Your trust is of utmost importance to us. We deeply understand the significance of your personal information. We will collect, use, and share your personal information in accordance with legal requirements, and implement corresponding security protection measures to safeguard the security and controllability of your personal information to the best of our ability. This Privacy Policy applies to all services provided by Gmmat. It should be noted that this Privacy Policy does not apply to services provided by third – parties that are presented on, linked to, or repackaged with our services and are subject to other privacy policies. Although these third – party services are associated with ours, we do not understand or control their actions, and thus are not responsible for them. Please exercise caution when accessing or using their services until you have reviewed and accepted their privacy policies. If you allow us to share your information with third – party websites, you will be subject to the service terms and privacy policies of those third – party websites.

This Privacy Policy will help you understand the following aspects:

I. Scope of Application
II. How We Collect and Use Your Personal Information
III. How We Share, Transfer, and Publicly Disclose Your Personal Information
IV. Use of Cookies and Web Beacons
V. How We Store Your Personal Information
VI. How We Protect Your Personal Information
VII. Your Rights
VIII. Information on Minors
IX. How Your Personal Information is Transferred Cross – border
X. Revision and Notification of the Privacy Policy
XI. How to Contact Us

I. Scope of Application

1. This Privacy Policy applies to the services provided by Gmmat. It should be emphasized that this Privacy Policy does not apply to services provided by other third – parties to you, except for the information shared with third – parties as confirmed by you in accordance with Article 4 of this Privacy Policy. Please be aware that if you provide personal information when browsing third – party websites or using third – party products or services, your information will be subject to the privacy policies of those third – parties. We assume no legal liability. Please make sure to carefully read the privacy policies of those third – parties and confirm your acceptance at that time.

II. How We Collect and Use Your Personal Information

Personal information refers to various information recorded electronically or in other ways that can identify your identity either alone or in combination with other information, or reflect your activities. We collect only the information necessary for the realization of product functions, based on the principles of legality, legitimacy, and necessity.

1. How We Collect Your Personal Information
   • Personal Information Involved in Obtaining and Using Gmmat Mobile Functions
     • Device Information
       When you obtain and use Gmmat mobile, to ensure your normal use of Gmmat mobile services, more accurately locate and resolve issues you encounter during use, improve and optimize the service experience, and safeguard the security of your account, we will collect device attribute information (such as your hardware model, operating system version, IP address) and device connection information (browser type, telecom operator).
     • Log Information
       Our servers will automatically record the requests you send when accessing Gmmat mobile, including your IP address, browser type, hardware device information, operating system version, network operator information, and the date, time, and duration of your service access. Note that this is the basic information we collect to ensure the normal operation of our software and services.
     • Account Registration Information
       When you use Gmmat cloud mobile services to log in to games, social media, or e – commerce platforms operated by third – parties, you may need to register or log in to your third – party platform accounts. These third – party platforms may collect and use your relevant information to enable you to use their services. Rest assured that Gmmat mobile will not collect or use any of your third – party platform account information or other information you provide to third – party operators. Regarding how third – party operators collect and use your personal information, we recommend that you refer to their relevant service agreements and privacy policies.
     • Contact Information for Participating in Marketing Activities
       Gmmat mobile may launch marketing activities for newly introduced services and functions from time to time. If you participate in these activities, we will collect your identity and contact information through the activity interface to get in touch with you. When it is necessary to issue marketing rewards, we may also collect your transaction account information. The information collected may vary depending on the specific marketing activity. Please refer to the specific rules of the relevant marketing activities. If you do not participate in these activities, you do not need to provide the above – mentioned information.
   • System Privacy Permissions Involved in Using Gmmat Mobile Business Functions
     Each business function may call on system privacy permissions. (After obtaining your authorization, we will enable the relevant permissions. You can revoke the authorization at any time in the system. Revoking the authorization will prevent you from using the relevant business function, but will not affect your use of other business functions.) You can also enable or disable these permissions through the permission settings provided by your device. Please refer to the instructions or guidelines provided by the device and system developers for details.

Device Permission	Business Function	Permission Authorization Method	Can it be Disabled
Storage	Users can upload files from their local devices to the cloud mobile, which requires reading local storage information	Depends on your browser privacy settings	Yes
Read – Write Clipboard	Users can paste the content of the local device clipboard to the cloud mobile, or vice versa	Depends on your browser privacy settings	Yes

• Exceptions to Prior Consent
  • Related to the fulfillment of obligations by the personal information controller as required by laws and regulations.
  • Directly related to national security and national defense security.
  • Directly related to public safety, public health, and major public interests.
  • Directly related to criminal investigation, prosecution, trial, and judgment execution.
  • To safeguard the major legitimate rights and interests such as the life and property of the personal information subject or other individuals, when it is difficult to obtain the individual’s authorization and consent.
  • The personal information involved is publicly disclosed by the personal information subject.
  • Necessary for signing and performing contracts as requested by the personal information subject.
  • Collected from legally publicly disclosed information, such as legal news reports or government information disclosure.
  • Necessary to maintain the safe and stable operation of the provided products or services, such as detecting and handling product or service failures.
  • The personal information controller is a news organization and it is necessary for its legitimate news reporting.
• Anonymization Processing
  We will promptly anonymize the personal information we collect from you through technical means. You agree and acknowledge that, without disclosing your personal information, we have the right to analyze, mine, and utilize the anonymized user data, and to conduct statistical analysis of the usage of Gmmat products for possible information sharing with third – parties.

