We are well aware of the importance of your personal information to you and will make every effort to protect the security and reliability of your information. We aim to inform you through the Jihu GitLab Privacy Policy (hereinafter referred to as the "Privacy Policy") about how we collect, use, store, share, transfer, publicly disclose, and protect your personal information when you use our products and services, as well as how you can manage your personal information.
Before you start using our products or services, please be sure to read and fully understand this Privacy Policy. We will use bold and underlined formatting to draw your special attention to certain key clauses in this Privacy Policy. You acknowledge and confirm that you have read and fully understood all contents of this Privacy Policy before using our products or services. Once you start using our products or services, it means you have fully understood and agreed to this Privacy Policy. If you do not agree to the contents of this Privacy Policy, you should stop using our products or services. If you have any questions, opinions, or suggestions regarding this Policy, you may contact us through the contact information provided in this Privacy Policy.
We will explain relevant matters to you through this Privacy Policy, with the key points as follows:
Scope of Application
How We Collect and Use Your Personal Information
Entrusted Processing, Sharing, Transfer, and Public Disclosure of Your Personal Information
How We Store Your Personal Information
How You Can Manage Your Personal Information
How We Protect Your Personal Information
Protection of Minors
Effectiveness and Updates of This Privacy Policy
How to Contact Us
Applicable Law
Language Versions
1. Scope of Application
This Privacy Policy applies to the Jihu GitLab website and its services (with the domain name gitlab.cn, hereinafter referred to as the "Website") operated by Jihu Information Technology (Hubei) Co., Ltd., Jihu Innovation (Beijing) Information Technology Co., Ltd., and their affiliated companies (the aforementioned operating entities are collectively referred to as "We" hereinafter), as well as Jihu SaaS products and their services (with the domain names jihulab.com and gitlab.hk, hereinafter referred to as the "SaaS Products").
You understand and acknowledge that we may provide links to the Website and SaaS Products on other Jihu websites. Once you access and start using the Website or SaaS Products through such links, this Privacy Policy shall apply.
As our business develops, we may update or improve the Website and SaaS Products, and may also provide you with other new Jihu products and websites. This Privacy Policy shall similarly apply to the updates and improvements of the Website and SaaS Products, as well as any new Jihu products and websites we provide to you subsequently. If necessary, we will revise this Privacy Policy and notify you in accordance with the relevant provisions of Article 8 of this Privacy Policy.
2. How We Collect and Use Your Personal Information
When you use the Website and SaaS Products, we will collect and use your personal information for the following purposes stated in this Privacy Policy:
2.1. SaaS Product Registration
When you register a SaaS Product account, to help you complete the registration, you need to provide us with your full name, mobile phone number, landline phone number, and email address. If you refuse to provide the above information, you may not be able to successfully register or use the SaaS Products normally.
2.2. Website Forum Registration
When you register a Website Forum account, to help you complete the registration, you need to provide us with your email address. If you refuse to provide the above information, you may not be able to successfully register a Website Forum account, but this will not affect your normal use of other functions.
2.3. Application for Trial of Paid Functions
When you apply for a trial of paid functions on the Website or SaaS Products, to help you complete the application, you need to provide us with your mobile phone number, landline phone number, email address, company name, and company address. If you refuse to provide the above information, you may not be able to successfully apply for the trial of paid functions, but this will not affect your normal use of other functions.
2.4. User Surveys and Feedback
When you provide feedback to us about problems encountered while using our products and services through the Website or SaaS Products, to facilitate communication with you, help you resolve the problems as soon as possible, or record the handling plans and results of relevant issues, you need to provide us with your User ID and business form information (including your complaint and feedback information, contact information, company information, etc.). If you refuse to provide the above information, you may not be able to use the survey and feedback functions successfully, but this will not affect your normal use of other functions. The information you provide in your feedback will only be used for communication and feedback with you. Except with the explicit consent of the user or as clearly stipulated by law, we will not provide the above information to any third party.
2.5. Product Promotion and Marketing
To introduce Jihu products to you and help you understand information related to Jihu's business, we will use the registered full name, mobile phone number, landline phone number, email address, and company name you provided to us to promote and market products to you or conduct business communications with you via phone calls, emails, or any other means.
If at any time you do not want us to use your above information for promotion and marketing purposes, you may notify us through the method specified in Article 9 of this Privacy Policy or other methods we provide, and we will process your request within 15 working days.
