PRIVACY POLICY

Update!

Our Privacy Policy was updated on 20 Dec 2019. If you do not agree with these changes
and no longer wish to use our service, you may cancel your account by emailing us at
[email protected] .
We have revamped the Privacy Policy front and back so that from this date onwards, this
Privacy Policy can provide privacy details on how we manage your personal information
for Mi WiFi Repeater products and services, unless a separate privacy policy is provided
for a specific Xiaomi product or service.
Please take a moment to familiarize yourself with our privacy practices and let us know if
you have any questions.

OUR COMMITMENT TO YOU

This Privacy Policy sets out how Xiaomi Inc. and its affiliated companies within the
Xiaomi Group (“Xiaomi”, “we”, “our” or “us”) collect, use, disclose, process and protect any
information that you give us when you use Mi WiFi Repeater products and services.
Should we ask you to provide certain information by which you can be identified when
using Mi WiFi Repeater products and services, it will only be used in accordance with this
Privacy Policy and/or our terms and conditions for users.
The Privacy Policy is designed with you in mind, and it is important that you have a
comprehensive understanding of our personal information collection and usage
practices, as well as full confidence that ultimately, you have control of any personal
information provided to Xiaomi.
In this Privacy Policy, “personal information” means information that can be used to
identify an individual, either from that information alone or from that information
combined with other information Xiaomi has access about that individual. Such personal
information may include but not limit to the information you provide to us or upload, like
device information.
By using Mi WiFi Repeater products and services, you are deemed to have read,
acknowledged and accepted all the provisions stated here in the Privacy Policy, including
any changes we may make from time to time. In order to comply with applicable laws,
including local data protection legislation, we will specifically seek prior explicit consent
to the particular processing (e.g. automated individual decision-making) of special
categories of personal data. Furthermore, we are committed to protecting the privacy,
confidentiality and security of your personal information by complying with applicable
laws, and we are equally committed to ensuring that all our employees and agents uphold
these obligations. We are committed to protecting the privacy, confidentiality and security
of your personal information by complying with applicable laws, including your local data
protection legislation. We are equally committed to ensuring that all our employees and
agents uphold these obligations.
Ultimately, what we want is the best for all our users. Should you have any concerns with
our data handling practice as summarized in this Privacy Policy, please contact us by
emailing to [email protected] to address your specific concerns. We will be happy to
address them directly.

WHAT INFORMATION IS COLLECTED AND HOW WE CAN USE IT?

TYPES OF INFORMATION COLLECTED

In order to provide our services to you, we will ask you to provide personal information
that is necessary to provide those services to you. If you do not provide your personal
information, we may not be able to provide you with our products or services.
We will only collect the information that is necessary for its specified, explicit and
legitimate purposes and not further processed in a manner that is incompatible with
those purposes. We may collect the following types of information (which may or may not
be personal information):
Mi WiFi Repeater information: information related to your Mi WiFi Repeater. For example,
device activation status, status of device binding with Mi accounts, active status, device
signal strength, status of sharing, hardware version, software version, MAC address,
device key, device SN, device ID, device color, device country code, WiFi roaming status
and position management of device.
Network information: information related to your network. For example, network SSID,
network signal strength, gateway address, subnet mask, encrypted password, traffic
statistics, SSID status.
Terminal device information:information of device connected to the Router. For example,
connection status and timing, device name, IP address, MAC address, online duration.
Location time information:information related to your use of certain functions. For
example, server region, default time zone, default time, default language.
Information specific to you that may be assigned by us: we may collect and use
information such as your Mi Account ID, and shared Mi Account ID.
Other information: Environmental characteristics value (ECV) (i.e. value generated from
Mi Account ID, connected Wi-Fi ID and location value).

