Privacy Policy

1. Purpose and Scope of this Privacy Policy

HONG KONG APISEVEN LIMITED (“HONG KONG APISEVEN LIMITED“, “API7.ai“, “we” or “us” or “our“) provides this Privacy Policy to inform you of our policies and procedures regarding the collection, processing, and disclosure of information about you, and what rights you have while we hold that information.
This Privacy Policy describes our practices regarding personal data we collect from users of our publicly available websites, including sites located on api7.ai as well as any other pages that link to this Privacy Policy (the “Sites“), and in connection with our products and services (“Services“). We use the terms “personal data” and “personal information” interchangeably to mean information that identifies or reasonably identifies an individual.

2. Information Collection

2.1 Information You Provide to Us

In the course of using our Sites and Services, you may provide us with certain information about you, such as when you participate in any interactive features of the Sites, fill out a form, subscribe to an email list or newsletter, request customer support, request a whitepaper, or otherwise communicate with us. The types of information that we may collect include your name, job title, company name, phone number, email address, physical address, and other information relating to your proposed use of our products and services or our events and training. We may also collect the information you supply to us concerning your preferences and interests expressed in the course of the use of our Sites and Services.

2.2 Automatically Collected Information

When you access or use our Sites and Services, we automatically collect information about you, including:
Log Information: We collect log information about your use of the Sites and Services, including the type of browser you use, access times, pages viewed, browser type, your IP address, and the page you visited before navigating to our Services.
Device Information: We collect information about the computer or mobile device you use to access our Services, including the hardware model, operating system and version, unique device identifiers, and mobile network information.
Information Collected by Cookies and Other Tracking Technologies: Like most online services, we may use cookies and other technologies, such as web beacons, web storage, and unique advertising identifiers, to collect information about your activity, browser, and device. Cookies are small data files stored on your hard drive or in device memory that help us improve our Services and your experience, see which areas and features of our Sites are popular and count visits. Web beacons are electronic images that may be used on our Sites or emails and help deliver cookies, count visits and understand usage and campaign effectiveness.

2.3 Information We Collect from Other Sources

We obtain information from other sources and combine that with information we collect through our Sites and Services. For example, we may collect information about you from third parties, including but not limited to data enrichment service providers and publicly available sources such as social media pages. In addition, we may receive demographic and business industry information about you from third parties to help us better understand our users and to improve and market our Services. However, please do not provide us with any sensitive personal data through these third parties. We are not responsible for the data protection and usage practices of these third-party platforms.

3. Our use of cookies and similar technologies

Our website and related online services use cookies and similar technologies to enable certain features and help collect information about your visit. “Cookies” are small text files, usually containing a unique string of letters and numbers, that are stored on your hard drive by a site. Cookies can be read by the site when you return to the site using the same browser, thereby collecting information about your usage over time. Among other things, we use cookies and other technologies to see which areas and features are popular and to count visits, which helps us improve our website, products and your experience.
Web beacons. We may use web beacons to collect information. Web beacons are electronic images that can be used on our website, products or emails. We use web beacons to send cookies, count visits, understand usage and campaign effectiveness, and tell if emails have been opened and acted upon.
Analytics and Advertising. We partner with third parties to provide analytics and advertising services related to our website and products. These third parties use cookies, web beacons or similar technologies to automatically collect certain of the information described above from visitors to our websites and products over time and across third-party websites and mobile applications for analytics and advertising purposes. We use analytics information to analyze and improve our services. Our advertising partners use this information to understand your interests and to show you relevant advertisements about our and other products and services.
We promise not to use cookies and similar technologies for any purpose other than those described in this Privacy Policy. Most browsers provide users with the function of clearing browser cache data, and you can perform corresponding data-clearing operations in the browser settings function. If you do so, you may not be able to use the services or corresponding functions provided by us that rely on cookies and similar technologies.