2.6. Security Assurance
To enhance the security of your use of the services we provide, protect the personal and property safety of you, other users, or the public from infringement, better prevent security risks such as phishing websites, fraud, network vulnerabilities, computer viruses, network attacks, and network intrusions, and more accurately identify situations that violate laws and regulations or the relevant agreement rules of Jihu (GitLab), we may collect your User ID, IP address, browsing records, click records, and function usage records of the Website and SaaS Products, as well as information shared with us with your authorization or in accordance with the law. Such information will be used for identity verification, risk control and fraud prevention, detection and prevention of security incidents, and we will take necessary recording, auditing, analysis, and disposal measures in accordance with the law.
2.7. Displaying and Pushing Products or Services to You
On the premise of complying with national laws and regulations, we may anonymize, aggregate, desensitize, and encrypt your personal information to form statistical information or user portraits (however, the portraits cannot identify any individual user) for displaying and pushing relevant services or products to you. Without your prior consent, we will not use such information for other purposes not specified in this Privacy Policy, nor will we use information collected for specific purposes for other purposes.
2.8. Services of Cookies and Similar Technologies
We use Cookies and similar technologies to provide you with products and services. We will place small Cookie files on your device to store your device information and identify you when you use our services. In addition, we may use Cookies to analyze and improve our services, and display advertisements that may be of interest to you based on your online activities. Most browsers provide you with the function to delete Cookies; for specific operation instructions, please refer to this link: https://allaboutcookies.org/manage-cookies/. For more information about Cookies and how we use them, please refer to our Cookie Policy.
2.9. Exceptions to Obtaining Authorization and Consent
In accordance with the provisions of relevant laws and regulations, we may collect and use your relevant personal information without obtaining your authorization and consent in the following circumstances:
It is necessary for the conclusion or performance of a contract to which you are a party;
It is necessary for us to perform our statutory duties or obligations;
It is directly related to national security and national defense security;
It is directly related to public security, public health, and major public interests (e.g., it is necessary to respond to public health emergencies or protect the life, health, and property safety of natural persons in emergency situations);
It is directly related to criminal investigation, prosecution, trial, and execution of judgments;
It is for the protection of your or other individuals' major legitimate rights and interests such as life and property, but it is difficult to obtain your consent;
Collecting your personally disclosed personal information within a reasonable scope in accordance with the provisions of laws and regulations;
Collecting user information from legally publicly disclosed information (such as legal news reports, government information disclosure, and other channels) within a reasonable scope in accordance with the provisions of laws and regulations;
It is necessary to maintain the safe and stable operation of the provided products or services (e.g., detecting and handling faults of products or services);
Other circumstances stipulated by laws and regulations.
3. Entrusted Processing, Sharing, Transfer, and Public Disclosure of Your Personal Information
3.1. Entrusted Processing
When we entrust a third-party company, organization, or individual to process your personal information, we will sign a data processing agreement with them, requiring them to process the personal information in accordance with our requirements and applicable laws, and take confidentiality and security measures to protect the personal information.
3.2. Sharing
Except for the following circumstances, we will not share your information with any company, organization, or individual:
Sharing with explicit consent: We will share your information with other parties only after obtaining your explicit consent.
Sharing under statutory circumstances: We may share your information with relevant parties in accordance with the provisions of laws and regulations or the mandatory requirements of judicial authorities, government authorities, or other government departments.
Sharing with authorized partners: We may share your personal information with third-party partners only for the purposes stated in this Privacy Policy to provide better services. We will only share information for legal, legitimate, necessary, specific, and clear purposes, and will only share the information necessary for providing the services.
Sharing with our affiliated companies: We may share your personal information with our affiliated companies to facilitate the joint provision of certain services to you by us and our affiliated companies. We will only share necessary information, which shall be subject to the purposes stated in this Privacy Policy. If an affiliated company intends to change the purpose of using and processing the personal information, it will seek your authorization and consent again.
3.3. Transfer
We will not transfer your information to any company, organization, or individual except in the following circumstances:
After obtaining your consent;
Personal information that you have disclosed to the public or that we can obtain from other legally public channels;
In the event of merger, acquisition, or bankruptcy liquidation due to the development of our business, if the transfer of personal information is involved, we will require the new company or organization that holds your personal information to continue to be bound by this Privacy Policy. If there is any change in the methods of collecting and processing personal information as agreed in this Privacy Policy, the company or organization will separately seek your authorization and consent.
