Volvo Cars Privacy Notice – Vehicle Connectivity Services
Effective from:
Published at:
Thanks for using Volvo Cars vehicle connectivity services! Volvo Cars Asia Pacific Headquarters (with business address at 2088 Luyi Road, Jiading District, Shanghai, hereinafter referred to as “Volvo Cars”, “we” or “us”) takes the protection of users’ personal information and privacy seriously.
As we may collect and use your personal information when you are using Volvo Cars vehicle connectivity services (“Volvo Vehicle Connectivity Services”), we have formulated the privacy notice (this “Notice”) that covers how we collect, store, use, share and protect personal information of users. We will explain to you in this Notice the purpose, manner and scope of our collection and use of your personal information, your rights to your personal information, and the measures we take to protect the information security in order to provide full disclosure and obtain your consent or separate consent.
Unless explicitly stated otherwise, this Notice does not apply to products and/or services that are accessed through our products and/or services and provided to you independently by third parties (including but not limited to Digital Assistant, Ximalaya, AMAP, App Store etc.), such as third-party Apps accessed through our products and/or services. Third parties may collect your personal information and we may share your personal information with them in order to provide the relevant services to you successfully. Please see section 3.2 for details of the personal information we share with third parties. Please note that if you provide your personal information to a third party when using its products and/or services, your information will then be subject to the third party’s privacy statement or similar policy, and we are not liable for any improper use or disclosure of the information provided by you by any third party.
We understand that the related persons or entities other than you (including, without limitation, your contact, spouse, relatives, drivers, etc.) may also access and use Volvo Vehicle Connectivity Services in using your vehicle, and their information is provided to us in the course of obtaining relevant products or services we provide to you (“you” and “related persons”, collectively referred to as “you”). You acknowledge that before such related persons provide any information to us, you have explained to them the purpose, method and scope of use of the information in accordance with this Notice and have obtained their consent to enable us to collect, retain, use, entrusted process, share, transfer and publicly disclose such information in accordance with this Notice. Meanwhile, you have notified such related persons of their rights to access, rectify and erase their personal information.
Please use Volvo Connectivity Services after you have fully understood this Notice and clicked “Agree”. If you/your guardian do/does not agree to this Notice, you may object to our collection and use of your personal information by clicking “Disagree”, and then we may not be able to provide you with the relevant services.
This Notice will help you understand the following:
I. How we collect and use your personal information
II. How we retain your personal information
III. How we entrusted process, share, transfer and publicly disclose your personal information
IV. How we protect your personal information
V. Your rights to your personal information
VI. How we process personal information of minors
VII. Third party service providers and their services
I. How we collect and use your personal information
We collect personal information in order to operate more efficiently and provide you with the best user experience. The ways we collect personal information include: (1) you provide to us directly in your used of Volvo Vehicle Connectivity Services; (2) we obtained in your use of Volvo Vehicle Connectivity Services ; and/or (3) we obtained from third parties consented by you.
The information to be collected by us depends on the products or services you are using, the environment in which you interact with us, and the choices you make, including your privacy settings and the products and functions you use. Our products and functions include core business functions and value-added business functions. You may choose to consent us to collect and use your personal information. If you opt not to provide certain personal information necessary for core business functions, we may not be able to provide you with related services, respond to or solve your problems. If you opt not to provide certain personal information necessary for value-added business functions , you may not implement the relevant value-added business functions normally or achieve the desired functional results, but it will not affect your use of the corresponding core business functions.
1. How we collect and use your personal information
1.1 Information you provide to us
1. To create your head unit login account
When you use the in-vehicle infotainment of Volvo Vehicle Connectivity Services, you may need to provide us with your avatar, nickname, for creating your head unit’s account. We collect the above information to help you log in to your in-vehicle infotainment and its applications. We will use your nickname and avatar as the account name and icon for the in-vehicle infotainment, and the personal information collected is only stored in the in-vehicle head unit.
If you refuse to provide the above information, we will not be able to create a head unit login account for you, but you can use the functions of Volvo Vehicle Connectivity Services as a visitor.
1.2 Information collected in your use of products or services
1. To provide you with Digital Key Sharing service
In order to facilitate the digital key sharing service, you can share your digital key with other users via the Wallet function of “Volvo Cars App”. We will collect your digital key sharing rights, the shared user’s phone number, and digital key data. When the shared user approaches the vehicle with the NFC device containing the digital key, vehicle doors can be opened and closed.
