Digital Estate - 隐私政策

最后更新日期：2026年1月28日
本隐私政策描述了 Digital Estate 应用如何收集、使用、存储和保护您的个人信息。

1. 数据收集

Digital Estate 遵循数据最小化原则，仅收集必要的个人信息：

账户信息：用户名、邮箱地址（用于注册和登录）
应用数据：您创建的资产信息（经过端到端加密）
紧急联系人信息：您提供的紧急联系人邮箱和姓名（用于门限密码学恢复）

我们不收集以下信息：

您的助记词或加密密钥（仅在本地设备生成和存储）
您的资产明文数据（所有资产数据都经过端到端加密）
您的精确地理位置
您的通讯录或设备中的其他应用信息

服务器日志：为了确保服务安全和故障排查，我们的服务器会记录基本的访问信息，包括请求时间、请求路径和HTTP状态码。这些日志不包含您的个人身份信息、设备类型或应用版本，仅用于安全监控和系统维护。日志定期自动清理，最长保留30天。

2. 数据加密和安全

Digital Estate 采用多层安全措施保护您的数据：

端到端加密：所有资产数据在您的设备上使用 AES-256-GCM 加密，服务器仅存储密文，无法解密您的数据
本地密钥管理：加密密钥使用 Android Keystore 硬件保护，确保密钥安全
门限密码学：支持 2-of-2 Shamir Secret Sharing，将密钥分片存储在您和服务器之间
安全传输：所有网络通信使用 HTTPS 加密传输
安全头：Web 界面实施严格的内容安全策略（CSP）和 X-Frame-Options 防护

3. 数据使用

我们仅将您的数据用于以下目的：

提供和维持 Digital Estate 服务功能
验证您的身份并保护账户安全
在您连续7天未打卡时，通过门限密码学恢复流程协助紧急联系人恢复您的资产
改进应用性能和用户体验（通过匿名化数据分析）
响应您的反馈和客服请求

4. 数据存储和保留

加密数据：资产密文永久存储在服务器，直到您主动删除账户
账户信息：您的用户名和邮箱存储在服务器，用于身份验证
本地数据：助记词、加密密钥等敏感信息仅存储在您的设备本地
数据删除：您可以随时删除账户，服务器将永久删除您的所有数据

5. 第三方服务

Digital Estate 使用以下第三方服务：

服务器托管：应用服务器托管在云服务提供商
邮件服务：使用 SMTP 服务发送验证码和通知邮件
分析服务：可能使用匿名化分析工具改进应用性能

所有第三方服务都经过安全评估，仅处理必要的最小化数据。

6. 数据共享

我们重视您的隐私，承诺保护您的个人信息。我们的数据共享政策如下：

不出售个人信息：我们不会向第三方出售、出租或交易您的个人信息
必要服务共享：我们仅与必要的服务提供商共享最少量的数据，以提供服务：
- 邮件服务提供商（SendGrid）：用于发送验证码和通知邮件
- 云服务提供商：用于服务器托管和数据存储
法律要求：在法律要求或保护我们的合法权益的情况下，我们可能需要披露您的信息
业务转让：如果我们的业务被收购或合并，您的信息可能作为转让的一部分

所有第三方服务提供商都经过严格的安全评估，并承诺仅处理必要的最小化数据。

7. 用户权利

您对自己的数据享有以下权利：

访问权：查看您存储在服务器上的个人数据
更正权：更正不准确或不完整的个人信息
删除权：删除您的账户和所有相关数据
导出权：导出您的资产数据（需使用助记词解密）
撤回同意权：随时停止使用服务并删除数据

如需行使这些权利，请通过以下联系方式与我们联系。

8. 免责声明

重要提示：
Digital Estate 不是保险或投资产品，不提供任何金融或投资建议。用户需自行负责数据备份和安全保管。开发团队不对因使用本应用导致的任何数据丢失、资产损失或安全问题负责。

使用本应用即表示您已阅读、理解并同意本隐私政策和免责声明的所有条款。

9. 儿童隐私

本应用不面向 13 岁以下的儿童。我们不会故意收集 13 岁以下儿童的个人信息。

如果我们发现无意中收集了儿童的个人信息，我们将立即采取措施删除该信息
家长如发现孩子向我们提供了个人信息，请通过文末的联系方式联系我们，我们将协助删除相关数据
本服务的设计和功能不针对儿童，也不会收集或营销儿童的信息

10. 联系我们

如果您对本隐私政策有任何疑问、建议或投诉，请通过以下方式联系我们：

邮箱： support@hello-my-dear.com
项目地址： https://gitee.com/boot_1/digital_estate

我们将在15个工作日内回复您的请求。

Last Updated: January 28, 2026
This Privacy Policy describes how Digital Estate collects, uses, stores, and protects your personal information.

