Gaia Privacy Policy

Last Updated: 25 Jan 2024

Effective date: 25 Jan 2024

Thank you for using the services or operationally controlled products provided by Gaia Cloud Asia Pacific Pte. Ltd, GaiaWorks Asia Holding Limited, Suzhou Gaia Information Technology Co., Ltd. and Suzhou Gaia Cloud Computing Technology Co., Ltd. (“We” or “Gaia“). As a workforce management SaaS service provider, we understand the importance of personal information to you. We will protect your personal information and privacy security according to applicable laws and regulations. We have made this Privacy Policy, and please read and understand this Policy carefully to ensure that you fully understand and agree to it before you start using them.

If you use the platform as an employee of a company, we collect, use, or store your data to meet customer contracts and implement functions and services. You understand and acknowledge that your employer has provided us with your personal information to enable you to use the Platform. Based on your employer’s representations and warranties, your employer has obtained your prior express consent and has fully informed you of your personal information’s purpose, scope, and use before providing us with such personal information. This policy is not intended as a substitute for your employer’s privacy policy. If you cannot confirm the above, we recommend that you stop accessing or using the Platform and confirm with your employer regarding the preceding. You may also contact us for more information.

We collect, use, and disclose your information in accordance with the Privacy Policy and in compliance with the applicable laws, including, Singapore Personal Data Protection Act (“PDPA”). We only process your data to the extent necessary to fulfill obligations. We will not collect your information when it is not needed for the relevant functions or services, even if we have obtained your authorization.

The following section will help you understand how we collect, store, process, transfer, share and protect personal information; help you understand how to access, copy, delete, correct, or withdraw authorized personal information. Please pay special attention to the terms and conditions, which are bolded.

 

1.Definition

2.We we collect and how use your information

3.How we use Cookies and similar technologies

4.How we store your information

5.How we protect your information

6.How we share, transfer, or disclose your information

7.How you manage your information

8.Children’s policy

9.Changes to our Privacy Policy

10.Contact us

 

1.Definition

Personal information: The personal information of users shall be defined in accordance with the applicable laws for the users which shall include but not limited to all kinds of information related to identified or identifiable natural persons recorded electronically or by other means.

Sensitive personal information: Personal information that, once leaked or illegally used, may easily lead to the infringement of a natural person’s human dignity, or endanger the safety of their person or property, including biometric, religious beliefs, specific identity, medical and health care, financial accounts, location information, as well as the personal information of minors under 14 years.

Employer: An organization that uses Gaia’s products and services under a contract. Employers can register business accounts on behalf of their employees by obtaining the employees’ authorization.

Enterprise users: Users invited by the employer and have obtained the employer’s authorization to use the platform as members of the employer.

Individual users: Refers to users who independently register and Gaia products.

De-identification: is the technical method to process personal information so that the owner of the personal information cannot be identified without the help of additional information.

Anonymization: is the technical method to make the owner of personal information unrecognizable, and the processed data cannot be recovered.

Unless otherwise agreed, the definitions used in this Policy have the same meaning as those in the Gaia User Service Agreement.

 

2.What we collect and how use your information

2.1Information we collect

When you use our products or services, we need/may need to collect and use your personal information including the following two types:

1.In order to provide you with the basic functions of our products or services, you must authorize us to collect and use the necessary information. If you refuse to provide the corresponding information, you will not be able to use our products and/or services normally.

2.In order to provide you with additional functions of our products or services, you can choose to individually agree or disagree with the information we collect and use. If you refuse to provide it, you will not be able to use the relevant additional functions or achieve the functional effects we intend to achieve, but will not affect your use of our basic functions.

We hereby remind you in particular, we provide labor management and related services. However, due to the diverse needs of enterprises or users, the product functions/service ranges that different enterprises/users choose to use are different, so basic/additional functions and corresponding collection and use the type and scope of personal information will be different, please refer to the specific product/service function.

