Version: 20250412
Release Date: 12. 04. 2025
Effective Date: 12. 04. 2025
Thank you for using the TARRAN App(referred to as "App"). This policy applies to TARRAN INNOVATION LIMITED (hereinafter referred to as "We" or "TARRAN"), which provides TARRAN products and App services. We greatly value the privacy and the security of your personal information. We are committed to strictly adhering to the requirements of the laws and regulations, and we will implement appropriate security measures to protect your personal information and privacy. In light of this, we have established this "TARRAN App Privacy Policy" (referred to as "this Policy") and we would like to bring to your attention:
This policy applies to the functions and services provided by App we provide. Please carefully read and fully understand this policy before using the various features or services we provide. Only after confirming full understanding and agreement can you start using it.
To protect your relevant rights, this policy will explain to you how App collect, use, store and protect your personal information, and what rights you have. Please read, understand, and agree to this policy before using App.
By using App related services, you agree to our collection, use, storage, and sharing of your information in accordance with this policy.
This policy will help you understand the followings:
In order to provide services to you, optimize our services, and ensure account security, TARRAN will collect the information you provide, authorize or generate by using the App and related services as follow:
| No. | Categories of Personal Data collected | The Purpose of Collecting Personal data |
|---|---|---|
| 1 | Register an account or log in to an existing account | Email address, Phone number, Login password, Username, Profile photo, IP address |
| 2 | Share updates, comments, and likes through community | Shared Information (text/picture/video), user location (IP address) |
| 3 | Bind E-Cargo Bike | VIN (vehicle identification number) |
| 4 | Check the real-time position of the E-Cargo Bike | Vehicle position (GPS) |
| 5 | Photo album | Pictures and videos (involving portraits) |
| 6 | Real time navigation | Driving track, Vehicle position, Destination, Common route |
| 7 | Record vehicle status and location information during driving | Driving track, Altitude, Driving duration, Starting time, Ending time, Maximum speed, Average speed, Pedal frequency, Motor power, Battery output current, Voltage |
| 8 | Vehicle log upload | Email address, Phone number, Error log, Operation log |
| 9 | Support the normal operation of App | Mobile device ID, model, System version |
Please understand that the services we provide to you are constantly being updated and developed. If a certain function or service is not included in the above description and your information has been collected, we will separately explain the content, scope, and purpose of information collection to you through page prompts, interaction processes, website announcements, and other methods to obtain your consent.
When you use the App, it will request access to certain device permissions, summarized as follows:
| No. | Device permissions | Authorized use functions | Whether it can be closed |
|---|---|---|---|
| 1 | Storage read/write permission | Used to download pictures, videos taken by the car camera or videos recorded by the Dash Cam to the phone album | Yes |
| 2 | Camera opening permission | Users share publishing trends | Yes |
| 3 | Locate Permissions | Used for vehicle navigation and querying vehicle position | Yes |
The data we collect during the process of providing services to you may be used in the following ways:
If you log in to TARRAN with Google OAuth service, we guarantee that when (the application) uses information received from the Google API and transmits it to any other application, including our application accessing, using, storing or sharing Google user data In this way, it will strictly abide by Google's official Google APIs Terms of Service and Google API Services User Data Policy and other related policies and limited use requirements.
We will not sell, rent, trade or otherwise disclose your personal information to anyone under any circumstances, except in the following special circumstances:
Your personal information will be transmitted and stored in the Amazon Cloud located in Frankfurt, Germany. Unless the law requires or permits a longer retention period, we will retain the information collected from you or about you for the shortest possible time necessary to achieve the purposes described in this Privacy Policy. When the information is no longer needed for these purposes, we will delete it or store it in a form that does not identify you. In determining this retention period, we will consider various criteria, including the type of service you have requested or provided, the nature of our relationship with you, the impact on the services we provide to you if we delete some of your information, and the retention period required by law. Please note that once you successfully apply to deactivate your App account, we will promptly complete the review of your account deactivation. Upon approval of the application, we will completely delete your personal data. If we cease to operate the product or service, we will notify you in the form of individual delivery or announcement and delete your personal data after ceasing to operate the product and service.
We have taken security measures by industry standards to protect the personal data you provide against unauthorized access, public disclosure, use, modification, damage, or loss of data. We will take all reasonably practicable measures to protect your personal data below:
If our physical, technical, or administrative safeguards are breached, resulting in unauthorized access, public disclosure, alteration, or destruction of data, thereby compromising your legitimate rights, we will assume responsibility. In the unfortunate event of a personal data security incident, we will promptly inform you within 48 hours as required by laws and regulations. We will provide information about the basic situation and potential impact of the security event, the measures we have taken or will take to address it, as well as suggestions on how you can independently prevent and mitigate risks, and the remedies we offer. We will inform you of the situation related to the incident through email, letter, phone, push notification, or other means.
While our operations are designed to protect your personal information, please understand that currently, there is no 100% security guarantee anywhere, whether online or offline. Your TARRAN account requires a username and password to log in. Please protect your username and password and never disclose them to third parties.
