1. Purpose and Validity: This Privacy Policy (hereinafter called "this Policy") is designed to specify the scope, methods, and rules for collecting, using, storing, and protecting users' (hereinafter called "you") personal information by the operator (hereinafter called "we") of the Mirek AI Chat Application (hereinafter called "Mirek" or "this App"), so as to safeguard your information security and legitimate rights. This Policy is a key component of the Mirek User Agreement and holds the same legal force as the User Agreement; by using the services of this App, you confirm that you have thoroughly read, understood, and accepted all content of this Policy.
2. Definition of Information: For the purposes of this Policy, "personal information" refers to various types of data recorded electronically or via other means that can identify a specific individual either alone or when combined with other information, or reflect the activities of a specific individual. This includes but is not limited to basic identity data, device information, and usage behavior data; "anonymized information" refers to data that cannot identify a specific individual and cannot be restored after processing, and such information is not governed by this Policy.
1. Optional Information Collection: To enhance your service experience, you may choose at your own discretion whether to provide the following information:
◦ Personal Preference Data: Such as chat topic preferences, language habits, and interface theme settings that you actively set up. These are used to deliver personalized chat content recommendations and match AI interaction modes that better suit your needs;
◦ Communication Data: If you get in touch with us regarding issues related to this App’s services, we will collect the text content you provide, relevant chat record screenshots (which require your active submission), and contact details (such as your voluntarily provided email address or mobile phone number) to follow up on resolving the issue and respond to you.
1. Collection of AI Interaction Data: When you use the AI chat service of this App, we will automatically record the chat content between you and the AI (including the text, images you send, and the response content generated by the AI). This information is only used for: refining the AI algorithm model, boosting the accuracy and naturalness of interactions, and ensuring the continuity of chat content (e.g., you can view past chat records after logging back in). We will automatically identify and desensitize sensitive information (such as ID card numbers and bank card numbers) in the chat content.
1. Limits on Usage Scope: We will only use your personal information in the following legal scenarios, and the scope of use is strictly limited to what is necessary to achieve the service purpose:
◦ Provision of basic services: Enabling the synchronization of historical messages through chat records;
◦ Enhancement of service experience: Adjusting AI interaction strategies (e.g., cutting down on recommendations for topics you have no interest in) and improving the operation process of the App interface based on your usage behavior data and preference data;
◦ Security and compliance guarantee: Using device and network information to identify abnormal login activities (such as logging in from an unfamiliar location and multiple failed password attempts), preventing malicious attacks and fraudulent activities, and ensuring that the services comply with relevant laws and regulations;
◦ Communication and issue handling: Responding to your service inquiries and notifying you of service updates or policy changes (such as notifications about revisions to this Privacy Policy) via the contact details you provide. If you clearly refuse to receive non-essential notifications, we will stop sending them.
1. Storage Method and Location: Your personal information will be stored on the secure servers we have established (the servers are located in the Chinese mainland, in line with data localization storage requirements). Encryption storage technologies (such as SSL/TLS transmission encryption and AES 256-bit data encryption) are used to ensure the security of information during transmission and storage, and to prevent information leakage, tampering, or loss.
2. Security Guarantee Measures: We have established a comprehensive information security management system and adopted the following technical and management measures to protect your personal information:
◦ Access permission control: Strictly limiting internal personnel’s access rights to personal information, and only authorizing staff in necessary positions to view relevant information when performing their job duties. This requires identity verification (such as account password and two-factor authentication);
◦ Security monitoring and emergency response: Monitoring the server operation status and information access logs in real time. If abnormal access, data leakage, or other security incidents are detected, an emergency plan will be activated immediately (such as suspending relevant services and blocking abnormal requests). You will be notified within 72 hours if your information security is involved, and a report will be submitted to the regulatory authorities as required;
◦ Employee training and compliance review: Conducting regular information security and privacy protection training for employees to clarify information processing standards; carrying out regular privacy compliance reviews and promptly adjusting information processing practices that do not meet the standards.
