Welcome to Yaowise!
Beijing Huoli Culture Technology Co., Ltd. (hereinafter "Yaowise" or "we"), as the operator of the Yaowise application and related services (collectively the "Service"), understands the importance of personal information to you. We will strictly protect your personal information in accordance with the Personal Information Protection Law of the People's Republic of China (PIPL), the Cybersecurity Law, the Data Security Law, and the Information Security Technology — Personal Information Security Specification (GB/T 35273).
Please read this Privacy Policy carefully before using the Service, especially the clauses displayed in bold. These clauses concern important matters such as the collection, use, storage, sharing, cross-border transfer of your personal information, and your rights.
By checking the box to agree to this Privacy Policy, registering an account, signing in, or continuing to use the Service, you are deemed to have fully understood and agreed to the entirety of this policy. If you do not agree, please immediately stop using the Service.
This Privacy Policy will help you understand:
We collect your personal information only to the extent necessary to provide the Service, following the "minimum necessary principle". Specific collection scenarios and types of information are as follows:
When you register or sign in to your Yaowise account, we collect:
Without this information, you will not be able to register an account or use account-related features.
When using the core AI divination interpretation feature, we collect and process:
Please note: To generate personalized AI interpretation results, the divination questions, hexagram data, and other information you input will be sent to our integrated AI service providers for processing. For specific AI service providers and data flows, please refer to "Section III. How We Share, Transfer, and Publicly Disclose Your Personal Information" and "Section IV. How We Transfer Your Personal Information Across Borders".
To enhance interpretation accuracy, you may optionally provide the following birth information (basis for BaZi analysis):
The above information constitutes your sensitive personal information. You may choose not to provide it without affecting your use of basic divination features. You can modify or delete this information anytime in the App's "My Profile".
To enable you to review and manage your divination records, we save:
History records are kept for the duration of your account. You can delete individual records anytime in the "History" page of the App.
To ensure service security, improve user experience, and diagnose issues, we collect:
When you purchase Yao Coins, subscribe to VIP membership, or use other paid services, we collect:
Please note: Yaowise does not collect or store sensitive payment information such as your payment passwords, bank card numbers, or CVV. This information is processed and protected directly by your chosen third-party payment channel (WeChat Pay, Alipay, Apple App Store, etc.).
When you contact us via in-App feedback or customer service email, we collect what you proactively provide:
To send you notifications such as divination completion alerts and calendar event reminders, we obtain and store your device push tokens. The source depends on your device type:
You may disable notification permissions for this App in your system settings at any time. After disabling, you will no longer receive push notifications.
To provide the Service's features, we need to request certain system permissions. We only request permissions when you actively trigger the related features, and you can refuse authorization or disable previously granted permissions in your system settings at any time.
| Permission Name | Permission ID | Purpose | Trigger Scenario | Can Be Disabled |
|---|---|---|---|---|
| Notification | android.permission.POST_NOTIFICATIONS | Send divination completion notifications, calendar event reminders, system announcements | Prompted on first use of notification feature | Yes (in system settings) |
| Boot Completed | android.permission.RECEIVE_BOOT_COMPLETED | Restore scheduled notification services after device restart | System boot (only if you have granted notification permission) | Yes (in system auto-start management) |
| Internet Access | android.permission.INTERNET | Connect to servers, load content, submit divination requests | App startup and use | No (required for basic functions) |
| Network State | android.permission.ACCESS_NETWORK_STATE | Detect network connection state to avoid requests when offline | App startup and use | No (required for basic functions) |
| Wi-Fi State | android.permission.ACCESS_WIFI_STATE | Detect Wi-Fi connection state to optimize network request strategy | App startup and use | No (required for basic functions) |
| In-App Billing | com.android.vending.BILLING | Support Yao Coin recharge and membership subscription | When the user clicks recharge or subscribe | No (only used during purchase) |
Please note: We have proactively removed sensitive permissions such as camera (CAMERA), microphone (RECORD_AUDIO), and external storage read/write (READ/WRITE_EXTERNAL_STORAGE), as these features are not required by the Service.
| Permission | Permission Key | Purpose | Trigger Scenario |
|---|---|---|---|
| Photo Library | NSPhotoLibraryUsageDescription | Choose avatar images, upload feedback screenshots, save interpretation results as images | When you actively click "Choose Avatar", "Upload Screenshot", or "Save Image" |
| Push Notifications | — (managed by iOS) | Send divination completion notifications, calendar event reminders, system announcements | Prompted on first use of notification feature |
You can manage these permissions anytime in iOS "Settings → Yaowise".
