Privacy Policy

1. Introduction

Dexian Nixiang Network Technology Co., Ltd., operating under the brand name Auspicious (hereinafter referred to as Auspicious, we, us, or our), is committed to protecting the privacy and security of personal information collected from visitors, clients, and partners. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at auspicious.mom (the Site) or engage with our computer systems design and integration services (collectively, the Services).

We are a professional computer systems design firm headquartered at Room 005, 16F, Building of Science and Innovation Center, High-tech Industrial Park, Dexian County, Jiujiang City, Jiangxi Province, 332000, China. This policy applies to all data processing activities conducted in connection with our business operations, whether online or offline.

By accessing the Site or using our Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with any provision herein, please discontinue use of the Site and Services immediately.

2. Information We Collect

We collect several categories of information, each described below with the context and purpose of collection. We collect only what is necessary for the legitimate operation of our business and the delivery of our Services.

2.1 Information You Provide Directly

When you fill out our contact form, send us an email, call our office, or otherwise communicate with us, you may provide:

• Identity Data: Full name, job title, company or organizational affiliation.
• Contact Data: Email address, telephone number, postal address, and country of residence.
• Project Data: Technical requirements, system specifications, project descriptions, and any other information you include in your inquiry or communication with our engineering team.
• Professional Data: Your professional background, technical expertise, and role within your organization as it pertains to a potential engagement.

2.2 Information Collected Automatically

When you visit our Site, certain information is collected automatically through standard web technologies:

• Technical Data: Internet Protocol (IP) address, browser type and version, operating system, device type, screen resolution, and time zone setting.
• Usage Data: Pages visited, time spent on each page, referral source, navigation patterns, and interactions with Site elements.
• Server Log Data: Request timestamps, HTTP status codes, data transfer volumes, and error logs generated by our web server infrastructure.

2.3 Information from Third Parties

We may receive information about you from:

• Analytics providers: Aggregated usage statistics and demographic insights from services such as Google Analytics, which operate under their own privacy policies.
• Business partners: Referral information when a partner organization introduces you to our Services.
• Public sources: Publicly available business registries, professional profiles, and industry directories used for legitimate business development purposes.

2.4 Information We Do Not Collect

We do not knowingly collect sensitive personal data (such as government identification numbers, biometric data, health information, or financial account credentials) through our Site. We do not process payment card information; all financial transactions are conducted through invoicing and bank transfers external to this Site.

3. Purposes of Data Processing

We process personal data for the following specific purposes, each grounded in a lawful basis as described in Section 4:

• Service Delivery: To respond to inquiries, prepare project proposals, conduct technical assessments, and deliver the computer systems design and integration services you have requested.
• Business Communication: To communicate with you about your projects, provide status updates, deliver technical documentation, and respond to support requests.
• Site Operation: To operate, maintain, monitor, and improve the performance and security of our Site and underlying infrastructure.
• Analytics and Improvement: To analyze Site usage patterns, evaluate the effectiveness of our content, and make data-informed decisions about our service offerings and user experience.
• Legal Compliance: To comply with applicable laws, regulations, legal processes, and governmental requests; to enforce our Terms of Service; and to protect the rights, property, and safety of Auspicious, our clients, and the public.
• Business Development: To identify and engage with potential clients and partners whose needs align with our service capabilities, using publicly available business contact information.

We do not use personal data for automated decision-making or profiling that produces legal or similarly significant effects concerning individuals.

4. Legal Basis for Processing (GDPR)

For individuals located in the European Economic Area (EEA), the United Kingdom, or other jurisdictions with similar data protection frameworks, our legal bases for processing personal data include:

• Contractual Necessity: Processing necessary to perform a contract with you or to take steps at your request prior to entering into a contract (Article 6(1)(b) GDPR).
• Legitimate Interests: Processing necessary for our legitimate business interests, including responding to inquiries, improving our Services, maintaining Site security, and conducting business development — provided that such interests are not overridden by your data protection rights (Article 6(1)(f) GDPR).
• Legal Obligation: Processing necessary to comply with applicable legal obligations, such as tax reporting, regulatory compliance, and responding to lawful requests from public authorities (Article 6(1)(c) GDPR).
• Consent: Where we rely on consent as a legal basis, such as for the placement of non-essential cookies, you have the right to withdraw that consent at any time (Article 6(1)(a) GDPR).

