Amor Call Privacy Policy
Last Revision Date: December 18, 2025
I. Preface & Commitment
Amor Call is deeply committed to safeguarding the privacy and security of your personal information. As a professional social communication application, we recognize that the trust you place in us is the cornerstone of our development. We have constructed a multi-dimensional and rigorous information security management system, which is specially tailored to the characteristics of real-time communication services. This system comprehensively protects the confidentiality, integrity and availability of your personal information, ensuring that you can enjoy smooth, safe and reassuring communication services in the digital environment built by Amor Call.
II. Controller Information
Amor Call acts as the data controller responsible for the management and processing of your personal information in the course of providing services. We assume full responsibility for the legality, compliance and security of personal information processing activities. If you have any questions or demands regarding the handling of your personal data, please refer to the following contact information:
• Email: gogranate@gmail.com
• Address: RM A07, 1701-02, NEW TREND CENTRE, 704 PRINCE EDWARD ROAD EAST, San Po Kong, Hong Kong
III. Collection, Use and Scope of Personal Information
To ensure the stable operation of Amor Call's core communication services and provide you with personalized and high-quality user experience, we will collect and use your personal information in strict accordance with the principles of "legitimacy, necessity and minimum scope". The specific collection scope and use purposes are as follows:
(A) Core Communication-Related Information
This part of information is the basis for us to provide you with real-time call, voice chat and video communication services, and will be collected when you register and use the core functions:
1. Communication Behavior Information: In the process of using call, voice or video communication functions, we will automatically record necessary communication logs, including call time, call duration, communication object and call quality data. This information is only used to optimize communication quality, troubleshoot call failures (such as stuttering, disconnection, etc.), and ensure the smooth progress of communication services. We will not use this information for other purposes unrelated to communication services without your explicit consent.
(B) Device and Environment Information
To ensure the compatibility of the application with your device and the security of account and communication processes, our system will automatically collect and record relevant device and environment information when you use Amor Call services. This information does not directly identify your personal identity independently, and the specific content includes:
1. Device Basic Parameters: Device model, brand, operating system type and version, hardware configuration (such as CPU, memory, camera, microphone parameters), device unique identifier (such as IMEI, OAID), and device status (such as battery level, network connection status). These parameters help us adapt the application to different device configurations, solve compatibility problems (such as interface adaptation, function activation failure, etc.), and improve the stability of the application.
2. Network Environment Information: IP address, internet service provider information, mobile operator information, network connection type (Wi-Fi, 4G, 5G, etc.) and network signal strength. Collecting this information is mainly to locate network faults (such as regional network access restrictions, weak signal causing call quality degradation, etc.), optimize network resource allocation, and ensure the smoothness of real-time communication.
(C) Service Optimization and Analysis Data
In order to continuously improve the quality of Amor Call's services and provide you with more personalized function recommendations, we will collect and analyze your service usage logs and related diagnostic data. The specific content and use purposes are as follows:
1. Usage Behavior Logs: We will record your interaction behavior with the application, including the functions you use (such as one-on-one call, voice message, video message, etc.), the frequency of use of each function, the duration of single use, the pages browsed and the operation path. This data is used to analyze user usage habits, optimize the layout of application functions, and adjust the functional modules that are not easy to use, so as to improve the overall user experience.
2. Diagnostic Data: When the application has abnormal phenomena such as crash, freeze or function failure, our system will automatically collect diagnostic data, including crash reports, error logs, hardware setting information and running status data of the application. This data is only used to quickly locate and solve technical problems, improve the stability of the application, and will not involve any of your private communication content.
3. Personalized Analysis (with Explicit Consent): With your explicit consent in advance, we may use your Device ID and Advertising ID to carry out data analysis. The specific scenarios include evaluating the effect of marketing activities (to avoid invalid promotion), optimizing the operation efficiency of the service, and pushing personalized function recommendations or promotional information that may be of interest to you. You can withdraw your consent at any time through the application settings.
(D) Necessary Permission Application and Detailed Explanation
In the process of providing communication services, Amor Call needs to apply for certain necessary permissions from your device to ensure the complete realization of core functions and the best user experience. All permission applications follow the principle of "necessity and minimum scope", and will only be activated after obtaining your explicit consent. You can independently manage, enable or disable all the following permissions in the device settings at any time. The specific permissions and application scenarios are detailed as follows:
1. Camera Access Permission: This permission is required when you use video call, video message recording, or avatar shooting functions. We will only start the camera when you actively trigger the corresponding function, and will not collect images or video through the camera without your permission. If you refuse this permission, you will not be able to use video-related functions, but it will not affect the use of voice call and other basic functions.
