top of page

Privacy Policy

1. Introduction

This Privacy Policy ("Policy") outlines how Shaanxi Longsheng ("we," "us," or "our") collects, uses, stores, and shares personal data from users accessing our cross-border website ("Website") globally. It applies to all visitors, customers, and users ("you" or "users") regardless of location. We are committed to complying with international data protection laws, including the EU General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and China’s Personal Information Protection Law (PIPL).

2. Data We Collect

2.1 Personal Information You Provide

  1. Registration: Name, email address, telephone number, and shipping/billing address.

  2. Transactions: Payment details (e.g., credit card information, bank account numbers), purchase history, and order preferences.

  3. Customer Support: Communications with our team (e.g., inquiries, feedback).

  4. Voluntary Submissions: Data provided via surveys, contests, or promotional activities.

2.2 Automatically Collected Data

  1. Device Information: IP address, browser type, operating system, and device identifiers.

  2. Usage Data: Pages visited, clickstream patterns, and interaction with features (e.g., product searches, cart abandonment).

  3. Cookies and Tracking Technologies: We use cookies and similar tools to analyze traffic, personalize content, and improve user experience. You may disable non-essential cookies via browser settings.

3. How We Use Your Data

  1. Order Fulfillment: Processing purchases, arranging deliveries, and managing returns.

  2. Customer Communication: Sending order confirmations, invoices, and promotional offers (opt-out available).

  3. Website Optimization: Analyzing user behavior to enhance functionality and content.

  4. Security: Detecting and preventing fraud, unauthorized access, or other malicious activities.

  5. Legal Compliance: Meeting regulatory requirements (e.g., tax reporting, anti-money laundering).

 

4. Data Sharing and Disclosure

 

4.1 Third-Party Service Providers

 

We share data with trusted partners (e.g., payment processors, logistics companies, cloud service providers) solely for the purpose of delivering services. These partners are contractually obligated to protect your data and may not use it for other purposes.

 

4.2 Cross-Border Data Transfers

  1. EU/EEA Transfers: Data transferred to the EU/EEA is protected via EU Standard Contractual Clauses (SCCs).

  2. Other Jurisdictions: For transfers to non-adequacy jurisdictions, we implement supplementary measures (e.g., encryption, access controls) to ensure compliance.

  3. China-Specific: Personal data of Chinese users is stored domestically unless explicitly permitted by PIPL and processed through approved cross-border mechanisms.

 

4.3 Legal Requirements

 

We may disclose data to comply with laws, respond to valid legal requests (e.g., subpoenas), or protect our rights and safety.

 

5. Your Rights

5.1 GDPR and CCPA Rights

  1. Access: Request a copy of your data.

  2. Correction: Update inaccurate or incomplete information.

  3. Deletion: Request erasure of your data (the "right to be forgotten").

  4. Data Portability: Receive and transfer your data to another controller.

  5. Opt-Out: Refuse data processing for marketing or sale (CCPA only).

  6. Withdrawal of Consent: Revoke consent for data processing at any time (where consent is the legal basis).

 

5.2 PIPL Rights

  1. Sensitive Data: You may withdraw consent for processing sensitive personal information (e.g., biometric data).

  2. Complaint: Lodge grievances with Chinese regulatory authorities.

 

5.3 Exercise Rights

Submit requests via email to privacy@shaanxilongsheng.com. We will respond within 30 days. For EU users, you may also contact our Data Protection Officer (DPO) at dpo@shaanxilongsheng.com.

 

6. Data Security

  1. Technical Measures: Encryption (SSL/TLS), firewalls, and access controls protect data during transmission and storage.

  2. Physical and Organizational Controls: Regular security audits, employee training, and strict access protocols.

  3. Breach Response: In the event of a data breach, we will notify affected users and regulators within 72 hours (GDPR requirement) and take corrective action.

 

7. Children’s Privacy

We do not knowingly collect data from children under 16 (EU) or 13 (U.S.) without parental consent. If you believe a child’s data has been collected, contact us immediately for deletion.

 

8. Cookies and Tracking

  1. Essential Cookies: Required for website functionality (e.g., session management).

  2. Analytical Cookies: Used to analyze traffic and improve user experience.

  3. Marketing Cookies: Deliver personalized ads. You may opt out via our Cookie Settings tool.

  4. Third-Party Cookies: Used by partners like Google Analytics and social media platforms.

For more details, see our Cookie Policy.

 

9. Policy Updates

We may update this Policy to reflect legal changes or business practices. Revisions will be posted on the Website with a "Last Updated" date. Continued use after changes constitutes acceptance.

 

10. Governing Law and Jurisdiction

  1. General: This Policy is governed by Chinese law.

  2. EU Users: GDPR rights apply, and disputes may be resolved through the EU Data Protection Board.

  3. U.S. Users: CCPA rights apply, and disputes may be litigated in California courts.

 

11. Contact Us

For questions or concerns, reach us at:

  1. Email: privacy@long-bio.com

  2. Mail: Office add.: Room 808, Block B, Digital Life, Keji 5th Road, High-tech District,Xi'an,China Code:71006

bottom of page