2. To provide you with Vehicle Location service
In order to provide vehicle location service, we need to collect Vehicle location information (current GPS location of the vehicle), Vehicle Identification Number (VIN), and transmit above information to your “Volvo Cars App” to help you find your vehicle quickly by using audible and visual signals.
3. To provide you with Remote Vehicle Anti-theft Alerts, Locking and Stolen Vehicle Tracking service
In order to prevent unauthorized access to your vehicle, the vehicle will activate warning signals with dual flashing lights and horn and sends an unauthorized alert signal (including the vehicle location and time) to your “Volvo Cars App” upon detecting unauthorized access.
When you send a lock request to the customer service center, the center will send a lock command to the vehicle, resulting in all keys ineffective. Meanwhile, the customer service center will collect vehicle location information and store it in the cloud. After you locate the vehicle, the customer service center will send a key activation signal to your vehicle to unlock it and activate all the keys. During this process, we will collect your vehicle location information, locking status information, and key deactivation/activation signals to fulfill your request.
If your vehicle is removed without authorization, you may make a tracking request to our customer service center. Our customer service center will collect time-stamped vehicle location information and Vehicle Identification Number (VIN) to help you recover your vehicle.
4. To provide you with Trip Reservation service
When you make a trip on reservation on the Volvo Cars Head unit or “Volvo Cars App”, we will collect the settings of your reservation, including reservation time, the cycle conditions of the reservation, battery status information, information about the cabin environment settings during the trip to facilitate battery charging, and prepare the cabin in advance according to your settings.
5. To provide you with Driver Fatigue and Distraction Detection service
In order to ensure driving safety, when you enable the “Driver Status Monitoring” function, we will monitor your driving status to assess your fitness for driving and provide you with alerts when necessary. For this purpose, we will collect your face image information and analyze features such as your head position, eye position, and whether your eyes are closed, and convert them into assessment values to determine your fatigue or distraction level and provide you with appropriate alerts.
The “Driver Status Monitoring” function processes all video images only within the cabin of your car. After converting them into assessment values, the collected facial images will be deleted and there is no storage of the facial images within the vehicle or uploading them to cloud servers. You can enable or disable this function via the consent switch.
6. To provide you with Vehicle Control service
When your vehicle is connected with the “Volvo Cars App” and managed or controlled through the app, including functions such as locking or unlocking the vehicle, keyless entry, unauthorized entry alert, battery status management, scheduled charging, driver mileage calculation, window switches, rear door switches, steering wheel heating control, maximum defrosting, cabin air pre-adjustment, parking environment display, parking comfort mode activation, remote dashboard control, low tire pressure monitoring (the display of vehicle control service “Volvos Cars App” shall prevail). We will collect relevant information of your vehicle (e.g., Vehicle Identification Number (VIN), range, battery power information, battery temperature, average speed, mileage information, tire pressure, ECU abnormality information, headlight blinking information, door/window/trunk/ventilation system switching status information, status of other functions such as locks, doors, windows, etc.) and synchronize the above information in the “Volvo Cars App” for display.
7. To provide you with Vehicle Personal Settings and Vehicle Document Management
In order to facilitate the management of your cabin settings, we will collect your Vehicle Identification Number (VIN) and the head unit login account. Specifically, through the personal settings function, you can adjust seat position, steering wheel position, rearview mirror position, personalized lighting settings, driver seat entry and exit settings, unit and general settings, reverse-linked wiper settings, as well as mode-switching linked sound switch. Throughout this process, we will collect relevant setting information.
To enable you to view and edit your vehicle document information on the "Volvo Cars App" and the head unit central control screen, we will collect and display your vehicle's basic attributes information (vehicle color, type, license plate number, Vehicle Identification Number (VIN)), after-sales certificate authentication, vehicle health status, basic user information (phone number, emergency contact name, driver's license number, photo, real-name authentication information), vehicle personal settings, and service subscription information.
8. To provide you with Vehicle User Manual
In order to provide you with the corresponding vehicle user manual for your specific car model and display the comprehensive vehicle features, we will collect your Vehicle Identification Number (VIN).
9. To provide you with Vehicle Maintenance Reminders
In order to send you timely Vehicle Maintenance Reminders, we will collect data such as the actual mileage since your last maintenance reset, total mileage, remaining time until the next scheduled maintenance after the last full vehicle maintenance reset, and remaining mileage. Through data analysis, we calculate appropriate intervals and push maintenance reminder messages to your "Volvo Car App" or the central control screen in your vehicle.