2. Microphone Access Permission: This permission is a necessary condition for using voice call, voice message recording and other functions. We will only collect audio data through the microphone when you actively use the communication function that requires audio input, and will not carry out background audio collection. Refusing this permission will affect the use of voice-related core functions, but text-based interactive functions (if any) can still be used normally.
3. Photo Album Access Permission: When you need to upload photos from the photo album to set an avatar, share photos in the chat interface, or attach photos to message content, we will apply for this permission. This permission only allows us to read the photos you actively select, and will not automatically access, read or upload all photos in your album. Refusing this permission will only affect the function of uploading photos from the album, and will not affect other core communication functions.
4. Bluetooth Access Permission: When you need to connect external audio devices (such as Bluetooth headsets, Bluetooth speakers) to use Amor Call's audio communication services, we will apply for this permission to realize the rapid pairing and stable connection between the device and the external audio equipment, thereby improving the audio quality and communication experience during your use. If you refuse this permission, you can still use the device's built-in audio equipment to carry out communication.
5. External Storage Access Permission: This permission is divided into read and write permissions, which are used for different service scenarios and are applied on demand:
○ Read Permission: Used to retrieve files stored in the external storage of your device, such as uploading photos, videos or documents from the external storage to the Amor Call application for sharing or avatar setting.
○ Write Permission: Used to save the content generated or obtained in the Amor Call application (such as downloaded chat files, recorded voice/video messages, call records exported by you, etc.) to the external storage of your device, so that you can view and manage these contents offline later.
6. Advertising IDs Access Permission: To improve the accuracy and effectiveness of marketing activities and reduce the interference of irrelevant advertisements on you, we may collect your device's Advertising ID. This ID will be used to analyze the effect of promotional campaigns, optimize the direction of advertising placement, and avoid repeated pushing of the same advertising content. You can disable the collection of Advertising ID through the device settings or the application's privacy settings.
It should be emphasized that Amor Call will never use the obtained permissions for any purpose unrelated to the service, nor will it force you to authorize unnecessary permissions. If you refuse to authorize non-core permissions, it may affect the use of corresponding auxiliary functions, but it will not affect the normal use of basic communication services.
IV. Protection of Minors' Personal Information
Amor Call's services are oriented to users over 18 years old. We attach great importance to the protection of minors' personal information and strictly abide by the relevant provisions of national and regional data protection laws and regulations on minors' information protection. We have formulated a special minors' information protection mechanism to ensure that minors' legitimate rights and interests are not infringed.
(A) Core Protection Principles
We adhere to the principle of "not actively collecting" the personal information of minors under the age of 18. In order to prevent minors from using the service without authorization, we have set up a multi-level age verification mechanism in the account registration and login process: when registering an account, users need to complete the age confirmation, and for users who are suspected of being minors, we will further verify through real-name information (with the consent of guardians if necessary) to restrict minors' access to the platform. If it is found that we have inadvertently collected personal information of minors due to special circumstances (such as false age information provided during registration), we will immediately stop the collection behavior and completely delete the relevant information within the shortest time (no more than 7 working days) after verification.
(B) Restrictions on Minors' Use
Minors under the age of 18 are not allowed to register accounts or use Amor Call's services independently. We remind minors that when using the Internet and related communication tools, they should be under the guidance and supervision of their parents or legal guardians, correctly recognize the risks of online communication, and not arbitrarily disclose their personal information (such as name, school, family address, contact information, etc.) to strangers to avoid information leakage and potential safety hazards.
(C) Responsibilities of Guardians
If you are a parent or legal guardian of a minor and find that your child has registered an Amor Call account or provided personal information to us without your consent, please contact us immediately through the official channels specified in this policy. After you provide the necessary proof materials (such as guardian's identity certificate, minor's identity certificate, and proof of guardianship relationship) and we verify the relevant information, we will take immediate measures to delete the minor's account and all stored personal information. At the same time, we will take technical measures (such as restricting the use of relevant mobile phone numbers or email addresses for re-registration) to prevent the minor from reusing the relevant information to register and use the service.
(D) Application for Minors' Data Deletion
If you have any reason to believe that Amor Call has collected personal information of minors, please contact us through the official email (gogranate@gmail.com) as soon as possible and explain the specific situation. After receiving your valid application and verifying the relevant information, we will review and process it immediately, and complete the deletion of the relevant data within 15 working days. At the same time, we will feed back the processing result to you through the contact information you provided.