3.4. Public Disclosure
Subject to the constraints of relevant laws and regulations, we will not publicly disclose your personal information unless we obtain your explicit consent.
3.5. Exceptions to Obtaining Authorization and Consent
In addition, in accordance with relevant laws, regulations, and national standards, we may share, transfer, or publicly disclose your relevant personal information without seeking your authorization and consent in the following circumstances:
It is related to our performance of obligations stipulated by laws and regulations;
It is directly related to national security and national defense security;
It is directly related to public security, public health, and major public interests;
It is directly related to criminal investigation, prosecution, trial, and execution of judgments;
It is for the protection of your or other individuals' major legitimate rights and interests such as life and property, but it is difficult to obtain the authorization and consent of the person concerned;
The involved personal information is publicly disclosed by you to the public;
Collecting personal information from legally publicly disclosed information (such as legal news reports, government information disclosure, and other channels).
4. How We Store Your Personal Information
4.1. Personal information collected and generated by us within the territory of the People's Republic of China will be stored within the territory of the People's Republic of China. If it is necessary to transfer personal information overseas for business purposes under the circumstances that comply with the provisions of applicable laws, we will obtain your consent in advance and inform you of the name of the recipient, the type of personal information to be transferred overseas, the purpose and method of processing, contact information, and the method and procedure for exercising your rights against the overseas recipient.
4.2. We will store your personal information only for the period necessary for the purposes stated in this Privacy Policy and the time limit required by laws and regulations. If we discontinue our products or services, we will promptly stop collecting your personal information, notify you of the discontinuation of operations by means of individual delivery or announcement, and delete or anonymize your personal information stored by us.
5. How You Can Manage Your Personal Information
5.1. Accessing and Correcting Personal Information
You can log in to your Website or SaaS Product account, enter "Edit Personal Profile" in the account background to query and correct the basic information (basic data) and contact information you submitted when using the Website and SaaS Products. In general, you can view and modify the information you submitted at any time. However, for the sake of security and identity verification (e.g., account recovery services), you may not be able to modify certain initial registration information and verification information provided during registration.
5.2. Deleting Personal Information
In any of the following circumstances, you may contact us through the method provided in Article 9 of this Privacy Policy to request the deletion of your personal information:
Our processing of personal information violates laws and regulations;
We collect and use your personal information without obtaining your consent;
Our processing of personal information violates the agreement with you;
You no longer use our products or services, or you have canceled your account;
We discontinue the provision of products or services, or the storage period has expired;
You have withdrawn your consent;
The purpose of our processing of your personal information has been achieved, cannot be achieved, or the relevant personal information is no longer necessary for achieving the processing purpose.
We will provide a response within 15 working days after verifying your user identity. After we delete your personal information from the server, we may not immediately delete the corresponding data from the backup system, but we will delete such information when the backup is updated. Please understand that if the retention period stipulated by laws and administrative regulations has not expired, or if it is technically difficult to delete the personal information, we will stop processing the information except for storing it and taking necessary security protection measures.
5.3. Cancellation
You can log in to your Website or SaaS Product account, enter "Edit Personal Profile" in the account background, and select "Delete Account" to cancel your Website or SaaS Product account. Please note that canceling your Website or SaaS Product account will result in the permanent loss of your access rights to the account and the data in the account.
5.4. Responding to Your Requests
We will usually respond within 15 working days to the above requests made by you, your guardian, close relatives, or other entitled entities, as well as requests for supplementing, copying, or transferring your personal information, withdrawing or changing authorization and consent, restricting or refusing data processing activities regarding your personal information, and requesting an explanation of the processing rules for your personal information.
In principle, we will not charge you any fees for your reasonable requests mentioned above. We may refuse repeated requests, requests that require excessive technical assistance, requests that pose risks to the legitimate rights and interests of others, or highly unrealistic requests. However, if we are unable to respond to your request, we will explain the corresponding reasons to you.
We will be unable to respond to your request in the following circumstances:
It is related to our performance of obligations stipulated by laws and regulations;
It is related to national security or national defense security;
It is directly related to public security, public health, and major public interests;
It is directly related to criminal investigation, prosecution, trial, and execution of judgments;
We have sufficient evidence to show that you have subjective malice or abuse of rights;
It is for the protection of your or other individuals' major legitimate rights and interests such as life and property, but it is difficult to obtain the consent of the person concerned;
Responding to your request will cause serious damage to the legitimate rights and interests of you, other individuals, or organizations;
It involves trade secrets.