In order to ensure timely maintenance of your vehicle, we will collect information such as the actual mileage since your last maintenance reset, total mileage, the remaining time and mileage for the next full vehicle maintenance after the last reset. Through data analysis, we calculate and send maintenance reminder messages to your “Volvo Car App” or the head unit central control screen at the appropriate times.
10. To provide you with Vehicle Log service
When you use the Vehicle Log inquiry function on the “Volvo Cars App”, we need to collect information from your vehicle, including its location, speed, total mileage, and battery consumption. This data is collected for the purpose of summarizing and sending it to your “Volvo Cars App” for display.
If you wish to remove the location information from the Vehicle Log, you may do so in the “Volvo Cars App”.
11. To provide you with Event Data Recorder service
To comply with the related legal requirements, we may collect and store safety-related information relating to crash or near-crash situations in an Event Data Recorder (EDR) – also known as the car’s “black box”. The safety-related information includes data:
- How various systems in your vehicle were operating;
- Whether or not the driver’s and passenger’s safety belts were buckled/fastened;
- How far (if at all) the driver was depressing the accelerator and/or brake pedal; and,
- How fast the vehicle was traveling.
Please noted that recording only takes place if a non-trivial collision situation occurs, and no data is recorded under normal driving conditions. Furthermore, the recording does not include who is driving the vehicle or the geographical location of the (near) crash. Please understand that the Event Data Recorder service is a core business functions we provide. Your refusal of our collection may hinder us to provide you with relevant services with Volvo Vehicle Connectivity Services.
12. To provide you with Vehicle Diagnostic Service
In order to remotely assist in diagnosing the cause of vehicle malfunctions, we will collect the vehicle data based on specific trigger conditions, which includes the Vehicle Identification Number (VIN), vehicle diagnostic data, time of the data collection, and metadata related to the collected data (such as the chassis number, vehicle model, vehicle production cycle, and the name of the system providing vehicle diagnostic data). All of the aforementioned data will be uploaded to the cloud platform for market operation and maintenance personnel to diagnose vehicle malfunctions.
13. To meet the national requirements for data collection on new energy vehicles
According to the laws and regulations in China, we will collect data including the vehicle's speed, location, electric drive, battery, and alarm events and transmit the data to a platform established by Volvo, designed to provide safety operation services and management in compliance with legal requirements.
14. To provide you with Over the Air Update service
In order to be able to maintain and update necessary vehicle software and hardware directly, we may collect the following data:
- Vehicle Identification Number (VIN);
- Vehicle hardware parts number;
- Vehicle software version;
- Diagnostic trouble codes;
- Users’ setting information (whether the Over the Air update is approved, and the preset update time); and
- Vehicle manufacturing date.
If you refuse Over the Air Update service, this will prevent you from being able to use our updated services. Failure to update may also increase the risk of cybersecurity incidents, much like in the case of all other smart devices. Note that you can also opt to have the updates installed in one of our 4S shops. Your refusal of our collection may hinder us to provide you with Over the Air Update service, without impacting on the basic functions of Volvo Vehicle Connectivity Services.
If you have enabled the Over the Air Update service, you can disable this service by going to Over the Air interface of “Volvo Cars App” to terminate our collection of your personal information.
15. To provide you with Emergency Call (eCall) function
In order to ensure your safety, we have developed Emergency Call (eCall) function, which is made automatically to customer Service center in the event of a severe accident, detected by activation of one or more sensors within the vehicle, so that we can more quickly initiate rescue measures in the most appropriate manner after an accident.
When an emergency call is made, we need collect the following data:
- Vehicle Identification Number (VIN);
- Direction of the vehicle travel;
- Vehicle powertrain types;
- Vehicle model specification;
- Number of occupants in the vehicle;
- Vehicle speed;
- Time of the incident; and
- Location of the incident.
Please understand that Emergency Call (eCall) is a mandatory service, and your refusal of our collection may hinder us to demonstrate or provide the basic functions of Volvo Vehicle Connectivity Services.
16. To provide you with Roadside Assistance service
When you use Roadside Assistance service, in order to send suitable help to you whenever you may need assistance, such as sending out a tow truck, we may collect and provide to customer service center your following data:
- Vehicle Identification Number (VIN);
- Direction of the vehicle travel;
- Vehicle powertrain types;
- Vehicle model specification;
- Number of occupants in the vehicle;
- Vehicle speed;
- Time of the incident; and
- Location of the incident.
Your refusal of our collection may hinder us to provide you with Roadside Assistance service, without any impact on the basic functions of Volvo Vehicle Connectivity Services.
