DingStore Privacy Policy
Effective Date: July 30, 2025
Welcome to use our services! We fully recognize the importance of your Personal Information and greatly value your trust. We will strictly comply with the requirements of applicable laws and regulations and implement appropriate security measures to safeguard your Personal Information. To help you fully understand how we collect, use, share, store, and protect your Personal Information during your use of our Products and/or Services, as well as how you can manage your Personal Information, DingStore’s operator and service provider, DingTalk (Singapore) Private Limited (“We”), has established this DingStore Privacy Policy (hereinafter referred to as “this Policy”) to enable you to make informed decisions.
Before using our Service, please carefully read and fully understand this Policy to ensure your complete comprehension and agreement prior to use. In addition to this Policy, in specific circumstances, we will notify you in real time (including pop-ups, page prompts, etc.) and through feature update explanations regarding the purposes, scope, and methods of information collection. These real-time notifications and feature update explanations form an integral part of this Policy and carry the same legal effect. If you have any questions, comments, or suggestions concerning this Policy, you may contact us via the Contact Information provided at the end of this Policy.
This Policy will assist you in understanding the following:
1. Scope of Application
2. Information Collection and Use
3. Partners Involved in Data Processing and the Transfer and Disclosure of Personal Information
4. Your Rights
5. Information Storage
6. Policy Updates
7. Protection of Minors
8. Contact Us
Appendix: Definitions
1. Scope of Application
This policy applies to the collection and processing of Personal Information that occurs during the registration of a DingStore (www.dingstore.com) account, as well as the purchase and use of various Services provided on the website.
2. Information Collection and Use
To provide you with our Products and Services, we collect and use your Personal Information in the following scenarios:
(1) Registering as Our User
We provide services to you based on your DingStore account. To create a DingStore account, you must provide us with at least your email address and enter the email verification code as prompted. If you refuse to provide the aforementioned information, you will not be able be unable to register an account or purchase and use our services; however, you may still browse our website and service information.
(2) Inquiries and Purchase of Our Services
Pre-sales Consultation: When you contact us to inquire about our products and solutions, we may retain records of our communications and content with you, as well as any personal information such as your contact information that you provide, in order to conduct customer follow-ups and introduce products and solutions suitable for your needs.
Payment Settlement: If payment settlement arises during your use of our services, you may choose to use the payment services provided by third-party payment institutions cooperating with us to complete your order payment. During the payment or after-sales service process, we may need to share your order number and transaction amount information with these payment institutions to enable them to confirm your payment instructions and complete the payment.
Order Management: To display the order information associated with your account and protect your after-sales rights, we collect the order details, transaction, and consumption records generated by you, in order to present them to you and facilitate your order management.
(3) Customer Service and After-Sales Support
When you contact us to inquire about or resolve various after-sales issues, we will retain your communication records and content, as well as any Personal Information such as your contact details that you provide, in order to communicate with you, assist in resolving your issues, or document the handling procedures and outcomes, thereby continuously improving our after-sales services.
(4) Cookies and Similar Technologies
Cookies and similar device identification technologies are commonly used technologies on the Internet. When you use our Service, we may employ relevant technologies to send one or more Cookies or anonymous identifiers (hereinafter referred to as “Cookies”) to your device to collect, identify, and store information regarding your access to and use of this Product. Our specific use of Cookies is as follows:
Cookie Name | Cookie Source | Purpose of Use |
JSESSIONID SESSION tmp0 | First-party Cookie | To maintain the user’s session state and ensure continuity of user operations on the website. |
alimail_sso_device_id alimail_sso_td | First-party Cookie | To support single sign-on functionality, ensuring a seamless login experience for users across different Services. |
arms_uid | First-party Cookie | To collect information on how visitors use our website, assisting in its improvement. |
You may manage Cookies according to your preferences or delete all Cookies stored on your computer. Most web browsers are equipped with functions to block cookies. However, if you do so, you will need to adjust the user settings each time you visit our website. For detailed instructions on how to change browser settings, please refer to the relevant settings page of the browser you are using. We undertake not to use cookies for any purposes other than those set forth in this Privacy Policy.
(5) Additional Rules for the Collection and Processing of Personal Information
Unlike your User Information, you retain full control over the data generated, processed, stored, uploaded, downloaded, distributed, or otherwise handled through the services we provide ('User Business Data'). As a technical service provider, we will strictly follow your instructions in processing your business data and will not use or disclose your business data without authorization, except as agreed upon with you or as required by applicable laws and regulations.
You are responsible for the source and content of your User Business Data. We advise you to carefully verify the legality of the data source and content. You shall bear all consequences and liabilities arising from any violation of applicable laws and regulations by the content of your User Business Data.
3. Partners Involved in Data Processing and the Transfer and Disclosure of Personal Information
(1) Partners involved in the data processing
I.
Entrusted Data Processing: We may entrust partners (such as suppliers) to process your Personal Information so that they can provide certain Services or perform functions on our behalf. We will only entrust them to process your information for the purposes stated in this policy, limited to the information necessary for them to perform their duties, and we will require them by agreement not to use this information for any purposes beyond the scope of the entrustment. If authorized partners use your information for purposes not commissioned by us, they shall obtain your separate consent.
