UGREEN NAS User Agreement
Effective Date: May 17, 2024
Last Updated: Jun 04, 2024|
Welcome to UGREEN NAS! This UGREEN NAS User Agreement (hereinafter "this Agreement") governs the use of UGREEN NAS Software. The term "UGREEN NAS" in this Agreement refers to the Clients (including App clients, PC clients, and Web clients), websites, software development kits (SDK) for third party websites and apps, application programming interfaces (API), and mini-programs legally owned and operated by HONG KONG UGREEN LIMITED (hereinafter "UGREEN" or "we") and its affiliates, providing global services. UGREEN NAS enables access and use of our products and services, including those emerging due to technological advancements (collectively referred to as "UGREEN NAS").
Under the EU's DSA,ugreennascss@gmail.com has been designated as a single point of contact to enable us to communicate directly with German authorities, the European Commission and the European Board for Digital Services,as also as users located in EEA.
-
1. Overview
- 1.1.This Agreement: This Agreement between you and UGREEN outlines rights and obligations regarding the download, installation, activation, registration, login, and use (hereinafter "Use") of UGREEN NAS. In addition to this Agreement, refer to other documents including, but not limited to, agreements, privacy policies, terms of use, announcements, statements, and site notices related to UGREEN NAS, issued or to be issued by us. These documents, subject to occasional revisions, together with this Agreement, constitute the complete agreement between you and UGREEN and have the same legal effect.
- 1.2.Review and agreement: Please read this Agreement carefully and ensure you understand it in full before using UGREEN NAS. We recommend you to pay careful attention to important or specific terms in this Agreement, which are marked in a distinctive manner or in boldface. If you are a minor under the laws of your residence country or jurisdiction, read and understand this Agreement with your guardian and obtain their explicit consent before using UGREEN NAS.
- 1.3.You are deemed to have read, fully understood, and accepted this Agreement upon using UGREEN NAS. Discontinue using UGREEN NAS if you disagree with any part of this Agreement or cannot assume the applicable liability.
- 1.4.Questions and reports: You are welcome to submit feedback through the UGREEN NAS client, official website, or email UGREEN directly at ugreennascss@gmail.com should you have any concerns, opinions, or recommendations regarding this Agreement or UGREEN NAS.
-
2. Products and Services
- 2.1.Access and Use: UGREEN NAS's products and services are accessible in various ways, including but not limited to:
(1)Accessing UGREEN NAS's official website;
(2)Downloading and installing the UGREEN NAS Client from app stores and websites authorized by us;
(3)Software Development Kit (SDK) or Application Programming Interface (API) integrations in third party platforms or applications.
We cannot guarantee the authenticity or integrity of UGREEN NAS products or services obtained from unofficial or unauthorized sources. Using such products and services involves risks. We are not liable for any losses incurred from using unofficial products or services unless otherwise provided by law.
2.2.Version and Device Customization: UGREEN NAS apps are customized for different devices. For optimal user experience, select the version tailored to your device when acquiring, downloading, and installing the software to ensure the best user experience.
2.3.Authorization and Restrictions: The license granted to you is a limited, non-exclusive, non-transferable, non-sub-licensable, but revocable right to use UGREEN NAS legally. We reserve all rights not expressly granted in this Agreement. Without our written consent, any unauthorized use of UGREEN NAS, including but not limited to modification, reproduction, distribution, crawling, searching, mirroring, or trading, is prohibited.
2.4.Updates and Changes: We may periodically update, modify, or change UGREEN NAS to enhance user experience, optimize services, and meet security and compliance requirements. This includes, but is not limited to, product modifications, service suspension, termination, new features, and updates. Updated versions may be provided for these changes. You are entitled to the choice to update or not. However, failure to update may result in restricted or unavailable features. You may choose to delete the UGREEN NAS app.
-
3. UGREEN Cloud account Management
- 3.1.Account Registration and Login
(1)To use UGREEN NAS, register an account using your phone number or other methods recognized by UGREEN NAS (which may vary by country or jurisdiction).
(2)We offer third party platform authorization login features, provided you have a valid third party software or platform account and comply with applicable laws.
(3)Your account name and password are credentials for UGREEN NAS access and use, so please ensure their security and confidentiality.
(4)This account, a UGREEN NAS global unified account, is necessary for us to provide you with services globally.
3.2.Account Information and Security
(1)Register with real, accurate, complete information, and update it promptly if changes occur. We are entitled to restrict or terminate your use of your account if you provide us with false information.
(2)Maintain account information security to prevent unauthorized access or use of your account. Inform us immediately and take appropriate precautions if you detect anomalies or security breaches.
3.3.Account Behavior: Do not create a UGREEN Cloud account on behalf of others or use others' names, company names, trademarks, or photos without their express written permission. Do not mislead users about account ownership when using your account, particularly concerning well-known organizations or individuals, and avoid any actions that may infringe upon others' personality, property, or other legal rights. We are entitled to review submitted account information and take legal action pursuant to law, including without limitation warnings and reminders, demands to make corrections within a specific time limit, account information resetting, account functionality restrictions, suspension, closure, and registration bans, if the information you submit violates laws, administrative regulations, government decrees, or this Agreement.
3.4.Account Transfers and Sharing
(1)The UGREEN Cloud account is exclusively for the original registrant. Transferring, lending, or sharing the account is prohibited.
(2)If account misuse by non-registrants is suspected or evident, we are entitled to suspend or terminate the services.
3.5.Account and Password Security and Confidentiality You must take all possible steps to safeguard the security and confidentiality of your UGREEN Cloud account and password. All operations performed using your account and password shall be deemed as your own actions, for which you assume full liability. This includes without limitation liability for any content uploaded, downloaded, shared, or published on the UGREEN NAS Platform. Immediately report any suspected illegal account or password use or security concerns. Follow our recovery guidelines and procedures if you forget your account or password details. You understand and acknowledge that our account recovery process depends significantly on comparing the information you provide with our system records for verification purposes. We cannot ensure that you will be successful in recovering your account, nor can we verify that the complainant is the true owner of the account. Therefore, please provide accurate, complete, and updated information when registering and using your account. You shall be fully liable for any losses and risks arising from inaccurate account information and poor account safeguarding.
3.6.Use of Related Versions and Services Unless expressly stated otherwise, understand that by logging into your UGREEN Cloud account and using any related versions or features, you are bound by this Agreement, the user agreements for the related versions, and other applicable legal documents. The related version user agreement or applicable legal document shall control in the event of any conflict or discrepancy between this User Agreement and related version user agreements or other legal documents.
3.7.We may employ a collaborative management approach to managing UGREEN NAS and its related versions. For instance, violations of applicable laws or this Agreement while using UGREEN NAS can impact your use of related versions and services, and vice versa.
3.8.You may request cancellation of your UGREEN Cloud account. Cancellation requests are limited to your own account and must follow proper procedures to verify account ownership. Upon cancellation, we will delete or anonymize your account information, unless laws or guidelines mandate different retention or disposal methods. You will be unable to use the account to log into UGREEN NAS or retrieve any related content or information post-cancellation. You remain liable for activities conducted on UGREEN NAS prior to account cancellation.
-
4. Usage Guidelines
- 4.1.You fully understand that you are responsible for all devices (such as personal computers, mobile phones, and other devices used to access the Internet, or mobile networks) and the costs associated with your use of the UGREEN NAS (such as telephone and internet access fees, and mobile network access fees).
- 4.2.UGREEN NAS would not directly upload, download, copy, share, or provide content, nor shall it modify, edit, or interfere with the content you transmit. You fully understand and agree that all data and content you upload, store, and share, including without limitation files, documents, and other types of information, as well as data you upload to be used on servers not controlled by us are under your personal decision-making and control. These operations and decisions are entirely under your control, even those including cross-border data transfers, and you should ensure that you comply with all applicable laws. As the party in full control of such data, you shall be liable for any legal obligations and consequences that may arise therefrom. Manage your data and content on UGREEN NAS carefully and responsibly to avoid violating the law or infringing upon third party rights.
- 4.3.You must not store, transmit, share, or access content or engage in activities of the following nature, and should discourage such activities and content:
(1)Uploading, downloading, storing, copying, publishing, transmitting, emailing, or otherwise providing content prohibited by laws, regulations, and policies, including without limitation:
①Content that violates the basic principles specified in the Constitution of the People's Republic of China;
②Content that endangers national security, divulges secrets, subverts state power, or undermines national unity;
③Damages national honor and interests;
④Content that incites ethnic hatred, discrimination, or undermines ethnic unity;
⑤Information that undermines Chinese religious policies or promotes cults or superstitions;
⑥Content that spreads rumors, disrupts social order, and undermines social stability;
⑦Content that spreads obscenity, pornography, gambling, violence, murder, or terror, or instigates criminal activity;
⑧Content that insults or defames others, or infringes upon the legal rights of others;
⑨Content that jeopardizes social morality or national cultural traditions;
⑩Content that infringes upon third party legal rights, including without limitation copyrights, trademark rights, patent rights, and reputation rights;
11Content involving information prohibited by applicable law or administrative regulations;
(2)Infringing upon others' privacy, trade secrets, trademark rights, copyrights, patent rights, and other legal rights;
(3)Engaging in unlawful commercial activities, such as trafficking arms, drugs, banned medicines, or prohibited items;
(4)Committing or planning to commit illegal acts like money laundering, cash withdrawals, and wire fraud;
(5)Removing UGREEN NAS copyright, trademark, or other proprietary notices;
(6)Copying or falsifying all or part of UGREEN NAS content or merging it with other applications;
(7)Accessing or attempting to access or damage any part of UGREEN NAS or related systems or networks;
(8)Decomposing, decoding, reverse engineering UGREEN NAS or any part of it, decompiling its executables, creating derivative works, or engaging in similar activities prohibited by applicable law;
(9)Distributing, licensing, leasing, selling, reselling, transferring, publicly displaying, publicly performing, transmitting, broadcasting, disseminating, or otherwise using UGREEN NAS;
(10)Submitting or making UGREEN NAS available to others, in whole or in part (including the source code and content), without UGREEN's prior written permission;
(11)Impersonating another person, falsely claiming, or otherwise misrepresenting your relationship with an individual or company;
(12)Using UGREEN NAS (or any component thereof) unlawfully, in violation of this Agreement, or to commit any fraudulent or malicious acts, including without limitation hacking or embedding malicious code, viruses, or harmful data into UGREEN NAS (or websites linked to UGREEN NAS) or its operating systems;
(13)Infringing upon UGREEN or third party intellectual property rights when using UGREEN NAS;
(14)Collecting user information, using automated means to access UGREEN NAS, or attempting to extract or decrypt any content sent to or from UGREEN NAS servers;
(15)Developing, supporting, or using software, devices, scripts, or any other means or processes (including crawlers, browser plug-ins, or any other technology or human operation) to extract or otherwise copy user information and other data from UGREEN NAS;
(16)Using UGREEN NAS for commercial purposes without UGREEN's prior written permission;
(17)Engaging in illegal transactions through UGREEN NAS, such as trafficking arms, drugs, illegal goods, pirated software, or other prohibited items;
(18)Providing gambling information or encouraging others to gamble in any way;
(19)Requesting login information or accessing another's account;
(20)Money laundering, illegal withdrawals, or pyramid schemes;
(21)Violating this Agreement (or any part thereof), or aiding or encouraging such conduct;
(22)Using UGREEN NAS in a way that damages, weakens, or compromises its security, overloads it, or interferes with other users or systems, or enables unauthorized access to UGREEN NAS or data;
(23)Other violations of national laws, regulations, rules, policies, decrees, or this Agreement.
-
5. Network Security and Use Restrictions
- 5.1.Use Restrictions: For UGREEN NAS's integrity and stability, you agree:
(1)Not to use, deploy, or distribute plug-ins, cheating programs, systems, or third party tools that interfere with UGREEN NAS's normal operation.
(2)Not to use automated programs, scripts, software, or similar tools to access UGREEN NAS for collecting, storing, processing, or transmitting information or content without our prior written permission.
5.2.Network Security: You must not engage in or assist others in behaviors compromising UGREEN NAS or other computer networks' security. This includes, but is not limited to, circumstances involving:
(1)Unauthorized intrusion, interference with, or disruption of any network, system, or data, including attempts to do so without authorization, or unauthorized attempts to affect the normal functionality of any network, system, or data;
(2)Manufacturing, selling, distributing, providing, or promoting programs, codes, or tools specialized in intrusion, interference, or disruption of networks, systems, or data;
(3)Providing, directly or indirectly, technical support, funds, advertising or any other form of assistance to a third party, whether known or should have known that such third party engages in the above acts;
(4)Unauthorized access, copying, modification, or use of others' data, servers, or account information;
(5)Probing, scanning, or testing the UGREEN NAS network, or attempting to exploit any known or unknown vulnerability without explicit permission;
(6)Intentionally spreading, transmitting, or launching harmful software, such as malicious programs, viruses, worms, and Trojans;
(7)Falsifying, modifying, or tampering with data packets, critical information, and similar network data;
(8)Attempts to reverse engineer, disassemble, or decrypt UGREEN NAS, or attempts to obtain its source code;
(9)Malicious or frequent registration of UGREEN Cloud accounts, or creating, selling, promoting, or using such accounts in bulk; and
(10)Any other acts that may damage, interfere, disrupt, or pose threats to UGREEN NAS or third party networks, systems, or data;
5.3.Use of Information and Data: Users or third parties must not assist with or encourage others to engage in any of the following acts without our explicit written consent:
(1)Use any information from UGREEN NAS to mislead or deceive users, or to conduct malicious advertising, promotion, publishing, or displays for the purposes of obtaining unfair competitive advantages;
(2)Editing, modifying, rearranging, adapting, or otherwise changing information from UGREEN NAS without authorization and displaying, distributing, or publishing it on any channel, platform, or media other than the UGREEN NAS platform;
(3)Intervening, modifying, redirecting, hijacking, embedding, triggering pop-ups, or any other actions that affect the normal use of UGREEN NAS through any technologies, methods, or means, including without limitation specific scripts, codes, or plug-ins;
(4)Stealing, monitoring, copying, distributing, displaying, mirroring, uploading, downloading, or using any information from UGREEN NAS through illegal or improper means, such as malicious links, redundant requests, crawling, fake downloads, deep links, and fake registrations;
(5)Concealing, modifying, or removing any UGREEN NAS attributes or marks, such as domain names, logos, copyright statements, or user information when displaying or sharing UGREEN NAS content;
(6)Conducting unauthorized statistical analysis using UGREEN NAS information, including trend statistics, hit rates, classifications, search volumes, click-through rates, and read rates;
(7)Selling, renting, distributing, or transferring UGREEN NAS data or providing or licensing it to third parties for commercial purposes;
(8)Interfering, disrupting, tampering with, or otherwise affecting the completeness, accuracy, or validity of UGREEN NAS information;
(9)Any other acts that may violate laws or policies, or infringe upon any third party's right to acquire, use, process, or share UGREEN NAS information.
-
6. Legal Compliance
- 6.1.You agree to abide by all applicable local laws when using UGREEN NAS services, including export control and sanction laws, regulations, rules, and policies, including the US Export Control Regulations and sanctions imposed by the Office of Foreign Assets Control of the US Department of the Treasury or the European Union, as well as all other applicable national or international sanctions.
- 6.2.You covenant not to directly or indirectly export, re-export, or transmit UGREEN NAS information to any countries, individuals, or entities subject to applicable export controls or sanctions. You covenant not to use UGREEN NAS for activities involving restricted technologies, such as weapons of mass destruction, missiles, or chemical or biological weapons.
- 6.3.You agree to assume sole liability and all risks, including without limitation legal action, fines, or penalties, resulting from your noncompliance with the covenants in this Agreement, including without limitation those related to export controls and compliance. UGREEN shall not be liable for such noncompliance under any circumstances.
- 6.4.We may update this section periodically, given the dynamic nature of global export control and sanctions laws. We recommend reviewing this Agreement periodically to ensure that your actions always comply with the latest compliance requirements.
-
7. Penalties for Breach of this Agreement
- 7.1.Definition of Noncompliance and Penalties
(1)If you violate any terms of this Agreement while using UGREEN NAS services, or if there are reasonable grounds to believe that your actions may cause harm or legal implications for UGREEN NAS, other users, or any third party, such actions will be deemed a breach of the Agreement. In the event of a breach, we reserve the right to take one or more of the following actions based on the nature, severity, and frequency of the breach to protect UGREEN NAS and other users' rights:
①Issue a breach warning;
②Requesting a written explanation;
③Suspending or terminating some or all services provided to you without prior notice;
④Freezing, restricting, or deleting your account;
⑤Requiring immediate cessation of the breach and corrective action;
⑥Filing reports with legal, administrative, and other agencies, and cooperating in any subsequent investigations;
⑦Re-verification, providing deadlines for correction, account closure, and prohibiting re-registration;
⑧Holding liable pursuant to law, and requiring you to indemnify UGREEN NAS or any third parties against any damages incurred as a result.
⑨Any other actions deemed necessary.
(2)You shall be liable for any consequences resulting from your breach of this Agreement, including without limitation UGREEN Cloud account functionality restrictions, account deletion, or infringement or any rights associated with your account. We are not obligated to restore content in accounts deleted or restricted due to penalties unless required by law or administrative orders.
7.2.Transparency and Cooperation in Resolving Breaches
(1)In the interest of fairness, impartiality, and transparency, we will notify you of the outcomes of any breaches through appropriate platforms or channels. However, we reserve the right to withhold such information to the extent permitted by law.
(2)If your breach of this Agreement constitutes a crime or violation of the law, we reserve the right to report your violation to the appropriate government or administrative agency, and we shall furnish them with any necessary records, documentation, and information. Moreover, we will fully cooperate with all official investigations by providing the necessary information to support such.
7.3.Commitment to Protect the Rights of Third Parties and Users' Responsibilities
(1)Respect for third party rights: We are committed to respecting and protecting the intellectual property rights, reputation, name, privacy, and other legitimate rights of all users and third parties while using UGREEN NAS services. We will strive to prevent and address any infringement of third party rights pursuant to law and this Agreement.
(2)User Responsibilities: You commit to complying with all applicable laws, international treaties, and this Agreement while using UGREEN NAS services. Moreover, you covenant not to engage in any conduct that may infringe upon third party rights or to engage in illegal activities through the use of our services.
(3)Resolving Third Party Complaints: If we receive any third party complaints, reports, or lawsuits involving you, we reserve the right to take the following actions:
①Notify you of the complaint or report details and sources via email or other means;
②Take steps to preserve evidence, including but not limited to suspending services and temporarily freezing accounts based on circumstances at the time and legal requirements;
③Request written explanations, feedback, and documentation from you.
(4)Your Liability: If UGREEN NAS suffers financial losses, including without limitation indemnification, penalties, legal fees, litigation damages, or non-financial losses like diminished goodwill and business reputation due to your actions, you shall be liable to indemnify UGREEN NAS against any such losses, including direct and indirect losses (such as losses of business reputation or market share).
(5)Cooperation in Legal Matters: You shall fully cooperate to the extent permitted by law and within a reasonable timeframe should we require your assistance in addressing any third party complaints, reports, or lawsuits involving you.
(6)Interpretation of Circumstances: We will take any action deemed reasonable in response to third party complaints or reports. None of our actions shall be deemed an acknowledgment or denial of your conduct or identity.
(7)Defending Your Rights: If you disagree with any action we take, you may file objections or complaints via UGREEN NAS's official channels or the contact information provided. We will make further decisions after reviewing all information you submit.
- 8. Personal Information Protection
Please refer to the UGREEN NAS Privacy Policy for details on how we collect, use, store, and protect your personal information, as well as your rights in this regard.
-
9. Intellectual property
- 9.1.We own all intellectual property rights for all UGREEN NAS products and services, including but not limited to software, technology, programs, web pages, text, images, audio, video, graphics, layouts, and electronic files.
- 9.2.We provide technical support for the development and operation of UGREEN NAS and have all rights to all data and information generated during this process to the extent permitted by laws and regulations.
- 9.3.We own the intellectual property rights to all UGREEN NAS and other UGREEN brand marks, including trademarks, service marks, trade names, domain names, and website names, collectively referred to as "Marks." You shall not use, display, copy, transfer, or otherwise process these Marks in any form, whether individually or in combination with other Marks, without our written authorization. Specifically, you shall not apply for registration of trademarks or domain names, or expressly state or imply to any third party that you are entitled to display, use, or manage with such Marks. You shall be fully liable and indemnify us and any third parties against all damages and losses resulting from your breach of this Section or misuse of such Marks.
-
10. Terms for Independent and Third Party Services
- 10.1.UGREEN NAS contains information or links we have legally obtained, as well as other independent services we are licensed to operate. These services may be presented as separate features within UGREEN NAS (such as the UGREEN NAS Application Center). UGREEN NAS may also integrate or include links to third party content. We reserve the right to add, reduce, or adjust the content and information contained within independent services and other features at any time to expand our service offerings or optimize user experiences. While we will endeavor to notify users of these changes in advance, some modifications may be implemented immediately under certain circumstances.
- 10.2.You may activate and use the above independent services and features via UGREEN NAS. You may be required to enter into additional agreements or accept separate terms between you and the service provider when using certain independent services or features. The primary service provider for independent services can be determined through the independent service agreements or information disclosed within such services. When necessary, we will make these agreements or terms available for you to review in a reasonable manner. Your use of the above services shall be deemed as your agreement and understanding of the associated agreements and rules.
- 10.3.Some services or features in UGREEN NAS may be provided by third parties either independently or in partnership with us. Such services may require separate user agreements, privacy policies, or other binding rules. Carefully review all agreements and rules before using third party services, and ensure you fully understand and agree with them, assessing any risks involved. Exercise judgment and assess any potential risks when using third party websites or applications. You shall independently resolve any disputes, damages, or losses arising from the use of third party services with the third parties concerned. UGREEN NAS shall not be held liable for any direct or indirect damages caused by third parties.
- 10.4.Be aware that some third parties may use your account ID for data collection and processing. The third party service provider shall be responsible for the data collection, storage, use, and transmission. UGREEN is not involved in the processing of such data, nor will it access, control, or modify this data. Please choose and use third party services carefully, as your personal information and data security will be subject to the third party service provider's terms and policies when using such services.
- 10.5.We recommend consulting with legal experts or professionals before enabling any third party service should you have any concerns regarding the third party service provider's agreement or terms. UGREEN NAS may not be able to directly notify you of any changes to third party agreements or terms. Therefore, we recommend regularly reviewing the agreements or terms for any third party services you use to ensure your rights are protected.
-
11. Terms of Use for Minors
- 11.1.As UGREEN NAS is primarily intended for adults, individuals deemed minors in their residence country or jurisdiction should use UGREEN NAS only with their guardian's agreement and understanding of this Agreement. If a minor uses UGREEN NAS without their guardian's consent, we reserve the right to restrict the account's features as directed by the guardian.
- 11.2.We prioritize the protection of minors' privacy and personal information. If you are a minor under the laws of your country or area, or a guardian registering and using the account on behalf of a minor, please read our UGREEN NAS Privacy Policy carefully. Guardians should protect minors' personal information when providing it.
- 11.3.Notes for Guardians of Minors As a guardian, you should guide and supervise any minors under your guardianship who register on UGREEN NAS. We are entitled to assume that minors under your guardianship registering on UGREEN NAS have obtained your consent.
- 11.4.Please email us at ugreennascss@gmail.com if you have any further questions on the protection of minors’ rights.
-
12. Limitation and Exemption of Liability Statement
- 12.1.You expressly acknowledge and agree that UGREEN NAS Products and Services are provided "as is" and "as available," based on current technology and conditions. In order to more clearly define the scope of liability, we expressly disclaim any express or implied warranty regarding:
(1)UGREEN NAS Products and Services fully meeting specific user needs or expectations, or their uninterrupted availability;
(2)The provision of UGREEN NAS Products and Services being unobtrusive, prompt, stable, secure, error-free, or compatible with the functionality or performance of other software products, services, or data;
(3)The prompt correction or complete resolution of technical errors, defects, or problems in UGREEN NAS Products and Services;
(4)The absolute accuracy and completeness of all data, and the absence of any risk of loss, tampering, or leakage when using UGREEN NAS Products and Services;
(5)The perpetual availability and retention of features or components of UGREEN NAS Products and Services;
(6)The performance or service commitments of third party partners or suppliers of UGREEN NAS Products and Services;
(7)The compatibility of UGREEN NAS Products and Services with all devices or systems, and the lack of any potential for damage or risks to any devices or systems;
(8)The validity, accuracy, or reliability of any content, materials, or information in UGREEN NAS Products and Services.
You are solely responsible for determining and assessing the risks associated with the use of UGREEN NAS Products and Services and for any decisions on the use, method, and extent of your use of our products are services based on your judgment.
12.2.We aim to provide high-quality, stable, and secure UGREEN NAS Products and Services. However, due to external factors, technological complexity, and unpredictability, we cannot guarantee that UGREEN NAS Products and Services will never be uninterrupted or unaffected. Therefore, you should understand and agree that, to the fullest extent permitted by law, we shall not be liable for interruptions, suspensions, delays, or instabilities in services, resulting in any losses to you or third parties under the following circumstances:
(1)Force majeure events, including without limitation:
①Natural disasters, such as floods, earthquakes, hurricanes, blizzards, fires, or droughts;
②Government action, policy changes, or emergency orders;
③International or domestic conflicts, wars, terrorist attacks, or riots;
④Civil unrest events, including strikes, demonstrations, and public health crises (including epidemics);
⑤Other unforeseeable and uncontrollable events.
(2)Technical or external events, including without limitation:
①Power outages, unstable power supply, or grid faults;
②Network communication failures, delayed or lost data transmissions;
③Third party service instability, interruptions, or terminations;
④Cyberattacks such as hacking, viruses, malware, and phishing;
⑤Hardware failures, system crashes, or unavoidable software defects.
(3)To ensure the long-term and stable operation of UGREEN NAS Products and Services, we may:
①Perform system checks, repairs, or maintenance;
②Update, upgrade, or optimize software;
③Replace, maintain, or upgrade hardware;
④Temporarily restrict certain features for security or performance reasons;
⑤Conduct data migration or backups while ensuring data security.
We will provide prior notice when feasible for any of the above circumstances and resume services as soon as possible.
12.3.Cybersecurity Exercise caution with internet information or documents claiming to be related to financial or property transactions. Please maintain a high degree of vigilance and carefully verify the authenticity of any information or documents found on UGREEN NAS involving loans, investment and financing, and financial management, or any other information or documents that may involve financial transactions that request account passwords or require you to click a link. Unless otherwise expressly provided by applicable law, we assume no liability for any direct or indirect losses suffered due to the above information or documents, including without limitation lost profits, business reputation, data, or other tangible or intangible losses.
12.4.Reservations of Legal Decisions This Agreement aims to ensure the legal operation of UGREEN NAS, compliance with applicable law, maintenance of public order and morals, and protection of legal rights of all users and third parties. We will make decisions or take action pursuant to law based on our understanding and capacity. However, please understand that our decisions or decision-making processes may differ from the views of judicial or administrative agencies. We recommend seeking professional legal advice or assistance from appropriate judicial or administrative agencies directly in the event of a legal dispute.
12.5.Service Geographic Limitations and User Responsibilities. Unless expressly stated or agreed upon separately in writing, UGREEN NAS primarily serves those users in jurisdictions we have officially disclosed. We acknowledge that some users may try or continue to use UGREEN NAS in jurisdictions other than those officially disclosed due to the widespread use of the technology. In such cases, you shall clearly understand and acknowledge that such use is based on your sole judgment, and you assume all associated risks. You are liable for ensuring full compliance with local laws, rules, and regulations when using UGREEN NAS in jurisdictions other than those officially disclosed. You shall assume sole liability and all risks arising from your violations of local laws.
12.6.We do not warrant the legality or appropriateness of UGREEN NAS in jurisdictions other than those officially disclosed unless expressly agreed or warranted otherwise. You acknowledge your use of UGREEN NAS in jurisdictions other than those disclosed officially is done so at your own risk, and you warrant that your use of UGREEN NAS shall comply with all applicable local laws, and you assume all risks and liability.
12.7.Limitation of Liability To the fullest extent permitted by law, we will not assume liability for the following damages, regardless of the cause of such damages and regardless of whether such damages were foreseeable: indirect damages, consequential damages, punitive damages, specific damages, incidental damages, or any other form of indirect damages. For the avoidance of doubt, the above damages include without limitation: profit losses, data or information losses, business interruptions, damage to reputation or goodwill, loss of investments, and other expenses and forms of financial losses. The above limitations shall apply even if we are aware of the potential for such damages or have been expressly advised of the possibility of such damages. Except as otherwise required by law, our total liability to you or any third party shall not exceed the total fees (if any) paid to us by you during your use of UGREEN NAS under any circumstances, regardless of the cause or type of action.
-
13. Indemnification
- 13.1.Indemnification Commitment You agree to assume all liability and indemnify UGREEN and its affiliates, including subsidiaries, parent companies, agents, managers, directors, employees, or consultants against any losses arising from your or any user of your account's breach of this Agreement, applicable laws, or other policies and regulations.
- 13.2.Description of Indemnification The aforementioned losses and expenses include without limitation reasonable attorney's fees, investigation fees, lawsuit or arbitration costs, claim payments, fines, indemnification fees, and any other expenses resulting from such breaches.
- 13.3.Indemnification Procedure: If UGREEN or its affiliates become the subject of a third party lawsuit, claim, or other legal proceeding resulting from your actions or those of a user of your account, UGREEN is entitled to seek indemnification for such to protect its interests. UGREEN also reserves the right to inform you of such lawsuits, claims, or legal proceedings and take legal action if you fail to respond promptly, which shall not be deemed as a waiver of your indemnification obligations.
-
14. Notices and Agreement Amendments
- 14.1.Agreement Amendments and Updates:
(1)Reasons and Basis for Amendments: To maintain legal compliance, respond to technological advancements, and provide superior customer service, this Agreement is regularly reviewed and may be amended as necessary.
(2)Amendments as Part of the Agreement: All amendments, updates, or supplements shall be deemed integral parts of this Agreement once issued.
(3)Notice and Review of Amendments: We will publish the latest version of this Agreement on our cloud app and official website following any amendment. We may also use other appropriate methods, such as announcements and notifications in the cloud app, to ensure you are aware of any amendments. Additionally, you may access and review the latest Agreement terms on the UGREEN NAS client or our official website at any time.
(4)Recommendations on Accepting or Objecting to Amendments: your use of the UGREEN NAS app constitutes your acknowledgment and acceptance of the amended agreement. If you disagree with any part of the amendment, you should refrain from accessing UGREEN NAS services and consider discontinuing use.
14.2.Notice Methods and Their Significance:
(1)Notice Means and Methods: We may send important messages and notices through various means, including without limitation: system notifications within UGREEN NAS, pop-ups on specific pages, application or website announcements, site messages, email, and text messages. We will select one or more notification methods based on the nature and importance of the message.
(2)Changes in Contact Information: To ensure effective receipt of notices, please promptly update your contact information, such as email address and phone number, in UGREEN NAS if it changes. You shall be solely liable for any consequences arising from the non-delivery or delayed delivery of any notices due to your failure to update your contact details.
(3)Significance of Notices: Notices may involve changes to your rights and obligations within UGREEN NAS. Therefore, please ensure your contact information is current and regularly check the above notices to fully understand your rights and interests.
-
15. Class Action and Class Arbitration Waiver
- 15.1.And Independent Dispute Resolution To facilitate fair and prompt dispute resolution, both you and UGREEN agree that any disputes, claims, or controversies related to this Agreement, UGREEN products and services, or your relationship with UGREEN shall be resolved independently and not as a class action, class arbitration, or any other legal action initiated by another representative or group unless otherwise expressly provided by law.
- 15.2.You and UGREEN each expressly waive your right to participate in a class action lawsuit or arbitration. Unless otherwise agreed in writing by both you and UGREEN, neither party may consolidate multiple claims or proceedings into any form of class action or class arbitration.
- 15.3.You acknowledge that you have fully read, understood, and agreed to the class action and class arbitration waiver before entering into this agreement, and have independently considered the consequences of these terms.
-
16. Contact us
- 16.1.Please contact us via the contact details below if you have any questions, comments, or suggestions about this agreement or our services.
