Last updated: 2026-04-21. Effective: 2026-04-21. Data controller: Shijiazhuang Lankuai Electronic Technology Co., Ltd This document governs personal data and personal information processing for the Android Google Play build of Riri Live only; it does not address iOS, iPhone, App Store, Apple ID, or non-Android clients.
Right to know about data sharing: In this privacy policy we state and explain that, where the law gives you this right, you have the right to know whether your personal data is shared (disclosed to third parties for our operations). The same applies to personal information where that term is used. Full detail is in Right to know about data sharing (whether your personal data is shared) and Sharing with service providers below.
Device ID: If our Data safety form indicates Device ID (or Device or other IDs) collection or sharing, you will find an explicit Disclosure: Device ID in this same policy, including that we collect and may send or share Device ID as part of Usage events and diagnostics where applicable to your build.
We apply reasonable technical and organizational measures, including access controls and encryption in transit (such as TLS) for network communications where applicable. No method is perfectly secure; protect your device and credentials you use on it.
We keep personal data only as long as needed for the purposes described, dispute handling, or legal requirements. Retention periods vary by data type: call and message content may be retained for operational delivery, safety review, and legal compliance; diagnostics may be retained in shorter rolling windows; account-related data follows the same principles. When no longer needed, we delete or irreversibly anonymize information consistent with operational constraints. You may request deletion where applicable by contacting us; we respond within 15 business days where required. Some records may be retained where necessary to evidence transactions or meet legal or accounting duties, including Google Play purchases.
Registered address: No.96 Huai'an East Road, Yuhua District, Donggang Yiyuan 71902, Shijiazhuang, Hebei, 050000, China. Email sabrinamartinez590@gmail.com. DPO: Privacy contact at sabrinamartinez590@gmail.com.
Adults 18+ only. We do not provide an age-gate or technical age verification beyond your first-use age declaration. The App requires registration and sign-in, conditioned on accepting the Privacy Notice and Terms of Use (including in-app confirmations). The App includes in-app purchases. Specific registration fields and purchase types are not listed here unless your product documentation specifies them.
This privacy policy states and explains the following, in line with what regulators and app stores expect for transparency: where applicable, you (our users) have the right to know whether your personal data is shared with others—i.e. whether personal data or personal information is disclosed to third parties (such as service providers that host content, moderate media, measure reliability, or help process payments), and in many cases the right to know whether we share it at all. Stated again for clarity: you have the right to know whether your personal data is shared; the Data categories section and Sharing with service providers below make that explicit category by category. This includes, where the law requires, the categories of personal information shared and the categories of third parties with whom it is shared. The California Consumer Privacy Act (CCPA) / CPRA section explains how share and sharing are defined for California. To submit a right to know request (including whether information is shared), contact the data controller at sabrinamartinez590@gmail.com; we respond within 15 business days where required.
When the App’s Data safety declaration (or your implementation) includes Device ID or Device or other IDs, the following applies: we collect Device ID and related device identifiers (for example advertising or app-instance identifiers that your build attaches to telemetry) as part of Usage events and diagnostics, including Device ID and related device identifiers. The App or SDKs may send such Device ID data from your device to our systems and to providers. We may share Device ID with Analytics / Performance Monitoring under Sharing with service providers to Measure performance, troubleshoot issues, and improve product quality and, where applicable, for security and fraud prevention alongside diagnostics. Device ID is disclosed here so the policy text matches what you declare in Google Play for Device ID or similar categories.
Account holders may request deletion of account data where applicable. You may: (1) use the in-app path Settings > Account > Delete account (or the equivalent in your build), and/or (2) use our web form at https://placeholder-xx.example/account-deletion. Google Play may retain transaction or order records separately under Google’s own policies. We also respond to delete requests sent to the contact email, within 15 business days where required.
We process account-related identifiers and authentication data to operate your account, maintain secure sessions, prevent fraud and abuse, and comply with law; session and device signals may be used for the same purposes. Account deletion requests are handled under Retention and Your rights; Google Play may retain purchase records separately.
Payments for in-app purchases go through Google Play (Google Play Billing). Google collects payment; we do not receive your full card number through the App in the usual flow. We may process order identifiers and entitlement state as in our Data safety form. Product categories (for example subscription versus one-time) are not stated here unless your product documentation specifies. Refunds and cancellations follow Google Play rules and your Google account settings.
