Our privacy policy was updated on September 1, 2024, and became effective on September 15, 2023. Please read through and fully understand the Policy. Should you have any questions, please feel free to contact us.

Shenzhen Conex Intelligent Technology Co., Ltd. (registered at Office 01, Floor 10, Building B2, Phase II, Creative City, Xiandong Road, Xili Community, Xili Street, Nanshan District, Shenzhen, Guangdong, China) and its affiliates (collectively "Conex," "we," "us," and "our") value your privacy. Please review this Privacy Policy ("Policy") to understand how we process your personal data. This Policy applies to Conex websites, products, and services that link to or display this Policy.

In this Policy, "smart device(s)" refers to smart door locks and/ or any other related smart devices that are compatible with applications developed by Conex.

"Conex apps" refers to mobile and PC applications developed by Conex, including but not limited to the Philips EasyKey Plus app, WeChat Mini Program “Philips EasyKey Plus”, and Philips Home Access app, as well as any other current or future products and services.

This Policy outlines how Conex processes your personal data but may not cover every data processing scenario. For information on data collection specific to particular products or services, Conex may issue supplementary policies or notices before collecting your data.

The purpose of this policy is to help you understand the following:

Article 1. How we collect and use your personal data

Article 2. Personal data storage

Article 3. How we use third-party’s SDK

Article 4. How we disclose your personal data

Article 5. How to access and modify your personal data

Article 6. How we protect and retain your personal data

Article 7. How we process children's personal data

Article 8. Account cancellation

Article 9. Third-party providers and their services

Article 10. International transfers of your personal data

Article 11. Updates to this Policy

Article 12. How to contact us

Article 1. How we collect and use your personal data

Personal data refers to information that can identify an individual, either alone or in combination with other data. We collect this data directly from you when you use our website, products, or services, or when you interact with us. To enhance our products and services and improve user experience, we may collect information provided when creating a Philips account or seeking support, as well as data on how you interact with our website and use our software. Where legally permissible, we may also acquire data from public and commercial sources, including statistical data, to support our services.

1.How we collect and use your personal data

Before using our products or services, you may need to provide personal data. While you may choose not to disclose certain information, doing so could prevent us from providing specific products or services or addressing any issues you may encounter. We may also combine information collected from your devices to ensure consistent service across them.

Podemos procesar sus datos personales para los siguientes fines:

1.1 Account registration and login

When using our app services or managing smart devices, we collect the following information: your email address, phone number, login credentials (account and password), and nickname. Nicknames are not considered sensitive, so they are displayed to help users recognize and remember their products. Similarly, email addresses and phone numbers are visible during login, registration, and password recovery for ease of account management. This information is necessary for account registration and login. Without it, you will be unable to use our app services.

1.2 Device connectivity

To enable device pairing and management, we collect the following location data: region and country codes, city codes, mobile network code, mobile country code, cell ID, area name, latitude and longitude, time zone, and languages. This data is used for pairing the device, managing it, and configuring its settings.

1.3 Push notification

To provide real-time notifications of device activity, we collect the following information: your handheld device details (IMEI number, IMSI number, system version, manufacturer details, model name, and network operator) and information about devices linked to your account, such as MAC address, DID, network status(IP/network signal), and firmware version.

1.4 Face ID/ Fingerprint

To enable secure login verification for our app, we collect information related to fingerprint and face ID. This allows you to choose between using fingerprint or face ID for app login on mobile devices. We receive only the verification results and do not collect your actual fingerprint or facial features.

2.Device permission

2.1 Access to location services

To connect devices via WLAN in our app, you need to grant permission. We will request your authorization the first time you use this feature.

2.2 Access to Microphone permission

To use audio recording for voice intercom and device prompts, you need to grant this permission. We will request your authorization the first time you use these features.

2.3 Access to Call permission

To use the call feature for contacting customer service, you need to enable this permission. We will request your authorization the first time you use this feature. (Note: Users in Hong Kong, Macau, Taiwan, and overseas markets should email philips.ddl.cn@cone-x.com for support.)

2.4 Access to camera permission

To bind your device to the app by scanning the QR code on the device’s label and to use the camera for uploading or changing your profile picture, you need to enable this permission. We will request your authorization the first time you use these features.

