AI Diary Privacy Policy
Updated on: 2026-05-12
Introduction
AI Diary (hereinafter referred to as "we", "us", or "the application") highly values the protection of your personal information and privacy. Before using this application, please read and fully understand this policy, especially clauses highlighted in bold. If you do not agree with any part of this policy, please stop using the application immediately.
This policy applies to the personal information processing activities involved when you use AI Diary products and services through a mobile phone or other smart terminal. It does not apply to products and services independently provided to you by any third party.
Special Notice:
- This application adopts a "local-first" data architecture. Your diary content, tags, attachments, and other creations are by default stored only on your local device and protected by an encrypted database (SQLCipher). We do not actively upload diary content to the cloud.
- When you use online features such as account registration, membership services, and recharge/payment, related account information, order information, and membership status will be uploaded to our cloud service (Huawei AppGallery Connect, referred to as "AGC").
1. How We Collect and Use Your Personal Information
We process your personal information only within the scope necessary to provide services. The specific scenarios and field mapping are as follows:
1.1 Account and Identity Information
| Purpose | Information Type | Necessity |
|---|---|---|
| Registration, login, account security management | Third-party account identifier (HUAWEI Account UnionID/OpenID, Apple Sign In identifier), login credential | Required |
| Profile display | Nickname and avatar that you actively set | Optional |
1.2 Diary Content
| Purpose | Information Type | Storage Location |
|---|---|---|
| Creating, editing, searching, and displaying diary entries | Text, title, tags, time, attachments (images/audio, etc.) | Stored only in the encrypted database on your local device |
Please note: Diary content and attachments are by default not uploaded to the cloud. Such content leaves this application only when you actively use the "Export" or "Share" features.
1.3 Membership, Order, and Payment Information
| Purpose | Information Type | Necessity |
|---|---|---|
| Membership activation, credit recharge, order management | Order number, product identifier, transaction time, payment status, payment receipt (returned by the payment platform) | Required |
| Payment verification and anti-fraud | Platform order receipt, application package name, coarse-grained device model information | Required |
We do not directly collect your bank card number, payment password, CVV, or other sensitive payment credentials. Such information is handled independently by the corresponding payment channels.
1.4 Device and Log Information
| Purpose | Information Type | Necessity |
|---|---|---|
| Service stability and troubleshooting | Operating system type, system version, app version, device category, crash stack | Required |
| Application update detection | Current app version, platform identifier | Required |
We do not collect IMEI, IMSI, device serial number (SN), MAC address, Android ID, or any other hardware identifiers that can permanently identify your device.
1.5 Location Information (Optional)
| Purpose | Information Type | Necessity |
|---|---|---|
| Diary location tagging and map display | Geographic coordinates, address returned by system reverse geocoding | Optional, collected only when you actively enable it |
You may disable the location permission in system settings at any time. After disabling, the location tagging feature is unavailable but other features are not affected.
2. How We Request System Permissions
We request the following permissions only when functions genuinely require them, and we provide clear feature descriptions:
| Permission | Usage | Required |
|---|---|---|
| Network access | Account login, cloud membership/order synchronization, payment, application update | Required |
| Storage read | Selecting images / importing local files as diary attachments | Optional (without it, local files cannot be inserted) |
| Storage write | Exporting diary data, backing up locally | Optional |
| Album read/write | Selecting/saving images | Optional |
| Location | Diary location tagging | Optional |
| Notification | Receiving diary reminders and app notifications | Optional |
| Microphone (if enabled) | Recording voice as a diary attachment | Optional |
You can enable or disable the above permissions in system settings at any time. Disabling a permission may affect the corresponding feature but will not affect the normal use of other features.
3. Third-Party SDKs and Services We Integrate
To provide login, payment, cloud, and voice-playback features, we integrate the following third-party SDKs or services. The specific behavior of third-party SDKs is subject to their own published privacy policies; we have required third parties to follow the principles of necessity, lawfulness, and minimization through technical and contractual means.
| SDK / Service | Provider | Usage Scenario | Personal Information That May Be Processed | Privacy Policy |
|---|---|---|---|---|
| HUAWEI AGC Auth Service / HMS Core | Huawei Software Technologies Co., Ltd. | HUAWEI account login and authentication | Account identifier, login credential, basic device information | https://consumer.huawei.com/cn/privacy/privacy-policy/ |
| Apple Sign In | Apple Inc. | Third-party login on iOS | Apple ID identifier, email (possibly private relay email) | https://www.apple.com/cn/legal/privacy/ |
| HUAWEI AGC CloudDB | Huawei Software Technologies Co., Ltd. | Cloud storage and synchronization of user profile, membership status, and orders | Account information, membership status, order information | https://consumer.huawei.com/cn/privacy/privacy-policy/ |
| HUAWEI AGC Cloud Functions | Huawei Software Technologies Co., Ltd. | Trusted server-side services such as payment verification and membership entitlement fulfillment | Order parameters, account identifier | https://consumer.huawei.com/cn/privacy/privacy-policy/ |
| HUAWEI AGC Cloud Storage | Huawei Software Technologies Co., Ltd. | Distribution of public resources such as legal documents and version resources | No personal information processed | https://consumer.huawei.com/cn/privacy/privacy-policy/ |
| HUAWEI AGC App Linking | Huawei Software Technologies Co., Ltd. | In-app deep link routing | Link open source, basic device information | https://consumer.huawei.com/cn/privacy/privacy-policy/ |
| HUAWEI IAP (In-App Purchases) | Huawei Software Technologies Co., Ltd. | In-app purchases on HarmonyOS | Order information, transaction status, payment credentials | https://consumer.huawei.com/cn/privacy/privacy-policy/ |
| Apple IAP (In-App Purchases) | Apple Inc. | In-app purchases on iOS | Order information, transaction status, payment credentials | https://www.apple.com/cn/legal/privacy/ |
| Alipay SDK | Alipay (China) Network Technology Co., Ltd. | Recharge payment on Android | Order parameters, payment result, basic device information | https://render.alipay.com/p/c/k2cx0tg8 |
| flutter_tts (system speech engine bridge) | Calls the device's system TTS engine; no upload to cloud | Diary read-aloud | Text to read (passed to the system TTS engine only when you actively trigger read-aloud) | Subject to disclosures by the device system vendor |
| Native location / geocoding | Provided by the device system | Location tagging | Geographic coordinates, address | Subject to disclosures by the device system vendor |
If we add, disable, or change any third-party SDK or service in a way that affects personal information processing rules, we will notify you via in-app announcements, version release notes, or other means, and obtain your consent again when required.
