"PaiMomo" Privacy Policy
Last Updated: May 7, 2026
Effective Date: May 7, 2026
Welcome to the PaiMomo application (hereinafter referred to as "this App" or "this Service").
This Privacy Policy is formulated by Beijing Manchong Trading Co., Ltd. (hereinafter "we" or "us"; registered address: Room 101A-825, Floor 1, Building 2, No. 1 Yard, Taibai West Road, Fengtai District, Beijing). This Policy explains clearly and fully how we collect, use, store, share, and protect your personal information during your use of this Service, as well as the related rights you are entitled to under applicable law.
We process your personal information strictly in accordance with the principles of legality, legitimacy, necessity, and good faith. All personal information processing activities are limited to the realization of the functions of this Service and adopt the manner with the least impact on your personal rights and interests. Before using this Service, please read carefully and fully understand all the contents of this Policy, especially the core terms related to your rights and interests that are marked in bold. You have the right to choose whether to agree to this Policy. If you do not agree, you will only be unable to use additional features that require collection of personal information; you may still use the basic core functions of this App, and we will not refuse to provide basic services on the grounds of your disagreement. Once you start using this Service, you are deemed to have fully understood and agreed to all the contents of this Privacy Policy.
1. Personal Information: Various information recorded electronically or by other means relating to identified or identifiable natural persons, excluding information that has been anonymized.
2. Sensitive Personal Information: Personal information that, if leaked or used illegally, may easily lead to infringement of the personal dignity of natural persons or endangerment of personal or property safety, including biometric identification, religious beliefs, specific identity, medical health, financial accounts, whereabouts, and the personal information of minors under the age of 14. Information related to location, contacts, camera, and photo album permissions in this Policy all constitutes sensitive personal information.
3. Anonymization: The process by which personal information cannot be used to identify a specific natural person and cannot be restored. Anonymized information is not personal information.
4. De-identification: The process by which personal information is processed so that it cannot identify a specific natural person without additional information.
5. Automated Decision-Making: The activity of automatically analyzing and evaluating an individual's behavioral habits, hobbies, or financial, health, or credit status through computer programs and making decisions accordingly (in this Policy, this includes personalized recommendations and marketing push notifications).
6. Account: The unique identity identifier you register to log in and use this Service.
7. Device: A terminal device that can be used to access this Service, including but not limited to mobile phones, tablets, and computers.
8. Service Providers: Third-party institutions or individuals that provide necessary technology, payment, analytics, and other support to realize the functions of this Service.
II. How We Collect and Use Your Personal Information
We only collect personal information necessary to realize the functions of this Service, divided into information you actively provide and information we automatically collect, strictly following the principle of minimum necessity, and not collecting personal information unrelated to service functions.
2.1 Information You Actively Provide
Personal Information Type | Purpose of Collection | Necessity Classification | Usage Rules |
Mobile phone number | For account registration, login, identity verification, password recovery, and security alerts | Necessary personal information (core element of account registration) | Used only for the above purposes; no other use |
Email address | For customer service communication, issue feedback, and service notifications | Non-necessary personal information | Collected only after you actively provide it; you may correct or delete it at any time |
Account login information (nickname, avatar, etc.) | For account profile display and service feature adaptation | Non-necessary personal information | You may choose whether to provide; basic functions are not affected |
2.2 Information We Automatically Collect
When you use this Service, we automatically collect the following information within the necessary scope to ensure secure operation of the Service, optimize product experience, and conduct statistical analysis:
1. Device Information: Device model, operating system version, device identifier (IDFA, Android ID collected only after your separate authorization), and device settings information, used to adapt App functions, ensure account security, and identify abnormal login behavior;
2. Network Information: IP address and network type, used to ensure stable Service operation, adapt to network environments, and conduct security risk control;
3. Usage Information: Access time, pages visited, dwell time, and operation records, used for statistical analysis of Service use, optimization of product functions, and improvement of user experience;
4. Log Information: System logs and abnormal crash records, used to troubleshoot App failures, ensure stable Service operation, and conduct security audits.