The specific functional scenarios we will provide you with include:

2.1.1During your use of this application, the relevant scenarios of the information obtained from you are:

  • Upload avatar, you can upload any suitable local image information as your avatar. This function obtains the album/file storage permissionof your device, read the contents of your device memory card, and collects your image information or get permission to take photos with your device’s camera, but this function is optional. Not uploading avatar will not affect you use basic functions.
  • Real-name authentication, real-name authentication can be carried out in two forms if applicable: a. ID card authentication method b. Bank card authentication method. During the real-name authentication process, you need to collect your name, ID number, mobile phone number, and/or bank card number information if applicable. However, this authentication function is optional. Failure to perform real-name authentication does not affect your use of basic functions.
  • Change your password or forget your password,when you forget your password or actively change your password, we need to collect your mobile phone number information to verify that this operation is yours. If you do not provide your mobile phone number information, we cannot provide you with password modification services.
  • Time attendance check-in, when you use the check-in service, depending on the check-in method, we will obtain different permissions or information. If you choose to use geographic location to check in, we need to read your GPS location information and WIFI access point andWIFI status information. If you choose to use geographic location to check in, we will collect the Bluetooth information of your device. If you refuse to enable those permission, we will not be able to provide you with related services. But it does not affect your use of other functions.
  • My Schedule, when you use the function, we need to read the calendar information of your deviceand obtain the permission to add, modify, and delete the calendar in the app. If you refuse to authorize, we cannot provide you with related services. But does not affect your use of other functions. Contact customer service, when you use the contact customer service function in the program, we need to obtain your permission to make calls and manage calls. If you refuse to provide this permission, we cannot directly call customer service for you. But it does not affect your use of other functions.
  • Push notifications, push notifications are required when a new message arrives. We need to obtain notifications and push permissionsfrom your device, and turn on your self-start service If you refuse to provide this permission and turn off it, we will not be able to push messages to you through the App. But it does not affect your use of other functions. You can find the turn off button from the way: Setting- Application-Self Start Management module.
  • Parental leave,for parental leave, when you apply for parental leave (the exact name of the leave is shown in the system), we will need to obtain the date of birth of your child(s) and, at your employer’s request, you may also need to provide proof of this. If you refuse, we will not be able to assist you and your employer in completing the parental leave application process on the Platform. But does not affect your use of other functions.
  • Pre-employment,according to your employer’s requirements, you may need to use the pre-employment function in the system to assist you in the registration procedures, you need to provide your personal information, such as name, ID number and other information, the specific information shall be subject to your employer’s requirements. If you refuse to provide such information, we will not be able to assist you with the pre-employment process through the system, but you have the right to contact your employer and use other forms of processing procedures.

2.1.2To maintain the proper functioning of our software and services, optimize the experience of our services, protect the security of your account, or comply with applicable laws and regulations. we may collect the following information from you.

  • To ensure the safe operation of the services, the application background will collect your device information, including:
  1. Device identifier like IMEI, IDFA, Android ID, MAC address, OAID, IMSI, and other related information.
  2. Application information like application crash, notification switch status.
  3. Device parameters and system information like device type, model, operating system and hardware.
  4. User network information like IP address, WIFI status information and other related information.
  • To prevent malicious programs and necessary for secure operations, we collect the information on the installed app, running processes, overall function, usage and frequency, app crashes, installation and usage, performance data, and app sources.
  • We may use your account information, device information, service log information, and information to determine account security, authenticate, detecting and prevent security incidents.

2.1.3In order to meet the needs of different business scenarios and ensure that users can use Gaia’s products or services normally, we will store and process the user’s personal information provided by the data controller. However, due to differences in business requirements, we may store the following parts or all following information, and not limited to the following information:

Basic personal information includes name, birthday, gender, address, phone number, profile picture or image, email address, ethnicity, nationality, family relationship, etc.

Identification information, such as ID number, passport, etc.

Work-related information includes occupation, position, department, supervisor, work location, education, work experience, training certificates, contract information, etc.

Financial information includes bank account numbers, salary-related information, etc.

Biometric information includes fingerprints, facial features, etc.

Health information includes sick leave slips, body temperature (only for the health reporting during the pandemic), etc.

2.2 Purpose changes to data collection and usage

Please be aware that we may adjust and change our products’ features and services as our business grows. In principle, we will not inform you further and obtain your consent when new features or services are related to those we currently provide. The collected information will be directly or reasonably associated with the original purpose of processing. If the collected data is not directly or reasonably related to the original purpose, we will again inform you and obtain your consent when we collect such information.

2.3 Personal information exempt from consent for collection and use

Please understand that we may collect and use your personal information without your authorization according with the applicable laws and regulations.

3.How we use Cookie & similar technologies

Technologies such as cookies and device information identification are widely used on the Internet. When you use Gaia products and services, we may send one or more Cookies or anonymous identifiers to collect and identify your information when you visit or use our services. We promise that we will not use Cookies for any purpose other than those stated in this Privacy Policy. We use Cookies and similar technologies to fulfill the following features and services:

3.1To ensure safe and efficient products and services

We may set authenticated and secure Cookies or anonymous identifiers to enable us to confirm that you securely log into the services or that you encounter theft, fraud, or other wrongdoing. These technologies will also help us improve service efficiency and login and response speed.