(1) Contact us via "Help Center - Contact Us" within UGREEN NAS;
(2) We have designated a data protection officer, who can be contacted via email at: ugreennascss@gmail.com;
(3) Contact us by mail as follows:
Registered Addresses: 108 WEST 13TH ST WILMINGTON, DE 19801, USA County of Delaware
-
17. Governing Law and Dispute Resolution
- 17.1.The effectiveness, execution, interpretation, performance, and dispute resolution of this Agreement shall be governed by the laws of Hong Kong. *HONG KONG UGREEN LIMITED, SAN PO KONG KOWLOON BAY, 19H WAN DI PLAZA 3 TAI YU STREET, KOWLOON BAY, Kowloon Hong Kong SAR
- 17.2.Any dispute arising from or in connection with this Agreement shall be submitted to the Shenzhen Court of International Arbitration for arbitration.
-
18. Miscellaneous
- 18.1.Should any term in this Agreement be deemed invalid due to a conflict with applicable law, it shall be interpreted and enforced in a manner as close as possible to the original purpose of this Agreement without violating such law, without affecting the remainder of the Agreement.
- 18.2.The terms of this Agreement shall be interpreted and enforced to the maximum extent permitted by applicable law.
- 18.3.Independent Entities You and UGREEN are independent entities. Under no circumstances shall this Agreement constitute any express or implied warranty or condition granted to you, nor shall it constitute any agency, partnership, joint venture, or employment relationship between you and UGREEN.
UGREEN NAS User Agreement
Initial Effective Date:17/05/2024
Last Updated Date: 14/08/2024
Welcome to UGREEN NAS! This UGREEN NAS User Agreement (hereinafter "this Agreement") governs the use of UGREEN NAS Software. The term "UGREEN NAS" in this Agreement refers to the Clients (including App clients, PC clients, and Web clients), websites, software development kits (SDK) for third party websites and apps, application programming interfaces (API), and mini-programs legally owned and operated by America Ugreen Limited (hereinafter "UGREEN" or "we") and its affiliates, providing global services. UGREEN NAS enables access and use of our products and services, including those emerging due to technological advancements (collectively referred to as "UGREEN NAS").
Under the EU's DSA,ugreennascss@gmail.com has been designated as a single point of contact to enable us to communicate directly with German authorities, the European Commission and the European Board for Digital Services,as also as users located in EEA.
-
Overview
- This Agreement: This Agreement between you and UGREEN outlines rights and obligations regarding the download, installation, activation, registration, login, and use (hereinafter "Use") of UGREEN NAS. In addition to this Agreement, refer to other documents including, but not limited to, agreements, privacy policies, terms of use, announcements, statements, and site notices related to UGREEN NAS, issued or to be issued by us. These documents, subject to occasional revisions, together with this Agreement, constitute the complete agreement between you and UGREEN and have the same legal effect.
- Review and agreement: Please read this Agreement carefully and ensure you understand it in full before using UGREEN NAS. We recommend you to pay careful attention to important or specific terms in this Agreement, which are marked in a distinctive manner or in boldface. If you are a minor under the laws of your residence country or jurisdiction, read and understand this Agreement with your guardian and obtain their explicit consent before using UGREEN NAS.
- You are deemed to have read, fully understood, and accepted this Agreement upon using UGREEN NAS. Discontinue using UGREEN NAS if you disagree with any part of this Agreement or cannot assume the applicable liability.
- Questions and reports: You are welcome to submit feedback through the UGREEN NAS client, official website, or email UGREEN directly at ugreennascss@gmail.com should you have any concerns, opinions, or recommendations regarding this Agreement or UGREEN NAS.
-
Products and Services
- Access and Use: UGREEN NAS's products and services are accessible in various ways, including but not limited to:
- Accessing UGREEN NAS's official website;
- Downloading and installing the UGREEN NAS Client from app stores and websites authorized by us;
- Software Development Kit (SDK) or Application Programming Interface (API) integrations in third party platforms or applications.
We cannot guarantee the authenticity or integrity of UGREEN NAS products or services obtained from unofficial or unauthorized sources. Using such products and services involves risks. We are not liable for any losses incurred from using unofficial products or services unless otherwise provided by law.
- Version and Device Customization: UGREEN NAS apps are customized for different devices. For optimal user experience, select the version tailored to your device when acquiring, downloading, and installing the software to ensure the best user experience.
- Authorization and Restrictions: The license granted to you is a limited, non-exclusive, non-transferable, non-sub-licensable, but revocable right to use UGREEN NAS legally. We reserve all rights not expressly granted in this Agreement. Without our written consent, any unauthorized use of UGREEN NAS, including but not limited to modification, reproduction, distribution, crawling, searching, mirroring, or trading, is prohibited.
- Updates and Changes: We may periodically update, modify, or change UGREEN NAS to enhance user experience, optimize services, and meet security and compliance requirements. This includes, but is not limited to, product modifications, service suspension, termination, new features, and updates. Updated versions may be provided for these changes. You are entitled to the choice to update or not. However, failure to update may result in restricted or unavailable features. You may choose to delete the UGREEN NAS app.
-
UGREEN Cloud account Management
- Account Registration and Login
- To use UGREEN NAS, register an account using your phone number or other methods recognized by UGREEN NAS (which may vary by country or jurisdiction).
- We offer third party platform authorization login features, provided you have a valid third party software or platform account and comply with applicable laws.
- Your account name and password are credentials for UGREEN NAS access and use, so please ensure their security and confidentiality.
-
This account, a UGREEN NAS global unified account, is necessary for us to provide you with services globally.
- Account Information and Security
- Register with real, accurate, complete information, and update it promptly if changes occur. We are entitled to restrict or terminate your use of your account if you provide us with false information.
-
Maintain account information security to prevent unauthorized access or use of your account. Inform us
immediately and take appropriate precautions if you detect anomalies or security breaches.
- Account Behavior: Do not create a UGREEN Cloud account on behalf of others or use others' names, company names, trademarks, or photos without their express written permission. Do not mislead users about account ownership when using your account, particularly concerning well-known organizations or individuals, and avoid any actions that may infringe upon others' personality, property, or other legal rights. We are entitled to review submitted account information and take legal action pursuant to law, including without limitation warnings and reminders, demands to make corrections within a specific time limit, account information resetting, account functionality restrictions, suspension, closure, and registration bans, if the information you submit violates laws, administrative regulations, government decrees, or this Agreement.
- Account Transfers and Sharing
- The UGREEN Cloud account is exclusively for the original registrant. Transferring, lending, or sharing the account is prohibited.
-
If account misuse by non-registrants is suspected or evident, we are entitled to suspend or terminate the
services.
- Account and Password Security and Confidentiality You must take all possible steps to safeguard the security and confidentiality of your UGREEN Cloud account and password. All operations performed using your account and password shall be deemed as your own actions, for which you assume full liability. This includes without limitation liability for any content uploaded, downloaded, shared, or published on the UGREEN NAS Platform. Immediately report any suspected illegal account or password use or security concerns. Follow our recovery guidelines and procedures if you forget your account or password details. You understand and acknowledge that our account recovery process depends significantly on comparing the information you provide with our system records for verification purposes. We cannot ensure that you will be successful in recovering your account, nor can we verify that the complainant is the true owner of the account. Therefore, please provide accurate, complete, and updated information when registering and using your account. You shall be fully liable for any losses and risks arising from inaccurate account information and poor account safeguarding.
- Use of Related Versions and Services Unless expressly stated otherwise, understand that by logging into your UGREEN Cloud account and using any related versions or features, you are bound by this Agreement, the user agreements for the related versions, and other applicable legal documents. The related version user agreement or applicable legal document shall control in the event of any conflict or discrepancy between this User Agreement and related version user agreements or other legal documents.
- We may employ a collaborative management approach to managing UGREEN NAS and its related versions. For instance, violations of applicable laws or this Agreement while using UGREEN NAS can impact your use of related versions and services, and vice versa.
- You may request cancellation of your UGREEN Cloud account. Cancellation requests are limited to your own account and must follow proper procedures to verify account ownership. Upon cancellation, we will delete or anonymize your account information, unless laws or guidelines mandate different retention or disposal methods. You will be unable to use the account to log into UGREEN NAS or retrieve any related content or information post-cancellation. You remain liable for activities conducted on UGREEN NAS prior to account cancellation.
-
Usage Guidelines
- You fully understand that you are responsible for all devices (such as personal computers, mobile phones, and other devices used to access the Internet, or mobile networks) and the costs associated with your use of the UGREEN NAS (such as telephone and internet access fees, and mobile network access fees).
- UGREEN has no access to the files and data stored by the user in the NAS device. In addition, UGREEN NAS will not upload, download, copy, share, or provide any content, nor can it modify, edit, or interfere with the content transmitted by the user.You fully understand and agree that all data and content you upload, store, and share, including without limitation files, documents, and other types of information, as well as data you upload to be used on servers not controlled by us are under your personal decision-making and control. These operations and decisions are entirely under your control, even those including cross-border data transfers, and you should ensure that you comply with all applicable laws. As the party in full control of such data, you shall be liable for any legal obligations and consequences that may arise therefrom. Manage your data and content on UGREEN NAS carefully and responsibly to avoid violating the law or infringing upon third party rights.
- You must not store, transmit, share, or access content or engage in activities of the following nature, and should discourage such activities and content:
- Uploading, downloading, storing, copying, publishing, transmitting, emailing, or otherwise providing content prohibited by laws, regulations, and policies, including without limitation:
①Content that violates the basic principles specified in the Constitution of the People's Republic of China;
②Content that endangers national security, divulges secrets, subverts state power, or undermines national unity;
③Damages national honor and interests;
④Content that incites ethnic hatred, discrimination, or undermines ethnic unity;
⑤Information that undermines Chinese religious policies or promotes cults or superstitions;
⑥Content that spreads rumors, disrupts social order, and undermines social stability;
⑦Content that spreads obscenity, pornography, gambling, violence, murder, or terror, or instigates criminal activity;
⑧Content that insults or defames others, or infringes upon the legal rights of others;
⑨Content that jeopardizes social morality or national cultural traditions;
⑩Content that infringes upon third party legal rights, including without limitation copyrights, trademark rights, patent rights, and reputation rights;
⑪Content involving information prohibited by applicable law or administrative regulations;
- Infringing upon others' privacy, trade secrets, trademark rights, copyrights, patent rights, and other legal rights;
- Engaging in unlawful commercial activities, such as trafficking arms, drugs, banned medicines, or prohibited items;
- Committing or planning to commit illegal acts like money laundering, cash withdrawals, and wire fraud;
- Removing UGREEN NAS copyright, trademark, or other proprietary notices;
- Copying or falsifying all or part of UGREEN NAS content or merging it with other applications;
- Accessing or attempting to access or damage any part of UGREEN NAS or related systems or networks;
- Decomposing, decoding, reverse engineering UGREEN NAS or any part of it, decompiling its executables, creating derivative works, or engaging in similar activities prohibited by applicable law;
- Distributing, licensing, leasing, selling, reselling, transferring, publicly displaying, publicly performing, transmitting, broadcasting, disseminating, or otherwise using UGREEN NAS;
- Submitting or making UGREEN NAS available to others, in whole or in part (including the source code and content), without UGREEN's prior written permission;
- Impersonating another person, falsely claiming, or otherwise misrepresenting your relationship with an individual or company;
- Using UGREEN NAS (or any component thereof) unlawfully, in violation of this Agreement, or to commit any fraudulent or malicious acts, including without limitation hacking or embedding malicious code, viruses, or harmful data into UGREEN NAS (or websites linked to UGREEN NAS) or its operating systems;
- Infringing upon UGREEN or third party intellectual property rights when using UGREEN NAS;
- Collecting user information, using automated means to access UGREEN NAS, or attempting to extract or decrypt any content sent to or from UGREEN NAS servers;
- Developing, supporting, or using software, devices, scripts, or any other means or processes (including crawlers, browser plug-ins, or any other technology or human operation) to extract or otherwise copy user information and other data from UGREEN NAS;
- Using UGREEN NAS for commercial purposes without UGREEN's prior written permission;
- Engaging in illegal transactions through UGREEN NAS, such as trafficking arms, drugs, illegal goods, pirated software, or other prohibited items;
- Providing gambling information or encouraging others to gamble in any way;
- Requesting login information or accessing another's account;
- Money laundering, illegal withdrawals, or pyramid schemes;
- Violating this Agreement (or any part thereof), or aiding or encouraging such conduct;
- Using UGREEN NAS in a way that damages, weakens, or compromises its security, overloads it, or interferes with other users or systems, or enables unauthorized access to UGREEN NAS or data;
- Other violations of national laws, regulations, rules, policies, decrees, or this Agreement.
-
Network Security and Use Restrictions
- Use Restrictions: For UGREEN NAS's integrity and stability, you agree:
- Not to use, deploy, or distribute plug-ins, cheating programs, systems, or third party tools that interfere with UGREEN NAS's normal operation.
-
Not to use automated programs, scripts, software, or similar tools to access UGREEN NAS for collecting,
storing, processing, or transmitting information or content without our prior written permission.
- Network Security: You must not engage in or assist others in behaviors compromising UGREEN NAS or other computer networks' security. This includes, but is not limited to, circumstances involving:
- Unauthorized intrusion, interference with, or disruption of any network, system, or data, including attempts to do so without authorization, or unauthorized attempts to affect the normal functionality of any network, system, or data;
- Manufacturing, selling, distributing, providing, or promoting programs, codes, or tools specialized in intrusion, interference, or disruption of networks, systems, or data;
- Providing, directly or indirectly, technical support, funds, advertising or any other form of assistance to a third party, whether known or should have known that such third party engages in the above acts;
- Unauthorized access, copying, modification, or use of others' data, servers, or account information;
- Probing, scanning, or testing the UGREEN NAS network, or attempting to exploit any known or unknown vulnerability without explicit permission;
- Intentionally spreading, transmitting, or launching harmful software, such as malicious programs, viruses, worms, and Trojans;
- Falsifying, modifying, or tampering with data packets, critical information, and similar network data;
- Attempts to reverse engineer, disassemble, or decrypt UGREEN NAS, or attempts to obtain its source code;
- Malicious or frequent registration of UGREEN Cloud accounts, or creating, selling, promoting, or using such accounts in bulk; and
-
Any other acts that may damage, interfere, disrupt, or pose threats to UGREEN NAS or third party networks,
systems, or data;
- Use of Information and Data: Users or third parties must not assist with or encourage others to engage in any of the following acts without our explicit written consent:
- Use any information from UGREEN NAS to mislead or deceive users, or to conduct malicious advertising, promotion, publishing, or displays for the purposes of obtaining unfair competitive advantages;
- Editing, modifying, rearranging, adapting, or otherwise changing information from UGREEN NAS without authorization and displaying, distributing, or publishing it on any channel, platform, or media other than the UGREEN NAS platform;
- Intervening, modifying, redirecting, hijacking, embedding, triggering pop-ups, or any other actions that affect the normal use of UGREEN NAS through any technologies, methods, or means, including without limitation specific scripts, codes, or plug-ins;
- Stealing, monitoring, copying, distributing, displaying, mirroring, uploading, downloading, or using any information from UGREEN NAS through illegal or improper means, such as malicious links, redundant requests, crawling, fake downloads, deep links, and fake registrations;
- Concealing, modifying, or removing any UGREEN NAS attributes or marks, such as domain names, logos, copyright statements, or user information when displaying or sharing UGREEN NAS content;
- Conducting unauthorized statistical analysis using UGREEN NAS information, including trend statistics, hit rates, classifications, search volumes, click-through rates, and read rates;
- Selling, renting, distributing, or transferring UGREEN NAS data or providing or licensing it to third parties for commercial purposes;
- Interfering, disrupting, tampering with, or otherwise affecting the completeness, accuracy, or validity of UGREEN NAS information;
- Any other acts that may violate laws or policies, or infringe upon any third party's right to acquire, use, process, or share UGREEN NAS information.
-
Legal Compliance
- You agree to abide by all applicable local laws when using UGREEN NAS services, including export control and sanction laws, regulations, rules, and policies, including the US Export Control Regulations and sanctions imposed by the Office of Foreign Assets Control of the US Department of the Treasury or the European Union, as well as all other applicable national or international sanctions.
- You covenant not to directly or indirectly export, re-export, or transmit UGREEN NAS information to any countries, individuals, or entities subject to applicable export controls or sanctions. You covenant not to use UGREEN NAS for activities involving restricted technologies, such as weapons of mass destruction, missiles, or chemical or biological weapons.
- You agree to assume sole liability and all risks, including without limitation legal action, fines, or penalties, resulting from your noncompliance with the covenants in this Agreement, including without limitation those related to export controls and compliance. UGREEN shall not be liable for such noncompliance under any circumstances.
- We may update this section periodically, given the dynamic nature of global export control and sanctions laws. We recommend reviewing this Agreement periodically to ensure that your actions always comply with the latest compliance requirements.
-
Penalties for Breach of this Agreement
- Definition of Noncompliance and Penalties
- If you violate any terms of this Agreement while using UGREEN NAS services, or if there are reasonable grounds to believe that your actions may cause harm or legal implications for UGREEN NAS, other users, or any third party, such actions will be deemed a breach of the Agreement. In the event of a breach, we reserve the right to take one or more of the following actions based on the nature, severity, and frequency of the breach to protect UGREEN NAS and other users' rights:
①Issue a breach warning;
②Requesting a written explanation;
③Suspending or terminating some or all services provided to you without prior notice;
④Freezing, restricting, or deleting your account;
⑤Requiring immediate cessation of the breach and corrective action;
⑥Filing reports with legal, administrative, and other agencies, and cooperating in any subsequent investigations;
⑦Re-verification, providing deadlines for correction, account closure, and prohibiting re-registration;
⑧Holding liable pursuant to law, and requiring you to indemnify UGREEN NAS or any third parties against any damages incurred as a result.
⑨Any other actions deemed necessary.
-
You shall be liable for any consequences resulting from your breach of this Agreement, including without
limitation UGREEN Cloud account functionality restrictions, account deletion, or infringement or any rights
associated with your account. We are not obligated to restore content in accounts deleted or restricted due to
penalties unless required by law or administrative orders.
- Transparency and Cooperation in Resolving Breaches
- In the interest of fairness, impartiality, and transparency, we will notify you of the outcomes of any breaches through appropriate platforms or channels. However, we reserve the right to withhold such information to the extent permitted by law.
-
If your breach of this Agreement constitutes a crime or violation of the law, we reserve the right to report
your violation to the appropriate government or administrative agency, and we shall furnish them with any
necessary records, documentation, and information. Moreover, we will fully cooperate with all official
investigations by providing the necessary information to support such.
- Commitment to Protect the Rights of Third Parties and Users' Responsibilities
- Respect for third party rights: We are committed to respecting and protecting the intellectual property rights, reputation, name, privacy, and other legitimate rights of all users and third parties while using UGREEN NAS services. We will strive to prevent and address any infringement of third party rights pursuant to law and this Agreement.
- User Responsibilities: You commit to complying with all applicable laws, international treaties, and this Agreement while using UGREEN NAS services. Moreover, you covenant not to engage in any conduct that may infringe upon third party rights or to engage in illegal activities through the use of our services.
- Resolving Third Party Complaints: If we receive any third party complaints, reports, or lawsuits involving you, we reserve the right to take the following actions:
①Notify you of the complaint or report details and sources via email or other means;
②Take steps to preserve evidence, including but not limited to suspending services and temporarily freezing accounts based on circumstances at the time and legal requirements;
③Request written explanations, feedback, and documentation from you.
- Your Liability: If UGREEN NAS suffers financial losses, including without limitation indemnification, penalties, legal fees, litigation damages, or non-financial losses like diminished goodwill and business reputation due to your actions, you shall be liable to indemnify UGREEN NAS against any such losses, including direct and indirect losses (such as losses of business reputation or market share).
- Cooperation in Legal Matters: You shall fully cooperate to the extent permitted by law and within a reasonable timeframe should we require your assistance in addressing any third party complaints, reports, or lawsuits involving you.
- Interpretation of Circumstances: We will take any action deemed reasonable in response to third party complaints or reports. None of our actions shall be deemed an acknowledgment or denial of your conduct or identity.
- Defending Your Rights: If you disagree with any action we take, you may file objections or complaints via UGREEN NAS's official channels or the contact information provided. We will make further decisions after reviewing all information you submit.
- Personal Information Protection
Please refer to the UGREEN NAS Privacy Policy for details on how we collect, use, store, and protect your personal information, as well as your rights in this regard.
-
Intellectual property
- We own all intellectual property rights for all UGREEN NAS products and services, including but not limited to software, technology, programs, web pages, text, images, audio, video, graphics, layouts, and electronic files.
- We provide technical support for the development and operation of UGREEN NAS and have all rights to all data and information generated during this process to the extent permitted by laws and regulations.
- We own the intellectual property rights to all UGREEN NAS and other UGREEN brand marks, including trademarks, service marks, trade names, domain names, and website names, collectively referred to as "Marks." You shall not use, display, copy, transfer, or otherwise process these Marks in any form, whether individually or in combination with other Marks, without our written authorization. Specifically, you shall not apply for registration of trademarks or domain names, or expressly state or imply to any third party that you are entitled to display, use, or manage with such Marks. You shall be fully liable and indemnify us and any third parties against all damages and losses resulting from your breach of this Section or misuse of such Marks.
-
Terms for Independent and Third Party Services
- UGREEN NAS contains information or links we have legally obtained, as well as other independent services we are licensed to operate. These services may be presented as separate features within UGREEN NAS (such as the UGREEN NAS Application Center). UGREEN NAS may also integrate or include links to third party content. We reserve the right to add, reduce, or adjust the content and information contained within independent services and other features at any time to expand our service offerings or optimize user experiences. While we will endeavor to notify users of these changes in advance, some modifications may be implemented immediately under certain circumstances.
- You may activate and use the above independent services and features via UGREEN NAS. You may be required to enter into additional agreements or accept separate terms between you and the service provider when using certain independent services or features. The primary service provider for independent services can be determined through the independent service agreements or information disclosed within such services. When necessary, we will make these agreements or terms available for you to review in a reasonable manner. Your use of the above services shall be deemed as your agreement and understanding of the associated agreements and rules.
- Some services or features in UGREEN NAS may be provided by third parties either independently or in partnership with us. Such services may require separate user agreements, privacy policies, or other binding rules. Carefully review all agreements and rules before using third party services, and ensure you fully understand and agree with them, assessing any risks involved. Exercise judgment and assess any potential risks when using third party websites or applications. You shall independently resolve any disputes, damages, or losses arising from the use of third party services with the third parties concerned. UGREEN NAS shall not be held liable for any direct or indirect damages caused by third parties.
- Be aware that some third parties may use your account ID for data collection and processing. The third party service provider shall be responsible for the data collection, storage, use, and transmission. UGREEN is not involved in the processing of such data, nor will it access, control, or modify this data. Please choose and use third party services carefully, as your personal information and data security will be subject to the third party service provider's terms and policies when using such services.
- We recommend consulting with legal experts or professionals before enabling any third party service should you have any concerns regarding the third party service provider's agreement or terms. UGREEN NAS may not be able to directly notify you of any changes to third party agreements or terms. Therefore, we recommend regularly reviewing the agreements or terms for any third party services you use to ensure your rights are protected.
-
Terms of Use for Minors
- As UGREEN NAS is primarily intended for adults, individuals deemed minors in their residence country or jurisdiction should use UGREEN NAS only with their guardian's agreement and understanding of this Agreement. If a minor uses UGREEN NAS without their guardian's consent, we reserve the right to restrict the account's features as directed by the guardian.
- We prioritize the protection of minors' privacy and personal information. If you are a minor under the laws of your country or area, or a guardian registering and using the account on behalf of a minor, please read our UGREEN NAS Privacy Policy carefully. Guardians should protect minors' personal information when providing it.
- Notes for Guardians of Minors As a guardian, you should guide and supervise any minors under your guardianship who register on UGREEN NAS. We are entitled to assume that minors under your guardianship registering on UGREEN NAS have obtained your consent.
- Please email us at ugreennascss@gmail.com if you have any further questions on the protection of minors’ rights.
-
Limitation and Exemption of Liability Statement
- You expressly acknowledge and agree that UGREEN NAS Products and Services are provided "as is" and "as available," based on current technology and conditions. In order to more clearly define the scope of liability, we expressly disclaim any express or implied warranty regarding:
- UGREEN NAS Products and Services fully meeting specific user needs or expectations, or their uninterrupted availability;
- The provision of UGREEN NAS Products and Services being unobtrusive, prompt, stable, secure, error-free, or compatible with the functionality or performance of other software products, services, or data;
- The prompt correction or complete resolution of technical errors, defects, or problems in UGREEN NAS Products and Services;
- The absolute accuracy and completeness of all data, and the absence of any risk of loss, tampering, or leakage when using UGREEN NAS Products and Services;
- The perpetual availability and retention of features or components of UGREEN NAS Products and Services;
- The performance or service commitments of third party partners or suppliers of UGREEN NAS Products and Services;
- The compatibility of UGREEN NAS Products and Services with all devices or systems, and the lack of any potential for damage or risks to any devices or systems;
- The validity, accuracy, or reliability of any content, materials, or information in UGREEN NAS Products and Services.
You are solely responsible for determining and assessing the risks associated with the use of UGREEN NAS Products and Services and for any decisions on the use, method, and extent of your use of our products are services based on your judgment.
- We aim to provide high-quality, stable, and secure UGREEN NAS Products and Services. However, due to external factors, technological complexity, and unpredictability, we cannot guarantee that UGREEN NAS Products and Services will never be uninterrupted or unaffected. Therefore, you should understand and agree that, to the fullest extent permitted by law, we shall not be liable for interruptions, suspensions, delays, or instabilities in services, resulting in any losses to you or third parties under the following circumstances:
- Force majeure events, including without limitation:
①Natural disasters, such as floods, earthquakes, hurricanes, blizzards, fires, or droughts;
②Government action, policy changes, or emergency orders;
③International or domestic conflicts, wars, terrorist attacks, or riots;
④Civil unrest events, including strikes, demonstrations, and public health crises (including epidemics);
⑤Other unforeseeable and uncontrollable events.
- Technical or external events, including without limitation:
①Power outages, unstable power supply, or grid faults;
②Network communication failures, delayed or lost data transmissions;
③Third party service instability, interruptions, or terminations;
④Cyberattacks such as hacking, viruses, malware, and phishing;
⑤Hardware failures, system crashes, or unavoidable software defects.
- To ensure the long-term and stable operation of UGREEN NAS Products and Services, we may:
①Perform system checks, repairs, or maintenance;
②Update, upgrade, or optimize software;
③Replace, maintain, or upgrade hardware;
④Temporarily restrict certain features for security or performance reasons;
⑤Conduct data migration or backups while ensuring data security.
We will provide prior notice when feasible for any of the above circumstances and resume services as soon as possible.
- Cybersecurity Exercise caution with internet information or documents claiming to be related to financial or property transactions. Please maintain a high degree of vigilance and carefully verify the authenticity of any information or documents found on UGREEN NAS involving loans, investment and financing, and financial management, or any other information or documents that may involve financial transactions that request account passwords or require you to click a link. Unless otherwise expressly provided by applicable law, we assume no liability for any direct or indirect losses suffered due to the above information or documents, including without limitation lost profits, business reputation, data, or other tangible or intangible losses.
- Reservations of Legal Decisions This Agreement aims to ensure the legal operation of UGREEN NAS, compliance with applicable law, maintenance of public order and morals, and protection of legal rights of all users and third parties. We will make decisions or take action pursuant to law based on our understanding and capacity. However, please understand that our decisions or decision-making processes may differ from the views of judicial or administrative agencies. We recommend seeking professional legal advice or assistance from appropriate judicial or administrative agencies directly in the event of a legal dispute.
- Service Geographic Limitations and User Responsibilities. Unless expressly stated or agreed upon separately in writing, UGREEN NAS primarily serves those users in jurisdictions we have officially disclosed. We acknowledge that some users may try or continue to use UGREEN NAS in jurisdictions other than those officially disclosed due to the widespread use of the technology. In such cases, you shall clearly understand and acknowledge that such use is based on your sole judgment, and you assume all associated risks. You are liable for ensuring full compliance with local laws, rules, and regulations when using UGREEN NAS in jurisdictions other than those officially disclosed. You shall assume sole liability and all risks arising from your violations of local laws.
- We do not warrant the legality or appropriateness of UGREEN NAS in jurisdictions other than those officially disclosed unless expressly agreed or warranted otherwise. You acknowledge your use of UGREEN NAS in jurisdictions other than those disclosed officially is done so at your own risk, and you warrant that your use of UGREEN NAS shall comply with all applicable local laws, and you assume all risks and liability.
- Limitation of Liability To the fullest extent permitted by law, we will not assume liability for the following damages, regardless of the cause of such damages and regardless of whether such damages were foreseeable: indirect damages, consequential damages, punitive damages, specific damages, incidental damages, or any other form of indirect damages. For the avoidance of doubt, the above damages include without limitation: profit losses, data or information losses, business interruptions, damage to reputation or goodwill, loss of investments, and other expenses and forms of financial losses. The above limitations shall apply even if we are aware of the potential for such damages or have been expressly advised of the possibility of such damages. Except as otherwise required by law, our total liability to you or any third party shall not exceed the total fees (if any) paid to us by you during your use of UGREEN NAS under any circumstances, regardless of the cause or type of action.
-
Indemnification
- Indemnification Commitment You agree to assume all liability and indemnify UGREEN and its affiliates, including subsidiaries, parent companies, agents, managers, directors, employees, or consultants against any losses arising from your or any user of your account's breach of this Agreement, applicable laws, or other policies and regulations.
- Description of Indemnification The aforementioned losses and expenses include without limitation reasonable attorney's fees, investigation fees, lawsuit or arbitration costs, claim payments, fines, indemnification fees, and any other expenses resulting from such breaches.
- Indemnification Procedure: If UGREEN or its affiliates become the subject of a third party lawsuit, claim, or other legal proceeding resulting from your actions or those of a user of your account, UGREEN is entitled to seek indemnification for such to protect its interests. UGREEN also reserves the right to inform you of such lawsuits, claims, or legal proceedings and take legal action if you fail to respond promptly, which shall not be deemed as a waiver of your indemnification obligations.
-
Notices and Agreement Amendments
- Agreement Amendments and Updates:
- Reasons and Basis for Amendments: To maintain legal compliance, respond to technological advancements, and provide superior customer service, this Agreement is regularly reviewed and may be amended as necessary.
- Amendments as Part of the Agreement: All amendments, updates, or supplements shall be deemed integral parts of this Agreement once issued.
- Notice and Review of Amendments: We will publish the latest version of this Agreement on our cloud app and official website following any amendment. We may also use other appropriate methods, such as announcements and notifications in the cloud app, to ensure you are aware of any amendments. Additionally, you may access and review the latest Agreement terms on the UGREEN NAS client or our official website at any time.
-
Recommendations on Accepting or Objecting to Amendments: your use of the UGREEN NAS app constitutes your
acknowledgment and acceptance of the amended agreement. If you disagree with any part of the amendment, you
should refrain from accessing UGREEN NAS services and consider discontinuing use.
- Notice Methods and Their Significance:
- Notice Means and Methods: We may send important messages and notices through various means, including without limitation: system notifications within UGREEN NAS, pop-ups on specific pages, application or website announcements, site messages, email, and text messages. We will select one or more notification methods based on the nature and importance of the message.
- Changes in Contact Information: To ensure effective receipt of notices, please promptly update your contact information, such as email address and phone number, in UGREEN NAS if it changes. You shall be solely liable for any consequences arising from the non-delivery or delayed delivery of any notices due to your failure to update your contact details.
- Significance of Notices: Notices may involve changes to your rights and obligations within UGREEN NAS. Therefore, please ensure your contact information is current and regularly check the above notices to fully understand your rights and interests.
-
Class Action and Class Arbitration Waiver
- And Independent Dispute Resolution To facilitate fair and prompt dispute resolution, both you and UGREEN agree that any disputes, claims, or controversies related to this Agreement, UGREEN products and services, or your relationship with UGREEN shall be resolved independently and not as a class action, class arbitration, or any other legal action initiated by another representative or group unless otherwise expressly provided by law.
- You and UGREEN each expressly waive your right to participate in a class action lawsuit or arbitration. Unless otherwise agreed in writing by both you and UGREEN, neither party may consolidate multiple claims or proceedings into any form of class action or class arbitration.
- You acknowledge that you have fully read, understood, and agreed to the class action and class arbitration waiver before entering into this agreement, and have independently considered the consequences of these terms.
-
Contact us
- Please contact us via the contact details below if you have any questions, comments, or suggestions about this agreement or our services.
(1) Contact us via "Help Center - Contact Us" within UGREEN NAS;
(2) We have designated a data protection officer, who can be contacted via email at: ugreennascss@gmail.com;
(3) Contact us by mail as follows:
Registered Addresses: 108 WEST 13TH ST WILMINGTON, DE 19801, USA County of Delaware
-
Governing Law and Dispute Resolution
- The effectiveness, execution, interpretation, performance, and dispute resolution of this Agreement shall be governed by the laws of the People's Republic of China.