V. Sharing, Transfer and Disclosure of Personal Information
Amor Call attaches great importance to the security of your personal information and will never arbitrarily share, transfer or disclose your personal information to third parties. Except for the situations specified by laws and regulations or with your explicit consent, we will strictly restrict the scope of personal information sharing and take sufficient security protection measures.
(A) Data Sharing
1. Based on Explicit Consent: Before sharing your personal information with any third party (excluding authorized partners who provide auxiliary services), we will clearly inform you of the name of the third party, the scope and type of shared information, the purpose and duration of use, and other key information, and only carry out the sharing behavior after obtaining your clear and explicit consent. You have the right to refuse such sharing requests.
2. Compliance with Legal Obligations: When facing legal investigations, court subpoenas, administrative orders or other mandatory legal requirements, we may disclose your personal information within the scope of legal provisions. In such cases, we will strictly abide by the principle of minimum necessity, only disclose the information that is absolutely necessary to meet the legal obligations, and actively verify the legality and validity of the relevant legal documents. At the same time, we will try our best to notify you of the relevant situation in advance (unless it is prohibited by laws and regulations).
3. Cooperation with Authorized Partners: In order to better provide you with stable and high-quality communication services, we may entrust some authorized third-party partners to complete certain auxiliary service links. These partners include but are not limited to technical infrastructure service providers, communication quality optimization service providers, payment processing service providers (if there are paid functions), and customer service outsourcing agencies. When sharing information with these partners, we will strictly screen their qualifications, sign formal data processing agreements, clearly stipulate their rights, obligations and liability for breach of contract, and only provide the minimum information necessary for them to perform their duties. At the same time, we will conduct regular supervision and inspection on their information processing activities (including on-site inspections, data security audits, etc.) to ensure that they do not use the shared information for any purpose beyond the agreement.
(B) Specific Cooperation with Third Parties and Information Protection
In the daily operation process of Amor Call, the scenarios of cooperation with third parties and the corresponding information sharing rules are as follows: 1. Technical Infrastructure Cooperation: We may cooperate with cloud service providers to store non-sensitive operational data (such as application operation logs, non-identifiable device parameters). The shared data will be desensitized in advance, and the cloud service provider is required to adopt the same level of security protection measures as us. 2. Marketing and Effect Evaluation: We may share non-identifiable user behavior data (after anonymization) with professional marketing analysis agencies (such as Appsflyer) to carry out marketing attribution analysis and optimize the effect of promotional activities. These data do not involve any information that can identify your personal identity. 3. Payment Processing (if applicable): If you use the paid functions in Amor Call, we will share the necessary transaction information (such as order number, transaction amount) with the payment service provider to complete the payment processing. The payment service provider will strictly abide by relevant financial regulations and data protection laws to protect the security of your transaction information. All the above cooperative third parties must sign a strict data protection agreement with us. The agreement clearly stipulates that they must process personal information in accordance with our requirements, this privacy policy and relevant national and regional laws and regulations, and assume corresponding liability for compensation for any information leakage or improper use caused by their reasons.
VI. Security Protection Measures for Personal Information
Aiming at the characteristics of real-time communication services, Amor Call has established a full-link, multi-level personal information security protection system, integrating advanced technical measures and strict management systems to comprehensively safeguard the security of your personal information and prevent risks such as information leakage, tampering and loss.
(A) Technical Protection Measures
1. Data Encryption Technology: We adopt end-to-end encryption technology for your real-time communication content (voice, video, text messages), ensuring that only you and the communication object can decrypt and view the content, and even we cannot obtain the original communication content. At the same time, we use SSL/TLS encryption technology for data transmission, and adopt AES-256 encryption technology for data storage to ensure the security of data during transmission and storage.
2. Security Defense System: We deploy advanced security protection systems, including firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), etc., to resist malicious network attacks such as hacking, virus intrusion and DDoS attacks. We also conduct regular security vulnerability scans and penetration tests on the application and server systems to discover and fix potential security risks in a timely manner.
3. Data Desensitization and Anonymization: For data that does not need to be displayed in the original form (such as device information, usage logs), we adopt desensitization or anonymization processing (such as masking part of the device ID, removing personal identifiers in the logs), reducing the risk of information leakage even if the data is accidentally obtained.
4. Access Control Mechanism: We implement a strict access control mechanism based on the principle of least privilege. Only employees who really need to access sensitive information (such as customer service, technical maintenance personnel) can obtain the corresponding access rights after passing multi-level identity verification (such as account password + dynamic verification code + work certificate verification). At the same time, we record all access behaviors to sensitive information for traceability.