HOW THE PERSONAL INFORMATION IS USED

Personal information is collected for providing services and/or products to you, and legal
compliance on our part under applicable laws. You hereby consent that we may process
and disclose personal information to our affiliated companies (which are in the
communications, social media, technology and cloud businesses), Third Party Service
Providers (defined below) for the purposes stated in this Privacy Policy.
We may use your personal information for the following purposes:
Providing, processing, maintaining, improving and developing our goods and/or services
to you, including after-sales and customer support and for services on your device or
through our websites.
Communicating with you about your device, service or any general queries, such as
updates, customer inquiry support, information about our events, notices.
Conducting marketing related activities, such as providing marketing and promotional
materials and updates. For more information on marketing and promotional activities,
please refer to the Direct Marketing section below.
Conducting promotional activities, such as sweepstakes and Facebook events. Analyzing
and developing statistical information on use of our products and services to better
improve our products and services.
Optimizing the performance of your device.
Storing and maintaining information about you for our business operations or legal
obligations.
Here are more details on how we use your information (which may include personal
information):
Providing basic service of Mi WiFi Repeater. Information related to Mi WiFi Repeater (e.g.
device activation status, device type, device country code, system version, device SN,
MAC address) will be used to activate Mi WiFi Repeater.
Providing administrated function of Mi WiFi Repeater. You can manage your network and
connected terminal devices in your APP. To support this service, we may collect any and
all information including Mi WiFi Repeater data, network information, terminal device
information, location information. Mi WiFi Repeater data will be used to clarify device and
to provide functions and progress for every connected device. For example, based on
activation status, Mi WiFi Repeater will decide whether to enter into initialization
procedure; based on binding status, Mi WiFi Repeater will decide whether to bind with Mi
account; based on country code, Mi WiFi Repeater will set default time and language;
based on system version, Mi WiFi Repeater will provide corresponding functions.
Share admin privilege. your Mi Account ID and shared Mi Account ID may be used to
share system admin privilege.
Providing location based services. In the course of using Mi WiFi Repeater services,
location information may be used to serve you the correct version of the service and
provide accurate details about that location for the best possible user experience.

DIRECT MARKETING
We may use your Mi Account ID to provide marketing materials to you relating to goods
and services of Xiaomi companies and our business partners which offer network, mobile
applications and cloud products and services. We will only so use your personal data
after we obtain your prior explicit consent and involve a clear affirmative action or
indication of no objection in accordance with local data protection laws, which may
require separate explicit consent. You have the right to opt out of our proposed use of
your personal data for direct marketing. If you no longer wish to receive certain types of
email communications you may opt-out by following the unsubscribe link located at the
bottom of each communication or by emailing us at [email protected]. We will not
transfer your personal data to our business partners for use by our business partners in
direct marketing.

WITH WHOM DO WE SHARE YOUR INFORMATION?

We do not sell any personal information to third parties.

We may disclose your personal information on occasion to third parties (as described
below) in order to provide the products or services that you have requested.
Disclosure may be made to Third Party Service Providers and affiliated companies listed
in this section below. In each case described in this section, you can be assured that
Xiaomi will only share your personal information in accordance with your consent. Your
consent to Xiaomi will engage sub-processors for the processing of your personal
information. You should know that when Xiaomi shares your personal information with a
Third Party Service Provider under any circumstance described in this section, Xiaomi will
contractually specify that the third party is subject to practices and obligations to comply
with applicable local data protection laws. Xiaomi will contractually ensure compliance by
any Third Party Service Providers with the privacy standards that apply to them in your
home jurisdiction.

SHARING WITH OUR GROUP AND THIRD PARTY SERVICE PROVIDERS

In order to conduct business operations smoothly in providing you with the full
capabilities of our products and services, we may disclose your personal information
from time to time to other Xiaomi affiliated companies, or our third party service providers
which are our mailing houses, delivery service providers, telecommunications companies,
data centers, data storage facilities, customer service providers, advertising and
marketing service providers, agents acting on behalf of Xiaomi, [related corporations,
and/or other third parties] (together “Third Party Service Providers”). Such Third Party
Service Providers would be processing your personal information on Xiaomi’s behalf or
for one or more of the purposes listed above. If you no longer wish to allow us to share
this information, please contact us at [email protected] .

SHARING WITH OUR GROUP’S ECOSYSTEM COMPANIES

Xiaomi works together with a cool group of companies, which together form the Mi
Ecosystem. The Mi Ecosystem companies are independent entities, invested and
incubated by Xiaomi, and are experts in their fields. Xiaomi may disclose your personal
data to Xiaomi or other Mi Ecosystem companies so as to provide you with and improve
the exciting products and services (both hardware and software) from the Mi Ecosystem.
Some of these products and services will still be under Xiaomi / Mijia / Mitu brands, while
others may use our own brand. Xiaomi will take appropriate organizational and technical
measures to ensure the security of personal data during the process of sharing of
information, including but not limited to the encryption of your personal data. If Xiaomi is
involved in a merger, acquisition or asset sale of all or a portion of our assets, you will be
notified via email and/or a prominent notice on our website, of any changes in ownership,
uses of your personal information, and choices you may have regarding your personal
information.