4. Our Use of Personal Information

Generally, we collect and process personal information about you with your consent to provide the products you use, operate our website and business, perform our contractual and legal obligations, and protect the security of our systems and customers or necessary to perform other obligations as described in this Privacy Policy and our notices to you.
For example, we may use any of the categories of personal information described above:
  • To operate, maintain and improve our internal operations, systems, sites and products.
  • To understand you and your preferences to enhance your experience and enjoyment of using our website and products, to provide recommendations, solicit feedback, and advertise better.
  • To monitor and analyze user interactions with our website and products to identify trends, usage and activity patterns.
  • To respond to your comments and questions, and to provide technical support or customer service.
  • To provide and deliver the product you request.
  • To comply with applicable laws, rules or regulations, cooperate and defend legal claims and audits.
  • To communicate with you about promotions, upcoming events and other news about the products and services offered by us and our partners.
  • To plan and develop company events.
  • To protect the website and products, and investigate and deter fraudulent, unauthorized or illegal activity.

5. Rights and Approaches of Personal Information Management Access, Correction or Deletion.

Depending on what jurisdiction you are located in, you may have certain rights in relation to your personal data. If you expect to request access, correction or deletion of any personal information we hold, or if we change the way we use your information (where permitted by applicable law, we reserve the right to charge you a fee), please do so here or via Email your request to [email protected]. We may take certain steps to verify requests submitted using information available to us, including your email address and any information associated with your account. Where allowed, we may ask you to provide your government identification to verify your account. Personal data you provide to us for verification will only be used to verify and maintain records regarding your request. However, we may deny requests that are unreasonable, prohibited by law or not required by applicable law.
How to control your communication preferences. You may stop receiving promotional emails from us by clicking on the “unsubscribe link” provided in such emails, or by contacting us via the contact details listed above. Additionally, you can change your preferences in our Preference Center. We will make every effort to process all unsubscribe requests promptly. If you opt-out, we may still send you transactional communications (for example, non-promotional emails such as emails about training and events you have registered for and technical or security notices).
Cookies. Most web browsers are set to accept cookies by default. If you prefer, you can usually set your browser to delete cookies and refuse cookies. If you choose to delete reject cookies, it may affect certain features or services of our website or other products. Additional choices regarding information collected through the use of cookies and similar technologies are described in the “Our Use of Cookies and Similar Technologies” section above.
Analytics and Online Advertising. Our third-party analytics and advertising partners may offer you the option to opt-out of certain information collection. For more information on the applicable choices they offer you, please see the “Our Use of Cookies and Similar Technologies” section above.
No track. Web browser signals and other similar mechanisms (such as “Do Not Track“) can instruct you to opt-out of tracking in a number of ways, and while we and others provide you with the choices described in this Privacy Policy, we currently do not have to follow these mechanisms.

6. Rights and Approaches of Personal Information Management

We will not share your information with any unrelated third parties without your consent, except in the following cases: We may share your information with our affiliates, third-party service providers, contractors and agents only to improve your experience of visiting and using our website and using our products. If we share your information with any of the above third parties, we will endeavour to ensure that the third party uses your information in compliance with this policy and other appropriate confidentiality and security measures that we require of them.
As our business continues to develop, we and our affiliates may enter into mergers, acquisitions, asset transfers or similar transactions, and your information may be transferred as part of such transactions. We will comply with the requirements of relevant laws and regulations, notify you before the transfer, ensure the confidentiality of the information during the transfer, and continue to perform the corresponding responsibilities and obligations after the change.
We may also disclose your information for the following reasons:
  • To comply with applicable laws and regulations and other relevant regulations.
  • To comply with judicial judgments, rulings or other legal processes.
  • To comply with the requirements of relevant government agencies or other competent authorities.
  • We have reason to believe that we need to comply with relevant laws and regulations.
  • Reasonable and necessary purposes to implement the relevant service agreement or this Privacy Policy, safeguard social and public interests, handle complaints/disputes, and protect the personal and property safety or legitimate rights and interests of our customers, us or our affiliates, other users or employees.
  • When legally authorized by you.
If we disclose your information for the above reasons, we will promptly inform you on the basis of complying with relevant laws and regulations and this Privacy Policy.