5. Push Notification Identifiers: After you consent to enable system notifications, we may obtain identifiers required by system push channels (such as iOS APNs device tokens) to deliver service-type messages or security alerts to you. You may disable these at any time in system settings or in-app notification settings.
2.3 Data Processing for AI and Related Intelligent Features
To enable functions such as conversation, memory summarization, pet image generation, and voice-to-text input, we provide the minimum scope of data necessary to realize these functions to the technology service providers we integrate with. For the current version of this App, large language model and image generation capabilities are accessed only through Doubao and Volcengine (including Ark image generation, etc.) provided by ByteDance and/or its affiliates; we do not separately integrate with any other independent third-party "large model / API" providers. Voice-to-text transcription is performed by us calling Tencent Cloud Automatic Speech Recognition (ASR), which is also a contractually constrained entrusted processing arrangement. Other text capabilities within this App that use the same type of large language models (if any) also adopt the same path of "client requests our server, our server forwards," and are subject to the purpose limitation and security requirements set forth in this section.
Transmission Path (consistent with your current deployment): The client submits requests for conversations, memory summaries, image generation, etc. to our own servers located within the People's Republic of China, which then call the third-party technology services described above. We do not use such data for advertising profiling or marketing modeling unrelated to you, nor for model training or sale to others; except as required by laws and regulations or as separately consented to by you.
Only after you give separate consent in the App for AI-related features, will we transmit the data types listed in the table below when you trigger the corresponding feature. If you decline consent or do not trigger the feature, we will not actively transmit the corresponding data to the recipients listed below. The descriptions of message-count and character limits in the table below are consistent with the current client implementation parameters (we may make minor adjustments with version optimizations; the in-app interface and updated Policy at that time shall prevail).
Feature | Typical Data Type (Minimum Necessary) | Recipient / Processing Path | Processing Purpose |
AI pet-care conversation and Q&A | Text you input; conversation text excerpted and aggregated within an upper limit of approximately 24 recent user/assistant messages totaling about 8,000 Chinese-character magnitude for context formation; descriptive text injected by the server to shape the pet's role (based on profile fields such as pet nickname, breed, personality, birthday you have filled in); if you enable the memory feature, this also includes existing thread memory text; and a pet status summary briefly injected to improve answer consistency (textual descriptions aggregated by the App's dashboard / widgets, etc., not including content you have not provided or displayed in the App) | Large language model services such as Doubao; the client only requests our API, and our server forwards | Generate conversation replies and pet-care assistance suggestions |
Long-term conversation memory summary (if enabled) | Existing thread memory text; text formed from recent conversation messages after excerpting, with parameters of approximately up to 14 messages totaling within an upper limit of about 4,000 characters | Large language model services such as Doubao; forwarded by our server | Generate reusable conversation memory text for reference in subsequent rounds (storage primarily remains on our server-side or controlled storage) |
Image generation such as "Create Pet Figure" | HTTPS-accessible URL of your pet photo (typically an external link generated by us after you consent to upload); prompt text formed after processing the action/pose description you input; in multi-reference-image mode, may also include style/pose reference image URLs we have preset | Image generation capabilities such as Volcengine Ark; by default proxied and forwarded by our server (front-end requests our API path such as | Generate stylized pet figure images |
Voice-to-text input (if enabled) | Short-duration audio recorded by the microphone (the product implementation has a per-recording upper limit of approximately 60 seconds; the interface prompt prevails) | Uploaded to our server (the front-end requests our API path such as | Convert speech to text for you to edit before sending |
You may consult the privacy policies and personal information processing rules publicly disclosed on each recipient's official website (e.g., the ByteDance Compliance & Privacy Center example: https://www.bytedance.com/zh/privacy-center/; rules for Tencent Cloud services are subject to the public disclosures on the Tencent Cloud official website). Actual content is subject to the version then publicly disclosed by each entity.