2.5 Access to gallery (photos) permission

To use the "Feedback" feature in our app, you need to upload photos of device issues from your gallery. Gallery access is also required to change your profile picture, save video snapshots, and access device QR codes for network binding. We will request your authorization the first time you use these features.

2.6 Access to storage permission

To cache text and save downloaded images and videos, please enable this permission. Without it, data cannot be stored.

2.7 Access to notification permission

To receive call notifications and push alerts (such as operation logs, alerts, and visitor information) in our app, please enable this permission. Denying it will prevent you from receiving device notifications.

2.8 Bluetooth

To enable device searching and Bluetooth connectivity in our app, please grant this permission. We will request your authorization the first time you use this feature.

2.9 Alarm and reminder permission

To receive real-time push notifications for device logs and settings, please enable this permission. We will request your authorization the first time you use these features.

Please note that the permissions mentioned above are disabled by default and require your explicit consent to be activated for specific functions or services. You may choose not to grant these permissions. Even with your consent, we will not collect your data if the related functions or services are not in use. You can manage these permissions in the app under [Me - System Settings - Permissions], where you can enable or disable them as needed.

3. Access to sensitive information permission

3.1 File management

To save images and videos to your phone, you need to grant this permission. Without it, this feature will not be available.

3.2 Wi-Fi SSID details

To access current Wi-Fi details for easier device connections, we need your permission. Without it, this feature will not be available.

3.3 MAC address of Bluetooth devices

To search for and connect Bluetooth devices to the Internet, we need your permission. Without it, this feature will not be available.

3.4 System operation details

To ensure compatibility of our products and/or services across different devices, we need to access system operation details.

3.5 Network status details

To ensure stable delivery of our products and/or services, we need to access your phone’s network status for network link selection and optimization.

3.6 Running process details

To enable third-party service notifications, we need to check if our app is running in the background.

3.7 Third-party login

To enable quick login with third-party accounts (such as Google,Apple,WeChat), using such an account will open the Apple,Google,WeChat app.

3.8 Clipboard details

To enable the sharing feature, we need to access your clipboard and read its contents.

3.9 Login details

To enable device connectivity and customer support, we need login permissions to link your account with your smart devices. With your consent, we can use account data to disconnect, upgrade, or provide other necessary services for malfunctioning devices. We may also review crash logs to diagnose issues. Without this permission, your account may not function properly.

To ensure the proper functioning of related features, please refer to the 'Personal Information List' for detailed user instructions and scenarios.

We may also collect and use non-identifiable data, which cannot be used to identify individuals. This includes aggregated statistics, such as website traffic, to understand user interactions with our website, products, and services, and to improve our offerings. We may use, process, transfer, or disclose this data for various purposes at our discretion. We strive to keep personal data separate from non-identifiable data and use them independently. However, if non-identifiable data is combined with personal data, it will be treated as personal data.

We will process your personal data in accordance with applicable laws and on a proper legal basis, including:

Article 2. Personal data storage

1.Data storage methods and retention period

We will store your personal data securely using methods like local storage (app data caching), databases, and server logs.

Generally, we retain your personal data only as long as necessary to fulfill specific purposes or as required by law. Once the retention period ends, we will either delete or anonymize your data.

2. Geographic location of data storage

We will store personal information collected in China within the territory of the People's Republic of China in accordance with laws and regulations. Since we provide products/services through resources and servers around the world, this means that, with your separate consent, your personal information may be transferred to overseas jurisdictions of the country/region where you use the product/service, or accessed from these jurisdictions. Such jurisdictions may have different personal information protection laws. In such cases, we will try our best to ensure that your personal information is sufficiently protected as in the territory of the People's Republic of China. For example, we will obtain your consent to the cross-border transfer of personal information, or implement security measures such as de-identification of personal information before cross-border transfer of personal information. If cross-border transmission or storage is required, we will inform you of the purpose of the information outbound transfer, the recipient, the security measures and security risks, and obtain your consent.

