Effective Date: August 1, 2025
Chapter 1: Data Controller Declaration
lnru.com is a global promotion service platform (hereinafter referred to as "the Platform"), operating in compliance with Chinese laws and regulations.
Nature of Operating Entity: Lightweight enterprise international promotion technology service provider
Chapter 2: Scope and Legal Basis of Data Collection
2.1 Core Business Data Collection
When using the Platform's core functionalities, we collect:
Enterprise Legal Identification Data
Includes full enterprise name and legal representative's name. Used to create legally binding digital business cards and as verification for contracting parties under the "lnru.com Service Agreement." Legal basis: Contractual necessity.
Global Business Presentation Data
Includes product/technology description texts (original Chinese/English drafts) and service scenario images. Used to drive the multilingual promotion page generation system and AI optimization engine. Legal basis: Contractual necessity.
Cross-Border Communication Channel Data
Includes enterprise email addresses. Used for receiving real-time overseas inquiry notifications and system security verification alerts. Legal basis: Explicit user consent.
2.2 Technical Operation Data Collection
Automatically generated during service usage:
Network Identifier Data
Includes source IP addresses, user agent strings (UA), and request protocol types. Used to build security defense models (e.g., abnormal login detection) and service optimization. Recognized as legitimate interest under the Cybersecurity Law.
Interaction Behavior Trace Data
Includes module access paths and page dwell time. De-identified for service usage pattern analysis, stored for no more than 90 days. Legal basis: Legitimate interest.
Chapter 3: Data Processing Technical Framework
3.1 AI Core Processing Mechanisms
Multilingual Conversion Engine
Input Layer: Receives user-submitted business description texts
Processing Layer:
Activates industry-specific terminology libraries (e.g., manufacturing/trade)
Performs cultural context adaptation (non-region-specific)
Output Layer: Generates target-language promotional content
Search Engine Optimization (SEO) Core Capabilities
Executes baseline optimization:
• Auto-generates webpage meta description tags
• Adjusts basic keyword density
3.2 Tracking Technology Implementation Standards
Session Maintenance Technology
Name: lnru_session_token
Function: Ensures continuous login state
Lifecycle: Expires upon browser session termination
Performance Monitoring Technology
Name: perf_tracker
Function: Anonymously records service response times
Lifecycle: Automatically purged after 30 days
Chapter 4: Data Sharing Governance Framework
4.1 Third-Party Collaboration Types
Infrastructure Service Partners
Data Scope: Business database content
Core Function: Provides server resources and storage services
Security Constraints:
• Vendors must hold industry-standard security certifications
• Encrypted data transmission channels
Global Acceleration Service Partners
Data Scope: IP address segments, access request information
Core Function: Enhances cross-border access efficiency
Security Constraints:
• Data protection agreements required
• Log retention ≤72 hours
4.2 Cross-Border Transfer Management
Data Transfer Path: Mainland China servers → International distribution nodes
Encryption Standard: TLS 1.2 or higher protocols
Legal Safeguard: Compliance with "Personal Information Export Standard Contract"
Chapter 5: Data Lifecycle Rules
5.1 Storage Duration Policies
Active Account Data: Retained until account termination
Terminated Account Data: Securely deleted after 30-day retention
Interaction Log Data: De-identified and archived after 90 days
Backup Data: Encrypted until overwritten in next cycle
5.2 Data Disposal Channels
Self-service Account Deletion Path:
Control Panel > Initiate Deletion Request > Complete Two-Factor Authentication
Exercise of Statutory Rights:
Requires written submission to the contact email, including a scanned copy of the company seal and account credentials
Chapter 6: User Rights Protection Framework
You are legally entitled to the following rights:
6.1 Right to Rectification and Erasure
Modify enterprise basic information in real time
Request permanent deletion of the account and associated data
6.2 Right to Transparency in Automated Decision-Making
Obtain a brief explanation of AI processing logic
No option to reject automated decision outcomes
Chapter 7: Security Protection Measures
7.1 Technical Safeguards
Transmission Encryption: Full-site HTTPS enforcement
Storage Encryption: Field-level encryption
Access Control: Role-based permission model
7.2 Administrative Controls
Personnel Management: Confidentiality agreement signing
Audit Mechanism: Annual security assessments
Disaster Recovery Plan: Local data backup mechanism
7.3 Incident Response Protocol
Upon confirming a security incident:
Notify affected users within 0–72 hours
Submit an incident report to relevant authorities
Chapter 8: Policy Dynamic Management
Change Notification: Major revisions announced 30 days in advance on the website
Interpretation Authority: Reserved by lnru.com