Back to Home

Privacy Policy

Last updated: 4 November 2025

1. Introduction

huatong.app ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, mobile application, and related services (collectively, the "Service").

This Privacy Policy complies with the General Data Protection Regulation (GDPR) (EU) 2016/679 and other applicable European data protection laws.

2. Data Controller

The data controller responsible for your personal data is:

huatong.app
[Your Business Address]
Email: [Your contact email]

3. Information We Collect

We collect the following types of information:

3.1 Information You Provide

  • Account Information: Name, email address, password, and profile information
  • Learning Data: Progress, goals, practice sessions, vocabulary learned, and performance metrics
  • Communication: Messages, feedback, and support requests
  • Payment Information: Billing address and payment method details (processed through secure third-party payment processors)

3.2 Automatically Collected Information

  • Usage Data: Pages visited, features used, time spent on the Service, and interaction patterns
  • Device Information: Device type, operating system, browser type, IP address, and unique device identifiers
  • Log Data: Server logs, error reports, and performance data
  • Cookies and Tracking Technologies: We use cookies and similar technologies to enhance your experience
4. How We Use Your Information

We use your personal data for the following purposes:

  • To provide, maintain, and improve the Service
  • To personalize your learning experience and adapt content to your needs
  • To process transactions and manage subscriptions
  • To communicate with you about the Service, updates, and support
  • To send newsletters and marketing communications (with your consent)
  • To analyze usage patterns and improve our Service
  • To detect, prevent, and address technical issues and security threats
  • To comply with legal obligations

Our legal basis for processing your personal data under GDPR includes:

  • Consent: When you have given clear consent for specific purposes
  • Contract: To perform our contract with you (e.g., providing the Service)
  • Legal Obligation: To comply with legal requirements
  • Legitimate Interests: For our legitimate business interests, such as improving the Service and preventing fraud
5. Data Sharing and Disclosure

We do not sell your personal data. We may share your information in the following circumstances:

  • Service Providers: With trusted third-party service providers who assist us in operating the Service (e.g., hosting, payment processing, analytics)
  • Legal Requirements: When required by law, regulation, or legal process
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • Protection of Rights: To protect our rights, property, or safety, or that of our users
  • With Your Consent: When you have given explicit consent for sharing

All third-party service providers are required to maintain appropriate security measures and may only use your data for the purposes specified by us.

6. International Data Transfers

Your information may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Adherence to the EU-US Privacy Shield Framework (where applicable)
  • Other legally recognized transfer mechanisms
7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

When you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal, accounting, or regulatory purposes.

8. Your Rights Under GDPR

If you are located in the European Union, you have the following rights regarding your personal data:

  • Right of Access: You can request a copy of the personal data we hold about you
  • Right to Rectification: You can request correction of inaccurate or incomplete data
  • Right to Erasure: You can request deletion of your personal data ("right to be forgotten")
  • Right to Restrict Processing: You can request limitation of how we process your data
  • Right to Data Portability: You can request transfer of your data to another service
  • Right to Object: You can object to processing based on legitimate interests
  • Right to Withdraw Consent: You can withdraw consent at any time where processing is based on consent
  • Right to Lodge a Complaint: You can file a complaint with your local data protection authority

To exercise these rights, please contact us at [Your contact email]. We will respond to your request within one month.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience. Cookies are small text files stored on your device.

We use the following types of cookies:

  • Essential Cookies: Required for the Service to function properly
  • Analytics Cookies: Help us understand how users interact with the Service
  • Functional Cookies: Remember your preferences and settings
  • Marketing Cookies: Used to deliver relevant advertisements (with your consent)

You can control cookies through your browser settings. However, disabling certain cookies may affect the functionality of the Service.

10. Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication mechanisms
  • Employee training on data protection

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

11. Children's Privacy

Our Service is not intended for children under 16 years of age. We do not knowingly collect personal data from children under 16. If you believe we have collected information from a child under 16, please contact us immediately, and we will delete such information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

If you are a consumer in the European Union, we will seek your consent for any material changes that affect your rights.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us at:

Email: [Your contact email]
Address: [Your business address]

You also have the right to lodge a complaint with your local data protection authority. For EU residents, you can find your authority at https://edpb.europa.eu/about-edpb/about-edpb/members_en.