- Any dispute arising from or in connection with this Agreement shall be submitted to the Shenzhen Court of International Arbitration for arbitration.
-
Miscellaneous
- Should any term in this Agreement be deemed invalid due to a conflict with applicable law, it shall be interpreted and enforced in a manner as close as possible to the original purpose of this Agreement without violating such law, without affecting the remainder of the Agreement.
- The terms of this Agreement shall be interpreted and enforced to the maximum extent permitted by applicable law.
- Independent Entities You and UGREEN are independent entities. Under no circumstances shall this Agreement constitute any express or implied warranty or condition granted to you, nor shall it constitute any agency, partnership, joint venture, or employment relationship between you and UGREEN.
- UGREEN has no access to the files and data stored by the user in the NAS device, and the user or the entity represented by the user is the legal responsible party (referred to as data processor in China and data controller in the EU) of these files and data. To transmit personal information, data related to national security or public safety (such as important data and core data), or trade secrets overseas, the user or the entity represented by the user shall take appropriate measures to ensure that the cross-border data transfer complies with the legal requirements for data transfer in both the exporting and importing countries or regions, and does not infringe upon the legitimate rights and interests of any third party.
UGREEN NAS Product Warranty
Dear Customer:
Thank you for choosing UGREEN NAS hardware products provided by Ugreen Group Limited and its affiliates (hereinafter referred to as "UGREEN" or "We"). We offer this Warranty to ensure product quality and provide for both Parties' responsibilities for product quality.
This Warranty (hereinafter referred to as this "Warranty") applies to all NAS products provided to you by UGREEN. Opening the product packaging box and/or using it indicates that you accept and agree to be bound by this Warranty. UGREEN reserves the right to adjust and/or modify the product warranty at any time without prior notice to you. Do not use the product if you do not agree to the terms of this Warranty. You may return the product to the distributor you purchased it from to request a refund in accordance with the Return Policy of the distributor.
-
Definitions
- Product: refers to UGREEN NAS hardware products (including the power adapters and network cables necessary for their use) included in their original packaging as purchased from UGREEN or its authorized distributors or resellers, as well as hard disks provided by UGREEN.
- Customer/You: refers to the original individual or entity that purchased the products from UGREEN or its authorized distributors or resellers.
- Online Store: refers to any online store operated or licensed by UGREEN, its distributors, or resellers.
- Software: refers to the UGREEN NAS software provided with the purchased product, software that customers download from our website, or software pre-installed in products by UGREEN, including any software updates and upgrades.
-
Warranty Services
- Proof for Warranty Services
Please store the SN included with the product in a safe place, as it serves as your proof of purchase for warranty services.
-
Warranty Start Date
- Main Device
Begins when the device is first activated and ends on the second day following the expiration of the product warranty. You can link your product's operating software, register as an administrator, and check your product's warranty expiration date at any time. The warranty period commences on the date displayed on the purchase receipt, invoice, or other valid purchase record in the event that your device cannot be connected to external networks. You are required to present the receipt, invoice, or other valid purchase record as proof of purchase.
- Power Adapter and Network Cables
The warranty period commences on the date shown on the purchase receipt, invoice, or other purchase record.
- Hard Disks Provided by UGREEN
You acknowledge that UGREEN is not a hard drive manufacturer and that hard disks purchased from UGREEN are supplied by third-party hard drive manufacturers and are subject to the warranty period provided by the hard disk manufacturer.
- Warranty Period and Warranty Services
If damage not resulting from accident or negligence, such as material, process, or manufacturing issues, causes the product to malfunction under regular use and maintenance conditions, we will provide you with the following services, provided that you provide us with all necessary information during the warranty period:
- Repairs During the Warranty Period
You can contact UGREEN after-sales services for free repairs in the event of non-man-made performance malfunctions during the warranty period. Product warranty periods are as follows:
Warranty Category |
Model |
Warranty Period |
Main Device |
DH Series /DX Series |
2 Years |
DXP Series (e.g.DXP2800/4800/4800Plus/DXP480TPlus) |
2 Years |
|
DXP6800 Series /DXP8800 Series |
3 Years |
|
Power Adapter |
1 Year |
|
Network Cable |
1 Year |
|
Hard Disk |
Subject to the warranty period provided by the hard disk manufacturer |
- The warranty period for replaced products shall be re-calculated from the date of replacement. The warranty period following parts repair or replacement shall follow the remaining warranty period for the entire device. If other online platforms or the laws in your location provide otherwise, the rules of the online platform you purchased the product from or the laws in your location shall prevail.
-
Return and Exchange Instructions
- Please check whether the following items are missing before any returns or exchanges to facilitate the return or exchange process. We may not be able to provide you with after-sale services should any items be missing.
|
Complete Main Device and Accessories |
Integral Packaging and Appearance |
Receipt (Unmarked) |
Gifts (If Any) |
Warranty Card |
Returned |
√ |
√ |
√ |
√ |
√ |
Exchanges |
√ |
√ |
√ |
|
√ |
- Products must be returned to the address designated by UGREEN in the same condition as received, with the shipping pre-paid by you and in packaging sufficient to protect the product inside the box.
- Under no circumstances shall any implied warranty exceed the warranty period specified in this Warranty. This restriction may not apply to you if the country or jurisdiction with legislative authority you are located in does not permit limitations on the duration of warranties. No UGREEN seller or other individual is authorized to offer any warranty on behalf of UGREEN, other than that provided in this Warranty.
-
Repair Guidelines
- Please back up all product settings and configurations as an administrator via your UGREEN NAS account before sending products for repairs or returns (specifically, settings related to permission configurations, time and language settings, notification settings, network settings, and system restore settings for each device user). You may restore the previous settings after you receive the repaired or exchanged NAS product. You shall assume sole liability for any failure to restore your previous settings if you do not back up your data before returning the product.
Backup Operation Path: Control Panel - Update and Restore - Configuration Backup and Restore - Cloud Backup.
-
Before sending the product for repair or return, please ensure you back up all personal data and delete all
data and personal information stored on the product. UGREEN may remove all product information or data when performing warranty services to protect your privacy
during repairs, and shall not be held liable for any personal data corrupted or lost during the repair process.
- You only need to send the malfunctioning device back for repairs (advance confirmation with us is required) and do not need to return any parts that were not pre-installed. UGREEN will not be liable for the loss of any non-pre-installed parts included.
- UGREEN's customer service center will notify you of any repair fees owed for repairs to products that do not meet the warranty conditions, and we will provide you with the repair services upon obtaining your consent.
- Required Information for Warranty
Please carefully fill in the required information for warranty to protect your rights.
Warranty Information: User name, address, contact phone number, product name, specification, model, product SN, warranty period, and repair records.
- How to Obtain Warranty Services
You can directly contact UGREEN through the following methods:
- Contact the online customer service directly if you purchase the product via our online store.
- Contact Numbers and Business Hours:
(US)+1-888-820-8830 Mon-Fri 9:00-17:00 PST
(DE)Lokal: 0800-181-0127 Mon-Fri 9:00-17:00
(EU)+49-800-181-0127 Mon-Fri 9:00-17:00
(Mainland China)0755-21044617 Mon-Sat 9:00-12:00,13:30-22:00
- Official Website:www.ugreen.com
- Email: nas-support@ugreen.com
- Warranty Disclaimer
Both parties agree that UGREEN reserves the right to refuse warranty requests or any other claims arising from any of the following circumstances, nor shall it be held liable for such:
- The product warranty period has expired.
- Altered, torn, or damaged product identification (such as SN or model number).
- Man-made damages, whether intentional or due to negligence, including without limitation damage caused by use in inappropriate environments or the failure to follow instructions.
- Normal color fading and wear and tear while using the product (such as natural wear and tear of the case and connectors, wear and aging, and dirt or blockages caused by dust accumulation).
- Unauthorized alteration or modification of original condition.
- Any malfunction or damages resulting from overhaul, modification, or disassembly performed by any agency or individual not authorized by UGREEN.
- Any malfunction or damages due to force majeure events (including natural disasters such as fires, earthquakes, and floods), power surges, or improper maintenance.
- Obvious signs of negligent or accidental damage, such as damage caused by the use of the product (including all its components, such as motherboard) for special testing purposes, and damage to product ports or slots caused by incorrectly connecting and disconnecting products for extended periods.
- Improper storage, such as performance failures caused by prolonged exposure of the product to abnormal temperatures, humidity, excessive altitude, or corrosive substances.
-
You are required to regularly back up your data as this Warranty does not cover any product data losses,
regardless of reason, the recovery of lost data, or the recovery of data from products in storage. Including but not limited to the following circumstances:
- Data loss or corruption due to network interruptions or delays.
- Data loss or corruption due to the use of unlicensed, non-standard, or non-public software.
- Financial losses due to data loss or corruption caused by viruses, hacker attacks, or other malicious acts.
- Usage in a manner that infringes upon the intellectual property rights (including without limitation patents, trademarks, and copyrights) of UGREEN or any third party.
Please note that UGREEN shall inspect and verify products in each of the above circumstances and may refuse to provide warranty services for the products, including without limitation product repairs, technical support, and product replacement due to those circumstances. Products rejected under the above circumstances will be returned to customers at their own expense.
-
Limitation of Liability
- The terms of this Warranty expressly supersede and exclude all other warranty obligations. You understand and agree that, to the fullest extent permitted by law, UGREEN shall not be liable to assume any expenses or pay indemnification for accidents or indirect, specific, punitive, incidental, or other forms of damages or claims (including without limitation any loss of data and information, reduced income or profits, loss of business opportunities, diminished business reputation and additional purchase fees incurred for any reason) arising from or in connection with the use of or failure to use the products provided under this Warranty or any documents and software that come with these products. In the event that UGREEN is liable to indemnify a customer, the total indemnification amount shall not exceed the purchase price (excluding tax) paid by the customer and received by UGREEN shown on the purchase receipt for the products.
- Force Majeure: UGREEN shall not be liable for delays or failures to perform this Warranty due to any reason or circumstance beyond its reasonable control (including without limitation customer action or inaction), nor shall such non-performance be deemed a breach of this Warranty.
- This Warranty does not limit additional specific legal rights you may have in different countries. This Warranty does not affect any specific legal rights you are entitled to. The terms here may not apply to customers in regions with limited or non-applicable disclaimers.
- Please note that UGREEN may not provide warranty support in every country/region, and may refuse warranty support if it is not requested in the country/region where you originally purchased the product. The country/region where the product was purchased is subject to UGREEN internal records.
- Export Restrictions
- You acknowledge and agree to comply with all applicable laws when using UGREEN products and services, including export control and sanction laws, regulations, rules, and policies applicable in your country or region or the target country or region where you attempt to use UGREEN products or services, including the US Export Control Regulations and sanctions imposed by the Office of Foreign Assets Control of the US Department of the Treasury or the European Union, and other applicable national or international embargoes.
- You covenant not to export, re-export, or transmit UGREEN products or services directly or indirectly to any countries, entities, or individuals subject to applicable export controls or sanctions. Furthermore, you covenant not to use UGREEN products or services for activities involving weapons of mass destruction, missiles, chemical or biological weapons, or other restricted technologies.
- You shall assume sole liability and risks, including without limitation legal action, fines, or penalties, resulting from your noncompliance with the covenants in this Warranty, including without limitation those related to export controls and compliance laws. UGREEN shall not be liable for such noncompliance under any circumstances.
- We may periodically update this section due to the dynamic nature of global export control and sanctions laws. We recommend regularly reviewing this Warranty to ensure your actions always comply with the latest requirements.
- Miscellaneous
- No Assignment: Without UGREEN's prior written consent, you shall not directly assign any rights under this Warranty through legal or other means.
- Applicable Law: The effectiveness, execution, interpretation, performance, and dispute resolution of this Warranty shall be governed by the laws of the Mainland People's Republic of China.
- Dispute Resolution: Any dispute arising from or in connection with this Warranty shall be submitted to the Shenzhen Court of International Arbitration for arbitration, and the results of the arbitration shall be final and binding on both parties.
-
Class Action and Class Arbitration Waiver
- and Independent Dispute Resolution. To facilitate fair and prompt dispute resolution, both you and UGREEN agree that any disputes, claims, or controversies related to this Warranty, UGREEN products, and services, or your relationship with UGREEN shall be resolved independently and not as a class action, class arbitration, or any other legal action or arbitration initiated by another representative or group unless otherwise expressly provided by law.
- You and UGREEN each expressly waive your right to participate in any class action or arbitration. Unless otherwise agreed in writing by both you and UGREEN, neither party may consolidate multiple claims or participate in any form of class action or class arbitration.
- Attorney’s Fees: In addition to any other remedies it is entitled to, the prevailing Party in any arbitration, mediation, or other legal action or enforcement of rights and remedies under this Warranty is entitled to recover arbitration fees and reasonable attorney’s fees.
- Any part or term of this Warranty deemed invalid, void, or unenforceable, or any parts or terms whose application is deemed invalid, void, or unenforceable for specific individuals or under certain circumstances, shall not affect the legal effect or applicability of this Warranty or any other part or term of this Warranty. Under such circumstances, the applicability of the remainder of the parts or terms under this Warranty shall be deemed independent and valid.
- This Warranty shall control in the event of any conflicts between this Warranty and any term or condition under any other agreement between the Parties for this product unless the terms in the other agreements expressly supersede this Warranty.
You acknowledge that you have fully read, understood, and agreed to the terms of this Warranty before accepting it, and have independently considered the consequences of these terms.
UGREEN NAS Privacy Policy
Effective Date: May 17, 2024
Last Updated: Aug 29, 2024 |
Welcome to UGREEN NAS and sign up for a global unified account! America Ugreen Limited,along with its affiliates (LULIAN GROUP LIMITED, UGREEN Hong Kong- HONG KONG UGREEN LIMITED, and UGREEN Germany- UGREEN Group GmbH) hereinafter referred to as "UGREEN" or "We", ), sincerely thank you for trusting us with your personal information. Our commitment is to safeguard the privacy of your personal data, ensuring full compliance with legal requirements in doing so. Therefore, we have prepared this UGREEN NAS Privacy Policy (hereinafter referred to as "this Policy") to help you fully understand how we collect, utilize, share, secure, and store your personal information, and how you can effectively manage your data while using our products and services to make more informed decisions.
This Product Privacy Policy ("Privacy Policy") applies to UGREEN NAS and the applications we provide for use with UGREEN NAS,including mobile apps, desktop apps, TV apps and WeChat apps.
This Privacy Policy describes how Ugreen collects, uses, shares, secures, protects and stores your personal information in order to effectively manage your data to make more informed decisions when using our NAS and NAS application.
The use of information collected through our Products shall be limited to the purpose of providing the service
for which our Customers have engaged Ugreen NAS. We maintain a separate privacy policy with respect to our
website. To view our Website Privacy Policy, click here.
We urge you to thoroughly read this Policy, paying particular attention to the boldfaced sections, and confirm your complete understanding and agreement before using our products or services.
In addition to this Policy, we may also use real-time notifications (such as pop-ups and page alerts) and feature updates to explain the objectives, extent, and use of the collected information. These real-time notifications and updates form an essential part of this Policy and have the same legal effect. We aim to define all terms used in this policy in a clear, accessible manner for better comprehension. For inquiries, feedback, or suggestions regarding this Policy, please reach out to us using the contact details provided at the end of Section12 of this Privacy Policy should you have any questions, comments or suggestions about this Policy.
By accepting this Policy, you acknowledge the features of UGREEN NAS and consent to the necessary collection of personal data to facilitate the operation of these features. We will process such information for the features or services you select, or as required by law, upon your activation or use of UGREEN NAS. Apart from the essential data needed for UGREEN NAS's core functions and services, and information mandated by legal requirements, you reserve the right to opt-out of additional data processing. Be aware, however, that this may limit access to certain features or services.
This Policy will help you understand:
1. Applicable Scope
2. How We Collect and Use Your Personal Information
3. Use of Cookies and Other Similar Technologies
4. How We Store and Protect Your Personal Data
5. How We Share, Assign, and Disclose Your Personal Information
6. How to Exercise Your Right to Manager Personal Information
7. Specific Clauses of EU General Data Protection Regulation
8. The Right to Privacy in California and Other US states
9. How We Process Minors' Personal Data
10. How Your Personal Information is Transferred Globally
11. Policy Updates
12. Contact us
- Applicable Scope
For the purposes of this agreement, "UGREEN NAS" encompasses the products and services accessed and used via the UGREEN Client, websites, UGREEN software development kit (SDK) for third-party websites or apps, application programming interfaces (APIs), mini-programs, and any new products and services resulting from technological advancements (collectively "UGREEN NAS"). Variations in features may exist among different UGREEN NAS versions. We collect and process your personal information in accordance with this privacy policy unless otherwise specified by separate policies of other UGREEN NAS versions. In cases where other UGREEN NAS versions have separate policies, those policies shall also apply. In the event of any conflicts between this Policy and those of other UGREEN NAS versions, the latter shall control. Please be aware that certain search paths and operations may differ across UGREEN NAS versions, and should be considered in the context of the actual usage.
Except for the activities that the information would be collected and used for in this Policy, this Policy does not cover third party services, and such third parties are responsible for describing how they collect and use your personal information.
- How We Collect and Use Your Personal Information
We collect and use personal information provided by you, generated during your use of UGREEN NAS, or obtained from third parties with your consent. This is done in order to satisfy your use of UGREEN NAS, communicate with you, and improve or optimize our products or services. As our offerings evolve, we might alter our products or services. Should we use your information for purposes not covered in this Policy, or use information collected for specific purposes for other uses, we will inform you and seek your consent, except where legal grounds or justifications exist for processing your data without consent. See the UGREEN NAS Personal Information Collection Check list for an overview of the personal data we gather.
- Contexts for Collecting Personal Data
- Registration and Login
Throughout the use of your NAS device, UGREEN has no access to your photos, documents, videos, etc. stored on your NAS device. Your data can only be accessed by you personally and your friends who accept your sharing.You can log in with your created local account (excluding official UGREEN Cloud website). The local account is divided into an administrator account and a non-administrator account; if you use the local account , all data is stored locally on your NAS device and your cell phone (or computer), UGREEN does not collect any personal data of you. You may also log in to UGREEN NAS through a local account, during which none of your personal information will be collected. We shall collect and process your personal information under this Policy if required in other circumstances.
If you encounter difficulties recalling your UGREEN NAS login credentials, you can utilize the password retrieval feature. For enhanced account security, we may request identity verification through one of four methods: your UGREEN Cloud account details, device information, local account, and password, or the device sharer's account information.
When you log in to UGREEN NAS on your app, go to the home page, and scan the QR code to log into the TV/PC client or to identify your NAS device, we will invoke the sensor information of your mobile device (such as direction sensor, rotation vector sensor (underlying physical sensors, including accelerometer, magnetometer, and gyroscope), and light sensor) to automatically adjust the direction and light of the scanning interface, thereby improving the convenience and accuracy of scanning. Please understand that device sensor data alone does not involve any personal information and cannot be combined with other information to identify a specific natural person.
- UGREEN Cloud account
When logged in with a local account, if you need to use the UGREENlink service, Configuration Backup and Restoration, or the SMS alert function for important NAS device information, you need to bind and use a UGREEN Cloud account to register and log in. At this time, you need to provide your phone number (for users in mainland China) or email (for users in other countries or regions), along with additional identification information (such as a profile picture and nickname). This enables us to assist with the registration process, enhance your account details, maintain account security, and support account recovery. We may link the basic information you provide to your UGREEN NAS device and send important device notifications via SMS or email. Registration or login to UGREEN NAS is contingent on this information.
- Bind device
To successfully bind and manage your UGREEN NAS device, we need to collect the following information when you bind the device: UGREEN NAS Device model, device serial number SN and MAC address, IP address, UGREENlink ID (if you enable the UGREENlink feature) and your customized device name, device system status (online/offline/sleeping), device holding role (owner/sharer), and warranty expiration time (visible only to administrators). Collecting this information is to assist you in device binding, identifying your device, and associating it with your account. This ensures you can inquire and manage the devices you have bound with your account. This enables you to monitor the status of your device in real time and ensures that the management rights of the device are allocated appropriately. For device administrators, we also gather the device's warranty expiration date to provide prompt warranty expiration reminders.
- Login History and Trusted Device Management
①To protect your account against unauthorized access, swiftly identify and address abnormal activities, and safeguard against security threats, we collect the following login history details when you access UGREEN NAS:
1) Login Time: Recording the precise login times, accurate to the second;
2) Operation Record: Documenting your account logins and unbinding actions;
3) Location Information: Determining your login city by analyzing and identifying your IP address;
4) IP Address: Used to pinpoint the login network's location (accurate to city);
5) Operating System: Identifying the operating system used during login, such as iOS, Android, macOS, Windows;
6) Access Method: Determining whether access to UGREEN NAS is via the website or other clients.
②We permit the setting of "trusted devices" to bypass repeated verification for easier and more secure login on these devices. This feature simplifies the login process while maintaining security and ease of use.
1) Collection of Login Details: To improve account security, we record the device model and name, login location (identified by IP address, accurate to city), and your most recent login time. This helps us promptly verify who is logging into the account and take the necessary security precautions.
2) User Management: You can review your login history and trusted device list, and are entitled to remove any suspicious devices. Should you detect any unusual activity, we advise changing your password and removing suspicious devices to ensure account security.
Trusted Device Information Collection Aims to:
- Enhance Account Security: By monitoring login history, we effectively monitor for and prevent unauthorized access, maintaining account security. We can take prompt action, including by notifying you and taking further precautions, whenever our system detects any unusual login attempts or security threats.
- Manage Trusted Devices: You are entitled to manage your trusted devices, minimize verification on frequently used devices, and effortlessly delete any suspicious or outdated devices from our system.
- Ticket
The "Ticket" feature is available for technical assistance at any time while using UGREEN NAS. To provide optimal support, we may collect and use data such as your: UGREEN NAS device's serial number, device model and system, client model, WeChat ID, and other access methods to UGREEN NAS(such as via LAN or wireless network). This information aids in understanding your product usage, allowing us to offer tailored technical support and solutions. Our primary aim in collecting this data is to help users identify and resolve technical issues effectively. We warrant that this information is solely utilized for addressing your technical issues related to our products and services.
- Cloud Storage Services
If you choose to use UGREEN NAS services in conjunction with third-party cloud storage services, such as Baidu Netdisk (exclusively for mainland China users) and OneDrive, we will collect your account details for these third party cloud services, including account name, profile picture, membership level, and cloud storage capacity. This collection facilitates file transfer and synchronization tasks between UGREEN NAS and these third-party services. We will request file read and write permissions to ensure seamless file transfers and management between UGREEN NAS and the third-party cloud storage services. We warrant that such permissions will be used solely for the purpose of smooth file uploads, downloads, and task synchronization. You have the right to decide whether to link third-party cloud storage services with UGREEN NAS. Declining this connection won't affect your access to other UGREEN NAS services and features.
- LAN Device Search via find.ugnas.com
When you use the WebFind service on find.ugnas.com to search for and activate LAN devices, we collect device-specific data including the device name, IP address, Mac address, serial number, operating system version, model name, and status. This data ensures accurate and efficient identification of LAN devices for your convenience.
- UGREENlink Services
Accessing UGREENlink services requires an initial login to your UGREEN Cloud account. Upon login, you may opt to activate the UGREENlink feature for quick and remote connection to your UGREEN NAS device. To provide this feature, we will collect the product serial number, IP address, and routing port of your UGREEN NAS device. These details are essential for establishing a secure connection and optimizing user experience. Serial numbers help ensure precise and secure linkage to your UGREEN Cloud account, enabling access to UGREENlink services. We gather your IP address and routing port information when you use UGREENlink features to facilitate remote connectivity to your device, allowing you to access and manage your UGREEN NAS device from afar. Please note, that this information is only collected for UGREENlink features. If you choose not to use UGREENlink features, we will not collect or use this information for the aforementioned purposes.
When you enable our UGREENlink service in a LAN environment, we will collect some information on your device. Such information includes IPv4 address, IPv6 address, MAC address, DDNS address, device status information (whether the device has been initialized or whether it is currently online), WOL (Wake-on-LAN) switch status, device hostname, and device boot time. The abovementioned information is collected to ensure a better connection and access experience when you access the device in a LAN environment.
- Technical Support
When seeking assistance from our technical support team, we may collect the following information:
①Device Information: This includes your device SN number, UGREEN NAS device system version, network conditions (including your IP address and network connection status), operational logs (including system activities and logs of user-initiated system operations, and) client information (including operating system type and version, and software version information).
②Personal Files in UGREEN NAS Devices Our technical support team may access your personal files stored on UGREEN NAS devices only with your explicit authorization and after granting the appropriate permissions:
This information is collected for the following purposes:
①Efficient Technical Support Services: By gathering device information, we can swiftly identify and resolve issues, providing you with precise technical support.
②Specific User Permissions: Initially, our technical support staff will request general user permissions to access device information. This ensures that our access to your device is limited to what is necessary only.
③Comprehensive Diagnostics: For complex technical issues, additional permissions may be requested with your consent. This involves creating and providing an administrator account for the technical support team to access. Access to personal files is only permitted under these specific circumstances.
- User Experience Survey (Excludes Mainland China Users)
UGREEN may invite you to participate in user experience surveys to continually optimize our products and services, aiming to deliver a more personalized user experience.
①Email Address Collection: We collect your email address to distribute survey questionnaires, helping us understand your real experiences and feedback regarding UGREEN NAS. Participation is voluntary, and you decide whether to provide this information.
②Survey Distribution: Upon your agreement to participate, we may send surveys to your provided email address. These surveys help us collect your usage experiences, preferences, and suggestions for UGREEN products, informing our product improvements and optimizations.
③Marketing Information: In addition to surveys, we may also send marketing communications to your email. However, we will send those only after obtaining your explicit consent.
Prior consent will be sought before conducting any user experience surveys or sending marketing information via email. We warrant that no surveys or marketing materials will be sent without your explicit agreement.
- Independent and Third Party Services
UGREEN NAS contains information or links we have legally obtained, as well as other independent services we are licensed to operate. These services may be presented as separate features within UGREEN NAS (such as the UGREEN NAS Application Center). UGREEN NAS may also integrate or include links to third party content. We reserve the right to add, reduce, or adjust the content, form, and specific sectors within independent services at any time to expand our service offerings or optimize user experiences. While we will notify users of these changes in advance, some modifications may be implemented immediately under certain circumstances.
You may activate and use the above independent services and features via UGREEN NAS. You may be required to enter into additional agreements or accept separate terms between you and the service provider when using certain independent services or features. The primary service provider for independent services can be determined through the independent service agreements or information disclosed within such services. When necessary, we will make these agreements or terms available for you to review in a reasonable manner. Your use of the above services shall be deemed as your agreement and understanding of the associated agreements and rules.
Some services or features in UGREEN NAS may be provided by third parties either independently or in partnership with us. Such services may require separate user agreements, privacy policies, or other binding rules. Carefully review all agreements and rules (if any) before using third-party services, and ensure you fully understand and agree with them, assessing any risks involved. Exercise judgment and assess any potential risks when using third party websites or applications. You shall independently resolve any disputes, damages, or losses arising from the use of third party services with the third parties concerned. UGREEN NAS shall not be held liable for any direct or indirect damages caused by third parties.
Be aware that some third parties may use your account ID for data collection and processing. The third party service provider shall be responsible for the data collection, storage, use, and transmission. UGREEN is not involved in the processing of such data, nor will it process, access, control, or modify this data. Please choose and use third party services carefully, as your personal information and data security will be subject to the third party service provider's terms and policies when using such services.
We recommend consulting with legal experts or professionals before enabling any third party service should you have any concerns regarding the third party service provider's agreement or terms. UGREEN NAS may not be able to directly notify you of any changes to third party agreements or terms. Therefore, we recommend regularly reviewing the agreements or terms for any third party services you use to ensure your rights are protected.
- Operation and Security
To ensure the smooth operation and security of our products and services, and to protect the legal rights of users, the public, and ourselves, we may collect the following information:
①For secure and efficient software and service operations, we collect your hardware model, operating system version, device identifiers (Android includes IMEI/MEID, AndroidID, OAID, IMSI, SIM card details, GAID, Hardware SN; iOS includes IDFV, IDFA; identifier validity, reset capability, and acquisition methods vary), Network Device Hardware Address, hardware SN, IP address, WLAN access points, Bluetooth, base stations, software version, network access mode and quality, operational, usage, and service log data.
②Your account, device, and service log information may be used and shared with our affiliates and partners for account security assessments, identity verification, violation detection, security incident prevention, and to record, analyze, and address such violations.
③We may collect error log data in the event of unusual errors in UGREEN NAS to analyze and help resolve these issues and assist you in addressing such issues.
- Configuration Backup and Restoration
To preserve your device settings, you can back up your configurations using the "Configuration Backup and Restoration" function. When you repair your device or carry it from the original country or region to use abroad, you can actively restore your backup data. For this purpose, we need to collect and use the following setting information from you:
①Connectivity and Access: Users and user groups (permissions and advanced settings), file services, device connection data (UGREENlink, DDNS, portal settings), end devices, domains, and LDAP;
②General Settings: Time and language, notification, network, security, and indexing services;
③System Services: System updates, resets, configuration backups, and restorations.
- Personal Information Processing Pursuant to the Law
We may collect and use your personal data pursuant to applicable laws under the following legal circumstances:
- With your consent;
- For contract fulfillment as requested by you;
- To comply with legal obligations such as those for anti-money laundering, anti-terrorism, anti-telecommunications fraud, and real-name management;
- The request is directly related to national defense and security;
- Whenever necessary in response to public health emergencies, or to protect the life, health, or property of a natural person in emergencies;
- For criminal investigations, prosecutions, trials, or executing court judgments;
- When you publicly disclose your personal data;
- When the data is sourced from legally disclosed information, including legitimate news reports and government disclosures;
- For maintaining the security and stable operation of our products/services, including fault detection and resolution;
- Any other circumstances provided by law.
Please note, in scenarios from (2) to (10) above, we may process your personal data in accordance with applicable laws without requiring your consent.
- Use Permissions
UGREEN NAS may request certain permissions to provide services. Rest assured that UGREEN NAS will not activate these permissions by default. Only if you approve and confirm to grant those permissions will UGREEN NAS use them to collect your data, which will only be used in the necessary contexts specified. It is worth noting that granting UGREEN NAS a specific permission does not necessarily mean your data will be collected. Although you have granted such permissions to UGREEN NAS, your data will only be collected under lawful, valid, and necessary circumstances. Refusing to grant permissions may lead to the unavailability of specific features reliant on said permissions, but that will not affect you using other UGREEN NAS features. For more information on permissions and their uses, refer to the UGREEN NAS Permission Application and Usage Description.
- Use of Cookies and Other Similar Technologies
Cookies and device identifiers are commonly utilized across the Internet. We may use such technologies to store cookies or anonymous identifiers on your device when accessing our platform or services, allowing us to collect and identify data during your use of our product. We warrant not to use cookies for any purposes other than those stated in this policy. Cookies and similar technologies are primarily used to facilitate product and service usage, enhance security and efficiency, improve login and response speed, and provide a more effective access experience. Most browsers allow users to delete browser cache data, including cookies. You can delete cookie data in your browser settings when using UGREEN NAS on the web. However, deleting cookies may render cookie-dependent features or services unavailable.
-
How We Store and Protect Your Personal Data
- Save Date
Your personal information will be retained only for the duration necessary to fulfill the purposes outlined in this policy when using our services (unless a longer retention period is required or permitted by law). If you wish to delete your personal data, please contact us using the contact information provided in this Policy Following the necessary retention period, we will delete or anonymize your personal information, except where legal obligations mandate otherwise.
Date Retention Criteria:
- The length of time we maintain an ongoing relationship and provide UGREEN NAS products and services to you (such as the duration of your UGREEN Cloud account or ongoing use of our products);
- Whether the information is modified by the account owner, or deleted by users through their accounts;
- Legal obligations to retain data (for example, certain laws may necessitate retaining your transaction records for a specific period before deletion);
-
Our legal team's recommendations for data retention (such as considerations related to contract performance,
dispute resolution, legal validity, litigation, or regulatory investigations).
- Data Residency
Generally, personal information collected and generated within the People's Republic of China is stored in the People's Republic of China, but as UGREEN NAS offers global services, we may transfer your personal information to our affiliates outside China. For more information, refer to "10. How Your Personal Information is Transferred Globally".