We will require entrusted parties through contracts and other means to take reasonable security protection measures within the agreed purposes. If you do not agree to provide the data necessary to realize the corresponding functions to the above entities, please do not use the relevant features, or decline/withdraw the relevant consent (if any) within the App. This does not affect your use of other basic functions that do not require such transmission.
2.3.1 Direct Messages, Customer Service, and Interactive Messages
When you use direct messages with other users, online customer service, feedback, and other features, we will process the text, images, voice, and necessary session metadata (such as time, conversation ID, identifier of the communication target) you actively send, for the purposes of completing communications, after-sales service, dispute handling, security audits, and the disposal of illegal or harmful information. The retention period of the above information is limited to the period necessary to achieve the processing purposes, except as otherwise required by laws and regulations.
To enable specific features, we will only request relevant permissions when you use the corresponding features. All permissions require your active authorization before invocation. You may turn off the relevant permissions at any time in your device's system settings (turning off some permissions only affects the corresponding features). The specifics are as follows:
1. Location Permission: When you use map browsing, pet-walking trajectory recording, location-based displays, and the voluntarily enabled "Share real-time location with pet friends" features, we may request precise or approximate location permissions. To form a complete pet-walking trajectory, while this App is in the background or on a locked screen, we may continue to collect location points briefly and continuously based on your prior authorization; when you end the pet walk or turn off the sharing toggle, we will stop reporting for the purpose of real-time sharing (the retention and deletion of real-time location data on the server-side is subject to the server implementation and this Policy). You may withdraw authorization at any time in system settings or turn off sharing in this App.
2. Contacts Permission: The current version of this App generally does not actively request contacts permission. If a future feature truly requires reading contacts to enable a "friend recommendation" or similar use with your consent, we will separately explain the purpose, scope, and consequences of refusal in the feature interface or via a system pop-up, and will not read contacts before your consent is obtained. This clause will be revised in sync with version updates.
3. Camera and Photo Album Permission: Requested in scenarios such as taking photos, uploading images or videos, posting moments, changing avatars, or scanning codes; refusing authorization only results in the inability to use related features that depend on local imaging.
4. Microphone Permission (if applicable): Requested in scenarios such as voice input, sending voice messages, customer service voice messages, or attaching voice to posts, used to capture short-duration audio; refusing authorization does not affect non-voice basic experiences such as browsing.
2.5 Core Rules for Use of Personal Information
1. We will use your personal information strictly within the purposes and scope set forth in this Policy, and will not exceed the scope directly relevant to the realization of Service functions;
2. If we need to use your personal information for other purposes not stated in this Policy, we will inform you in advance and re-obtain your separate consent;
3. We will not unlawfully process, sell, rent, or disclose to unrelated third parties the personal information collected.
III. In-App Purchases and Payment
This App provides paid services. Depending on the type of goods, the following payment methods apply. We strictly comply with the Apple App Store review rules and applicable payment laws and regulations:
1. Virtual Goods/Services: Membership subscriptions and other virtual goods/services within this App (subject to the purchase page) are paid for solely through Apple In-App Purchase (IAP), and other payment methods are not supported;
2. Physical Goods/Services: If physical goods transactions are actually enabled within this App and order/payment entries are displayed to you, you may complete payment via WeChat Pay, Alipay, bank cards, etc.; this paragraph does not apply before such features are enabled or made available to you.
Detailed instructions on payment and data processing are as follows:
1. If you make IAP payments via Apple devices, the relevant transactions will be processed entirely by Apple. We will not access, collect, or store your Apple account payment information, bank card information, or other sensitive payment data;
2. If you select WeChat Pay, Alipay, or bank card payment in non-IAP payment scenarios that have been displayed and actually opened within this App (e.g., physical goods orders), the corresponding transactions will be processed by third-party payment institutions with legal payment licenses (Tenpay Payment Technology Co., Ltd., Alipay (China) Network Technology Co., Ltd., the corresponding card-issuing bank, etc.); we will not collect your payment password, complete bank card number, CVV code, or other sensitive payment information;
3. We only obtain transaction-related necessary information, including order number, payment status, transaction time, and transaction amount, used to verify orders, complete transaction delivery, and provide after-sales customer service;
4. The retention period for order transaction information is the shortest necessary period required by laws and regulations, after which we will delete or anonymize the information;
5. Third-party payment institutions will process your information in accordance with their own privacy policies. We recommend that you carefully read their relevant terms before use.