(B) Management Protection Measures
1. Strict Internal Management System: We have formulated a complete set of personal information security management systems, including data classification and grading management regulations, employee information security code of conduct, data processing operation specifications, etc., to standardize the behavior of internal employees in processing personal information.
2. Regular Security Training and Assessment: We regularly carry out privacy and information security training for all internal employees, covering the content of data protection laws and regulations, security protection skills, risk identification and response, etc. We also conduct regular assessments to ensure that every employee has a sufficient sense of information security and abides by relevant operating procedures.
3. Security Incident Response Plan: We have formulated a complete security incident response plan, which clearly defines the handling process, division of responsibilities and response measures for information security incidents (such as data leakage, system intrusion). In the event of a security incident, we will activate the emergency response mechanism immediately, investigate the cause of the incident, take measures to control the scope of the incident, and notify the relevant authorities and affected users in accordance with legal requirements.
VII. Your Rights to Manage Personal Information
In accordance with the provisions of relevant national and regional data protection laws and regulations, you, as the subject of personal information, enjoy the rights to inquire, access, correct, delete, restrict processing and withdraw consent regarding your personal information held by Amor Call. We provide convenient channels for you to exercise these rights. The specific ways to exercise the rights are as follows:
(A) Inquiry and Access to Personal Information
1. Self-service Inquiry and Access: You can log in to your Amor Call account, enter the [My] page, and then enter the [Privacy Settings] or [Account Management] module to view and query your personal profile (nickname, avatar, signature), account registration information, call logs, chat records (stored locally or in the cloud), and other relevant content. You can also modify the editable information (such as nickname, avatar, signature) through this channel.
2. Consulting Customer Service: If you encounter technical difficulties or cannot find the information you need when inquiring and accessing information through self-service channels, you can contact our customer service team through the in-app customer service function or official email. After we verify your identity (to ensure the security of your information), we will assist you in completing the inquiry and access of relevant information and respond to your request within 15 working days.
3. Application for Access to Other Information: For personal information generated during your use of the service that cannot be accessed through self-service channels (such as information shared with third parties, historical operation logs), you can submit an access application to us through the official email. We will review your application in accordance with relevant procedures and agreements, and provide you with accessible information in a safe and appropriate way within a reasonable time (no more than 30 working days).
4. Obtaining Data Copies: If you need a copy of your personal information held by us, you can put forward a copy application to our customer service team through the official email. After verifying your identity, we will provide you with the data copy in a structured, commonly used and machine-readable format (such as PDF, CSV) through a safe way (such as encrypted email). We will not charge any fees for providing data copies, unless the request is obviously excessive or repetitive.
(B) Correction and Deletion of Personal Information
1. Correction of Information: If you find that the personal information held by us about you is inaccurate or incomplete (such as incorrect bound mobile phone number, outdated avatar information), you can correct it through the self-service channel mentioned in (A) 1 above. If you cannot correct it by yourself, you can submit a correction application to us through customer service. After verifying the accuracy of the information, we will complete the correction within 10 working days.
2. Deletion of Information: You have the right to request us to delete your personal information in accordance with the law. The ways to apply for deletion are the same as the ways to inquire and access information mentioned above. In addition, in the following situations, you can take the initiative to request us to delete your personal information, and we will complete the deletion or anonymization processing within the specified time after verification:
○ Our collection, use or processing of your personal information violates the provisions of relevant laws, regulations or this privacy policy.
○ We process your personal information without obtaining your explicit consent in advance, and there is no other legal basis for processing.
○ The purpose of collecting and using your personal information has been achieved, and there is no need to retain the information according to legal provisions or service agreements.
○ You decide to terminate the use of Amor Call's services and apply for account cancellation.
○ We have permanently stopped providing all or part of the services to you, and the stored personal information is no longer necessary for the purpose of providing services.
It should be noted that if the deletion of information will affect the performance of legal obligations (such as retaining transaction records in accordance with tax regulations) or the handling of ongoing legal disputes, we may not be able to delete the relevant information immediately, but we will stop using the information for other purposes unrelated to legal obligations or disputes, and delete it after the relevant obligations or disputes are completed.
(C) Exercise of Other Rights
1. Right to Restrict Processing: If you dispute the accuracy of your personal information held by us, or believe that our processing of your personal information is illegal but do not want to delete the information, you can request us to restrict the processing of your personal information (such as suspending the use of the information for marketing purposes). We will review your request and take corresponding restrictive measures within 15 working days after verification.