- Security Measures
We prioritize the security of your personal information and adhere to prevailing information security standards. Our aim is to remain at the forefront of industry security practices. Our security strategy includes advanced security technologies such as encrypted transmission, secure data storage, intrusion detection, firewall protection, and regular vulnerability scanning to safeguard your data. Beyond technical solutions, we implement comprehensive management systems to bolster information security. This includes staff training in data protection and meticulous scrutiny and improvement of all data processing and storage procedures. Recognizing that no system is infallible, we continuously identify potential risks and implement precautions to mitigate the likelihood of information leaks, destruction, misuse, unauthorized access, disclosure, or alteration of your personal information. In the event of a security incident, we have established protocols and response mechanisms to promptly notify affected users, rectify security vulnerabilities, and take steps to prevent future occurrences.
- Your information is collected and used in accordance with industry-standard security practices, and you will be informed of the purposes and scope of data use through our user agreement and privacy policy.
- Our network services employ encryption technologies, such as transmission security protocols, to protect your data during transmission.
- Your personal information is encrypted and stored using advanced encryption and isolated through state-of-the-art technology.
- When processing personal information, such as when disclosing personal information and measuring the degree of association, we apply data desensitization techniques, including substitution and encryption-based methods, to enhance the security of any personal data we process.
- Our stringent data access control and multiple identity authorization systems are designed to prevent misuse of personal data and ensure compliance with regulations. Staff authorized to access personal information undergo identity verification, and access control measures, and sign confidentiality agreements, ensuring only authorized employees have access to your data.
While we implement robust security measures, we acknowledge that no system can guarantee absolute security. As such, we cannot promise complete data security, especially in instances beyond our control. Please be aware that despite our best efforts, security issues beyond our control, such as malicious attacks, may occur when using our products and services.
- We appreciate your cooperation!
Despite implementing these effective measures and complying with legal standards, we cannot assure the security of your personal information when transmitted over unsecured channels. Therefore, we strongly encourage you to take precautions to protect your personal information, including without limitation, the use of complex passwords, regularly changing your password, keeping your account password confidential, and helping us maintain the security of your account and personal data.
- Resolving Information Security Incidents
We have established emergency response plans for cybersecurity incidents. Should a personal information security breach occur, we will promptly activate these plans and assemble an emergency response team to identify the cause, minimize losses, and report to authorities as required by law. Additionally, we will inform you about the basics of the security incident, its potential impacts, our response plans, suggestions for mitigating risks, and any remedial measures we can offer. Communication will be through the contact information we have, such as notifications on our platform, messages, calls, or emails.
-
How we share, assign, and disclose your personal information
- Application Programming Interfaces (API) and Software Development Kits (SDK)
To guarantee the secure and stable operation of our products and services, UGREEN NAS incorporates software development kits (SDKs)and Application Programming Interfaces (APIs).When using products and services supported by these SDKs/APIs, third-party SDKs/APIs may collect and process your personal information. We perform security monitoring and assessments of third-party SDKs/APIs and adhere strictly to legal and regulatory requirements to safeguard data security. To maximize the protection of your personal information, we urge you to thoroughly understand the privacy policies of these third-party SDKs/APIs before use, as these entities are solely liable for your data under their respective privacy and data protection policies. This policy does not cover third-party products or services that you may access or initiate. We are not liable for the collection, use, and processing of your personal information by these third parties when you utilize their products or services. If you are concerned about the risks associated with these SDKs or APIs, we advise discontinuing their use and contacting us promptly. For circumstances involving UGREEN NAS's use of third-party SDKs/APIs for personal information processing, please refer to the UGREEN NAS Third-Party Personal Information Sharing List.
- Sharing
Your personal information will not be shared with any entities other than UGREEN or its affiliates, except under the following circumstances:
- We receive your or your guardian's explicit authorization or consent.
- Judicial or administrative agencies demand disclosure as part of legal proceedings;
- We engage in legal action or arbitration against a user to protect our legal rights;
- Such sharing is necessitated by the service agreement or usage rules between you and UGREEN;
- To prevent infringement of the legal rights of UGREEN, its affiliates, users of our service, and the public to the extent permitted by law;
- The sharing complies with agreements made between you and third parties.
-
The information is utilized for academic research purposes.
- Assignment
We will not transfer your personal information to any company, organization, or individual outside of UGREEN's affiliates, except under the following circumstances:
- With your express prior authorization and consent;
- To comply with legal obligations, legal proceedings, mandatory government directives, and court orders;
-
In cases of mergers, separations, bankruptcy liquidation, or acquisition/sale of our or our affiliates'
business, your personal information may be transferred as part of the transaction. We will ensure
confidentiality during the transfer and require the successor entity to adhere to this privacy policy, or
otherwise, seek your reauthorization.
- Disclosure
We will only publicly disclose your personal information under the following circumstances:
- 1. With your express prior consent;
-
2. In compliance with laws, legal proceedings, lawsuits, or government orders.
- Exceptions to Obtaining Your Consent when Sharing, Assigning, or Disclosing Your Personal Data
Please be aware that in certain instances, we may share, assign, or disclose your personal data without prior authorization or consent:
- The request is directly related to national defense and security;
- The request is related to public security, public health, and other material public interests;
- In circumstances directly involving criminal investigations, prosecutions, trials, or court order execution;
- To protect vital legal rights, such as the life and property of the data subject or other individuals, when obtaining consent is not possible;
- If the personal data has been publicly disclosed by the data subject;
- Personal data obtained from legally disclosed information sources, including without limitation news reports, government information disclosure, and other legal channels.
-
How to Exercise Your Right to Manage Personal Information
- When you register or log in using a local account, all data is stored on your UGREEN NAS device and your mobile phone (or computer). We do not collect any of your personal data. At this time, to facilitate the management of your information, you can perform the related operations by following these paths:
- Accessing Path: Profile picture - Homepage (access to Profile picture and email) or Control Panel - User Management (access to Profile picture, username, role, email, etc.)
- Correction Path: Profile picture - Homepage (for editing Profile picture and email) or Control Panel - User Management (for editing Profile picture, username, role, email, etc.)
- Change or Withdraw Your Consent Authorization:
① Path to change the scope of related permission applications and usage: Personal Profile picture - Privacy Management - System Permission Management.
② Path to withdraw privacy policy authorization on mobile devices: Personal Profile picture - Privacy Management - Privacy Statement - Withdraw Consent.
-
Deletion Path: Log in with an administrator account, go to Control Panel - User Management to delete a user, or
go to Control Panel - Update and Restore to reset the device to factory settings (local accounts are stored on
the device, so the device administrator can manage and delete local accounts, or even reset to factory settings
to delete all user accounts).
- When you bind and use a UGREEN Cloud account for registration and login, we ensure that you can exercise the following rights regarding your personal information:
- Accessing Your Personal Information
Official Website Online Account Path: Home page - account and security (access to profile picture, username, password, phone number, email)
For information not accessible through these methods, you can contact us anytime using the details in Section 12 of this Policy. We will respond to access requests within 15 business days after verifying your identity.
- Correcting Your Personal Account Information
Official Website Online Account Path: Home page - account and security (modify profile picture, username, password, phone number, email)
For information not amendable via these methods, contact us anytime using the details in Section 12 of this Policy. We will respond to correction requests within 15 business days after verifying your identity.
- Modifying Authorization Scope or Withdrawing Consent
①To change authorization scope for permissions: Profile picture - privacy management - system permission management.
②To withdraw consent for the privacy policy on mobile: Profile picture - privacy management - privacy statement - withdraw consent.
③Rejecting marketing or withdrawing the consent for marketing (not applicable to users in the Chinese Mainland): We shall only send marketing information under applicable laws and with your consent, and you have the right to require us not to use your personal information for marketing. You may unsubscribe from our emails according to the unsubscribe guidelines shown in such emails for rejection and withdrawal.
Following the withdrawal of consent, we will cease processing the related personal information. However, your withdraw of consent will not affect the processing of personal information previously conducted based on your authorization. If you encounter issues during this process, contact us anytime using the details provided in Section12of this Policy.
- Deleting Your Personal Information
You can delete your information as follows:
To delete device information:
Official Website Online Account Path: UGREEN NAS devices - unbind device.
If we process your personal information unlawfully, collect or use it without your consent, or if you seek deletion due to account closure and cessation of our product or service use, you may request the deletion of your personal information. Contact us using the information in Section12 of this Policy at any time. We will address your deletion request within 15 business days. Upon deletion, your personal data will no longer be used. However, immediate deletion may not occur to comply with legal or policy requirements or to maintain necessary data for normal operations. We will store or back up your data for the required period, after which it will be permanently deleted.
- Account Closure
You have the right to close your UGREEN Cloud account using the following methods:
https://web.ugnas.com/account/login/#/login
Home page - account and security - close this account;
For additional assistance, contact us using the information in Section12 We will process your account closure by deleting your personal information associated with the registered cellphone within 15 business days after verifying your identity.
- Obtaining a Copy of Your Personal Information
You are entitled to obtain a copy of your personal information. To request this, please use the following method:
Application Email: ugreennascss@gmail.com
(7) Constraint-based Information System Automated Decision-Making
Certain functions involve decisions made by automated systems, including information systems and algorithms. If you believe these automated decisions significantly impact your legal rights, you can request explanations or corrections, and we will provide appropriate solutions. For inquiries, contact us at ugreennascss@gmail.com.
(8) Response to Your Requests
For security, you may need to submit a written request or provide additional identification. We may ask you to verify your identity before processing your request.
We aim to respond within 15 business days.
Reasonable requests are typically processed free of charge. We reserve the right to refuse requests that are unjustifiably repetitive, technically burdensome (such as by necessitating the development of new systems or fundamentally amending current practices), infringe on others' legal rights, or are impractical (such as requests involving data on backup tapes).
Pursuant to applicable law, we are unable to accept requests under the following circumstances:
①The request involves the personal information controller's legal obligations;
②The request is directly related to national defense and security;
③The request is related to public security, public health, and other material public interests;
④The request is directly related to a criminal investigation, prosecution, trial, or enforcement of a judgment;
⑤If the personal information controller has evidence of the request being made in bad faith or as an abuse of rights;
⑥To protect vital legal rights, such as the life and property of the data subject or other individuals, when obtaining consent is not possible;
⑦When responding to a request made by a subject of the personal information will materially infringe upon the legal rights of the subject of the personal information or other individuals or organizations;
⑧A commercial trade secret is concerned.
This Policy does not create, extend, or modify rights for data subjects and consumers in mainland China, Hong Kong, China, the European Union, any U.S. state (including California), or UGREEN's obligations unless otherwise required by the GDPR, CCPA, or other privacy laws.
- Specific Clauses of EU General Data Protection Regulations
For users in the European Economic Area (EEA) or the UK, this Section applies in addition to the terms specified in this Policy.America Ugreen Limited is the Controller of your data under GDPR.
- Data Subject Rights
As a user in the European Economic Area (EEA) or the UK, you are entitled to the following rights regarding the personal data we process as a personal data controller:
- Right to Data Access/Portability: You have the right to access personal information held by us and can request that we provide this data for you to transfer to other service providers;
- Right to Erasure: You can request the erasure of your personal data held by us under certain circumstances (such as where the data is no longer necessary for the purposes for which it was initially collected);
- Right to Object to Processing: You have the right to object to our processing of your personal data and require us to stop such and/or stop sending you instant messaging marketing;
- Right to Correction: You have the right to require us to correct any inaccurate or incomplete personal data;
- Right to Restrict Processing: You have the right to require that we limit the processing of your personal data under certain circumstances (for example, if you dispute the accuracy of the data we hold or if you believe the processing is unlawful).
To exercise these rights, please reach out to us using the contact information provided in Section12 of this Policy. We will review and respond to each request in accordance with applicable data protection laws.
If you have additional questions regarding our use of your personal data, please direct your inquiries to the contact information specified in Section12 of this Policy. Note that we may request further information from you to verify your identity and ensure your entitlement to access your personal data.
You also have the right to file a complaint with a data protection agency. For more details, please contact your local data protection agency.
- Legal Basis for Processing Personal Data
We process your information in a lawful, transparent, and fair manner. Depending on the particular personal data and context, UGREEN may rely on various legal grounds for processing personal data as a controller in areas like the EEA and UK:
- Contractual Necessity: When we enter into a contract directly with you, we process your personal data as necessary to prepare, sign, perform, and manage the contract;
- Specific withdrawal of consent: We require your prior consent before using Cookies to show advertisements and analyze customized advertisements sent by our partners, or analyze your use of our website. You are entitled to withdraw your consent at any time via the Cookie management tool in Cookie Settings.
- Required for compliance with our legal obligations: We process your personal data based on legal obligations to comply with EEA laws, codes of practice, guidelines, and rules that are applicable to us, and to respond to requests or other communications from jurisdictional EEA Agencies, governments, judicial, or other regulatory agencies. This includes detecting, investigating, preventing, and stopping fraudulent, harmful, unauthorized, or illegal activities (Fraud and Abuse Detection) and complying with privacy laws;
- Protecting your material interests or those of others: We process some personal data to protect material interests and to identify and prevent any illegal activities that impact material interests and public security, including child sexual abuse data; and
- we may process your personal data in accordance with the following legal rights to safeguard our (or others') legal rights unless such interests are secondary to your personal information protection or fundamental rights and freedoms:
①Fulfilling and performing contracts between you and the account owner/distributor for our products or services (including issuing bills, complying with contractual obligations and management, and support);
② Developing, testing, improving, and troubleshooting our products and services;
③ Ensuring the security and integrity of accounts, activities, products, and services, which involves detecting and preventing malicious activity and violations of our terms and policies, and preventing and addressing security threats;
④Distributing marketing communications, advertisements, or promotions about our products and services;
⑤Complying with laws, codes of practice, guidelines, and regulations applicable outside the EEA, and responding to requests from non-EEA public agencies, government, judicial, or regulatory agencies, and other communications to fulfill our corporate social responsibilities, protect our rights and assets and those of our clients, resolve disputes, and perform agreements.
- International Data Transfer
UGREEN operates globally, which may necessitate transferring, storing, or processing your personal data in locations outside the country or region of its initial collection.
For data transfers from the European Economic Area (EEA) and the UK to other countries or territories, it's important to note that the level of data protection in some destinations may not be considered adequate by the European Commission. The laws in these countries or regions may not offer the same rights as those in your location, or they may lack dedicated privacy regulators to address potential complaints. Nevertheless, we will utilize various legal processes, including, without limitation, having signed the standard contract clauses issued by the European Commission between America Ugreen Limited and the affiliates in your location (such as the Standard Contract Clauses issued by the European Commission under the Commission Implementing Decision 2021/914) to ensure the same protection of your data in the overseas receiving countries as that in the EU.
Regardless of the data storage location, UGREEN commits to processing it in accordance with this policy, adhering to applicable legal requirements, and implementing contractual or other measures to secure your personal data. Specifically, for data transfers involving EEA or UK users to countries outside these regions not recognized by the European Commission as having adequate data protection, we will adhere to the European Commission's standard contractual clauses for the transfer. For further information on this matter, please feel free to contact us.
- The Right to Privacy in California and Other US states
If you are located in California or another U.S. state, the provisions in this section supplement those in this Policy.
The California Consumer Privacy Act of 2018 and the California Privacy Rights Act (CPRA), as amended, along with their implementing regulations (collectively referred to as the "CCPA"), grant California residents specific rights regarding their personal information. This section details your rights under the CCPA and how to exercise them.
- Your Personal Information Rights
- Right to Know of the Collection, Disclosure, and Sale of Your Personal Information
California residents are entitled to request that a business collecting their personal information disclose the following:
①Categories, purposes, and sources of personal information collected in the past 12 months;
②Specific personal information collected in the past 12 months;
③Types of personal information disclosed for commercial purposes in the past 12 months.
You are entitled to submit up to two free, verifiable consumer access or data portability requests to us within a 12-month period.
- Right to Request the Deletion of Personal Information
California residents are entitled to request businesses delete any personal information they have collected, subject to exceptions as outlined in the CCPA. UGREEN will provide a clear base for any denied requests for deletion.
- Right to Limit Use of Sensitive Personal Information
You have the right to limit the use of your sensitive personal information for any purpose, except as provided under Section 7027 (m) of the CCPA.
- Right to Opt-Out of the Sale of Personal Information
We do not, nor have we in the past 12 months, sold any personal information we have collected.
- Right to Non-Discrimination
UGREEN will not discriminate against individuals exercising their rights under the CCPA.
These rights are not absolute, and in some cases, we may be legally required or permitted not to fulfill your request.
- How to Exercise Your Rights
To exercise any of the above rights you may submit a verifiable consumer request to us using the contact information provided in Section12 of this Policy. Only you or an authorized agent can make a verifiable consumer request related to your personal information. An authorized agent must submit your written permission and their registration filed with the California Secretary of State to make a request on your behalf.
- Validating Your Request
To respond to your CCPA request, we need to verify your identity or your authorized agent's authority. If initial verification is unsuccessful, we may request additional information for verification purposes. Any personal information provided for verification will solely be used for that purpose. For verification, please provide your name, address, phone number, and email address. We will compare this information with what we already hold and may request additional documentation, including identification documents, to minimize fraud risks. We may deny or partially fulfill certain requests as permitted or required by law. For example, in requests for deletion of CCPA Personal Information, we may retain necessary information for legal purposes, like tax accounting.
California consumers have the right to file a complaint with the California Attorney General's Office under the CCPS. The Attorney General's Office can be contacted via https://oag.ca.gov/contact/consumer-complaint-against-business-or-company or by calling (916) 210-6276.
Contact us using the methods below, and we will respond within 30 days: Should more time be needed to process your request, we will inform you within the initial 30 days.
- How We Process Minors' Personal Data
Our products and services are primarily intended for adult users. If you are a minor under the laws of your country or region, please ensure that your parent or guardian reviews this Policy thoroughly. We require that you use our services or share information with us only with the explicit consent of your parent or guardian.
We are committed to the protection of minors' personal information. If you are a parent or guardian, please ensure that any child under your care uses our services with your authorized consent. For inquiries regarding a child's personal information, please contact our dedicated personal information protection department. If you are considered a minor under the laws of your area, it's important to review this policy with your guardian before using our product/service. Please make certain that you have your guardian's explicit consent both for using this product and for sharing your personal information with us. Once a child's personal data is collected with parental consent, we will use or disclose it only as explicitly agreed by the parent or guardian, in compliance with applicable laws, or when necessary for the child's protection. If a guardian believes we have collected a minor's personal information without consent, please contact us at ugreennascss@gmail.com, and we will delete the relevant data promptly upon request.
- How Your Personal Information is Transferred Globally
UGREEN offers products and services utilizing resources and servers located worldwide. Consequently, your personal information may be transferred to or accessed from jurisdictions outside the country where you use our products or services. These transfers and accesses are conducted in compliance with applicable laws.
To provide the user with global UGREEN NAS services, UGREEN transfers the user’s personal information from the account registration country/region (home country/region) to HONG KONG UGREEN LIMITED (UGREEN’s affiliate in Hong Kong, “HONG KONG UGREEN” ) on a need-to-know-basis.
Specifically, after registration by the user, UGREEN will transmit the home country/region to HONG KONG UGREEN. When you enable UGLINK function, we will transfer UGLINK information of your NAS device to HONG KONG UGREEN.With that, UGREEN can, through HONG KONG UGREEN, identify the home country/region of the user’s account and then assign the user to the server in the his/her home country/region whenever a request is made by the user from any location worldwide. Suppose the user is traveling for business or pleasure to places such as Europe or North America, and accessing his/her device in mainland China there, then the home country/region and UGLINK information of the user’s NAS device will be transmitted from the Hong Kong server to UGREEN’s affiliates Ugreen Group GmbH (located in Germany) or AMERICA UGREEN LIMITED (located in the United States). This is required for us to provide the user with global UGREEN cloud services, which will allow the user to conveniently and efficiently access his/her UGREEN NAS device from any country/region worldwide.
To safeguard cross-border personal information security, we employ technical and managerial measures like encryption, anonymization, access restriction, and monitoring of offshore UGREEN affiliates and cloud service providers to comply with China's personal information protection standards.
If you wish to exercise your rights under6.How you can exercise your rights to manage your personal information, you can refer to this clause and contact the parties involved at ugreennascss@gmail.com.
Policy Updates
We may periodically update this policy. Without your explicit consent, we will not reduce your rights under the current Privacy Policy. Any changes to this policy will be posted on this page. For significant updates, we will inform you through push notifications, pop-ups, emails, etc., and seek your consent again.
Significant changes as referred to in this Policy include, but are not limited to:
Substantial changes in our service model. Such as changes in personal information processing purposes, processed information types, and usage methods;
- Significant changes in ownership or organizational structure. Such as those resulting from business adjustments, bankruptcy, mergers, or acquisitions;
- Modifications in the main entities of personal information sharing, transfer, or public disclosure;
- Major alterations in your participation in personal information processing and the exercise of your rights;
- Changes in our personal information processing departments, contact details, and complaint channels;
- When a security assessment indicates high risks to users’ personal information.
By utilizing our services, you acknowledge and consent to the collection, use, storage, sharing, management, and protection of your information as outlined in this policy.
-
Contact us
- For any inquiries, comments, or suggestions regarding this agreement or our services, please reach out to us using the contact details provided below.
- Contact us through the "Help Center - Contact Us" feature within UGREEN NAS;
- Our dedicated Personal Information Protection Officer can be contacted at: ugreennascss@gmail.com
-
You can also contact us by phone.
Contact Numbers and Business Hours:
(US)+1 888 678 8925 Mon-Fri 9:00-17:00 PST
- Contact us by mail at the following address:
Registered Addresses: 108 WEST 13TH ST WILMINGTON, DE 19801, USA County of Delaware
- To ensure efficient handling of your inquiries and timely feedback, please provide proof of identity, valid contact information, written requests, and relevant evidence. We aim to process your request within 15 working days after verifying your identity.
- If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
UGREEN NAS Privacy Policy
Effective Date: May 17, 2024
Last Updated: Jun 04, 2024 |
Welcome to UGREEN NAS! America Ugreen Limited,along with its affiliates (LULIAN GROUP LIMITED, UGREEN Hong Kong- HONG KONG UGREEN LIMITED, and UGREEN Germany- UGREEN Group GmbH) hereinafter referred to as "UGREEN" or "We", ), sincerely thank you for trusting us with your personal information. Our commitment is to safeguard the privacy of your personal data, ensuring full compliance with legal requirements in doing so. Therefore, we have prepared this UGREEN NAS Privacy Policy (hereinafter referred to as "this Policy") to help you fully understand how we collect, utilize, share, secure, and store your personal information, and how you can effectively manage your data while using our products and services to make more informed decisions.
This Product Privacy Policy ("Privacy Policy") applies to UGREEN NAS and the applications we provide for use with UGREEN NAS,including mobile apps, desktop apps, TV apps and WeChat apps.
This Privacy Policy describes how Ugreen collects, uses, shares, secures, protects and stores your personal information in order to effectively manage your data to make more informed decisions when using our NAS and NAS application.
The use of information collected through our Products shall be limited to the purpose of providing the service for which our Customers have engaged Ugreen NAS. We maintain a separate privacy policy with respect to our website. To view our Website Privacy Policy, click here.
We urge you to thoroughly read this Policy, paying particular attention to the boldfaced sections, and confirm your complete understanding and agreement before using our products or services.
In addition to this Policy, we may also use real-time notifications (such as pop-ups and page alerts) and feature updates to explain the objectives, extent, and use of the collected information. These real-time notifications and updates form an essential part of this Policy and have the same legal effect. We aim to define all terms used in this policy in a clear, accessible manner for better comprehension. For inquiries, feedback, or suggestions regarding this Policy, please reach out to us using the contact details provided at the end of Section12 of this Privacy Policy should you have any questions, comments or suggestions about this Policy.
By accepting this Policy, you acknowledge the features of UGREEN NAS and consent to the necessary collection of personal data to facilitate the operation of these features. We will process such information for the features or services you select, or as required by law, upon your activation or use of UGREEN NAS. Apart from the essential data needed for UGREEN NAS's core functions and services, and information mandated by legal requirements, you reserve the right to opt-out of additional data processing. Be aware, however, that this may limit access to certain features or services.
- This Policy will help you understand:
- 1. Applicable Scope
- 2. How We Collect and Use Your Personal Information
- 3. Use of Cookies and Other Similar Technologies
- 4. How We Store and Protect Your Personal Data
- 5. How We Share, Assign, and Disclose Your Personal Information
- 6. How to Exercise Your Right to Manager Personal Information
- 7. Specific Clauses of EU General Data Protection Regulation
- 8. The Right to Privacy in California and Other US states
- 9. How We Process Minors' Personal Data
- 10. How Your Personal Information is Transferred Globally
- 11. Policy Updates
- 12. Contact us
1. Applicable Scope
For the purposes of this agreement, "UGREEN NAS" encompasses the products and services accessed and used via the
UGREEN Client, websites, UGREEN software development kit (SDK) for third-party websites or apps, application
programming interfaces (APIs), mini-programs, and any new products and services resulting from technological
advancements (collectively "UGREEN NAS"). Variations in features may exist among different UGREEN NAS versions. We
collect and process your personal information in accordance with this privacy policy unless otherwise specified by
separate policies of other UGREEN NAS versions. In cases where other UGREEN NAS versions have separate policies,
those policies shall also apply. In the event of any conflicts between this Policy and those of other UGREEN NAS
versions, the latter shall control. Please be aware that certain search paths and operations may differ across
UGREEN NAS versions, and should be considered in the context of the actual usage. Except for the activities that the
information would be collected and used for in this Policy, this Policy does not cover third party services, and
such third parties are responsible for describing how they collect and use your personal information.
2. How We Collect and Use Your Personal Information
We collect and use personal information provided by you, generated during your use of UGREEN NAS, or obtained from
third parties with your consent. This is done in order to satisfy your use of UGREEN NAS, communicate with you, and
improve or optimize our products or services. As our offerings evolve, we might alter our products or services.
Should we use your information for purposes not covered in this Policy, or use information collected for specific
purposes for other uses, we will inform you and seek your consent, except where legal grounds or justifications
exist for processing your data without consent. See the UGREEN NAS Personal Information Collection Check list for an
overview of the personal data we gather.
2.1.Contexts for Collecting Personal Data
Registration and Login
Throughout the use of your NAS device, UGREEN has no access to your photos, documents, videos, etc. stored on your
NAS device. Your data can only be accessed by you personally and your friends who accept your sharing.You can log in
with your created local account (excluding official UGREEN Cloud website). The local account is divided into an
administrator account and a non-administrator account; if you use the local account , all data is stored locally on
your NAS device and your cell phone (or computer), UGREEN does not collect any personal data of you. You may also
log in to UGREEN NAS through a local account, during which none of your personal information will be collected. We
shall collect and process your personal information under this Policy if required in other circumstances.
In the official UGREEN website login channel, you can register and log in to UGREEN Cloud using a Ugreen Cloud
account. You can also opt for quick registration and login to UGREEN NAS through a third-party account, provided we
have authorization to access your personal data on the third-party platform, including
Apple accounts, profile pictures, WeChat (nickname, openid), and QQ (nickname) for users in mainland China,
as well as Facebook and Google accounts and other information authorized by you for users in other countries. This
information is used for the creation of a UGREEN Cloud account linked to the third-party account, which you can use
for registration, login, and accessing UGREEN NAS services. In certain instances, we may revalidate and link your
phone number or email to confirm the authenticity and association of your third-party account.
If you encounter difficulties recalling your UGREEN NAS login credentials, you can utilize the password retrieval
feature. For enhanced account security, we may request identity verification through one of four methods: your
UGREEN Cloud account details, device information, local account, and password, or the device sharer's account
information.
(1)UGREEN Cloud account
When logged in with a local account, if you need to use the UGREENlink service, Configuration Backup and
Restoration, or the SMS alert function for important NAS device information, you need to bind and use a UGREEN Cloud
account to register and log in. At this time, you need to provide your phone number (for users in mainland
China) or email (for users in other countries or regions), along with additional
identification information (such as a profile picture and nickname). This enables us to assist with the
registration process, enhance your account details, maintain account security, and support account recovery. We may
link the basic information you provide to your UGREEN NAS device and send important device notifications via SMS or
email. Registration or login to UGREEN NAS is contingent on this information.
(2)Bind device
To successfully bind and manage your
UGREEN NAS device, we need to collect the following information when you bind the device: UGREEN NAS Device
model, device serial number SN and MAC address, IP address, UGREENlink ID (if you enable the UGREENlink feature)
and your customized device name, device system status (online/offline/sleeping), device holding role
(owner/sharer), and warranty expiration time (visible only to administrators). Collecting this information is to assist you in device binding, identifying your device, and associating it with
your account. This ensures you can inquire and manage the devices you have bound with your account. This enables you
to monitor the status of your device in real time and ensures that the management rights of the device are allocated
appropriately. For device administrators, we also gather the device's warranty expiration date to provide prompt
warranty expiration reminders.
- To protect your account against unauthorized access, swiftly identify and address abnormal activities, and safeguard against security threats, we collect the following login history details when you access UGREEN NAS:
- Login Time: Recording the precise login times, accurate to the second;
- Operation Record: Documenting your account logins and unbinding actions;
- Location Information: Determining your login city by analyzing and identifying your IP address;
- IP Address: Used to pinpoint the login network's location (accurate to city);
- Operating System: Identifying the operating system used during login, such as iOS, Android, macOS, Windows;
- Access Method: Determining whether access to UGREEN NAS is via the website or other clients.
- We permit the setting of "trusted devices" to bypass repeated verification for easier and more secure login on these devices. This feature simplifies the login process while maintaining security and ease of use.
- Collection of Login Details: To improve account security, we record the device model and name, login location (identified by IP address, accurate to city), and your most recent login time. This helps us promptly verify who is logging into the account and take the necessary security precautions.
- User Management: You can review your login history and trusted device list, and are entitled to remove any suspicious devices. Should you detect any unusual activity, we advise changing your password and removing suspicious devices to ensure account security.
- Enhance Account Security: By monitoring login history, we effectively monitor for and prevent unauthorized access, maintaining account security. We can take prompt action, including by notifying you and taking further precautions, whenever our system detects any unusual login attempts or security threats.
- Manage Trusted Devices: You are entitled to manage your trusted devices, minimize verification on frequently used devices, and effortlessly delete any suspicious or outdated devices from our system.
(4)Ticket
The "Ticket" feature is available for technical assistance at any time while using UGREEN NAS. To provide optimal
support, we may collect and use data such as your:
UGREEN NAS device's serial number, device model and system, client model, WeChat ID, and other access methods to
UGREEN NAS(such as via LAN or wireless network). This information aids in understanding your product usage, allowing us to
offer tailored technical support and solutions. Our primary aim in collecting this data is to help users identify
and resolve technical issues effectively. We warrant that this information is solely utilized for addressing your
technical issues related to our products and services.
(5)Cloud Storage Services
If you choose to use UGREEN NAS services in conjunction with third-party cloud storage services, such as Baidu
Netdisk (exclusively for mainland China users) and OneDrive, we will collect your account details for these third
party cloud services, including account name, profile picture, membership level, and cloud storage capacity. This
collection facilitates file transfer and synchronization tasks between UGREEN NAS and these third-party services. We
will request file read and write permissions to ensure seamless file transfers and management between UGREEN NAS and
the third-party cloud storage services. We warrant that such permissions will be used solely for the purpose of
smooth file uploads, downloads, and task synchronization. You have the right to decide whether to link third-party
cloud storage services with UGREEN NAS. Declining this connection won't affect your access to other UGREEN NAS
services and features.
(6)LAN Device Search via find.ugnas.com
When you use the WebFind service on find.ugnas.com to search for and activate LAN devices, we collect
device-specific data including the
device name, IP address, Mac address, serial number, operating system version, model name, and status. This
data ensures accurate and efficient identification of LAN devices for your convenience.
(7)UGREENlink Services
Accessing UGREENlink services requires an initial login to your UGREEN Cloud account. Upon login, you may opt to
activate the UGREENlink feature for quick and remote connection to your UGREEN NAS device. To provide this feature,
we will collect the product serial number, IP address, and routing port of your UGREEN NAS device. These
details are essential for establishing a secure connection and optimizing user experience. Serial numbers help
ensure precise and secure linkage to your UGREEN Cloud account, enabling access to UGREENlink services. We gather
your IP address and routing port information when you use UGREENlink features to facilitate remote connectivity to
your device, allowing you to access and manage your UGREEN NAS device from afar. Please note, that this information
is only collected for UGREENlink features. If you choose not to use UGREENlink features, we will not collect or use
this information for the aforementioned purposes.
