元气健康隐私政策

Last Updated: January 2026

App Name: Vitality Health

Developer: Game4play Limited

App Type: Health Management Application

Welcome to Vitality Health. This privacy policy details how we collect, use, store, and protect your personal information. We strictly comply with Apple App Store privacy requirements and relevant laws and regulations.

Important Notice: This app is not a medical device. Measurement results are for reference only and should not be used as a basis for clinical diagnosis.

Important Statement: This app does not use facial recognition data (Face ID/TrueDepth API) for authentication or unique identity identification.

Key Points Summary

This summary provides key points of our privacy policy, but you can click the links after each point or use the table of contents below to find more detailed information about the sections you are looking for.

What personal information do we process? When you visit, use, or browse our services, we may process personal information based on how you interact with us, the choices you make, and the products and features you use. Important: Raw facial video streams captured by the camera are processed only in the running memory of your device locally and will not be uploaded to our server or any third-party servers; desensitized and anonymous blood flow signal packages necessary for calculating physiological indicators are encrypted and sent to the cloud servers of the DeepAffex Affective AI engine for algorithm analysis, and the final health analysis result data is stored only on your mobile device locally. Learn more about the personal information you disclose to us.

Do we process any sensitive personal information? We only process raw facial video streams captured by the camera locally on your device and do not upload your facial photos or facial image data to the server. All processing involving facial images is completed locally on your mobile phone and will not be uploaded to the server; solely for the purpose of calculating physiological indicators, the device locally extracts desensitized and anonymous blood flow signal packages (without facial images or identity features), which are encrypted and sent to the cloud servers of our technical partner (DeepAffex Affective AI engine) for algorithm analysis, and the results are then returned to your device and stored only locally. Learn more about the sensitive information we process.

Do we receive information from third parties? We do not receive any information from third parties.

How do we process your information? We process your information to provide, improve, and manage our services, communicate with you, for security and fraud prevention, and to comply with laws. We may also process your information for other purposes with your consent. We only process your information when we have a valid legal reason. Learn more about how we process your information.

In what situations and with what types of parties do we share personal information? Except for encrypting and transmitting desensitized and anonymous blood flow signal packages to our technical partner (DeepAffex Affective AI engine) for the purpose of calculating blood spectrum physiological indicators, we do not share your personal information with any third parties. Learn more about when and with whom we share your personal information.

How do we protect your information security? We have organizational and technical processes and procedures to protect your personal information. However, electronic transmission or information storage technology on the Internet cannot guarantee 100% security, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not breach our security and improperly collect, access, steal, or modify your information. Learn more about how we protect your information security.

What are your rights? Depending on your geographic location, applicable privacy laws may mean you have certain rights regarding your personal information. Learn more about your privacy rights.

How do you exercise your rights? The easiest way to exercise your rights is to submit a data subject access request or contact us. We will consider and process any request in accordance with applicable data protection laws.

Data Collection Information Quick Index

For detailed information about data collection, please see the following sections:

• Section 1: What information do we collect?
• Section 2: How do we process your information?
• Section 3: Data storage location and retention period
• Section 3.3: Data sharing policy
• Section 5: Your data control rights

Apple App Store Privacy Statement

This app uses the following data types:

• Camera Permission: For blood spectrum measurement, camera permission is required. Users obtain facial health data through mobile phone camera. Raw facial video streams captured by the camera are processed only in the running memory of your device locally and are not written to local storage or uploaded to the server
• Photo Library Permission: When providing user feedback, if adding images, this permission is needed
• Network Permission: Used to collect bug information generated by the app

Data usage purposes: - Blood spectrum measurement: Obtain facial health data through camera on local device. Raw facial video streams are analyzed in real time only in the device's running memory and are not written to local storage or directly uploaded to the server; to calculate physiological indicators, the device locally extracts desensitized and anonymous blood flow signal packages (without facial images or identity features), which are encrypted and sent to the cloud servers of the DeepAffex Affective AI engine for algorithm analysis, and the results are then returned and stored only on your device locally - User feedback: Support users to add images for feedback - Bug collection: Collect bug information generated by the app to improve the app