2. Right to Data Portability: You have the right to request us to provide your personal information in a structured, commonly used and machine-readable format, and have the right to transfer the information to other data controllers designated by you (provided that the other party meets the corresponding data security requirements). You can exercise this right by submitting an application through the official email.
3. Right to Object: If we process your personal information based on legitimate interests or public interest, you have the right to object to such processing. We will re-examine the necessity of processing after receiving the objection. If we cannot prove that there are compelling legitimate grounds that override your interests, we will stop the relevant processing behavior.
4. Right to Withdraw Consent: If the data processing activity is based on your consent (such as personalized marketing), you have the right to withdraw your consent at any time. You can withdraw your consent through the [Privacy Settings] in the application or by contacting customer service. The withdrawal of consent will not affect the legality of the data processing activities carried out before the withdrawal.
VIII. Data Retention Period and Processing Rules
Amor Call strictly abides by the relevant provisions of national and regional privacy laws and regulations, and formulates scientific and reasonable data retention rules to ensure that the retention of your personal information is only for the period necessary to achieve the purpose of collection. We will not retain your personal information indefinitely. The specific retention framework is as follows:
(A) Determination of Retention Period
The retention period of your personal information is comprehensively determined by us based on three core factors: the purpose of data collection and use, the type of data, and the requirements of legal obligations. Once the retention period expires, we will take the initiative to delete or anonymize the relevant data. The specific retention period for different types of data is as follows:
1. Account Basic Information: It will be retained during the period when your account is in an active state. After you apply for account cancellation and complete the identity verification, we will delete or anonymize all your account basic information within 30 days, unless otherwise required by laws and regulations to retain it (such as retaining relevant information to handle potential disputes).
2. Communication-Related Information: Call logs and chat records (stored in the cloud) will be retained for 1 year from the date of generation, unless you choose to manually save them (the manually saved content will be retained until you actively delete it or cancel your account). The purpose of retention is to facilitate you to query historical communication records. After the retention period expires, the relevant information will be automatically deleted.
3. Transaction Records (if applicable): In order to meet the requirements of tax declaration, audit and other legal obligations, transaction records related to you (such as order information, payment records) will be retained for up to 7 years from the date of transaction completion. After the retention period expires, the transaction records will be anonymized (removing personal identity information) and can no longer be associated with your personal identity.
4. Customer Service Records: Records generated during your consultation and communication with customer service (including consultation content, processing process, processing results, etc.) will be retained for up to 2 years from the date of processing completion. The purpose of retention is to facilitate the handling of possible follow-up disputes or repeated inquiries. After the retention period expires, they will be automatically deleted.
5. Marketing-Related Data: If you have consented to receive marketing information (such as promotional activities, new function recommendations), the relevant data used for marketing will be retained until you withdraw your consent. After you withdraw your consent, we will delete the relevant marketing data within 6 months.
6. System Operation and Diagnostic Logs: Logs related to system operation (such as access logs, login logs) and diagnostic logs (such as crash reports, error logs) will be retained for up to 90 days. These logs are mainly used to ensure system security, troubleshoot technical problems and optimize service performance. After the retention period expires, they will be automatically cleared.
(B) Data Deletion and Anonymization Standards
When your personal information no longer needs to be retained (i.e., the retention period expires or the purpose of collection is achieved), we will delete the relevant data in accordance with our internal data processing specifications. The deletion methods include permanent deletion from the server, overwriting the data storage area, and destroying the physical storage medium (if applicable). For data that cannot be completely deleted due to technical reasons (such as data backed up in the offline storage system), we will take strict anonymization measures, including removing all identifiers that can directly or indirectly identify you (such as device ID, account information), so that the data can no longer be associated with a specific individual. Anonymized data will no longer be regarded as personal information and can be used for data analysis, service optimization and other legitimate business purposes without additional consent.
(C) Retention Requirements for Complying with Legal Obligations
In some special cases, even if the original retention period expires, we may continue to retain your personal information to meet legal, regulatory or contractual obligations. These situations mainly include: 1. Meeting the requirements of tax declaration, financial audit, accounting standards and other relevant regulations. 2. Handling ongoing legal disputes, responding to judicial or administrative inquiries, or assisting law enforcement agencies in investigating illegal acts. 3. Complying with the special provisions of industry regulations or regional data protection laws and regulations. In such cases, we will only retain the information necessary to meet the obligations, and stop retaining and delete the information immediately after the obligations are completed.