To ensure the proper functioning of push notifications and scheduled reminders, this application uses the Expo Notifications SDK, which may trigger auto-start behavior in the following scenarios:
These auto-start behaviors only take effect after you grant notification permissions. You can disable auto-start or notification permissions for this App in your system settings at any time.
We only share your personal information with third parties under the following circumstances, following the principles of "minimum necessary" and "explicit consent":
To enable corresponding features, this application integrates the following third-party SDKs. When using the SDKs, the relevant SDK service providers may collect part of your personal information:
| SDK Name | Provider | Use Scenario | Personal Information Collected | Provider Location | SDK Privacy Policy |
|---|---|---|---|---|---|
| Expo Notifications | 650 Industries, Inc. | Push notification scheduling | Device push token | USA ⚠️ | View |
| Apple Push Notification Service (APNs) | Apple Inc. | iOS device push channel | APNs device token | USA ⚠️ | View |
| Firebase Cloud Messaging (FCM) | Google LLC | Non-Chinese-vendor Android device push channel | FCM device token, device model | USA ⚠️ | View |
| HMS Push Kit | Huawei Device Co., Ltd. | Huawei Android device push channel | HMS device token, device model | China | View |
| Apple Sign In (expo-apple-authentication) | Apple Inc. | Apple ID login | Apple User ID, email (optional), name (optional) | USA ⚠️ | View |
| Apple In-App Purchase (expo-iap) | Apple Inc. | iOS in-app purchases | Transaction ID, product ID, purchase receipt | USA ⚠️ | View |
| HMS IAP SDK | Huawei Device Co., Ltd. | Huawei Android in-app purchases | Transaction ID, product ID, purchase receipt | China | View |
| HMS Analytics Kit (Performance Kit) | Huawei Software Technologies Co., Ltd. | Huawei Android performance monitoring and runtime statistics | Device identifiers, runtime state, crash stack traces | China | View |
| WeChat OpenSDK Android | Shenzhen Tencent Computer Systems Co., Ltd. | WeChat login, payment, sharing | WeChat OpenID/UnionID, payment order info, device info | China | View |
| Alipay App Payment Client SDK | Alipay (Hangzhou) Information Technology Co., Ltd. | Alipay payment | Payment order info, device info | China | View |
| Sentry React Native | Functional Software, Inc. (Sentry) | Crash reporting and error monitoring | Error stack traces, device info, app version, anonymous user ID | USA ⚠️ | View |
In addition to client-side SDKs, our backend services share necessary information with the following third-party service providers:
| Service Provider | Use Scenario | Personal Information Shared | Provider Location |
|---|---|---|---|
| OpenAI | AI divination interpretation generation (some models) | Divination questions, hexagram data, BaZi info (if provided), conversation history | USA ⚠️ |
| Alibaba Cloud Qwen | AI divination interpretation generation | Divination questions, hexagram data, BaZi info (if provided), conversation history | China |
| DeepSeek | AI divination interpretation generation | Divination questions, hexagram data, BaZi info (if provided), conversation history | China |
| Alibaba Cloud SMS | SMS verification codes for registration, login, password reset | Mobile phone number | China |
| WeChat Open Platform | WeChat OAuth login authorization | Authorization code (used only to exchange user info, contains no sensitive data) | China |
Special note about AI service providers: To generate personalized divination interpretations, the divination questions you input, hexagram data, and BaZi information you provide will be sent to the above AI service providers for processing. We do not send your name, phone number, email, or other directly identifiable information to AI providers. Data received by AI providers is used solely to generate interpretation results and is not used to train AI models.
We may disclose your personal information in accordance with the law in the following circumstances:
We will not transfer your personal information to any third party except in the following circumstances:
We only publicly disclose your personal information in the following circumstances:
Some features of the Service involve transferring your personal information to service providers outside the People's Republic of China. In accordance with Article 38 of the Personal Information Protection Law, we conduct cross-border transfers only with your explicit consent.
| Recipient | Country/Region | Personal Information Transferred | Purpose |
|---|---|---|---|
| OpenAI, L.L.C. | USA | Divination questions, hexagram data, BaZi info (if provided), conversation history | Calling GPT models to generate AI interpretations |
| Apple Inc. | USA | APNs device token, Apple User ID, in-app purchase transaction receipts | iOS push notifications, Apple Sign In, in-app purchases |
| Google LLC | USA | FCM device token, device model | Push channel for non-Chinese-vendor Android devices |
| Functional Software, Inc. (Sentry) | USA | Error stack traces, device info, app version, anonymous user ID | Crash reporting and error monitoring |
| 650 Industries, Inc. (Expo) | USA | Device push token, app version, build identifier | Push notification scheduling |
For the above cross-border transfers, we have taken or will take the following measures to safeguard your personal information:
If you do not want your personal information to be transferred across borders, you may:
Personal information collected and generated during our operation of the Service within the People's Republic of China is stored on servers located in the People's Republic of China.
