隐私政策

版本发布日期： 2025 年 5 月 15 日

版本更新日期： 2025 年 5 月 15 日

版本生效日期： 2025 年 5 月 22 日

我们始终以尊重用户隐私、保障信息安全为前提，仅为实现软件核心服务、满足功能运行的实际需要收集相关信息。每项信息的收集范围、方式和使用目的，都会在本政策中清晰说明，让您对信息的处理过程一目了然、安心放心。

紧急联系信息
您主动填写的紧急联系人邮箱、手机号码，仅用于在您签到中断时发送状态提醒（邮件 / 短信），是实现安全守护核心功能的必要信息，绝不收集无关内容。
服务必需信息
签到记录：用来判断您的签到状态，及时触发紧急通知
设备标识：帮助识别异常登录行为，保障您的账户安全
网络信息：用于优化服务稳定性，排查通知发送失败的原因
以上信息都是服务正常运行的基础数据，和核心功能直接相关，不会超出必要收集范围。
补充说明
本软件无需注册、无需身份验证，也不会发送非紧急类的营销或服务通知，只收集实现核心功能的最小必要信息，绝不额外获取无关数据。

我们仅将收集的个人信息用于以下场景：
为您提供、维护并优化签到管理、紧急邮件 / 短信通知等核心服务
保障服务安全，及时识别和防范异常登录、恶意攻击等风险
遵循行业通用规范和相关要求
经您单独同意后，用于实现服务目的的其他合法用途

我们会严格保护您的个人信息，仅在以下必要情况下共享或披露，且始终坚守最小必要原则：
向您指定的紧急联系人：仅发送签到中断相关的状态提醒（邮件 / 短信），绝不额外披露其他任何信息
委托第三方服务提供商：邮件服务商、短信运营商仅负责处理紧急通知的发送，我们会要求他们履行严格的保密义务，不得将信息用于其他任何目的。同时，我们会对第三方服务商进行安全评估，并签订数据处理协议，确保他们的操作符合行业标准
合规要求：在符合行业规范的前提下，向相关机构提供必要信息，且会在允许范围内，尽力保护您的个人信息安全
您明确同意：经您主动、清晰的授权后，按约定范围使用或共享信息
未经您明确同意，我们绝不会向任何第三方共享、出售或披露您的个人信息。

为保障您的个人信息安全，我们已按照行业最佳实践，采取了以下具体保护措施：
技术措施：采用 AES-256 加密算法存储敏感信息，使用 HTTPS 协议传输数据，部署入侵检测与防护系统
管理措施：建立严格的数据访问权限控制机制，定期开展员工信息安全培训，对数据处理活动进行全程审计
物理措施：服务器部署在合规的云服务商机房，具备防火、防水、防磁等完善的物理防护能力
尽管我们已尽全力防护，但受网络环境、技术发展及不可预见因素限制，无法保证信息绝对安全。若因以下情形导致信息泄露或损失，我们会尽力协助您处理，但不承担相关责任：
您自身原因（如设备丢失、联系方式泄露、操作失误等）
不可抗力、网络攻击、第三方服务（短信 / 邮件运营商）故障等超出我们控制范围的因素

您依法享有以下个人信息相关权利，我们会积极响应您的合理请求：
知情权：您可以查看我们收集、使用、共享您个人信息的详细情况
更正权：您可以更正填写的紧急联系人邮箱、手机号码等信息
复制权：您可以请求复制您的个人信息副本
删除权：您可以申请注销账户并删除相关个人信息（注销后数据将被永久删除且无法恢复）
可携权：您可以请求将您的个人信息转移至您指定的其他服务提供者
解释权：您可以请求我们对个人信息处理规则进行详细解释
撤回同意权：您可以通过软件设置或联系客服，撤回对个人信息处理的同意。撤回后我们会停止相应的信息处理活动，但不影响撤回前基于您的同意已完成的处理
请求处理机制：您可以通过软件内 “设置 - 隐私中心” 或反馈渠道提交请求，我们会在 15 个工作日内予以响应。对于合理请求，我们会免费处理；对于超出合理范围或不符合要求的请求，我们会向您说明原因并妥善处理。

未满 14 周岁的未成年人：禁止使用本软件。若发现未成年人违规使用，我们会立即终止服务并删除相关信息，全力保护未成年人权益
已满 14 周岁但未满 18 周岁的未成年人：需在监护人明确同意并全程监督下使用本软件。因监护人监管不力导致的任何后果，由监护人和用户自行承担，我们会尽力协助处理，但不承担相关责任