When you enable our UGREENlink service in a LAN environment, we will collect some information on your device.
Such information includes IPv4 address, IPv6 address, MAC address, DDNS address, device status information
(whether the device has been initialized or whether it is currently online), WOL (Wake-on-LAN) switch status,
device hostname, and device boot time. The abovementioned information is collected to ensure a better connection and access experience when you access
the device in a LAN environment.
- Device Information: This includes your device SN number, UGREEN NAS device system version, network conditions (including your IP address and network connection status), operational logs (including system activities and logs of user-initiated system operations, and) client information (including operating system type and version, and software version information).
- Personal Files in UGREEN NAS Devices Our technical support team may access your personal files stored on UGREEN NAS devices only with your explicit authorization and after granting the appropriate permissions:
- Efficient Technical Support Services: By gathering device information, we can swiftly identify and resolve issues, providing you with precise technical support.
- Specific User Permissions: Initially, our technical support staff will request general user permissions to access device information. This ensures that our access to your device is limited to what is necessary only.
- Comprehensive Diagnostics: For complex technical issues, additional permissions may be requested with your consent. This involves creating and providing an administrator account for the technical support team to access. Access to personal files is only permitted under these specific circumstances.
UGREEN may invite you to participate in user experience surveys to continually optimize our products and services, aiming to deliver a more personalized user experience.
- Email Address Collection: We collect your email address to distribute survey questionnaires, helping us understand your real experiences and feedback regarding UGREEN NAS. Participation is voluntary, and you decide whether to provide this information.
- Survey Distribution: Upon your agreement to participate, we may send surveys to your provided email address. These surveys help us collect your usage experiences, preferences, and suggestions for UGREEN products, informing our product improvements and optimizations.
- Marketing Information: In addition to surveys, we may also send marketing communications to your email. However, we will send those only after obtaining your explicit consent.
(10)Independent and Third Party Services
UGREEN NAS contains information or links we have legally obtained, as well as other independent services we are
licensed to operate. These services may be presented as separate features within UGREEN NAS (such as the UGREEN NAS
Application Center). UGREEN NAS may also integrate or include links to third party content. We reserve the right to
add, reduce, or adjust the content, form, and specific sectors within independent services at any time to expand our
service offerings or optimize user experiences. While we will notify users of these changes in advance, some
modifications may be implemented immediately under certain circumstances.
You may activate and use the above independent services and features via UGREEN NAS. You may be required to enter
into additional agreements or accept separate terms between you and the service provider when using certain
independent services or features. The primary service provider for independent services can be determined through
the independent service agreements or information disclosed within such services. When necessary, we will make these
agreements or terms available for you to review in a reasonable manner. Your use of the above services shall be
deemed as your agreement and understanding of the associated agreements and rules.
Some services or features in UGREEN NAS may be provided by third parties either independently or in partnership with
us. Such services may require separate user agreements, privacy policies, or other binding rules. Carefully review
all agreements and rules (if any) before using third-party services, and ensure you fully understand and agree with
them, assessing any risks involved. Exercise judgment and assess any potential risks when using third party websites
or applications. You shall independently resolve any disputes, damages, or losses arising from the use of third
party services with the third parties concerned. UGREEN NAS shall not be held liable for any direct or indirect
damages caused by third parties.
Be aware that some third parties may use your account ID for data collection and processing. The third party service
provider shall be responsible for the data collection, storage, use, and transmission. UGREEN is not involved in the
processing of such data, nor will it process, access, control, or modify this data. Please choose and use third
party services carefully, as your personal information and data security will be subject to the third party service
provider's terms and policies when using such services.
We recommend consulting with legal experts or professionals before enabling any third party service should you have
any concerns regarding the third party service provider's agreement or terms. UGREEN NAS may not be able to directly
notify you of any changes to third party agreements or terms. Therefore, we recommend regularly reviewing the
agreements or terms for any third party services you use to ensure your rights are protected.
To ensure the smooth operation and security of our products and services, and to protect the legal rights of users, the public, and ourselves, we may collect the following information:
- For secure and efficient software and service operations, we collect your hardware model, operating system version, device identifiers (Android includes IMEI/MEID, AndroidID, OAID, IMSI, SIM card details, GAID, Hardware SN; iOS includes IDFV, IDFA; identifier validity, reset capability, and acquisition methods vary), Network Device Hardware Address, hardware SN, IP address, WLAN access points, Bluetooth, base stations, software version, network access mode and quality, operational, usage, and service log data.
- Your account, device, and service log information may be used and shared with our affiliates and partners for account security assessments, identity verification, violation detection, security incident prevention, and to record, analyze, and address such violations.
- We may collect error log data in the event of unusual errors in UGREEN NAS to analyze and help resolve these issues and assist you in addressing such issues.
To preserve your device settings, you can back up your configurations using the "Configuration Backup and Restoration" function. When you repair your device or carry it from the original country or region to use abroad, you can actively restore your backup data. For this purpose, we need to collect and use the following setting information from you:
- Connectivity and Access: Users and user groups (permissions and advanced settings), file services, device connection data (UGREENlink, DDNS, portal settings), end devices, domains, and LDAP;
- General Settings: Time and language, notification, network, security, and indexing services;
- System Services: System updates, resets, configuration backups, and restorations.
We may collect and use your personal data pursuant to applicable laws under the following legal circumstances:
- With your consent;
- For contract fulfillment as requested by you;
- To comply with legal obligations such as those for anti-money laundering, anti-terrorism, anti-telecommunications fraud, and real-name management;
- The request is directly related to national defense and security;
- Whenever necessary in response to public health emergencies, or to protect the life, health, or property of a natural person in emergencies;
- For criminal investigations, prosecutions, trials, or executing court judgments;
- When you publicly disclose your personal data;
- When the data is sourced from legally disclosed information, including legitimate news reports and government disclosures;
- For maintaining the security and stable operation of our products/services, including fault detection and resolution;
- Any other circumstances provided by law.
2.3.Use Permissions
UGREEN NAS may request certain permissions to provide services. Rest assured that UGREEN NAS will not activate these
permissions by default. Only if you approve and confirm to grant those permissions will UGREEN NAS use them to
collect your data, which will only be used in the necessary contexts specified. It is worth noting that granting
UGREEN NAS a specific permission does not necessarily mean your data will be collected. Although you have granted
such permissions to UGREEN NAS, your data will only be collected under lawful, valid, and necessary circumstances.
Refusing to grant permissions may lead to the unavailability of specific features reliant on said permissions, but
that will not affect you using other UGREEN NAS features. For more information on permissions and their uses, refer
to the UGREEN NAS Permission Application and Usage Description.
3. Use of Cookies and Other Similar Technologies
Cookies and device identifiers are commonly utilized across the Internet. We may use such technologies to store
cookies or anonymous identifiers on your device when accessing our platform or services, allowing us to collect and
identify data during your use of our product. We warrant not to use cookies for any purposes other than those stated
in this policy. Cookies and similar technologies are primarily used to facilitate product and service usage, enhance
security and efficiency, improve login and response speed, and provide a more effective access experience. Most
browsers allow users to delete browser cache data, including cookies. You can delete cookie data in your browser
settings when using UGREEN NAS on the web. However, deleting cookies may render cookie-dependent features or
services unavailable.
4. How We Store and Protect Your Personal Data
Your personal information will be retained only for the duration necessary to fulfill the purposes outlined in this policy when using our services (unless a longer retention period is required or permitted by law). If you wish to delete your personal data, please contact us using the contact information provided in this Policy Following the necessary retention period, we will delete or anonymize your personal information, except where legal obligations mandate otherwise.
Date Retention Criteria:
- The length of time we maintain an ongoing relationship and provide UGREEN NAS products and services to you (such as the duration of your UGREEN Cloud account or ongoing use of our products);
- Whether the information is modified by the account owner, or deleted by users through their accounts;
- Legal obligations to retain data (for example, certain laws may necessitate retaining your transaction records for a specific period before deletion);
- Our legal team's recommendations for data retention (such as considerations related to contract performance, dispute resolution, legal validity, litigation, or regulatory investigations).
4.2.Data Residency
Generally, personal information collected and generated within the People's Republic of China is stored in the
People's Republic of China,
but as UGREEN NAS offers global services, we may transfer your personal information to our affiliates outside
China. For more information, refer to "10. How Your Personal Information is Transferred Globally".
We prioritize the security of your personal information and adhere to prevailing information security standards. Our aim is to remain at the forefront of industry security practices. Our security strategy includes advanced security technologies such as encrypted transmission, secure data storage, intrusion detection, firewall protection, and regular vulnerability scanning to safeguard your data. Beyond technical solutions, we implement comprehensive management systems to bolster information security. This includes staff training in data protection and meticulous scrutiny and improvement of all data processing and storage procedures. Recognizing that no system is infallible, we continuously identify potential risks and implement precautions to mitigate the likelihood of information leaks, destruction, misuse, unauthorized access, disclosure, or alteration of your personal information. In the event of a security incident, we have established protocols and response mechanisms to promptly notify affected users, rectify security vulnerabilities, and take steps to prevent future occurrences.
- Your information is collected and used in accordance with industry-standard security practices, and you will be informed of the purposes and scope of data use through our user agreement and privacy policy.
- Our network services employ encryption technologies, such as transmission security protocols, to protect your data during transmission.
- Your personal information is encrypted and stored using advanced encryption and isolated through state-of-the-art technology.
- When processing personal information, such as when disclosing personal information and measuring the degree of association, we apply data desensitization techniques, including substitution and encryption-based methods, to enhance the security of any personal data we process.
- Our stringent data access control and multiple identity authorization systems are designed to prevent misuse of personal data and ensure compliance with regulations. Staff authorized to access personal information undergo identity verification, and access control measures, and sign confidentiality agreements, ensuring only authorized employees have access to your data.
4.4.We appreciate your cooperation! Despite implementing these effective measures and complying with legal standards, we cannot assure the security of your personal information when transmitted over unsecured channels. Therefore, we strongly encourage you to take precautions to protect your personal information, including without limitation, the use of complex passwords, regularly changing your password, keeping your account password confidential, and helping us maintain the security of your account and personal data.
4.5.Resolving Information Security Incidents We have established emergency response plans for cybersecurity incidents. Should a personal information security breach occur, we will promptly activate these plans and assemble an emergency response team to identify the cause, minimize losses, and report to authorities as required by law. Additionally, we will inform you about the basics of the security incident, its potential impacts, our response plans, suggestions for mitigating risks, and any remedial measures we can offer. Communication will be through the contact information we have, such as notifications on our platform, messages, calls, or emails.
5. How we share, assign, and disclose your personal information 5.1.Application Programming Interfaces (API) and Software Development Kits (SDK) To guarantee the secure and stable operation of our products and services, UGREEN NAS incorporates software development kits (SDKs)and Application Programming Interfaces (APIs).When using products and services supported by these SDKs/APIs, third-party SDKs/APIs may collect and process your personal information. We perform security monitoring and assessments of third-party SDKs/APIs and adhere strictly to legal and regulatory requirements to safeguard data security. To maximize the protection of your personal information, we urge you to thoroughly understand the privacy policies of these third-party SDKs/APIs before use, as these entities are solely liable for your data under their respective privacy and data protection policies. This policy does not cover third-party products or services that you may access or initiate. We are not liable for the collection, use, and processing of your personal information by these third parties when you utilize their products or services. If you are concerned about the risks associated with these SDKs or APIs, we advise discontinuing their use and contacting us promptly. For circumstances involving UGREEN NAS's use of third-party SDKs/APIs for personal information processing, please refer to the UGREEN NAS Third-Party Personal Information Sharing List.
Your personal information will not be shared with any entities other than UGREEN or its affiliates, except under the following circumstances:
- We receive your or your guardian's explicit authorization or consent.
- Judicial or administrative agencies demand disclosure as part of legal proceedings;
- We engage in legal action or arbitration against a user to protect our legal rights;
- Such sharing is necessitated by the service agreement or usage rules between you and UGREEN;
- To prevent infringement of the legal rights of UGREEN, its affiliates, users of our service, and the public to the extent permitted by law;
- The sharing complies with agreements made between you and third parties.
- The information is utilized for academic research purposes.
We will not transfer your personal information to any company, organization, or individual outside of UGREEN's affiliates, except under the following circumstances:
- With your express prior authorization and consent;
- To comply with legal obligations, legal proceedings, mandatory government directives, and court orders;
- In cases of mergers, separations, bankruptcy liquidation, or acquisition/sale of our or our affiliates' business, your personal information may be transferred as part of the transaction. We will ensure confidentiality during the transfer and require the successor entity to adhere to this privacy policy, or otherwise, seek your reauthorization;
We will only publicly disclose your personal information under the following circumstances:
- 1. With your express prior consent;
- 2. In compliance with laws, legal proceedings, lawsuits, or government orders.
Your Personal Data
Please be aware that in certain instances, we may share, assign, or disclose your personal data without prior authorization or consent:
- The request is directly related to national defense and security;
- The request is related to public security, public health, and other material public interests;
- In circumstances directly involving criminal investigations, prosecutions, trials, or court order execution;
- To protect vital legal rights, such as the life and property of the data subject or other individuals, when obtaining consent is not possible;
- If the personal data has been publicly disclosed by the data subject;
- Personal data obtained from legally disclosed information sources, including without limitation news reports, government information disclosure, and other legal channels.
6.1.When you register or log in using a local account, all data is stored on your UGREEN NAS device and your mobile phone (or computer). We do not collect any of your personal data. At this time, to facilitate the management of your information, you can perform the related operations by following these paths:
- Accessing Path: Profile picture - Homepage (access to Profile picture and email) or Control Panel - User Management (access to Profile picture, username, role, email, etc.)
- Correction Path: Profile picture - Homepage (for editing Profile picture and email) or Control Panel - User Management (for editing Profile picture, username, role, email, etc.)
-
Change or Withdraw Your Consent Authorization:
① Path to change the scope of related permission applications and usage: Personal Profile picture - Privacy Management - System Permission Management.
② Path to withdraw privacy policy authorization on mobile devices: Personal Profile picture - Privacy Management - Privacy Statement - Withdraw Consent. - Deletion Path: Log in with an administrator account, go to Control Panel - User Management to delete a user, or go to Control Panel - Update and Restore to reset the device to factory settings (local accounts are stored on the device, so the device administrator can manage and delete local accounts, or even reset to factory settings to delete all user accounts).
6.2.When you bind and use a UGREEN Cloud account for registration and login, we ensure that you can exercise the following rights regarding your personal information:
(1) Accessing Your Personal Information
Official Website Online Account Path: Home page - account and security (access to profile picture, username,
password, phone number, email, and linked social accounts: WeChat, QQ, Apple, Facebook, Google)
For information not accessible through these methods, you can contact us anytime using the details in Section 12 of
this Policy. We will respond to access requests within 15 business days after verifying your identity.
(2) Correcting Your Personal Account Informationbr/ Official Website Online Account Path: Home page - account
and security (modify profile picture, username, password, phone number, email, and linked social accounts: WeChat,
QQ, Apple, Facebook, Google)
For information not amendable via these methods, contact us anytime using the details in Section 12 of this Policy.
We will respond to correction requests within 15 business days after verifying your identity.
To preserve your device settings, you can back up your configurations using the "Configuration Backup and Restoration" function. When you repair your device or carry it from the original country or region to use abroad, you can actively restore your backup data. For this purpose, we need to collect and use the following setting information from you:
- To change authorization scope for permissions: Profile picture - privacy management - system permission management.
- To withdraw consent for the privacy policy on mobile: Profile picture - privacy management - privacy statement - withdraw consent.
- Rejecting marketing or withdrawing the consent for marketing (not applicable to users in the Chinese Mainland): We shall only send marketing information under applicable laws and with your consent, and you have the right to require us not to use your personal information for marketing. You may unsubscribe from our emails according to the unsubscribe guidelines shown in such emails for rejection and withdrawal.
(4) Deleting Your Personal Information
You can delete your information as follows:
To delete device information:
Official Website Online Account Path: UGREEN NAS devices - unbind device. If we process your personal information
unlawfully, collect or use it without your consent, or if you seek deletion due to account closure and cessation of
our product or service use, you may request the deletion of your personal information. Contact us using the
information in Section12 of this Policy at any time. We will address your deletion request within 15 business days.
Upon deletion, your personal data will no longer be used. However, immediate deletion may not occur to comply with
legal or policy requirements or to maintain necessary data for normal operations. We will store or back up your data
for the required period, after which it will be permanently deleted.
You have the right to close your UGREEN Cloud account using the following methods: https://web.ugnas.com/account/login/#/login
Home page - account and security - close this account;
For accounts logged in via third-party services (Wechat, QQ, Apple, Facebook, or Google) with authorization, please unbind using these methods:
- Official Website Third-Party Account Unbinding Path: Homepage - account and security - bind account - unbind social account;
(6) Obtaining a Copy of Your Personal Information
You are entitled to obtain a copy of your personal information. To request this, please use the following method:
Application Email: ugreennascss@gmail.com
(7) Constraint-based Information System Automated Decision-Making Certain functions involve decisions made by automated systems, including information systems and algorithms. If you believe these automated decisions significantly impact your legal rights, you can request explanations or corrections, and we will provide appropriate solutions. For inquiries, contact us at ugreennascss@gmail.com.
For security, you may need to submit a written request or provide additional identification. We may ask you to verify your identity before processing your request.
We aim to respond within 15 business days.
Reasonable requests are typically processed free of charge. We reserve the right to refuse requests that are unjustifiably repetitive, technically burdensome (such as by necessitating the development of new systems or fundamentally amending current practices), infringe on others' legal rights, or are impractical (such as requests involving data on backup tapes).
Pursuant to applicable law, we are unable to accept requests under the following circumstances:
- The request involves the personal information controller's legal obligations;
- The request is directly related to national defense and security;
- The request is related to public security, public health, and other material public interests;
- The request is directly related to a criminal investigation, prosecution, trial, or enforcement of a judgment;
- If the personal information controller has evidence of the request being made in bad faith or as an abuse of rights;
- To protect vital legal rights, such as the life and property of the data subject or other individuals, when obtaining consent is not possible;
- When responding to a request made by a subject of the personal information will materially infringe upon the legal rights of the subject of the personal information or other individuals or organizations;
- A commercial trade secret is concerned.
For users in the European Economic Area (EEA) or the UK, this Section applies in addition to the terms specified in this Policy.America Ugreen Limited is the Controller of your data under GDPR.
7.1.Data Subject Rights
As a user in the European Economic Area (EEA) or the UK, you are entitled to the following rights regarding the personal data we process as a personal data controller:
- Right to Data Access/Portability: You have the right to access personal information held by us and can request that we provide this data for you to transfer to other service providers;
- Right to Erasure: You can request the erasure of your personal data held by us under certain circumstances (such as where the data is no longer necessary for the purposes for which it was initially collected);
- Right to Object to Processing: You have the right to object to our processing of your personal data and require us to stop such and/or stop sending you instant messaging marketing;
- Right to Correction: You have the right to require us to correct any inaccurate or incomplete personal data;
- Right to Restrict Processing: You have the right to require that we limit the processing of your personal data under certain circumstances (for example, if you dispute the accuracy of the data we hold or if you believe the processing is unlawful).
If you have additional questions regarding our use of your personal data, please direct your inquiries to the contact information specified in Section12 of this Policy. Note that we may request further information from you to verify your identity and ensure your entitlement to access your personal data.
You also have the right to file a complaint with a data protection agency. For more details, please contact your local data protection agency.
We process your information in a lawful, transparent, and fair manner. Depending on the particular personal data and context, UGREEN may rely on various legal grounds for processing personal data as a controller in areas like the EEA and UK:
- Contractual Necessity: When we enter into a contract directly with you, we process your personal data as necessary to prepare, sign, perform, and manage the contract;
- Specific withdrawal of consent: We require your prior consent before using Cookies to show advertisements and analyze customized advertisements sent by our partners, or analyze your use of our website. You are entitled to withdraw your consent at any time via the Cookie management tool in Cookie Settings.
- Required for compliance with our legal obligations: We process your personal data based on legal obligations to comply with EEA laws, codes of practice, guidelines, and rules that are applicable to us, and to respond to requests or other communications from jurisdictional EEA Agencies, governments, judicial, or other regulatory agencies. This includes detecting, investigating, preventing, and stopping fraudulent, harmful, unauthorized, or illegal activities (Fraud and Abuse Detection) and complying with privacy laws;
- Protecting your material interests or those of others: We process some personal data to protect material interests and to identify and prevent any illegal activities that impact material interests and public security, including child sexual abuse data; and
- we may process your personal data in accordance with the following legal rights to safeguard our (or others') legal rights unless such interests are secondary to your personal information protection or fundamental rights and freedoms:
- Fulfilling and performing contracts between you and the account owner/distributor for our products or services (including issuing bills, complying with contractual obligations and management, and support);
- Developing, testing, improving, and troubleshooting our products and services;
- Ensuring the security and integrity of accounts, activities, products, and services, which involves detecting and preventing malicious activity and violations of our terms and policies, and preventing and addressing security threats;
- Distributing marketing communications, advertisements, or promotions about our products and services;
- Complying with laws, codes of practice, guidelines, and regulations applicable outside the EEA, and responding to requests from non-EEA public agencies, government, judicial, or regulatory agencies, and other communications to fulfill our corporate social responsibilities, protect our rights and assets and those of our clients, resolve disputes, and perform agreements.
7.3.International Data Transfer
UGREEN operates globally, which may necessitate transferring, storing, or processing your personal data in locations
outside the country or region of its initial collection.
For data transfers from the European Economic Area (EEA) and the UK to other countries or territories, it's
important to note that the level of data protection in some destinations may not be considered adequate by the
European Commission. The laws in these countries or regions may not offer the same rights as those in your location,
or they may lack dedicated privacy regulators to address potential complaints. Nevertheless, we will utilize various
legal processes, including, without limitation, having signed the standard contract clauses issued by the European
Commission between America Ugreen Limited and the affiliates in your location (such as the Standard Contract Clauses
issued by the European Commission under the Commission Implementing Decision 2021/914) to ensure the same protection
of your data in the overseas receiving countries as that in the EU.
Regardless of the data storage location, UGREEN commits to processing it in accordance with this policy, adhering to
applicable legal requirements, and implementing contractual or other measures to secure your personal data.
Specifically, for data transfers involving EEA or UK users to countries outside these regions not recognized by the
European Commission as having adequate data protection, we will adhere to the European Commission's standard
contractual clauses for the transfer. For further information on this matter, please feel free to contact us.
8. The Right to Privacy in California and Other US states
If you are located in California or another U.S. state, the provisions in this section supplement those in this
Policy.
The California Consumer Privacy Act of 2018 and the California Privacy Rights Act (CPRA), as amended, along with
their implementing regulations (collectively referred to as the "CCPA"), grant California residents specific rights
regarding their personal information. This section details your rights under the CCPA and how to exercise them.
We process your information in a lawful, transparent, and fair manner. Depending on the particular personal data and context, UGREEN may rely on various legal grounds for processing personal data as a controller in areas like the EEA and UK:
(1) Right to Know of the Collection, Disclosure, and Sale of Your Personal Information
California residents are entitled to request that a business collecting their personal information disclose the
following:
- Fulfilling and performing contracts between you and the account owner/distributor for our products or services (including issuing bills, complying with contractual obligations and management, and support);
- Developing, testing, improving, and troubleshooting our products and services;
- Ensuring the security and integrity of accounts, activities, products, and services, which involves detecting and preventing malicious activity and violations of our terms and policies, and preventing and addressing security threats;
(2) Right to Request the Deletion of Personal Information
California residents are entitled to request businesses delete any personal information they have collected,
subject to exceptions as outlined in the CCPA. UGREEN will provide a clear base for any denied requests for
deletion.
(3) Right to Limit Use of Sensitive Personal Information
You have the right to limit the use of your sensitive personal information for any purpose, except as provided
under Section 7027 (m) of the CCPA.
(4) Right to Opt-Out of the Sale of Personal Information
We do not, nor have we in the past 12 months, sold any personal information we have collected.
(5) Right to Non-Discrimination
UGREEN will not discriminate against individuals exercising their rights under the CCPA.
8.2.How to Exercise Your Rights
To exercise any of the above rights you may submit a verifiable consumer request to us using the contact information
provided in Section12 of this Policy. Only you or an authorized agent can make a verifiable consumer request related
to your personal information. An authorized agent must submit your written permission and their registration filed
with the California Secretary of State to make a request on your behalf.
8.3.Validating Your Request
To respond to your CCPA request, we need to verify your identity or your authorized agent's authority. If initial
verification is unsuccessful, we may request additional information for verification purposes. Any personal
information provided for verification will solely be used for that purpose. For verification, please provide your
name, address, phone number, and email address. We will compare this information with what we already hold and may
request additional documentation, including identification documents, to minimize fraud risks. We may deny or
partially fulfill certain requests as permitted or required by law. For example, in requests for deletion of CCPA
Personal Information, we may retain necessary information for legal purposes, like tax accounting.
California consumers have the right to file a complaint with the California Attorney General's Office under the
CCPS. The Attorney General's Office can be contacted via
https://oag.ca.gov/contact/consumer-complaint-against-business-or-company or by calling (916) 210-6276.
Contact us using the methods below, and we will respond within 30 days: Should more time be needed to process your
request, we will inform you within the initial 30 days.
9. How We Process Minors' Personal Data
Our products and services are primarily intended for adult users. If you are a minor under the laws of your country
or region, please ensure that your parent or guardian reviews this Policy thoroughly. We require that you use our
services or share information with us only with the explicit consent of your parent or guardian.
We are committed to the protection of minors' personal information. If you are a parent or guardian, please ensure
that any child under your care uses our services with your authorized consent. For inquiries regarding a child's
personal information, please contact our dedicated personal information protection department. If you are considered
a minor under the laws of your area, it's important to review this policy with your guardian before using our
product/service. Please make certain that you have your guardian's explicit consent both for using this product and
for sharing your personal information with us. Once a child's personal data is collected with parental consent, we
will use or disclose it only as explicitly agreed by the parent or guardian, in compliance with applicable laws, or
when necessary for the child's protection. If a guardian believes we have collected a minor's personal information
without consent, please contact us at ugreennascss@gmail.com, and we will delete the relevant data promptly upon
request.
10. How Your Personal Information is Transferred Globally
UGREEN offers products and services utilizing resources and servers located worldwide. Consequently, your personal
information may be transferred to or accessed from jurisdictions outside the country where you use our products or
services. These transfers and accesses are conducted in compliance with applicable laws.
To provide you with global UGREEN NAS services, we transfer your personal information from the country of your
account registration (home country) to UGREEN's affiliated entities in various countries. This includes LULIAN GROUP
LIMITED, UGREEN America- AMERICA UGREEN LIMITED, UGREEN Hong Kong- HONG KONG UGREEN LIMITED, and UGREEN Germany-
UGREEN Group GmbH). These services include:
10.1.Global Services
After your registration, we transmit your account's hash value and home country/region details to Hong Kong GREEN.
When you initiate an access request from anywhere in the world, Hong Kong UGREEN determines your home
country/region. This information helps us assign a server close to your location, a necessary step in providing
you with the global UGREEN NAS service. This system ensures that you can conveniently and efficiently access your
UGREEN NAS equipment from any country or region worldwide.
10.2.International Usage
While using NAS abroad, activities like customizing settings, logging in, phone/email management, and managing
UGREEN NAS devices involve transferring your
account, device, and UGREEN NAS device data, along with activity logdata to the nearest UGREEN servers,
which is necessary to provide the services to you. We will transmit the
hash value UGREENlink node domain name identified by your UGREENlink to the UGREEN server closest to your
current country when connecting to your device via UGREENlink.
When taking your private cloud device abroad, to facilitate device setting backup and restoration, your
configuration backup data [refer to 2. (12) for specific data details] will be transferred from the server in your
purchase country to the nearest server abroad upon your data migration request. In some cases, the same server may
be used both domestically and abroad, eliminating cross-border data transfer.
To safeguard cross-border personal information security, we employ technical and managerial measures like
encryption, anonymization, access restriction, and monitoring of offshore UGREEN affiliates and cloud service
providers to comply with China's personal information protection standards.
If you wish to exercise your rights under
6.How you can exercise your rights to manage your personal information, you can refer to this clause and
contact the parties involved at ugreennascss@gmail.com.
11. Policy Updates
We may periodically update this policy. Without your explicit consent, we will not reduce your rights under the
current Privacy Policy. Any changes to this policy will be posted on this page.
For significant updates, we will inform you through push notifications, pop-ups, emails, etc., and seek your
consent again.
11.1.Substantial changes in our service model. Such as changes in personal information processing purposes, processed information types, and usage methods;
11.2.Significant changes in ownership or organizational structure. Such as those resulting from business adjustments, bankruptcy, mergers, or acquisitions;
11.3.Modifications in the main entities of personal information sharing, transfer, or public disclosure;
11.4.Major alterations in your participation in personal information processing and the exercise of your rights;
11.5.Changes in our personal information processing departments, contact details, and complaint channels;
11.6.When a security assessment indicates high risks to users’ personal information.
By utilizing our services, you acknowledge and consent to the collection, use, storage, sharing, management, and protection of your information as outlined in this policy.12. Contact us
12.1.For any inquiries, comments, or suggestions regarding this agreement or our services, please reach out to us using the contact details provided below.
- Contact us through the "Help Center - Contact Us" feature within UGREEN NAS;
- Our dedicated Personal Information Protection Officer can be contacted at: ugreennascss@gmail.com
-
You can also contact us by phone.
Contact Numbers and Business Hours:
(US)+1 888 678 8925 Mon-Fri 9:00-17:00 PST -
Contact us by mail at the following address:
Registered Addresses: 108 WEST 13TH ST WILMINGTON, DE 19801, USA County of Delaware
12.2.To ensure efficient handling of your inquiries and timely feedback, please provide proof of identity, valid contact information, written requests, and relevant evidence. We aim to process your request within 15 working days after verifying your identity.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.UGREEN NAS Privacy Policy
Initial Effective Date: 17/05/2024
Last Updated Date:14/08/2024 |
Welcome to UGREEN NAS and sign up for a global unified account! America Ugreen Limited,along with its affiliates (LULIAN GROUP LIMITED, UGREEN Hong Kong- HONG KONG UGREEN LIMITED, and UGREEN Germany- UGREEN Group GmbH) hereinafter referred to as "UGREEN" or "We", ), sincerely thank you for trusting us with your personal information. Our commitment is to safeguard the privacy of your personal data, ensuring full compliance with legal requirements in doing so. Therefore, we have prepared this UGREEN NAS Privacy Policy (hereinafter referred to as "this Policy") to help you fully understand how we collect, utilize, share, secure, and store your personal information, and how you can effectively manage your data while using our products and services to make more informed decisions.
This Product Privacy Policy ("Privacy Policy") applies to UGREEN NAS and the applications we provide for use with UGREEN NAS,including mobile apps, desktop apps, TV apps and WeChat apps.
This Privacy Policy describes how Ugreen collects, uses, shares, secures, protects and stores your personal information in order to effectively manage your data to make more informed decisions when using our NAS and NAS application.
The use of information collected through our Products shall be limited to the purpose of providing the service
for which our Customers have engaged Ugreen NAS. We maintain a separate privacy policy with respect to our
website. To view our Website Privacy Policy, click here.
We urge you to thoroughly read this Policy, paying particular attention to the boldfaced sections, and confirm your complete understanding and agreement before using our products or services.
In addition to this Policy, we may also use real-time notifications (such as pop-ups and page alerts) and feature updates to explain the objectives, extent, and use of the collected information. These real-time notifications and updates form an essential part of this Policy and have the same legal effect. We aim to define all terms used in this policy in a clear, accessible manner for better comprehension. For inquiries, feedback, or suggestions regarding this Policy, please reach out to us using the contact details provided at the end of Section12 of this Privacy Policy should you have any questions, comments or suggestions about this Policy.
By accepting this Policy, you acknowledge the features of UGREEN NAS and consent to the necessary collection of personal data to facilitate the operation of these features. We will process such information for the features or services you select, or as required by law, upon your activation or use of UGREEN NAS. Apart from the essential data needed for UGREEN NAS's core functions and services, and information mandated by legal requirements, you reserve the right to opt-out of additional data processing. Be aware, however, that this may limit access to certain features or services.
