¥ 人民币 $ USD € 欧元
中文 English
+8615524955555
menu
search
光合之境
cart
Menu

Privacy policy

Privacy Policy of Guanghezhijing (Guangzhou) Cross-border E-commerce Co., Ltd.

This Privacy Policy governs the online mall and related services (hereinafter the “Services”) operated by Guanghezhijing (Guangzhou) Cross-border E-commerce Co., Ltd. (hereinafter “we”, “us”, or “our”, registered address: Jiangyun Building, Tianhe District, Guangzhou City, Guangdong Province, P.R.C., Postal Code: 511000). Drafted in strict compliance with the General Data Protection Regulation (GDPR) and applicable privacy laws across Europe and the United States, this document sets out clear terms on how we collect, use, store, share, and safeguard your personal information, as well as the full rights you hold as a data subject. Please read this Policy carefully and ensure full understanding before accessing or using the Services; your continued use of the Services shall constitute your unconditional consent to all terms herein.

1. Collection and Use of Personal Information

When you use our mall services, browse platform pages, register an account, make purchases, contact customer support, or join platform activities, we collect your personal information strictly in line with the principles of lawfulness, fairness, and necessity. We will only process such information in accordance with this Privacy Policy and applicable legal requirements. While you may choose whether to provide requested personal data, please note that withholding certain essential information may prevent us from delivering our full range of products and services, or responding to your inquiries, after-sales requests, and other concerns in a timely manner.
Our collection and processing of your personal information are grounded in valid legal bases under the GDPR, including performance of a purchase contract with you, pursuit of legitimate interests necessary for contract fulfillment, compliance with legal and regulatory duties, and your explicit consent. We will only process your personal data for as long as such legal bases remain valid.

2. Types of Personal Information We Collect

2.1 Basic Identity and Contact Details

When registering a mall account, placing orders, contacting customer service, or participating in platform events, we collect your name, email address, mobile phone number, mailing (shipping/return) address, and contact preferences. If you purchase items on behalf of a third party, we also collect recipient details you provide, including name, mailing address, and contact number. This information is solely used to fulfill order delivery, process after-sales requests, and complete related service obligations.

2.2 Transaction and Payment Information

When completing transactions via our mall, we collect order records, payment history, product details, and logistics information for order fulfillment, fund settlement, delivery arrangement, after-sales support, and anti-fraud verification. We do not proactively store your full payment card details; sensitive payment data is processed directly by licensed, compliant payment providers, and we only receive essential transaction verification information.

2.3 Device and Service Usage Data

During your use of the Services, we automatically collect device-related information, including device model, unique device identifier, IP address, browser type and language, operating system, access timestamps, browsing history, search queries, time zone, and referral URL. This data is used to optimize service experience, resolve technical faults, and secure your user account.

2.4 Legally Mandated Identification Data

In statutory scenarios such as cross-border transactions and customs clearance, we may lawfully request government-issued identification documents. This information is only used to meet mandatory requirements for customs supervision and cross-border logistics clearance, and will never be repurposed for unrelated activities.

3. Purposes of Personal Information Processing

We adhere strictly to the purpose limitation principle when processing your personal information, with specific lawful uses as follows:
  • Core Service Delivery: Process product orders, complete payment settlement, arrange logistics, and provide after-sales return, exchange, and repair services to protect your consumer rights;
  • Account and Security Administration: Verify user identity, secure account assets, mitigate fraud, phishing, and malicious attack risks, and maintain orderly platform operations;
  • Service Updates and Notifications: Send critical alerts including order status, logistics updates, new product launches, and event promotions. You may opt out of marketing communications at any time, but cannot decline essential service notices related to order fulfillment or policy changes;
  • Legal and Regulatory Compliance: Abide by laws and regulations in China, Europe, and the United States, and cooperate with lawful inspections by tax, customs, judicial, and other public authorities;
  • User Experience Enhancement: Analyze user behavior to optimize mall layout, service processes, and overall service quality.

4. Collection and Use of Non-Personal Information

We collect non-personal information that cannot be used to directly identify a specific natural person, including occupation, postal code, area code, user behavior patterns, browsing preferences, and aggregated statistical data. As this data does not involve personal privacy, we may collect, use, transfer, and disclose it for service optimization, market analysis, and advertising improvement. If non-personal data is combined with personal information, the merged dataset will be treated as personal information and protected in full accordance with this Policy.

5. Cookies and Similar Tracking Technologies

Our mall, associated emails, and promotional content may use cookies, pixel tags, web beacons, and similar technologies to record browsing preferences, optimize page display, measure advertising effectiveness, and streamline login procedures. You may manage cookie settings via your browser, including disabling or deleting cookies; please note, however, that core platform functions may rely on cookies, and disabling them may limit your access to certain Services.
Log data we automatically collect (including IP address, browser details, and access timestamps) is solely used to analyze platform trends, administer the website, and address security risks, and will not be used for unauthorized personal identification.

