PRIVACY POLICY

Tinia Store Privacy Policy

Last updated: April 21, 2026 | Effective date: April 21, 2026


Bestfunc (Shanghai) Technology Co., Ltd. ("we") understands the importance of personal information to you and will make every effort to protect the security of your personal information. In accordance with the Personal Information Protection Law of the People's Republic of China, the Cybersecurity Law of the People's Republic of China, the Data Security Law of the People's Republic of China, and related laws and regulations, we have formulated this Privacy Policy to explain how we collect, use, store, share, and protect your personal information, and the rights you are entitled to.

Please read and fully understand this Privacy Policy before using our services.

1. Personal Information We Collect

To provide you with our services, we collect the following personal information:

1.1 Account Registration

  • Email address: used for account registration, identity verification, receiving notifications, and password recovery;
  • Password: used for account login authentication. We store only the password hash processed by an encryption algorithm, never the plaintext password;
  • Display name (optional): used as your display name within the Platform.

1.2 Email Verification

  • Verification code: a one-time code sent via email during registration to verify the validity of the email address. The code automatically expires after use or after the validity period.

1.3 Automatically Collected During Use

  • IP address: used for security auditing and abnormal-access detection;
  • Browser type and version: used for compatibility assurance and troubleshooting;
  • Access times and page records: used for service optimization and security analysis;
  • Device identifiers: used for login state management.

1.4 Organizations and Collaboration

  • Organization information: the name, description, and other details of the Organizations you create or join;
  • Membership: information on your role and permissions within an Organization.

1.5 User-Uploaded Content

  • Template files: the analysis workflow templates you upload and their metadata (name, description, category, etc.);
  • Business data: acoustic data files you upload via the Tinia platform. Ownership of this data belongs to you.

2. How We Use Your Personal Information

We use your personal information strictly for the following purposes:

  1. Account services: creating and managing your user account and verifying your identity;
  2. Notifications and communications: sending you registration verification codes, account review results, organization approval notices, security alerts, and other service-related notifications;
  3. Platform features: providing core functions such as template browsing, downloading, uploading, and organization management;
  4. Data synchronization: where authorized by you, synchronizing your basic information (email, display name) to the Tinia analysis platform via SSO;
  5. Security assurance: detecting and preventing security threats, fraud, and violations;
  6. Service improvement: analyzing service usage to optimize product features and user experience.

We will not use your personal information for purposes other than those stated above. If we need to use your information for a new purpose, we will seek your consent again.

3. How We Share Your Personal Information

We will not sell your personal information to third parties. We may share your information in the following circumstances:

3.1 Synchronization with Affiliated Platform

Once your account is approved, we will synchronize your email address and display name to the Tinia data analysis platform so that you can use integrated services. This synchronization is deemed authorized by you when you register and agree to this Privacy Policy.

3.2 Entrusted Processing

We may entrust the following types of service providers to assist in processing your information:

  • Email service providers: for sending verification codes and notification emails (transmitting only the email address and message content);
  • Cloud storage providers: for storing the templates and data files you upload.

We will enter into data processing agreements with such entrusted parties, requiring them to process personal information in accordance with our instructions, this Privacy Policy, and applicable laws and regulations, and to adopt appropriate security measures.

3.3 Legal Requirements

We may disclose your personal information where required by laws and regulations, legal proceedings, litigation, or the mandatory requirements of competent government authorities.

4. How We Store and Protect Your Personal Information

4.1 Storage Location

Your personal information is stored on servers located within the People's Republic of China. If, in the future, business needs require transferring data abroad, we will strictly comply with the Personal Information Protection Law, safeguard data security through means such as security assessments or standard contracts, and obtain your separate consent.

4.2 Retention Period

  • During the account's existence: we continuously store your information while you use the services;
  • After account cancellation: we will delete or anonymize your personal information within 30 days, except as otherwise required by laws and regulations;
  • Verification codes: valid for 10 minutes and automatically cleared after expiry;
  • Log data: retained for no more than 180 days.

4.3 Security Measures

We adopt the following technical and management measures to protect your personal information:

  • Encrypting all data in transit using HTTPS;
  • Storing passwords encrypted with the bcrypt algorithm;
  • Supporting two-factor authentication (2FA) to enhance account security;
  • Implementing access control and permission management so that only authorized personnel can access personal information;
  • Conducting regular security audits and vulnerability scans.

Although we have taken the measures above, please understand that no technical means can guarantee absolute security in the internet environment. In the event of a personal information security incident, we will notify you promptly and report to the competent authorities.

5. Cookies and Similar Technologies

The Platform uses necessary cookies and local storage (localStorage) to maintain your login state. We do not use third-party tracking cookies or advertising tracking technologies.

  • Authentication token: stored in localStorage to maintain your login state; it remains valid after the browser is closed, until the token expires or you actively log out;
  • Functional cookies: used to remember your preferences (such as interface language).

You may manage or delete cookies through your browser settings, but doing so may prevent some features from working properly.

6. Your Rights

Under the Personal Information Protection Law, you are entitled to the following rights:

  1. Right to be informed: to know how we collect and use your personal information (as described in this Privacy Policy);
  2. Right of access: to access the personal information we hold about you;
  3. Right to rectification: to request correction when you find the personal information we hold is inaccurate;
  4. Right to erasure: to request that we delete your personal information under specific conditions;
  5. Right to withdraw consent: to withdraw consent previously given at any time. Withdrawal does not affect the lawfulness of processing carried out on the basis of your consent before withdrawal;
  6. Right to cancel: to cancel your account. You may apply for cancellation by contacting us;
  7. Right to obtain a copy: to obtain a copy of your personal information;
  8. Right to complain: if you believe our processing infringes your rights, you may file a complaint with the cyberspace administration authorities.

To exercise the rights above, please contact us using the channels at the end of this Policy. We will process your request within 15 business days.

7. Protection of Minors

The Platform is intended for professional users and primarily serves practitioners in the field of acoustic data analysis. If you are a minor under 14 years of age, please read this Privacy Policy under the guidance of a guardian and use our services only after obtaining the guardian's consent. We do not proactively collect the personal information of minors. If we discover that we have inadvertently collected a minor's information, we will delete it promptly.

8. Updates to This Policy

  1. We may revise this Privacy Policy from time to time. The updated policy will be published on the Platform.
  2. For material changes (such as an expanded scope of information collected, changes in purpose of use, or changes in how information is provided to third parties), we will notify you at least 30 days in advance by email or in a prominent in-platform location, and obtain your consent again.
  3. If you continue to use the Platform after the update takes effect, you are deemed to agree to the updated Privacy Policy.

9. Contact Us

If you have any questions, comments, or complaints about this Privacy Policy, or need to exercise your personal information rights, please contact us through the following channels:

We have designated personnel responsible for personal information protection matters, who will contact you as soon as possible after receiving your request.


This Privacy Policy, together with the Tinia Store Terms of Service, constitutes the complete user agreement framework. In the event of any conflict, this Privacy Policy prevails.