1. Scope and contact
This policy applies to dianyeweb.cyou, enquiry and planning forms, customer uploads, the customer portal and project-service records. Dianye is an unregistered service name, not a company or licensed institution. The operating and legal contact is Liu Chonghao (刘崇浩).
Send access, correction, deletion, consent-withdrawal and complaint requests to info@dianyeweb.cyou. We normally respond within 30 days and will explain if identity verification, complexity or a lawful retention need affects the timing.
2. Information we may process
Ordinary enquiries do not require identity documents, passports, bank cards or dates of birth. Do not upload unrelated sensitive documents. If we identify an accidental upload, we restrict access and delete it safely when no necessary dispute or record-keeping reason applies.
- Name, business name, contact details, WeChat, WhatsApp, Xiaohongshu account and country or region.
- Budget, website type, project description, reference sites, quotations, contracts, payments and support records.
- Images, copy, documents, archives and other project files you choose to upload.
- Hashed IP information, browser or device details, access times, authentication events and activity logs used for security and audit.
3. Purposes
We process only what is reasonably needed for these purposes. Project-contact consent and marketing consent are separate; refusing marketing does not affect an enquiry or service.
- Respond to enquiries, assess requirements and prepare quotations or contracts.
- Design, build, test, launch and maintain websites and handle support requests.
- Provide customer-portal access, file delivery, payment confirmation and project records.
- Prevent spam, abuse and unauthorised access and investigate security incidents.
- Perform agreed services, keep necessary transaction records and handle disputes.
5. Retention
Expired records enter a human review process. A deletion request may not cover records needed for contracts, payments, disputes, security or applicable obligations; we will explain such a restriction.
- Unconverted enquiries: 12 months by default.
- Converted customers, contracts and payment records: 7 years by default, or longer where a dispute or applicable requirement makes this necessary.
- Unconverted-project uploads: 6 months; converted-project uploads: 12 months after project completion.
- Test data: no more than 30 days; access and security logs: 90 days; project backups: 90 days by default.
6. Your choices
Use the data-request page and provide enough information to locate the record without sending excessive identity data. We may verify a request through the original contact channel to prevent impersonation.
- Request access, correction, deletion or export.
- Withdraw consent, stop marketing or make a privacy complaint.
- Ask why a record cannot yet be deleted and when it will be reviewed.
7. Security and minors
We use server-side authorisation, session controls, rate limits, private-file access, input and upload validation, activity logs and separate protection for sensitive fields. No online system can guarantee absolute security; use the security-disclosure page to report concerns.
Minors may send ordinary enquiries. A parent or guardian must agree before a minor signs a formal contract, pays or assumes commercial responsibility. We do not proactively collect dates of birth or request identity documents for ordinary enquiries.