7. How We Store and Protect Personal Information

The information we collect about you is stored on our servers in Hong Kong. Generally, we only retain your information for as long as we provide services to you, and no longer than is necessary to satisfy the relevant purpose of use. After the necessary period, we will delete or anonymize your information, unless otherwise provided by laws and regulations.
However, in the following circumstances, and only for the purposes related to the following circumstances, we may need to retain your information or part of it for a longer period of time:
  • To comply with applicable laws and regulations and other relevant regulations.
  • To comply with court judgments, rulings or other legal process requirements.
  • To comply with the requirements of relevant government agencies or other competent authorities.
  • We have reason to believe that we need to comply with relevant laws and regulations.
  • Reasonable and necessary purposes to implement the relevant service agreement or this Privacy Policy, safeguard social and public interests, handle complaints/disputes, and protect the personal and property safety or legitimate rights and interests of our customers, us or our affiliates, other users or employees.
We strive to keep information secure against loss, misuse, unauthorized access or disclosure.
  • We use various security technologies to keep information secure. For example, we will take security measures such as server backup and password encryption to prevent information leakage, damage and loss.
  • We have established strict management systems and procedures to ensure the security of information. For example, we strictly limit the scope of people who have access to information and conduct audits that require them to comply with confidentiality obligations.
  • We attach great importance to information security compliance and fully protect your information security with industry-leading solutions. However, please understand that due to technical limitations and various malicious means that may exist, in the Internet environment, even if we do our best to strengthen security measures, it is impossible to always ensure 100% information security. You need to understand that the systems and communication networks you use to access our services may have problems due to factors beyond our control. In the event of a security incident such as personal information leakage, we will activate contingency plans to prevent the expansion of security incidents, report them in a timely manner in accordance with relevant regulations such as the National Cybersecurity Incident Emergency Response Plan, and notify you of the relevant situation by sending emails, push notifications, announcements, etc., and give you security advice.

8. Exceptions Due to Prior Authorization Consent

In the following situations, sharing, transferring and publicly disclosing your personal information does not require your prior authorization and consent:
  • In response to a request for information if we believe disclosure is in accordance with or required by, any applicable law or legal process, including lawful requests by public authorities to meet national security or law enforcement requirements. Related to national security and national defence security.
  • With our service providers, consultants or law enforcement authorities if we believe your actions are inconsistent with our user agreements or policies, or to protect the rights, property and safety of API7.ai or others. Related to public safety, public health, and major public interests.
  • With a prospective or actual purchaser in connection with, or during negotiations of, any merger, sale of our assets, financing or acquisition of all or a portion of our business by another company.Related to criminal investigation, prosecution, trial and execution of judgments.
  • Between and among HONG KONG APISEVEN LIMITED and our current and future parents, affiliates, subsidiaries and other companies under common control and ownership for the protection of your or other personal life, property and other major legitimate rights and interests, but it is difficult to obtain personal consent.
  • The personal information you disclose to the public by yourself.
  • Collect personal information from legally publicly disclosed information, such as legal news reports, government information disclosure and other channels.
  • Necessary for maintaining the safe and stable operation of products and related services, such as finding and disposing of failures of products and related services.
  • According to the law, sharing and transferring de-identified personal information and ensuring that the data recipient cannot recover and re-identify the subject of the personal information is not an external sharing, transfer or public disclosure of personal information. The storage and processing of such information will be carried out without further notice and consent to you.
You are especially reminded that if the information cannot identify you individually or in combination with other information, it does not belong to your personal information in the legal sense. When your information, alone or in combination with other information, can identify you personally or when we use data that cannot be linked to any specific personal information in combination with other personal information about you, such information will be treated and protected as your personal information in accordance with this Privacy Policy during the combined use.

9. Processing of Personal Information of Minors

Minors may not create their own user accounts without the consent of their parents or guardians. If you are minor, it is recommended that you ask your parents or guardians to read this Privacy Policy carefully, and use our services or provide us with information with the consent of your parents or guardians.
For the collection of minors’ personal information using our products or services with the consent of parents or guardians, we will only use, share, transfer or disclose this information as permitted by laws and regulations, with the express consent of a parent or guardian, or as necessary to protect minors.