存储方式：您的个人信息会存储在合规的云服务器中，并采取加密等措施保障存储安全
存储期限：紧急联系信息、签到记录等核心信息，会在您的账户存续期间保存；账户注销后，将在 30 个工作日内永久删除。设备标识、网络信息等日志类信息，存储期限为 6 个月，超出期限后会进行匿名化处理
账户注销 / 服务终止：账户注销或服务终止后，我们会在 30 个工作日内删除或匿名化处理您的个人信息，另有规定的除外

我们可能会根据行业变化、服务调整或运营需要，适时更新本隐私政策。更新后的内容会通过软件公告、站内提示等方式发布，发布后 7 个工作日起生效。若您继续使用本软件，即视为已阅读、理解并接受更新后的隐私政策。建议您定期查看政策更新内容。

紧急通知功能受网络、短信 / 邮件运营商等外部因素影响，可能存在送达延迟、误判或失败的情况，敬请知悉。建议您自行评估相关风险，合理使用该功能
我们不承担因您个人信息泄露、紧急联系人未及时处理、联系方式设置错误等原因导致的任何责任，建议您妥善保管相关信息并及时核对
本软件仅为安全守护辅助工具，您应根据自身需求合理使用，并自行承担使用过程中的相关风险

如您对本隐私政策或个人信息处理有任何疑问、建议或投诉，可通过以下方式联系我们：
收件人：Demumu 团队
地址：郑州市金水区凤鸣路 1 号院 2 号楼 1 单元 1402
邮编：450003
我们会在收到您的反馈后 15 个工作日内予以回复。若因邮件 / 短信传输延迟、地址填写错误等超出我们控制范围的原因导致未及时响应，我们也会尽力跟进处理。

本隐私政策的解释将遵循公平合理原则。对于本政策未约定的事项，我们会基于尊重用户权益、最小必要的原则妥善处理。

Privacy Policy

Version Release Date: May 15, 2025

Version update date: May 15, 2025

Effective date: May 22, 2025

We always take respecting user privacy and protecting information security as our fundamental premise, and only collect relevant information to realize the core services of the Software and meet the actual needs of its operation. The scope, methods, and purposes of collecting each type of information will be clearly specified in this Policy, ensuring that you have a clear understanding of and can feel assured about the entire information processing process.

Emergency Contact Information
The email address and mobile phone number of your emergency contacts that you voluntarily provide are only used to send status alerts (via email/SMS) when your check-in is interrupted. This information is essential for delivering the core safety protection function, and we will never collect any irrelevant content.
Service-essential Information
Check-in Records are used to determine your check-in status and trigger emergency notifications promptly. Device Identifiers help identify abnormal login activities and safeguard the security of your account. Network Information is used to optimize service stability and troubleshoot the causes of notification delivery failures.
All the above information constitutes basic data for the normal operation of the service. It is directly related to core functions and will never exceed the necessary scope of collection.
Supplementary Notes
This Software does not require registration or identity verification, nor will it send non-emergency marketing or service notifications. We only collect the minimum necessary information to realize core functions and will never obtain any irrelevant data without justification.

We only use the collected personal information for the following purposes:
To provide, maintain, and optimize core services such as check-in management and emergency email/SMS notifications for you
To ensure service security and timely identify and prevent risks such as abnormal logins and malicious attacks
To comply with universal industry norms and relevant requirements
For other legitimate purposes related to service provision, only with your separate consent

We will strictly protect your personal information and only share or disclose it in the following necessary circumstances, always adhering to the principle of minimality and necessity:
To Your Designated Emergency Contacts: We will only send status alerts related to check-in interruption (via email/SMS) and will never disclose any other information
Entrusting to Third-party Service Providers: Email service providers and SMS operators are only responsible for delivering emergency notifications. We will require them to fulfill strict confidentiality obligations and prohibit them from using the information for any other purposes. Meanwhile, we will conduct security assessments on third-party service providers and sign data processing agreements to ensure that their operations comply with industry standards
Compliance Requirements: When required to do so under industry norms, we will provide necessary information to relevant authorities, and will make every effort to protect the security of your personal information to the maximum extent permitted
Your Explicit Consent: We will use or share information within the agreed scope only after obtaining your active and clear authorization
Without your explicit consent, we will never share, sell, or disclose your personal information to any third party.