We retain your personal information only for the period necessary to fulfill the purposes described in this policy. Specific retention periods are as follows:
| Personal Information Type | Retention Period |
|---|---|
| Account information (phone, email, nickname) | Retained while the account exists; deleted within 30 days after account cancellation |
| Divination history | Retained while the account exists; you may delete it at any time |
| Birth information (BaZi data) | Retained while the account exists; you may modify or delete it at any time |
| Payment order information | Retained for at least 10 years from the transaction date as required by the Accounting Archives Management Measures |
| Device and log information | No more than 12 months; automatically deleted or anonymized after expiration |
| Customer service and feedback records | Deleted within 6 months after the issue is resolved |
| Crash logs | No more than 90 days |
After the above retention periods, we will delete your personal information or anonymize it in accordance with the law.
We employ industry-standard security technologies and management measures to protect your personal information:
Despite the reasonable measures we take, please understand that no information transmitted over the internet can be absolutely secure. In the event of a personal information security incident, we will promptly activate emergency response procedures, report to regulatory authorities as required by law, and notify you via in-App notifications, email, etc.
Under the Personal Information Protection Law of the People's Republic of China and related laws and regulations, you have the following rights regarding your personal information. We have provided convenient paths to exercise these rights within the App, and you may also contact us using the contact information in Section IX.
You have the right to access the personal information we hold about you.
How to exercise: Open the Yaowise App → My → Profile, where you can view your account information, divination history, birth information, etc.
You have the right to correct inaccurate or incomplete personal information.
How to exercise: Open Yaowise App → My → Profile → Edit Profile, where you can modify your nickname, avatar, birth information, etc. To modify your phone or email, please use the in-App "Account Security" page.
You may request that we delete your personal information in the following circumstances:
How to exercise:
You may withdraw your previously granted consent for us to process your personal information at any time. Withdrawal of consent does not affect the validity of personal information processing activities conducted based on your consent before the withdrawal.
How to exercise:
Please note: withdrawing consent may prevent you from continuing to use the corresponding features or parts of the Service.
You have the right to obtain a copy of the personal information we hold about you. To export your personal information, please contact us using the methods in Section IX. We will respond within 15 working days.
If you believe our personal information processing has harmed your legitimate rights, you may:
When you actively cancel your account, we will stop providing the Service and delete or anonymize your personal information as required by applicable law (except where laws and regulations provide otherwise, such as transaction records that must be retained for at least 10 years).
We attach great importance to the protection of minors' personal information.
Pursuant to the Provisions on the Cyber Protection of Children's Personal Information:
The Service is not designed for or operated towards children under 14 years of age. If you are under 14, please do not use the Service or provide us with any of your personal information.
If we discover that we have collected personal information from children under 14 without verifiable parental or guardian consent, we will take steps to delete the relevant data as soon as possible.
If you are a minor between the ages of 14 and 18, please read this Privacy Policy with the assistance of your guardian and obtain your guardian's consent before using the Service or providing personal information.
If you are a parent or guardian of a minor, you may contact us using the methods in Section IX to request:
We will promptly verify and process your request as required by law.
We may revise this Privacy Policy in light of laws and regulations, regulatory requirements, business changes, or technical upgrades.
For material changes (e.g., expanding the purpose or scope of personal information processing, adding or adjusting important features, adding new SDKs or third-party service providers, changing recipients of cross-border transfers), we will notify you through prominent in-App notifications, push notifications, or in-App messages, and seek your consent again before the material changes take effect.
You can check the "Last Updated" date at the top of this page for the latest version of this policy.
If you do not agree with the updated Privacy Policy, you may choose to stop using the Service. Continuing to use the Service constitutes acceptance of the updated Privacy Policy.
If you have any questions, opinions, or suggestions about this Privacy Policy or personal information processing, or if you wish to exercise any rights granted by this policy, please contact us through the following means:
We will respond within 15 working days of receiving your request.
If you are dissatisfied with our response, particularly when our personal information processing has harmed your legitimate rights, you may also file a complaint with regulatory authorities of the People's Republic of China or file a lawsuit with a People's Court of competent jurisdiction at the defendant's location.