6. Sharing, Transfer, and Disclosure of Personal Information

6.1 Information Sharing Principles

We do not sell your personal information to third parties. We only share necessary data with authorized partners in compliance with the GDPR and European and American privacy rules, following the minimum necessity principle. All partners are required to abide by strict data protection obligations and refrain from processing data beyond the authorized scope.

6.2 Authorized Third-Party Recipients

  • Service Support Partners: Logistics providers, payment processors, customer service platforms, cloud storage vendors, and other partners supporting order fulfillment, with only essential data shared;
  • Legal and Regulatory Bodies: Disclosure of required information to tax, customs, judicial, and other public authorities as mandated by law, legal process, or official requests;
  • Corporate Restructuring Scenarios: In the event of a merger, acquisition, or asset sale, personal data may be transferred to the successor entity, which shall be bound by the terms of this Privacy Policy.

7. Personal Information Security Measures

We prioritize the security of your personal information and implement industry-standard technical and organizational safeguards to prevent data leakage, tampering, loss, or unauthorized access:
  • Transmission Encryption: Use Transport Layer Security (TLS) and other advanced encryption protocols to protect personal data during transmission;
  • Secure Storage: Encrypt personal data and account passwords, restrict system access to authorized personnel only, and enforce strict access control protocols;
  • Physical and Administrative Protection: Deploy robust physical security for data storage facilities, establish comprehensive internal data management policies, and conduct regular security training and risk assessments.
While we maintain rigorous security standards, please acknowledge that no internet-based data transmission or storage system is entirely infallible. In the event of a data security incident, we will take immediate remedial action and notify relevant regulators and affected users in compliance with applicable laws.

8. Data Subject Rights Under the GDPR

If you are a resident of the European Economic Area (EEA), you are entitled to the following rights regarding your personal data under the GDPR. We will respond to valid requests within the statutory timeframe:
  • Right to Be Informed: Access clear details about how we process your personal data, including purposes, methods, scope, and retention periods;
  • Right of Access: Request a copy of your personal data and related processing records;
  • Right to Rectification: Request correction of inaccurate or incomplete personal information;
  • Right to Erasure (Right to Be Forgotten): Request deletion of personal data when processing purposes are fulfilled, legal bases expire, or consent is withdrawn (where applicable);
  • Right to Restriction of Processing: Request suspension of personal data processing under specified circumstances;
  • Right to Data Portability: Receive personal data in a structured, commonly used, machine-readable format, or request direct transfer to a designated third party;
  • Right to Withdraw Consent: Withdraw any previously given consent for data processing, without affecting the lawfulness of processing prior to withdrawal;
  • Right to Lodge a Complaint: Submit a complaint to the competent data protection authority in your country of residence if dissatisfied with our data practices.
To exercise any of these rights, please contact us using the details in Section 12 of this Policy. We will verify your identity promptly and process your request without unjustified delay, and will not discriminate against you for exercising your legal rights.

9. Personal Data Retention Period

We retain personal data only for the shortest period necessary to fulfill the purposes set out in this Policy, unless a longer retention period is required by law, regulation, or to protect legitimate legal interests. Upon expiration of the retention period, we will securely delete or anonymize your personal data in accordance with internal protocols.

10. Minors’ Privacy Protection

Our Services are intended for use by adults only. We do not knowingly collect personal data from individuals under the age of 16. If a parent or guardian becomes aware that their child has provided us with personal data without consent, they may contact us to request immediate deletion of such information, and we will act promptly upon verification.

11. Policy Updates and Notices

We reserve the right to revise this Privacy Policy periodically to reflect legal updates, business changes, or service improvements. In the event of material changes, we will notify you via mall homepage announcements, email, or in-platform messages prior to the revised Policy taking effect. Your continued use of the Services after the effective date of revisions constitutes acceptance of the updated Policy.

12. Contact Information and Complaint Channels

If you have questions, concerns, or requests regarding this Privacy Policy or our personal data processing practices, or wish to file a privacy-related complaint, please reach out to us via the following channels:
  • Contact Person: Ms. Song
  • Contact Number: +8615524955555
  • Corporate Email: admin@msx9.com
  • Working Hours: Monday to Friday, 9:00 – 18:00 (excluding statutory public holidays)
  • Registered Address: Jiangyun Building, Tianhe District, Guangzhou City, Guangdong Province, P.R.C., Postal Code: 511000

13. Android Application Permission Explanation

All permissions requested by our mall’s Android application are essential for service delivery. We will only activate permissions after obtaining your explicit consent, with limited and specified uses as follows:
  • Storage Permission (WRITE_EXTERNAL_STORAGE): Access to SD card files, solely used for avatar customization in the user center and customer service inquiries prior to purchase; no unauthorized secondary uses;
  • Camera Permission (CAMERA): Access to device camera, solely used for avatar updates, customer service support, and QR code scanning for platform promotions (e.g., bargaining, group buying);
  • Recording Permission (RECORD_AUDIO): Access to device microphone, solely used for sending voice messages to customer service for pre-purchase product inquiries.
You may enable or disable these permissions at any time via your device’s system settings. Disabling a permission will only affect the related function, and will not impact your use of other mall services.
Nginx server needs to configure pseudo-static rules, click View configuration method