3.2Better access experience

Using such technologies can help you avoid repeating the steps to fill out your personal information, set your preference, and enter search content (examples: search history, form filling, multilingual selection).

3.3How to clear Cookie

Most browsers support clearing the browser’s cached data. You can remove the data in the browser settings. If you clear the data, you may not use our services or corresponding features that rely on Cookies to function properly.

 

4.How we store your information

4.1Location

We store your personal information securely in the Microsoft Azure Singapore region in strict accordance with laws and regulations and contractual terms. We do not transfer your personal information out of data center location except at the request of your employer and in accordance with clause 6.2 below.

4.2Retention period

For enterprise users, we will keep your personal information during your use of our Platform under the terms of your employer’s contract. We will cease to retain your personal information, or remove the means by which the data can be associated with you, as soon as it is reasonable to assume that such retention no longer serves the purpose for which the personal information was collected, and is no longer necessary for legal or business purposes, unless otherwise required by the applicable laws and regulations for the retention period of specific information

 

5.How we protect your information

5.1We take the security of your personal information as our highest priority. We will endeavor to take reasonable measures (both technical and administrative) to protect your personal information from improper use or unauthorized access, disclose, use, modification, damage, loss, or leakage.

5.2We will use encryption technologies, anonymization, and other reasonable means to protect your personal information and use a mechanism to prevent malicious attacks on your personal information.

5.3We set up a special security department, security management system, data security process to ensure your information security. We adopt a strict approach to data use and access to ensure that only authorized personnel access your personal information. We conduct security audits of data and technology from time to time.

5.4Gaia has met the requirements of authoritative standards such as ISO/IEC 20000, ISO/IEC 27001, and Network Security Level Protection (Level III) and has obtained the corresponding certificates. We also have obtained the SOC 2 TYPE II authentication report.

5.5The standards required by the applicable laws and regulations have been complied with; please understand that due to technical limitations and the possibility of various malicious means, it is not always possible to guarantee 100% security of information, even with all efforts to strengthen security measures. However, reasonable and effective steps have been taken as described above. We will try our best to ensure your information security.

5.6You acknowledge and understand that when you access our services, the systems and communications networks may be compromised by factors beyond our control. Therefore, we strongly recommend that you take active measures to protect the security of your personal information, including but not limited to using complex passwords, regularly changing passwords, and not disclosing your account password and relevant personal information to others.

5.7We have established emergency response plans. When a security incident occurs, we will immediately launch emergency response plans and strive to prevent the impact and consequences of these security incidents from expanding. Once the security incident (leakage, loss) occurs, we will comply with the applicable laws and regulations and data processing standards stated in the contract, and timely inform you (or your employer) of the basic situation, possible impact, the measures we have taken or will take, the advice of preventing or reducing risks, and remedies for you. We will inform you of the incident by notifications, email, letter, SMS, or other channels. If it is difficult to inform one by one, we will make an announcement properly. Moreover, we will report the security incident as required by relevant regulatory authorities.

5.8When you leave Gaia and relevant services and browse or use other sites, services, or content, we will not be able to or obligated to protect your software, personal information submitted to other sites, regardless of whether the above software or sites you login, browse or use is linked to Gaia or directed by Gaia.

 

6.How we share, transfer, or disclose your information

6.1Sharing principles

We do not share your personal information with companies, organizations, and individuals outside of Gaia, except for the following:

1.Sharing with your consent: we may share your information with other parties after obtaining your explicit consent.

2.The personal information shared is anonymized and processed, and the owner of such information cannot be re-identified by the sharing third party.

3.Sharing under legal circumstances: we may share your information with the public in accordance with the applicable laws and regulations, litigation, dispute resolution needs, or as requested by relevant authorities according with the applicable laws.