Special Notes on Auto-Renewing Subscription Services
If you activate the auto-renewing subscription services of this App, the following rules apply:
1. Subscription Period and Price: Membership subscriptions auto-renew monthly; example list price PaiMomo Pro ¥8/month. Please always refer to the price displayed on the Apple App Store product page and payment confirmation page at the time of purchase.
2. Renewal Rules: Your Apple account will be automatically charged the renewal fee for the corresponding period within 24 hours before the subscription expires; after a successful charge, the subscription period is automatically extended;
3. Cancellation: You may cancel auto-renewal at any time. Cancellation path: iOS System Settings → tap Apple ID at the top → Subscriptions → select the subscription corresponding to PaiMomo (or the App name shown in your device's "Subscriptions" list) → tap Cancel Subscription. Please complete the cancellation at least 24 hours before the subscription expires; failure to cancel within 24 hours before expiration will automatically trigger renewal charges;
4. Refund Rules: Refunds for IAP transactions are processed centrally by Apple. You may apply for refunds through Apple's official customer service channels, and we will assist by providing relevant order vouchers.
IV. Sharing, Transfer, and Disclosure of Personal Information
We strictly comply with laws and regulations and will never sell or rent your personal information to unrelated third parties. We will share, transfer, or disclose your personal information only in the following statutory circumstances:
4.1 Sharing of Personal Information
1. To realize the necessary functions of this Service, we share with our service providers only the minimum scope of personal information necessary to realize the functions, and bind service providers via contract to strictly comply with personal information protection obligations and not to use the shared personal information for any other purpose;
2. AI and Intelligent Technology Service Providers: To realize the functions listed in Section 2.3 of this Policy, we will provide information necessary to realize such functions (which may include text input, conversation context or memory summary (if enabled), pet-related image URLs and prompts, short-duration audio for voice transcription, etc., subject to the features you actually use) to: (1) ByteDance and/or its affiliates (e.g., Doubao, Volcengine) for large language model conversations / memory summarization and image generation; (2) Tencent Cloud Computing related entities, for Automatic Speech Recognition (ASR) transcription. We will not share with the above entities data unrelated to you for advertising profiling purposes, nor will we require them to use your data for cross-app marketing profiling, model training, or resale targeting you personally; except as otherwise required by laws and regulations or as separately consented to by you. We will require them via contract and other means to take reasonable security protection measures and process only within the agreed purposes;
3. Sharing with our affiliates, who may only process your personal information within the scope set forth in this Policy. If the processing purpose or method changes, we will re-obtain your separate consent;
4. Sharing with third parties designated by you, after your express separate consent.
For the above sharing activities, we will clearly inform you of the recipient's name, contact information, processing purpose, processing method, types of personal information shared, and the manner and procedures for you to exercise your rights, and strictly fulfill the statutory separate-consent requirements.
4.2 Transfer of Personal Information
1. We will transfer your personal information only in cases involving company merger, acquisition, asset transfer, or bankruptcy liquidation;
2. In such cases, we will notify you through prominent means such as in-app pop-ups and push notifications, and require the new recipient to continue to be bound by this Policy. If the recipient changes the purpose or method of processing personal information, we will re-obtain your separate consent.
4.3 Disclosure of Personal Information
We will disclose your personal information only in the following statutory circumstances:
1. As mandatorily required by applicable laws and regulations or by administrative or judicial authorities, after receiving formal legal documents with legal effect, within the minimum scope required by law;
2. Necessary disclosures made in emergency situations to safeguard your legitimate rights and interests or the public interest, to prevent serious harm to personal or property safety;
3. Disclosures with your express separate consent.
For statutorily mandated disclosures, we will, to the extent permitted by laws and regulations, notify you of the relevant circumstances before disclosure where possible, except where laws and regulations prohibit such notification.
