1. Introduction

Shenzhen Bottlebowl Information Technology Co., Ltd. (hereinafter referred to as “we”) is well aware of the importance of personal information to you, and always adheres to the principles of “legality, legitimacy, necessity, and integrity” to protect your personal information security and privacy rights. This privacy policy applies to your access, browsing, and use of our official website (domain name: plugos.net, including subdomains and associated service pages). It details how we collect, use, store, and share your personal information, as well as your related rights. Please read this policy carefully before using the official website, especially the clauses highlighted in bold that are closely related to your rights. If you continue to visit or use the official website, it means that you have fully understood and agreed to our processing of your personal information in accordance with this policy; If you do not agree, you may stop using the official website, but you may not be able to enjoy some core services.

2. The personal information we collect

We only collect personal information within the necessary scope of “realizing service functions, fulfilling contractual obligations, and ensuring user safety”, and do not collect information unrelated to the above purposes. It is specifically divided into the following three categories:

2.1 Personal information necessary for basic business functions

This type of information is a prerequisite for the normal operation of the core services on the official website. If you do not provide it, you may not be able to use the corresponding basic functions:

1. Orders and Transactions: When you purchase products/services on the official website, you are required to provide the recipient’s name, contact phone number, shipping address (for logistics delivery), and payment related information (such as bank card number, payment platform account information, complete payment information is processed by cooperative payment institutions, we do not store complete bank card numbers).
2. Equipment and technical information: When you visit the official website, your device (such as a computer or phone) automatically sends technical information, including device model, operating system version, browser type, IP address, network operator, etc Wi-Fi Hotspot information and unique device identifiers (such as Android IMEI, iOS IDFA, only used for device adaptation) are used to ensure website compatibility and prevent network attacks.

2.2 Personal information related to additional services

This type of information is used to enhance the service experience. If you do not provide it, it will not affect the use of basic functions, but you may not be able to enjoy personalized and convenient services:

1. Personalized recommendation: Collect your official website browsing history, search keywords, click history, and duration of stay, and through analysis, recommend products, articles, or promotional activities that may interest you (prioritize showcasing related new products).
2. Customer support and feedback: When you consult through online customer service, feedback forms, emails or phone calls, you need to provide a problem description, relevant screenshots/files, and contact information (such as phone number)/ Email is used to quickly locate problems and follow up on processing results (such as providing product serial numbers for equipment troubleshooting).

2.3 Personal information obtained from third parties

Under your explicit authorization, we may obtain your information from legal and compliant third parties, including:

1. When you complete the transaction through a third-party payment platform (such as Paypal, Alipay), we obtain the payment result notice from the payment agency (such as whether the order is successfully paid) to update the order status;
2. When you authorize us to check the logistics progress, we obtain logistics tracking information (such as package location and delivery status) from our partner logistics companies to synchronize order dynamics with you.

3. How we use your personal information

We only use personal information within the scope of this policy statement, and the specific purposes include:

1. Provide and maintain services: Processing payments and arranging delivery based on your order information; Adapt official website functions based on device information (such as adapting web pages based on Android devices); Ensure your login security based on account information.
2. Optimize and improve services: Analyze your browsing, clicking, feedback, and other data to optimize the official website interface design (such as adjusting popular feature entrances), improve page loading speed, fix functional vulnerabilities, or develop new services (such as adding based on user needs) After sales function).
3. Security guarantee: Using device information and IP addresses to identify abnormal login behavior (such as remote login), detect fraud risks (such as false orders), and protect the security of your account funds and the operation order of the official website; Record network logs (including access time and IP address) Address, used for tracing network security incidents.
4. Marketing and Communication: On the premise of your consent, we will send you product update notifications and promotional activity reminders (such as new product launch emails and holiday discount messages); You can stop receiving marketing messages at any time by clicking the ‘unsubscribe’ link at the bottom of the email.

4. Sharing, Transfer, and Disclosure of Personal Information

We strictly control the external flow of personal information and only share, transfer or disclose it in accordance with the law in the following scenarios, ensuring clear security measures at every step:

4.1 Share with third-party service providers

We entrust a third party to provide you with logistics, payment, customer service, data analysis and other support services, disclose only the necessary information to complete the service, and bind the third party’s behavior through contracts:

1. Sharing scope: such as sharing “recipient name, address, phone number” with logistics companies (only for delivery), and sharing “your consultation records” with customer service outsourcing providers (only for follow-up feedback);
2. Constraints: Sign a Data Processing Agreement with a third party, specifying that they will only use the information within the authorized scope, take security measures such as encryption, not disclose it to other parties for the second time, and regularly verify the compliance of the third party.