Article 3. How we use third-party’s SDK

1. SDK Bugly

Contact information:

2.WeChat SDK

Link：https://open.weixin.qq.com/cgi-bin/frame?t=news/protocol_developer_tmpl

Contact information:

3.Xiaomi push notification service

Link: https://dev.mi.com/console/doc/detail?pId=1822

Contact information:

4. Huawei push notification service (embedded Huawei updated SDK, Huawei open ID SDK interface, Huawei HMS core function SDK)

Link: https://consumer.huawei.com/cn/privacy/privacy-policy/

Contact information

5. Personalized message push service (embedded Zhuoxin ID SDK)

Personal data types:

A.Device information: Required information: device platform, device manufacturer, device brand, device model and system version, OAID, AndroidID. Optional information: IMEI, MAC, Google Advertising ID (GAID), Serial Number, IMSI, ICCID, IP address, base station information. Used to generate a unique push target ID (CID) and device ID (GID) to ensure accurate delivery of message push and accurate identification of message devices.

B.Permissions: To ensure the uniqueness of CIDs and enhance message push stability, we require storage permissions (WRITE_EXTERNAL_STORAGE, READ_EXTERNAL_STORAGE) and device permission (READ_PHONE_STATE).

C.Network and location information: including WIFI connection information, operator information, DHCP, SSID, BSSID, optional information: IP address, base station information. In order to maintain the stability of network connection to the greatest extent and establish a long connection, we need to understand the network status and changes of the device to achieve stable and continuous push service. We provide a push function for specific scenarios. Location-related information will help us provide you with refined push for offline scenarios, recommend push content that better suits your needs, and reduce the disturbance of useless push messages to you).

D.Application List Information: Helps manage notifications by combining push links from multiple apps into one, saving power and data. This information also supports personalized and smart push features, while reducing irrelevant messages.

Note: To ensure timely message delivery, we may authorize Daily Interactive Co., Ltd. to perform link adaptation and activate the closed-source SDK push process.

Note: To ensure timely delivery of notifications, you may authorize us to use link adaptation and activate the closed-source SDK push process.

To ensure the stable operation and functionality of our push services and to offer additional features, we use software development kits (SDKs) and application programming interfaces (APIs) provided by our partners. We conduct strict security tests on these SDKs and APIs and ensure that our partners implement robust data protection measures in accordance with this policy and relevant security standards.

The information involved: weak device characteristics that are not unique and stable, such as device details (manufacturer, model name, system information), network connection (method and status), environment details (screen brightness, battery status and country of location), and application details (installation details, including app versions).

Website：https://www.getui.com/

Link for SDK Privacy Policy： https://docs.getui.com/privacy

Compliance Guideline：https://docs.getui.com/compliance/

Contact information：

We use a third-party ShareSDK service by Shanghai Youkun Information Technology Co., Ltd. ("MobTech"), to enable social sharing, third-party login, and related features. To use these services, you need to grant MobTech the necessary permissions. Once granted, MobTech will collect your personal data. For details on the types of data collected, purposes, data protection practices, and opt-out options, please refer to MobTech's Privacy Policy at www.mob.com/about/policy.

Self-starting instructions：

To save power and traffic, Conex’s app may authorize Daily Interactive Co., Ltd. to perform link adaptation and activate the closed-source SDK push process to ensure timely delivery of our push messages. For prompt receipt of messages and a better experience with Philips-branded products, please add Conex’s app to your phone’s whitelist according to the manufacturer’s instructions.

6.MEIZU push service

Link: https://i.flyme.cn/privacy?lang=zh_CN

Contact information：

7.VIVO push service

Link：https://www.vivo.com.cn/about-vivo/privacy-policy

Contact information：

8.OPPO push service

Link：https://open.oppomobile.com/new/developmentDoc/info?id=10194

Contact information：

9、ZXingLite

Link: https://github.com/zxing/zxing

10. Android Support Library

Link: https://developer.android.com/topic/libraries/support-library

11.AndroidX Library

Link: https://developer.android.com/jetpack/androidx?hl=zh-cn

12.Google official design library

Link: https://material.io/develop/android/docs/getting-started

13.Google push service

Link: https://firebase.google.cn/docs/android/setup

14.PahoMqtt

Link：https://github.com/hannesa2/paho.mqtt.android

15.Glide

Link：https://github.com/bumptech/glide

16. SmartRefreshLayout

Link：https://github.com/scwang90/SmartRefreshLayout

17. FlycoTabLayout

Link：https://github.com/H07000223/FlycoTabLayout

18.Sqlcipher

Link：https://github.com/sqlcipher/android-database-sqlcipher

19.Ijk player

Link：https://github.com/bilibili/ijkplayer

20.PersistentCookieJar

Link：https://github.com/ishuqi/PersistentCookieJar

21.Yalantis

Link：https://github.com/Yalantis/Context-Menu.Android

22.FileDownloader

Link：https://github.com/lingochamp/FileDownloader

23.mp4parser

Link：https://github.com/sannies/mp4parser#append-recordings-with-same-encode-settings-