4. Sharing, Transfer, and Public Disclosure of Personal Information
- Sharing: Except for the necessary scenarios involving the third-party SDKs listed in Section 3, we will not share your personal information with other unrelated third parties. Where sharing is involved, we will obtain your consent or apply necessary measures such as de-identification in accordance with law.
- Transfer: We will not actively transfer your personal information. In the event of a merger, acquisition, or bankruptcy liquidation resulting in a change of operating entity, we will require the new controller to remain bound by this policy; otherwise we will obtain your consent again.
- Public Disclosure: We will disclose necessary information only when required by laws, regulations, or competent authorities, or when necessary to protect the personal or property safety of you or the public.
- No Sale of Personal Information: We do not sell your personal information in any form.
5. How We Store and Protect Your Personal Information
- Storage Location: Your cloud-side data, including account, membership, and orders, is stored on Huawei Cloud nodes within mainland China.
- Retention Period: We follow the principle of the shortest time necessary to achieve the processing purpose. After your account is deactivated, the corresponding cloud data will be deleted or anonymized within a reasonable period (unless laws and regulations require otherwise).
- Local Data: Diary content is stored on your local device and protected by SQLCipher encryption. Uninstalling the application or clearing application data will cause local data loss. Please back up in time via the "Export" feature.
- Security Measures: We adopt HTTPS transmission encryption, access control, least-privilege access, log audit, and other measures to protect information security. However, you understand that the internet environment is not absolutely secure; please safeguard your account credentials.
- Security Incident Response: In the event of a personal information security incident, we will activate the emergency response plan in accordance with law and promptly inform you of the incident, possible impact, and measures taken or to be taken.
6. Your Rights
In accordance with the Personal Information Protection Law and other laws and regulations, you have the following rights:
- Right to access and copy: You may view your account, membership, and order information within the application.
- Right to correct and supplement: You may correct inaccurate or incomplete information within the application.
- Right to delete: You may request deletion of your personal information. After account deactivation, the corresponding cloud data will be deleted as required.
- Right to withdraw consent: You may disable previously authorized permissions in system settings.
- Right to deactivate the account: You may submit an account deactivation request within the application.
- Right to data portability: To the extent technically feasible, you may request a copy of your personal information.
- Right to explanation: You have the right to request that we explain the rules for processing personal information.
- Right to complaint and report: You may complain to us through the channels listed in "How to Contact Us" of this policy, and may also report to the cyberspace, public security, or other competent authorities.
7. Special Section on the Protection of Minors
- If you are a child under 14 years old, please read this policy with your guardian and use this application only after obtaining the guardian's explicit consent.
- We process personal information of children under 14 only with the guardian's consent or when necessary to perform statutory duties or obligations.
- We apply strict access controls and minimization principles to children's personal information, and we do not use it for commercial promotion or external sharing.
- If a guardian finds that we have processed a child's personal information without valid consent, they may contact us through "How to Contact Us" in this policy. We will verify and delete it promptly.
8. Cross-Border Transfer of Personal Information
- Your personal information is, in principle, stored within the territory of the People's Republic of China.
- When you use services provided by overseas entities, such as Apple Sign In or Apple IAP, related information may be processed by the corresponding overseas entities in their global data networks. Such processing is governed by their published privacy policies.
- If in the future it becomes necessary to provide personal information overseas, we will lawfully conduct an impact assessment, provide separate notice, and obtain your consent.
9. Automated Decision-Making
This application does not perform user profiling, automated decision-making, or personalized recommendations on your personal information. Membership benefits, credit deductions, and similar matters are all executed based on your active operations and explicit rules.
10. Updates to This Policy
- We may update this policy in response to changes in laws, regulations, or services. Updates will be announced in the application via banners, pop-ups, or other reasonable means.
- If an update involves material changes to the processing purpose, processing method, information categories, or sharing recipients, we will obtain your consent again as required by law.
- You can review the latest version at any time in "Settings - About - Privacy Policy" within the application.
11. How to Contact Us
If you have any questions, comments, or complaints regarding this policy, or if you wish to exercise rights related to your personal information, you may contact us via:
- Email: xingbanteam@163.com
- Personal Information Protection Affairs Recipient: AI Diary development and operations team
- Response Time: We will reply within 15 business days after receiving your feedback.
If you are not satisfied with our reply, you may complain or report to the local cyberspace, public security, or market supervision authorities, or file a lawsuit before a court with jurisdiction.
Effective date: 2025-11-02
If there is any inconsistency between the Chinese and English versions of this statement, the Chinese version shall prevail.