1. Introduction
Codevra, operated by Taiyi Human Resources (Shenzhen) Co., Ltd. ("we," "us," or "our"), is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or engage our services.
This policy is designed to comply with the European Union's General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and the People's Republic of China's Personal Information Protection Law (PIPL).
2. Information We Collect
2.1 Information You Provide
We may collect the following categories of personal information that you voluntarily provide:
- Contact Information: Name, email address, phone number, company name, and job title when you fill out our contact form or request a consultation.
- Project Information: Details about your project requirements, budget range, and technical specifications shared during consultations.
- Communication Records: Records of correspondence when you contact us via email, phone, or other channels.
2.2 Information Collected Automatically
When you visit our website, we may automatically collect:
- Device Information: Browser type, operating system, device type, and screen resolution.
- Usage Data: Pages visited, time spent on pages, referring URLs, and navigation patterns.
- Network Information: IP address, approximate geographic location, and internet service provider.
3. How We Use Your Information
We use collected information for the following purposes:
- To respond to your inquiries and provide requested services
- To communicate with you about projects, services, and updates
- To improve our website, services, and user experience
- To comply with legal obligations and protect our legal rights
- To detect and prevent fraud or other harmful activities
4. Legal Basis for Processing (GDPR)
Under the GDPR, we process your personal data based on the following legal grounds:
- Consent: Where you have given explicit consent for specific processing activities.
- Contractual Necessity: Where processing is necessary to perform a contract with you or take pre-contractual steps at your request.
- Legitimate Interests: Where processing is necessary for our legitimate business interests, provided these do not override your rights and freedoms.
- Legal Obligation: Where processing is necessary to comply with applicable laws.
5. Your Rights
5.1 Rights Under GDPR (EU/EEA Residents)
If you are located in the EU/EEA, you have the following rights:
- Right of Access: Request a copy of your personal data.
- Right to Rectification: Request correction of inaccurate data.
- Right to Erasure: Request deletion of your personal data ("right to be forgotten").
- Right to Restriction: Request limitation of processing.
- Right to Data Portability: Receive your data in a structured, machine-readable format.
- Right to Object: Object to processing based on legitimate interests or direct marketing.
- Right to Withdraw Consent: Withdraw previously given consent at any time.
5.2 Rights Under CCPA (California Residents)
If you are a California resident, you have the following rights:
- Right to Know: Request disclosure of the categories and specific pieces of personal information collected.
- Right to Delete: Request deletion of personal information collected.
- Right to Opt-Out: Opt out of the sale of personal information. We do not sell personal information.
- Right to Non-Discrimination: Not be discriminated against for exercising your privacy rights.
5.3 Rights Under PIPL (China Residents)
Under China's Personal Information Protection Law, individuals have the right to:
- Know and decide regarding the processing of their personal information
- Restrict or refuse the processing of their personal information
- Request access, copy, correction, and deletion of their personal information
- Request explanation of processing rules
6. Cross-Border Data Transfers
As an international service provider with operations in China, we may transfer personal data across borders. We implement appropriate safeguards for cross-border transfers, including:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Compliance with China's regulations on cross-border data transfer
- Data processing agreements with all third-party service providers
- Technical and organizational security measures
7. Data Security
We implement industry-standard security measures to protect your personal information, including encryption in transit and at rest, access controls, regular security audits, and employee training on data protection practices.
8. Data Retention
We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law. Contact and project inquiry data is typically retained for 3 years after the last interaction, unless a longer retention period is required by law.
9. Third-Party Services
We may use third-party services for analytics, communication, and business operations. These providers are contractually obligated to protect your data and process it only as instructed by us.
10. Children's Privacy
Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website with a revised "Last Updated" date.
12. Contact Us
If you have questions about this Privacy Policy or wish to exercise your data protection rights, please contact us:
- Email: [email protected]
- Address: Taiyi Human Resources (Shenzhen) Co., Ltd., Longgang District, Shenzhen, Guangdong, China
For EU residents, you also have the right to lodge a complaint with your local data protection supervisory authority.