For each type below, we state and explain whether the related personal data is shared with third parties in Sharing with service providers (and, for California, in the CCPA / CPRA section). Right to know about data sharing means you can use those sections to see whether your personal data is shared and with whom. We process the following, consistent with our Data safety form:
We do not sell personal and sensitive user data.
Cloud Hosting / CDN: We share Photos and videos uploaded by users, Media file metadata, and Storage access related file metadata with Cloud Hosting / CDN providers to Store, deliver, and accelerate media content for core app features.
Content Moderation Service: We share User-uploaded photos and videos and Related moderation metadata with a Content Moderation Service to Detect and prevent illegal, abusive, or policy-violating content.
Analytics / Performance Monitoring: We share Usage events, Device ID, and Device and app diagnostics (including identifiers in telemetry) with Analytics / Performance Monitoring tools to Measure performance, troubleshoot issues, and improve product quality—so you can see that Device ID may be shared with this type of third party when declared in Data safety.
Google Play (payments): We share Order and entitlement information and Transaction identifiers processed in connection with Google Play Billing with Google Play (payments) / Google to Process in-app purchases, deliver digital goods or features, and reconcile entitlements. Google operates the payment platform; we do not receive your full card number in the usual flow. We receive information needed to confirm entitlements as in our Data safety form. This is part of what we disclose so you can exercise your right to know whether your personal data is shared.
We request access only when needed for features:
Collection scope and wording align with our Data safety declarations and the permission prompts shown at runtime in your build. Exact permission labels, Android permission strings, and trigger screens must match your finalized Data safety questionnaire and production dialogs; update this policy if your product documentation differs.
Where GDPR or UK GDPR applies, we rely on legal bases that may include performance of a contract (calls, chat, account services, in-app purchases), legitimate interests (security, abuse prevention, product improvement), legal obligation, and consent where we ask for it. Where we rely on consent, you may withdraw consent without affecting prior lawful processing.
We may process information in countries where we or providers operate. Where GDPR or UK GDPR requires safeguards for transfers, we use mechanisms such as standard contractual clauses where appropriate, plus technical and organizational measures to protect personal information.
Depending on law, you may have rights to access, delete, correct, port, restrict, or object—including, where applicable, the right to know whether your personal data is shared, the right to know about data sharing (see above), and the right to lodge a complaint with a supervisory authority (see EEA, UK, and Switzerland: right to lodge a complaint with a supervisory authority below). Submit requests to sabrinamartinez590@gmail.com. We respond within 15 business days where applicable.
You may request correction of inaccurate or incomplete personal data or personal information by emailing sabrinamartinez590@gmail.com.
We inform you that you have the right to lodge a complaint with a data protection supervisory authority if you believe our processing of your personal data infringes applicable law. This right to lodge a complaint is recognized under the GDPR for individuals in the EEA and, under the UK GDPR, for individuals in the United Kingdom. In the UK, the supervisory authority is the Information Commissioner’s Office (ICO) (ico.org.uk). In the EEA, you may contact the authority in the member state of your habitual residence, place of work, or an alleged infringement, as applicable. You may also contact us first at sabrinamartinez590@gmail.com or sabrinamartinez590@gmail.com so we can try to resolve your concern.
If you are a California resident, this section describes certain rights available under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA) (“CCPA”). The CCPA requires that we provide California consumers with a meaningful description of those rights, including how to exercise them.
Right to know — collection, sale, and sharing: You have the right to know whether your personal information is shared with third parties, subject to applicable exceptions. You also have rights to know categories of personal information collected, sources, purposes, and (for certain disclosures) categories of third parties with whom we share personal information. See Sharing with service providers for our main third-party relationships.
“Share,” “shared,” and “sharing” under California law: These terms have a specific meaning under the CCPA and regulations (including disclosures for cross-context behavioral advertising in defined circumstances). Our use of “share” in this policy follows that framework. Sharing can include making personal information available to partners that assist our service (consistent with the specific definition under California law), not only public publishing.
If you are a California resident, you have the right to know whether we sell or share personal information as defined under California law. You may contact sabrinamartinez590@gmail.com to exercise these rights.
You have the right to know whether we sell personal information; we do not sell personal information as defined under California law for this App, consistent with the no-sale statement in this policy. Where applicable, you may request to opt out of sale or certain sharing of personal information by emailing sabrinamartinez590@gmail.com with the subject line “California opt-out of sale or sharing.”
