User service agreement
SmileCloud Platform User Service Agreement
Release/Update Date: March1,2023March1,2023
Effective Date: March8,2023March8,2023
Welcome to the SmileCloud Platform! The SmileCloud Platform (the “Platform”) is operated by Chengdu Besmile Medical Technology Co., Ltd. (registered address: No. 9, Second Section of Shengwu City North Road, Shuangliu District, Chengdu Tianfu International Biological City, Chengdu; contact information: +86-028-85183198). This Privacy Policy (the “Policy”) applies to all products or services provided to you by Chengdu Besmile Medical Technology Co., Ltd. and Chengdu Besmile Biotechnology Co., Ltd. (collectively referred to as “we,” “us,” or “our”) through the Platform.
We fully recognize the importance of your personal information and are committed to safeguarding its security in accordance with applicable laws and industry best practices. To maintain your trust, we adhere to the following principles when processing your personal information:
Principle of Accountability
Principle of Purpose Limitation
Principle of Consent
Principle of Data Minimization
Principle of Security Integrity
Principle of Transparency
Principle of Individual Participation
This Policy governs how we collect, use, store, share, and protect your personal information. Please read this Policy carefully before using our services. By accessing or continuing to use the Platform’s products and/or services, you consent to the processing of your personal information as described herein.
This Policy includes the following sections:
1.Definitions and Scope of Application
2.How We Collect and Use Your Personal Information
3.Our Use of Cookies and Similar Technologies
4.How We Disclose, Transfer, or Publicly Disclose Your Personal Information
5.How We Store Your Personal Information
6.How We Protect Your Personal Information
7.User Rights
8.How This Policy Is Updated
9.How to Contact Us
I. Definitions and Scope of Application
(1) Definitions
l SmileCloud Platform: Refers to the website (URL: www.besmilecloud.com) and WeChat mini-program that provide users with digital dental cloud services, including dental order management, data transmission, and technical communication.
l Affiliated Companies: Entities that currently or in the future control, are controlled by, or are under common control with Chengdu Besmile Medical Technology Co., Ltd. “Control” means the direct or indirect ability to influence management or operations through ownership, voting rights, contracts, operational affiliations, or other lawful means.
l Personal Information: Any information relating to an identified or identifiable natural person, recorded electronically or otherwise. This includes, but is not limited to: name, date of birth, government-issued ID numbers, biometric data, address, contact details, communication records, account credentials, financial information, credit history, location data, accommodation details, health records, and transaction information.
l Sensitive Personal Information: Personal information that, if disclosed or misused, may infringe upon personal dignity or endanger personal/property safety. Examples include biometric data, religious beliefs, medical records, financial account numbers, location data, and information of minors under 14 years of age.
l De-identification: Processing personal information to prevent identification of a specific individual without additional information.
l Anonymization: Processing personal information to irreversibly prevent identification of a specific individual.
l Device: Any device (e.g., desktop, laptop, tablet, smartphone) used to access our services.
l Unique Device Identifier (UUID): A string of characters assigned by a device manufacturer to uniquely identify a device (e.g., IMEI, Android ID, IDFA, OpenUDID, GUID, SIM card IMSI).
l IP Address: A numerical label assigned to devices connected to the internet, typically indicating geographic location.
l SSL (Secure Socket Layer): A security protocol encrypting data transmitted over networks.
l Cookie: A small text file stored on your device when you use a website, enabling functionalities like login sessions and preferences.
(2) Scope of Application
This Policy applies to products or services provided by Affiliated Companies unless they have established independent privacy policies. Third-party services accessed through our Platform are governed by their own privacy policies. While we require third parties to implement protective measures, we cannot guarantee their compliance.
II. How We Collect and Use Your Personal Information
We collect and use personal information:
l Directly provided by you during Platform use;
l Generated through your interactions with our services;
l Obtained from third parties (with legal authorization and your consent).
If we receive your information from third parties, we verify that they have obtained your lawful consent. We apply security measures (e.g., encryption, access controls) to indirectly obtained information equivalent to those for directly collected data.
Categories of Information Collected:
1.Essential Information: Required for core services (e.g., account registration, order processing). Refusal to provide this will restrict access to basic functionalities.
2.Additional Information: Optional for enhanced services (e.g., personalized features).
