Version: 1.2 Last updated on July. 29, 2022

CNB Global Technology Inc. (referred to as CNB Global Technology, CNB, we, or us hereafter) is

a global provider of AIoT products, solutions and full-stack capabilities, a leader with the Internet

of Things (IoT), artificial intelligence (AI), big data, and cloud computing technologies as the core,

providing global users with network camera products, display control products, smart equipment

products, storage and computing products, smart lock products, and management platform

products for application to smart cities, transportation, Internet of Things and other fields. CNB

is committed to building a better world by providing professional, reliable and cutting-edge

products and services.

CNB is committed to protecting your personal information and privacy and maintaining your trust

with us. We abide by the following principles to protect your personal information: integrity,

consent, clear purpose, restricted collection, minimum necessary, transparency, balanced

rights with responsibility, security, and privacy compliance.

This privacy policy is intended to help you understand: 1) your personal information that we

collect; 2) how we collect your personal information; 3) how we use your personal information; 4)

how we protect your personal information and your rights; 5) answers to your questions and how

to contact us. Understanding these contents is essential for you to exercise your personal

rights and protect your personal information. Please read through this policy carefully before

you use or accept our products or services. Please be aware, this policy is not applicable to

situations where your personal information is collected by other third parties.

This policy contains the following sections:

(1) Definition of personal information

(2) How we collect and use your personal information

(3) Sharing, transfer and disclosure of personal information

(4) Information storage and protection

(5) Your rights

(6) Third-party services

(7) Privacy of minors

(8) Contact us

(9) Revisions to the privacy policy

1) Definitions of personal information and non-personal information

The definition of personal information shall be defined by your local laws.

Non-personal information refers to data other than personal information that cannot be directly

linked to any specific individual, such as occupation, language, zip code, area code, serial number,

URL, and automatically recorded browse data, product and unique product identifier of your

mobile device, video contents without personal information, country/region and time zone of the

connected product, geographical location, identifier of mobile network operator, device software

platform, and hardware information, etc.

2) How we collect and use your personal information

1. When you create an account to use our product or service, or when you sign up for an account

to access or view video online, we need you to provide your username, password, mobile phone

number, email address, verification code, product name, product verification code, and product

serial number through the client. The purposes of information collection: 1) The username,

password, mobile phone number, email address, and verification code are collected for real-name

registration required by relevant laws and regulations in various regions; 2) When you install and

activate a product that is connected to our service and is bound with your account, we may

request you to provide certain unique basic information of your product, such as product name,

verification code and serial number. If you refuse to provide such information, you may not be

able to use our product and/or service normally.

2. When you log in to an app provided by CNB for the first time, we will collect the following

information and take appropriate control measures:

Information

collected

Control method

Purpose

Model of your mobile

phone

For first-time use, a pop-up

window will appear to notify

you. When the collection

method, collection contents or

collection purpose are changed,

we will notify you of the changes

and request for your permission.

Supplemental information for

troubleshooting

Used to determine the push

service

Operating system and

version of your mobile

phone

Information about the

network to which your

mobile phone is

connected, including

information about 2G,

3G, 4G, 5G, Wi-Fi

networks and the

corresponding

network carriers.

3. When you use our service to save video related contents, such as video clips, live video

streams, images (user content), message notifications, etc., we will collect video images captured

by your camera and push the video images to you so you can save the contents that you need.

4. When you use the message notification function, we need to collect the unique feature value

of your client (such as the unique value generated based on your device's IMEI or UDID) and the

language of your mobile phone. If you refuse to provide such information, you will not be able

to use the alarm subscription function, but it will not affect the normal use of other functions.

In addition, you can choose to turn off the function and clear information about the unique feature

value of your client.

5. When you use device adding functions, we may need to collect the serial number,

perform network configuration and bind your device. If you refuse to provide such

information, you will not be able to add your device.

6. When you use our device connection service, to ensure the normal use of the service, we

will collect information including the model, UDID, IP address, MAC address, and software

version of your device, the network connection method and type, the latitude and longitude

of the device (if applicable), and operation records. Such information is the basic information

that is essential for us to provide services. If you refuse to provide such information, you may

not be able to use our device connection service normally.

7. When you use the live view function, we may need to collect the serial number, IP address,

port number, and video stream information of your device in order to provide you with live

streams of your device. If you refuse to provide such information, you will not be able to use the

live view function, but it will not affect your normal use of other functions.

8. When you use analysis, comparison functions and alarm service based on user benchmark

information (including face/human body recognition, license plate/vehicle recognition,

attendance management, fingerprint unlocking, if applicable to your device), you need to enter

the benchmark information such as face images, license plate information, attendance

personnel information, fingerprints into the system in advance. If you refuse to provide such

information, you will not be able to use the relevant analysis, comparison functions and alarm

service, but it will not affect your normal use of other functions.

