Anima · Legal

Privacy Policy

隐私政策

Effective · 生效日期：2026年__月__日
Last Updated · 最后更新：2026年__月__日

This Privacy Policy describes how [Company Full Name] ("Anima", "we", "us", "our") collects, uses, discloses, retains, and protects personal information in connection with the Anima mobile application and related services (the "Service"). It also explains the rights available to you under applicable data-protection laws, including the Personal Information Protection Law of the People's Republic of China ("PIPL"), the EU General Data Protection Regulation ("GDPR"), and the California Consumer Privacy Act ("CCPA"). By using the Service, you acknowledge that you have read and understood this Privacy Policy.

本《隐私政策》说明 [公司全称]（"Anima"、"我们"）在 Anima 移动应用及相关服务（"服务"）中如何收集、使用、披露、保留及保护个人信息，并说明你根据适用数据保护法律 —— 包括《中华人民共和国个人信息保护法》（"PIPL"）、欧盟《通用数据保护条例》（"GDPR"）以及《加州消费者隐私法》（"CCPA"）—— 所享有的权利。通过使用本服务，你确认已阅读并理解本《隐私政策》。

1. Controller and Contact · 处理者与联系方式

The data controller (PIPL: 个人信息处理者; GDPR: controller) is [Company Full Name], registered at [Registered Address].

数据处理者（PIPL 项下：个人信息处理者；GDPR 项下：controller）为 [公司全称]，注册地址：[注册地址]。

Email · 邮箱： privacy@withanima.ai

Personal Information Protection Officer (China) · 中国个人信息保护负责人： [Name and Contact · 姓名及联系方式]

EU Representative (where applicable) · 欧盟代表（如适用）： [Representative Name and Contact · 代表姓名及联系方式]

2. Personal Information We Collect · 我们收集的个人信息

We collect only the categories of personal information described below, limited to what is necessary for the purposes set forth in Section 3.

我们仅收集下述类别的个人信息，并将其限定于第 3 节所列目的所必需的范围。

2.1 Information You Provide · 你提供的信息

Category · 类别	Purpose · 用途
Mobile phone number手机号码	Account registration, authentication, and security账户注册、身份验证及安全
Display name or nickname显示名称或昵称	Account display within the Service在服务中显示账户
Voice recordings语音录音	Voice-input feature of the Service服务的语音输入功能
Conversation content (text and voice)对话内容（文本与语音）	Operation of the conversational feature of the Service运行服务的对话功能
Profile preferences偏好设置	Configuration of user-selectable options配置用户可选项

2.2 Information We Generate from Your Use · 我们从你使用中生成的信息

Category · 类别	Purpose · 用途
Conversation summaries对话摘要	Maintenance of conversation continuity across sessions跨会话维护对话连续性
Conversation state logs对话状态记录	Maintenance of functional state of the Service维护服务的功能状态
Internal interaction notes内部互动记录	Operation of the Service's response-generation logic运行服务的回复生成逻辑
User profile (preferences and signals derived from interaction)用户画像（自互动中导出的偏好与信号）	Configuration of the Service's response generation for the user为用户配置服务的回复生成
Usage patterns使用模式	Service operation and improvement服务运营及改进

2.3 Technical Information · 技术信息

Category · 类别	Purpose · 用途
Device type and operating system设备类型与操作系统	Application compatibility应用兼容性
IP addressIP 地址	Security, fraud prevention, and abuse detection安全、防欺诈及滥用检测
Application usage logs应用使用日志	Technical diagnostics技术诊断
Crash reports崩溃报告	Application stability应用稳定性

2.4 Information We Do Not Collect · 我们不收集的信息

The Service does not collect:

本服务不收集：

Precise geolocation · 精确地理位置
Device contacts · 设备通讯录
Cross-application tracking identifiers · 跨应用追踪标识符
Biometric identifiers (e.g., fingerprints, facial templates) · 生物识别标识符（如指纹、面部模板）

2.5 Sensitive Personal Information · 敏感个人信息

Your conversation content, conversation-derived user profile, and audio recordings of your voice may, depending on what you choose to share, contain sensitive personal information within the meaning of Article 28 of the PIPL (such as information about mental or physical health, family relationships, or financial status) or special categories of personal data under Article 9 of the GDPR. Processing of such information is conducted under the legal bases described in Section 4 and is subject to the separate, explicit consent obtained at registration.