II.
Data Sharing: When purchasing our Service, you are required to use the services provided by third-party payment institutions with whom we cooperate to process order payments. Your bank card number, expiration date, and other necessary bank card payment information will be collected and used by the respective financial institution you select. To enable us to promptly obtain and verify your payment progress and status, and to provide you with after-sales and dispute resolution services, you agree that we may collect information related to payment progress from the payment institution you select.
(2) Transfer
If we need to transfer Personal Information due to reasons such as merger, division, dissolution, or bankruptcy declaration, we will inform you of the name or contact information of the recipient. The recipient shall continue to comply with this policy and other legal obligations. If the recipient changes the original purpose or method of processing, we will obtain your consent again.
(3) Public Disclosure
We will only publicly disclose your Personal Information under the following circumstances:
1. Based on your active choice and other separate consents, we may publicly disclose your Personal Information;
2. If we determine that you have violated Applicable laws and regulations or seriously breached DingStore’s related agreements and rules, or to protect the personal and property safety of store users or the public from harm, we may disclose your Personal Information, including relevant violations and the measures we have taken against you.
(4) Cessation of Operations
If we cease operations of the Product and/or Service, we will cease
the processing of your Personal Information. We will notify you of the cessation of operations via system messages, emails, or website announcements, and will delete or anonymize the Personal Information related to the discontinued Product and/or Service that we hold.
(5) Circumstances Where Authorization Consent Is Exempted by Law
Except as otherwise provided by applicable laws and regulations, in the following circumstances, we may transfer or disclose your Personal Information without obtaining your authorization consent:
●
When necessary for the conclusion or performance of a contract at your request.
●
When necessary to fulfill legal obligations: We may share your Personal Information as required by applicable laws and regulations, litigation, dispute resolution, lawful requests from administrative or judicial authorities, and other necessary legal obligations.
●
To respond to public health emergencies or urgent situations where it is necessary to protect the life, health, and property safety of natural persons.
●
To process Personal Information within a reasonable scope for public interest purposes.
●
To process Personal Information that you have voluntarily disclosed or that has been lawfully made public, within a reasonable scope.
●
Other circumstances as prescribed by applicable laws and regulations.
4. Your Rights
You may review and manage your Personal Information through the following methods, and we will respond to your requests in accordance with applicable laws and regulations.
4.1. Review, Correction, and Supplement
4.1.1. You may independently 【log in to “www.dingstore.com” - “Console”】 to review and manage (modify or delete) the basic business information (basic profile) and contact information you submitted when using our Service.
4.2. Copy
You may copy your information by the following methods:
4.2.1. You may copy your Personal Information after inquiry through the channels specified in Clause 4.1;
4.2.2. You may contact our Customer Service by sending an email to: dingstore@service.dingtalk.com, and copy your Personal Information on the platform after inquiry through Customer Service.
4.3. Deletion
4.3.1. You may delete part of your information through the channels specified in Clause 4.1, or delete all your information by applying for account cancellation as specified in Clause 4.5.
4.3.2. In the following circumstances, you may request Customer Service to delete your User Information:
(1) If our processing of User Information violates applicable laws and regulations;
(2) If we collect or use your User Information without obtaining your explicit consent;
(3) If our processing of Personal Information seriously violates the agreement made with you.
4.3.3. When you or we assist you in deleting relevant information, due to applicable laws and security technology limitations, we may not be able to immediately delete the corresponding information from backup systems. We will securely store your Personal Information and restrict any further processing until the backups can be cleared or anonymized.
4.4. Change or Withdrawal of Authorization
4.4.1 You may change or withdraw your authorization by contacting Customer Service. However, please note that for certain types of Personal Information, such as information necessary to achieve basic functions or information required for us to fulfill obligations under Applicable laws and regulations, we may be unable to accommodate your request to change the scope of authorization.
4.4.2. Upon your withdrawal of consent, we will cease processing the corresponding Personal Information. However, your decision to withdraw consent will not affect any Personal Information processing activities conducted by us prior to such withdrawal.
4.5. Account Cancellation
4.5.1. You may submit an account cancellation request by logging into the DingStore website — 'Console' > 'Account Information' > 'Cancel Account'.
4.5.2. After you proactively cancel your account, we will cease providing Products or Services to you and delete your Personal Information and related business data, or anonymize such data, except as otherwise required by Applicable laws and regulations or industry supervisory rules.
4.6. Response to Your Requests
4.6.1. To ensure security, you may be required to submit a written request or otherwise verify your identity. We may require you to verify your identity before processing your request.
4.6.2. For reasonable requests, we generally do not charge a fee; however, for repeated or excessive requests beyond reasonable limits, we reserve the right to charge a reasonable fee at our discretion. We may refuse requests for information that is not directly related to your identity, requests that are repeated without reasonable cause, or requests that require excessive technical measures (such as developing new systems or fundamentally altering current practices), pose risks to the legitimate rights of others, or are impractical.