1. Information Destruction Rules: When your personal information reaches the retention period or you apply for account cancellation, we will ensure that the information cannot be recovered by means such as complete deletion, data overwriting, and physical destruction of storage media. If the retention period needs to be extended due to legal and regulatory requirements, the information will be stored within the scope of compliance until the relevant requirements expire, after which it will be destroyed in accordance with the rules.
1. Prohibition of Random Sharing: Except for the following legal situations or situations with your permission, we will not share your personal information with any third party:
◦ Obtaining your explicit consent: For example, if you authorize us to share information with cooperating third-party service providers (such as when you log in to Mirek through a third-party account, it is necessary to share basic account information for login verification), we will clearly inform you of the third party’s name, the scope of the shared information, and the purpose before sharing. We will only share the minimum set of information required to provide the service;
◦ Requirements of laws and regulations: If judicial organs or administrative supervision departments issue investigation letters, subpoenas, or other legal documents in accordance with the law requiring us to provide your personal information, we will provide it in strict accordance with the scope and procedures specified by law. We will also conduct the necessary review of the relevant information to ensure compliance with legal requirements;
◦ Protection of legitimate rights and interests: In the event of corporate changes such as mergers, divisions, acquisitions, or asset transfers, if the transfer of personal information is involved, we will notify you in advance through in-app announcements, pop-ups, and other methods. We will also require the transferee to continue fulfilling the information protection obligations specified in this Policy. If the transferee cannot meet the equivalent protection standards, we will stop the information transfer and delete the relevant information.
1. Prohibition of Illegal Transfer: We will not sell, lease, donate, or transfer your personal information to any third party in any other way unless we obtain your written consent and comply with relevant laws and regulations.
1. Applicable Rules: If you are a minor under the age of 18, you must read this Policy under the guidance of your legal guardian and obtain your guardian’s consent before using the services of this App. If your guardian does not agree to the content of this Policy, you must stop using this App immediately.
2. Special Provisions for Information Processing: We do not actively collect minors’ personal information. If a minor submits personal information without the guardian’s consent, the guardian may contact us through the "Contact Information" section in this Policy and provide relevant certification materials (such as the guardian’s identity certificate and the minor’s identity certificate). After verifying these materials, we will immediately delete the minor’s personal information and terminate the usage rights of their account.
1. Right to Revise the Policy: We reserve the right to revise the content of this Policy in accordance with updates to laws and regulations, adjustments to service functions, or changes in privacy protection requirements. The revised Policy will be publicly notified to you through in-app announcements, pop-up prompts, and other methods, with a public notice period of no less than 7 days. If you continue to use the services of this App after the public notice period expires, it will be deemed that you accept the revised Policy. If you do not agree to the revised content, you should stop using this App.
2. Notification of Important Revisions: If the revision of the Policy involves important content that may affect your rights and interests—such as expanding the scope of personal information collection, changing the purpose of use, or adjusting sharing/transfer rules—we will, while issuing the public notice, send a separate notification to you through the contact details you have reserved (such as SMS and email) to ensure that you are fully aware of the revised content.
1. Dispute Resolution: Any dispute arising from or related to this Policy shall first be resolved through friendly negotiation between the parties. If the negotiation fails, either party has the right to file a lawsuit with the people’s court that has jurisdiction in the location where we are based.
2. Contact Information: If you have any questions about this Policy, or need to exercise your information rights or report information security issues, you may contact us through the following method:
◦ Email address: mirek_office@gmail.com (we will respond to your inquiry or handle your request within 3 working days)
1. If any provision of this Policy is determined to be invalid or unenforceable, it will not affect the validity of the other provisions, and the other provisions shall continue to be implemented.
2. The formation, validity, performance, interpretation, and dispute resolution of this Policy shall all be governed by the laws of the People’s Republic of China (excluding conflict of laws rules).