你的对话内容、自对话导出的用户画像，以及你的语音录音，可能根据你选择分享的内容而包含 PIPL 第二十八条意义上的敏感个人信息（如心理或生理健康、家庭关系、财务状况等信息），或 GDPR 第九条项下的特殊类别个人数据。对该等信息的处理依据第 4 节所述的法律依据进行，并以注册时取得的单独、明示同意为前提。

3. Purposes of Processing · 处理目的

We process your personal information for the following purposes:

我们出于以下目的处理你的个人信息：

Service operation — providing the conversational feature, generating Service responses, and maintaining conversation history. · 服务运营 —— 提供对话功能、生成服务回复、维护对话历史。
Account management — creating, securing, and administering your account. · 账户管理 —— 创建、保护与管理你的账户。
Security and fraud prevention — detecting, investigating, and preventing unauthorized access, abuse, and fraud. · 安全与防欺诈 —— 检测、调查及预防未经授权的访问、滥用和欺诈。
Service improvement — diagnosing and resolving technical issues and improving the stability and quality of the Service, using technical and aggregated or anonymized data. · 服务改进 —— 使用技术数据及汇总或匿名数据诊断和解决技术问题，并改进服务的稳定性和质量。
Legal compliance — complying with applicable law, court orders, and lawful regulatory requests. · 法律合规 —— 遵守适用法律、法院命令及合法的监管要求。

We do not:

我们不会：

Sell your personal information to any third party. · 向任何第三方出售你的个人信息。
Use your conversation content to train artificial-intelligence models without your separate, explicit, opt-in consent. · 未经你的单独、明示、主动选择同意（opt-in），将你的对话内容用于训练人工智能模型。
Share your personal information with advertisers. · 与广告商共享你的个人信息。
Use your personal information for any purpose not described in this Privacy Policy. · 将你的个人信息用于本《隐私政策》未描述的任何目的。

4. Legal Bases for Processing · 处理的法律依据

4.1 Users in the European Union (GDPR)

Processing Activity	Legal Basis
Account creation, authentication, and core Service delivery	Contract performance — GDPR Art. 6(1)(b)
Maintenance of conversation context and continuity	Contract performance — GDPR Art. 6(1)(b)
Security, fraud prevention, and Service improvement	Legitimate interests — GDPR Art. 6(1)(f)
Processing of special categories of personal data	Explicit consent — GDPR Art. 9(2)(a), obtained at registration
Marketing communications, if any	Consent — GDPR Art. 6(1)(a)
Compliance with legal obligations	Legal obligation — GDPR Art. 6(1)(c)

4.2 Users in Mainland China (PIPL) · 中国大陆用户

我们依据下列 PIPL 项下的法律依据处理你的个人信息：

为订立、履行你作为一方当事人的合同所必需（如账户注册、对话功能的提供）—— PIPL 第十三条第（二）项；
履行法定职责或法定义务所必需 —— PIPL 第十三条第（三）项；
基于你的同意（含敏感个人信息的单独同意）—— PIPL 第十三条第（一）项、第二十九条；
在合理范围内处理你自行公开或已经合法公开的个人信息 —— PIPL 第十三条第（六）项。

敏感个人信息的单独同意：我们通过注册流程中独立于本《隐私政策》及《用户协议》的专门同意界面，取得对敏感个人信息处理的单独同意。你可随时通过发送邮件至 privacy@withanima.ai 撤回该同意；撤回后将触发账户注销程序，详见《用户协议》第 6 节。

4.3 Users in California (CCPA)

We do not "sell" personal information as that term is defined under the CCPA. California residents have the rights described in Section 8.

我们不"出售" CCPA 所定义的个人信息。加州居民享有第 8 节所述的权利。

5. Disclosure and Sharing of Personal Information · 个人信息的披露与共享

We share personal information only as described below.

我们仅在下述情形下共享个人信息。

5.1 Service Providers (Entrusted Processors) · 服务提供商（受托处理者）

We engage selected service providers to process personal information on our behalf and under our instructions, subject to written data-processing agreements that limit their use of personal information to the provision of the contracted service.

我们委托经审慎选择的服务提供商代表我们并按我们的指示处理个人信息，并签署书面数据处理协议，将其对个人信息的使用限制于提供约定的服务。

Provider · 提供商	Purpose · 用途	Data Scope · 数据范围
Tencent Cloud (Guangzhou)腾讯云（广州）— Cloud infrastructure · 云基础设施	Hosting and storage托管与存储	All Service data, encrypted at rest所有服务数据，存储加密
DeepSeek— AI language model · AI 语言模型	Generating Service responses生成服务回复	Minimum conversation context necessary for response generation生成回复所需的最少对话上下文
fish.audio— Speech synthesis · 语音合成	Text-to-speech output文本到语音输出	Text of generated responses生成回复的文本
fish.audio— Speech recognition · 语音识别	Transcription of voice input转录语音输入	Voice audio语音音频

Conversation content shared with AI-model providers contains only the minimum context necessary to generate a response. Such providers are contractually prohibited from storing the content beyond the period necessary to provide the response, and from using it to train their own models, unless you have provided separate, explicit, opt-in consent for such use.