Data sharing: - Raw facial video streams: Not shared; analyzed in real time only in the running memory of your device locally, and will not be uploaded to our server or any third-party servers - Desensitized blood flow signals: To calculate physiological indicators, the device locally extracts desensitized and anonymous blood flow signal packages (without facial images or identity features), which are encrypted and sent to the cloud servers of our technical partner (DeepAffex Affective AI engine) for algorithm analysis, and the results are then returned to your device. Such desensitized signals are used only to provide the health detection function, will not be used to train base models or for any other purposes, and will not be persistently stored on the cloud - Other data: Except for the limited data sharing necessary for the foregoing blood spectrum physiological indicator calculation, we do not share or sell your data with any third parties for any other purpose

1. What Information Do We Collect?

In short: Raw facial video streams captured by the camera are processed only in the running memory of your device locally and will not be uploaded to our server or any third-party servers; desensitized and anonymous blood flow signal packages necessary for calculating physiological indicators are encrypted and sent to the cloud servers of the DeepAffex Affective AI engine for algorithm analysis, and the final blood spectrum measurement result data is stored only on your mobile device locally and will not be persistently stored on any server.

When you use our services, we collect personal information that you voluntarily provide to us, including when you participate in service activities or contact us. Important: Facial image data used by the blood spectrum measurement function is processed in real time only in the running memory of your device locally; all processing involving facial images is completed locally on your device and will not be uploaded to the server; only the desensitized and anonymous blood flow signal packages necessary for calculating physiological indicators are encrypted and sent to the cloud servers of the DeepAffex Affective AI engine for algorithm analysis, and the results are stored only locally after return.

1.1 Personal Information Collection Content

Important: We only process raw facial video streams captured by the camera locally on your device and do not upload your facial photos or any facial image data to our server; to calculate physiological indicators, we only encrypt and send desensitized and anonymous blood flow signal packages (without facial images or identity features) to the cloud servers of the DeepAffex Affective AI engine for algorithm analysis, and the final health analysis result data is stored only on your mobile device locally.

The information we collect depends on the business functions you use. Based on the functions you use, we may collect the following information:

1.2 Permission Usage Instructions

Camera Permission:

• Used for blood spectrum measurement function, camera permission is required
• Users obtain facial health data through mobile phone camera
• Technical Description: The camera is only used to capture tiny changes in facial skin color to extract blood spectrum signals. It does not obtain or store facial feature points and cannot be used to identify specific individual identities
• Important: We only process facial video streams locally on your device and do not upload your facial photos or any facial image data to our server or any third-party servers
• All raw facial video streams captured by the camera are processed only in the device's running memory, are not written to local storage (such as photo library or file system), and are automatically cleared after the required signals are extracted
• All image processing is completed locally on your device, and original image data will be deleted immediately after processing
• You can delete locally stored health data in the app at any time, or close camera permission through system settings

Facial Data Collection and Processing: When you use the health detection function, the app uses the device camera to obtain real-time facial video streams only to extract blood flow pulse signals (based on TOI technology). The app does not collect, extract, or store facial geometry or biometric features and cannot identify your personal identity based on this.

Third-party AI Services: To calculate physiological indicators, the device locally extracts a desensitized and anonymous blood flow signal package (without facial images or identity features), which is then encrypted and sent to the cloud servers of our technical partner, the DeepAffex Affective AI engine, for algorithm analysis. The results are then returned to your device. Equivalent Protection Commitment: We only share the minimum amount of data necessary to implement the function with the above third-party AI service provider (excluding your account, device ID, or other information that can identify your personal identity). We have confirmed and require that the above third-party AI service provider adopt data security protection measures no less than the standards of this privacy policy, and strictly prohibit them from using such data to train their base models or for any other purposes. The cloud only temporarily processes the desensitized signals for the duration necessary to complete the calculation and does not persistently store them.