(1) Basic Business Functions
1.Account Registration & Login
n Provide: Name, mobile number.
n Enterprise accounts: Actions on the Platform are deemed as your enterprise’s responsibility.
n WeChat login: We collect your WeChat UID and OPENID for identity verification.
2.Identity Verification
n Personal accounts: Government-issued ID.
n Medical professionals: Dental practice certificates.
3.Order Management
n Required: Doctor/patient details (name, gender, age), dental scans (oral/CBCT), design files.
n Ensure consent from doctors/patients for data processing.
4.Transaction Fulfillment
n Share delivery details (recipient, contact, address) with logistics partners (e.g., Shenzhen Qianhai Baidi Network Co., Ltd.).
5.Customer Service
n Collect contact details (phone, WeChat ID), communication records for support and documentation.
6.Security Protection
n Collect device data (model, OS, IP address, logs) to prevent fraud, phishing, and security breaches.
(2) Additional Business Functions
l Android/iOS Permissions: Storage access for file uploads/downloads. Permissions are optional and revocable.
(3) Exceptions to Consent
We may process personal information without consent if legally required (e.g., public safety, legal obligations).
III. How We Use Cookies and Similar Technologies
When you use our services, we may employ Cookies and similar technologies (e.g., web beacons, scripts) to collect information about your browsing habits, login status, and preferences. These technologies are used to:
l Simplify repetitive actions (e.g., login sessions).
l Provide personalized content and services.
l Enhance security (e.g., detecting unauthorized access).
Managing Cookies:
You may disable or delete Cookies via your browser settings. However, blocking Cookies may impair certain functionalities (e.g., auto-login, personalized features).
IV. How We Disclose, Transfer, or Publicly Disclose Your Personal Information
(1) Disclosure to Third Parties
We do not disclose your personal information unless:
1.You explicitly consent (e.g., sharing delivery details with logistics providers).
2.Legally required (e.g., court orders, public safety emergencies).
3.Service Providers: We share data with partners (e.g., cloud storage, payment processors) under strict confidentiality agreements.
4.Affiliated Companies: We may share information with entities under common control for unified services.
(2) Data Transfers
We do not transfer your personal information except:
1.With your consent (e.g., cross-border transfers).
2.Corporate restructuring (e.g., mergers). In such cases, we ensure recipients adhere to this Policy.
(3) Public Disclosure
We only publicly disclose your information:
1.With your consent (e.g., testimonials).
2.For legal compliance (e.g., government requests).
V. How We Store Your Personal Information
1.Storage Location: All data is stored within China. Cross-border transfers (if any) will require explicit consent and compliance with applicable laws.
2.Retention Period: We retain data only as long as necessary (e.g., 3 years post-transaction per Chinese E-Commerce Law). Post-retention, data is anonymized or deleted.
VI. How We Protect Your Personal Information
(1) Security Measures
We implement:
l Technical Safeguards: Encryption (SSL), access controls, anonymization.
l Organizational Measures: Confidentiality agreements, employee training, incident response plans.
(2) Incident Response
In case of a data breach, we will:
l Notify you via email, SMS, or platform alerts.
l Report to regulatory authorities as required.
VII. User Rights
You have the right to:
1.Access/Correct Data: Review and update your profile via "Account Settings."
2.Delete Data: Request deletion via customer service, except where legally required to retain.
3.Withdraw Consent: Adjust permissions in device/privacy settings.
4.Data Portability: Request a copy of your data in machine-readable format.
5.Object to Automated Decisions: Request human review of algorithmic decisions affecting your rights.
Response Time: Verified requests are processed within 30 business days.
VIII. How This Policy Is Updated
l Updates: We may revise this Policy to reflect legal or operational changes. Significant updates will be notified via email, SMS, or platform announcements.
l Material Changes: Include changes to data types, sharing practices, or your rights. Archived versions are available for review.
IX. How to Contact Us
For inquiries or requests:
l Customer Service: +86-028-85183198
l Email: service@besmilecloud.com
l Website: www.bsmsmilecloud.com
For unresolved complaints, you may contact local data protection authorities.
Annex: Third-Party Information Sharing List
Third Party | Shared Data | Purpose | Privacy Policy Link |
Alibaba Cloud Computing Co., Ltd. | Account details, order info | SMS services, data backup | |
Shanghai Qiniu Information Technology Co., Ltd. | Dental scans, design files | Cloud storage | |
Shenzhen Qianhai Baidi Network Co., Ltd. | Recipient name, address, phone | Logistics management |