(D) Response to User's Retention-Related Requests
You have the right to inquire about the retention period, retention purpose and storage location of your personal information held by us. If you believe that our retention of your personal information exceeds the necessary period, you can submit a request for shortening the retention period or deleting the data to us through the official email. We will review your request in accordance with legal provisions and actual business conditions, and give you a clear reply within 30 days after receiving the request. If your request is reasonable and compliant, we will take corresponding measures to adjust the retention period or delete the data.
IX. Legal Basis for Data Processing and Your Core Rights
Amor Call strictly abides by the provisions of relevant national and international data protection laws and regulations when processing your personal information, and ensures that every data processing activity has a legal basis. The main legal bases for our processing of your personal information are as follows:
• Consent: For data processing activities that are not necessary for the provision of basic communication services (such as personalized marketing, data analysis for non-service optimization purposes), we will obtain your explicit consent in advance. You have the right to withdraw your consent at any time, and the withdrawal of consent will not affect the legality of the data processing activities carried out before.
• Performance of Contracts: When it is necessary to process your personal information to perform the service agreement signed with you (such as providing account registration services, completing real-time communication, processing transaction payments for paid functions, etc.), we will process the data based on the need to perform the contract. This is the necessary basis for us to provide you with core services.
• Legitimate Interests: When processing your personal information is necessary to safeguard our legitimate business interests (such as optimizing communication quality, improving user experience, preventing account theft and fraud, ensuring system security, etc.), and does not violate your legitimate rights and interests and public order and good customs, we will process the data based on legitimate interests. We will conduct a balance assessment before processing to ensure that our legitimate interests do not override your rights and interests.
• Compliance with Legal Obligations: When it is necessary to process your personal information to comply with the provisions of laws and regulations (such as responding to legal inquiries, fulfilling tax obligations, reporting security incidents in accordance with regulations, etc.), we will process the data based on the need to comply with legal obligations.
• Public Interest: When processing your personal information is necessary to carry out public interest activities (such as responding to public health emergencies, assisting in public security prevention and control, etc.) and does not violate your legitimate rights and interests, we will process the data based on the public interest.
As a data subject, you enjoy a series of core rights related to personal information protection under the framework of data protection laws. These rights are designed to ensure that you can effectively control your personal information. In addition to the rights mentioned in Chapter VII, the specific core rights also include:
1. Right to Lodge a Complaint: If you believe that our processing of your personal information has violated relevant data protection laws and regulations, you have the right to lodge a complaint with the local data protection supervisory authority (such as the Office of the Privacy Commissioner for Personal Data in Hong Kong, the Information Commissioner's Office in the UK, etc.).
2. Right to Know the Legal Basis: You have the right to request us to inform you of the specific legal basis for processing your personal information and the reasoning process for determining the legal basis.
We attach great importance to the protection of your core rights. If you need to exercise the above rights, you can contact us through the official channels specified in this policy. We will review your request in accordance with legal procedures and relevant regulations, and respond to you in a timely manner. Your trust is the foundation of our development, and we will always maintain the highest standards of data protection to safeguard your legitimate rights and interests.
X. Privacy Rights Under Major International and Regional Data Protection Laws
Amor Call is committed to complying with the provisions of major international and regional data protection laws and regulations around the world, and safeguarding the privacy rights of users in different regions. The main laws and regulations we abide by include the European Union's General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), the Brazilian General Data Protection Law (LGPD), and the Virginia Consumer Data Protection Act (VCDPA). Below, we will detail the specific rights you enjoy under these laws and the ways to exercise them.
(A) Rights Under the General Data Protection Regulation (GDPR) (For Users in the European Union)
If you are in the European Union (EU) or the European Economic Area (EEA), you enjoy the following rights under the GDPR:
1. Right of Access: You may request access to your personal data held by us and obtain detailed information about its processing, including the purposes of processing, the categories of personal data, the recipients of the data (including third parties in third countries), the retention period, and the source of the data (if not collected from you).
2. Right to Rectification: You may request us to correct inaccurate or incomplete personal data without undue delay. If necessary, you may also request us to supplement the incomplete data.
3. Right to Erasure (Right to Be Forgotten): You may request the deletion of your personal data, particularly when the data is no longer necessary for the purposes for which it was collected, you withdraw your consent and there is no other legal basis for processing, you object to the processing and there are no overriding legitimate grounds for continuing it, or the data has been unlawfully processed.
4. Right to Restrict Processing: You may request the restriction of processing of your personal data, particularly when you contest the accuracy of the data (during the verification period), the processing is unlawful but you do not want the data erased, we no longer need the data but you require it for legal claims, or you have objected to the processing (during the review period of the objection).