Under California law, sharing includes disclosures described in the specific definition under California law, including contexts related to cross-context behavioral advertising where applicable. Riri Live is a communication product; we describe sharing where Cloud Hosting / CDN, Content Moderation Service, Analytics / Performance Monitoring, and Google Play (payments) providers assist us. To exercise right to know requests, email sabrinamartinez590@gmail.com; we respond within 15 business days where required.
If you are a Virginia resident, the Virginia Consumer Data Protection Act (VCDPA) may apply. How you can opt out:
The App is for users 18+ only. We do not operate an age-gate or technical age verification beyond the first-use age declaration you confirm in the app. We do not knowingly collect personal information from children below applicable thresholds.
We may revise this policy from time to time. When we do, we will update the Last updated date at the top of this document. We encourage you to review this policy periodically.
sabrinamartinez590@gmail.com / DPO sabrinamartinez590@gmail.com.
To keep personal data processing transparent for Google Play review, note that Usage events and diagnostics, including Device ID and related device identifiers (when applicable), and Device and app diagnostics may include app version, device model, Device ID where your build includes it, network quality indicators, and error logs to Measure performance, troubleshoot issues, and improve product quality. Photos and videos uploaded by users may traverse Cloud Hosting / CDN systems so we can Store, deliver, and accelerate media content for core app features. User-uploaded photos and videos may be reviewed through a Content Moderation Service using Related moderation metadata to Detect and prevent illegal, abusive, or policy-violating content. Storage access related file metadata may be processed when you attach media consistent with Android scoped storage rules. Chat messages and user-shared photos and videos (including emoji-related message content) remain subject to Operate instant messaging, media sharing, and community safety workflows and are Required when you send messages or share media in chat. Live video and audio session content processed through the service for calls remains Required when you use live video or voice calling to Provide HD video calls, routing, and synchronized messaging features. If you submit a report, Safety reports and block or report records you submit are Optional; only when you use block or report flows and support Investigate abuse reports, enforce policies, and protect users. In-app purchases run through Google Play as described above.
This section reinforces how personal information maps to live features on Android distributed through Google Play. Riri Live combines real-time audiovisual sessions with rich messaging. When you participate in a live video or voice session, Live video and audio session content processed through the service for calls is processed to Provide HD video calls, routing, and synchronized messaging features and is Required when you use live video or voice calling. When you compose messages, Chat messages and user-shared photos and videos (including emoji-related message content) are processed to Operate instant messaging, media sharing, and community safety workflows and are Required when you send messages or share media in chat. Operational reliability relies on Usage events and diagnostics, which are Required to Measure performance, troubleshoot issues, and improve product quality. If you use block or report, Safety reports and block or report records you submit are Optional; only when you use block or report flows and help us Investigate abuse reports, enforce policies, and protect users.
Third parties assist under contracts: Cloud Hosting / CDN receives Photos and videos uploaded by users, Media file metadata, and Storage access related file metadata to Store, deliver, and accelerate media content for core app features. A Content Moderation Service processes User-uploaded photos and videos and Related moderation metadata to Detect and prevent illegal, abusive, or policy-violating content. Analytics / Performance Monitoring receives Usage events, Device ID (when applicable), and Device and app diagnostics to Measure performance, troubleshoot issues, and improve product quality.
Permissions align with runtime prompts: Camera; Microphone; Photos and videos (read; Android READ_MEDIA_IMAGES / READ_MEDIA_VIDEO or scoped access as applicable); Photos and videos (write / MediaStore) when saving or sharing images or clips from the app. The App uses registration and sign-in under the Privacy Notice and Terms of Use, and in-app purchases via Google Play. Users must be 18+; we do not implement an age-gate or technical age verification beyond the first-use age declaration presented at onboarding.
For California residents, remember you have the right to know whether we process personal information, including sharing with third parties, and sharing may be understood under the specific definition under California law, including cross-context behavioral advertising where relevant. For Virginia residents, use the VCDPA opt-out paths described above for targeted advertising, sale of personal data, and profiling where applicable. You may request correction of inaccurate or incomplete personal data or personal information through the channels listed. Legal bases under GDPR/UK GDPR may include performance of a contract, legitimate interests, legal obligation, and consent (which you may withdraw). International processing may use safeguards such as standard contractual clauses where required.