services, technical consulting, technical services, event planning, sports performance activity organization, venue operations (excluding high-risk sports), youth training support (excluding license-category training), sports health services, physical expansion training services, brand marketing planning, cultural and artistic exchange planning, product sales, and internet sales.

3. Categories of Personal Data

• Identity and account data: name, role, account identifier, login credentials (hashed where applicable).
• Contact data: email, organization name, support messages.
• Operational data: event registrations, scheduling, task assignments, booking records, training records, order metadata.
• Device and technical data: IP address, device model, operating system, app version, language, timestamps, crash logs, diagnostics.
• Commercial data: transaction metadata, product and service usage, purchase verification where applicable.
• Ad and measurement data: consent status, ad interaction events, fraud prevention signals, attribution signals.
• Location data: approximate location inferred from IP and optional device signals where legally permitted.
• Sensitive data: generally not requested. If exceptional lawful scenarios require sensitive categories, explicit legal basis and safeguards are applied.

4. Purposes and Legal Bases

• Service delivery and account management: contract necessity.
• Technical support and security protection: legitimate interests and legal obligations.
• Compliance and records: legal obligations.
• Communication and relationship management: legitimate interests and consent where required.
• Analytics and product improvement: legitimate interests and consent where required by local law.
• Advertising monetization in apps: consent where required, legitimate interests where permitted, and strict regional policy controls.

5. App Store and Platform Policy Alignment

Our applications are built and operated to align with:

• Google Play Developer Program Policies, Google Play User Data policy, Families policy where applicable, and Google EU User Consent Policy.
• Apple App Store Review Guidelines, Apple privacy nutrition label requirements, and ATT (AppTrackingTransparency) requirements where applicable.
• Regional app marketplace disclosure, consent, and age-rating obligations.

6. Advertising and Monetization Compliance

Our apps may use ad formats including app open ads, rewarded video ads, interstitial ads, and banner ads. Ad display logic is adapted by age group, region, consent status, and platform policy.

Ad and mediation partners may include, depending on region and app configuration:

• Google AdMob and Google Ad Manager
• AppLovin MAX and AppLovin Exchange
• Unity Ads
• Meta Audience Network
• ironSource
• Mintegral
• Pangle / TikTok for Business Ads
• Chartboost
• InMobi
• Liftoff Monetize (including Vungle stack)
• Smaato
• Start.io
• Digital Turbine (including AdColony where integrated)
• Fyber

Measurement, anti-fraud, and attribution tools may include Firebase Analytics, Google Analytics for Firebase, Adjust, AppsFlyer, Singular, and similar tools as configured for lawful operations.

When required by law, ad tracking and personalized advertising are disabled until valid consent is obtained. Users can withdraw consent and adjust privacy controls in app settings or by contacting us.

7. Cross-Country and Regional Legal Adaptation

We adapt data processing controls to applicable regulations, including but not limited to:

• EU/EEA: GDPR and ePrivacy principles.
• United Kingdom: UK GDPR and Data Protection Act 2018.
• United States: CCPA/CPRA (California), VCDPA (Virginia), CPA (Colorado), CTDPA (Connecticut), UCPA (Utah), and other applicable state privacy laws.
• Canada: PIPEDA and applicable provincial laws including Quebec Law 25 obligations where relevant.
• Brazil: LGPD, where operations include Brazilian residents.
• Australia and New Zealand: applicable privacy statutes and regulator guidance.
• Other markets: local law requirements for notice, consent, rights handling, minors, and transfer controls.

8. Age Requirements and Child Data Protections

• Our services are not directed to children where prohibited by law without required guardian notice and consent controls.
• Where child or teen use may occur, we implement age-gating, restricted ad personalization, and limited data processing aligned with laws such as COPPA, GDPR child consent rules, UK AADC principles, and related requirements.
• If we identify data collected from a child without required lawful basis, we will take steps to delete or de-identify it.

9. International Data Transfers

Data may be processed in multiple jurisdictions. We use appropriate safeguards, which may include contractual clauses, transfer impact assessments, and equivalent legal mechanisms where required.

10. Data Retention

We retain data only as long as necessary for service delivery, legal compliance, dispute handling, security, and operational continuity. Retention periods vary by data type, law, and contractual requirement.

11. Security Measures

We implement technical and organizational controls including access control, least privilege, secure transmission, monitoring, and incident response procedures. No internet system is absolutely secure; users should protect credentials and devices.

12. Your Privacy Rights

Depending on your location, rights may include access, correction, deletion, restriction, objection, portability, withdrawal of consent, and non-discrimination for exercising rights. You may submit requests through support@mengqiuxiaojiang.com.

13. Cookies, SDKs, and Similar Technologies

We may use cookies, local storage, device IDs, software development kits (SDKs), and server logs for authentication, performance, analytics, security, and advertising controls. Consent banners and settings are presented where required.

14. Third-Party Links and Services

Our services may link to third-party services. Their privacy practices are governed by their own policies. Users should review third-party policy documents before using those services.

15. Data Protection Requests and Complaints

For questions, requests, or complaints, contact support@mengqiuxiaojiang.com. We aim to respond within legally required timelines. Where available, users may also contact local supervisory authorities.

16. Policy Updates

We may update this policy to reflect legal, technical, and business changes. The effective date above indicates the current version. Material changes will be communicated through app notices, website notices, or both where appropriate.