5. Right to Data Portability: You may receive your personal data in a structured, commonly used and machine-readable format and transfer it to another data controller without hindrance from us. If technically feasible, you may also request us to directly transmit the data to another data controller designated by you.
6. Right to Object: You may object to the processing of your personal data based on legitimate interests or public interest at any time. For processing for direct marketing purposes, you have an absolute right to object, and we will stop the relevant processing immediately after receiving the objection.
7. Right to Withdraw Consent: You may withdraw your consent for data processing based on consent at any time. This withdrawal will not affect the lawfulness of processing conducted prior to your withdrawal. The withdrawal method is simple and equal to the method of giving consent.
8. Right to Lodge a Complaint: If you believe your data rights have been violated, you may file a complaint with the data protection authority of the EU member state where you reside, work or where the alleged violation occurred.
(B) Rights Under the California Consumer Privacy Act (CCPA) (For California Residents)
If you are a resident of California, USA, you enjoy the following rights under the CCPA (including the California Privacy Rights Act, CPRA):
1. Right to Know About Personal Information: You have the right to request us to disclose the detailed information of your personal information collected, used, shared or sold by us in the past 12 months. The specific content includes: the specific categories of personal information we have collected; the specific content of the personal information we hold about you; the specific purposes for which we collect, use, share or sell your personal information; the specific categories of third parties with whom we have shared or sold your personal information. You can submit a "Right to Know" request to us up to twice a year, and we will not charge you any fees for this.
2. Right to Request Deletion of Personal Information: You have the right to request us to delete the personal information of you that we have collected or stored. However, in the following circumstances, we may not be able to meet your deletion request in accordance with the law: to complete the transaction you initiated or provide the service you explicitly requested; to detect security incidents, protect against malicious or illegal activity, or prosecute those responsible; to comply with legal obligations or exercise legal rights (e.g., tax reporting or responding to legal requests); to ensure the integrity and safety of our services.
3. Right to Opt-Out of Sale: You have the right to direct us not to sell your personal data to third parties. "Sale" under the CCPA refers to the exchange of personal data for monetary or other valuable consideration. If you opt out, we will cease selling your data immediately unless you later provide explicit consent to resume such sales.
4. Right to Opt-Out of Targeted Advertising: You have the right to opt out of the use of your personal data for targeted advertising. This means we will not use your data to deliver advertisements tailored to your interests or behavior across different websites, apps, or services.
5. Right to Non-Discrimination: You have the right to exercise your privacy rights without facing discrimination. We will not deny you goods or services, charge you different prices or rates, or provide a different level or quality of services solely because you exercised your rights under the CCPA.
6. Right to Correct Inaccurate Personal Information: You have the right to request us to correct inaccurate personal information about you. We will review and correct the information within a reasonable time after receiving the request and verifying your identity.
(C) Rights Under the Brazilian General Data Protection Law (LGPD)
If you are in Brazil, you have the following rights under the LGPD:
1. Right to Access: You may request information about the personal data we hold about you, including the purposes of processing, categories of data, recipients of the data, retention period, and the source of the data.
2. Right to Correction: If your data is inaccurate, incomplete, or outdated, you may request corrections, updates or supplements to ensure its accuracy and completeness.
3. Right to Erasure: You may request the deletion of your personal data from our systems, where legally permitted. This applies when the data is no longer necessary for the purposes for which it was collected, when you withdraw your consent, when the processing is unlawful, or when you object to the processing and there are no overriding legitimate grounds.
4. Right to Information: You may inquire about the organizations with whom we share your data, the reasons for sharing, and the scope of such sharing. We will provide you with clear and detailed information about the sharing behavior.
5. Right to Revoke Consent: You may withdraw your consent for specific data processing activities at any time. This withdrawal will not affect the lawfulness of processing conducted prior to your withdrawal. We will provide a simple way for you to revoke consent.
6. Right to Object: You may object to the processing of your personal information if it is based on legitimate interests, public interest or the performance of a public duty. We will cease processing unless we can demonstrate compelling legitimate grounds that override your interests, rights and freedoms.
7. Right to Data Transfer: You may request that we transfer your personal data to you or a third party of your choice in a structured, commonly used, and machine-readable format. We will facilitate the transfer if technically feasible.
8. Right to File a Complaint: If you believe your data protection rights have been violated, you may file a complaint with the National Data Protection Authority (ANPD) of Brazil.