Where we process data based on legitimate interests, we have conducted a Legitimate Interests Assessment to ensure that your rights and freedoms are adequately protected. You may request a summary of this assessment by contacting us using the details in Section 12.

5. Data Sharing and Disclosure

We do not sell, rent, or trade personal data to third parties for their marketing purposes. We may share your information in the following limited circumstances:

5.1 Service Providers

We engage trusted third-party service providers to perform functions on our behalf, including website hosting, email delivery, analytics, and IT infrastructure management. These providers are contractually bound to process data only on our documented instructions and to implement appropriate technical and organizational security measures.

5.2 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of all or a portion of our assets, personal data held by us may be among the assets transferred. You will be notified via email and/or a prominent notice on our Site of any change in ownership or uses of your personal data.

5.3 Legal Requirements

We may disclose personal data if required to do so by law or in the good-faith belief that such action is necessary to: (a) comply with a legal obligation; (b) protect and defend our rights or property; (c) prevent or investigate possible wrongdoing in connection with the Services; (d) protect the personal safety of users of the Services or the public; or (e) protect against legal liability.

5.4 With Your Consent

We may share your information for other purposes with your explicit consent, which you may withdraw at any time.

6. Cookies and Similar Technologies

Our Site uses cookies and similar tracking technologies to ensure proper functionality, enhance security, and understand how visitors interact with our content. A cookie is a small text file stored on your device by your web browser.

6.1 Types of Cookies We Use

• Essential Cookies: Necessary for the operation of the Site, including session management and security features. These cookies do not require consent under applicable laws.
• Analytics Cookies: Used to collect aggregated, anonymized information about how visitors use our Site — pages visited, time on site, and navigation paths. We use this data to improve our content and user experience.
• Functional Cookies: Used to remember your preferences, such as language settings, to provide an enhanced experience on return visits.

6.2 Cookie Management

Most web browsers allow you to control cookies through their settings preferences. You may configure your browser to reject cookies, delete existing cookies, or notify you when a cookie is set. Please note that disabling essential cookies may affect the functionality of the Site. For detailed guidance on managing cookies, consult your browser’s help documentation or visit www.allaboutcookies.org.

6.3 Do Not Track Signals

Our Site does not currently respond to Do Not Track (DNT) signals sent by web browsers. We continue to monitor developments in DNT technology and implementation standards.

7. Data Security Measures

We implement and maintain administrative, technical, and physical safeguards designed to protect the confidentiality, integrity, and availability of personal data processed through our systems. Given our core business as a computer systems design and cybersecurity engineering firm, data security is not an afterthought — it is a foundational competency.

Our security measures include:

• Encryption: All data transmitted between your browser and our servers is encrypted using Transport Layer Security (TLS 1.3). Data at rest is encrypted using AES-256.
• Access Controls: Role-based access controls ensure that only authorized personnel with a legitimate business need may access personal data. All access is logged and audited.
• Network Security: Our infrastructure is protected by multi-layered firewall configurations, intrusion detection and prevention systems (IDS/IPS), and continuous network monitoring.
• Vulnerability Management: Regular vulnerability assessments, penetration testing, and security patch management are conducted as part of our ISO 27001-certified Information Security Management System.
• Incident Response: We maintain a documented incident response plan. In the event of a data breach, we will notify affected individuals and relevant authorities in accordance with applicable legal requirements.
• Personnel Training: All employees and contractors with access to personal data receive mandatory data protection and security awareness training upon onboarding and annually thereafter.

No method of electronic storage or transmission over the Internet is entirely secure. While we strive to protect personal data using commercially reasonable and industry-standard means, we cannot guarantee absolute security.

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law. Our retention periods are determined by:

• The nature and sensitivity of the data;
• The potential risk of harm from unauthorized use or disclosure;
• The purposes for which we process the data and whether those purposes can be achieved through other means;
• Applicable legal, regulatory, tax, and accounting requirements; and
• The period during which a claim or legal action could be brought in connection with the data.

