¥ 人民币 $ USD € 欧元
中文 English
+86 17695986992
menu
search
WedoMall Global
cart
Menu

Privacy policy

Privacy Policy of Tianjin Weiduyun Network Technology Co., Ltd.

 
Effective Date: October 25, 2025
Last Updated Date: October 25, 2025
Tianjin Weiduyun Network Technology Co., Ltd. (hereinafter referred to as "we", "Weiduyun" or "the Company"; Contact Information: service@weiduyun.com) is the operating entity of the WedoMall cross-border e-commerce independent website (hereinafter referred to as "the Platform"). We recognize the importance of personal information and strictly comply with global applicable regulations such as the Personal Information Protection Law of the People's Republic of China (PIPL), the European Union's General Data Protection Regulation (GDPR), and the California Consumer Privacy Act (CCPA) of the United States, committed to protecting the security and legitimate rights of your personal information.
This Policy is intended to clearly inform you of how we collect, use, store, and share your personal information, as well as the rights you hold and how to exercise them. Please read this Policy carefully before using the Platform's services. By continuing to use the Platform's services, you indicate that you have fully understood and agreed to all contents of this Policy.

1. Scope of Application

 
  1. Subject Scope: This Policy applies to the WedoMall independent website, associated mobile applications, and derivative services operated by us (collectively referred to as "Platform Services" hereinafter), covering the entire process of data processing activities such as user registration, browsing, ordering, payment, and after-sales service.
  1. Geographical Scope: Whether you are located within the territory of China or overseas (such as the European Union, the United States, Southeast Asia, etc.), this Policy applies to you as long as you use the Platform Services. We will provide adaptive protection in accordance with the regulatory requirements of the region where you are located.
  1. Exclusion Scope: This Policy does not apply to services provided by third-party merchants, logistics service providers, and other cooperative parties. Please refer to the privacy policies of such entities separately.

2. Information We Collect and Its Purposes

 
We collect information in accordance with the principle of "minimum necessity" and only collect data necessary for providing the Platform Services, as detailed below:

(1) Personal Information You Voluntarily Provide

 
  1. Account Registration and Identity Verification Information
    • Collected Content: Full name, email address, mobile phone number, and account password you create; if you need to complete real-name verification (e.g., required for cross-border payments), you may need to provide identification documents such as ID card/passport information.
    • Purpose of Collection: Used for account creation, identity verification, login authentication, and security protection to prevent account theft or abuse.
    • Compliance Basis: Based on "necessity for performing contracts" and "obtaining your explicit consent".
  1. Order and Transaction Information
    • Collected Content: Delivery address (including recipient's name, phone number, and detailed address), payment information (last 4 digits of bank card number, payment platform account information), order product details, transaction amount, and payment status.
    • Purpose of Collection: Complete product delivery, transaction settlement, order tracking, and after-sales dispute handling; payment information is only used to verify the authenticity of transactions, and no complete bank card information is stored.
    • Compliance Basis: Based on "necessity for performing contracts" and "compliance with legal and regulatory requirements".
  1. Customer Service and Feedback Information
    • Collected Content: Consultation content, complaint materials, contact information, and relevant supporting documents you submit through online customer service, email, phone calls, and other channels.
    • Purpose of Collection: Respond to your needs, resolve issues, and improve service quality.
    • Compliance Basis: Based on "obtaining your explicit consent" and "protecting our legitimate rights and interests".

(2) Information We Automatically Collect

 
  1. Device and Access Information
    • Collected Content: Device model, operating system version, browser type, IP address, access time, page browsing records, click behavior, and network status.
    • Purpose of Collection: Optimize the adaptability of the Platform interface, analyze user preferences to improve product recommendations, and identify abnormal access behaviors to ensure account security.
    • Compliance Basis: Based on "necessity for performing contracts" and "legitimate interests" (improving service quality).
  1. Location Information (Optional)
    • Collected Content: If you allow the Platform to access your location permission, we will collect your approximate geographic location (e.g., city-level).
    • Purpose of Collection: Recommend products from nearby overseas warehouses and optimize logistics routes to estimate delivery time.
    • Compliance Basis: Based on "obtaining your separate consent", and you can disable the permission in device settings at any time.

