Privacy Policy

Shenzhen Juchanghong Technology Co., Ltd., Address: Room 301, Building A2, Huaya Science and Technology Park, Longhua Sub-district, Longhua District, Shenzhen, China

Shenzhen Juchanghong Technology Co., Ltd. (hereinafter referred to as "Juchanghong" or "we") fully understands the importance of your privacy and fully respects your privacy. Before agreeing to submit your personal data to us, please carefully read and understand this Privacy Policy (hereinafter referred to as "this Statement"). Unless required by applicable laws and regulations, we will not access or process your content data for any purpose without your consent. This Statement describes how we collect, use and disclose your personal data, as well as the legal basis and security measures for data processing. You also have the right to control your personal data when we process it, and any other relevant detailed information you need to know before providing us with personal data. However, this Statement may not cover all data processing scenarios. Prior to collection, we may notify you of data collection for specific products or services through supplementary statements or notices. ATR-X is an application we provide to deliver services. To explain how ATR-X accesses, uses and stores your personal information on your mobile phone, and what rights you possess, we use this policy to clarify the relevant matters.

1. Permissions We Require and Their Purposes

When using the application, you will need the following permissions and instructions:

Bluetooth Enable: This permission is required because we need peripheral Bluetooth devices to work properly.
Network-Based Approximate Location: This permission is required because we need to discover peripheral Bluetooth devices for use with this application.
Health Data (Health Data) Related Permissions: If you use this application to connect to Bluetooth devices that support health monitoring, we will request read/write health data permissions to receive, display and store health-related data collected by Bluetooth devices. This is only enabled with your separate consent, and no collection will occur without consent.

2. How We Collect Your Personal Data

We collect personal data in accordance with the principles of legality, legitimacy, necessity and minimal necessity, including but not limited to:

Device and Connection Information: Bluetooth device identification, device model, network status, approximate location information (used for Bluetooth discovery and pairing).
Health Data (Health Data): With your separate consent, collected via paired Bluetooth health devices, including but not limited to heart rate, sleep data, exercise data, blood oxygen, body temperature, step count, calories, activity duration and other health indicators reported by the device.
Usage Data: Application function usage records, device connection logs, fault and stability data.
Account Information You Provide Voluntarily: Information used for registration, login and identity authentication.

Health data is classified as **sensitive personal information**. We only collect it with your explicit separate consent. It is not a mandatory authorization and does not affect basic Bluetooth connection functions.

3. How We Process Your Personal Data

3.1 Purposes of Processing General Personal Data

Implementing Bluetooth device pairing, connection, control and status synchronization.
Ensuring normal application operation, troubleshooting and service optimization.
Identity authentication, account management and security risk control.

3.2 Purposes of Processing Health Data (Health Data)

We only process health data for the following specific and limited purposes:

Real-time synchronization, display and historical record query of data from Bluetooth health devices.
Generating personal health/exercise statistics, trend charts and data summaries.
Ensuring data accuracy, functional stability and exception alerts (if supported).
Compliance retention and audit in accordance with legal and regulatory requirements.

Health data is **not used** for advertising推送, user profiling, marketing promotion, or processed beyond the scope of authorization.

3.3 Data Sharing, Transfer and Public Disclosure

We will not share, transfer or publicly disclose your personal data (including health data) to third parties, except in the following circumstances:

With your separate consent (health data requires separate re-consent).
Necessary to complete a transaction/provide services, and the entrusted party assumes equivalent confidentiality and security obligations.
To fulfill legal obligations or comply with requests from competent authorities for law enforcement.
To protect personal and property safety in emergency situations.

4. How We Protect Your Personal Data

We attach importance to the security of your personal data and take technical and management measures in accordance with legal and regulatory requirements to prevent data leakage, tampering, loss and unauthorized access:

Transmission Security: Encrypted channels are used to transmit personal data and health data.
Storage Security: Health data is encrypted and stored in accordance with hierarchical protection requirements.
Access Control: Least privilege management is implemented, and only authorized personnel can process the data.
Device-Local Priority: Health data is preferentially stored locally and synchronized on demand.
Security Mechanisms: Vulnerability management, emergency response, security audits and regular evaluations are conducted.
As sensitive personal information, health data is protected with a **higher level of security**.

5. How You Can Access and Control Your Personal Data

You have the following rights regarding your personal data (including health data):

Access, query, correct and supplement your personal data and health data.
Request deletion, restriction of processing or refusal of subsequent processing (except as required by law for retention).
Withdraw authorization for health data: After withdrawal, collection and use will stop, and processing based on prior consent will not be affected.
Export personal data: Provide export in a structured, universal and machine-readable format in accordance with the law.

You should ensure that all personal data submitted is accurate and error-free. We will make our best efforts to maintain the accuracy, integrity and timely update of your personal data.

6. How to Delete Your Account

If you need to delete your account and the associated data, please contact: lydia@ultranet.com.cn. We will review as soon as possible and process it within fifteen (15) days after verifying your user identity, including **deleting or anonymizing your health data** (except as required by law for retention).

7. How We Update This Statement

We may update or modify this Statement from time to time in accordance with changes in our services or data processing. The updated version will be released within the application and take effect immediately upon release. We recommend that you review this Statement regularly (via "Settings" — "About" — "Privacy Policy"). If we make any material changes to this Statement (including expanding the scope of health data processing), we will notify you through appropriate channels and obtain your consent.