巢之声- 隐私声明 2022 | NoE-Voix Privacy Statement 2022

Documentation P


本隐私声明向您提供简体中文和英文版本,若两个版本有出入,以简体中文版本的内容为准。

The Privacy Statement provides a simplified Chinese version and an English version, if there is any gap of understanding, please align to the content of Chinese version.

更新于:2022-10-21 , 生效于:2022-10-21

Updated at: 2022-10-21, takes effect at 2022-10-21

隐私声明概述

Privacy Statement Overview

本隐私声明阐述了我们收集哪些关于您的信息、我们为何使用该等信息以及我们向谁提供该等信息。本声明同时载明您对您的信息的权利以及您若需了解更多信息或有疑问可联络的渠道。

This Privacy Statement describes what information we collect about you, why we use that information, and to whom we provide that information. It also sets out your rights with respect to your information and where you can contact if you need more information or have questions.

[TOC]

本隐私声明适用于谁、涵盖什么内容?

本隐私声明适用于 riino.site 以及其他与 riino.site 相关联的网站、应用程序、咨询服务、定制服务、开源工具、个人。

本隐私声明阐述了在您使用 “riino.site”或者发布、链接至本隐私声明的应用程序(“移动应用程序”)、网页、公告、电子邮件、SNS私讯、短消息、或提及本隐私声明的任何其他由本隐私声明适用的实体和个人发布的信息时我们如何收集、处理、存储和保护关于您的信息。

Who does this privacy statement apply to and what does it cover?

This privacy statement applies to riino.site and other websites, applications, consulting services, custom services, open source tools, and individuals associated with riino.site.

This Privacy Statement describes how we collect, process, store and protect information about you when you use “riino.site” or applications that are published or linked to this Privacy Statement (“Mobile Applications”), web pages, announcements, emails, SNS messages, SMS messages, or any other entities and individuals that reference this Privacy Statement. How we collect, process, store and protect information about you when you use “riino.site” or any other entity or person that publishes or links to this Privacy Statement (“Mobile App”), web pages, announcements, emails, SNS messages, SMS messages, or any other entity or person that references this Privacy Statement.

我们收集的信息类型?

What is the type of Information collected by us?

我们收集如下四种有关您个人资料的信息,以下均简称为A类信息:

Four types of information are COLLECTED, hereinafter referred to as Type A Information.

  1. 个人可识别信息(PII)

    包括身份证号码、护照号码、实名制电话号码、住址以及任何可通过聚合手段精确定位到某个特定自然人的信息之组合,在此情况下,将包括真实姓名(您法律证件上的名字)或者其他特有昵称。

  2. 个人非隐私信息

    包括任何有关您身份的识别信息,包括但不限于:匿名手机号码、匿名邮箱、网络昵称、毕业学校、定位信息、性别。此类信息无法单独、或者通过与同类信息聚合从而精确定位到某个特定自然人。典型的例子是,如果有人同时掌握您的工作单位,姓氏和所在部门,他/她将有能力通过额外的调查和追踪获取您的身份。

  3. 用户访问轨迹

    您在访问特定的应用程序(包括移动应用程序、Web应用程序,小程序等)时进行的一系列操作的名称以及顺序。请注意,某些社交平台,将默认收集此类信息(包括您的访问情况,点击“喜欢”,“转发”,“评论”等操作的记录)。另外,付款记录也属于此类信息。

  4. 网络访问记录

    您在访问特定的应用程序(包括移动应用程序、Web应用程序,小程序等)时发起的网络请求的请求内容。包括请求时间和头信息。请注意,头信息中可能包含具备您使用的操作系统、IP地址以及浏览器类型信息。您可以使用代理访问来隐藏您的IP地址。

–

  1. Personally Identifiable Information (PII)

    Includes ID numbers, passport numbers, real name telephone numbers, addresses and any combination of information that can be pinpointed to a specific natural person by aggregation, in which case it will include the real name (as it appears on your legal documents) or other unique nickname.

  2. Personal Non-Private Information

    This includes any identifying information about you, including but not limited to: anonymous cell phone numbers, anonymous email addresses, internet nicknames, graduation schools, location information, gender. This type of information cannot be pinpointed to a specific natural person, either alone or by aggregation with similar information. Typically, if someone has both your workplace, last name and department, he/she will have the ability to obtain your identity through additional research and tracking.