2. How We Use Your Personal Information
   We use the personal information we collect to provide you with services and enhance service quality. To achieve this, we will use your information for the following purposes:
   • To understand your needs for Gmmat cloud mobile services, send you product and service information, or, with your explicit consent, share information with Gmmat cloud mobile partners so that they can send you information about their products and services. If you do not wish to receive such information, you can choose to unsubscribe.
   • To promote and publicize products to you or communicate with you regarding business. If you do not want to receive such information, you can choose to unsubscribe.
   • To provide you with various Gmmat cloud mobile services and maintain and improve these services.
   • To enhance the security of your use of our services, protect you, other users, or the public from personal and property harm, better prevent security risks such as phishing websites, fraud, network vulnerabilities, computer viruses, network attacks, and network intrusions, and more accurately identify violations of laws, regulations, or Gmmat cloud mobile – related agreements and rules. We may use your member information, and integrate device information and relevant network log information to assess the risks of your account and transactions, conduct identity verification, detect and prevent security incidents, and take necessary recording, auditing, analysis, and disposal measures in accordance with the law.
   • To contact you to resolve issues related to your use of Gmmat cloud mobile.
   • Other purposes permitted by you.

III. How We Share, Transfer, and Publicly Disclose Your Personal Information

We treat your information with a high degree of diligence. Unless we have obtained your explicit consent, we will not share your personal information with any companies, organizations, or individuals outside our company, except for information that has been processed to the extent that it cannot identify a specific individual and cannot be restored.

1. Sharing
   We are committed to keeping your information confidential and will not sell or rent any of your information to third – parties for marketing or illegal purposes. However, the following situations are exceptions:
   • Obtaining your explicit consent or authorization in advance.
   • Disclosing to third – parties, administrative organs, judicial organs, law – enforcement agencies, or regulatory agencies as required by laws and regulations, for litigation, arbitration, or at the request of administrative or judicial authorities.
   • To prevent fraud, safety hazards, etc., and protect the legitimate rights and interests of you and the public. When providing services, we may use your information for identity verification, customer service, security prevention, and fraud monitoring.
   • After obtaining your explicit consent or authorization, sharing your personal information with Gmmat cloud mobile’s affiliated companies or partners.

Function type	SDK Name	Third party company name	Purpose of use	Apply for permission to invoke	Collect types of personal information	Official website link	Privacy Policy Link
Payment related	WeChat Pay SDK	Shenzhen Tencent Computer System Co., Ltd	Assist users in using WeChat Pay function	Please refer to the privacy policy of WeChat Pay SDK for details	Please refer to the privacy policy of WeChat Pay SDK for details	https://pay.weixin.qq.com/index.php/core/home	https://pay.weixin.qq.com/index.php/core/home
Alipay Payment SDK	Ant Financial (Hangzhou) Network Technology Co., Ltd	Assist users in using Alipay services	Please refer to the privacy policy of Alipay payment SDK for details	Please refer to the privacy policy of Alipay payment SDK for details	https://www.alipay.com	https://render.alipay.com/p/c/k2cx0tg8
PayPal Payment SDK	Paypal Pte. Ltd.	Assist users in using PayPal services	Please refer to the Privacy Policy of PayPal Payment SDK for details	Please refer to the Privacy Policy of PayPal Payment SDK for details	https://www.paypal.com/c2/home	https://www.paypal.com/myaccount/privacy/privacyhub

To adapt to the use of Gmmat cloud mobile on different mobile devices and third – party platform services, and to achieve functions such as mobile device identity verification, device security, logging in to third – party platform accounts, sharing information through third – party platforms, and payment security, the Gmmat cloud mobile App has integrated third – party SDKs. The providers of these third – party SDKs are mainly third – party payment institutions. Some third – party SDKs may call on your device permissions and obtain your relevant information (including but not limited to browser information, IP address information, and system device information) to enable you to use the corresponding functions normally on different mobile devices or third – party platforms. Regarding the specific types of device permissions called by third – party SDKs, as well as how they collect and use your personal information, we recommend that you refer to the relevant service agreements and privacy policies of the third – party SDKs.

Exceptions to Prior Authorization and Consent for Sharing, Transfer, and Public Disclosure of User Information

In the following situations, sharing, transferring, or publicly disclosing your user information does not require prior authorization and consent from you:

• Matters related to national security and national defense security.
• Matters related to public safety, public health, and major public interests.
• Matters related to criminal investigation, prosecution, trial, and judgment execution.
• Situations where it is difficult to obtain the individual’s consent to safeguard the major legitimate rights and interests such as the life and property of you or other individuals.
• Personal information that you have publicly disclosed on your own.
• Personal information collected from legally publicly disclosed information, such as legal news reports or government information disclosure.

