MeeTi Privacy Policy

Effective Date: April 20, 2025

1. Data Processing Fundamentals

To ensure service reliability and user trust, we systematically process the following data in compliance with applicable laws and regulations, implementing necessary technical measures to safeguard data security:

1.1 Device and System Data

We collect essential technical data to optimize performance, enhance security, and improve compatibility. The data includes:

Device Specifications

• Hardware Information: Device model, CPU architecture, memory capacity, storage space, etc., used to assess performance and optimize resource allocation.

• Software Environment: Operating system version, system language, time zone settings, firmware version, etc., for diagnosing compatibility issues and providing targeted updates.

• Display Parameters: Screen resolution, DPI, refresh rate, etc., to adapt UI layouts and multimedia content display.

Network and Connectivity Data

• Network Diagnostics:

￮ IP address (anonymized), network type (Wi-Fi/cellular), signal strength, latency, etc., to analyze regional network quality and service availability.

￮ Bandwidth data, packet loss rate, etc., to optimize content delivery strategies (e.g., adaptive video bitrate).

• Proxy & VPN Detection: Identifies abnormal traffic patterns to prevent malicious attacks.

Error Monitoring and Performance Optimization

• Crash Reports: Stack traces, memory snapshots, and triggering scenarios to quickly identify and fix software defects.

• Performance Metrics: Startup time, UI rendering delays, background task battery consumption, etc., to improve efficiency and smoothness.

Device Identifiers and Security

• Device Identifiers:

￮ Hardware-based unique identifiers (e.g., Device ID, IMEI) are hashed and encrypted, used only for fraud prevention, account security, and API rate limiting.

￮ Resettable software-generated identifiers (e.g., advertising ID) enable personalized services and can be reset or disabled via system settings.

• Security Audit Logs: Records abnormal login attempts and permission requests to prevent unauthorized access.

1.2 Third-Party Service Data

To extend functionality and enhance service quality, we integrate the following carefully selected third-party services, adhering to their respective privacy policies and our compliance requirements:

Facebook Services

• Analytics & Advertising:

￮ Facebook Analytics: Tracks user behavior (e.g., feature usage frequency, page dwell time) to generate aggregated reports for product improvement.

￮ Ad Campaigns: Uses Facebook Pixel to track conversion events (e.g., app installs, purchases) for measuring ad performance and controlling ad frequency. Data is pseudonymized and not directly linked to personal identity.

AppsFlyer

• Install Attribution: Tracks app installation sources (e.g., ad campaigns, organic search) to evaluate marketing ROI.

• Behavioral Analytics: Logs in-app events (e.g., completed registrations, purchases) for user segmentation and lifecycle optimization.

• Data Sharing Restrictions: Shares only necessary behavioral data (e.g., click IDs) with ad platforms, prohibiting cross-platform identity linking.

Third-Party Compliance

• Data Minimization: Only shares data essential for functionality, prohibiting third parties from using it for unrelated purposes.

• User Control: Provides privacy settings to manage data-sharing permissions (e.g., disabling ad personalization).

• Vendor Audits: Regularly reviews third-party security certifications (e.g., ISO 27001) and Data Processing Agreements (DPAs).

Appendix: Data Processing Principles

• Transparency: Clearly communicates data usage via privacy policies and system permission requests.

• Security Measures: Encrypts data in transit (TLS) and at rest (AES-256).

• User Rights: Supports data access, export, and deletion requests (GDPR/CCPA compliance).

2. User Identity & Preferences

2.1 Account Information

We collect and process user account data to provide personalized services while respecting user privacy:

Essential Data (Required for core functionality)

• User ID: A system-generated unique identifier for account authentication and service continuity

• Username: Display name chosen by the user for community interactions

Optional Data (Customizable via profile settings)

• Profile Picture: User-uploaded avatar for personalization (stored with access controls)

• Language Preference: Selected UI language with automatic device language detection fallback

• Theme Selection: Light/dark mode preference synchronized across devices

All optional data can be modified or deleted at any time through account settings.