  3. User Access Tracks

    The name of the series of actions you performed while accessing a specific application (including mobile applications, web applications, applets, etc.) and in what order. Please note that some social networking platforms collect this information by default (including records of your visits, clicks on “likes”, “retweets”, “comments”, etc.). In addition, payment records also belong to this type of information. 4.

  4. Web Access History

    The request content of the web request you initiated when accessing a specific application (including mobile applications, web applications, applets, etc.). This includes the request time and header information. Please note that the headers may contain information about the operating system, IP address, and browser type you are using. You can use proxy access to hide your IP address.

其他特定的信息收集场景,对应的信息只会在该场景被收集,以下简称为B类信息:

  1. 您在同意的情况下为您拍摄的具有清晰面部特征的肖像照片或视频,下称面部信息。在特定情况下,为您拍摄的照片会带有您本人的肖像信息(这是不可避免的)。需要注意的是,基于GDPR等合规要求和现实情况,肖像信息属于您的个人可识别信息(PII)。
  2. 为了实施特定的服务而需要提供的个人信息,下称特别个人信息。如:您的个人隐私保护状况。
  3. 在企业内部为了有限范围信息分享的目的,或者交付对应咨询服务而获取到的企业敏感信息,例如,您发送的某企业报告,含有企业名称,相关负责人姓名与职位等。

Other specific information collection scenarios, corresponding to information that will only be collected in that scenario, hereinafter referred to as Type B Information.

  1. Portrait photos or videos with clear facial features taken of you with your consent, hereinafter referred to as facial information. In certain circumstances, the photographs taken of you will bear your own likeness (which is unavoidable). It is important to note that portrait information is your Personally Identifiable Information (PII) based on compliance requirements such as GDPR and the reality of the situation.
  2. Personal Information required for the implementation of specific services, hereinafter referred to as Special Personal Information. For example, your personal privacy protection status.
  3. Corporate sensitive information obtained for the purpose of limited scope information sharing within a company or for the delivery of corresponding consulting services, e.g., a report you send to a company containing the name of the company, the name and position of the person in charge thereof, etc.

我们默认不收集以下信息,在确实需要收集此类信息时候,会额外进行通知:

  1. 任何用于基于兴趣的广告行为所需收集的个人信息。
  2. 敏感信息(如:种族、民族、宗教信仰、犯罪记录、身体、心理健康状况或性取向)。
  3. 未成年人的个人可识别信息(PII)。

By default, we DO NOT collect the following information, and will provide additional notice when we do need to collect such information.

  1. any personal information that needs to be collected for interest-based advertising practices
  2. sensitive information (e.g., race, ethnicity, religion, criminal record, physical or mental health status, or sexual orientation)
  3. personally identifiable information (PII) of minors.

我们完全不收集以下信息,如果错误地收到,将进行直接销毁:

  1. 涉及国家安全机密、商业机密或其他可以被认为是高度机密的信息。
  2. 错误发给我们的信息。
  3. 在未经信息所有者同意的情况下,进行传输的PII信息。
  4. 在未验证信息所有者身份的情况下,进行传输的PII信息。
  5. 涉及犯罪行为的数据传输。

We NEVER collect the following information at all, and will perform direct destruction if received in error.

  1. information that involves national security secrets, trade secrets or other information that can be considered highly confidential.
  2. Information sent to us due to a wrong address.
  3. PII information that is transmitted without the consent of the information owner.
  4. PII information that is transmitted without verification of the identity of the information owner.
  5. Data transmission involving criminal acts.

我们向谁披露您的信息?

To whom do we disclose your information?

对于A类信息:

您的信息在默认情况下,不会被发送给任何实体和个人。除非另行说明并获得了您的同意。

在使用社交软件的情况下,您向这些社交媒体应用提供的任何个人信息均可被该应用的其他用户阅读、收集和使用。我们对这些其他用户具备很少或不具备控制权,因此,我们无法保证您向任何社交媒体应用提供的任何信息都将按照本隐私声明处理。例如,您通过公开频道发送的信息可能被其他具有读取能力的用户复制并保存。

For Type A Information:

Your information will, by default, not be sent to any entity or person. unless otherwise stated and with your consent.