与 AI 模型提供商共享的对话内容仅包含生成回复所需的最少上下文。除非你已提供单独、明示的主动选择同意（opt-in），该等提供商按合同被禁止在提供回复所需期间之外存储该内容，且不得将其用于训练其自有模型。

5.2 Legal and Regulatory Disclosure · 法律及监管披露

We may disclose personal information when required by applicable law, regulation, legal process, lawful government request, or to protect the rights, property, or safety of us, our users, or the public.

当适用法律、法规、法律程序、合法政府要求或保护我们、我们的用户或公众的权利、财产或安全所必需时，我们可能披露个人信息。

5.3 Business Transfers · 业务转让

In the event of a merger, acquisition, reorganization, or sale of assets, personal information may be transferred as part of the transaction. Your information will remain subject to this Privacy Policy or a successor policy materially no less protective, and we will provide notice prior to any such transfer.

如发生合并、收购、重组或资产出售，个人信息可能作为交易的一部分被转让。你的信息将继续受本《隐私政策》或继受方实质不低于本政策保护水平之政策的约束，我们将在任何该等转让前通知你。

6. Retention · 保留期限

We retain personal information only as long as necessary for the purposes set forth in Section 3 or as required by applicable law.

我们仅在第 3 节所列目的所必需的期间或适用法律要求的期间内保留个人信息。

Category · 类别	Retention Period · 保留期限
Account information账户信息	Until account deletion直至账户注销
Conversation history and conversation-derived data对话历史及自对话导出的数据	Until account deletion直至账户注销
User profile用户画像	Until account deletion直至账户注销
Voice recordings语音录音	Deleted within 30 days of transcription转录后 30 天内删除
Technical logs技术日志	90 days90 天
Aggregated and anonymized analytics汇总及匿名分析数据	Up to 2 years至多 2 年

Upon a verified account-deletion request, all personal data is physically deleted from our active systems within thirty (30) days, as described in Section 6 of the Terms of Service. A limited subset of data may be retained beyond that window in a separate, access-controlled archive for the minimum period required by applicable law (for example, for tax, anti-money-laundering, fraud-investigation, or legal-proceedings purposes).

收到经验证的账户注销请求后，所有个人数据将在三十（30）天内从我们的活动系统中物理删除，详见《用户协议》第 6 节。少量数据可能在该窗口期之后保留于单独的、受访问控制的存档中，保留期限为适用法律要求的最短时间（例如税务、反洗钱、欺诈调查或法律程序目的）。

7. Security · 安全

We implement technical and organizational measures designed to protect personal information against unauthorized access, disclosure, alteration, and destruction, including:

我们实施旨在保护个人信息免遭未经授权的访问、披露、变更和销毁的技术和组织措施，包括：

Encryption in transit (TLS 1.3) · 传输加密（TLS 1.3）
Encryption at rest (AES-256) · 存储加密（AES-256）
Role-based access controls under the principle of least privilege · 基于角色的访问控制及最小权限原则
Periodic security reviews · 定期安全审查
Processing and deletion of voice recordings within 30 days · 语音录音在 30 天内处理和删除

In the event of a personal-data breach affecting your rights:

如发生影响你权利的个人数据泄露事件：

For users in the EU, we will notify the competent supervisory authority within 72 hours in accordance with GDPR Article 33, and notify affected users without undue delay where Article 34 applies.
For users in China, we will notify the competent authority and affected users within the timeframe required under Article 57 of the PIPL.

8. Your Rights · 你的权利

Subject to applicable law, you have the rights described in this Section. To exercise any right, contact privacy@withanima.ai with sufficient information to verify your identity.

在适用法律的范围内，你享有本节所述的权利。如需行使任何权利，请发送邮件至 privacy@withanima.ai 并提供足以核验你身份的信息。

8.1 Universal Rights · 通用权利

Right · 权利	Description · 说明
Access查阅	Obtain confirmation of and a copy of your personal information确认并获取你的个人信息副本
Rectification更正	Correct inaccurate or incomplete personal information更正不准确或不完整的个人信息
Erasure删除	Delete your account and associated personal information删除你的账户及相关个人信息
Portability可携带	Receive your personal information in a structured, machine-readable format以结构化、机器可读的格式获取你的个人信息
Objection / Restriction反对 / 限制处理	Object to or restrict certain processing反对或限制特定处理
Withdrawal of Consent撤回同意	Withdraw any consent previously given撤回此前提供的任何同意

8.2 Additional Rights for EU Users (GDPR)

Right to lodge a complaint with your competent supervisory authority.
Right not to be subject to a decision based solely on automated processing producing legal or similarly significant effects (see Section 11).

8.3 Additional Rights for California Users (CCPA)

Right to know what personal information is collected, used, disclosed, and sold.
Right to opt out of the sale of personal information (we do not sell).
Right to non-discrimination for exercising CCPA rights.