2.2 Device Permission Management

Users maintain full control over the following runtime permissions through both system-level and in-app settings:

Media Permissions

• Camera Access:

￮ Usage: Profile picture capture, video calling functionality

• Photo Library Access:

￮ Usage: Media sharing and content creation features

System Integration Permissions

• External Storage:

￮ Usage: File management for documents/media downloads

• Microphone:

￮ Usage: Voice messages, live audio streaming

Advertising Preferences

• Advertising ID:

￮ Usage: Personalized ad targeting (if enabled)

3. Purpose of Data Processing

We strictly comply with international data protection regulations including GDPR, CCPA, and VCDPA, ensuring all data processing activities adhere to the principles of "lawfulness, fairness, and necessity" while maintaining the highest standards of transparency.

3.1 Service Optimization

• Core Functionality Support:

￮ Collect device specifications (e.g., OS version, screen resolution) to ensure cross-device compatibility

￮ Utilize network diagnostic data (IP address, connection type) to optimize server load balancing and enhance global access speed

￮ Analyze Device ID to build device profiles and ensure cross-platform service continuity

• Performance Enhancement:

￮ Error reporting system monitors crash logs in real-time and implements hotfix mechanisms

￮ Optimize resource allocation strategies based on memory usage data

4. Data Sharing Policy

4.1 Sharing Conditions

We implement a rigorous three-tier data sharing approval mechanism:

1. Strategic Partners:

￮ Collaboration with Facebook is limited to essential login verification and conversion analytics

￮ AppsFlyer integration follows data minimization principles, sharing only necessary fields such as installation sources

￮ All partners must pass SOC2 Type II audits

2. User Authorization Scenarios:

￮ Employ a layered Consent Management Platform (CMP)

￮ Provide granular permission controls (e.g., opt-out of Advertising IDs sharing)

3. Legal Compliance Disclosures:

￮ Establish a dedicated regulatory response team

￮ Implement data disclosure log auditing

￮ Maintain a user notification mechanism (where legally permitted)

4.2 Prohibition on Data Commercialization

4.2.1 Prohibition on Data Sales and Disguised Data Trading

It is expressly prohibited to sell user data in any form or conduct data trading through covert means such as technological methods or business collaborations, ensuring the inviolability of users' data sovereignty.

4.2.2 Advertising Data Usage Guidelines

Advertising must strictly use aggregated and anonymized data. Targeted marketing based on individual user profiles (such as personal behavior tracks and consumption habits) is prohibited to avoid intruding on users' privacy.

4.2.3 Data Flow Audit Mechanism

An independent third - party institution shall be commissioned annually to audit the entire process of data collection, storage, usage, and sharing. A written audit report shall be generated and made public to users to ensure the compliance and transparency of data flow.

4.3 Declaration of Prohibiting Minors' Use and Guardian Management

4.3.1 Declaration of Prohibiting Minors' Use

This platform clearly prohibits minors from using it. A strict age threshold of 18 years old is enforced. If it is found that a minor has registered and used the platform in violation of the rules, the platform has the right to immediately terminate the account's usage rights and delete the relevant account information.

4.3.2 Guardians' Right to Data Deletion

Guardians can submit an application via the designated Data Protection Officer (DPO) email to request the deletion of all personal data under a minor's account. The platform is required to complete the verification and deletion operations within 7 working days and provide feedback on the processing results.

4.3.3 Emergency Response Mechanism

A special hotline for minor protection and 24 - hour online customer service shall be established to handle urgent complaints from guardians regarding privacy leakage, cyberbullying, etc. that occur during a minor's use of the platform. A response shall be provided within 4 hours, and a preliminary investigation shall be completed within 24 hours. Appropriate measures shall be taken according to the investigation results.

5. Personal Data Management

(A) Viewing and Updating Your Information

To comply with legal standards, we provide multiple ways for you to access and control your personal details:

1. Profile Management: Adjust your details directly in the [My - Settings] section of your account.

2. Technical Support: If you experience issues retrieving your records, our customer service team can help. We commit to replying within 15 working days.

3. Extended Records: For supplementary data created through platform usage, availability depends on contractual terms and operational protocols.