In the case of social networking software, any personal information you provide to these social media applications may be read, collected and used by other users of the application. We have little or no control over these other users, and therefore we cannot guarantee that any information you provide to any social media application will be treated in accordance with this Privacy Statement. For example, information you send through a public channel may be copied and stored by other users who have the ability to read it.

对于B类信息:

对于您因为特定的需要而向我们披露的个人信息,将不会被发送给任何第三方实体和个人。

对于含有您肖像信息的图片,将默认发布在有限的社交平台上,由于图片信息的特性,相关信息可能被平台的其他用户查看、收集和使用。我们承担您肖像信息以及影像素材的真实性、唯一性和版权的持续追踪和保护责任。在某些情况下,我们使用 500px 的托管服务或者物理存储托管原始影像文件,以保护对应版权。在您需要特别同意并签署肖像权使用表格的情况下,相关影像素材才会被发送至商业售图平台。请注意,通过图片修饰抹除您面部的照片数据(例如使用了色块进行遮盖等情况)不受此声明限制。在这种情况下,您应当收到我们提供的相关表格。

对于企业内部分享的敏感信息,将禁止发送给任何企业网络外的存储设备介质、第三方实体和个人,除非经过了数据拥有者,即您本人特别的允许。另外,此类信息将在完成特定的 使用目的后进行擦除或加密,以符合任何相关的保密协议之需求。并且,此类信息会被明确标记和加密,以对可能的泄露、窃取等行为进行安全强化和追踪。

对于机器学习:由于潜在的训练集攻击风险以及相关合规要求,您的任何PII信息不会被使用到任何类型的机器学习训练中。

For Type B Information.

For personal information that you disclose to us for specific needs, **it will not be sent to any third party entities and individuals. **

For images containing your portrait information, they will be posted on a limited number of social media platforms by default, and due to the nature of image information, the relevant information may be viewed, collected and used by other users of the platform. We assume responsibility for the ongoing tracking and protection of the authenticity, uniqueness and copyright of your likeness and image materials. In some cases, we use 500px’s hosting services or physical storage to host the original image files in order to protect the corresponding copyright. Only if you specifically agree and sign a portrait rights usage form will the image material be sent to a commercial selling platform. Please note that the erasure of photographic data of your face through photo retouching (e.g. the use of color blocking for masking) is not subject to this statement. In this case, you should receive the relevant forms from us.

Sensitive information shared within the enterprise** will not be sent to any storage device media, third-party entities or individuals** outside the enterprise network unless specifically permitted by the data owner, i.e. you. In addition, such information will be erased or encrypted upon completion of the specific purpose of use to meet the requirements of any relevant confidentiality agreements. Furthermore, such information will be explicitly marked and encrypted for security enhancement and tracking of possible disclosure, theft, etc.

For Machine Learning: Due to the potential risk of training set attacks and related compliance requirements, any of your PII information will not be used in any type of machine learning training.

我们在不同的场景收集哪些信息?

What information do we collect in different scenarios?

对于A类信息,请参考 个人信息统一收集准则表(PICSS),即下表:

For Type B Information, please refer to the Personal Information Collection Standard Sheet (PICSS), which is the following table.

是否收集 Whether to collect [A]个人可识别信息 PII [A]个人非隐私信息 Non-PII [A]用户访问轨迹 Access Tracks [A]网络访问记录 Network Access History [B]面部信息 Facial Information [B]特别个人信息 Special Personal Info [B]企业信息 Enterprise Data
riino.site              
riino.site/jekyll-theme-panda              
riino.site/api   Y Y Y      
li.riino.site              
[email protected]   Y Y Y      
[email protected]   Y Y Y      
[email protected]   Y          
私讯(SNS DM) Y Y   Y      
一般咨询服务 General Consulting Y Y Y     Y  
影像/视觉服务 Visual Solutions   Y     Y    
企业内部通讯 Enterprise Communication Y Y         Y
上海リル   Y          

我们如何使用关于您的信息?

How do we use information about you?

对于使用通过我们的网站、移动应用程序和其他介质收集到的您的A类信息:

For use of your Type A information collected through our websites, mobile applications and other media:

适当情况下,为遵从法律或监管程序,这些信息可能被用于保护我们及我们的用户的权利或财产。

Where appropriate, this information may be used to protect our rights or property and those of our users in order to comply with legal or regulatory process.