17. To provide you with Intelligent Driving Assistance System function
- When you use the in-vehicle Intelligent Driving Assistance System (including adaptive cruise control, forward collision warning/mitigation, lane-keeping assistance, steering collision avoidance assistance, forward traffic passage alert, highway assistance-Plus, traffic sign recognition, etc.), external sensors on the vehicle need to collect information about surrounding obstacles, environmental conditions, and the vehicle's operating status to achieve intelligent assisted driving. In addition, when you use highway assistance-Plus and traffic sign recognition functions, we will collect your in-vehicle information (including GPS information and odometer speed) to provide current highway assistance and current road speed limit information.
- When you use the parking assistance system (including front parking assistance, rear parking assistance, visible parking assistance, automatic parking assistance, low-speed emergency brake assistance), in-vehicle sensing devices and external cameras will real-time collect images around the vehicle, surrounding obstacles, environmental conditions, vehicle operating status, parking status machine signals, and user activation signals to achieve intelligent assisted driving. After collecting the aforementioned information, in-vehicle sensing devices and external cameras will fuse and process the data to form result data, and will not store the collected information inside the vehicle or upload it to cloud servers.
Please note that you must consult and comply with the Chinese laws and regulations, as well as the relevant regulations on specific locations of external cameras on the vehicle, and assume full responsibility on your own.
1.3 Collect your information from third parties
In order to provide real-time traffic information and vehicle diagnostic services, we may obtain your personal information or other information from our partners (authorized 4S shops) to the extent permitted by law and authorized by you.
We will use your personal information strictly for the purposes set forth in this Notice, and your personal information will only be used for the purposes that were determined, specified and obtained your consent at the time of collection. We will ask for your consent in advance if we use the personal information collected for purposes not specified in this Notice, or when information collected for a particular purpose is used for other purposes. We will not provide your personal information and other vehicle data to third parties without your consent, unless required by law or regulation.
2. Exceptions to consent to collection and use of personal information
You are fully aware that, under applicable laws, we may not need your consent to collect and use your personal information where one of the following circumstances is met:
- As necessary to conclude or perform on a contract to which you are a party;
- As necessary for the performance of legally-prescribed duties or obligations, such as statutory duties or obligations directly related to national security, national defense security, public security, and judicial investigation, prosecution, trial and execution of judgments, etc.
- As necessary to respond to public health incidents or to protect natural persons' security in their lives, health, and property in an emergency;
- Handling personal information within a reasonable range in order to carry out acts such as news reporting and public opinion oversight in the public interest;
- For a reasonable scope of handling of personal information that has been disclosed by the individual or otherwise already legally disclosed in accordance with Personal Information Protection Law of the People’s Republic of China; and
- Other situations provided by laws or administrative regulations.
II. How we retain your personal information
1.
We will determine the duration of retention of your personal information only to the extent required by laws or regulations, and as necessary to achieve the purposes of this Notice. Upon the expiry of the above period, we will delete or anonymize your personal information.
2.
If we terminate our services or operations, we will notify you at least 30 days in advance, and delete or anonymize your personal information upon such termination.
III. How we entrusted process, share, transfer and publicly disclose your personal information
1. How we entrusted process your personal information
Some specific modules or functions in our products or services are provided by external suppliers. For example, we will engage service technology service providers to assist us in providing customer support. For companies, organizations and individuals that we entrust to process personal information, we will sign strict confidentiality agreements or other data protection related agreements with them, requiring them to comply with laws, regulations and our requirements, and take other measures that can ensure the confidentiality and security of personal information to process personal information.
2. How we share and transfer your personal information
We may, from time to time, share some of your personal information with our affiliates and strategic partners in cooperation with us in product and service offerings, or share or transfer your personal information in other circumstances to offer products or services you request. Volvo Cars may share your personal information to the following extent:
- Sharing among Volvo Entities: To the extent permitted by laws and regulations, your personal information may be shared with our affiliates to ensure compliance with laws, and protect the interests, property and security of us and our affiliates or business partners, you or other users or the public at large. We will share only such personal information as is necessary to achieve the purposes above and are bound by the purposes specified in this Notice. Without your consent, our affiliates will not use our shared personal information for any purpose other than those described above;
- Sharing with business partners: Some of our services will be provided by our authorized business partners only for the purposes stated in this Notice. We may share with our business partners some of your personal information to provide better customer service and user experience. Our business partners include the following:
- After-sale Service Provider. We may share your personal information based on the needs of after-sales service providers to provide services to you. For example, we may provide your Vehicle Identification Number (VIN), device information, network access certificate, log information related to networking functions to after-sales service providers for the purpose of identifying and diagnosing vehicle networking faults, assisting you in solving networking problems and/or upgrading product services; we may provide your vehicle diagnostic code, mileage to after-sales service providers for the purpose of providing you with vehicle repair, maintenance services.