4.2 Transfer to other entities

We will not actively transfer your personal information, only in the following special circumstances, and ensure that your rights are not harmed:

1. Obtain your explicit written consent;
2. Due to major changes such as company merger, division, acquisition, asset transfer, bankruptcy liquidation, etc., personal information is transferred as part of the assets to the new entity, and the new entity must continue to follow this policy in handling information (if the policy changes, you will be notified through official website announcements, emails, etc.).

4.3 public disclosure

We will not publicly disclose your personal information, and will only disclose it in accordance with the law under the following circumstances:

1. Obtain your explicit consent;
2. Comply with legal provisions or legitimate requirements of administrative and judicial authorities (such as court judgments, summons requiring disclosure);
3. To protect the legitimate rights and interests of us, you, or other users (such as disclosing necessary information to the police to assist in the investigation if the account is found to have been stolen);
4. Involving public safety or public interests (such as responding to major public health incidents and cooperating with government departments to trace close contacts).

5. Special protection for sensitive personal information

Once sensitive personal information (such as bank card information, minors’ information) is leaked, it may endanger your personal or property safety. We take stricter protective measures against it:

1. Financial account information: The complete bank card number, payment password, and other information are encrypted by the cooperating payment institution. We only store the last 4 digits of the bank card number for order verification and do not access or store sensitive financial information.
2. Information of minors: Our official website service is not applicable to minors under the age of 13 (if the local legal definition is different, the local regulations shall prevail); If it is found that underage information has been mistakenly collected, the processing will be immediately stopped and the information will be deleted after verifying the identity of the guardian; Guardians can contact us to inquire or delete information about minors.

6. The use of cookies and other tracking technologies

To optimize your user experience and analyze website traffic, we or third-party partners may use the following tracking technologies, and you can independently manage the relevant permissions:

6.1 Cookie

Cookies are small text files stored locally on your device, classified into the following types:

1. Necessary cookies: to ensure the basic functions of the official website (such as maintaining login status and saving shopping cart content), cannot be disabled; If disabled, it may result in the failure of functions such as order submission and account access.
2. Function cookies: Remember your preferences (such as language settings, font size), and do not need to reset them the next time you visit. Management method: You can disable non essential cookies through browser settings (such as Chrome “Settings - Privacy and Security - Cookies and Other Website Data”), but it may affect the service experience.

6.2 Other tracking technologies

1. Web beacons (transparent GIFs, pixel tags): embedded in official website pages or marketing emails, used to count page visits, confirm whether emails have been opened, and do not collect identity information.
2. Embedded script: Used to implement functions such as “online customer service pop-up window” and “share button”, it is only activated when you use the corresponding function, and the collected information is limited to the scope necessary for function implementation.

7. Storage and Security of Personal Information

7.1 Storage rules

1. Storage location: Your personal information is stored within the territory of the People’s Republic of China; If cross-border transmission is necessary due to business needs (such as providing services to overseas subsidiaries), we will comply with the requirements of the Personal Information Protection Law and use Compliance methods such as “standard contracts” and “security assessments” ensure the security of information overseas and notify you in advance.
2. Storage period: Information will only be retained for the “shortest period to achieve the collection purpose”, with the following specific rules: Account information: retained for one month after you cancel your account (except for those required by laws and regulations to be retained for a longer period of time); Order information: retained until 1 year after the completion of the order and expiration of the warranty period (or within the period required by tax and financial regulations); Information that exceeds the deadline will be processed through “anonymization” (deleting identifiable fields) or “complete deletion” (removing from servers or backups).