6. How We Protect Your Personal Information
6.1. We attach great importance to the security of your information. We strive to take various reasonable physical, electronic, and administrative security measures to protect your user information and prevent unauthorized access, public disclosure, use, modification, damage, or loss of user information.
6.2. We regularly conduct training on laws and regulations related to privacy protection for our staff and formulate internal policies related to privacy protection at the company level to enhance the staff's awareness of privacy protection.
6.3. In the event of an unfortunate user information security incident (leakage, tampering, loss), we will promptly notify you in accordance with the requirements of laws and regulations, including: the type, cause, and possible harm of the leaked, tampered, or lost personal information, the disposal measures we have taken or will take, suggestions for you to independently prevent and reduce risks, and remedial measures for you. We will promptly notify you of the relevant circumstances of the incident via email, letter, phone call, push notification, or other means. If it is difficult to notify each user information subject individually, we will issue an announcement in a reasonable and effective manner. At the same time, we will also report the disposal of the user information security incident to the regulatory authorities in accordance with their requirements.
6.4. Despite having adopted the above reasonable and effective measures and complied with the standards required by relevant legal provisions, we may still not be able to guarantee the security of your personal information when it is transmitted through insecure channels. Therefore, you should take active measures to ensure the security of your personal information, such as changing your account password regularly and not disclosing your account password and other personal information to others.
6.5. You acknowledge that the personal information protection measures we provide only apply to the Website and SaaS Products. Once you leave this Website and browse or use other websites, services, and content resources, we have no ability or obligation to protect any personal information you submit on websites outside the platform, regardless of whether you log in to or browse the above websites through links or guidance from this Website.
7. Protection of Minors
7.1. We do not provide products or services to minors under the age of 18, nor do we collect any personal information from minors under the age of 18.
7.2. If you are the parent or guardian of a minor under the age of 18, and you discover that the minor under your guardianship has used our products or services, or if you have any questions about their personal information, please contact us through the contact information disclosed in this Privacy Policy.
8. Effectiveness and Updates of This Privacy Policy
8.1. This Privacy Policy shall take effect from the date of its publication.
8.2. This Privacy Policy may be revised.
8.3. Without your explicit consent, we will not restrict the rights you are entitled to under this Privacy Policy. We will publish any revisions made to the Privacy Policy on a dedicated page.
8.4. For material revisions, we will also provide more prominent notifications (including, for certain services, notifying you through announcements on the website or even providing you with pop-up prompts to explain the specific changes to the Privacy Policy).
8.5. Material changes referred to in this Privacy Policy include but are not limited to:
Significant changes in our service model, such as changes in the purpose of processing user information, the type of user information processed, the method of using user information, etc.;
Significant changes in our control rights, organizational structure, etc., such as changes in ownership caused by business adjustments, bankruptcy, mergers and acquisitions, etc.;
Changes in the main recipients of personal information sharing, transfer, or public disclosure;
Significant changes in your rights to participate in the processing of personal information and the methods of exercising such rights;
Changes in the responsible department, contact information, and complaint channels for handling user information security;
When the personal information security impact assessment report indicates the existence of high risks.
8.6. We will also archive previous versions of this Privacy Policy for your reference.
9. How to Contact Us
If you have any questions or comments regarding the content of this Privacy Policy, or any questions or comments about the practice and operation of this Privacy Policy, you may contact us via contact@gitlab.cn. We will review the relevant issues as soon as possible and provide a response within 15 working days after verifying your user identity.
10. Applicable Law
The formation, effectiveness, performance, interpretation, and dispute resolution of this Privacy Policy shall all be governed by the valid laws of the Chinese mainland. If any clause in this Privacy Policy is invalid due to conflict with the laws of the Chinese mainland, such clause shall be reinterpreted in a manner that complies with the aforementioned laws and is as close as possible to the original purpose of this Privacy Policy, and the other valid clauses of this Privacy Policy shall remain in effect.
11. Language Versions
If there are multiple language versions (including Chinese and English) of this Privacy Policy, in case of any inconsistency between the corresponding contents, the Chinese version shall prevail.
For the English reference of this agreement, please see: English Version Agreement