- Supplier or Service Provider. In order to achieve continuous optimization and improvement of our products and provide you with better and more diverse services, we may share your personal information with suppliers or service providers to ensure the smooth completion of the services provided to you. Currently, the scenarios in which we share information with suppliers or service providers are detailed in Appendix I, "List of Third-Party Information Sharing".
- Third-Party SDK. Under certain specific business scenarios, in order to ensure the stable operation and functional realization of our products or services, and to enable you to use and enjoy more services and functions, we may embed third-party Software Development Kits or other similar applications (collectively referred to as SDKs) in our products or services to provide services to you. Currently, the third-party SDKs that our products or services access under this Notice that involve the collection of your personal information are detailed in Appendix II, "List of Third-Party SDKs".
- We will share your information as required by laws or regulatory requirements in scenarios such as government investigations, disputes, and other legal procedures or requirements.
- We will disclose your information when we, in good faith, deem it necessary to protect our rights, for example, to investigate potential breaches of our terms and conditions or to detect, prevent or disclose fraud and other security concerns.
- We will only share your personal information for lawful, proper, necessary, specific and express purposes to the extent required for providing products and/or services. We will only allow Volvo Cars employees and affiliates who have a need to use your personal information to access your personal information when acting on behalf of Volvo Cars and we will only share the required personal information and will be bound by the purposes stated in this Notice. Our affiliates will seek your consent separately if they intend to change the purpose for which your personal information is processed.
- Where personal information needs to be transferred due to merger, division, dissolution or declaration of bankruptcy, we will notify you of the name and contact information of the recipient. We will notify the recipient that it should continue to fulfill the obligations stated in this Notice and obtain your separate consent if the recipient makes any change to the purpose and method of information processing.
- We will enter into strict confidentiality agreements with companies, organizations and individuals with whom we share personal information, emphasizing our stringent data protection compliance requirements and requiring them to process personal information in accordance with our instructions and any other relevant confidentiality and security procedures. In the use of sensitive personal information, we require third parties to adopt data desensitization and encryption technology to better protect user data. However, please note that Volvo Cars and its authorized dealers and service providers are legal entities independent from each other, and we are generally not liable for unlawful acts of Volvo Cars’ authorized dealers or service providers. If you have any questions about the collection and use of your personal information by your dealers or service providers, please contact such dealers or service providers directly.
3. How we publicly disclose your personal information
We may publicly disclose your personal information only:
- when we obtain your separate consent; or
- when it is required by law: We may, as required to comply with laws, regulations, subpoena and other legal proceedings or action, or mandatory requirements of government authority, disclose your personal information if we, in good faith, believe that disclosure is necessary to protect our rights, to protect the safety of you and others, to investigate fraud or respond to government requests.
4. Exceptions to authorized consent to sharing, transfer or public disclosure of personal information
You are fully aware that, under applicable laws, we may share, transfer or publicly disclose your personal information without your prior consent where one of the following circumstances is met:
- As necessary to conclude or perform on a contract to which you are a party;
- As necessary for the performance of legally prescribed duties or obligations, such as statutory duties or obligations directly related to national security, national defense security, public security, and judicial investigation, prosecution, trial and execution of judgments, etc.;
- As necessary to respond to public health incidents or to protect natural persons' security in their lives, health, and property in an emergency;
- Handling personal information within a reasonable range in order to carry out acts such as news reporting and public opinion oversight in the public interest;
- For a reasonable scope of handling of personal information that has been disclosed by the individual or otherwise already legally disclosed in accordance with Personal Information Protection Law of the People’s Republic of China;
- Other situations provided by laws or administrative regulations.
IV. How we protect your personal information
We attach great importance to the protection of users’ personal information and take all reasonably practical measures to protect your personal information:
1. Technical measures for data security
We will adopt security precautions that meet industry standards, including developing reasonable systems, norms, and adopting security technologies to prevent unauthorized access, use, modification, damage or loss of your personal information.
Volvo Cars adopts encryption technology to encrypt and store users’ personal information, and isolate it through segregation technology. Volvo Cars adopts strict data access rights control and multiple identity authentication technology to protect personal information and avoid unauthorized use of data.