5. Information Storage
(1) Storage Period
We will retain your Personal Information only for the duration necessary to fulfill the purposes set forth in this policy, unless a longer retention period is required by applicable laws.
We determine the retention period of Personal Information primarily based on the following criteria:
●
To complete transactions related to you, maintain relevant transaction and business records, and address any inquiries or complaints you may have;
●
To ensure the security and quality of the Service we provide to you;
●
Whether you have consented to an extended retention period;
●
Whether there are other specific agreements or provisions under applicable laws and regulations concerning the retention period.
Upon expiration of the retention period, we will delete or anonymize your Personal Information in accordance with applicable legal requirements.
(2) Storage Location
We store your personal information in Singapore for the purposes set forth in this Privacy Policy.
(3) Storage Security
We have implemented security measures in accordance with industry standards to safeguard the security of your personal information and to prevent unauthorized access, disclosure, use, alteration, damage, or loss. For instance, we secure data transmission through SSL protocol and HTTPS encryption technology, utilize trusted mechanisms to guard against malicious attacks, and enforce strict access control measures to ensure that only authorized personnel may access relevant information.
We have established a comprehensive data security management system and continuously enhance information security across organizational structure, policy design, personnel management, and technical safeguards. We have established a dedicated personal information protection department and enhance employees' awareness of information protection through training and assessments.
If physical, technical, or managerial protective measures are compromised, resulting in information leakage or damage that affects your rights and benefits, we will immediately initiate an emergency response plan and take necessary measures to mitigate the impact on you. In the event of a Personal Information security incident, we will notify you of the incident details, potential impacts, and response measures in accordance with Applicable laws and regulations, provide risk prevention advice and remediation plans, and promptly inform you through email notification, telephone, push notifications, or other appropriate means. When individual notification is not feasible, we will inform users through public announcements and report the incident handling status in accordance with regulatory requirements.
(4) Account Security Risk Prevention
During your use of our services, please safeguard your Personal Information carefully, disclose it to others only when necessary.
If you are concerned that your Personal Information, particularly your account or password, has been compromised, please contact our Customer Service immediately so that we may take appropriate measures in response to your request.
6. Policy Updates
To provide you with an enhanced experience of our Products and/or Services, we continuously endeavor to improve our products, services, and technologies. When new services or business processes are introduced or modified, we may update our Privacy Policy and notify you of such updates through in-site messages or other appropriate means, ensuring that you remain promptly informed of the latest version of this Privacy Policy. However, without your explicit consent, we will not limit the rights you are entitled to under this Policy.
For significant changes, we will provide more prominent notifications (including announcements on our website or pop-up prompts) to inform you again and obtain your consent in accordance with the applicable laws and regulations.
Significant changes referred to in this Privacy Policy include, but are not limited to:
●
Significant changes to the business model of the Product. Such as the purposes for processing Personal Information, the types of Personal Information processed, and the manner in which Personal Information is utilized;
●
Changes in the subject of the Privacy Policy resulting from business adjustments, mergers, or acquisitions, where the new subject assumes the original processing purposes and methods;
●
Changes in the primary recipients of Personal Information sharing or public disclosure;
●
Significant changes to users' rights regarding their Personal Information and the methods for exercising such rights;
●
Changes to the contact information of the person responsible for Personal Information protection and the complaint channels;
●
When the Personal Information Protection Impact Assessment report indicates that the Product significantly affects personal rights and interests.
7. Protection of Minors
We primarily provide the Services of this website and other related Products to adults. However, we place great importance on the protection of Minors' Personal Information. If you are a Minor, we require that your parents or other Guardians carefully read all contents of this policy and provide their consent before you use our Products or Services and provide us with information.
Due to current technological and business model limitations, it is difficult for us to proactively identify Minors' Personal Information during account registration. If you are a Guardian of a Minor and discover that we have obtained a Minor's Personal Information without authorization, you may contact us through the Contact Information provided in this policy. Upon receiving such notification, we will promptly investigate and, if verified, delete or anonymize the relevant information in a timely manner. If we proactively identify any of the aforementioned circumstances during our review, we will also proactively delete or anonymize the relevant Personal Information.
8. Contact Us
You may contact us through the following methods, and we will respond to your request within 15 days:
1. If you have any questions, comments, or suggestions regarding this policy, you may contact us through our Customer Service;
2. We have established a dedicated department for Personal Information protection. You may contact us by sending an email to: dt_privacy@service.dingtalk.com. Please note that we may not respond to inquiries unrelated to this policy or your Personal Information rights.
Appendix: Definitions
DingStore: Refers to the website with the domain name www.dingstore.com .
We: Refers to DingTalk (Singapore) Private Limited, the operator and service provider of the DingStore Service.
Affiliated Companies: Refers to the affiliated companies of DingTalk (Singapore) Private Limited as disclosed in the latest annual report of Alibaba Group Holding Limited.
Personal Information: Any information recorded electronically or by other means relating to identified or identifiable natural persons, excluding information that has undergone Anonymization.
Anonymization: refers to the process by which Personal Information is processed such that specific natural persons cannot be identified and the information cannot be restored.