(3) Special Notes on Sensitive Personal Information

 
If the collected information involves "sensitive personal information" (such as ID card number, biometric data, and precise location information), we will separately inform you of the purpose of collection and obtain your "separate consent". It will only be used for specific compliance scenarios (such as cross-border customs clearance and payment real-name verification). After use, it will be desensitized or deleted in a timely manner and will not be used for other irrelevant purposes.

3. Use of Cookies and Similar Technologies

 
  1. Types and Purposes of Cookies
    • Necessary Cookies: Used to ensure the core functions of the Platform (such as shopping cart data storage and login status maintenance). These Cookies cannot be disabled; otherwise, some services will not be available.
    • Functional Cookies: Used to record your preferences (such as language settings and frequently used delivery addresses) to improve the user experience.
    • Analytical Cookies: Collect access data through third-party tools (such as Google Analytics) to analyze the Platform's operation effects, without associating with personal identity information.
  1. Your Control Rights
You can disable non-essential Cookies in browser settings, but this may invalidate functions such as personalized recommendations and automatic login. When you visit the Platform for the first time, a Cookie consent window will pop up, and you can independently select the types of Cookies you agree to.

4. Sharing and Disclosure of Information

 
We promise not to share your personal information arbitrarily and will only share or disclose it in the following strictly restricted scenarios:
  1. Obtaining Your Explicit Consent: Share information with designated third parties with your authorization (e.g., you agree to share delivery information with logistics providers).
  1. Necessary Sharing with Cooperative Parties:
    • Logistics Service Providers: Share delivery addresses and contact information (some fields are hidden, such as the middle four digits of the mobile phone number) only for product delivery;
    • Payment Service Providers: Share transaction amounts and order numbers for completing payment settlement;
    • Compliance Service Providers: Share necessary information for cross-border customs clearance and tax declaration (e.g., submitting the recipient's identity information to customs).
We will sign a Data Processing Agreement (DPA) with the above cooperative parties, requiring them to comply with privacy protection obligations and only use the information within the agreed scope.
  1. Legal and Regulatory Requirements: If faced with regulatory investigations, judicial judgments, or legal subpoenas, information must be disclosed as required to fulfill legal obligations.
  1. Corporate Mergers/Acquisitions: In the event of mergers, reorganizations, or other transactions, information may be transferred to the new entity. We will notify you in advance and ensure that the new entity complies with this Policy.
Prohibited Behavior: We will not "sell" your personal information (as defined by the CCPA in the "sale" scenario) nor use the information for marketing activities unrelated to the Platform Services.

5. Storage and Cross-Border Transmission of Information

 
  1. Storage Period
We follow the principle of "period matching", and the storage duration of information does not exceed the reasonable period required to achieve the purpose:
    • Account Information: Retained for 6 months after you cancel your account (for handling subsequent disputes);
    • Order and Transaction Information: Retained for 3 years after the transaction is completed (in line with the statute of limitations requirements of the Civil Code);
    • Browsing Behavior and Cookie Data: Retained for 12 months after your last visit;
After the expiration of the period, we will process the information by means of encrypted deletion, physical destruction, etc., to ensure that it cannot be recovered.
  1. Storage Location
Your personal information is mainly stored on servers within the territory of China. Some overseas market data (such as information of EU users) will be stored in local compliant data centers to meet regional regulatory requirements.
  1. Compliance with Cross-Border Transmission
If it is necessary to transmit information collected within China to overseas (e.g., sharing with overseas cooperative parties), we will take the following security measures:
    • Obtain your "separate consent";
    • Adopt compliant channels such as "Standard Contractual Clauses" (SCCs) and cross-border data transfer security assessment;
    • Use technical means such as end-to-end encryption and access permission control to ensure transmission security.