4.Sharing by yourself: Only by sharing your personal information with third-party service providers,we can provide you with third-party products or services that you request. In the Gaia service, the scenarios you can choose third-party services and share information with the third-party are:

  1. Email and SMS sending services.When you choose to use email notifications or receive verification codes through your mobile phone number, we need to call SendCloud a third party to provide you with sending services. Currently, you need to share your receiving email address with the service provider. Mobile phone number and message content. SendCloud service agreement: https://sendcloud.sohu.com/#/friendlyLink?tab=protocal
  2. Message push service.When you choose to enable the message push service, Gaia will use the Jiguang push service to help trigger the message. The service will call the message push SDK such as Huawei and Xiaomi. At this time, you need to share your device information with the service party.
  3. Electronic signature service. When you choose to use the electronic signature function integrated in the Gaia platform, Gaia will use the signing service to help you complete the electronic signature. At this time, the service party may need to obtain your name, mobile phone number, Bank card number, facial feature information and other information, the specific information collected depends on the authentication method you choose. Hangzhou BestSign Technology Co., Ltd. provides the signing service, The privacy policy of its third-party service: https://ent.bestsign.cn/account-center/legal-agreement/privacy-policy
  4. OCR content recognition. When you choose to use automatic recognition image information, such as recognizing the information from your bank card or ID card, you need to use OCR content recognition service from Shanghai Hehe Information Technology Co., Ltd.This service needs to obtain your images which will be recognized.
  5. Geographic location services. When you choose to use GPS to check in, we will share your GPS information with third-party location service providers so that you can return location results.
  6. Face punch function, when you choose to use face punch function, we will collect your face picture, and share the picture to the third-party Huawei Cloud Computing Technology Co., Ltd. for face recognition, in order to confirm whether the punch user is the target user. Privacy policy is https://www.huaweicloud.com/declaration/fsr_tea.html.
  7. Intelligent customer service, Gaia system embedded in a third-party intelligent customer service system named Netease Qiyu to receive your inquiries and feedback to you, when you contact us via the service, we need to collect your name, mobile phone number, email, location, job role, employer company. We will also share the above information to the Netease Qiyu service provider Hangzhou Netease Zhiyun Technology Co. Ltd.The service privacy policy can be found at: https://qi.163.com/termsService .

We will carefully evaluate the purpose of third parties’ use of shared information, conduct a comprehensive assessment of the security capabilities of these partners, and require them to follow legal agreements.

5.The third-party SDK collects and uses information

In order to ensure the stable operation of the application or to achieve the relevant functions, we may access the software development kit (SDK) provided by third parties to achieve the aforementioned purposes. We will exercise due diligence and conduct strict security monitoring of the software tool development kits (SDKs) from which our partners obtain information to protect data security.

The third-party SDKs we access primarily serve the needs of you and the business you represent, so we may adjust the third-party SDKs we access to meet new service requirements and changes in business functionality, and we will keep you informed of the latest status of the third-party SDKs we access in this note. Please note that the third-party SDKs may have some changes in the type of data processing due to their version upgrade and policy adjustment, etc. Please refer to their published official descriptions.

Huawei Push SDK

Operator: Huawei Software TECHNOLOGIES Co., Ltd.

Purpose of use: used to push messages to Huawei mobile phone users

Collected data type: Basic application information, device identifiers within the application, hardware information of the device, basic system information and system setup information

Privacy policy link: https://developer.huawei.com/consumer/cn/doc/development/HMSCore-Guides/sdk-data-security-0000001050042177 

Xiaomi Push SDK

Operator: Beijing Xiaomi Mobile Software Co., Ltd.

Purpose of use: used to push messages to Xiaomi mobile phone users

Types of collected data: IMEI/OAID (applicable to systems above Android Q), IMEI MD5/MEIDMD5, Android ID, VAID, AAID, and your MID (applicable to MIUI systems), device model, Wi-Fi information, device information (BSSID, SSID), running application list information

Privacy policy link: https://dev.mi.com/console/doc/detail?pId=1822

VIVO Push SDK

Operator: Vivo Mobile Communication Co., Ltd.

Purpose of use: used to push messages to VIVO mobile phone users

Collected data type: Device identification information (e.g. IMEI, UFSID, ANDROIDID, GUID, GAID, OPENID, VAID, OAID, Reg ID, encrypted Android ID), application software information using push services (e.g. app package name, version number, APPID, install, uninstall, restore factory settings, running status), device manufacturer, network type, country code, device type

Privacy policy link: https://dev.vivo.com.cn/documentCenter/doc/652#w1-12075822

OPPO Push SDK

Operator: Guangdong Huantai Technology Co., Ltd.

Purpose of use: used to push messages to OPPO mobile phone users

Collected data type: device identifier (OAID, VAID, AAID, UDID), device related information (IMEI, Serial Number, IMSI, User ID, Android ID, Google Advertising ID, mobile phone region settings, device model), application information that use push services, network related information (such as IP or domain name connection result, current network type), notification bar status (such as notification bar permission, user clicking behavior)

Privacy policy link: https://open.oppomobile.com/wiki/doc#id=10288

Meizu Push SDK

Operator: Meizu Telecom Equipment Co., Ltd.