According to GDPR and relevant laws, regulations, and standards in your local area, as well as common practices in other countries and regions, we guarantee that you exercise the following rights over your personal data. You have rights to:
According to Art. 7 para. 3 GDPR, you have the right to access your personal information, except in exceptional circumstances stipulated by laws and regulations. If you want to exercise data access rights, you can access them yourself through the following methods:
Account information: If you wish to access or edit personal profile information in your account.
You can log in to your App account as the instruction: personal homepage → click on the avatar in the upper right corner → click on "profile" → browse your username, phone number, and email;
According to Art. 16 GDPR, when you discover errors in the personal information we process about you, you have the right to request us to make corrections. You can submit a correction request through the methods listed in "1. Accessing your personal information".
If you are unable to correct this personal information through the above way, you may contact us using the contact information listed in Chapter 11 of this Privacy Policy. We will respond to your correction request within 5-7 working days.
In the following situations, you can request us to delete personal information by sending an email according to Art. 17 GDPR:
If we decide to respond to your deletion request, we will also notify the entities that have obtained your personal information from us and require them to delete it in a timely manner, unless otherwise provided by laws and regulations or with your independent authorization.
According to Art. 17 GDPR, you can cancel your previously registered account at any time by following these steps: App Home → My Account → Cancel Account.
You can also send an account deactivation request email to us using the contact information listed in Chapter 11 of this policy. We will respond and carry out the relevant procedures within 5-7 business days after verifying your identity. After cancelling your account, we will stop providing you with products or services and will promptly delete your personal information.
According to Art. 20 GDPR, You have the right to obtain a copy of your personal information. If you need to obtain a copy of your personal information collected by us, you can contact us according to the contact information listed in Chapter 11 of this privacy policy. We will reply and take relevant actions within 5-7 working days after verifying your identity. We will submit a copy of our personal information to you via email. Subject to compliance with relevant laws and regulations and technical feasibility, we will provide you with a copy of your personal information upon your request.
We will respond to the above requests within 5-7 working days. Please refer to Chapter 11 of this Privacy Policy for contact information.
We will not be able to respond to your request in the following situations:
If you are a minor under the age of 14, you should read and agree to this policy under the supervision and guidance of your parents or other guardians before using our products.
We protect the personal information of minors in accordance with relevant laws and regulations. In the case of collecting personal information of minors with the consent of parents, we will only use, share or publicly disclose this information when permitted by law, with the explicit consent of parents or guardians, or necessary to protect minors.
If we find ourselves collecting personal information of minors without obtaining verifiable parental consent in advance, we will try to delete the relevant data as soon as possible. At the same time, we have established strict rules for the collection and use of information on minors to protect the personal information security of children and adolescents. If you are the guardian of a minor, if you have any questions about the personal information of the minor you are monitoring, please contact us through the contact information disclosed in this policy.
We promise to adhere to the highest privacy protection standards for the processing and transfer of personal information on a global scale. When you use our services, your personal information may be transferred to Amazon Cloud located in Frankfurt, Germany. This type of international transfer will comply with strict data protection and privacy security measures, ensuring the same level of privacy protection as we provide locally in your area.
We will transfer personal information of EU users in accordance with the requirements of the EU General Data Protection Regulation (GDPR). This means that when personal information leaves the EU and economic regions, we will transfer it by adopting standard contract terms recognized by the European Commission or when there is sufficient data protection level in the receiving country. We promise to regularly evaluate the data protection level of the receiving country and ensure the effective implementation of protection measures.
If you have any questions or need assistance with cross-border transfer of your personal information, please contact us.
We collaborate with some third-party software vendors to provide you with better services. The third-party suppliers we cooperate with can be found in the table below:
| Name | The purpose of collecting personal information | Personal data transfer | Third party privacy statements or development guidelines |
|---|---|---|---|
| Mapbox | Navigation services | Equipment information (Mobile device ID, model, System version), driving track, Vehicle position | https://www.mapbox.com/legal/privacy#product-privacy-policy |
| Firebase | Message Push (FCM), Data statistics services, Software error log collection | Equipment information (Mobile device ID, model, System version), Region | https://policies.google.cn/privacy |
| Google Sign-in | Equipment information (Mobile device ID, model, System version), Region | https://policies.google.cn/privacy | |
| Apple | Apple Sign-in, Message Push (APNS) | Equipment information (Mobile device ID, model, System version), Region | https://www.apple.com.cn/privacy/ |
| Facebook Sign-in, Sharing services | Equipment information (Mobile device ID, model, System version), Region | https://developers.facebook.com/devpolicy |
To ensure that you are always aware of how we collect, use, and disclose your information, we will post any changes or updates to this privacy policy on this website and encourage you to review this privacy policy from time to time. If we change this privacy policy, we will notify you by modifying the date at the top of this privacy policy.
If you have complaints about how we process your personal information, please contact us at any time using the contact details provided below.
Contactor (Data Protection Officer "DPO"):
Address: FLAT 1512, 15/F LUCKY CTR, NO.165-171 WAN CHAI RD, WAN CHAI, HONG KONG
Email: policy@tarranbikes.com