← Return to Home
Privacy Policy
Effective Date: August 8, 2024
Last Updated: August 8, 2024
XMANART (hereinafter referred to as "we", "the Studio") attaches great importance to the protection of users' privacy. This Privacy Policy sets out in detail how we collect, use, store, and protect your personal information.
Important Reminder: Using our services indicates that you agree to this Privacy Policy. If you do not agree with any content of this Policy, please do not use our services.
1. Information Collection
1.1 Types of Information We Collect
| Type of Information |
Specific Content |
Purpose of Collection |
| Personal photos |
Photos of the person uploaded by the user (front photo, side photo, etc.) |
Basic material for character customization services |
| Style reference images |
Style reference images uploaded by the user |
Determine the style and direction of creation |
| Contact information |
Email address, etc. |
Order communication and delivery of works |
| Order information |
Order ID, type of service, requirement description |
Order processing and provision of services |
| Payment information |
Payment transaction records (not including bank card information) |
Order confirmation and financial management |
| Technical information |
IP address, browser type, access time |
Website security and service optimization |
1.2 Methods of Information Collection
- Active provision: The information that you actively upload and fill in when using the services
- Automatic collection: Technical information automatically collected through Cookies and log files
- Third-party services: Transaction information obtained through third-party payment services
2. Information Use
2.1 Purposes of Use
We collect your information only for the following purposes:
- Provide character customization services
- Process orders and payments
- Communicate with you on matters related to the services
- Deliver completed works
- Improve service quality
- Prevent fraud and abuse
- Comply with laws and regulations requirements
2.2 Principles of Use
- Principle of minimization: Collect and use only the necessary information
- Purpose limitation: Use only within the scope of clearly informed purposes
- Principle of consent: Use on the basis of obtaining your consent
- Principle of transparency: Clearly inform how information is used
3. Information Storage and Security
3.1 Storage Location
- Servers are located in secure data centers
- Adopt industry-standard security measures
- Regularly back up important data
3.2 Storage Period
| Type of Information |
Storage Period |
Deletion Conditions |
| Personal photos |
Automatically deleted within 7 days after order completion |
Automatically deleted or deleted upon user request |
| Style reference images |
Automatically deleted within 7 days after order completion |
Automatically deleted or deleted upon user request |
| Payment records |
7 years |
As required by laws and regulations |
3.3 Security Measures
- Technical protection: SSL encrypted transmission, firewall protection
- Access control: Strictly restrict data access permissions
- Employee training: Conduct privacy protection training regularly
- Security audit: Regularly check for security vulnerabilities
- Incident response: Establish an emergency plan for data breaches
4. Information Sharing and Disclosure
4.1 Situations Where It Will Not Be Shared
We undertake not to sell, rent, or otherwise transfer your personal information to third parties, except for "service providers that have a cooperation relationship with us and provide services to you directly or indirectly".
4.2 Situations Where It May Be Shared
Only under the following circumstances, we may share your information:
- Upon obtaining explicit consent: In the case of obtaining your explicit consent
- As required by law: According to laws and regulations, court orders, or government requirements
- Provision of services: With trusted third-party service providers (such as payment processors)
- Security protection: For protecting our or others’ legitimate rights and interests
4.3 Third-party Services
The third-party services we use include:
- Third-party payment service providers: Payment processing services
- Email service providers: Delivery of works and communication
- Cloud storage services: Data backup and storage
- Third-party AI service providers: To make the works more refined and perfect
These service providers process your information in accordance with their own privacy policies and applicable laws. We share your information only to the extent necessary to provide the relevant services and, through contracts or other reasonable measures, require them to assume confidentiality and security obligations and to process such information only under our instructions or for purposes consented by you.
5. Cookies and Tracking Technologies
5.1 Cookies Use
We use Cookies to:
- Remember your preference settings
- Analyze website usage
- Improve user experience
- Prevent security threats
5.2 Cookies Management
You can, through browser settings:
- Disable Cookies
- Delete stored Cookies
- Set Cookie reminders
Note: Disabling Cookies may affect the normal use of the website.
6. Your Rights
6.1 Right of Access
- View the personal information about you that we collect
- Understand how the information is used
- Obtain a copy of the information
6.2 Right to Rectification
- Correct inaccurate personal information
- Supplement incomplete information
6.3 Right to Deletion
Under the following circumstances, you can request deletion of personal information:
- The information is no longer needed for the original purpose
- You withdraw consent and there is no other legal basis
- The information is processed unlawfully
- Deletion is required by law
6.4 Right to Restriction of Processing
In specific circumstances, you can request restriction of information processing.
6.5 Right to Data Portability
You have the right to obtain your data in a structured, commonly used, and machine-readable format.
6.6 Right to Object
You have the right to object to data processing based on legitimate interests.
7. Protection of Minors
- Our services are intended for adults aged 18 and above
- Will not intentionally collect personal information of minors
- If it is found that minors’ information has been collected, it will be deleted immediately
- Minors’ use of the services requires guardian consent
8. Cross-border Data Transfer
If cross-border data transfer is involved, we will:
- Ensure that the destination country/region has an appropriate level of protection
- Take appropriate security measures
- Obtain your explicit consent
- Comply with relevant laws and regulations
9. Data Breach Notification
If a data breach incident occurs, we will:
- Notify the relevant supervisory authorities within 72 hours
- Promptly notify affected users
- Explain the nature of the breach and possible impact
- Provide remedial measures and recommendations
10. Privacy Policy Updates
- We may update this Privacy Policy from time to time
- Material changes will be notified via website announcements or email
- Continued use of the services indicates acceptance of the updated Policy
- It is recommended to regularly check the latest version
11. Contact Us
If you have any questions about this Privacy Policy or need to exercise your rights, please contact us:
- Email: info@xmanart.com
- Working hours: Monday to Saturday 9:00–18:00
- Response time: We will reply within 7 working days after receiving the request
Your trust is very important to us. We undertake to strictly protect your personal information in accordance with this Privacy Policy, and continuously improve our privacy protection measures.
Last update note: This Privacy Policy was updated on August 8, 2024, with the main changes including adding an explanation of data storage periods and detailed descriptions of user rights.