SHARING WITH OTHERS

Xiaomi may disclose your personal information without further consent when required
under applicable law.

INFORMATION NOT REQUIRING CONSENT

We may share anonymized information and statistics in aggregate form with third parties
for business purposes, for example with advertisers on our website, we may share them
trends about the general use of our services, such as the number of customers in certain
demographic groups who purchased certain products or who carried out certain
transactions.
For the avoidance of doubt, Xiaomi may collect, use or disclose your personal information
without your consent if it is and only to the extent it is allowed explicitly under local data
protection laws. Such disclosure may be brought about by the necessity to protect our
rights, ensure the safety of you and other people, and comply with the requirements of the
local government to facilitate the investigations of illegal activities.

SECURITY SAFEGUARDS

XIAOMI’S SECURITY MMEASURES

We are committed to ensuring that your personal information is secure. In order to
prevent unauthorized access, disclosure or other similar risks, we have put in place
reasonable physical, electronic and managerial procedures to safeguard and secure the
information we collect from your using of Xiaomi products and services and on Xiaomi
websites. We will use all reasonable efforts to safeguard your personal information.
For example, when you access your Mi Account, you can choose to use our two-step
verification process for better security. When you send or receive data from your Xiaomi
device to our servers, we make sure they are encrypted using Secure Sockets Layer
(“SSL”) and other algorithms.
All your personal information is stored on secure servers that are protected in controlled
facilities. We classify your data based on importance and sensitivity, and ensure that your
personal information has the highest security level. We make sure that our employees
and Third Party Service Providers who access the information to help provide you with
our products and services are subject to strict contractual confidentiality obligations and
may be disciplined or terminated if they fail to meet such obligations. We have special
access controls for cloud based data storage as well. All in all, we regularly review our
information collection, storage and processing practices, including physical security
measures, to guard against any unauthorized access and use.
We will take all practicable steps to safeguard your personal information. However, you
should be aware that the use of the Internet is not entirely secure, and for this reason we
cannot guarantee the security or integrity of any personal information which is transferred
from you or to you via the Internet.

WHAT YOU CAN DO

You can play your part in safeguarding your personal information by not disclosing your
login password or account information to anybody unless such person is duly authorized
by you. Whenever you log in as a Mi Account user on Xiaomi websites, particularly on
somebody else’s computer or on public Internet terminals, you should always log out at
the end of your session.
Xiaomi cannot be held responsible for lapses in security caused by third party accesses
to your personal information as a result of your failure to keep your personal information
private. Notwithstanding the foregoing, you must notify us immediately if there is any
unauthorized use of your account by any other Internet user or any other breach of
security.
Your assistance will help us protect the privacy of your personal information.

RETENTION POLICY
Personal information will be held for as long as it is necessary to fulfill the purpose for
which it was collected, or as required or permitted by applicable laws. We shall cease to
retain personal information, or remove the means by which the personal information can
be associated with particular individuals, as soon as it is reasonable to assume that the
purpose for which that personal information was collected is no longer being served by
retention of the personal information. If further processing is for archiving purposes in
the public interest, scientific or historical research purposes or statistical purposes
according to the applicable laws, the data can be further retained by Xiaomi even if the
further processing is incompatible with original purposes.
All the personal information on Mi WiFi Repeater will be erased when you reset your
device to factory default settings. To implement a hard-reset function, you can use the
reset pin to clamp the reset hole on the Mi WiFi Repeater. When the status indicator turns
yellow, Mi WiFi Repeater implement factory default settings successfully. The firmware
reset is equivalent to restoring the factory, and the data on the firmware will be erase if
the factory setting is restored. If you need to erase software information on Mijia APP, you
can withdraw the privacy consent.

ACCESSING OTHER FEATURES ON YOUR DEVICE

Our applications may need access to certain features on your device such as Wi-Fi
network status. This information is used to allow the applications to run on your device
and allow you to interact with the applications. At any time you may revoke your
permissions by turning these off at the device level or contacting us at
[email protected] .

YOU HAVE CONTROL OVER YOUR PERSONAL INFORMATION

CONTROLLING SETTINGS

Xiaomi recognizes that privacy concerns differ from person to person. Therefore, we
provide examples of ways Xiaomi makes available for you to choose to restrict the
collection, use, disclosure or processing of your personal information and control your
privacy settings:
Log in and out of the Mi Account;
Bind/unbind your device with your Mi Account;
If you have previously agreed to us using your personal information for the
abovementioned purposes, you may change your mind at any time by writing or emailing
us at [email protected] .