This Policy will help you understand:
1. Applicable Scope
2. How We Collect and Use Your Personal Information
3. Use of Cookies and Other Similar Technologies
4. How We Store and Protect Your Personal Data
5. How We Share, Assign, and Disclose Your Personal Information
6. How to Exercise Your Right to Manager Personal Information
7. Specific Clauses of EU General Data Protection Regulation
8. The Right to Privacy in California and Other US states
9. How We Process Minors' Personal Data
10. How Your Personal Information is Transferred Globally
11. Policy Updates
12. Contact us
- Applicable Scope
For the purposes of this agreement, "UGREEN NAS" encompasses the products and services accessed and used via the UGREEN Client, websites, UGREEN software development kit (SDK) for third-party websites or apps, application programming interfaces (APIs), mini-programs, and any new products and services resulting from technological advancements (collectively "UGREEN NAS"). Variations in features may exist among different UGREEN NAS versions. We collect and process your personal information in accordance with this privacy policy unless otherwise specified by separate policies of other UGREEN NAS versions. In cases where other UGREEN NAS versions have separate policies, those policies shall also apply. In the event of any conflicts between this Policy and those of other UGREEN NAS versions, the latter shall control. Please be aware that certain search paths and operations may differ across UGREEN NAS versions, and should be considered in the context of the actual usage.
Except for the activities that the information would be collected and used for in this Policy, this Policy does not cover third party services, and such third parties are responsible for describing how they collect and use your personal information.
- How We Collect and Use Your Personal Information
We collect and use personal information provided by you, generated during your use of UGREEN NAS, or obtained from third parties with your consent. This is done in order to satisfy your use of UGREEN NAS, communicate with you, and improve or optimize our products or services. As our offerings evolve, we might alter our products or services. Should we use your information for purposes not covered in this Policy, or use information collected for specific purposes for other uses, we will inform you and seek your consent, except where legal grounds or justifications exist for processing your data without consent. See the UGREEN NAS Personal Information Collection Check list for an overview of the personal data we gather.
- Contexts for Collecting Personal Data
Registration and Login
Throughout the use of your NAS device, UGREEN has no access to your photos, documents, videos, etc. stored on your NAS device. Your data can only be accessed by you personally and your friends who accept your sharing.You can log in with your created local account (excluding official UGREEN Cloud website). The local account is divided into an administrator account and a non-administrator account; if you use the local account , all data is stored locally on your NAS device and your cell phone (or computer), UGREEN does not collect any personal data of you. You may also log in to UGREEN NAS through a local account, during which none of your personal information will be collected. We shall collect and process your personal information under this Policy if required in other circumstances.
If you encounter difficulties recalling your UGREEN NAS login credentials, you can utilize the password retrieval feature. For enhanced account security, we may request identity verification through one of four methods: your UGREEN Cloud account details, device information, local account, and password, or the device sharer's account information.
- UGREEN Cloud account
When logged in with a local account, if you need to use the UGREENlink service, Configuration Backup and Restoration, or the SMS alert function for important NAS device information, you need to bind and use a UGREEN Cloud account to register and log in. At this time, you need to provide your phone number (for users in mainland China) or email (for users in other countries or regions), along with additional identification information (such as a profile picture and nickname). This enables us to assist with the registration process, enhance your account details, maintain account security, and support account recovery. We may link the basic information you provide to your UGREEN NAS device and send important device notifications via SMS or email. Registration or login to UGREEN NAS is contingent on this information.
- Bind device
To successfully bind and manage your UGREEN NAS device, we need to collect the following information when you bind the device: UGREEN NAS Device model, device serial number SN and MAC address, IP address, UGREENlink ID (if you enable the UGREENlink feature) and your customized device name, device system status (online/offline/sleeping), device holding role (owner/sharer), and warranty expiration time (visible only to administrators). Collecting this information is to assist you in device binding, identifying your device, and associating it with your account. This ensures you can inquire and manage the devices you have bound with your account. This enables you to monitor the status of your device in real time and ensures that the management rights of the device are allocated appropriately. For device administrators, we also gather the device's warranty expiration date to provide prompt warranty expiration reminders.
- Login History and Trusted Device Management
①To protect your account against unauthorized access, swiftly identify and address abnormal activities, and safeguard against security threats, we collect the following login history details when you access UGREEN NAS:
1) Login Time: Recording the precise login times, accurate to the second;
2) Operation Record: Documenting your account logins and unbinding actions;
3) Location Information: Determining your login city by analyzing and identifying your IP address;
4) IP Address: Used to pinpoint the login network's location (accurate to city);
5) Operating System: Identifying the operating system used during login, such as iOS, Android, macOS, Windows;
6) Access Method: Determining whether access to UGREEN NAS is via the website or other clients.
②We permit the setting of "trusted devices" to bypass repeated verification for easier and more secure login on these devices. This feature simplifies the login process while maintaining security and ease of use.
1) Collection of Login Details: To improve account security, we record the device model and name, login location (identified by IP address, accurate to city), and your most recent login time. This helps us promptly verify who is logging into the account and take the necessary security precautions.
2) User Management: You can review your login history and trusted device list, and are entitled to remove any suspicious devices. Should you detect any unusual activity, we advise changing your password and removing suspicious devices to ensure account security.
Trusted Device Information Collection Aims to:
- Enhance Account Security: By monitoring login history, we effectively monitor for and prevent unauthorized access, maintaining account security. We can take prompt action, including by notifying you and taking further precautions, whenever our system detects any unusual login attempts or security threats.
- Manage Trusted Devices: You are entitled to manage your trusted devices, minimize verification on frequently used devices, and effortlessly delete any suspicious or outdated devices from our system.
- Ticket
The "Ticket" feature is available for technical assistance at any time while using UGREEN NAS. To provide optimal support, we may collect and use data such as your: UGREEN NAS device's serial number, device model and system, client model, WeChat ID, and other access methods to UGREEN NAS(such as via LAN or wireless network). This information aids in understanding your product usage, allowing us to offer tailored technical support and solutions. Our primary aim in collecting this data is to help users identify and resolve technical issues effectively. We warrant that this information is solely utilized for addressing your technical issues related to our products and services.
- Cloud Storage Services
If you choose to use UGREEN NAS services in conjunction with third-party cloud storage services, such as Baidu Netdisk (exclusively for mainland China users) and OneDrive, we will collect your account details for these third party cloud services, including account name, profile picture, membership level, and cloud storage capacity. This collection facilitates file transfer and synchronization tasks between UGREEN NAS and these third-party services. We will request file read and write permissions to ensure seamless file transfers and management between UGREEN NAS and the third-party cloud storage services. We warrant that such permissions will be used solely for the purpose of smooth file uploads, downloads, and task synchronization. You have the right to decide whether to link third-party cloud storage services with UGREEN NAS. Declining this connection won't affect your access to other UGREEN NAS services and features.
- LAN Device Search via find.ugnas.com
When you use the WebFind service on find.ugnas.com to search for and activate LAN devices, we collect device-specific data including the device name, IP address, Mac address, serial number, operating system version, model name, and status. This data ensures accurate and efficient identification of LAN devices for your convenience.
- UGREENlink Services
Accessing UGREENlink services requires an initial login to your UGREEN Cloud account. Upon login, you may opt to activate the UGREENlink feature for quick and remote connection to your UGREEN NAS device. To provide this feature, we will collect the product serial number, IP address, and routing port of your UGREEN NAS device. These details are essential for establishing a secure connection and optimizing user experience. Serial numbers help ensure precise and secure linkage to your UGREEN Cloud account, enabling access to UGREENlink services. We gather your IP address and routing port information when you use UGREENlink features to facilitate remote connectivity to your device, allowing you to access and manage your UGREEN NAS device from afar. Please note, that this information is only collected for UGREENlink features. If you choose not to use UGREENlink features, we will not collect or use this information for the aforementioned purposes.
When you enable our UGREENlink service in a LAN environment, we will collect some information on your device. Such information includes IPv4 address, IPv6 address, MAC address, DDNS address, device status information (whether the device has been initialized or whether it is currently online), WOL (Wake-on-LAN) switch status, device hostname, and device boot time. The abovementioned information is collected to ensure a better connection and access experience when you access the device in a LAN environment.
- Technical Support
When seeking assistance from our technical support team, we may collect the following information:
①Device Information: This includes your device SN number, UGREEN NAS device system version, network conditions (including your IP address and network connection status), operational logs (including system activities and logs of user-initiated system operations, and) client information (including operating system type and version, and software version information).
②Personal Files in UGREEN NAS Devices Our technical support team may access your personal files stored on UGREEN NAS devices only with your explicit authorization and after granting the appropriate permissions:
This information is collected for the following purposes:
①Efficient Technical Support Services: By gathering device information, we can swiftly identify and resolve issues, providing you with precise technical support.
②Specific User Permissions: Initially, our technical support staff will request general user permissions to access device information. This ensures that our access to your device is limited to what is necessary only.
③Comprehensive Diagnostics: For complex technical issues, additional permissions may be requested with your consent. This involves creating and providing an administrator account for the technical support team to access. Access to personal files is only permitted under these specific circumstances.
- User Experience Survey (Excludes Mainland China Users)
UGREEN may invite you to participate in user experience surveys to continually optimize our products and services, aiming to deliver a more personalized user experience.
①Email Address Collection: We collect your email address to distribute survey questionnaires, helping us understand your real experiences and feedback regarding UGREEN NAS. Participation is voluntary, and you decide whether to provide this information.
②Survey Distribution: Upon your agreement to participate, we may send surveys to your provided email address. These surveys help us collect your usage experiences, preferences, and suggestions for UGREEN products, informing our product improvements and optimizations.
③Marketing Information: In addition to surveys, we may also send marketing communications to your email. However, we will send those only after obtaining your explicit consent.
Prior consent will be sought before conducting any user experience surveys or sending marketing information via email. We warrant that no surveys or marketing materials will be sent without your explicit agreement.
- Independent and Third Party Services
UGREEN NAS contains information or links we have legally obtained, as well as other independent services we are licensed to operate. These services may be presented as separate features within UGREEN NAS (such as the UGREEN NAS Application Center). UGREEN NAS may also integrate or include links to third party content. We reserve the right to add, reduce, or adjust the content, form, and specific sectors within independent services at any time to expand our service offerings or optimize user experiences. While we will notify users of these changes in advance, some modifications may be implemented immediately under certain circumstances.
You may activate and use the above independent services and features via UGREEN NAS. You may be required to enter into additional agreements or accept separate terms between you and the service provider when using certain independent services or features. The primary service provider for independent services can be determined through the independent service agreements or information disclosed within such services. When necessary, we will make these agreements or terms available for you to review in a reasonable manner. Your use of the above services shall be deemed as your agreement and understanding of the associated agreements and rules.
Some services or features in UGREEN NAS may be provided by third parties either independently or in partnership with us. Such services may require separate user agreements, privacy policies, or other binding rules. Carefully review all agreements and rules (if any) before using third-party services, and ensure you fully understand and agree with them, assessing any risks involved. Exercise judgment and assess any potential risks when using third party websites or applications. You shall independently resolve any disputes, damages, or losses arising from the use of third party services with the third parties concerned. UGREEN NAS shall not be held liable for any direct or indirect damages caused by third parties.
Be aware that some third parties may use your account ID for data collection and processing. The third party service provider shall be responsible for the data collection, storage, use, and transmission. UGREEN is not involved in the processing of such data, nor will it process, access, control, or modify this data. Please choose and use third party services carefully, as your personal information and data security will be subject to the third party service provider's terms and policies when using such services.
We recommend consulting with legal experts or professionals before enabling any third party service should you have any concerns regarding the third party service provider's agreement or terms. UGREEN NAS may not be able to directly notify you of any changes to third party agreements or terms. Therefore, we recommend regularly reviewing the agreements or terms for any third party services you use to ensure your rights are protected.
- Operation and Security
To ensure the smooth operation and security of our products and services, and to protect the legal rights of users, the public, and ourselves, we may collect the following information:
①For secure and efficient software and service operations, we collect your hardware model, operating system version, device identifiers (Android includes IMEI/MEID, AndroidID, OAID, IMSI, SIM card details, GAID, Hardware SN; iOS includes IDFV, IDFA; identifier validity, reset capability, and acquisition methods vary), Network Device Hardware Address, hardware SN, IP address, WLAN access points, Bluetooth, base stations, software version, network access mode and quality, operational, usage, and service log data.
②Your account, device, and service log information may be used and shared with our affiliates and partners for account security assessments, identity verification, violation detection, security incident prevention, and to record, analyze, and address such violations.
③We may collect error log data in the event of unusual errors in UGREEN NAS to analyze and help resolve these issues and assist you in addressing such issues.
- Configuration Backup and Restoration
To preserve your device settings, you can back up your configurations using the "Configuration Backup and Restoration" function. When you repair your device or carry it from the original country or region to use abroad, you can actively restore your backup data. For this purpose, we need to collect and use the following setting information from you:
①Connectivity and Access: Users and user groups (permissions and advanced settings), file services, device connection data (UGREENlink, DDNS, portal settings), end devices, domains, and LDAP;
②General Settings: Time and language, notification, network, security, and indexing services;
③System Services: System updates, resets, configuration backups, and restorations.
- Personal Information Processing Pursuant to the Law
We may collect and use your personal data pursuant to applicable laws under the following legal circumstances:
- With your consent;
- For contract fulfillment as requested by you;
- To comply with legal obligations such as those for anti-money laundering, anti-terrorism, anti-telecommunications fraud, and real-name management;
- The request is directly related to national defense and security;
- Whenever necessary in response to public health emergencies, or to protect the life, health, or property of a natural person in emergencies;
- For criminal investigations, prosecutions, trials, or executing court judgments;
- When you publicly disclose your personal data;
- When the data is sourced from legally disclosed information, including legitimate news reports and government disclosures;
- For maintaining the security and stable operation of our products/services, including fault detection and resolution;
- Any other circumstances provided by law.
Please note, in scenarios from (2) to (10) above, we may process your personal data in accordance with applicable laws without requiring your consent.
- Use Permissions
UGREEN NAS may request certain permissions to provide services. Rest assured that UGREEN NAS will not activate these permissions by default. Only if you approve and confirm to grant those permissions will UGREEN NAS use them to collect your data, which will only be used in the necessary contexts specified. It is worth noting that granting UGREEN NAS a specific permission does not necessarily mean your data will be collected. Although you have granted such permissions to UGREEN NAS, your data will only be collected under lawful, valid, and necessary circumstances. Refusing to grant permissions may lead to the unavailability of specific features reliant on said permissions, but that will not affect you using other UGREEN NAS features. For more information on permissions and their uses, refer to the UGREEN NAS Permission Application and Usage Description.
- Use of Cookies and Other Similar Technologies
Cookies and device identifiers are commonly utilized across the Internet. We may use such technologies to store cookies or anonymous identifiers on your device when accessing our platform or services, allowing us to collect and identify data during your use of our product. We warrant not to use cookies for any purposes other than those stated in this policy. Cookies and similar technologies are primarily used to facilitate product and service usage, enhance security and efficiency, improve login and response speed, and provide a more effective access experience. Most browsers allow users to delete browser cache data, including cookies. You can delete cookie data in your browser settings when using UGREEN NAS on the web. However, deleting cookies may render cookie-dependent features or services unavailable.
-
How We Store and Protect Your Personal Data
- Save Date
Your personal information will be retained only for the duration necessary to fulfill the purposes outlined in this policy when using our services (unless a longer retention period is required or permitted by law). If you wish to delete your personal data, please contact us using the contact information provided in this Policy Following the necessary retention period, we will delete or anonymize your personal information, except where legal obligations mandate otherwise.
Date Retention Criteria:
- The length of time we maintain an ongoing relationship and provide UGREEN NAS products and services to you (such as the duration of your UGREEN Cloud account or ongoing use of our products);
- Whether the information is modified by the account owner, or deleted by users through their accounts;
- Legal obligations to retain data (for example, certain laws may necessitate retaining your transaction records for a specific period before deletion);
-
Our legal team's recommendations for data retention (such as considerations related to contract performance,
dispute resolution, legal validity, litigation, or regulatory investigations).
- Data Residency
Generally, personal information collected and generated within the People's Republic of China is stored in the People's Republic of China, but as UGREEN NAS offers global services, we may transfer your personal information to our affiliates outside China. For more information, refer to "10. How Your Personal Information is Transferred Globally".
- Security Measures
We prioritize the security of your personal information and adhere to prevailing information security standards. Our aim is to remain at the forefront of industry security practices. Our security strategy includes advanced security technologies such as encrypted transmission, secure data storage, intrusion detection, firewall protection, and regular vulnerability scanning to safeguard your data. Beyond technical solutions, we implement comprehensive management systems to bolster information security. This includes staff training in data protection and meticulous scrutiny and improvement of all data processing and storage procedures. Recognizing that no system is infallible, we continuously identify potential risks and implement precautions to mitigate the likelihood of information leaks, destruction, misuse, unauthorized access, disclosure, or alteration of your personal information. In the event of a security incident, we have established protocols and response mechanisms to promptly notify affected users, rectify security vulnerabilities, and take steps to prevent future occurrences.
- Your information is collected and used in accordance with industry-standard security practices, and you will be informed of the purposes and scope of data use through our user agreement and privacy policy.
- Our network services employ encryption technologies, such as transmission security protocols, to protect your data during transmission.
- Your personal information is encrypted and stored using advanced encryption and isolated through state-of-the-art technology.
- When processing personal information, such as when disclosing personal information and measuring the degree of association, we apply data desensitization techniques, including substitution and encryption-based methods, to enhance the security of any personal data we process.
- Our stringent data access control and multiple identity authorization systems are designed to prevent misuse of personal data and ensure compliance with regulations. Staff authorized to access personal information undergo identity verification, and access control measures, and sign confidentiality agreements, ensuring only authorized employees have access to your data.
While we implement robust security measures, we acknowledge that no system can guarantee absolute security. As such, we cannot promise complete data security, especially in instances beyond our control. Please be aware that despite our best efforts, security issues beyond our control, such as malicious attacks, may occur when using our products and services.
- We appreciate your cooperation!
Despite implementing these effective measures and complying with legal standards, we cannot assure the security of your personal information when transmitted over unsecured channels. Therefore, we strongly encourage you to take precautions to protect your personal information, including without limitation, the use of complex passwords, regularly changing your password, keeping your account password confidential, and helping us maintain the security of your account and personal data.
- Resolving Information Security Incidents
We have established emergency response plans for cybersecurity incidents. Should a personal information security breach occur, we will promptly activate these plans and assemble an emergency response team to identify the cause, minimize losses, and report to authorities as required by law. Additionally, we will inform you about the basics of the security incident, its potential impacts, our response plans, suggestions for mitigating risks, and any remedial measures we can offer. Communication will be through the contact information we have, such as notifications on our platform, messages, calls, or emails.
-
How we share, assign, and disclose your personal information
- Application Programming Interfaces (API) and Software Development Kits (SDK)
To guarantee the secure and stable operation of our products and services, UGREEN NAS incorporates software development kits (SDKs)and Application Programming Interfaces (APIs).When using products and services supported by these SDKs/APIs, third-party SDKs/APIs may collect and process your personal information. We perform security monitoring and assessments of third-party SDKs/APIs and adhere strictly to legal and regulatory requirements to safeguard data security. To maximize the protection of your personal information, we urge you to thoroughly understand the privacy policies of these third-party SDKs/APIs before use, as these entities are solely liable for your data under their respective privacy and data protection policies. This policy does not cover third-party products or services that you may access or initiate. We are not liable for the collection, use, and processing of your personal information by these third parties when you utilize their products or services. If you are concerned about the risks associated with these SDKs or APIs, we advise discontinuing their use and contacting us promptly. For circumstances involving UGREEN NAS's use of third-party SDKs/APIs for personal information processing, please refer to the UGREEN NAS Third-Party Personal Information Sharing List.
- Sharing
Your personal information will not be shared with any entities other than UGREEN or its affiliates, except under the following circumstances:
- We receive your or your guardian's explicit authorization or consent.
- Judicial or administrative agencies demand disclosure as part of legal proceedings;
- We engage in legal action or arbitration against a user to protect our legal rights;
- Such sharing is necessitated by the service agreement or usage rules between you and UGREEN;
- To prevent infringement of the legal rights of UGREEN, its affiliates, users of our service, and the public to the extent permitted by law;
- The sharing complies with agreements made between you and third parties.
-
The information is utilized for academic research purposes.
- Assignment
We will not transfer your personal information to any company, organization, or individual outside of UGREEN's affiliates, except under the following circumstances:
- With your express prior authorization and consent;
- To comply with legal obligations, legal proceedings, mandatory government directives, and court orders;
-
In cases of mergers, separations, bankruptcy liquidation, or acquisition/sale of our or our affiliates'
business, your personal information may be transferred as part of the transaction. We will ensure
confidentiality during the transfer and require the successor entity to adhere to this privacy policy, or
otherwise, seek your reauthorization.
- Disclosure
We will only publicly disclose your personal information under the following circumstances:
- 1. With your express prior consent;
-
2. In compliance with laws, legal proceedings, lawsuits, or government orders.
- Exceptions to Obtaining Your Consent when Sharing, Assigning, or Disclosing Your Personal Data
Please be aware that in certain instances, we may share, assign, or disclose your personal data without prior authorization or consent:
- The request is directly related to national defense and security;
- The request is related to public security, public health, and other material public interests;
- In circumstances directly involving criminal investigations, prosecutions, trials, or court order execution;
- To protect vital legal rights, such as the life and property of the data subject or other individuals, when obtaining consent is not possible;
- If the personal data has been publicly disclosed by the data subject;
- Personal data obtained from legally disclosed information sources, including without limitation news reports, government information disclosure, and other legal channels.
-
How to Exercise Your Right to Manage Personal Information
- When you register or log in using a local account, all data is stored on your UGREEN NAS device and your mobile phone (or computer). We do not collect any of your personal data. At this time, to facilitate the management of your information, you can perform the related operations by following these paths:
- Accessing Path: Profile picture - Homepage (access to Profile picture and email) or Control Panel - User Management (access to Profile picture, username, role, email, etc.)
- Correction Path: Profile picture - Homepage (for editing Profile picture and email) or Control Panel - User Management (for editing Profile picture, username, role, email, etc.)
- Change or Withdraw Your Consent Authorization:
① Path to change the scope of related permission applications and usage: Personal Profile picture - Privacy Management - System Permission Management.
② Path to withdraw privacy policy authorization on mobile devices: Personal Profile picture - Privacy Management - Privacy Statement - Withdraw Consent.
-
Deletion Path: Log in with an administrator account, go to Control Panel - User Management to delete a user, or
go to Control Panel - Update and Restore to reset the device to factory settings (local accounts are stored on
the device, so the device administrator can manage and delete local accounts, or even reset to factory settings
to delete all user accounts).
- When you bind and use a UGREEN Cloud account for registration and login, we ensure that you can exercise the following rights regarding your personal information:
- Accessing Your Personal Information
Official Website Online Account Path: Home page - account and security (access to profile picture, username, password, phone number, email)
For information not accessible through these methods, you can contact us anytime using the details in Section 12 of this Policy. We will respond to access requests within 15 business days after verifying your identity.
- Correcting Your Personal Account Information
Official Website Online Account Path: Home page - account and security (modify profile picture, username, password, phone number, email)
For information not amendable via these methods, contact us anytime using the details in Section 12 of this Policy. We will respond to correction requests within 15 business days after verifying your identity.
- Modifying Authorization Scope or Withdrawing Consent
①To change authorization scope for permissions: Profile picture - privacy management - system permission management.
②To withdraw consent for the privacy policy on mobile: Profile picture - privacy management - privacy statement - withdraw consent.
③Rejecting marketing or withdrawing the consent for marketing (not applicable to users in the Chinese Mainland): We shall only send marketing information under applicable laws and with your consent, and you have the right to require us not to use your personal information for marketing. You may unsubscribe from our emails according to the unsubscribe guidelines shown in such emails for rejection and withdrawal.
Following the withdrawal of consent, we will cease processing the related personal information. However, your withdraw of consent will not affect the processing of personal information previously conducted based on your authorization. If you encounter issues during this process, contact us anytime using the details provided in Section12of this Policy.
- Deleting Your Personal Information
You can delete your information as follows:
To delete device information:
Official Website Online Account Path: UGREEN NAS devices - unbind device.
If we process your personal information unlawfully, collect or use it without your consent, or if you seek deletion due to account closure and cessation of our product or service use, you may request the deletion of your personal information. Contact us using the information in Section12 of this Policy at any time. We will address your deletion request within 15 business days. Upon deletion, your personal data will no longer be used. However, immediate deletion may not occur to comply with legal or policy requirements or to maintain necessary data for normal operations. We will store or back up your data for the required period, after which it will be permanently deleted.
- Account Closure
You have the right to close your UGREEN Cloud account using the following methods:
https://web.ugnas.com/account/login/#/login
Home page - account and security - close this account;
For additional assistance, contact us using the information in Section12 We will process your account closure by deleting your personal information associated with the registered cellphone within 15 business days after verifying your identity.
- Obtaining a Copy of Your Personal Information
You are entitled to obtain a copy of your personal information. To request this, please use the following method:
Application Email: ugreennascss@gmail.com
(7) Constraint-based Information System Automated Decision-Making
Certain functions involve decisions made by automated systems, including information systems and algorithms. If you believe these automated decisions significantly impact your legal rights, you can request explanations or corrections, and we will provide appropriate solutions. For inquiries, contact us at ugreennascss@gmail.com.
(8) Response to Your Requests
For security, you may need to submit a written request or provide additional identification. We may ask you to verify your identity before processing your request.
We aim to respond within 15 business days.
Reasonable requests are typically processed free of charge. We reserve the right to refuse requests that are unjustifiably repetitive, technically burdensome (such as by necessitating the development of new systems or fundamentally amending current practices), infringe on others' legal rights, or are impractical (such as requests involving data on backup tapes).
Pursuant to applicable law, we are unable to accept requests under the following circumstances:
①The request involves the personal information controller's legal obligations;
②The request is directly related to national defense and security;
③The request is related to public security, public health, and other material public interests;
④The request is directly related to a criminal investigation, prosecution, trial, or enforcement of a judgment;
⑤If the personal information controller has evidence of the request being made in bad faith or as an abuse of rights;
⑥To protect vital legal rights, such as the life and property of the data subject or other individuals, when obtaining consent is not possible;
⑦When responding to a request made by a subject of the personal information will materially infringe upon the legal rights of the subject of the personal information or other individuals or organizations;
⑧A commercial trade secret is concerned.
This Policy does not create, extend, or modify rights for data subjects and consumers in mainland China, Hong Kong, China, the European Union, any U.S. state (including California), or UGREEN's obligations unless otherwise required by the GDPR, CCPA, or other privacy laws.
- Specific Clauses of EU General Data Protection Regulations
For users in the European Economic Area (EEA) or the UK, this Section applies in addition to the terms specified in this Policy.America Ugreen Limited is the Controller of your data under GDPR.
- Data Subject Rights
As a user in the European Economic Area (EEA) or the UK, you are entitled to the following rights regarding the personal data we process as a personal data controller:
- Right to Data Access/Portability: You have the right to access personal information held by us and can request that we provide this data for you to transfer to other service providers;
- Right to Erasure: You can request the erasure of your personal data held by us under certain circumstances (such as where the data is no longer necessary for the purposes for which it was initially collected);
- Right to Object to Processing: You have the right to object to our processing of your personal data and require us to stop such and/or stop sending you instant messaging marketing;
- Right to Correction: You have the right to require us to correct any inaccurate or incomplete personal data;
- Right to Restrict Processing: You have the right to require that we limit the processing of your personal data under certain circumstances (for example, if you dispute the accuracy of the data we hold or if you believe the processing is unlawful).
To exercise these rights, please reach out to us using the contact information provided in Section12 of this Policy. We will review and respond to each request in accordance with applicable data protection laws.
If you have additional questions regarding our use of your personal data, please direct your inquiries to the contact information specified in Section12 of this Policy. Note that we may request further information from you to verify your identity and ensure your entitlement to access your personal data.
You also have the right to file a complaint with a data protection agency. For more details, please contact your local data protection agency.
- Legal Basis for Processing Personal Data
We process your information in a lawful, transparent, and fair manner. Depending on the particular personal data and context, UGREEN may rely on various legal grounds for processing personal data as a controller in areas like the EEA and UK:
- Contractual Necessity: When we enter into a contract directly with you, we process your personal data as necessary to prepare, sign, perform, and manage the contract;
- Specific withdrawal of consent: We require your prior consent before using Cookies to show advertisements and analyze customized advertisements sent by our partners, or analyze your use of our website. You are entitled to withdraw your consent at any time via the Cookie management tool in Cookie Settings.
- Required for compliance with our legal obligations: We process your personal data based on legal obligations to comply with EEA laws, codes of practice, guidelines, and rules that are applicable to us, and to respond to requests or other communications from jurisdictional EEA Agencies, governments, judicial, or other regulatory agencies. This includes detecting, investigating, preventing, and stopping fraudulent, harmful, unauthorized, or illegal activities (Fraud and Abuse Detection) and complying with privacy laws;
- Protecting your material interests or those of others: We process some personal data to protect material interests and to identify and prevent any illegal activities that impact material interests and public security, including child sexual abuse data; and
- we may process your personal data in accordance with the following legal rights to safeguard our (or others') legal rights unless such interests are secondary to your personal information protection or fundamental rights and freedoms:
①Fulfilling and performing contracts between you and the account owner/distributor for our products or services (including issuing bills, complying with contractual obligations and management, and support);
② Developing, testing, improving, and troubleshooting our products and services;
③ Ensuring the security and integrity of accounts, activities, products, and services, which involves detecting and preventing malicious activity and violations of our terms and policies, and preventing and addressing security threats;
④Distributing marketing communications, advertisements, or promotions about our products and services;
⑤Complying with laws, codes of practice, guidelines, and regulations applicable outside the EEA, and responding to requests from non-EEA public agencies, government, judicial, or regulatory agencies, and other communications to fulfill our corporate social responsibilities, protect our rights and assets and those of our clients, resolve disputes, and perform agreements.
- International Data Transfer
UGREEN operates globally, which may necessitate transferring, storing, or processing your personal data in locations outside the country or region of its initial collection.
For data transfers from the European Economic Area (EEA) and the UK to other countries or territories, it's important to note that the level of data protection in some destinations may not be considered adequate by the European Commission. The laws in these countries or regions may not offer the same rights as those in your location, or they may lack dedicated privacy regulators to address potential complaints. Nevertheless, we will utilize various legal processes, including, without limitation, having signed the standard contract clauses issued by the European Commission between America Ugreen Limited and the affiliates in your location (such as the Standard Contract Clauses issued by the European Commission under the Commission Implementing Decision 2021/914) to ensure the same protection of your data in the overseas receiving countries as that in the EU.
Regardless of the data storage location, UGREEN commits to processing it in accordance with this policy, adhering to applicable legal requirements, and implementing contractual or other measures to secure your personal data. Specifically, for data transfers involving EEA or UK users to countries outside these regions not recognized by the European Commission as having adequate data protection, we will adhere to the European Commission's standard contractual clauses for the transfer. For further information on this matter, please feel free to contact us.
- The Right to Privacy in California and Other US states
If you are located in California or another U.S. state, the provisions in this section supplement those in this Policy.
The California Consumer Privacy Act of 2018 and the California Privacy Rights Act (CPRA), as amended, along with their implementing regulations (collectively referred to as the "CCPA"), grant California residents specific rights regarding their personal information. This section details your rights under the CCPA and how to exercise them.
- Your Personal Information Rights
- Right to Know of the Collection, Disclosure, and Sale of Your Personal Information
California residents are entitled to request that a business collecting their personal information disclose the following:
①Categories, purposes, and sources of personal information collected in the past 12 months;
②Specific personal information collected in the past 12 months;
③Types of personal information disclosed for commercial purposes in the past 12 months.
You are entitled to submit up to two free, verifiable consumer access or data portability requests to us within a 12-month period.
- Right to Request the Deletion of Personal Information
California residents are entitled to request businesses delete any personal information they have collected, subject to exceptions as outlined in the CCPA. UGREEN will provide a clear base for any denied requests for deletion.
- Right to Limit Use of Sensitive Personal Information
You have the right to limit the use of your sensitive personal information for any purpose, except as provided under Section 7027 (m) of the CCPA.
- Right to Opt-Out of the Sale of Personal Information
We do not, nor have we in the past 12 months, sold any personal information we have collected.
- Right to Non-Discrimination
UGREEN will not discriminate against individuals exercising their rights under the CCPA.
These rights are not absolute, and in some cases, we may be legally required or permitted not to fulfill your request.
- How to Exercise Your Rights
To exercise any of the above rights you may submit a verifiable consumer request to us using the contact information provided in Section12 of this Policy. Only you or an authorized agent can make a verifiable consumer request related to your personal information. An authorized agent must submit your written permission and their registration filed with the California Secretary of State to make a request on your behalf.