V. Storage and Protection of Personal Information
We strictly follow the principle of "the shortest period necessary to achieve the processing purpose" when storing your personal information:
1. Account-related information: continuously retained during your use of the account; after account cancellation, we will complete deletion or anonymization within 15 working days, unless laws and regulations require mandatory retention;
2. Customer service communication records and transaction order information: maximum retention period of no more than 24 months, unless laws and regulations require mandatory retention;
3. Log data and security risk-control data: maximum retention period of no more than 24 months, after which deletion or anonymization is performed immediately;
4. Where laws and regulations impose a longer mandatory retention period for specific information, those provisions shall apply. After the retention period expires, we will irreversibly delete or anonymize your personal information.
Your personal information is, in principle, stored within the territory of the People's Republic of China, and is transmitted to entrusted parties that provide processing capabilities within the territory for the purposes described in Section 2.3 of this Policy. Specifically: large language model and image generation are invoked from our servers to Doubao, Volcengine, etc. provided by ByteDance and/or its affiliates within the territory; voice transcription audio is uploaded to our servers and then we invoke ASR capabilities provided by Tencent Cloud within the territory. We will not actively transmit your personal information overseas, nor will we store your personal information overseas for the purposes of providing the functions described in this section. If cross-border transmission is truly necessary due to mandatory legal requirements, judicial assistance, or your active selection, we will inform you separately and obtain necessary consent or take statutory assessment measures in accordance with law.
5.3 Security Protection Measures
We adopt industry-standard technical and management measures that comply with laws and regulations to comprehensively protect the security of your personal information and prevent leakage, tampering, or loss:
1. Technical Measures: SSL/TLS encryption is used to transmit personal information; sensitive personal information is stored with encryption; firewalls, intrusion detection and prevention systems are deployed to defend against network attacks; security vulnerability detection and remediation are conducted regularly;
2. Management Measures: Tiered permission management for personal information is implemented; only necessary personnel are authorized to access personal information, and access activities are fully logged; employee personal information protection training and confidentiality obligations are conducted regularly, with confidentiality agreements signed; a comprehensive end-to-end compliance management system for personal information processing is established;
3. Security Incident Handling: We have established an emergency response plan for personal information security incidents. If an incident such as personal information leakage, tampering, or loss occurs, we will immediately activate the emergency response, take remedial measures to prevent the spread of harm, and report to regulatory authorities in a timely manner as required by laws and regulations. We will notify you via phone, SMS, in-app pop-ups, etc., informing you of the basic circumstances of the incident, the possible impact, the remedial measures we have taken, the risk-prevention measures you may take, and our customer service contact.
We will continuously update and optimize security protection measures, but the internet environment cannot guarantee absolute security. We do not assume liability beyond the scope of statutory responsibility for information leakage caused by your own reasons (such as account password leakage, device loss, or active disclosure to third parties).
In accordance with the Personal Information Protection Law of the People's Republic of China and other applicable laws and regulations, you have the following complete rights in personal information processing activities. We will provide you with convenient channels to exercise these rights and will not set unreasonable obstacles:
6.1 Right to Know and Right to Decide
You have the right to fully understand how we process your personal information, the right to consent to or refuse our personal information processing activities, and the right to withdraw the consent you previously gave.
1. You may withdraw authorization for device permissions at any time through your device's system settings;
2. You may apply to withdraw consent for other personal information processing through the contact methods set out in Section X "Contact Us" of this Policy;
3. Your withdrawal of consent does not affect the validity of personal information processing activities carried out based on your prior consent.
You have the right to access and copy your personal information processed by us. You may submit your application through in-app settings or the contact methods set out in Section X "Contact Us" of this Policy. We will respond within 15 working days of receiving the application.
6.3 Right to Correct and Supplement
If you find that your personal information processed by us is inaccurate or incomplete, you have the right to apply for correction or supplementation. We will complete verification and processing within 15 working days of receiving the application and provide feedback on the results.