(D) Rights Under the Virginia Consumer Data Protection Act (VCDPA)
If you are a Virginia resident, you have the following rights under the VCDPA:
1. Right to Opt-Out of Targeted Advertising: You may opt out of the use of your personal data for targeted advertising. This includes displaying ads to you based on your personal data collected across non-affiliated websites or applications.
2. Right to Opt-Out of Sale: You may opt out of the sale of your personal data to third parties. Under the VCDPA, "sale" is defined as the exchange of personal data for monetary or other valuable consideration. We will honor your opt-out request in a timely manner.
3. Right to Opt-Out of Profiling: You may opt out of profiling that supports decisions producing legal or similarly significant consequences for you. Profiling refers to the automated processing of personal data to evaluate, analyze, or predict certain aspects of your behavior, preferences, health, or creditworthiness.
4. Right to Access, Correct, and Delete: You may request access to the personal data we hold about you, including the categories of data collected, the purposes of processing, and the third parties with whom the data has been shared; you may request corrections to inaccurate or incomplete data; you may request the deletion of your personal data, unless we are required by law or legitimate business purposes to retain it.
5. Right to Appeal: If we deny your request to exercise the above rights, you have the right to appeal our decision. We will review your appeal and provide a written response within 60 days of receiving the appeal. If the appeal is still denied, we will inform you of the reasons and the way to file a complaint with the Virginia Attorney General.
(E) How to Exercise Your Rights Under the Above Laws
To exercise any of the rights outlined above, please contact us through the official email: gogranate@gmail.com. When submitting a request, please clearly state the right you want to exercise, the specific content of the request, and provide the necessary identity verification materials (to ensure that the request is made by you personally). We will respond to your request within the timeframe required by applicable law (typically within 30 to 45 days). If additional time is needed to process the request (due to the complexity of the request or the need to collect more information), we will notify you in writing within the initial response period and explain the reasons for the extension and the expected processing time. We will not charge any fees for processing your reasonable request, but may charge a reasonable fee for requests that are obviously excessive, repetitive or unfounded.
XI. Data Protection Officer (DPO)
To better protect your personal information and ensure compliance with relevant data protection laws and regulations, Amor Call has appointed a Data Protection Officer (DPO) to be responsible for supervising the company's personal information processing activities. If you have any questions, concerns or requests related to the processing of your personal data, or if you wish to learn more about your privacy rights, you may contact our Data Protection Officer:
• Name: Noah Carter
• Contact Email: gogranate@gmail.com
Our DPO is dedicated to addressing your inquiries, accepting your requests for exercising rights, and supervising the company's compliance with data protection laws and regulations.
XII. Updates to This Privacy Policy
We reserve the right to modify or update this privacy policy from time to time to reflect changes in relevant laws and regulations, changes in our service functions, or adjustments in data processing practices. Any updates to this privacy policy will be based on the principle of not reducing your legitimate rights and interests without your explicit consent. For minor changes that do not affect your core rights and interests, we will announce the updated content through the Amor Call application (such as in the [Notice] module) or the official website (if any) after the update takes effect. For significant changes that may have a material impact on your rights and interests (such as expanding the scope of personal information collection, changing the purpose of data processing, adjusting the way of information sharing), we will provide prominent notifications through in-app pop-up messages, push notifications, or sending emails to your registered email address at least 7 days before the changes take effect. At the same time, we will remind you to read the updated privacy policy carefully. Your continued use of Amor Call's services after the updated privacy policy takes effect will be deemed as your acceptance of the updated content. If you do not accept the updated content, you have the right to terminate the use of our services and apply for account cancellation.
You can view the latest version of this privacy policy at any time through the [Privacy Policy] module in the Amor Call application. We will also retain the historical versions of the privacy policy for your reference, and you can request to view the historical versions through the customer service channel.
XIII. Contact Us
For any questions, comments, suggestions or requests related to this privacy policy, the processing of your personal information, or the exercise of your privacy rights, you may contact us through the following methods:
1. Use the customer service feature within the Amor Call application: Enter the [My] page, select [Customer Service], and submit your inquiry or request.
2. Send an email to our official service mailbox: gogranate@gmail.com. When sending an email, please clearly state the subject of your inquiry or request (such as "Request for Access to Personal Information", "Question About Privacy Policy") and provide your account information and contact method to facilitate our communication and reply.
We strive to review and respond to all valid inquiries within 15 working days of receipt. If your inquiry involves complex issues that require more time to process, we will notify you of the progress of the processing in a timely manner. Your feedback is important to us, and we are committed to addressing your concerns promptly and effectively to continuously improve our privacy protection work.