9. When you use the device sharing function, we need to collect certain information in order to

implement the sharing function, including the device serial number, your nickname, and the

usernames with which you want to share the device. If you refuse to provide such information,

you will not be able to use the device sharing function, but it will not affect your normal use of

other functions. The sharing function is active only when you use it; it is not permanently active.

10. When you need our support and contact us through email, telephone or our customer

support tools, we need to collect information including your name, phone number or email

address, enterprise or organization, device usage, device serial number, device account, in

order to verify your product and identity and provide precise service support. If you refuse to

provide such information, we will not be able to provide support services to you.

11. In other possible scenarios, we will also collect your personal information, including but not

limited to:

1) When you communicate with us with telephone, we need to record the conversation as

evidence of service and to improve our service ability and quality, so as to continue to

provide you with high-quality after-sales service.

2) In situations where you need to sign a certificate to authorize remote access, we will collect

your manual signature or company seal.

3) If you report a device failure and need to return the device to us for inspection and

repair, you need to provide your receiving address. If the returned device contains your

private data, you need to back up the data and format the storage before returning

the device.

4) When you enter the test/exhibition area of our products, we may collect your images

and/or videos, depending on the products being tested/exhibited. The images and videos

will be deleted at the end of the test/exhibition; you can avoid collection of your

images/videos by leaving the test/exhibition area.

12. In order to offer better user experience and prevent misoperation, we will collect

industry-standard non-personal information (see the definition in Chapter 1). Such

information does not infringe on user privacy and user rights. If you have any concerns about

the security and privacy settings of your mobile device, please adjust the settings by referring to

the documentation of your mobile service provider or mobile device manufacturer. These actions

include but are not limited to:

1) We may record adjustments that you make to your product through the services that we

provide, and we will store the collected non-personal information with the information

directly collected by the product.

2) When you use audio recording or media streaming functions of our product, we may record

and transmit videos and/or audios from the product, with your permission. This may

include taking snapshot images and attaching part of snapshot images and analysis data

to email notifications.

3) Sharing, transfer and disclosure of personal information

1. Sharing of information

When we provide you with certain services, we need to share your personal information with

authorized partners, carefully selected service providers, or national regulatory agencies, only for

legal, justified, necessary, specific, and definitive purposes, and only share the information

necessary for us to provide services. The organization that shares your personal information has

no right to use the shared personal information for any other purposes irrelevant to our products

or services. For companies, organizations, and individuals with whom we share personal

information, we will sign strict data protection agreements with them, demanding them to

process personal information as per our instructions, this privacy policy, and any other relevant

confidentiality and security measures.

1) We need to share your mobile phone number with our SMS service providers to

complete account registration for you.

2) We need to share your mobile phone information, alarm information, etc. with mobile

phone manufacturers in order to provide you with the alarm push service.

3) We need to share your device information and account information with our cloud

service provider in order to provide you with the core video surveillance functions.

4) You can share your videos, identity information, etc. with specific people, and share

your videos, location information, identity information, etc. with unspecified people

based on our products and/or services. We bear no legal liability for serious situations

such as leakage of your information due to your sharing behavior.

2. Transfer of information

We will not transfer your personal information to any other companies, organizations or

individuals, except in the following situations:

1) After obtaining your explicit consent.

2) When it involves merger, acquisition or bankruptcy liquidation, and if it involves the

transfer of your personal information, we will demand the new company or organization

that holds your personal information to continue to be bound by this personal information

protection policy; otherwise, we will demand the company or organization to re-seek

authorization and consent from you.

3. Disclosure of information

We will disclose your personal information only under the following circumstances:

1) After obtaining your explicit consent.

2) Please understand, in accordance with applicable laws, we can disclose your personal

information without your consent under the following circumstances:

 When it is directly related to criminal investigation, prosecution, trial, and verdict.

 When it is necessary to safeguard significant legitimate rights such as life, property

of the personal information subject or other individuals but it is difficult to obtain

your consent.

 When the personal information collected is disclosed to the public by yourself.

 When the personal information is collected from information that has been

disclosed lawfully, such as from lawful news reports, government-disclosed

information, etc.

 When it is necessary for signing a contract according to your requirements.

 When it is necessary for maintaining the safe and stable operation of the provided

products or services, such as detecting and handling product or service failures.

 When required by applicable laws and regulations and government orders of the

country where the business is operated, as well as legal procedures of law

enforcement agencies, regulatory agencies, and court of law, or other applicable

legal procedures and subpoenas.

4) Storage and protection of personal information

1. Storage of personal information

Unless otherwise explicitly permitted by law or by you, we will retain your personal information

only for the length of time required for the purposes bound by this privacy policy. During the

period that you use our products or receive our services, we will continuously keep your personal

information for you. If you cancel your account or proactively delete your personal information,

we will delete or anonymize your personal information within 48 hours after receiving your

request, unless otherwise stated in law or agreement.

As per applicable local laws, the personal information collected and generated by CNB during

business operation shall be stored locally at the business location.

2. Security protection of personal information