7.2 safety precautions

We adopt a dual approach of “technology+management” to ensure your information security:

1. Technical protection: Data transmission encryption: using SSL/TLS protocol to encrypt the transmission of personal information (such as login passwords, order information) to prevent theft during the transmission process; Storage encryption: Sensitive information (such as phone numbers and payment records) is stored encrypted and only authorized personnel can access it through a key; ◦ Security testing: Regularly conduct vulnerability scans and penetration tests on the official website to prevent hacker attacks and data leaks; Deploy firewalls and intrusion detection systems to intercept abnormal access.
2. Management standards: Permission control: Strictly restrict internal personnel’s access to personal information (such as only customer service can view consultation records), adopt the “minimum permission principle”, and track access behavior through ID verification and operation log records; Employee training: Regularly conduct training on privacy protection regulations, and only those who pass the assessment can participate in information processing work; Emergency response: Develop a “Data Breach Emergency Plan”. In the event of an information breach, the plan will be immediately activated (such as isolating risks, notifying affected users, and reporting to regulatory authorities), and remedial measures will be taken to reduce losses. Special note: Internet transmission is not absolutely secure. Even if we take the above measures, we cannot completely avoid the risk of illegal access to information; If you find any abnormal account (such as unfamiliar login or abnormal order), please contact us immediately to freeze your account, and we will assist you in identifying risks.

8. Your personal information rights

According to laws and regulations such as the Personal Information Protection Law and the EU GDPR, you have the following rights, and we will provide you with a convenient path to exercise them:

8.1 Access and query rights

You can view your personal information through the following methods: Send an email to support@trustkernel.com To apply for personal information inquiry (such as customer service communication records), we will verify your identity (such as checking your phone number and order number) within 15 days Reply within working days.

8.2 Correction and supplementation rights

If you find that your personal information is incorrect (such as incorrect shipping address) or incomplete (such as recipient not filling in), you can correct it through the following methods: Send an email to support@trustkernel.com We will process it within 15 working days after verifying the identity.

8.3 Delete Right

In the following situations, you may request us to delete personal information:

1. The purpose of information collection has been achieved (such as when the order is completed and the warranty expires);
2. You withdraw your consent (such as no longer agreeing to receive marketing information);
3. We process information in violation of this policy;
4. You will no longer use the official website services (such as account cancellation). Operation path: Send email to support@trustkernel.com Apply for partial information deletion; We will verify the identity 15 days later Complete deletion within working days (excluding information required by laws and regulations to be retained, such as order records for tax filing). Special note: After you delete the content in the public areas of the official website (such as the comment section and forum), the cache or search engine archive of the content may still be visible, and we cannot control third-party platforms. Please understand.

8.4 Withdrawal of consent and right to unsubscribe

1. Revoke permission authorization: You can disable permissions such as “location” and “camera” in the device system settings;
2. Unsubscribe from marketing information: Click on the “Unsubscribe” link at the bottom of the marketing email to unsubscribe. After withdrawing consent, we will no longer collect information based on this authorization, but it does not affect the previous legal processing based on consent.

8.5 Complaint and Appeal Rights

If you believe that our information processing behavior violates laws, regulations, or local policies, you can file a complaint through the following methods:

1. Contact us directly: send an email to support@trustkernel.com ;

9. Update of Privacy Policy

We may revise this policy based on changes in laws and regulations, business adjustments (such as adding new service functions), or user needs. The update rules are as follows:

1. Change: Privacy policy optimization or content changes will be directly updated on the “Privacy Policy” page of the official website, with a new “effective date” marked. Your visit to the official website will be deemed as acceptance of the change; We suggest that you regularly visit the “Privacy Policy” page on the official website to check the latest version.

10. Contact Us

If you have any questions about this policy, need to exercise your personal information rights, or provide feedback on privacy related issues, please contact us through the following methods:

1. Privacy protection email: support@trustkernel.com ；
2. Official website feedback: Log in to the official website “Service and Support - Exception and Feedback” and submit a message. After receiving your request, we will first verify your identity (such as checking your name, phone number, and account information), then process it in accordance with laws, regulations, and this policy, and provide feedback on the results within the prescribed time limit.

11. Supplementary Provisions

1. The establishment, effectiveness, implementation, interpretation, and dispute resolution of this policy shall be governed by the laws of the People’s Republic of China (excluding conflict of laws rules);
2. If there is a dispute between you and us regarding this policy, it should be resolved through friendly negotiation first; If no agreement can be reached through negotiation, either party has the right to bring a lawsuit to the people’s court with jurisdiction over our location;
3. This policy is the complete agreement between you and us regarding the processing of personal information. In case of any conflict with other terms on the official website (such as the user agreement), this policy shall prevail; If not specified in this policy, other terms shall apply.