24.BigkooPickerview

Link：https://github.com/Bigkoo/Android-PickerView

25.greenrobot-common

Link：https://github.com/matrixs/greenrobot-common

26.EasyPermissions

Link：https://github.com/googlesamples/easypermissions

27.Okhttp3

Link：https://github.com/MrZhousf/OkHttp3

28.DiscreteScrollView

Link：https://github.com/yarolegovich/DiscreteScrollView

29.Google Mobile Services

Link：https://github.com/google/guava

30.Firebase

Link：https://firebase.google.cn/docs/android/setup

31.Google Gson

Link：https://github.com/google/gson

32.Greendao

Link：https://github.com/greenrobot/greenDAO

33.Sqlcipher

Link：https://github.com/sqlcipher/android-database-sqlcipher

The app integrates various official and third-party open-source libraries and components. For details, please refer to the descriptions for Android and iOS client open-source libraries and components.

Article 4. How we disclose your personal data

We do not sell your personal data to third parties. However, we may share your data with authorized partners to provide services, such as logistics providers for delivery when you purchase Conex products online. We may also disclose your data to law enforcement or government agencies as required by law or legal processes. In cases of reorganization, merger, bankruptcy, or liquidation, your data may be shared with transaction parties. Additionally, we may disclose your data to enforce contracts or prevent harm, property damage, or to investigate illegal activities.

We will take appropriate measures to protect your privacy. Sensitive information will be safeguarded with reasonable security methods, and we will protect stored personal data. We will not disclose your personal data to unrelated third parties without your consent, unless required by law.

We may disclose personal data to comply with legal notices, protect our rights or property, or in emergencies to ensure safety. If you believe we are not adhering to these principles, please contact us at philips.ddl.cn@cone-x.com. We will address your concerns promptly.

Article 5. How to access and modify your personal data

You should ensure that all personal data you provide is accurate. Conex will make reasonable efforts to maintain and update the accuracy and completeness of your data. Under applicable law, you may have the right to: access your personal data; request updates or corrections to inaccurate data; restrict or reject to our use of your data; or request deletion of your data. To exercise these rights, contact us at philips.ddl.cn@cone-x.com.

For security reasons, a written request may be required. We may refuse requests that we reasonably believe to be fraudulent, impractical, or harmful to others’ privacy rights. If Conex processes your data based on your consent, you have the right to withdraw your consent at any time. However, this will not affect the legality of processing based on consent before withdrawal or other lawful processing. If you believe our data processing does not comply with data protection laws, you may contact the relevant data protection authority. For contacts in the European Union, visit: http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm.

Article 6. How we protect and retain your personal data

Conex values the security of your personal data. We use physical, administrative, and technical measures to protect it from unauthorized access, disclosure, use, modification, damage, or loss. These measures include encryption to ensure data confidentiality, protective measures against malicious attacks, access controls to limit data access to authorized personnel, and security training for employees. While we strive to safeguard your data, no security measure is completely infallible.

We will retain your personal data for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law. Retention periods may vary based on context, products, and services. Factors include: the time needed to provide products and services, maintain records, manage and improve performance and quality, ensure security, handle inquiries or complaints, and resolve issues of locations; your consent to a longer retention period; and any legal or contractual data retention requirements. Your registration information will be kept as long as your account is active. If you deactivate your account, we will stop providing related services and, unless required by law, delete your personal data.

Article 7. How we process children's personal data

Our products, website, and services are intended for adults. Children cannot create user accounts without parental or guardian consent. For personal data collected from children with parental consent, we will use or disclose it only as legally permitted, with explicit consent, or to protect the child. If Conex discovers that it has collected personal data from a child without verifiable parental consent, we will promptly delete the data.

