1. Effective Date & Scope of Application

This Privacy Policy (hereinafter referred to as the “Policy”) shall take effect upon publication and apply to all customers (hereinafter referred to as “Users”) who purchase trademark registration, patent application, copyright registration and other intellectual property service forms through the official website www.ipuvchina.com (hereinafter referred to as the “Website”).

The Website strictly complies with global data protection laws and regulations, including but not limited to the General Data Protection Regulation (GDPR) of the European Union and the California Consumer Privacy Act (CCPA) of the United States. We are committed to protecting Users’ personal data security and legitimate rights, and clarifying the rules for data collection, processing and usage on our Website.

By placing orders, making payments and using our services on the Website, Users confirm that they have read, understood and fully agreed to this Policy. If you do not accept this Policy, please stop using our services immediately.

2. Collection and Purpose of Personal Data

2.1 Types of Collected Information

We only collect necessary data required to deliver compliant and efficient intellectual property services, and do not collect irrelevant or redundant information. The collected data includes:

• Personal Identification Information: Full name, email address, contact number, country/region of residence, identity documents (such as passport, business license scan, only for service qualification verification).
• Service-Related Information: Trademark name, patent description, copyright work materials, customized service requirements, order number, service category, order time and transaction amount.
• Payment Information: Only necessary data associated with PayPal accounts (e.g., linked email). The Website does not store bank card numbers, passwords or any sensitive payment data. All transactions are processed securely via official PayPal channels in compliance with PayPal’s privacy standards.
• Technical Log Data: IP address, browser type, access time and browsing records. Such data is only used for website optimization, system troubleshooting and anti-fraud monitoring, and will not be used to identify individual users.

2.2 Purpose of Data Collection

All user data is collected and processed only for legitimate purposes as below. We will never use your personal data for unstated purposes without your explicit consent:

• Service Delivery: Submission, review and follow-up of trademark, patent and copyright applications, as well as regular service progress communication.
• Payment & Settlement: Processing order payments, refunds and transaction verification via PayPal to ensure secure transactions.
• Compliance & Risk Prevention: Comply with local intellectual property laws and global privacy regulations, and prevent fraudulent orders, malicious transactions and legal risks.
• Service Optimization: Optimize website interface, service process and user experience through anonymous data analysis, without identifying personal information.

3. Data Processing & Security Measures

3.1 Data Processing Rules

All user data processing strictly adheres to the principles of legality, fairness and necessity, and is limited to the scope required for service performance:

• Data Storage: User data is stored on encrypted servers that meet global privacy standards. The retention period is 1 year after service completion; if local laws require a longer retention period, we will comply with statutory requirements. Expired data will be automatically anonymized or permanently deleted.
• Data Usage: Personal data is only accessible by authorized staff responsible for service delivery. All employees have signed non-disclosure agreements and are prohibited from disclosing, altering or misusing user information.
• Data Sharing: We will not sell, rent or transfer your personal data to any third party without your written consent. Limited data sharing is only permitted under the following circumstances:
  1. Submitting required application materials and user information to official intellectual property authorities (EUIPO, USPTO and other regional regulatory bodies) to complete application services;
  2. Sharing necessary order data with PayPal to complete payment and refund operations;
  3. Disclosing data as required by laws, judicial authorities or government regulatory investigations.

3.2 Data Security Protection

We implement multi-layer technical and management measures to prevent data leakage, loss and tampering:

• End-to-end SSL encryption for data transmission and encrypted storage for sensitive user information to prevent unauthorized access.
• Strict access permission control; only designated staff can access relevant user data with regular permission review.
• Regular system security scanning, vulnerability detection and network attack prevention.
• Cooperate with professional third-party cybersecurity institutions to audit and optimize our data protection system to meet international privacy compliance requirements.

4. User Privacy Rights

In accordance with global data protection regulations, you enjoy the following data rights. We will fully cooperate with all legitimate requests:

• Right to Information: You have the right to know the scope, purpose and method of our data collection and processing.
• Right of Access: You may request a copy of your stored personal data, and we will respond within 7 business days upon receipt of your request.
• Right to Rectification: You may correct incorrect or incomplete personal information, and we will complete revisions within 3 business days after verification.
• Right to Erasure: After service completion, you may request deletion of your personal data (excluding data required by law to be retained). We will erase or anonymize your data within 7 business days.
• Right to Withdraw Consent: You may withdraw your data consent at any time. Withdrawal will not affect data processing and services completed previously with your authorization.
• Right to Complaint: If you believe your privacy rights have been violated, you may submit a complaint. We will respond and resolve the issue within 10 business days.

5. Third-Party Services

All payment services are provided by PayPal. Your use of PayPal services is subject to PayPal’s own Privacy Policy and Terms of Service. The Website shall not be liable for data risks arising from third-party payment platforms.

Our website may contain links to third-party websites, including official intellectual property office portals. We have no control over external websites and are not responsible for their data protection policies. We recommend you review the privacy terms of any third-party site you visit.

6. Policy Updates & Notifications

We reserve the right to update this Privacy Policy irregularly to comply with updated global privacy laws and business adjustments. The revised Policy will be posted on a prominent position of the Website and take effect 7 days after publication. Continued use of our services after the update constitutes your acceptance of the revised Policy.

If major changes affecting your privacy rights occur, we will notify you in advance via your reserved email address.

7. Contact Us

If you have any questions about this Privacy Policy, need to exercise your data rights, or submit a complaint, please contact us via:

• Email: sevice@ipuvchina.com
• Response Hours: Monday to Friday, 9:00 – 18:00 (GMT+8). All inquiries submitted on non-working days will be responded within 1 business day.