对于B类信息:

For use of your Type B information:

您的信息的保存期限是多久?

保存在我们的系统、存储介质、云资源中的您的数据,保存时间为下述最长期间:

(i)相关行为所必需的时间;或(ii)法律规定的任何保存期限。

How long is your information kept for?

Your data stored on our systems, storage media, and cloud resources is retained for the maximum period of time that is.

(i) as long as necessary for the relevant action; or (ii) any retention period required by law.

个人信息处置权利

您可能拥有多种涉及您个人资料的权利。特别是,您可能有权:

Right to Dispose of Personal Information

You may have a variety of rights in relation to your personal data. In particular, you may have the right to

安全

我们采取一系列物理、电子和管理措施来确保我们保护数据的安全、准确和更新。这些措施包括:

尽管我们一旦收到您的个人资料便采取适当的安全措施,然而通过互联网(包括电子邮件)传输资料向来无法做到彻底安全。我们将尽力保护个人资料,但我们无法保证向我们传输或由我们传输的资料的安全性。

在遭到网络攻击、窃听等情况下,您向对应服务发送的信息可能被中间人截获,即便它们是加密的,我们对攻击者所能够获取到的信息亦不具备控制权,因此,我们无法保证您受到网络攻击下传输的任何信息的保存、转发和解密都将按照本隐私声明处理。

Security

We take a number of physical, electronic and administrative measures to ensure that the data we protect is secure, accurate and up to date. These measures include

Although we take appropriate security measures once we receive your personal data, the transmission of data via the Internet (including e-mail) is never completely secure. We will do our best to protect personal data, but we cannot guarantee the security of the data transmitted to or by us.

In the event of a network attack, eavesdropping, etc., the information you send to the corresponding service may be intercepted by an intermediary, even if they are encrypted, and we have no control over what information the attacker can access, so we cannot guarantee that any information you transmit under a network attack will be stored, forwarded and decrypted in accordance with this privacy statement.

跨境信息传输的额外限制

跨越某些地理位置进行传输的个人信息可能收到额外法律(如GDPR)的要求。对于A类信息,即您的个人信息的处置过程中,可能发生以下情况:

  1. 由于使用全球云资源网络,您的信息可能以加密的情况传输至海外服务器。
  2. 由于使用全球化的社交平台,您的信息可能能够被跨地域的用户查看和收集。

在这种情况下,本”隐私声明“将认可您具有对应的个人数据的处置权力,包括更正权力、被遗忘的权力、数据可移植权等,且许诺我们对于您个人信息的收集、传输和保存流程在技术层面符合对应的要求。

Additional Restrictions on Transmissions of Information Across Jurisdictions

Personal information transferred across certain geographic locations may receive additional legal (e.g. GDPR) requirements. For Class A information, the disposal of your personal information, the following may occur.

  1. Due to the use of a global network of cloud resources, your information may be transferred to overseas servers in an encrypted condition.
  2. Due to the use of global social networking platforms, your information may be able to be viewed and collected by users across geographical areas.

In such cases, this Privacy Statement recognizes that you have the right to the disposal of your personal data, including the right to rectification, the right to be forgotten, the right to data portability, etc., and that our processes for the collection, transfer and storage of your personal information meet the corresponding requirements at the technical level.

投诉与反馈

如您对本隐私声明有任何疑问,或者您对我们处理您的个人资料或回应您提出的任何隐私询问或请求的方式感到不满,请通过声明适用于的实体和个人对应的联系方式进行投诉。

Complaints and Feedback

If you have any questions about this Privacy Statement, or if you are dissatisfied with the way we have handled your personal data or responded to any privacy inquiries or requests you have made, please file a complaint through the contact information corresponding to the entities and individuals to whom the statement applies.

本隐私声明的修订

我们可能会不时修订本隐私声明。

为了让您了解我们何时修订本隐私声明,我们将更新修订日期。新修订的隐私声明将从该修订日期起适用。因此,我们鼓励您定期查阅本声明,以了解我们如何保护您的信息。

Revisions to this Privacy Statement

We may revise this Privacy Statement from time to time.

To let you know when we revise this Privacy Statement, we will update the revision date. The newly revised Privacy Statement will apply as of the date of that revision. Therefore, we encourage you to periodically review this Statement to be informed of how we are protecting your information.