Article 8. Account cancellation

You may deactivate your account at any time. After account deactivation, we will cease providing you with products or services. To deactivate your account, follow these steps within the Conex app: Tap [Me] – [System Settings] – [Deactivate Account].

Upon deactivation, we will delete your account details (including phone number, email address, and security credentials) and device binding details (including alert data, operation logs, and visitor records). For any questions, users in mainland China can call our customer service hotline at 400-8828-236. Users in Hong Kong, Macau, Taiwan, and abroad can contact us via email at philips.ddl.cn@cone-x.com.

We will delete or anonymize your personal data within 7 business days of receiving your request. Please note that account deactivation is permanent. After deactivation, we will stop providing products or services, and all data associated with your account will be cleared and cannot be recovered, unless required by law.

Article 9. Third-party providers and their services

To ensure a smooth browsing experience, you may receive content or links from third parties ("Third Parties") provided by Conex and its partners. Conex does not control these third parties, and their privacy and data protection practices are not governed by this policy. You can choose whether to access the links, content, products, or services from third parties. Please review their privacy policies before sharing any personal information with them.

Article 10. International transfers of your personal data

Conex affirms that, for users within mainland China, your personal data will not be transferred across borders. However, your personal data may be processed in the country or region where you use our products or services, or in other locations where Conex or its affiliates, subsidiaries, service providers, or business partners operate. Data protection laws in these locations may differ. In such cases, Conex will ensure compliance with this policy and applicable laws. For example, when transferring personal data of EU subjects to countries not deemed adequate by the EU, Conex will use legal mechanisms such as Standard Contractual Clauses approved by the European Commission, seek your consent, or anonymize data before transfer. When sharing personal data from the European Economic Area (EEA) with third parties (including non-EEA Conex entities), we will ensure compliance with EU Standard Contractual Clauses or other GDPR-required measures.

Article 11. Política de privacidad de California

Pursuant to the California Consumer Privacy Act (CCPA), consumers residing in California have (i) the right to request that Conex disclose what personal information it collects, uses, discloses, and sells (a “Request to Know”) and (ii) a right to request the deletion of their personal information collected or maintained by Conex (a “Request to Delete”). A Request to Know or Request to Delete may be submitted by clicking here at philips.ddl.usa@idlespacetech.com. When submitting a Request to Know or Request to Delete, the consumer must provide their full name, telephone number, and e-mail address to enable Conex to verify the request. Conex will use commercially reasonable efforts to verify the consumer request by matching the identifying information provided by the consumer to the personal information of the consumer already maintained by Conex. For Requests to Delete submitted online, Conex will use commercially reasonable efforts to contact consumers via telephone or e-mail to separately confirm that they want their personal information deleted. Consumers can designate an authorized agent to make a Request to Know or Request to Delete on the consumer's behalf by submitting to Conex, at the address noted below, written proof reasonably acceptable to Conex that the agent has been authorized to act on the consumer's behalf. Consumers have a right not to receive discriminatory treatment by Conex for the exercise of the privacy rights conferred by the CCPA. The categories of consumers' personal information collected or disclosed by Conex in the preceding 12 months, as well as the categories of sources from which that information was collected, the business or commercial purposes for which the information was collected, and the categories of third parties with whom Conex shares personal information, are as set forth above in this Privacy Policy. Conex has not sold any personal information to third parties for business or commercial purposes in the preceding 12 months. Conex does not sell the personal information of minors under 16 years of age without affirmative authorization. Consumers have a right to opt out of the sale of their personal information by a business; however, Conex does not sell consumers' personal information. California law permits customers of Conex who are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. At this time, Conex does not disclose personal information to third parties for their direct marketing purposes unless you specifically consent to such disclosure.

Article 12. Updates to this Policy

Conex reserves the right to update or amend this policy periodically. The most recent version of the Privacy Policy will be posted here. For significant changes, we may notify you through various channels, including posting a notice on our website or sending a separate notification.

Article 13. How to contact us

If you have any questions, comments, or concerns about privacy, please contact us at philips.ddl.cn@cone-x.com. The Conex entity handling your request, contacting you, or providing products or services is the data controller for your personal data under this Privacy Policy. Philips and the Philips Shield are registered trademarks of Koninklijke Philips N.V. and are used under license. This product is produced and sold by Shenzhen Conex Intelligent Technology Co., Ltd., which is also the product guarantor.