You have the right to request that we delete your personal information in any of the following circumstances:
1. The processing purpose has been achieved, cannot be achieved, or is no longer necessary to achieve the processing purpose;
2. We cease to provide this Service, or the retention period has expired;
3. You have withdrawn your consent;
4. We process your personal information in violation of laws, regulations, or this Policy;
5. Other circumstances stipulated by laws and regulations.
Upon receiving your deletion request, we will complete verification and processing within 15 working days, except where laws and regulations require otherwise.
6.5 Right to Personal Information Portability
You have the right to request that we transfer your personal information to a personal information processor designated by you. Where the conditions stipulated by the national cyberspace authority are met, we will provide you with a convenient transfer channel.
You may apply to cancel your account in this App at any time. Cancellation path: Settings → Account & Security → Cancel Account, or by submitting a cancellation request through the contact methods set out in Section X "Contact Us" of this Policy.
1. We will complete review and processing within 15 working days of receiving your cancellation request, without setting unreasonable obstacles to cancellation;
2. After account cancellation is complete, the account can no longer be used to log in to this Service. Except where laws and regulations require mandatory retention, we will delete or anonymize your personal information;
3. Account cancellation does not affect the rights and obligations associated with transactions you completed before the cancellation.
6.7 Right to Refuse Automated Decision-Making
This App does not currently engage in personalized recommendations or marketing push notifications based on automated decision-making, and there is no automated decision-making based on your personal information. If we add such features in the future, we will inform you in advance and obtain your separate consent, and you will have the right to disable them at any time.
6.8 Right to Appeal and Complain
If you have objections or complaints about our personal information processing activities, you may submit them through the contact methods set out in Section X "Contact Us" of this Policy. We will respond and process them within 15 working days. If you are dissatisfied with our handling, you have the right to complain or report to the authorities responsible for personal information protection, and to file a lawsuit through statutory channels.
This Service is not directed to minors under the age of 14 (children). We do not actively collect the personal information of minors under the age of 14.
If you are a guardian of a minor and discover that the minor has provided us with personal information without the guardian's consent, please contact us promptly through the contact methods set out in Section X "Contact Us" of this Policy. We will delete the relevant information as soon as possible after verification.
If you are a minor aged 14-18, please read this Policy and use this Service with the accompaniment and consent of your guardian.
VIII. Updates to This Privacy Policy
We may update this Privacy Policy in light of business development, updates to laws and regulations, or regulatory requirements.
1. After this Policy is updated, we will notify you through prominent means such as in-app announcements, pop-ups, and push notifications. The updated Policy will take effect on the effective date specified in the announcement;
2. If material changes to this Policy occur, including but not limited to changes to the personal information processing entity, processing purpose/method/scope, manner of exercising user rights, sharing/cross-border transmission rules, or major adjustments to security protection measures, we will re-obtain your separate consent;
3. You may view the latest version of this Policy at any time via the path "Me - Settings - About - Privacy Policy" within this App.
IX. Governing Law and Dispute Resolution
1. The conclusion, performance, interpretation, and dispute resolution of this Privacy Policy shall be governed by the laws of the People's Republic of China (excluding the laws of the Hong Kong Special Administrative Region, the Macao Special Administrative Region, and Taiwan);
2. Any dispute between you and us arising from this Policy shall first be resolved through friendly consultation; if consultation fails, either party shall have the right to file a lawsuit with the people's court of competent jurisdiction in the place of domicile of Beijing Manchong Trading Co., Ltd.
If you have any questions, opinions, or complaints about this Privacy Policy, or if you need to exercise your personal information-related rights, you may contact us through the following channels:
1. Customer service email: pet.paimomo@outlook.com
2. Customer service phone: 13521348482
3. Personal Information Protection Officer email: hanyining2003@gmail.com
4. Company contact address: Room 101A-825, Floor 1, Building 2, No. 1 Yard, Taibai West Road, Fengtai District, Beijing
We will respond and process your requests within 15 working days of receipt.