Data Retention: Facial video streams captured by the camera are analyzed in real time only in the device's running memory and are automatically cleared after the relevant signals are extracted. The app does not persistently store raw visual data, neither saving it to local device storage (such as the photo library or file system) nor uploading it to any servers.

Photo Library Permission:

• Used for user feedback function, when you need to add images for feedback
• Only accesses photo library when you actively choose to add images
• You can close photo library permission through system settings at any time

Network Permission:

• Used to collect bug information generated by the app to help us improve the app
• Collected information includes app crash logs, error reports and other technical information
• Does not contain your personal identity information
• Firebase Description: To analyze app crash situations, we use Firebase, and the data it collects does not contain personal identity information

2. How Do We Process Your Information?

In short: We process your information to provide, improve, and manage our services, communicate with you, for security and fraud prevention, and to comply with laws. We may also process your information for other purposes with your consent.

2.0 Legal Basis

We collect and process your personal information based on the following legal grounds:

• Performance of Service Contract: Use your camera permission to obtain health data for providing blood spectrum measurement services
• Your Explicit Consent: You actively use the blood spectrum measurement function
• Legitimate Interests: Improve app functions and service quality (using anonymized data), and this processing will not affect user rights and freedoms
• Legal Obligations: Comply with relevant laws and regulations

We only process your information when we have a valid legal reason.

Unique Purpose of Data Processing

The data we process is only used for the following purposes:

1. Blood Spectrum Measurement Service: Obtain facial health data through camera on your local device for blood spectrum measurement. Raw facial video streams captured by the camera are processed in real time only in the running memory of your mobile phone locally and will not be uploaded to the server; to calculate physiological indicators, the device locally extracts desensitized and anonymous blood flow signal packages (without facial images or identity features), which are encrypted and sent to the cloud servers of the DeepAffex Affective AI engine for algorithm analysis, and the results are then returned to your device and stored locally
2. User Feedback: Support users to add images for feedback
3. App Function Improvement: Collect bug information to improve the app (does not contain personal identity information)

We strictly promise:

• Only process raw facial video streams captured by the camera locally on your device, and do not upload your facial photos or facial image data to the server or third-party servers
• Desensitized and anonymous blood flow signal packages necessary for calculating physiological indicators are encrypted and sent to the cloud servers of our technical partner (DeepAffex Affective AI engine) for algorithm analysis, and the partner may not use such data to train base models or for any other purposes
• All blood spectrum measurement result data is stored only on your mobile device locally and will not be persistently stored on any server
• Not used for identity identification or authentication
• Not used for advertising targeting or marketing
• Not sold to third parties
• Not used for any commercial purposes
• Only used for health management services you actively request

We process your information for various reasons, depending on how you interact with our services, including:

2.1 Core Service Functions

• Blood Spectrum Measurement:
  • Obtain facial health data through camera on your local device
  • Raw video streams involving facial images are processed in real time only in the running memory of your mobile phone locally and will not be uploaded to the server
  • To calculate physiological indicators, the device locally extracts desensitized and anonymous blood flow signal packages (without facial images or identity features), which are encrypted and sent to the cloud servers of the DeepAffex Affective AI engine for algorithm analysis
  • Measurement result data is stored only on your mobile device locally and will not be persistently stored on any server
  • Provide health data feedback (data stored locally only)
  • You can delete locally stored health data in the app at any time
• User Feedback:
  • Support users to submit feedback
  • Support users to add images for feedback
  • Process user feedback information

2.2 Technical Improvement and Optimization

• Bug Collection:
  • Collect bug information generated by the app
  • Analyze app crashes and errors
  • Improve app stability and performance
• Product Development:
  • Develop new health management functions
  • Optimize user experience and interface design
  • Improve app service quality

2.3 Operations and Security

• Service Operations:
  • Send health reminders and service notifications
  • Provide customer support and technical services
  • Troubleshoot technical problems and system failures
• Security Protection:
  • Prevent fraud and abuse
  • Protect user data security
  • Comply with relevant laws and regulations
  • Ensure data is only used for health management services and not for other purposes

3. Data Storage and Transmission

3.1 Data Storage Location

Storage Location Description

Important: Raw facial video streams related to blood spectrum measurement are processed only in the running memory of your device locally and will not be uploaded to our server or any third-party servers, nor written to local device storage.