2. We only allow employees of Volvo Cars and its affiliates who have a need to know such information to access personal information, and we have strict access control and monitoring mechanisms in place for this purpose. We also require all personnel who may have access to your personal information to comply with their confidentiality obligations. If they fail to fulfill these obligations, we will pursue their legal liabilities or suspend our cooperation with them accordingly.
3. We recommend that you use complex passwords when communicating with other users by email, instant messaging, social networking software and other communication tools, and take care to protect your personal information.
4. You are reminded that the Internet environment is not 100% secure, and we will take security measures to ensure the security of any information you send us, in accordance with legal requirements and technological development. In the meantime, however, if any unauthorized access, public disclosure, tampering, or destruction of information is caused by any unpredictable and unpreventable damage to our physical, technical or management protection facilities, we will not be liable for any losses not caused by Volvo Cars.
5. Handling of security incidents
Please be sure to protect your personal information properly and only provide it to others when necessary. In order to deal with the potential risks such as leakage, damage and loss of personal information, Volvo Cars has established various rules and regulations, specifying the criteria for classifying and grading security incidents and security vulnerabilities as well as corresponding handling procedures. Volvo Cars has also set up a dedicated emergency response team for security incidents, which will, in accordance with good practice for security incidents, initiate security plans for different security incidents, to stop losses, analyze, locate, formulate remedial measures, and work with relevant departments to trace to the source and crack down on the incidents.
In case of any personal information security incident, we will, in accordance with the requirements of laws and regulations, promptly notify you of the following matters: basic status and possible impacts of such security incident, response measures we have taken or will take, suggestions on how you may prevent or reduce risks on your own, and remedies available to you. We will also promptly notify you of relevant information of such incident through email, letter, phone call, push notification, or otherwise. If it is difficult to notify each personal information subject one by one, we will publish an announcement in a reasonable and effective manner. In addition, we will, as required by law, voluntarily report our disposal of the personal information security incident to the regulatory authority.
We have established a dedicated network operations and data security team to carry out work related to personal information protection. If you have any questions about our personal information protection, please contact us via any of the means stated at the bottom of this Notice. If you are aware of any leakage of your personal information (especially concerning your account and password), please contact us immediately via any of the means stated in this Notice and assist us in taking appropriate measures.
V. Your rights to your personal information
We respect your rights to your personal information. Below is a list of your rights under the law, and we will explain how we protect these rights.
1. Right to be informed
We publish this Notice to inform you of how we may process your personal information. We are committed to ensuring transparency in the use of your information.
2. Right to access
You may inquire or access your personal information directly in our product or service interface, including logging in your account at any time through the product page to access your personal information in connection with your account.
You may access your personal information via “Settings” – “User Account” – “Account”. If you are unable to inquire or access your personal information on your own or encounter any problems in exercising your right of access to data, you may contact us and request access to your personal information in any of the means disclosed in this Notice.
3. Right to rectification
You have the right to request us to correct or supplement any of your personal information that we have processed if you find it incorrect or incomplete. You may apply for correction through Volvo Entities, authorized dealers, customer service hotline (10108666) and other channels.
4. Right to erasure
You have the option to delete certain personal information you have provided to us. For some of your personal information, you can contact us to delete it by calling our customer service hotline (10108666), and we will assist you in completing the deletion of the information within the time limit prescribed by laws and regulations.
5. Right to account cancellation
We provide you with the right to cancel your account. You may contact us directly via any of the means disclosed in this Notice to apply for cancellation of your account. After you submit your application, we may need to manually review your account cancellation to confirm that you meet the conditions for account cancellation. We will assist you with account cancellation within 15 business days after you submit the application. After you choose to cancel your account, we will erase or anonymize all relevant personal information under your account, unless otherwise provided by laws and regulations. After you cancel your account, we will no longer provide you with any products or services that require you to log in your account.
6. Right to consent withdrawal
Each business function requires some basic personal information to be completed (see “How We Collect and Use Your Personal Information” of this Notice).
You can withdraw your partial authorization or consent by going to the Vehicle System Settings page to turn off the corresponding permissions.
7. Right to portability
Where the conditions specified by the national cyberspace administration are met, you have the right to request the transfer of your personal information to a designated personal information processor. With formal authorization, you can exercise your right to portability by calling the hotline provided in this Notice.