Purpose of use: used to push messages to Meizu mobile phone users

Collected data type: Device related information, such as phone brand, phone model, system version, system language, as well as device identifier and status information of the switch for third-party applications to receive push messages

Privacy policy link: https://open.flyme.cn/docs?id=202 

Gaode Open Platform Positioning SDK Operator: Amap Software Co., Ltd.

Purpose of use: Help users to achieve time attendance check-in based on location.

Collected data types: location information (GNSS information, IP address, Wi-Fi hotspot, base station information, Bluetooth devices, and other positioning sensors information), device information (unique identifier (IDFV, OAID, IMEI, MEID, IMSI), mac address, operating system version, device brand, model, device configuration, operator type name, code, application information (application name, version number)), Wi-Fi information, running application list information, mobile phone storage permission

Privacy policy link: https://lbs.amap.com/pages/privacy/

Google Service Framework SDK

Operator: Google

Purpose of use: non-China based users may use Google push

Collected data type: equipment identification information (IDFV, OAID, IMEI, MEID, IMSI, etc.)

Official website link: https://firebase.google.com/

Aurora Push SDK

Operator: Shenzhen Hexun Huagu Information Technology Co., Ltd.

Purpose of use: Provide information push service for mobile application users operation of the system

Collected data type: SN, ICCID, SIM information): used to identify unique users, ensure accurate delivery of push and accurate statistics of push messages; network information (IP address, WiFi information, base station information, DNS address, DHCP address, SSID, BSSID) and location information (latitude and longitude): used to optimize the network connection request between SDK and Aurora server, ensure the service stability and continuity of the service, and at the same time realize the regional push function; application list information (application crash information, notification switch status, APP application list and active status, APP application page information, APP function event related information): when a device has multiple APP push links active at the same time, we use the merge link technology to randomly merge into a single link to achieve the purpose of saving electricity and Push log information: so that developers can query the use of push service records, understand the situation of push information delivery, and adjust the push strategy.

Privacy policy link: https://www.jiguang.cn/license/privacy

Tencent Browsing Service SDK

Operator: Shenzhen Tencent Computer System Co., Ltd.

Purpose of use: Help users improve the experience of loading web pages in the application

Collected data type: device information (IMSI, device model, operating system, CPU type)

Privacy policy link: https://x5.tencent.com/docs/privacy.html

Umeng SDK

Operators: Beijing Ruixunlingtong Technology Co., Ltd., Youmeng Tongxin (Beijing) Technology Co., Ltd., Zhejiang Alibaba Cloud Computing Co., Ltd., Beijing Diyuanxin Internet Data Technology Co., Ltd., etc.

Purpose of use: statistical analysis, social sharing

Data collection type: device information (IMEI/Mac/Android_ID/IDFA/OPENUDID/GUID/SIM card IMSI/IP address/geolocation), WLAN access point (such as SSID, BSSID), application list, device number

Privacy Policy Link: https://www.umeng.com/page/policy 

Netease Qiyu

Operators: Hangzhou Netease Zhiyun Technology Co. Ltd.

Purpose of use: Provide customer service dialogue service

Data collection type: basic user personal information (name, mobile phone number, email address, location, job role, company information) used to locate the user and provide feedback to the user on the service results, and network information (network status, wifi information, IP address) used to understand the network status of the device and the changes in the network, so as to maximize the stability of the network connection; when the sensor information permissions are turned on, it will be collected Distance sensor information, which is used to sense whether the phone is lifted to the ear to provide a better voice chatting experience.

Privacy Policy Link: https://qi.163.com/termsService?privacy=1 

6.1.2 Shared information for security and analysis statistics

  1. Use security:we value the security of accounts, services, and contents. To protect the accounts and property of you and other users and protect our legitimate rights and interest from unlawful infringement, we may share the necessary device, accounts, and log information with our service providers.
  2. Analyze product usage: to analyze the usage of our services and improve user experience, we may share the statistical data of product usage (crash, flashback) with the related parties or third parties. Such data is difficult to combine with other information to identify your personal information.

6.2Transfer

6.2.1We do not transfer your personal information to any other third party including our affiliates without your explicit consent . We do not transfer your personal information to countries outside of storage location. However, if we need to do so, we will obtain your consent for the transfer to be made and we will take steps to ensure that your personal information continues to receive a standard of protection that is at least comparable to that provided under the applicable laws.