4. User Business Data and Public Information
   Unlike your user information, Haimayun will handle user business data and public information as follows:
   • User Business Data
     • Ownership and Processing: The data you process through the services provided by Gmmat cloud mobile, including processing, storing, uploading, downloading, distributing, etc., is your user business data, and you have full ownership of it. As a cloud service provider, we will only process your business data in strict accordance with your instructions. Except as agreed with you or as required by clear laws and regulations, we will not use or disclose your business data without authorization.
     • Responsibility for Data Source and Content: You are responsible for the source and content of your user business data. Haimayun reminds you to carefully assess the legality of the data source and content. You shall bear all the consequences and responsibilities arising from the violation of laws, regulations, departmental rules, or national policies by the content of your user business data.
     • Data Storage: Haimayun stores the user business data of Gmmat cloud mobile services. Haimayun adheres to its security commitment to users and protects the data stored by users on Haimayun in accordance with applicable laws.
   • Public Information
     • Definition: Public information refers to any information that you publicly share on your own. Anyone can view or access this information both during and outside of using Gmmat cloud mobile services.

IV. Cookies Policy

1. Function of Cookies
   To provide you with a more convenient access experience, when you visit the Gmmat cloud mobile platform or use the services provided by Gmmat cloud mobile, we may identify your identity through small data files. This helps you avoid repeatedly entering registration information or helps us assess the security of your account. These data files may be Cookies, Flash Cookies, or other local storage provided by your browser or associated applications (collectively referred to as “Cookies” hereinafter).
2. User Choice
   Please understand that some of our services can only be realized through the use of Cookies. If your browser or browser add – on services allow, you can open the browser settings, select privacy settings, check “Do Not Track”, or prohibit cookies. In this way, your data will not be tracked by us. However, this may affect your safe access to the Gmmat cloud mobile platform and the use of services provided by Gmmat cloud mobile in some cases.

V. How We Store Your Personal Information

The personal information we collect and generate during our operations within the People’s Republic of China is, in principle, stored within China. We store your personal information in accordance with the storage periods stipulated by Chinese laws, regulations, and departmental rules.

1. Storage Period
   During your use of Gmmat mobile products and services, we will continuously store your personal information. If you cancel your account or actively delete the above – mentioned information, we will store your information in accordance with laws and regulations such as the Cybersecurity Law. After you cancel your account or actively delete the information, we will no longer commercially use your personal information and will delete or anonymize it within a reasonable period.
2. Storage Location
   Your personal information is stored within the People’s Republic of China. If we need to transfer your personal information overseas, we will strictly comply with legal requirements and ensure the security of your personal information.

VI. How We Protect Your Personal Information

1. Comprehensive Security Measures
   Gmmat cloud mobile attaches great importance to your information security. We make efforts to adopt various reasonable physical, electronic, and management security measures to protect your user information, preventing it from being accessed, publicly disclosed, used, modified, damaged, or lost without authorization. We use encryption technology to enhance the security of user information, trusted protection mechanisms to prevent malicious attacks on user information, access control mechanisms to ensure that only authorized personnel can access user information, and conduct security and privacy protection training courses to raise employees’ awareness of the importance of protecting user information.
2. Secure Operating Environment
   The information we collect is stored in a secure operating environment that is not open to the public. To prevent unauthorized access to your information, we store it on servers protected by firewalls and may be encrypted. However, no system is absolutely secure. Please understand that there is no “perfect security measure” in the information network. Even with our best efforts, it may still be impossible to completely prevent illegal access to your personal information. Additionally, due to the inability to verify the authenticity of others’ statements, we may be deceived by unreliable, misleading, or illegal information.
3. Establishment of Management System
   We will establish a dedicated management system, processes, and organization to ensure information security. We will train and assess employees on data security awareness and security capabilities, enhance their understanding of the importance of protecting personal information, strictly limit the scope of personnel who can access information, require them to abide by confidentiality obligations, and conduct reviews.
4. User – side Security Reminder
   We remind you that the Internet is not an absolutely secure environment. When you interact with other users through social software, it is uncertain whether the third – party software fully encrypts the information transmission. Please pay attention to ensuring the security of your personal information. We recommend that you do not send personal information through such channels

2. Transfer
   We will not transfer your user information to any company, organization, or individual, except in the following cases:
   • Transfer with Explicit Consent: After obtaining your explicit consent, we have the right to transfer your user information to other parties.
   • Situations of Merger, Acquisition, or Bankruptcy Liquidation: In the event of a merger, acquisition, or bankruptcy liquidation involving Haimayun and other legal entities, or other similar situations, if the transfer of user information is involved, we will notify you and obtain your consent. We will require the new company or organization holding your user information to continue to be bound by this policy. Otherwise, we will require the company, organization, or individual to re – seek your authorization and consent.
3. Public Disclosure
   We will only publicly disclose your user information in the following situations:
   • With Explicit Consent or Active Choice: We may publicly disclose your user information when we have obtained your explicit consent or based on your active choice.
   • Disclosure Based on Law: We may publicly disclose your personal information when required by laws, legal procedures, litigation, or mandatory requests from government authorities.