Contact form inquiries and associated personal data are retained for a period of twenty-four (24) months following the last communication, after which they are securely deleted or anonymized unless a longer retention period is required by law or necessary for the establishment, exercise, or defense of legal claims.

Server logs and automatically collected technical data are retained in identifiable form for thirty (30) days and may be retained in aggregated, anonymized form indefinitely for analytical purposes.

9. Your Data Protection Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

9.1 General Data Protection Regulation (GDPR) — EEA and UK Residents

• Right of Access: You have the right to request confirmation of whether we process your personal data, and to receive a copy of the personal data we hold about you.
• Right to Rectification: You have the right to request correction of inaccurate or incomplete personal data.
• Right to Erasure: You have the right to request deletion of your personal data in certain circumstances (the right to be forgotten).
• Right to Restriction: You have the right to request restriction of processing in certain circumstances.
• Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
• Right to Object: You have the right to object to processing based on legitimate interests or for direct marketing purposes.
• Right to Withdraw Consent: Where processing is based on consent, you have the right to withdraw that consent at any time without affecting the lawfulness of processing prior to withdrawal.

9.2 California Consumer Privacy Act (CCPA) — California Residents

If you are a California resident, the CCPA grants you the following additional rights:

• Right to Know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you in the preceding twelve (12) months, the categories of sources from which the information was collected, the business or commercial purpose for collection, and the categories of third parties with whom we share the information.
• Right to Delete: You have the right to request deletion of personal information we have collected from you, subject to certain exceptions.
• Right to Opt-Out of Sale: We do not sell personal information as defined under the CCPA. Should this change, we will provide a clear and conspicuous Do Not Sell My Personal Information link on our Site.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights. This means we will not deny you services, charge you different prices, or provide a different level or quality of services because you exercised your rights.

9.3 Exercising Your Rights

To exercise any of the rights described above, please contact us using the information in Section 12. We will respond to verifiable requests within the timeframe required by applicable law — typically thirty (30) days, with the possibility of a thirty (30) day extension where necessary. We may require proof of identity before processing your request to prevent unauthorized access to your data.

10. Children’s Privacy

Our Site and Services are not directed to individuals under the age of sixteen (16). We do not knowingly collect personal data from children. If we become aware that a child under sixteen (16) has provided us with personal data, we will take prompt steps to delete such information from our systems. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately using the details in Section 12.

11. International Data Transfers

Auspicious is headquartered in the People’s Republic of China, and our primary data processing facilities are located in China. If you are accessing our Site or Services from outside China, please be aware that your personal data may be transferred to, stored in, and processed in China, where data protection laws may differ from those in your jurisdiction.

When we transfer personal data across international borders, we implement appropriate safeguards in accordance with applicable data protection laws, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission for transfers from the EEA;
• Adequacy decisions where applicable;
• Binding corporate rules or equivalent mechanisms for intra-group transfers; and
• Contractual provisions requiring the recipient to provide a level of protection essentially equivalent to that afforded by the originating jurisdiction.

By using our Site and Services, you consent to the transfer of your information to our facilities as described in this Privacy Policy.

12. Third-Party Links

Our Site may contain links to third-party websites, services, or applications that are not owned or controlled by Auspicious. This Privacy Policy does not apply to those third-party services. We encourage you to review the privacy policies of any third-party service before providing them with personal data. We assume no responsibility for the content, privacy practices, or data handling of any third-party sites.

13. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our data practices, legal obligations, or operational requirements. When we make material changes, we will:

• Post the updated Privacy Policy on this page with a revised Effective Date;
• Provide a prominent notice on our Site for a period of thirty (30) days following the change; and
• Notify you by email if we have your contact information and the change is likely to have a significant impact on your rights.

Your continued use of the Site after the effective date of any revised Privacy Policy constitutes your acknowledgment and acceptance of the changes. We encourage you to review this Privacy Policy periodically.

14. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data protection practices, please contact us:

If you believe that your data protection rights have been violated, you have the right to lodge a complaint with the supervisory authority in your country of residence. We encourage you to contact us first so that we may address your concerns directly.