To safeguard the security of your personal information, we have taken the following specific protection measures in accordance with industry best practices:
Technical Measures: Adopt the AES-256 encryption algorithm to store sensitive information, use the HTTPS protocol for data transmission, and deploy intrusion detection and prevention systems
Management Measures: Establish a strict access control mechanism for data, conduct regular information security training for employees, and conduct full-process audits of data processing activities
Physical Measures: Deploy servers in the computer rooms of compliant cloud service providers, which are equipped with comprehensive physical protection capabilities against fire, water damage, and magnetic interference
Despite our best efforts to protect your information, we cannot guarantee the absolute security of information due to limitations of network environment, technological development, and unforeseeable factors. In the event of information leakage or loss caused by the following circumstances, we will make every effort to assist you in handling the issue but shall not be liable for any consequences:
Your own reasons (such as device loss, leakage of contact information, operational errors, etc.)
Force majeure, cyber attacks, malfunctions of third-party services (such as email/SMS operators), and other factors beyond our control

You are entitled to the following rights relating to your personal information, and we will actively respond to your reasonable requests:
Right to Know: You may check the details of the personal information we collect, use, and share
Right to Rectification: You may correct the email address, mobile phone number, and other information of your emergency contacts that you provided
Right to Copy: You may request a copy of your personal information
Right to Deletion: You may apply for account cancellation and deletion of relevant personal information (please note that data will be permanently deleted and cannot be recovered after account cancellation)
Right to Data Portability: You may request to transfer your personal information to another service provider designated by you
Right to Explanation: You may request us to provide a detailed explanation of the rules for processing personal information
Right to Withdraw Consent: You may withdraw your consent to the processing of your personal information through the Software settings or by contacting customer service. Upon withdrawal of consent, we will stop the corresponding information processing activities, but this will not affect the processing activities completed based on your prior consent
You may submit your request through the "Settings - Privacy Center" in the Software or via the feedback channel. We will respond to you within 15 working days. We will process reasonable requests free of charge; for requests that are beyond a reasonable scope or do not meet relevant requirements, we will explain the reasons to you and handle them appropriately.

Minors under the age of 14: Prohibited from using this Software. If we detect any minor under 14 using the Software in violation of this rule, we will immediately terminate the service and delete relevant information to fully protect the rights and interests of the minor
Minors aged between 14 and 18: May use this Software only with the explicit consent and full supervision of a guardian. Any consequences arising from the guardian's failure to perform supervision obligations shall be borne by the guardian and the minor user. We will make every effort to assist in handling the issue but shall not be liable for any consequences.

Storage Method: Your personal information will be stored on compliant cloud servers, with encryption and other measures adopted to ensure storage security the duration of your account. Upon account cancellation, such information will be permanently deleted within 30 working days. Log information such as device identifiers and network information will be retained for 6 months, and will be anonymized after the retention period expires
Account Cancellation/Service Termination: Upon account cancellation or service termination, we will delete or anonymize your personal information within 30 working days, unless otherwise specified by relevant rules.

We may update this Privacy Policy from time to time based on industry changes, service adjustments, or operational needs. The updated content will be published via in-app announcements, in-app notifications, and other channels, and will take effect 7 working days after publication. Your continued use of this Software shall be deemed as your acceptance of the updated Privacy Policy. We recommend that you check for updates regularly.

The emergency notification function is subject to external factors such as network conditions and email/SMS operators, which may result in delayed delivery, misjudgment, or delivery failure. Please be aware of this and assess the relevant risks independently to use the function properly
We shall not be liable for any consequences arising from the leakage of your personal information, failure of emergency contacts to process notifications in a timely manner, incorrect setting of contact information, and other such reasons. We recommend that you properly keep relevant information and verify it in a timely manner
This Software is only an auxiliary tool for safety protection. You should use it reasonably according to your own needs and bear all relevant risks during use.

If you have any questions, suggestions, or complaints regarding this Privacy Policy or the processing of your personal information, you may contact us through the following means:
Recipient: Demumu Team
Address: Unit 1, Building 2, No.1 Courtyard, Fengming Road, Jinshui District, Zhengzhou City
Postal Code: 450003
We will reply to you within 15 working days after receiving your feedback. If we fail to respond in a timely manner due to factors beyond our control such as delays in email/SMS transmission or incorrect address information, we will make every effort to follow up and handle the issue.

This Privacy Policy shall be interpreted in accordance with the principle of fairness and reasonableness. For matters not stipulated in this Policy, we will handle them properly based on the principles of respecting user rights and interests and minimality and necessity.