- Validating Your Request
To respond to your CCPA request, we need to verify your identity or your authorized agent's authority. If initial verification is unsuccessful, we may request additional information for verification purposes. Any personal information provided for verification will solely be used for that purpose. For verification, please provide your name, address, phone number, and email address. We will compare this information with what we already hold and may request additional documentation, including identification documents, to minimize fraud risks. We may deny or partially fulfill certain requests as permitted or required by law. For example, in requests for deletion of CCPA Personal Information, we may retain necessary information for legal purposes, like tax accounting.
California consumers have the right to file a complaint with the California Attorney General's Office under the CCPS. The Attorney General's Office can be contacted via https://oag.ca.gov/contact/consumer-complaint-against-business-or-company or by calling (916) 210-6276.
Contact us using the methods below, and we will respond within 30 days: Should more time be needed to process your request, we will inform you within the initial 30 days.
- How We Process Minors' Personal Data
Our products and services are primarily intended for adult users. If you are a minor under the laws of your country or region, please ensure that your parent or guardian reviews this Policy thoroughly. We require that you use our services or share information with us only with the explicit consent of your parent or guardian.
We are committed to the protection of minors' personal information. If you are a parent or guardian, please ensure that any child under your care uses our services with your authorized consent. For inquiries regarding a child's personal information, please contact our dedicated personal information protection department. If you are considered a minor under the laws of your area, it's important to review this policy with your guardian before using our product/service. Please make certain that you have your guardian's explicit consent both for using this product and for sharing your personal information with us. Once a child's personal data is collected with parental consent, we will use or disclose it only as explicitly agreed by the parent or guardian, in compliance with applicable laws, or when necessary for the child's protection. If a guardian believes we have collected a minor's personal information without consent, please contact us at ugreennascss@gmail.com, and we will delete the relevant data promptly upon request.
- How Your Personal Information is Transferred Globally
UGREEN offers products and services utilizing resources and servers located worldwide. Consequently, your personal information may be transferred to or accessed from jurisdictions outside the country where you use our products or services. These transfers and accesses are conducted in compliance with applicable laws.
To provide the user with global UGREEN NAS services, UGREEN transfers the user’s personal information from the account registration country/region (home country/region) to HONG KONG UGREEN LIMITED (UGREEN’s affiliate in Hong Kong, “HONG KONG UGREEN” ) on a need-to-know-basis.
Specifically, after registration by the user, UGREEN will transmit the home country/region to HONG KONG UGREEN. When you enable UGLINK function, we will transfer UGLINK information of your NAS device to HONG KONG UGREEN.With that, UGREEN can, through HONG KONG UGREEN, identify the home country/region of the user’s account and then assign the user to the server in the his/her home country/region whenever a request is made by the user from any location worldwide. Suppose the user is traveling for business or pleasure to places such as Europe or North America, and accessing his/her device in mainland China there, then the home country/region and UGLINK information of the user’s NAS device will be transmitted from the Hong Kong server to UGREEN’s affiliates Ugreen Group GmbH (located in Germany) or AMERICA UGREEN LIMITED (located in the United States). This is required for us to provide the user with global UGREEN cloud services, which will allow the user to conveniently and efficiently access his/her UGREEN NAS device from any country/region worldwide.
To safeguard cross-border personal information security, we employ technical and managerial measures like encryption, anonymization, access restriction, and monitoring of offshore UGREEN affiliates and cloud service providers to comply with China's personal information protection standards.
If you wish to exercise your rights under6.How you can exercise your rights to manage your personal information, you can refer to this clause and contact the parties involved at ugreennascss@gmail.com.
Policy Updates
We may periodically update this policy. Without your explicit consent, we will not reduce your rights under the current Privacy Policy. Any changes to this policy will be posted on this page. For significant updates, we will inform you through push notifications, pop-ups, emails, etc., and seek your consent again.
Significant changes as referred to in this Policy include, but are not limited to:
Substantial changes in our service model. Such as changes in personal information processing purposes, processed information types, and usage methods;
- Significant changes in ownership or organizational structure. Such as those resulting from business adjustments, bankruptcy, mergers, or acquisitions;
- Modifications in the main entities of personal information sharing, transfer, or public disclosure;
- Major alterations in your participation in personal information processing and the exercise of your rights;
- Changes in our personal information processing departments, contact details, and complaint channels;
- When a security assessment indicates high risks to users’ personal information.
By utilizing our services, you acknowledge and consent to the collection, use, storage, sharing, management, and protection of your information as outlined in this policy.
-
Contact us
- For any inquiries, comments, or suggestions regarding this agreement or our services, please reach out to us using the contact details provided below.
- Contact us through the "Help Center - Contact Us" feature within UGREEN NAS;
- Our dedicated Personal Information Protection Officer can be contacted at: ugreennascss@gmail.com
-
You can also contact us by phone.
Contact Numbers and Business Hours:
(US)+1 888 678 8925 Mon-Fri 9:00-17:00 PST
- Contact us by mail at the following address:
Registered Addresses: 108 WEST 13TH ST WILMINGTON, DE 19801, USA County of Delaware
- To ensure efficient handling of your inquiries and timely feedback, please provide proof of identity, valid contact information, written requests, and relevant evidence. We aim to process your request within 15 working days after verifying your identity.
- If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
UGREEN NAS Permissions Request and Description of Use
Effective Date: May 17, 2024
Last Updated: Jun 04, 2024|
- We may request or use specific operating system permissions to ensure the safe and stable operation of UGREEN NAS.
- We have listed the operating system permissions that may be requested or used by UGREEN NAS below to protect your right to know, and you may manage these permissions based on your actual needs.
- The type and purpose of the permissions requested and used may change due to UGREEN NAS updates. We will promptly amend the list in the event of such changes to ensure you are kept informed of the permissions requested and how they are used.
- Please note that we may use third party SDKs for our business and product features and security purposes and that these third parties may also request or use specific operating system permissions.
- You may use HTML5 plugins or applets developed by third parties when using our product, and such third party plugins or applets may also request or use certain operating system permissions necessary to provide business functions.
I. iOS (mobile devices)
Permission Name |
Permission Description |
Use Cases and Purposes |
Camera Permissions |
Use the mobile phone camera |
For QR code scanning to bind devices or authorize logins |
Gallery Permissions |
Access photos and videos |
For reading, writing, and uploading pictures, videos, and files |
Local Area Network Permissions |
Use the local area network |
For the identification of UGREEN NAS devices on the local area network |
Message Notifications Permissions |
Notify you of in-app messages using the notification system of your phone |
Grant this permission to receive important messages and notifications related to your device, account security, and more |
II. Android System (mobile devices)
Permission Name |
Permission Description |
Use Cases and Purposes |
Camera Permissions |
Use the mobile phone camera |
For QR code scanning to bind devices or authorize logins |
Gallery Permissions |
Access photos |
For reading, writing, and uploading images to set a personalized profile photo or upload and back up photos to the UGREEN NAS device |
Video Permissions |
Access videos |
For reading, writing, and uploading videos to upload and back up videos to the UGREEN NAS device |
Audio Permissions |
Access audio files |
For the reading, writing, and uploading audio files to upload them to the UGREEN NAS device |
Local Area Network Permissions |
Use the local area network |
For the identification of UGREEN NAS devices on the local area network |
Message Notifications Permissions |
Notify you of in-app messages using the notification system of your phone |
Grant this permission to receive important messages and notifications related to your device, account security, and more |
III. Mac Operating System (PC)
Permission Name |
Permission Description |
Use Cases and Purposes |
Messages and Notifications |
Showing notification pop-ups on your Computer Desktop |
For device messages and notifications |
Full Disk Access Permissions |
Read and write files to the computer |
For reading, writing, uploading, and synchronizing backups. |
IV. Windows Operating System (PC)
Permission Name |
Permission Description |
Use Cases and Purposes |
Messages and Notifications |
Showing notification pop-ups on your Computer Desktop |
For device messages and notifications |
File System |
Read and write files to the computer |
For reading, writing, uploading, and synchronizing backups. |
UGREEN NAS Permissions Request and Description of Use
Effective Date: November 17, 2023
Last Updated: May 20, 2024 |
- We may request or use specific operating system permissions to ensure the safe and stable operation of UGREEN NAS.
- We have listed the operating system permissions that may be requested or used by UGREEN NAS below to protect your right to know, and you may manage these permissions based on your actual needs.
- The type and purpose of the permissions requested and used may change due to UGREEN NAS updates. We will promptly amend the list in the event of such changes to ensure you are kept informed of the permissions requested and how they are used.
- Please note that we may use third party SDKs for our business and product features and security purposes and that these third parties may also request or use specific operating system permissions.
- You may use HTML5 plugins or applets developed by third parties when using our product, and such third party plugins or applets may also request or use certain operating system permissions necessary to provide business functions.
I. iOS (mobile devices)
Permission Name |
Permission Description |
Use Cases and Purposes |
Camera Permissions |
Use the mobile phone camera |
For QR code scanning to bind devices or authorize logins |
Gallery Permissions |
Access photos and videos |
For reading, writing, and uploading pictures, videos, and files |
Local Area Network Permissions |
Use the local area network |
For the identification of UGREEN NAS devices on the local area network |
Message Notifications Permissions |
Notify you of in-app messages using the notification system of your phone |
Grant this permission to receive important messages and notifications related to your device, account security, and more |
II. Android System (mobile devices)
Permission Name |
Permission Description |
Use Cases and Purposes |
Camera Permissions |
Use the mobile phone camera |
For QR code scanning to bind devices or authorize logins |
Gallery Permissions |
Access photos |
For reading, writing, and uploading images to set a personalized profile photo or upload and back up photos to the UGREEN NAS device |
Video Permissions |
Access videos |
For reading, writing, and uploading videos to upload and back up videos to the UGREEN NAS device |
Audio Permissions |
Access audio files |
For the reading, writing, and uploading audio files to upload them to the UGREEN NAS device |
Local Area Network Permissions |
Use the local area network |
For the identification of UGREEN NAS devices on the local area network |
Message Notifications Permissions |
Notify you of in-app messages using the notification system of your phone |
Grant this permission to receive important messages and notifications related to your device, account security, and more |
III. Mac Operating System (PC)
Permission Name |
Permission Description |
Use Cases and Purposes |
Messages and Notifications |
Showing notification pop-ups on your Computer Desktop |
For device messages and notifications |
Full Disk Access Permissions |
Read and write files to the computer |
For reading, writing, uploading, and synchronizing backups. |
IV. Windows Operating System (PC)
Permission Name |
Permission Description |
Use Cases and Purposes |
Messages and Notifications |
Showing notification pop-ups on your Computer Desktop |
For device messages and notifications |
File System |
Read and write files to the computer |
For reading, writing, uploading, and synchronizing backups. |
List of Personal Information UGREEN NAS Shares with Third Parties
Effective Date: May 17, 2024
Last Updated: Oct 12, 2024|
We may add software development kits (SDKs), application programming interfaces (APIs), and other codes, like application plug-ins provided by our partners, or collaborate with partners in other ways to ensure the safe and stable operation of all UGREEN NAS features and apps. We have listed our partners in the list below. Refer to the partners' privacy policy or service agreements for detailed information on how they manage your personal information. Please note that the information processing types used by the partner’s code may vary due to version updates and policy adjustments. Refer to the official guidelines published by the partner for more details.
- Mobile Devices
- Tencent Bugly (SDK)
Name of the third party company:Shenzhen Tencent Computer Systems LLC
Applicable Area:International
Use Purpose:Collection of application error information
Personal Information Involved:
Android: phone model, phone brand, Android system version, Android system API level, manufacturer's system
version, cpu architecture type, whether the device is rooted, disk space occupied, sdcard space occupied, memory
space occupied, network type, and the name and PID of the process that the app is currently running
iOS: device model, operating system version, operating system internal version number, wifi status, cpu
attributes, remaining memory space, disk space and remaining disk space, status of the phone while running (such
as memory occupied by processes and virtual memory used), idfv, whether jailbroken or not, and region code
Use Cases:Collection of error information
Sharing method:SDK
Third party guidelines for processing personal information:https://privacy.qq.com/document/preview/fc748b3d96224fdb825ea79e132c1a56
- Baidu Positioning (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Obtaining map information
Personal Information Involved:Device information (including device identification information (Android ID, IDFA, IDFV), system information (operating system version, device brand and model, device configuration) and application information (app name), external storage directory Location information (including latitude and longitude, GNSS information, WiFi gateway address, BSSID, SSID, WiFi signal strength, WiFi status, WiFi parameters, WiFi list, base station ID data information, network operator details, device signal strength information, IP address, Bluetooth information, and sensor information (acceleration, gyroscope, orientation, pressure, rotation vector, light, magnetometer))Network type (such as mobile network or WiFi network)
Use Cases:Map Albums and Photo Details
Sharing method:SDK
Third party guidelines for processing personal information:https://lbsyun.baidu.com/index.php?title=openprivacy
- Google location (SDK)
Name of the third party company:Google LLC
Applicable Area:Other Countries or Regions
Use Purpose:To obtain the map information
Personal Information Involved:The automatically collected data includes request metadata (device metadata (OS version, name, model, brand, and form factor), Maps SDK for Android build and its version information, and the number of results returned), stack traces, crash metrics, IP addresses, and Map SDK identifier.The data collected depending on the usage includes map interaction events.
Use Cases::Map album and photo details
Sharing method:SDK
Third party guidelines for processing personal information:https://developers.google.com/maps/documentation/android-sdk/play-data-disclosure?hl=en
- China Mobile Cloud Disk (API)
Name of the third party company:China Mobile Internet LLC
Applicable Area:Mainland China
Use Purpose:Connect to third party network drives to read, write, and synchronize backup files
Personal Information Involved:China Mobile Cloud Disk obtains user information, including user nicknames, information about stored user data, user uploads, downloads, and query file list details.
Use Cases:Cloud Drive Tools
Sharing method:API
Third party guidelines for processing personal information:https://dev.10086.cn/docInside?contentId=11039019811152
- Baidu Netdisk (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Cloud Data Storage
Personal Information Involved:The Baidu Netdisk SDK requires access to users' Baidu Netdisk data, including stored files and documents. (Information shared by UGREEN: brand and unique device identifier encrypted by device id; information shared by Baidu Netdisk: profile photo, nickname, netdisk account, membership status, and netdisk capacity)
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://pan.baidu.com/union/developer
- Tencent browsing service documentation SDK (Android) (SDK)
Third-party company: Shenzhen Tencent Computer System Co., Ltd.
Region: Mainland China
Purpose: Provide users with a stable, secure, and highly compatible local document browsing service.
Personal information to be accessed: device information (device model, operating system, and CPU type) and application information (host application package name and version number)
Scenario: document browsing
Sharing mode: SDK
Third-party personal information processing rules: https://rule.tencent.com/rule/b01dde7c-2c5b-487a-9bdd-3275dc716a83
- Xunlei download (SDK)
Third-party company: Shenzhen Xunlei Networking Technologies, Co., Ltd.
Region: Mainland China
Purpose: Provide users with download services and related extended features.
Personal information to be accessed: nickname, stored user data, list of files uploaded, downloaded, and queried, as well as disk file path and name
Scenario: media downloading and library services
Sharing mode: SDK
Third-party personal information processing rules: https://i.xunlei.com/policy/privacy.html
- PC Devices
- Google Map (SDK)
Name of the third party company:Google (a subsidiary of Alphabet Inc.)
Applicable Area:Other Countries or Regions
Use Purpose:Obtaining map information
Personal Information Involved:The Google Map SDK acquires users' geographic location information while in use, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://policies.google.cn/privacy/archive/20221004?hl=en
- Baidu Map (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Obtaining map information
Personal Information Involved:Baidu Map SDK typically requires users' geographical location information, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://lbsyun.baidu.com/index.php?title=openprivacy&oldid=17830
- OneDrive (SDK)
Name of the third party company:Microsoft Corporation
Applicable Area:International
Use Purpose:Cloud Data Storage
Personal Information Involved:The OneDrive SDK requires access to users' OneDrive cloud storage data, which includes stored files and documents.
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://support.microsoft.com/zh-cn/office/%E4%BF%9D%E6%8A%A4%E4%B8%AA%E4%BA%BA%E4%BF%9D%E7%AE%A1%E5%BA%93%E4%B8%AD%E7%9A%84-onedrive-%E6%96%87%E4%BB%B6-6540ef37-e9bf-4121-a773-56f98dce78c4?ui=zh-cn&rs=zh-cn&ad=cn
- Baidu Netdisk (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Cloud Data Storage
Personal Information Involved:The Baidu Netdisk SDK requires access to users' Baidu Netdisk data, including stored files and documents. (Information shared by UGREEN: brand and unique device identifier encrypted by device id; information shared by Baidu Netdisk: profile photo, nickname, netdisk account, membership status, and netdisk capacity)
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://pan.baidu.com/union/developer
- Tencent Cloud SDK – Waterwall (SDK)
Name of the third party company:Tencent
Applicable Area:Mainland China
Use Purpose:Data Verification
Personal Information Involved:Tencent Cloud's Waterwall SDK will filter and detect the data users submit. The specific personal information involved may vary based on actual usage.
Use Cases:Security check
Sharing method:SDK
Third party guidelines for processing personal information:https://www.tencentcloud.com/zh/document/product/301/17345
- OnlyOffice(API)
Name of the third party company:Ascensio System SIA (OnlyOffice developer)
Applicable Area:International
Use Purpose:Online Document Access and Editing
Personal Information Involved:OnlyOffice is a collaborative office suite. The specific personal information involved may vary depending on how the users use the platform and includes document content.
Use Cases:Text viewing and editing
Sharing method:API
Third party guidelines for processing personal information:https://www.onlyoffice.com/zh/security.aspx
- Xunlei download (SDK)
Third-party company: Shenzhen Xunlei Networking Technologies, Co., Ltd.
Region: Mainland China
Purpose: Provide users with download services and related extended features.
Personal information to be accessed: nickname, stored user data, list of files uploaded, downloaded, and queried, as well as disk file path and name
Scenario: media downloading and library services
Sharing mode: SDK
Third-party personal information processing rules: https://i.xunlei.com/policy/privacy.html
- Web Devices(Device)
- Google Map (SDK)
Name of the third party company:Google (a subsidiary of Alphabet Inc.)
Applicable Area:Other Countries or Regions
Use Purpose:Obtaining map information
Personal Information Involved:The Google Map SDK acquires users' geographic location information while in use, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://policies.google.cn/privacy/archive/20221004?hl=en
- Baidu Map (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Obtaining map information
Personal Information Involved:Baidu Map SDK typically requires users' geographical location information, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://lbsyun.baidu.com/index.php?title=openprivacy&oldid=17830
- OneDrive (SDK)
Name of the third party company:Microsoft Corporation
Applicable Area:International
Use Purpose:Cloud Data Storage
Personal Information Involved:The OneDrive SDK requires access to users' OneDrive cloud storage data, which includes stored files and documents.
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://support.microsoft.com/zh-cn/office/%E4%BF%9D%E6%8A%A4%E4%B8%AA%E4%BA%BA%E4%BF%9D%E7%AE%A1%E5%BA%93%E4%B8%AD%E7%9A%84-onedrive-%E6%96%87%E4%BB%B6-6540ef37-e9bf-4121-a773-56f98dce78c4?ui=zh-cn&rs=zh-cn&ad=cn
- Baidu Netdisk (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Cloud Data Storage
Personal Information Involved:The Baidu Netdisk SDK requires access to users' Baidu Netdisk data, including stored files and documents. (Information shared by UGREEN: brand and unique device identifier encrypted by device id; information shared by Baidu Netdisk: profile photo, nickname, netdisk account, membership status, and netdisk capacity)
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://pan.baidu.com/union/developer
- OnlyOffice(API)
Name of the third party company:Ascensio System SIA (OnlyOffice developer)
Applicable Area:International
Use Purpose:Online Document Access and Editing
Personal Information Involved:OnlyOffice is a collaborative office suite. The specific personal information involved may vary depending on how the users use the platform and includes document content.
Use Cases:Text viewing and editing
Sharing method:API
Third party guidelines for processing personal information:https://www.onlyoffice.com/zh/security.aspx
- Xunlei download (SDK)
Third-party company: Shenzhen Xunlei Networking Technologies, Co., Ltd.
Region: Mainland China
Purpose: Provide users with download services and related extended features.
Personal information to be accessed: nickname, stored user data, list of files uploaded, downloaded, and queried, as well as disk file path and name
Scenario: media downloading and library services
Sharing mode: SDK
Third-party personal information processing rules: https://i.xunlei.com/policy/privacy.html
- Web Devices(Official UGREEN Cloud website: https://web.ugnas.com/account/login/#/login)
- Tencent Cloud SDK – Waterwall (SDK)
Name of the third party company:Tencent
Applicable Area:Mainland China
Use Purpose:Data Verification
Personal Information Involved:Tencent Cloud's Waterwall SDK will filter and detect the data users submit. The specific personal information involved may vary based on actual usage.
Use Cases:Security check
Sharing method:SDK
Third party guidelines for processing personal information:https://www.tencentcloud.com/zh/document/product/301/17345
List of Personal Information UGREEN NAS Shares with Third Parties
Effective Date: May 17, 2024
Last Updated: Jun 04, 2024|
We may add software development kits (SDKs), application programming interfaces (APIs), and other codes, like application plug-ins provided by our partners, or collaborate with partners in other ways to ensure the safe and stable operation of all UGREEN NAS features and apps. We have listed our partners in the list below. Refer to the partners' privacy policy or service agreements for detailed information on how they manage your personal information. Please note that the information processing types used by the partner’s code may vary due to version updates and policy adjustments. Refer to the official guidelines published by the partner for more details.
- 1. Mobile Devices
(1) Tencent Bugly (SDK)
Name of the third party company:Shenzhen Tencent Computer Systems LLC
Applicable Area:International
Use Purpose:Collection of application error information
Personal Information Involved:
Android: phone model, phone brand, Android system version, Android system API level, manufacturer's system
version, cpu architecture type, whether the device is rooted, disk space occupied, sdcard space occupied, memory
space occupied, network type, and the name and PID of the process that the app is currently running
iOS: device model, operating system version, operating system internal version number, wifi status, cpu
attributes, remaining memory space, disk space and remaining disk space, status of the phone while running (such
as memory occupied by processes and virtual memory used), idfv, whether jailbroken or not, and region code
Use Cases:Collection of error information
Sharing method:SDK
Third party guidelines for processing personal information:https://privacy.qq.com/document/preview/fc748b3d96224fdb825ea79e132c1a56
(2) Baidu Positioning (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Obtaining map information
Personal Information Involved:Device information (including device identification information (Android ID, IDFA, IDFV), system information (operating system version, device brand and model, device configuration) and application information (app name), external storage directory Location information (including latitude and longitude, GNSS information, WiFi gateway address, BSSID, SSID, WiFi signal strength, WiFi status, WiFi parameters, WiFi list, base station ID data information, network operator details, device signal strength information, IP address, Bluetooth information, and sensor information (acceleration, gyroscope, orientation, pressure, rotation vector, light, magnetometer))Network type (such as mobile network or WiFi network)
Use Cases:Map Albums and Photo Details
Sharing method:SDK
Third party guidelines for processing personal
information:https://lbsyun.baidu.com/index.php?title=openprivacy
(3) Google location (SDK)
Name of the third party company:Google LLC
Applicable Area:Other Countries or Regions
Use Purpose:To obtain the map information
Personal Information Involved:The automatically collected data includes request metadata (device metadata (OS version, name, model, brand, and form factor), Maps SDK for Android build and its version information, and the number of results returned), stack traces, crash metrics, IP addresses, and Map SDK identifier.The data collected depending on the usage includes map interaction events.
Use Cases::Map album and photo details
Sharing method:SDK
Third party guidelines for processing personal information:https://developers.google.com/maps/documentation/android-sdk/play-data-disclosure?hl=en
(4) China Mobile Cloud Disk (API)
Name of the third party company:China Mobile Internet LLC
Applicable Area:Mainland China
Use Purpose:Connect to third party network drives to read, write, and synchronize backup files
Personal Information Involved:China Mobile Cloud Disk obtains user information, including user nicknames, information about stored user data, user uploads, downloads, and query file list details.
Use Cases:Cloud Drive Tools
Sharing method:API
Third party guidelines for processing personal
information:https://dev.10086.cn/docInside?contentId=11039019811152
(5) Baidu Netdisk (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Cloud Data Storage
Personal Information Involved:The Baidu Netdisk SDK requires access to users' Baidu Netdisk data, including stored files and documents. (Information shared by UGREEN: brand and unique device identifier encrypted by device id; information shared by Baidu Netdisk: profile photo, nickname, netdisk account, membership status, and netdisk capacity)
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://pan.baidu.com/union/developer
(6) JIGUANG (SDK)
Name of the third party company:Shenzhen Hexun Huagu Information Technology Co., Ltd
Applicable Area:Mainland China
Use Purpose:One-click Login and Push
Personal Information Involved:JIGUANG Push: device parameters, system information, device identifier, network information, location information, application list information, and message push logs JIGUANG Security Authentication: device parameters, system information, device identifier, network information, location information, phone number, and application list details
Use Cases:One-click Login and Push
Sharing method:SDK
Third party guidelines for processing personal information:https://www.jiguang.cn/license/privacy
- 2. PC Devices
(1) Google Map (SDK)
Name of the third party company:Google (a subsidiary of Alphabet Inc.)
Applicable Area:Other Countries or Regions
Use Purpose:Obtaining map information
Personal Information Involved:The Google Map SDK acquires users' geographic location information while in use, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://policies.google.cn/privacy/archive/20221004?hl=zh-cn&hl=zh_CN
(2) Baidu Map (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Obtaining map information
Personal Information Involved:Baidu Map SDK typically requires users' geographical location information, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://lbsyun.baidu.com/index.php?title=openprivacy&oldid=17830
(3) OneDrive (SDK)
Name of the third party company:Microsoft Corporation
Applicable Area:International
Use Purpose:Cloud Data Storage
Personal Information Involved:The OneDrive SDK requires access to users' OneDrive cloud storage data, which includes stored files and documents.
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://support.microsoft.com/zh-cn/office/%E4%BF%9D%E6%8A%A4%E4%B8%AA%E4%BA%BA%E4%BF%9D%E7%AE%A1%E5%BA%93%E4%B8%AD%E7%9A%84-onedrive-%E6%96%87%E4%BB%B6-6540ef37-e9bf-4121-a773-56f98dce78c4?ui=zh-cn&rs=zh-cn&ad=cn
(4) Baidu Netdisk (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Cloud Data Storage
Personal Information Involved:The Baidu Netdisk SDK requires access to users' Baidu Netdisk data, including stored files and documents. (Information shared by UGREEN: brand and unique device identifier encrypted by device id; information shared by Baidu Netdisk: profile photo, nickname, netdisk account, membership status, and netdisk capacity)
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://pan.baidu.com/union/developer
(5) Tencent Cloud SDK – Waterwall (SDK)
Name of the third party company:Tencent
Applicable Area:Mainland China
Use Purpose:Data Verification
Personal Information Involved:Tencent Cloud's Waterwall SDK will filter and detect the data users submit. The specific personal information involved may vary based on actual usage.
Use Cases:Security check
Sharing method:SDK
Third party guidelines for processing personal information:https://www.tencentcloud.com/zh/document/product/301/17345
(6) OnlyOffice(API)
Name of the third party company:Ascensio System SIA (OnlyOffice developer)
Applicable Area:International
Use Purpose:Online Document Access and Editing
Personal Information Involved:OnlyOffice is a collaborative office suite. The specific personal information involved may vary depending on how the users use the platform and includes document content.
Use Cases:Text viewing and editing
Sharing method:API
Third party guidelines for processing personal information:https://www.onlyoffice.com/zh/security.aspx
- 3. Web Devices(Device)
(1) Google Map (SDK)
Name of the third party company:Google (a subsidiary of Alphabet Inc.)
Applicable Area:Other Countries or Regions
Use Purpose:Obtaining map information
Personal Information Involved:The Google Map SDK acquires users' geographic location information while in use, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://policies.google.cn/privacy/archive/20221004?hl=zh-cn&hl=zh_CN
(2) Baidu Map (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Obtaining map information
Personal Information Involved:Baidu Map SDK typically requires users' geographical location information, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://lbsyun.baidu.com/index.php?title=openprivacy&oldid=17830
(3) OneDrive (SDK)
Name of the third party company:Microsoft Corporation
Applicable Area:International
Use Purpose:Cloud Data Storage
Personal Information Involved:The OneDrive SDK requires access to users' OneDrive cloud storage data, which includes stored files and documents.
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://support.microsoft.com/zh-cn/office/%E4%BF%9D%E6%8A%A4%E4%B8%AA%E4%BA%BA%E4%BF%9D%E7%AE%A1%E5%BA%93%E4%B8%AD%E7%9A%84-onedrive-%E6%96%87%E4%BB%B6-6540ef37-e9bf-4121-a773-56f98dce78c4?ui=zh-cn&rs=zh-cn&ad=cn
(4) Baidu Netdisk (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Cloud Data Storage
Personal Information Involved:The Baidu Netdisk SDK requires access to users' Baidu Netdisk data, including stored files and documents. (Information shared by UGREEN: brand and unique device identifier encrypted by device id; information shared by Baidu Netdisk: profile photo, nickname, netdisk account, membership status, and netdisk capacity)
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://pan.baidu.com/union/developer
(5) OnlyOffice(API)
Name of the third party company:Ascensio System SIA (OnlyOffice developer)
Applicable Area:International
Use Purpose:Online Document Access and Editing
Personal Information Involved:OnlyOffice is a collaborative office suite. The specific personal information involved may vary depending on how the users use the platform and includes document content.
Use Cases:Text viewing and editing
Sharing method:API
Third party guidelines for processing personal information:https://www.onlyoffice.com/zh/security.aspx
- 4. Web Devices(Official UGREEN Cloud website: https://web.ugnas.com/account/login/#/login)
(1) QQ (SDK)
Name of the third party company:Shenzhen Tencent Computer Systems LLC
Applicable Area:Mainland China
Use Purpose:Enable fast login by binding a third party account
Personal Information Involved:The QQ SDK involves users' basic personal information, such as their nickname, profile picture, and QQ number. Such information is used for login and authentication purposes.
Use Cases:Login in
Sharing method:SDK
Third party guidelines for processing personal information:https://rule.tencent.com/rule/e82cbd02-f078-4550-bf03-5d5ae7ac0249
(2) Facebook (SDK)
Name of the third party company:Meta Platforms, Inc.
Applicable Area:Other Countries or Regions
Use Purpose:Enable fast login by binding a third party account
Personal Information Involved:The Facebook SDK involves users' basic personal information such as their nickname, profile photo, and account number. Such information is used for login and authentication purposes.
Use Cases:Login in
Sharing method:SDK
Third party guidelines for processing personal information:https://www.facebook.com/privacy/policy
(3) WeChat (SDK)
Name of the third party company:Shenzhen Tencent Computer Systems LLC
Applicable Area:Mainland China
Use Purpose:Enable fast login by binding a third party account
Personal Information Involved:Device information (IMEI, IMSI, MAC address, Android ID, and IDFA), network details, WeChat account details
Use Cases:Login in
Sharing method:SDK
Third party guidelines for processing personal information:https://open.weixin.qq.com/cgi-bin/frame?t=news/protocol_developer_tmpl
(4) Tencent Cloud SDK – Waterwall (SDK)
Name of the third party company:Tencent
Applicable Area:Mainland China
Use Purpose:Data Verification
Personal Information Involved:Tencent Cloud's Waterwall SDK will filter and detect the data users submit. The specific personal information involved may vary based on actual usage.
Use Cases:Security check
Sharing method:SDK
Third party guidelines for processing personal information:https://www.tencentcloud.com/zh/document/product/301/17345
List of Personal Information UGREEN NAS Shares with Third Parties
Effective Date: November 17, 2023
Last Updated: May 20, 2024 |
We may add software development kits (SDKs), application programming interfaces (APIs), and other codes, like application plug-ins provided by our partners, or collaborate with partners in other ways to ensure the safe and stable operation of all UGREEN NAS features and apps. We have listed our partners in the list below. Refer to the partners' privacy policy or service agreements for detailed information on how they manage your personal information. Please note that the information processing types used by the partner’s code may vary due to version updates and policy adjustments. Refer to the official guidelines published by the partner for more details.