1. Data Collection

Digital Estate follows the principle of data minimization and only collects necessary personal information:

Account Information: Username, email address (for registration and login)
Application Data: Asset information you create (end-to-end encrypted)
Emergency Contact Information: Emergency contact email and name you provide (for threshold cryptography recovery)

We do not collect the following information:

Your mnemonic phrase or encryption keys (generated and stored only on your local device)
Your asset plaintext data (all asset data is end-to-end encrypted)
Your precise geolocation
Your contacts or information from other apps on your device

Server Logs: To ensure service security and troubleshoot issues, our servers record basic access information, including request time, request path, and HTTP status code. These logs do not contain your personal identification information, device type, or app version, and are used solely for security monitoring and system maintenance. Logs are automatically cleaned up regularly and retained for a maximum of 30 days.

2. Data Encryption and Security

Digital Estate employs multiple layers of security measures to protect your data:

End-to-End Encryption: All asset data is encrypted on your device using AES-256-GCM. The server only stores ciphertext and cannot decrypt your data
Local Key Management: Encryption keys are protected using Android Keystore hardware security
Threshold Cryptography: Supports 2-of-2 Shamir Secret Sharing, splitting keys between you and the server
Secure Transmission: All network communication uses HTTPS encryption
Security Headers: Web interfaces implement strict Content Security Policy (CSP) and X-Frame-Options protection

3. Data Usage

We only use your data for the following purposes:

Providing and maintaining Digital Estate service functionality
Verifying your identity and protecting account security
Assisting emergency contacts in recovering your assets through threshold cryptography when you fail to check in for 7 consecutive days
Improving app performance and user experience (through anonymized data analysis)
Responding to your feedback and customer service requests

4. Data Storage and Retention

Encrypted Data: Asset ciphertext is permanently stored on the server until you actively delete your account
Account Information: Your username and email are stored on the server for authentication
Local Data: Mnemonic phrases, encryption keys, and other sensitive information are stored only on your local device
Data Deletion: You can delete your account at any time, and the server will permanently delete all your data

5. Third-Party Services

Digital Estate uses the following third-party services:

Server Hosting: Application servers are hosted on cloud service providers
Email Service: Uses SMTP services to send verification codes and notification emails
Analytics Services: May use anonymized analytics tools to improve app performance

All third-party services undergo security assessment and only process the minimum necessary data.

6. Data Sharing

We value your privacy and are committed to protecting your personal information. Our data sharing policy is as follows:

We Do Not Sell Personal Information: We do not sell, rent, or trade your personal information to third parties
Service Provider Sharing: We share minimal data only with necessary service providers to deliver our services:
- Email service provider (SendGrid): for sending verification codes and notification emails
- Cloud service providers: for server hosting and data storage
Legal Requirements: We may disclose your information when required by law or to protect our legal rights
Business Transfers: If our business is acquired or merged, your information may be transferred as part of the transaction

All third-party service providers undergo strict security assessments and commit to processing only the minimum necessary data.

7. User Rights

You have the following rights regarding your data:

Right to Access: View your personal data stored on the server
Right to Correction: Correct inaccurate or incomplete personal information
Right to Deletion: Delete your account and all related data
Right to Export: Export your asset data (requires decryption with mnemonic phrase)
Right to Withdraw Consent: Stop using the service and delete data at any time

To exercise these rights, please contact us using the information below.

8. Disclaimer

Important Notice:
Digital Estate is not an insurance or investment product and does not provide any financial or investment advice. Users are responsible for their own data backup and secure storage. The development team is not responsible for any data loss, asset loss, or security issues resulting from the use of this application.

By using this application, you acknowledge that you have read, understood, and agree to all terms of this Privacy Policy and Disclaimer.

9. Children's Privacy

This app is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13.

If we discover that we have inadvertently collected a child's personal information, we will take immediate steps to delete that information
If you are a parent and believe your child has provided us with personal information, please contact us using the information below, and we will assist in deleting the relevant data
Our service is designed and functions are not targeted at children, nor do we collect or market to children's information

10. Contact Us

If you have any questions, suggestions, or complaints about this Privacy Policy, please contact us:

Email: support@hello-my-dear.com
Project Repository: https://gitee.com/boot_1/digital_estate

We will respond to your request within 15 business days.

🔐 Digital Estate