6.2.2 In the event of any preceding changes, we shall require the successors to protect your personal information according with the applicable laws, regulations, and security standards not less than those outlined in this Privacy Policy, and we shall require the successors to obtain your authorized consent again.

6.3Disclosure

We will not publicly disclose your information unless required by the applicable laws and regulations or with your explicit consent. When we disclose your information, we will take security measures that comply with industry standards and the applicable laws.

6.4 Personal information exempt from obtaining consent to share, transfer or disclose

Please understand that we may share, transfer, or disclose your personal information without your authorization by the applicable laws and regulations.

Subject to the applicable laws and regulations, if the personal information has been anonymized and the data recipient cannot recover and re-identify the owner of personal information, we will not inform you and obtain your consent when using such information.

 

7.How you manage your information

7.1How to access and copy your information

You can view your information, such as profile picture, name, department, birthday, phone number, etc., through the function module [My] on the mobile Gaia system, or log in to the website of Gaia system and view your information in [Personnel Information].

If you need to copy your personal information out of Gaia’s platform, you can use the [Personnel Information] export function or request your employer, and Gaia will cooperate in responding to your request.

7.2How to correct and add your personal information

You can upload or change your profile picture in [My]. To correct or supplement other personal information, you need to submit a request to your employer to correct or supplement the information that the administrator will handle.

7.3How to delete your personal information

You can cancel your account in [My] – [Settings] – [Account & Security]. Since we are the data processor, if you are an enterprise user, we will simultaneously notify your employer after you make a request to cancel your account. After verifying your user identity, we will process your request and cancel your account within fifteen working days. After account cancellation, your personal information in the Platform will be deleted or anonymized, except as otherwise provided by the applicable laws and regulations.

After you decide to terminate your use of the Platform, you need to apply to your employer simultaneously, and the enterprise user administrator will process your account for deletion.

7.4How to withdraw your authorization consent

To protect your right to withdraw your consent, after you have clicked to agree to the Privacy Policy, you can contact us or make a request to your employer to withdraw your consent, and we will delete your personal information in the Platform according to the scope of your withdrawal of consent after receiving your withdrawal request.

7.5Your relatives’ right to search, copy, correct and delete

If a natural person dies, their next of kin may exercise the right to inquire, copy, correct, and delete the deceased’s personal information for their own legal and legitimate interests. If the next of kin wish to inquire, copy, correct or delete your personal information, including profile picture, name, real name, gender, and other information, they may contact us, and we will provide the appropriate service after verifying their identity, however, except as otherwise agreed in the applicable laws and regulations and this Privacy Policy.

7.6Ways to find the Privacy Policy

A comprehensive text of this Privacy Policy is supplement in the login page of Gaia’s web, mobile application and Gaia’s website at https://www.gaiacloud.com/privacy-policy.

7.7Notice

If we cease operations, we will promptly terminate the activities of collecting your personal information, notify you of the cessation of operations by individual delivery or announcement, and delete or anonymize the personal information about you.

 

8.Children’s policy

8.1General

  1. Our websites, products, and services are not intended for children.
  2. We do not knowingly collect personal information from children without parental/ guardian consent. If a child’s information is collected with prior parental consent, we will only use or disclose the information as permitted by applicable law, with the explicit consent of the child’s parents or guardians, or when necessary for the protection of the child. If we accidentally collect a child’s data without verified prior consent from the child’s parents, we will endeavor to delete the information as soon as possible.
  3. If you have any concerns about your children’s information, please contact us via dpo@gaiacloud.com.

 

9.Changes to our Privacy Policy

  1. We change this Policy from time to time. We will not reduce your rights under this Privacy Policy without your explicit consent.
  2. We publish an updated version on Gaia application and our website  or other means before the changes become effective.
  3. For significant changes, we will also provide a more prominent pop-up alert notification and get your feedback again. Significant changes include:
  • Significant changes to the business model of the product. Such as the purpose of processing personal information, the type of personal information processed, and the way personal information is used;
  • Changes in the subject of the privacy policy caused by business restructuring, transaction mergers and acquisitions, where the new subject changes the original purpose of processing, and the manner of processing;
  • Changes in the main subject of personal information sharing or public disclosure;
  • Significant changes in the rights of users’ personal information and the manner of its exercise;
  • When there is a significant change in the contact information and complaint channels of the person in charge of handling personal information protection.

 

  1. Contact us

If you have any concerns or complaints, please contact us via email address dpo@gaiacloud.com.

We will review the issue as soon as possible and respond within fifteen (15) working days after verifying your user identity.