Moment HK Game Privacy Terms

1. How We Collect and Use Personal Information

Moment HK collects and uses your personal information based on legal and regulatory compliance and following principles of legitimacy, legality, and necessity. This is necessary for using our services or as needed by our products and/or services. If we wish to use your personal information for purposes not specified in these Privacy Terms, or for other purposes based on specific reasons, we will inform you in a timely and reasonable manner and seek your consent again before using it.

Essential Information: Necessary for the core functions of our products and/or services; your authorization is required. If you refuse to provide this, you will not be able to use our products and/or services normally.
Additional Information: Needed for non-core business functions; you can choose whether to authorize us to collect this. If you refuse, it may prevent the realization of additional business functions or achieving our intended effects but will not affect the normal use of core business functions.

We would like to remind you that as our game products and services vary, so do the core business functions and the types of personal information collected, which differ based on the content of the specific game product/service provided. Additionally, as we strive to offer you perfected game products and services, we continuously improve our offerings, including technology, which means we may frequently introduce new business functions that might require the collection of new personal information or changes in the purpose or manner of use of personal information.

2. Third-Party SDK Information

We integrate third-party SDKs into our application to provide specific services. We require all third-party service providers to handle personal information in accordance with applicable laws and their own privacy policies.

Third-Party SDK List

SDK Name	Platform	Provider	Purpose	Personal Information Collected	Privacy Policy Link
Alipay SDK (com.alipay)	iOS, Android	Alipay.com Co., Ltd	Process in-app payments for China region users	Order amount, product ID (does not collect payment account passwords or other sensitive information)	View Policy
Firebase Analytics (com.google.firebase)	iOS, Android	Google LLC	User behavior analysis and crash reporting	Device model/OS version/anonymous usage statistics	View Policy
Google Sign-In (com.google.android.gms)	iOS, Android	Google LLC	Third-party account login functionality	Only collects user public profile (name/email, requires explicit authorization)	View Policy
NIM SDK (com.netease.nim)	iOS, Android	Hangzhou NetEase Zhiyun Technology Co., Ltd.	Instant messaging/customer service system	Chat text/device ID (for message routing)	View Policy
WeChat SDK (com.tencent.mm)	iOS, Android	Tencent Holdings Limited	WeChat sharing and payment functionality	Shared content/payment order information	View Policy

Compliance Information

Alipay SDK: PCI DSS certified, data encryption compliant with ISO/IEC 27001 standard
Firebase Analytics: GDPR and CCPA compliant, provides data anonymization options
Google Sign-In: Passed Google API Services audit, uses OAuth 2.0 security protocol
NIM SDK: Data encrypted with TLS throughout, passed China's Class 3 Cybersecurity Protection certification
WeChat SDK: Certified by China's financial industry, sensitive operations require user secondary authorization

3. Data Collection and Usage Declaration

3.1 Types of User Data Collected

Based on permission declarations, the application may involve the following data collection:

Category	Permission	Data Collected
Device Information	READ_PHONE_STATE	Device identifiers (IMEI, IMSI)
	ACCESS_WIFI_STATE	Wi-Fi MAC address
	READ_LOGS	System logs (may contain user operation records)
Financial Data	BILLING	Google Play in-app purchase records
	PAY_THROUGH_BAZAAR	Café Bazaar (Iran market) payment information
Network Data	INTERNET	All network transmission content (specific data requires code verification)

3.2 Purpose and Usage of Data Collection

Data Type	Purpose	Usage Scenario
Device identifiers	Unique user identification, anti-cheating	Data analysis, ad attribution
Network status	Adapt offline functionality, network quality statistics	Error log reporting
Payment information	Complete in-app purchases	Product delivery, order verification
System logs	Debug crash issues (must explicitly filter sensitive information)	Developer problem troubleshooting

3.3 Data Storage and Protection Measures

Encrypted Transmission:
- android:usesCleartextTraffic="true" indicates allowance of plaintext transmission (high risk, recommend enforcing HTTPS)
Local Storage:
- android:extractNativeLibs="true" may involve local library loading, requires confirmation of .so file encryption
Access Control:
- No explicit data isolation strategy declared, relies on code implementation (e.g., Android Keystore system)

3.4 Anonymization/Pseudonymization Techniques

No direct evidence found in Manifest:
- Manifest does not declare anonymization processing (e.g., android:allowBackup="false" could limit data export)

4. User Rights and Choices

You have certain rights regarding your personal information:

Access: Request a copy of your personal data we hold
Correction: Update or correct inaccurate information
Deletion: Request deletion of your personal data under certain circumstances
Opt-out: Object to or restrict certain processing activities
Data Portability: Request transfer of your data to another service provider

To exercise these rights, please contact us using the information in the "Contact Us" section below.

5. Data Retention

We retain your personal information only for as long as necessary to:

Provide services and maintain your account
Comply with legal obligations
Resolve disputes and enforce our agreements
Maintain business records for analysis and audit purposes

When we no longer need your information, we will securely delete or anonymize it.

6. International Data Transfers

Your personal information may be transferred to, stored, and processed in countries outside of your residence, including Hong Kong and other locations where our service providers operate. We ensure all transfers comply with applicable data protection laws through:

Standard contractual clauses
Adequacy decisions where applicable
Other lawful transfer mechanisms

7. Children's Privacy

Our services are not directed to children under the age of 13 (or 16 in some jurisdictions). We do not knowingly collect personal information from children. If we become aware that we have inadvertently received personal information from a child, we will delete such information from our records.

8. Policy Updates

We may update this Privacy Policy periodically. We will notify you of significant changes through:

In-app notifications
Email communications
Posting the updated policy on our website

Your continued use of our services after such changes constitutes acceptance of the updated policy.

9. Contact Us

If you have any questions or need consultation or complaints related to personal information protection when using our "Moment HK Game Privacy Terms" or our services, you can contact us through any of the following methods:

You can contact customer service or submit feedback online on the relevant function pages in the Moment HK game product.
You can send an email to our dedicated customer service email support@moment.fun to contact us.

Moment Interactive HK Limited

Last Updated: April 25, 2024