Blood Spectrum Measurement Data Storage:

• Storage Location: Stored only on your mobile device locally
• Data Content: Health analysis result data returned by cloud algorithm analysis and saved locally (does not include original facial images or information that can identify your personal identity)
• Data Control: You have complete data control rights and can delete this data in the app at any time
• Data Deletion: When you uninstall the app or clear app data, all locally stored health data will be permanently deleted
• No Upload of Raw Images: We only process facial video streams locally on your device and do not upload your facial photos or any facial image data to the server

Important: Except for transmitting desensitized and anonymous blood flow signal packages (without facial images or identity features) to the cloud servers of the DeepAffex Affective AI engine for the purpose of calculating blood spectrum physiological indicators, we do not share your data with any third parties. Such transmission is used only to provide the health measurement function, and the partner may not use the relevant data to train base models or for any other purposes.

3.2 Data Retention Period

In short: Raw facial video streams related to blood spectrum measurement are processed in real time only in local memory and are not persistently stored; desensitized and anonymous blood flow signal packages used to calculate physiological indicators are only temporarily processed in the cloud during the calculation process and are not persistently saved; the final health analysis result data is stored only on your mobile device locally, and you have complete control and can delete it at any time.

Blood Spectrum Measurement Data (Local Storage):

• Storage Location: Stored only on your mobile device locally and will not be uploaded to our server or third-party servers for persistent storage
• Data Control: You have complete data control rights and can delete this data in the app at any time
• Deletion Methods:
  • Delete through "Delete Data" function in the app
  • When uninstalling the app, all locally stored health data will be permanently deleted
  • When clearing app data, all locally stored health data will be permanently deleted
• Data Retention: Data will remain on your device until you actively delete it or uninstall the app
• Server Storage: Desensitized and anonymous blood flow signal packages are only temporarily processed during real-time calculation on the cloud servers of the DeepAffex Affective AI engine and are not persistently stored, so there is no long-term server-side data retention period

Other Data (such as user feedback, bug information, etc., if uploaded to server):

• User Active Control: You can actively delete any of your data through functions in the app at any time. When you choose to delete data, related personal information will be permanently and irreversibly cleared.

Important Note: Desensitized and anonymous blood flow signal packages used to calculate physiological indicators are only temporarily processed during the real-time calculation process on the cloud servers of the DeepAffex Affective AI engine and are not persistently stored, so they are not subject to the above long-term server-side data retention policy. The final blood spectrum measurement result data is stored only on your mobile device locally, and you can delete it at any time.

3.3 Data Sharing

Blood Spectrum Measurement Data:

• Raw Facial Video Streams Not Shared: Facial video streams captured by the camera are processed only in the local memory of your device; we do not upload them to the server nor share, sell, or disclose them to any third party
• Limited Sharing of Desensitized Signals: To calculate physiological indicators, the device locally extracts desensitized and anonymous blood flow signal packages (without facial images or identity features), which are encrypted and sent to the cloud servers of our technical partner (DeepAffex Affective AI engine) for algorithm analysis, and the results are then returned to your device
• Equivalent Protection Commitment: We only share the minimum amount of data necessary to implement the function with the above third party (excluding your account, device ID, or other information that can identify your personal identity), and require it to adopt data security protection measures no lower than the standards of this privacy policy and strictly prohibit it from using such data to train base models or for any other purposes
• Local Result Storage: Health result data returned by cloud analysis is stored only on your mobile device locally and will not be persistently stored on third-party servers

Other Data (such as user feedback, bug information, etc.):

Except for transmitting desensitized and anonymous blood flow signal packages to the cloud servers of the DeepAffex Affective AI engine for the purpose of calculating blood spectrum physiological indicators, we do not share or sell your data with any third parties for any other purpose. All data is only used to provide app services.