8. Right to complaint
- You have the right to complain by contacting via any of the means disclosed in this Notice. We will respond to your complaint within 15 business days of receipt. If you are not satisfied with our response, especially when our personal information processing has infringed upon your legitimate rights and interests, you may also file a complaint with or report to the cyberspace, public security, industry and commerce and other regulatory authorities, or file a lawsuit to a court having jurisdiction.
- Please note that, for security reasons, we may verify your identity before processing your request. In principle, we will not charge a fee for your reasonable requests. For repeated requests that exceed reasonable limits, we will charge a fee as appropriate. We may reject those requests that are unduly repetitive, that require too many technical means (for example, developing new systems or making fundamental changes to existing practices), that pose a risk to the legitimate rights and interests of others, or that are very impractical, and state the specific reasons therefor in our response. Furthermore, we may not respond to your request if your request directly relates to national security, national defense, public health, criminal investigation, or other matters directly related to the public interest, or may seriously damage your, or other individuals’ or organizations’ legitimate rights and interests.
Subject to the relevant legal requirements, your close relatives may exercise the above rights to access, duplicate, correct, or erase your relevant personal information, unless otherwise arranged by you.
VI. How we process personal information of minors
1.
Our products and services are mainly intended for adults. If you are a minor under the age of 18, you must obtain prior consent from your guardian before using our products and/or services. In the case of collection of children’s personal information with the consent of their parents, we will only use or publicly disclose such information to the extent permitted by law, expressly consented by their guardian or necessary to protect the children. For the personal information of children under the age of 14, we will, in addition to comply with the provisions of this Notice on users’ personal information, adhere to the principles of legitimate necessity, informed consent, clear purpose, security assurance and lawful use, store, use, and disclose children’s personal information, and protect the legitimate rights of children and their guardians concerning the relevant children’s personal information in strict accordance with the Personal Information Protection Law, the Provisions on the Network Protection of Children’s Personal Information and other laws and regulations.
2.
We will erase the relevant personal information as soon as possible if we are aware that we have collected the personal information of a minor without the prior verifiable consent of his or her guardian.
3.
If you are the guardian of a minor, please contact us through the contact information below when you have questions about the processing of the information of the minor under your guardianship, or if you have evidence to prove that the minor has used Volvo Vehicle connectivity services without the consent of a guardian.
VII. Third party service providers and their services
When using our products and/or services, you may access applications and other services linked to products such as Volvo vehicles and web pages but actually provided by third parties, for example, third-party applications that may require vehicle records including your location data to provide services to you. To this end, such applications and other services provided by third parties may involve your providing to third parties a particular type of personal information. Volvo Cars shall not be liable for any collection or use of personal information by third parties’ applications or services. We also recommend that you read the applicable terms and conditions (and any related privacy statements) carefully before using such applications or services and make a choice in your sole discretion after making sure you have fully understood its rules on collecting and using your personal information. If you have any question about a particular third party’s use of your personal information, please contact the third party directly.
VIII. How your personal information is transferred globally
In principle, the personal information collected and generated within the territory of China will be stored within the territory of China. If some of our products or services involve cross-border, and we need to transfer your personal information outside the country, we will strictly follow the provisions of applicable laws and regulations, obtain your individual consent, and ensure the security of your personal information.
IX. Update of this Notice
1.
This Notice will be updated to provide you with better services and to keep pace with our business development. We will not, however, reduce your rights under this Notice without your explicit consent. We will issue updates on our website and Volvo Cars App, and remind you of such updates by website announcements or any other proper way before they take effect. Please visit Volvo Cars’ website to keep abreast of the latest Notice. By using or continuing to use our products and/or services after we have updated this Notice (in such event that we will promptly remind you of the updates), you agree to the content of this Notice (including the updated version) and consent to the collection, use, storage and sharing of your information in accordance with this Notice.
2.
For material changes, we will also provide a more prominent notice (we will explain specific changes to this Notice by means including but not limited to emails, text messages or a special notice on the browser page).
Material changes referred in this Notice include, but are not limited to the following:
- Material changes in our service model. For example, the purpose of processing personal information, types of personal information processed, and the way of using personal information;
- Material changes in our ownership structure, organizational structure and so on, such as changes in ownership due to business adjustment, bankruptcy, merger and acquisition;
- Changes in the main recipients to which the personal information is shared, transferred or publicly disclosed;
- Material changes in your rights to participate in personal information processing and the way of exercising such rights;
- Changes in our department responsible for personal information security, relevant contact information and complaint channels; and
- High risks as indicated in the assessment report on the impact of personal information security.
3.