8.4 Additional Rights for China Users (PIPL) · 中国大陆用户

查阅、复制你的个人信息（第四十五条）；
请求转移你的个人信息至你指定的处理者（第四十五条）；
更正、补充你的个人信息（第四十六条）；
删除你的个人信息（第四十七条）；
请求解释处理规则（第四十八条）；
撤回同意（第十五条）。

8.5 Response Timeframes · 响应时限

We will respond to verified requests within:

我们将在以下期限内响应经验证的请求：

GDPR: within one (1) month, extendable by two further months for complex requests (GDPR Art. 12(3)).
CCPA: within forty-five (45) days, extendable by an additional 45 days where reasonably necessary.
PIPL: within fifteen (15) working days. · PIPL 项下：15 个工作日内。

9. Minors · 未成年人

The Service is intended for users 18 years of age or older. We do not knowingly collect personal information from individuals under 18. If we become aware that we have collected personal information from a person under 18, we will delete it without undue delay. If you believe we may have collected such information, contact us at privacy@withanima.ai.

本服务面向年满 18 周岁的用户。我们不会有意收集 18 周岁以下个人的个人信息。如发现我们收集了 18 周岁以下个人的个人信息，我们将不延迟地予以删除。如你认为我们可能收集了该等信息，请通过 privacy@withanima.ai 联系我们。

10. International Data Transfers · 跨境数据传输

The Service may process personal information in jurisdictions other than yours.

本服务可能在你所在司法管辖区以外的司法管辖区处理个人信息。

From the European Economic Area: International transfers are made under the European Commission's Standard Contractual Clauses or another lawful transfer mechanism under GDPR Chapter V, with supplementary measures as required.
From Mainland China · 自中国大陆出境： Cross-border transfers comply with the requirements of the Personal Information Protection Law, including, where applicable, security assessment by the Cyberspace Administration of China, certification by a specialized agency, or the Standard Contract for Cross-Border Transfer of Personal Information. Where required, separate consent for cross-border transfer is obtained at registration. · 跨境传输符合《个人信息保护法》的要求，包括（如适用）国家网信部门组织的安全评估、专业机构的认证或个人信息出境标准合同。如适用，单独的出境同意将在注册时取得。

11. Automated Decision-Making · 自动化决策

We do not use solely automated decision-making to produce legal or similarly significant effects on you within the meaning of GDPR Article 22 or PIPL Article 24. Output generated by the Service consists of conversational responses and is not used to make decisions concerning credit, employment, housing, insurance, education, or similar matters.

我们未将完全自动化决策用于对你产生 GDPR 第二十二条或 PIPL 第二十四条意义上的法律影响或类似重大影响。本服务生成的输出为对话回复，不用于作出涉及信贷、就业、住房、保险、教育等事项的决定。

12. Cookies and Similar Technologies · Cookie 与类似技术

The Service is delivered through a mobile application that does not use cookies. The Service may use locally stored identifiers for session management and may include limited analytics SDKs configured to process anonymized or aggregated data.

本服务通过移动应用提供，不使用 Cookie。本服务可能使用本地存储的标识符进行会话管理，并可能包含配置为处理匿名或汇总数据的有限分析 SDK。

13. Changes to This Privacy Policy · 本政策的变更

We may update this Privacy Policy from time to time. We will notify you of material changes through:

In-app notification; and
Email, if you have provided one.

The effective date at the top of this Privacy Policy indicates when it was last revised. Continued use of the Service after the effective date constitutes acceptance of the updated Privacy Policy.

我们可不时更新本《隐私政策》。我们将通过下列方式就重大变更通知你：

应用内通知；以及
在你已提供电子邮件时，邮件通知。

本《隐私政策》顶部的生效日期表示其最近修订日期。生效日期后继续使用本服务即视为接受更新后的《隐私政策》。

14. Contact Us · 联系我们

For questions, requests, or complaints concerning this Privacy Policy or our processing of your personal information:

如对本《隐私政策》或我们对你个人信息的处理有疑问、请求或投诉：

Email · 邮箱： privacy@withanima.ai

Company · 公司： [Company Full Name · 公司全称]

Registered Address · 注册地址： [Registered Address · 注册地址]

Personal Information Protection Officer (China) · 中国个人信息保护负责人： [Name and Contact · 姓名及联系方式]

EU Representative (where applicable) · 欧盟代表（如适用）： [Representative Name and Contact · 代表姓名及联系方式]

If you are not satisfied with our response, you have the right to lodge a complaint with your local data-protection authority. In Mainland China, that authority is the Cyberspace Administration of China (国家互联网信息办公室) or another competent regulator.

如你对我们的回应不满意，你有权向当地数据保护主管部门投诉。在中国大陆，该主管部门为国家互联网信息办公室或其他有管辖权的监管机构。