6. Information Security Protection Measures

 
We adopt a dual protection system of "technology + management" to ensure information security:
  1. Technical Measures
    • Encrypted Storage: User passwords are encrypted using hash algorithms, and sensitive information is encrypted using the AES-256 algorithm;
    • Access Control: Only authorized employees can access information, with permission classification and operation log auditing for traceability;
    • Security Monitoring: Regular vulnerability scanning and penetration testing are conducted to block abnormal access behaviors in real time.
  1. Management Measures
    • Privacy Training: Employees must pass privacy law exams before employment and receive regular data protection training;
    • Emergency Response: In case of data leakage, we will notify the regulatory authorities and affected users within 72 hours in accordance with GDPR requirements and take remedial measures;
    • Third-Party Audit: Entrust independent institutions to conduct compliance audits of data processing activities every year.
Risk Notice: There are certain security risks in Internet transmission, and we cannot completely eliminate external risks such as "hacker attacks and force majeure". In the event of such incidents, we will take timely remedial measures and inform you in accordance with the law.

7. Your Rights and How to Exercise Them

 
In accordance with regulations such as PIPL, GDPR, and CCPA, you are entitled to the following rights, and we provide convenient channels for exercising them:
  1. Right of Access and Obtaining Copies: You can query your personal information (such as order records and account information) and request to obtain copies of the information.
    • Exercise Method: Log in to the Platform → "My Account" → "Privacy Settings" → "View Personal Data", or send an email to service@weiduyun.com to apply.
  1. Right of Correction: If there is an error in the information (e.g., incorrect delivery address), you can apply for correction.
    • Exercise Method: Modify directly in "Privacy Settings" or contact customer service to submit a correction application.
  1. Right to Erasure (Right to Be Forgotten): You can request to delete information in the following scenarios:
    • The information is no longer used for service purposes;
    • You withdraw your consent;
    • The service is terminated.
    • Exercise Method: Submit an application through "Privacy Settings - Data Deletion Application" or contact customer service to handle it (except as required by laws and regulations to be retained).
  1. Right to Withdraw Consent: You can withdraw your consent to the collection and use of information at any time (e.g., disable location permission, cancel marketing promotions), but this does not affect the validity of information processing based on previous consent.
  1. Right to Restrict Processing (Applicable to GDPR): If you believe the information is incorrect or the processing is illegal, you can request to restrict the processing of the information.
  1. Right to Complain and Report: If you believe that the processing of information infringes your rights and interests, you can contact us (service@weiduyun.com) or file a complaint with the regulatory authorities (such as the Cyberspace Administration of China, EU EDPB).
Response Time Limit: We will process your request within 15 working days, and complex cases may be extended to 30 working days (we will inform you of the reason in advance).

8. Policy Updates and Notifications

 
  1. If it is necessary to update the Policy due to changes in laws and regulations or business adjustments, we will publicly display the updated content in a prominent position on the Platform's homepage and notify you via email, in-site messages, and other methods.
  1. Major changes (such as expanding the scope of information collection and adjusting sharing rules) will additionally require your confirmation and consent, while non-major changes will take effect from the date of public announcement.
  1. You can view historical versions through the "Privacy Policy" entry at the footer of the Platform to understand the change history.

9. Protection of Minors

 
If you are a minor under the age of 16, you must use the Platform Services under the accompaniment of a guardian, and the guardian must agree to this Policy. We do not actively collect minors' information; if we find that we have collected such information by mistake, we will delete it immediately. Guardians can contact us to inquire about and correct minors' information.

10. Contact Us

 
If you have any questions, complaints, or requests regarding this Policy, you can contact us through the following methods:
  • Privacy Dedicated Email: service@weiduyun.com (Priority Handling Channel)
  • Customer Service Phone: +86-17695986992 (9:00-18:00 on Working Days)
We will take every feedback seriously to ensure that your privacy rights are protected.
 
Nginx server needs to configure pseudo-static rules, click View configuration method