10. International Data Transfers

API7.ai is based in Hong Kong and also processes and stores information in Hong Kong. As such, we and our service providers may transfer your information to, or store or access it in, jurisdictions that may not provide equivalent levels of data protection as your home jurisdiction. We will take appropriate steps to ensure that transfers of personal information are in accordance with applicable law and carefully managed to protect your privacy rights and interests, including through the use of standard contractual clauses approved by the authorities in your jurisdiction.

10. How Personal Information is Transferred Globally

The personal information and product telemetry data information collected and generated during our operations within the territory of the PRC are stored within the territory of the PRC, except in the following cases: as clearly stipulated by laws and regulations; with your express authorization. In the above situations, we will ensure that your personal information is adequately protected in accordance with this Privacy Policy.

11. EEA- and UK-Specific Disclosures

The General Data Protection Regulation (GDPR) requires us to provide additional and different information to individuals in the  European Economic Area (EEA) and the United Kingdom (UK). The following statements are addressed to individuals located in the EEA and UK only. 

11.1 Legal Basis for Processing

  • We need to use your personal data to perform our responsibilities under our contract with you such as to process payments for and provide the Services you have requested.
  • We have a legitimate interest in processing your personal data. For example, we may process your personal data to send you marketing communications, to communicate with you about changes to our Services, and to provide, secure, and improve our Sites and Services.
  • We may need to process your personal data to comply with relevant laws, and regulatory requirements and to respond to lawful requests, court orders, and legal processes.
  • In cases where we ask for your consent to process your personal data and you provide your consent, we process your personal data according to your consent. 

11.2 Your Rights

Subject to applicable law, you have the right to:
  • Ask whether we process your personal data and request copies of such personal data and information about how it is processed;
  • Request that inaccurate personal data be corrected;
  • Request deletion of personal data that is no longer necessary for the purposes underlying the processing processed based on withdrawn consent, or processed in non-compliance with applicable legal requirements;
  • Request that we restrict the processing of your personal data where the processing is inappropriate;
  • Object to our processing of your personal data; and
  • Request portability of personal data that you have provided to us.
Please see Section 5 above if you would like to exercise any of these rights.

11.3 Questions or Complaints

If you are located in the EEA and have a concern about our processing of personal data that we are not able to resolve, you have the right to lodge a complaint with the data privacy authority where you reside. If you are located in the UK, you have the right to lodge a complaint with the Information Commissioner’s Office (see here).

12. How this Privacy Policy is Updated?

Our Privacy Policy may be updated. Without your express consent, we will not limit your rights under this Privacy Policy. We will post any changes to the Privacy Policy. For material changes, we will also provide a more prominent notice.
Material changes referred to in this policy include, but are not limited to:
  • Significant changes have been made to our service model, such as the purpose of processing personal information, the types of personal information processed, and how personal information is used.
  • Significant changes in control rights, such as changes in information controllers caused by mergers and acquisitions, etc.
  • The main object of personal information sharing, transfer or public disclosure has changed.
  • Material changes to your rights to participate in the processing of personal information and how to exercise them.
  • Our responsible department for handling personal information security, contact information and complaint channels has changed.
  • Any personal information security impact assessment report indicates a high risk.
We will also archive older versions of this Privacy Policy on our official website for your reference.

13. How to Contact Us?

If you have any questions about this policy or other related matters, please send your questions to [email protected] or contact us through the company’s official website. We will review the issue as soon as possible and respond within thirty days of verifying your user identity.

API Management for Modern Architectures with Edge, API Gateway, Kubernetes, and Service Mesh.

Copyright © HONG KONG APISEVEN LIMITED. 2019 – 2022. Apache, Apache APISIX, APISIX, and associated open source project names are trademarks of the Apache Software Foundation

  • Products
  • Developers
  • Company