4. Document Requests: Need an official copy of your stored details? Submit a request through our support channels.

(B) Requesting Data Removal

The same access methods apply for deleting selected information. You may also initiate erasure when:

1. Our data practices contravene statutory or compliance rules.

2. Processing occurs without proper authorization.

3. Our actions contradict established user agreements.

4. You opt for service termination and profile deletion.

5. We permanently withdraw service offerings.

6. Information Preservation Guidelines

Maintaining confidentiality remains our priority. This structured approach ensures lawful and transparent data stewardship:

1. Storage Durations
We retain details only for functional necessities, with timelines varying by category:

￮ User Profiles: Preserved during active membership, purged/anonymized within one month of deactivation.

￮ Financial Documentation: Archived for seven fiscal years to satisfy revenue authority requirements.

￮ Customer Service History: Maintained for 24 months to facilitate issue resolution.

￮ Promotional Data: Eliminated within half a year following marketing preference withdrawal.

￮ Operational Logs: Conserved for three months to monitor system integrity.

2. Disposal Procedures
Superfluous records undergo immediate secure deletion or anonymization. De-identified information may support analytical research.

3. Compliance Exceptions
Extended preservation occurs when mandated by:

￮ Fiscal reporting statutes

￮ Judicial proceedings or official investigations

￮ Sector-specific governance frameworks

4. User Privileges
Privacy legislation entitles you to review, amend, or erase stored details. Submit formal petitions to motaz2632@gmail.com for processing within one calendar month.

5. Policy Transparency
We clearly articulate retention rationales and periodically revise guidelines to reflect regulatory updates. For inquiries, contact motaz2632@gmail.com.

6. Protective Protocols
Multi-layered security measures safeguard archived data:

￮ End-to-end cryptographic protection

￮ Biannual policy compliance audits

￮ Mandatory privacy training for personnel

7. Data Processing Principles and User Rights

At MeeTi, we handle your personal information in full compliance with data protection regulations, maintaining clear standards for lawful processing. Our operations are grounded in the following legal foundations:

• User Authorization: For certain data activities, we obtain your direct consent before proceeding.

• Service Requirements: When processing is necessary to deliver contracted services, we operate under this justification.

• Business Operations: We may utilize your information for legitimate purposes like platform security, service optimization, and feature development.

• Regulatory Obligations: Some processing occurs to satisfy legal mandates imposed by governing bodies.

• Public Benefit: Where processing serves broader societal interests, we act accordingly.

Your Entitlements Under Data Protection Laws

As a valued user, you maintain comprehensive control over your digital footprint through these established rights:

1. Information Disclosure: Request full visibility into the personal records we maintain about you.

2. Data Accuracy: Petition for corrections when your stored details are outdated or incorrect.

3. Digital Clean Slate: Under qualifying circumstances, demand permanent removal of your personal records.

4. Processing Limitations: In special cases, require temporary suspension of your data usage.

5. Data Mobility: Obtain your information in portable formats for personal use or platform transfers.

6. Processing Objections: Challenge data activities conducted under legitimate interest claims.

7. Consent Revocation: Retract previously given permissions without penalty to past processing.

8. Regulatory Recourse: File formal complaints with supervisory authorities if privacy violations occur.

We prioritize the protection of your digital rights and implement rigorous standards for responsible data stewardship. For assistance exercising these privileges or addressing concerns, please reach our privacy team at motaz2632@gmail.com. Maintaining your confidence through exemplary data practices remains our foremost commitment.

Note: Withdrawal of consent or exercise of rights may affect service functionality where personal data is operationally essential.

8. Privacy Rights Under Global Data Protection Laws

MeeTi adheres to international privacy regulations, ensuring your data rights are protected across jurisdictions. Below we detail your entitlements under major privacy frameworks and how to invoke them.

(A) California Residents (CCPA Rights)

As a California consumer, you may:

1. Request Disclosure

￮ Obtain a report of personal information collected about you in the preceding 12 months, including:

▪ Data categories collected (contact details, device identifiers, etc.)