- Mobile Devices
- Tencent Bugly (SDK)
Name of the third party company:Shenzhen Tencent Computer Systems LLC
Applicable Area:International
Use Purpose:Collection of application error information
Personal Information Involved:
Android: phone model, phone brand, Android system version, Android system API level, manufacturer's system
version, cpu architecture type, whether the device is rooted, disk space occupied, sdcard space occupied, memory
space occupied, network type, and the name and PID of the process that the app is currently running
iOS: device model, operating system version, operating system internal version number, wifi status, cpu
attributes, remaining memory space, disk space and remaining disk space, status of the phone while running (such
as memory occupied by processes and virtual memory used), idfv, whether jailbroken or not, and region code
Use Cases:Collection of error information
Sharing method:SDK
Third party guidelines for processing personal information:https://privacy.qq.com/document/preview/fc748b3d96224fdb825ea79e132c1a56
- Baidu Positioning (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Obtaining map information
Personal Information Involved:Device information (including device identification information (Android ID, IDFA, IDFV), system information (operating system version, device brand and model, device configuration) and application information (app name), external storage directory Location information (including latitude and longitude, GNSS information, WiFi gateway address, BSSID, SSID, WiFi signal strength, WiFi status, WiFi parameters, WiFi list, base station ID data information, network operator details, device signal strength information, IP address, Bluetooth information, and sensor information (acceleration, gyroscope, orientation, pressure, rotation vector, light, magnetometer))Network type (such as mobile network or WiFi network)
Use Cases:Map Albums and Photo Details
Sharing method:SDK
Third party guidelines for processing personal information:https://lbsyun.baidu.com/index.php?title=openprivacy
- Google location (SDK)
Name of the third party company:Google LLC
Applicable Area:Other Countries or Regions
Use Purpose:To obtain the map information
Personal Information Involved:The automatically collected data includes request metadata (device metadata (OS version, name, model, brand, and form factor), Maps SDK for Android build and its version information, and the number of results returned), stack traces, crash metrics, IP addresses, and Map SDK identifier.The data collected depending on the usage includes map interaction events.
Use Cases::Map album and photo details
Sharing method:SDK
Third party guidelines for processing personal information:https://developers.google.com/maps/documentation/android-sdk/play-data-disclosure?hl=en
- China Mobile Cloud Disk (API)
Name of the third party company:China Mobile Internet LLC
Applicable Area:Mainland China
Use Purpose:Connect to third party network drives to read, write, and synchronize backup files
Personal Information Involved:China Mobile Cloud Disk obtains user information, including user nicknames, information about stored user data, user uploads, downloads, and query file list details.
Use Cases:Cloud Drive Tools
Sharing method:API
Third party guidelines for processing personal information:https://dev.10086.cn/docInside?contentId=11039019811152
- Baidu Netdisk (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Cloud Data Storage
Personal Information Involved:The Baidu Netdisk SDK requires access to users' Baidu Netdisk data, including stored files and documents. (Information shared by UGREEN: brand and unique device identifier encrypted by device id; information shared by Baidu Netdisk: profile photo, nickname, netdisk account, membership status, and netdisk capacity)
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://pan.baidu.com/union/developer
- PC Devices
- Google Map (SDK)
Name of the third party company:Google (a subsidiary of Alphabet Inc.)
Applicable Area:Other Countries or Regions
Use Purpose:Obtaining map information
Personal Information Involved:The Google Map SDK acquires users' geographic location information while in use, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://policies.google.cn/privacy/archive/20221004?hl=en
- Baidu Map (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Obtaining map information
Personal Information Involved:Baidu Map SDK typically requires users' geographical location information, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://lbsyun.baidu.com/index.php?title=openprivacy&oldid=17830
- OneDrive (SDK)
Name of the third party company:Microsoft Corporation
Applicable Area:International
Use Purpose:Cloud Data Storage
Personal Information Involved:The OneDrive SDK requires access to users' OneDrive cloud storage data, which includes stored files and documents.
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://support.microsoft.com/zh-cn/office/%E4%BF%9D%E6%8A%A4%E4%B8%AA%E4%BA%BA%E4%BF%9D%E7%AE%A1%E5%BA%93%E4%B8%AD%E7%9A%84-onedrive-%E6%96%87%E4%BB%B6-6540ef37-e9bf-4121-a773-56f98dce78c4?ui=zh-cn&rs=zh-cn&ad=cn
- Baidu Netdisk (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Cloud Data Storage
Personal Information Involved:The Baidu Netdisk SDK requires access to users' Baidu Netdisk data, including stored files and documents. (Information shared by UGREEN: brand and unique device identifier encrypted by device id; information shared by Baidu Netdisk: profile photo, nickname, netdisk account, membership status, and netdisk capacity)
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://pan.baidu.com/union/developer
- Tencent Cloud SDK – Waterwall (SDK)
Name of the third party company:Tencent
Applicable Area:Mainland China
Use Purpose:Data Verification
Personal Information Involved:Tencent Cloud's Waterwall SDK will filter and detect the data users submit. The specific personal information involved may vary based on actual usage.
Use Cases:Security check
Sharing method:SDK
Third party guidelines for processing personal information:https://www.tencentcloud.com/zh/document/product/301/17345
- OnlyOffice(API)
Name of the third party company:Ascensio System SIA (OnlyOffice developer)
Applicable Area:International
Use Purpose:Online Document Access and Editing
Personal Information Involved:OnlyOffice is a collaborative office suite. The specific personal information involved may vary depending on how the users use the platform and includes document content.
Use Cases:Text viewing and editing
Sharing method:API
Third party guidelines for processing personal information:https://www.onlyoffice.com/zh/security.aspx
- Web Devices(Device)
- Google Map (SDK)
Name of the third party company:Google (a subsidiary of Alphabet Inc.)
Applicable Area:Other Countries or Regions
Use Purpose:Obtaining map information
Personal Information Involved:The Google Map SDK acquires users' geographic location information while in use, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://policies.google.cn/privacy/archive/20221004?hl=en
- Baidu Map (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Obtaining map information
Personal Information Involved:Baidu Map SDK typically requires users' geographical location information, including real-time location data.
Use Cases:Positioning
Sharing method:SDK
Third party guidelines for processing personal information:https://lbsyun.baidu.com/index.php?title=openprivacy&oldid=17830
- OneDrive (SDK)
Name of the third party company:Microsoft Corporation
Applicable Area:International
Use Purpose:Cloud Data Storage
Personal Information Involved:The OneDrive SDK requires access to users' OneDrive cloud storage data, which includes stored files and documents.
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://support.microsoft.com/zh-cn/office/%E4%BF%9D%E6%8A%A4%E4%B8%AA%E4%BA%BA%E4%BF%9D%E7%AE%A1%E5%BA%93%E4%B8%AD%E7%9A%84-onedrive-%E6%96%87%E4%BB%B6-6540ef37-e9bf-4121-a773-56f98dce78c4?ui=zh-cn&rs=zh-cn&ad=cn
- Baidu Netdisk (SDK)
Name of the third party company:Beijing Baidu Netcom Science Technology LLC
Applicable Area:Mainland China
Use Purpose:Cloud Data Storage
Personal Information Involved:The Baidu Netdisk SDK requires access to users' Baidu Netdisk data, including stored files and documents. (Information shared by UGREEN: brand and unique device identifier encrypted by device id; information shared by Baidu Netdisk: profile photo, nickname, netdisk account, membership status, and netdisk capacity)
Use Cases:Data Storage
Sharing method:SDK
Third party guidelines for processing personal information:https://pan.baidu.com/union/developer
- OnlyOffice(API)
Name of the third party company:Ascensio System SIA (OnlyOffice developer)
Applicable Area:International
Use Purpose:Online Document Access and Editing
Personal Information Involved:OnlyOffice is a collaborative office suite. The specific personal information involved may vary depending on how the users use the platform and includes document content.
Use Cases:Text viewing and editing
Sharing method:API
Third party guidelines for processing personal information:https://www.onlyoffice.com/zh/security.aspx
- Web Devices(Official UGREEN Cloud website: https://web.ugnas.com/account/login/#/login)
- Tencent Cloud SDK – Waterwall (SDK)
Name of the third party company:Tencent
Applicable Area:Mainland China
Use Purpose:Data Verification
Personal Information Involved:Tencent Cloud's Waterwall SDK will filter and detect the data users submit. The specific personal information involved may vary based on actual usage.
Use Cases:Security check
Sharing method:SDK
Third party guidelines for processing personal information:https://www.tencentcloud.com/zh/document/product/301/17345
UGREEN NAS Personal Information Collection List
Effective Date: May 17, 2024
Last Updated: Jun 04, 2024|
Contexts and Business Functions |
Types of Personal Information Involved |
Purpose |
Registration and Login |
Phone number (mainland China users) or email address (users in other countries and regions), identification information (profile photo and nickname) |
Assist you with the account registration process, enhance your account details, maintain account security, and support account recovery. We may link the basic information you provide to your UGREEN NAS device and send important device notifications via SMS or email. |
Apple account, profile photo, mainland China users' WeChat information (nickname and openid), QQ (nickname), Facebook account or Google account for users in other countries and regions, and other information you authorize us to collect. |
Allows for quick and easy registration and login, third party account authentication and suitability, and identity verification |
|
Bind device |
UGREEN NAS device model, device serial number SN and MAC address, IP address, UGREENlink ID (if enabled), customized device name, device system status (online, offline, or sleep), device custodian (owner and sharer), and warranty expiration date (visible to administrators only) |
Assist you in device binding, linking your device to your account for management, and enabling continuous device monitoring to ensure appropriate management permissions. For device administrators, we also gather the device's warranty expiration date to provide prompt warranty expiration reminders. |
Login History and Trusted Device Management |
1) Login Time: Recording the precise login times, accurate to the second; 2) Operation Record: Documenting your account logins and unbinding actions; 3) Location Information: Determining your login city by analyzing and identifying your IP address; 4) IP Address: Used to pinpoint the login network's location (accurate to city); 5) Operating System: Identifying the operating system used during login, such as iOS, Android, macOS, or Windows; 6) Access Method: Determining whether access to UGREEN NAS is via the website or other clients. |
To secure your account and prevent unauthorized access, swiftly identify and respond to any unusual activity, protect your account from security risks, and enhance account security. |
Device model, device name, login location (identified by IP address and accurate to the city), and last login time |
Protect your account and facilitate the identification of login operations conducted by users other than the account owner to allow us to take the necessary security precautions. |
|
Login History and Trusted Device List |
Assist you in user account management. You have the right to remove any login devices you consider suspicious to improve account security. |
|
International Tickets |
UGREEN NAS device serial number, NAS device product model, NAS device system type, client type, information about how the client accesses the NAS device (such as whether it accesses the device via LAN or wireless network) |
Help identify and effectively resolve user technical support issues |
Cloud Drive Tools |
Third party cloud drive account information, including account name, profile photo, membership level, and cloud drive capacity |
Facilitating file upload and download services between UGREEN NAS and third party cloud drives, and creating and managing synchronization tasks with third party cloud drives. |
find.ugnas.com LAN Device Search |
Information about the device you use, including the device name, IP address, Mac address, serial number, operating system version, model name, and device status |
Ensuring that the find feature can accurately and efficiently locate LAN devices for ease of access |
UGREENlink Services |
UGREEN NAS device product serial number, IP address, and routing port |
These details are essential for establishing a secure connection and optimizing user experience. Serial numbers help ensure precise and secure linkage to your UGREEN account, enabling access to UGREENlink services. We gather your IP address and routing port information when you use UGREENlink features to facilitate remote connectivity to your device, allowing you to access and manage your UGREEN NAS device from afar. |
IPv4 address, IPv6 address, MAC address, DDNS address, device status information (whether the device has been initialized or whether it is currently online), WOL (Wake-on-LAN) switch status, device hostname, and device boot time. |
The abovementioned information is collected to ensure a better connection and access experience when you access the device in a LAN environment. |
|
Technical Support |
① Device Information: Including but not limited to the SN number of your device, the system version of your UGREEN NAS device, network details (including your IP address and network connection status), operational logs (detailing system activities and logs of user-initiated operations), and client information (including operating system type and version, and software version information) ② Personal Files in UGREEN NAS Devices: Our technical support team may access your personal files stored on UGREEN NAS devices only with your explicit authorization and after granting the appropriate permissions. |
① Efficient Technical Support Services: By gathering device information, we can swiftly identify and resolve issues, providing you with precise technical support. ② Specific User Permissions: Initially, our technical support staff will request general user permissions to access device information. ③ Comprehensive Diagnostics: For complex technical issues, additional permissions may be requested with your consent. This involves creating an administrator account for the technical support team to access. Access to personal files is only permitted under these specific circumstances. |
User Experience Survey (Excludes Mainland China Users) |
Email Accounts |
① To continuously improve our products and services, and provide you with a more personalized user experience. ② Facilitate our knowledge of your actual experience and feedback after using UGREEN NAS. ③ Collect your usage experiences, and preferences suggestions for UGREEN products to better inform our product improvements and optimizations. ④We may also use your email address to send you marketing information via email. |
Operation and Security |
Hardware model, operating system version number, device identifiers (Android device identifiers include IMEI/MEID, AndroidID, OAID, IMSI, SIM card information (including ICCID), GAID, and hardware serial number (SN) while iOS device identifiers include IDFV and IDFA; the identifiers' effective period and acquiring method and whether they can be reset by the user may vary from identifier to identifier), network device hardware serial number, IP address, WLAN access point (including SSID and BSSID), Bluetooth (Bluetooth), base station, software version number, network access mode, type, status, network quality data, operation, usage, and service log data. |
Ensure the secure operation of software and services and the quality and efficiency of operations |
Account information, device information, service log information, and information that you have authorized our affiliates and partners to share with us, or information you are legally required to provide to us. |
Verify account security and identification, identify legal violations, detect and prevent security incidents, and conduct the necessary documentation, analysis, and resolution pursuant to law. |
|
Failure Logs |
Used to analyze the discrepancies and malfunctions and assist you in troubleshooting and resolving them. |
|
Configuration Backup and Restoration |
① Connectivity and Access: Users and user groups (permissions and advanced settings), file services, device connection data (UGREENlink, DDNS, portal settings), end devices, domains, and LDAP; ② General Settings: Time and language, notification, network, security, and indexing services; ③ System Services: System updates, resets, configuration backups, and restorations. |
The "Configuration Backup and Restoration" feature allows you to bac up and restore configuration data after repairing your device or using it in another country. |
UGREEN NAS Personal Information Collection List
Effective Date: November 17, 2023
Last Updated: May 20, 2024 |
Contexts and Business Functions |
Types of Personal Information Involved |
Purpose |
Registration and Login |
Phone number (mainland China users) or email address (users in other countries and regions), identification information (profile photo and nickname) |
Assist you with the account registration process, enhance your account details, maintain account security, and support account recovery. We may link the basic information you provide to your UGREEN NAS device and send important device notifications via SMS or email. |
Apple account, profile photo, mainland China users' WeChat information (nickname and openid), QQ (nickname), Facebook account or Google account for users in other countries and regions, and other information you authorize us to collect. |
Allows for quick and easy registration and login, third party account authentication and suitability, and identity verification |
|
Bind device |
UGREEN NAS device model, device serial number SN and MAC address, IP address, UGREENlink ID (if enabled), customized device name, device system status (online, offline, or sleep), device custodian (owner and sharer), and warranty expiration date (visible to administrators only) |
Assist you in device binding, linking your device to your account for management, and enabling continuous device monitoring to ensure appropriate management permissions. For device administrators, we also gather the device's warranty expiration date to provide prompt warranty expiration reminders. |
Login History and Trusted Device Management |
1) Login Time: Recording the precise login times, accurate to the second; 2) Operation Record: Documenting your account logins and unbinding actions; 3) Location Information: Determining your login city by analyzing and identifying your IP address; 4) IP Address: Used to pinpoint the login network's location (accurate to city); 5) Operating System: Identifying the operating system used during login, such as iOS, Android, macOS, or Windows; 6) Access Method: Determining whether access to UGREEN NAS is via the website or other clients. |
To secure your account and prevent unauthorized access, swiftly identify and respond to any unusual activity, protect your account from security risks, and enhance account security. |
Device model, device name, login location (identified by IP address and accurate to the city), and last login time |
Protect your account and facilitate the identification of login operations conducted by users other than the account owner to allow us to take the necessary security precautions. |
|
Login History and Trusted Device List |
Assist you in user account management. You have the right to remove any login devices you consider suspicious to improve account security. |
|
International Tickets |
UGREEN NAS device serial number, NAS device product model, NAS device system type, client type, information about how the client accesses the NAS device (such as whether it accesses the device via LAN or wireless network) |
Help identify and effectively resolve user technical support issues |
Cloud Drive Tools |
Third party cloud drive account information, including account name, profile photo, membership level, and cloud drive capacity |
Facilitating file upload and download services between UGREEN NAS and third party cloud drives, and creating and managing synchronization tasks with third party cloud drives. |
find.ugnas.com LAN Device Search |
Information about the device you use, including the device name, IP address, Mac address, serial number, operating system version, model name, and device status |
Ensuring that the find feature can accurately and efficiently locate LAN devices for ease of access |
UGREENlink Services |
UGREEN NAS device product serial number, IP address, and routing port |
These details are essential for establishing a secure connection and optimizing user experience. Serial numbers help ensure precise and secure linkage to your UGREEN account, enabling access to UGREENlink services. We gather your IP address and routing port information when you use UGREENlink features to facilitate remote connectivity to your device, allowing you to access and manage your UGREEN NAS device from afar. |
IPv4 address, IPv6 address, MAC address, DDNS address, device status information (whether the device has been initialized or whether it is currently online), WOL (Wake-on-LAN) switch status, device hostname, and device boot time. |
The abovementioned information is collected to ensure a better connection and access experience when you access the device in a LAN environment. |
|
Technical Support |
① Device Information: Including but not limited to the SN number of your device, the system version of your UGREEN NAS device, network details (including your IP address and network connection status), operational logs (detailing system activities and logs of user-initiated operations), and client information (including operating system type and version, and software version information) ② Personal Files in UGREEN NAS Devices: Our technical support team may access your personal files stored on UGREEN NAS devices only with your explicit authorization and after granting the appropriate permissions. |
① Efficient Technical Support Services: By gathering device information, we can swiftly identify and resolve issues, providing you with precise technical support. ② Specific User Permissions: Initially, our technical support staff will request general user permissions to access device information. ③ Comprehensive Diagnostics: For complex technical issues, additional permissions may be requested with your consent. This involves creating an administrator account for the technical support team to access. Access to personal files is only permitted under these specific circumstances. |
User Experience Survey (Excludes Mainland China Users) |
Email Accounts |
① To continuously improve our products and services, and provide you with a more personalized user experience. ② Facilitate our knowledge of your actual experience and feedback after using UGREEN NAS. ③ Collect your usage experiences, and preferences suggestions for UGREEN products to better inform our product improvements and optimizations. ④We may also use your email address to send you marketing information via email. |
Operation and Security |
Hardware model, operating system version number, device identifiers (Android device identifiers include IMEI/MEID, AndroidID, OAID, IMSI, SIM card information (including ICCID), GAID, and hardware serial number (SN) while iOS device identifiers include IDFV and IDFA; the identifiers' effective period and acquiring method and whether they can be reset by the user may vary from identifier to identifier), network device hardware serial number, IP address, WLAN access point (including SSID and BSSID), Bluetooth (Bluetooth), base station, software version number, network access mode, type, status, network quality data, operation, usage, and service log data. |
Ensure the secure operation of software and services and the quality and efficiency of operations |
Account information, device information, service log information, and information that you have authorized our affiliates and partners to share with us, or information you are legally required to provide to us. |
Verify account security and identification, identify legal violations, detect and prevent security incidents, and conduct the necessary documentation, analysis, and resolution pursuant to law. |
|
Failure Logs |
Used to analyze the discrepancies and malfunctions and assist you in troubleshooting and resolving them. |
|
Configuration Backup and Restoration |
① Connectivity and Access: Users and user groups (permissions and advanced settings), file services, device connection data (UGREENlink, DDNS, portal settings), end devices, domains, and LDAP; ② General Settings: Time and language, notification, network, security, and indexing services; ③ System Services: System updates, resets, configuration backups, and restorations. |
The "Configuration Backup and Restoration" feature allows you to bac up and restore configuration data after repairing your device or using it in another country. |
Vulnerability Disclosure Policy
Ugreen Group Limited(hereinafter referred to as "We" or "Ugreen"), as a manufacturer of NAS products, attaches great importance to the security of its own products and business, and recognizes the importance of privacy and data security. The handling of each security vulnerability and the improvement of business security cannot be separated from the joint cooperation of all parties. If you discover or believe that you have discovered a potential security vulnerability in your use of NAS Services, we encourage you to disclose your discovery to us as soon as possible in accordance with this Vulnerability Disclosure Policy. We promise that we have dedicated personnel to follow up, analyze and deal with the problems reported by each reporter, and will reply in time.
1. Vulnerability feedback and processing process
[Vulnerability feedback]
If you believe that NAS products have vulnerabilities or security incidents that need to be reported, please fill out the following vulnerability report form.
[Vulnerability Treatment Process]
Step 1: The reporter needs to provide detailed information about
the vulnerability.
Step 2: Ugreen checks and verifies the received vulnerability information and evaluates it.
Step 3: Fix the vulnerability and verify the repair of NAS products.
Step 4: Release a new version of the NAS product for updates.
Step 5: Reply to reporter with processing results.
Step 6: Monitor the stability of the NAS product after the update.
[Vulnerability Review Phase]
1. The report will be confirmed within 1 working day upon receipt and an initial assessment will be conducted.
2. Within 3 working days the assessment will be completed and the vulnerability will be fixed or a remediation plan developed.
[Vulnerability Fix & Completion phase]
1. Critical vulnerabilities will be fixed within 3 working days after completion of assessment.
2. High risk vulnerabilities will be fixed within 7 working days after completing the assessment.
3. Medium risk vulnerabilities will be fixed within 30 working days after completing the assessment.
4. Low-risk vulnerabilities will be fixed within 60 working days after completing the assessment.
Certain vulnerabilities are subject to environmental or hardware limitations, and the final repair time will be based on the actual situation.
A separate emergency security bulletin is issued for severe or significant impact vulnerabilities.
2. Vulnerability rating standards
According to the degree of harm of vulnerabilities, they are divided into four levels:extreme risk, high risk, medium risk and low risk.When we receive a vulnerability report, we take a series of steps to resolve it internally with reference to ISO/IEC 30111. All reported vulnerabilities are scored according to the Common Vulnerability Scoring System CVSS 3.1 criteria.
[Extreme Vulnerabilities]
1. Remote direct access to system permissions (server permissions, client permissions, smart devices) vulnerabilities, including but not limited to arbitrary code execution, arbitrary command execution, uploading and utilizing WebShell Trojans.
2. The core business system has logical design defects, including but not limited to any account password modification without any protection restrictions, any account login, etc.
3. It directly leads to serious information leakage vulnerabilities in the online business system, including but not limited to SQL injection vulnerabilities in the core DB.
4. Mobile terminal: Remote code execution vulnerability that can directly affect a large number of users without interaction.
5. Device side: Remote access to device execution permissions (such as downloading other NAS user data, remote access to devices, etc.) in the Internet environment, there is no interactive remote command execution vulnerability in the Internet environment.
【 High Risk vulnerability 】
1. Vulnerabilities that directly lead to the leakage of sensitive information on online servers are including but not limited to core system source code leakage, server sensitive log file download, etc.
2. The core business system can use the identity of others to perform all functions of the vulnerability, the core business system important or sensitive unauthorized operation vulnerability.
3. Unauthorized access to the management platform and use of administrator functions, including but not limited to sensitive background administrator account login, the activity of the relevant platform, user base, functional importance, and user information sensitivity will be considered as high risk vulnerability rating criteria.
4. High risk information leakage vulnerability. Including but not limited to sensitive data leakage that can be directly exploited, leakage vulnerabilities that can lead to a large amount of user identity information.
5. SSRF vulnerabilities with echoes that can access the Ugreen Intranet.
6. Mobile terminal: Third-party applications use mobile client functions across applications to perform high-risk operations (such as file read and write, SMS read and write, and client data read and write), and high-risk sensitive information leakage.
7. Device: obtains device execution permission (such as downloading other NAS user data or remotely accessing devices) from the near source or LAN. There is no interactive remote command execution vulnerability in the near source or LAN.
8. Device: Vulnerabilities that remotely cause permanent denial of service on devices are including but not limited to remote denial of service attacks on system devices (devices can no longer be used, completely permanently damaged, or the entire system needs to be rewritten), and attacks do not allow physical contact with devices, and attacks need to be quickly replicated in batches.
【 Medium Risk vulnerability 】
1. Ordinary information leakage, including but not limited to mobile client plaintext storage password, containing server or database sensitive information source code compression package download,etc.
2. The logical design defects existing in the system, such as payment loopholes,etc.
3. Vulnerabilities caused by weak authentication mechanism defects, including but not limited to sensitive function captcha can be brute force cracked, login interface no captcha, etc.
4. SSRF vulnerability without echo.
5. Vulnerabilities that require interaction to obtain user identity information, including but not limited to CSRF for sensitive operations, storage XSS, JSONP hijacking for sensitive information, etc.
6. Remote denial-of-service vulnerability that can disable some functionality of an online application (need to be proven to affect other users).
7. A vulnerability that causes a smart device to deny service. For example, a system device is subjected to a locally initiated permanent denial-of-service attack (the device can no longer be used: completely permanently damaged or the entire operating system needs to be rewritten ), a temporary denial-of-service attack
vulnerability caused by remote attacks (remote suspension or restart), and the attack needs to be able to quickly replicate in batches.
- A vulnerability that allows ordinary business systems to use other people’s identities to perform all functional operations beyond their authority.
【 Low Risk vulnerability 】
1. Vulnerabilities that can be exploited in phishing attacks, including but not limited to URL redirection vulnerabilities.
2. Low-risk logic design flaws.
3. Minor information leakage vulnerabilities, including but not limited to path leaks,.git file leaks, and server side business log contents.
4. Vulnerabilities that can be exploited for phishing or hacking,
including but not limited to arbitrary URL adjustments and reflective XSS vulnerabilities.
5. Mobile terminal: local denial of service (including but not limited to denial of service caused by non-third-party Android component permissions), minor information leakage (only affecting individual users), etc.
6. A vulnerability that causes a device to temporarily deny service. This includes but is not limited to temporary denial-of-service attack vulnerabilities caused by local attacks (devices need to be restored to factory Settings).
[Ignoring the problem]
1. Bug issues unrelated to security, including but not limited to slow opening of web pages, messy formats, etc.
2. The submitted report is too simple and cannot be reproduced according to the content of the report, including but not limited to the vulnerabilities that cannot be reproduced even after repeated communication with the vulnerability auditor.
3. Unexploitable or harmless reports, including but not limited to hoax CSRF (no real impact on users), local denial-of-service that cannot affect others, Self-XSS, PDF XSS, non-sensitiveinformation leak (Intranet IP, domain name), mail bomb, etc.
4. No practical source code leakage.
5. The security problem in the non-Ugreen module of the hardware product, or the defect of the hardware itself.
6. Security issues that Ugreen proactively discloses or have been disclosed externally.
7. Security issues on Products, apps or WEB applications that are no longer maintained.
8.Vulnerabilities that Ugreen is able to self-validate internally known and have been fixed.
9. Denial of service caused by permissions of third-party Android
components.
Any information provided to Ugreen about vulnerabilities in NAS products, including all information in product vulnerability reports
Information that you transfer will be owned and used by Ugreen.
Ugreen reserves the right to modify this policy at any time.
UGREEN NAS Warranty Service Terms
- Service Products
UGREEN NAS hardware products (including the power adapters and network cables necessary for their use) purchased from us or our authorized distributors/resellers by clients, as well as hard disks provided by us. The SN number attached to the product is a proof of your warranty service. Please keep it properly.
- Warranty Period
The Warranty Period for NAS products and their accessories is as follows:
Warranty Category |
Model |
Warranty Period |
Main Device |
DH series/DX series |
2 years |
DXP series (such as DXP2800/4800/4800Plus/DXP480TPlus) |
2 years |
|
DXP6800 series/DXP8800 series |
3 years |
|
Power Adapter |
1 year |
|
Network Cables |
1 year |
|
Hard Disk |
Subject to the warranty period provided by the hard disk manufacturer |
The warranty period for replaced products shall be re-calculated from the date of replacement. The warranty period following parts repair or replacement shall follow the remaining warranty period for the entire device. If other online platforms or the laws in your location provide otherwise, the rules of the online platform you purchased the product from or the laws in your location shall prevail.
- Return and Exchange Instructions
- This warranty and return and exchange period applies only to NAS hardware products sold in the United States.
If the product experiences a performance failure due to non-human damages within 14 days (including the 14th day) from 0 o'clock following the day the customer purchases and signs for the product, the consumer is entitled to free return, exchange, or warranty service.
- Please check whether the following items are missing before any returns or exchanges to facilitate the return or exchange process. We may not be able to provide you with after-sale services should any items be missing.
|
Complete Main Device and Accessories |
Integral Packaging and Appearance |
Receipt (Unmarked) |
Gifts (If Any) |
Warranty Card |
Returned |
√ |
√ |
√ |
√ |
√ |
Exchanges |
√ |
√ |
√ |
|
√ |
- Products must be returned to the address designated by UGREEN in the same condition as received, with the shipping pre-paid by you and in packaging sufficient to protect the product inside the box.
Please be aware that our return and exchange services may vary depending on the country/region or the platform used. To ensure your rights are protected to the fullest extent, please refer to the return and exchange policy of your country/region or the platform used. You acknowledge that product returns or exchanges are only valid in the country/region or on the platform where the product was purchased. If there are different mandatory regulations in your country/region, or on the platform you use, the regulation that is most favorable to you will apply.
- Repair Guidelines
- During the repair process, we may remove all information or data from the product to protect your privacy. Therefore, before sending the product for repair or return, please ensure you back up all personal data and delete all data and personal information stored on the product.
- You only need to send the malfunctioning device back for repairs (advance confirmation with us is required) and do not need to return any parts that were not pre-installed.
- Our customer service center will notify you of any repair fees owed for repairs to products that do not meet the warranty conditions, and we will provide you with the repair services upon obtaining your consent.
- Required Information for Warranty
Please carefully fill in the required information for warranty to protect your rights.
Warranty Information: User name, address, contact phone number, product name, specification, model, product SN, warranty period, and repair records.
- Scenarios Not Covered by the Free Warranty and Return and Exchange Policy
- 1. The product warranty period has expired.
- 2. Altered, torn, or damaged product identification (such as SN or model number).
- 3. Man-made damages, whether intentional or due to negligence, including without limitation damage caused by use in inappropriate environments or the failure to follow instructions.
- 4. Normal color fading and wear and tear while using the product (such as natural wear and tear of the case and connectors, wear and aging, and dirt or blockages caused by dust accumulation).
- 5. Unauthorized alteration or modification of original condition.
- 6. Any malfunction or damages resulting from overhaul, modification, or disassembly performed by any agency or individual not authorized by UGREEN.
- 7. Any malfunction or damages due to force majeure events (including natural disasters such as fires, earthquakes, and floods), power surges, or improper maintenance.
- 8. Obvious signs of negligent or accidental damage, such as damage caused by the use of the product (including all its components, such as motherboard) for special testing purposes, and damage to product ports or slots caused by incorrectly connecting and disconnecting products for extended periods.
- 9. Improper storage, such as performance failures caused by prolonged exposure of the product to abnormal temperatures, humidity, excessive altitude, or corrosive substances.
-
10. Data loss or corruption includes but is not limited to the following circumstances:
- Data loss or corruption due to network interruptions or delays.
- Data loss or corruption due to the use of unlicensed, non-standard, or non-public software.
- Financial losses due to data loss or corruption caused by viruses, hacker attacks, or other malicious acts.
- 11. Usage in a manner that infringes upon the intellectual property rights (including without limitation patents, trademarks, and copyrights) of UGREEN or any third party.
- Contact Us
You can directly contact us through the following methods:
1. Contact the online customer service directly if you purchase the product via our online store.
2. Contact Numbers and Business Hours:
Country/Region |
Contact Number |
Business Hours |
US |
+1-888-820-8830 |
Mon-Fri 9:00-17:00 PST |
DE |
0800-181-0127 |
Mon-Fri 9:00-17:00 |
EU |
+49-800-181-0127 |
Mon-Fri 9:00-17:00 |
Mainland China |
0755-21044617 |
Mon-Sat 9:00-12:00,13:30-22:00 |
3. Official Website:www.ugreen.com
4. Email:nas-support@ugreen.com
Refer to the full UGREEN NAS Product Warranty for more detailed information.