Important Note: Desensitized and anonymous blood flow signal packages used to calculate physiological indicators do not contain facial images or information that can identify your personal identity, and are only temporarily processed during the cloud calculation process and are not persistently stored.

3.4 Data Transmission and Cross-border Transmission

Except for the foregoing encrypted transmission of desensitized and anonymous blood flow signal packages to the cloud servers of the DeepAffex Affective AI engine for the purpose of calculating blood spectrum physiological indicators, we do not share other data with third parties. All other server-side data (such as user feedback) is stored within mainland China.

Important Note: The above desensitized and anonymous blood flow signal packages do not contain facial images or information that can identify your personal identity, and are only temporarily processed during the algorithm analysis process in the cloud and are not persistently stored.

4. Information Security Measures

In short: We protect your personal information through organizational and technical security measure systems.

We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process. However, despite our protective measures and efforts to protect your information, electronic transmission or information storage technology on the Internet cannot guarantee 100% security, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not breach our security and improperly collect, access, steal, or modify your information. Although we do our best to protect your personal information, there are risks in transmitting personal information to our services. You should only access services in a secure environment.

Specific security measures we take:

• Data Encryption: All data is encrypted end-to-end during transmission and storage
• Access Control: Strict access permission control, only authorized technical personnel can access
• Identity Authentication: Multi-factor identity authentication protects data access
• Regular Audits: Regular security audits and vulnerability scans
• Employee Training: Regular data protection training for employees
• Incident Response: Comprehensive data security incident response plan
• Anonymization: Data is processed using anonymization techniques
• Special Protection: Sensitive data is protected with special encryption algorithms

5. User Rights

In short: According to applicable laws and regulations, you have the right to better access and control your personal information. You can view, modify, or delete your data at any time.

According to the Personal Information Protection Law (PIPL) and GDPR and other laws, you have the following rights: (i) the right to request access and obtain a copy of your personal information; (ii) the right to request correction or deletion; (iii) the right to restrict the processing of your personal information; (iv) if applicable, data portability; and (v) the right not to be subject to automated decision-making. In some cases, you may also have the right to object to our processing of your personal information.

Specific rights you enjoy:

• Data Control Rights (Blood Spectrum Measurement Data): Since blood spectrum measurement data is stored only on your mobile device locally, you have complete data control rights. You can delete this data in the app at any time, or permanently delete all local data by uninstalling the app
• Access Rights: For data uploaded to the server, you can obtain a copy of your personal data that we hold
• Correction Rights: Correct inaccurate personal data
• Deletion Rights: Request deletion of your personal data. For locally stored blood spectrum measurement data, you can delete it directly in the app; for data on the server, you can contact us to delete it
• Restriction of Processing Rights: Restrict our processing of your data
• Data Portability Rights: Obtain your data in a machine-readable format
• Objection Rights: Object to our processing of your data
• Withdrawal of Consent Rights: Withdraw your consent at any time
• Complaint Rights: If you believe we have illegally processed your personal information, you have the right to complain to the relevant data protection regulatory authority

How to exercise your rights:

• Blood Spectrum Measurement Data: Since data is stored only on your mobile device locally, you can delete it directly in the app without contacting us
• Other Data: For data uploaded to the server, you can submit a data subject access request or contact us. We will consider and process any request in accordance with applicable data protection laws

6. Algorithm Transparency

According to DSA requirements, we maintain transparency in the following aspects:

• Blood spectrum measurement algorithm principles and operation methods: Processing involving facial images is completed on your mobile device locally; to calculate physiological indicators, the device locally extracts desensitized and anonymous blood flow signal packages (without facial images or identity features), which are encrypted and sent to the cloud servers of the DeepAffex Affective AI engine for algorithm analysis, and the results are then returned to your device
• Health data analysis technical methods: Preprocessing and signal extraction of raw facial video are completed locally; further analysis of desensitized and anonymous blood flow signals is completed in the cloud
• Data processing flow and data flow direction: Raw facial video streams do not leave your device and are used only for local real-time analysis; desensitized and anonymous blood flow signal packages are encrypted and transmitted to the DeepAffex cloud servers for algorithm analysis, and the analysis results are returned and stored only locally
• Data storage location: Raw facial video streams are not persistently stored; the final blood spectrum measurement result data is stored only on your mobile device locally and will not be persistently stored on any server

7. Children's Privacy Protection

In short: We do not intentionally collect data from children under 18 or market to them.