▪ Specific data points in our possession

▪ Business purposes for collection

▪ Third parties receiving your information

￮ Limit: Two free requests annually

2. Demand Deletion

￮ Request erasure of your personal data, subject to exceptions:

▪ Completing transactions you initiated

▪ Fraud prevention and security protection

▪ Legal compliance obligations

3. Opt-Out Choices

￮ Prohibit the sale of your personal information

￮ Decline participation in targeted advertising

4. Non-Discrimination Assurance

￮ Receive equal service quality regardless of privacy rights exercise

(B) Brazilian Users (LGPD Protections)

Under Brazilian law, you can:

1. Access Your Records

￮ Review what personal data we process and why

2. Ensure Accuracy

￮ Request corrections to incomplete or erroneous information

3. Request Removal

￮ Delete data when:

▪ It's no longer necessary for its original purpose

▪ You withdraw consent

4. Control Data Sharing

￮ Know which organizations receive your information and why

5. Withdraw Authorization

￮ Revoke previously given consent without penalty

6. Object to Processing

￮ Challenge data use based on legitimate interests

7. Transfer Your Data

￮ Receive your information in portable formats

8. File Complaints

￮ Report violations to Brazil's National Data Protection Authority (ANPD)

(C) Virginia Residents (VCDPA Rights)

Virginia consumers may:

1. Marketing Preferences

￮ Opt out of:

▪ Targeted advertising

▪ Personal data sales

▪ Automated profiling with legal consequences

2. Manage Your Information

￮ Access collected personal data

￮ Correct inaccuracies

￮ Delete non-essential records

3. Appeal Decisions

￮ Challenge denied requests through formal appeals

(D) European Users (GDPR Rights)

EU/EEA residents enjoy:

1. Comprehensive Access

￮ Receive full details about data processing activities

2. Correction Privilege

￮ Update inaccurate information promptly

3. "Right to Be Forgotten"

￮ Demand deletion when:

▪ Data becomes unnecessary

▪ Processing lacks legal basis

▪ You object to legitimate interest processing

4. Processing Restrictions

￮ Temporarily freeze data use during:

▪ Accuracy disputes

▪ Legal claim preparations

5. Data Portability

￮ Obtain and transfer your information to alternative services

6. Processing Objections

￮ Block data use for direct marketing

￮ Challenge public interest processing

7. Consent Management

￮ Withdraw permissions at any time

8. Regulatory Recourse

￮ File grievances with local data protection authorities

Exercising Your Rights

Submit requests to: motaz2632@gmail.com

• Response timeline: 30-45 days (extensions notified when necessary)

• No fees for standard requests

MeeTi maintains rigorous standards for data protection compliance. For clarification about these rights or assistance with requests, please contact our privacy team.

Note: Some rights may be limited where we demonstrate compelling legal grounds for continued processing.

9. Policy Updates

We may update this privacy policy from time to time to reflect changes in our business operations, technological developments, or legal requirements. Material changes that affect your rights will be communicated through prominent notices, which may include:

• In-app notifications

• Email communications (where applicable)

• Policy update banners on our platforms

We will never reduce your existing privacy rights without obtaining your explicit consent.

10. Data Protection Officer

For all privacy-related inquiries, you may contact our Data Protection Officer:

Name: Liam Dawson

Email: motaz2632@gmail.com

The Data Protection Officer is responsible for:

• Addressing questions about data processing

• Handling privacy concerns

• Facilitating rights requests

• Ensuring compliance with applicable laws

11. Data Controller Information

MeeTi serves as the data controller for your personal information. For any questions regarding our data practices, please contact:

Company: MeeTi

Representative: Liam Dawson

Address: Omdurman 1111, Khartoum State, Sudan

Email: motaz2632@gmail.com

12. Contact Information

For privacy-related matters, you may reach us through:

1. In-App Support:
Available through the Help Center in your account settings

2. Email:
General inquiries: motaz2632@gmail.com
Urgent matters: Please mark emails as "Privacy Urgent"

Our Commitment:

• We acknowledge all inquiries within 72 hours

• We aim to resolve requests within 15 business days

• Complex cases may require additional processing time

We value your feedback and are committed to addressing all privacy concerns promptly and thoroughly.

Note: For legal notices, please include "Legal Notice" in the subject line. Communications received outside of business hours will be processed on the next business day.