We will also keep the old version of this Notice in archives for your reference.
X. How to contact us
1.
If you have any questions, comments or suggestions about this Notice or matters related to your personal information, please send your comments to: Volvo Cars Asia Pacific Headquarters, Attention: 2088, Luyi Road, Jiading District, Shanghai, or contact us by calling our customer service number (10108666) or via our contact for user rights matters (Xu Yaqin, 16621032398).
2.
We will usually reply within 15 working days, unless otherwise provided by laws and regulations. If you are not satisfied with our reply, especially if you believe our personal information processing has harmed your legitimate rights and interests, you may also file a complaint with or report to the cyberspace, telecommunications, public security, industry and commerce and other regulatory authorities, or take proceedings in the court of competent jurisdiction.
Appendix I
List of Third-Party Information Sharing
List of Third-Party Information Sharing | |||||
---|---|---|---|---|---|
Third Party Name | Application scenario/Processing purpose | Types of personal information shared | Sharing Method | Link to Notice | Contact information |
Beijing Baidu Netcom Science Technology Co., Ltd. | Provide vehicle voice control, navigation, multimedia and other intelligent services | Audio clip | Interface transmission | https://iov-baidu-privacy-policy.bj.bcebos.com/duerOS.json | IDG-Contact@baidu.com |
Shanghai Ximalaya Technology Co., Ltd. | Provide online music, audiobooks, and online radio services | VIN | Interface transmission | https://m.ximalaya.com/gatekeeper/car-private-proxy | privacy@ximalaya.com |
Geely Automobile Research Institute (Ningbo) Co., Ltd. | For downloading third-party applications from the App Store | VIN, five-digit information | Interface transmission | https://oneos-op.geely.com/web-app/h5-editor/preview.html?id=1745373735438065666 | 0571-58109118 |
Amap Software Co., Ltd. | Provide functions and services of locating and travel guidance | Location, device number | Interface transmission | https://lbs.amap.com/pages/privacy/ | gd.service@autonavi.com |
Appendix II
List of Third-Party SDKs
List of Third-Party SDKs | |||||
---|---|---|---|---|---|
SDK Name | Third Party Name | Application scenario/processing purpose | Types of personal information collected | Collecting Method | SDK Notice |
AMAP SDK | Amap Software Co., Ltd. | Get user location and update broadcast information | Device information, including the unique device identifier of the terminal device (including IDFV, OAID, IMEI (for versions below Android Q), MEID, IMSI, etc.), MAC address, operating system version, device brand and model, device configuration, carrier type, application information (application name, application version number), and location information, including GNSS information, IP address, WLAN hotspots, BTS information, Bluetooth devices, and other sensors that can be used for locating. | SDK local collection, no data sharing involved | https://lbs.amap.com/pages/privacy/ |
Tencent Bugly SDK | Shenzhen Tencent Computer Systems Co., Ltd. | Use the Help & Feedback function | Log information (including: third-party developer-defined logs, Logcat logs, and APP crash stack information), device identification information (IMEI (for versions of Android Q and below), IMSI, MAC address, Android ID, and idfv), networking information, system name, system version, and country code, phone serial number, and the currently running application. | SDK local collection, no data sharing involved | https://privacy.qq.com/document/preview/fc748b3d96224fdb825ea79e132c1a56 |
Tencent mmkv data access SDK | Shenzhen Tencent Computer Systems Co., Ltd. | MMKV data access | Data access | SDK local collection, no data sharing involved | https://www.tencent.com/zh-cn/privacy-policy.html |
Bugly SDK | Shenzhen Tencent Computer Systems Co., Ltd. | Third party log collection, crash ANR information reporting | Logs of the applications running on the device | SDK local collection, no data sharing involved | https://bugly.qq.com/v2/contract |
Bilibili Internal Function SDK | Shanghai Bili Bili Technology Co., Ltd. | Device play history memory and recommendations | Unique device identifier | SDK local collection, no data sharing involved | https://www.bilibili.com/blackboard/privacy-vehicle.html |
Tencent Video Player SDK | Shenzhen Tencent Computer Systems Co., Ltd. | Play Tencent video | Video data | SDK local collection, no data sharing involved | https://privacy.qq.com/document/priview/7900b34b6f8248e08313cf3f1899ea37 |
NetEase CloudMusic SDK | Hangzhou Ledu Technology Co., Ltd. | Provide multiple forms of online audio streaming | Audio data | SDK local collection, no data sharing involved | https://st.music.163.com/official-terms/privacy |