ACCESSING, UPDATING, CORRECTING OR ERASING YOUR ERSONAL INFORMATION

You have the right to request access to and/or correction of any other personal
information that we hold about you. When you update your personal information, you will
be asked to verify your identity before we proceed with your request. Once we obtain
sufficient information to accommodate your request for access to or correction of your
personal information, we shall proceed to respond to your request within any timeframe
set out under your applicable data protection laws.
A copy of personal data collected and processed by us will be provided to you upon your
request free of charge. For any extra requests of the same information, we may charge a
reasonable fee based on actual administrative costs according to the applicable laws. If
you would like to request access to your personal data held by us or if you believe any
information we are holding on you is incorrect or incomplete, please write to or email us
as soon as possible at the email address below. Email: [email protected] .
If you would like to request access to your personal data held by us or if you believe any
information we are holding on you is incorrect or incomplete, please write to or email us
as soon as possible at the email address below. Email: [email protected].
For details relating to the personal information in your Mi Account, you may also access
and change them at http://account.mi.com or by logging into your account on your
device.

WITHDRAWAL OF CONSENT

You may withdraw your consent for the collection, use and/or disclosure of your personal
information in our possession or control by submitting a request. This may be done by
clicking Revoke Authorization in the General Settings - Terms of Use and Privacy Policy.
Please recognize that your withdrawal of consent could result in certain legal
consequences. Depending on the extent of your withdrawal of consent for us to process
your personal information, it may mean that you will not be able to enjoy Mi WiFi Repeater
products and services.

TRANSFER OF PERSONAL INFORMATION OUTSIDE OF YOUR JURISDICTION

To the extent that we may need to transfer personal information outside of your
jurisdiction, whether to our affiliated companies (which are in the communications, social
media, technology and cloud businesses) or Third Party Service Providers, we shall do so
in accordance with the applicable laws. In particular, we will ensure that all transfers will
be in accordance with requirements under your applicable local data protection laws by
putting in place appropriate safeguards. You will have the right to be informed of the
appropriate safeguards taken by Xiaomi for this transfer of your personal information.
Xiaomi may use overseas facilities operated and controlled by Xiaomi to process or back
up your personal information. Currently, Xiaomi has data centers in United States,
Germany, India, Russia and Singapore. These overseas jurisdictions may or may not have
in place data protection laws which are substantially similar to that in your home
jurisdiction. You have understood that the risks under applicable data protection laws are
different and we may transfer to and store your personal information at our overseas
facilities. However, this does not change any of our commitments to safeguard your
personal information in accordance with this Privacy Policy.
MISCELLANEOUS

MINORS
We consider it the responsibility of parents to monitor their children’s use of our products
and services. Nevertheless, it is our policy not to require personal information from
minors or offer to send any promotional materials to persons in that category.
Xiaomi does not seek or intend to seek to receive any personal information from minors.
Should a parent or guardian have reasons to believe that a minor has provided Xiaomi
with personal information without their prior consent, please contact us to ensure that the
personal information is removed and the minor unsubscribes from any of the applicable
Xiaomi services.

ORDER OF PRECEDENCE

If you have agreed to our applicable User Agreements, in the event of inconsistency
between such User Agreements and this Privacy Policy, such User Agreements shall
prevail.

UPDATES TO THE PRIVACY POLICY

We keep our Privacy Policy under regular review and may update this privacy policy to
reflect changes to our information practices. If we make material changes to our Privacy
Policy, we will notify you by email (sent to the e-mail address specified in your account) or
post the changes on all the Xiaomi websites or through our mobile devices, so that you
may be aware of the information we collect and how we use it. Such changes to our
Privacy Policy shall apply from the effective date as set out in the notice or on the
website. We encourage you to periodically review this page for the latest information on
our privacy practices. Your continued use of products and services on the websites,
mobile phones and/or any other device will be taken as acceptance of the updated
Privacy Policy. We will seek your fresh consent before we collect more personal
information from you or when we wish to use or disclose your personal information for
new purposes.

CONTACT US

If you have any comments or questions about this Privacy Policy or any questions relating
to Xiaomi’s collection, use or disclosure of your personal information, please contact us
at the address below referencing “Privacy Policy”:
Xiaomi Singapore Pte. Ltd.
20 Cross Street, China Court #02-12
Singapore 048422
Email: [email protected]
Thank you for taking the time to understand our Privacy Policy!