We do not intentionally collect data from children under 18 or market to them. By using the service, you declare that you are at least 18 years old, or are the parent or guardian of the minor and agree to the minor dependent's use of the service. If we learn that we have collected personal information from users under 18, we will take reasonable measures to promptly delete such data from our records. If you discover that we may have collected data from children under 18, please contact us.

Special protection measures we take:

• Age Verification: Require users to declare that they are at least 18 years old to use the service (the app has an age confirmation mechanism)
• Guardian Consent: Users under 18 need explicit guardian consent
• Data Deletion: If children's data is mistakenly collected, all related data will be deleted immediately
• Function Restrictions: Facial analysis functions for minor users will be subject to additional restrictions
• Guardian Control: Guardians can request deletion of minor children's data at any time

If you are a guardian, please ensure your children understand these privacy protection measures.

8. Health Data Usage Responsibility Statement

Regarding blood spectrum measurement function:

• We provide users with blood spectrum measurement technology tools based on camera shooting, aiming to provide health data reference
• The raw facial video streams captured by the camera are processed only in the running memory of your device and will not be uploaded to our server or any third-party servers
• To calculate physiological indicators, the device locally extracts a desensitized and anonymous blood flow signal package (without facial images or identity features), which is then encrypted and sent to the cloud servers of our technical partner DeepAffex Affective AI engine for algorithm analysis, and the results are then returned to your device
• The final blood spectrum measurement result data is stored only on your mobile device locally and will not be persistently stored on any server
• The analysis results of this app are intended to provide health data reference and cannot replace professional medical advice
• We encourage you to consult professionals before making important decisions
• Since the result data is stored only on your device locally, you have complete data control rights and can delete this data at any time
• We are not responsible for risks caused by improper use by users
• If users believe their data or privacy has been violated, they can contact us through the following methods:
  • Complaint email: please refer to the "Contact Us" page in the app
  • Please provide relevant evidence and detailed description
  • We will process valid complaints in a timely manner and take appropriate measures
• We encourage users to only use their own data for measurement and consult professional medical personnel as needed

9. Complaints and Appeals

If you believe our data processing has violated your rights:

• You can directly contact our data protection officer
• File a complaint with the relevant data protection regulatory authority
• We promise to respond to your request within 30 days

Regarding data privacy complaints:

• Complaint email: please refer to the "Contact Us" page in the app
• Please provide the following information in the email:
  • Your identity proof and contact information
  • Detailed description of the violated data
  • Specific situation and time of the violation
  • Relevant evidence materials
• We will process valid complaints in a timely manner and may require you to provide further materials

10. Contact Information

For data protection related questions, please contact:

Company Name: Game4play Limited
Registered Address: UNIT 225-22, 2/F, MEGA CUBE, 8 WANG KWONG ROAD, KOWLOON BAY, HONG KONG
Data Protection Officer Email: [email protected]
General Inquiry Email: [email protected]
Response Time: We will reply within 30 days after receiving your request

Important Note: This service is provided by Game4play Limited registered in Hong Kong. We strictly comply with relevant laws and regulations to ensure that data does not leave the country and meets data localization requirements.

Apple App Store Related: - We strictly comply with Apple's privacy policy requirements - If you have privacy-related questions, you can also contact us through Apple App Store's feedback channel

Last Updated: January 2026

This privacy policy complies with the following regulatory requirements: - Apple App Store privacy policy requirements - EU General Data Protection Regulation (GDPR) - California Consumer Privacy Act (CCPA) - China's Cybersecurity Law and Data Security Law - China's Personal Information Protection Law - Other applicable data protection laws and regulations