Effective Date: August 6, 2025
1. Introduction
This Privacy Policy explains how Siyu ("we," "us," or "our") collects, uses, stores, and protects your personal data when you use our multimedia voice diary application ("Siyu" or the "Service"). By using Siyu, you consent to the practices described in this policy, which is governed by the General Data Protection Regulation (GDPR) and other applicable data protection laws in France.
2. What Data We Collect
We collect two categories of data to provide and improve the Service:
2.1 Personal Data You Provide
Account Information: When creating an account, you may provide data such as your email address, username, and password (stored in encrypted form).
Diary Content: This includes text entries, images, and voice recordings you create, upload, or store in the Service.
Profile Information: Any optional details you choose to add to your profile (e.g., profile picture, bio).
2.2 Automatically Collected Data
Usage Data: Information about how you interact with the Service, such as features used, frequency of use, search queries, and tag categories applied.
Device Data: Details about your device, including device model, operating system, unique device identifiers, IP address, and network information.
Log Data: Technical logs, such as access times, error reports, and service performance metrics.
3. How We Use Your Data
We use your data for the following purposes:
To Provide the Service: Hosting your diary content, enabling audio playback, smart search, and tag categorization; maintaining your account; and ensuring the Service functions properly.
To Improve the Service: Analyzing usage patterns to enhance features, fix bugs, and develop new functionalities that better meet user needs.
To Ensure Security: Detecting and preventing unauthorized access, fraud, or misuse of the Service; protecting user accounts and content.
To Communicate with You: Sending important updates about the Service, responding to support inquiries, or notifying you of changes to this policy (via your provided email address).
4. Data Storage and Security
Storage Location: Your data is stored on secure servers located in France, in compliance with GDPR requirements.
Retention Period: We retain your diary content and account data for as long as your account is active. If you delete your account, we will permanently remove your data within 30 days, unless legal obligations require longer retention.
Security Measures: We implement industry-standard security protocols, including encryption of data in transit (via SSL/TLS) and at rest, access controls, and regular security audits to protect your data from unauthorized access, loss, or theft.
5. Data Sharing and Disclosure
We do not sell, rent, or share your personal data with third parties for marketing purposes. We may share data only in the following circumstances:
Service Providers: Trusted third-party vendors who assist in operating the Service (e.g., cloud hosting providers, payment processors), bound by strict confidentiality agreements.
Legal Obligations: If required by law, court order, or government request; or to protect our rights, the Service, or the safety of users.
With Your Consent: In other cases where you explicitly 同意 (consent) to sharing.
6. Your Data Rights Under GDPR
As a user in France, you have the following rights regarding your personal data:
Right to Access: Request a copy of the personal data we hold about you.
Right to Rectification: Request correction of inaccurate or incomplete data.
Right to Erasure: Request deletion of your data (also known as the "right to be forgotten"), subject to legal exceptions.
Right to Restriction of Processing: Request that we limit how we use your data in specific situations.
Right to Data Portability: Request a copy of your data in a structured, machine-readable format to transfer to another service provider.
Right to Object: Object to the processing of your data for legitimate interests or direct marketing purposes.
To exercise these rights, contact us at the email address provided in Section 10. We will respond to your request within one month.
7. Children’s Privacy
Siyu is not intended for use by individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware of such data, we will delete it immediately. Parents or guardians who believe their child has provided data to us may contact us to request removal.
8. Third-Party Links
The Service may contain links to third-party websites or services. This Privacy Policy does not apply to those third parties, and we are not responsible for their privacy practices. We encourage you to review their privacy policies before using their services.
9. Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. When we make material changes, we will notify you via email or a prominent notice in the Service, and update the "Effective Date" at the top. Your continued use of Siyu after the update constitutes acceptance of the revised policy.
10. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your data, please contact our data protection team at:
siyu-customerfeedback@outlook.com