Legal Policy

Privacy Policy

Effective date: June 24, 2026

1. About this policy

This Privacy Policy describes how Songyuan Zhuhong Network Technology Co., Ltd., operating as Chase Grand, with registered address at Room C025, Fourth Floor, Commercial Building No. 2, Boxue Road Commercial Complex, Ningjiang District, Songyuan, 131000, China (hereinafter referred to as Chase Grand, we, us, or our), collects, uses, stores, shares, and protects personal data when you visit our website at chasegrand.hair, use our services, or otherwise interact with us.

We are committed to protecting your privacy and handling your personal data in a lawful, fair, and transparent manner. This policy explains your rights and our obligations under applicable data protection laws, including but not limited to the Personal Information Protection Law of the Peoples Republic of China and, where applicable, the General Data Protection Regulation of the European Union.

By accessing our website or using our services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with any part of this policy, you should discontinue use of our website and services immediately.

2. Information we collect

2.1 Information you provide directly

We collect personal data that you voluntarily provide to us when you fill out our contact form, send us an email, call our phone number, or otherwise communicate with us. This may include:

  • Your full name
  • Your email address
  • Your company or organization name
  • Your phone number, if provided
  • The content of your message, inquiry, or project description
  • Any other information you choose to share with us in the course of communication

2.2 Information collected automatically

When you visit our website, certain information is collected automatically through standard web technologies. This includes:

  • Your IP address and approximate geographic location derived from it
  • Browser type, version, and language settings
  • Operating system and device type
  • Referring website or source
  • Pages visited, time spent on each page, and navigation patterns
  • Date and time of your visit

We do not use cookies for advertising, profiling, or cross-site tracking purposes. Any cookies deployed on our website are strictly necessary for the technical operation of the site or for basic analytics that do not identify individual users.

2.3 Information we do not collect

We do not collect sensitive personal data such as government identification numbers, financial account credentials, health information, biometric data, or information about children under the age of 16. Our website is not directed at children, and we do not knowingly collect personal data from anyone under the age of 16.

3. How we use your information

We use the personal data we collect for the following purposes:

  • To respond to inquiries: When you contact us, we use your information to understand your needs, respond to your questions, and provide information about our services.
  • To provide and improve our services: We use data to deliver the services you have requested, to communicate with you about ongoing projects, and to improve the quality and relevance of our offerings.
  • To operate and maintain our website: We use automatically collected data to monitor website performance, detect and prevent technical issues, and protect the security and integrity of our systems.
  • To comply with legal obligations: We may process your data as necessary to comply with applicable laws, regulations, legal processes, or enforceable governmental requests.
  • To protect our legitimate interests: We may process data to establish, exercise, or defend legal claims, or to prevent fraud and abuse of our services.

We will not use your personal data for purposes materially different from those described in this policy without providing you notice and, where required by law, obtaining your consent.

4. Legal basis for processing

Our legal basis for processing your personal data depends on the nature of the data and the context in which we collect it. We process personal data on the following grounds:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose, such as when you submit a contact form inquiry.
  • Contractual necessity: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
  • Legal obligation: Where processing is necessary for compliance with a legal obligation to which we are subject.
  • Legitimate interests: Where processing is necessary for the purposes of our legitimate interests or those of a third party, provided those interests are not overridden by your data protection rights.

5. Data sharing and disclosure

We do not sell, rent, or trade your personal data to third parties for their marketing purposes. We may share your information only in the following circumstances:

  • Service providers: We may engage trusted third-party companies and individuals to perform functions on our behalf, such as website hosting, email delivery, and analytics. These providers have access to personal data only as necessary to perform their functions and are contractually bound to process it solely in accordance with our instructions and applicable data protection laws.
  • Legal requirements: We may disclose your information if required to do so by law, court order, or governmental regulation, or if we believe in good faith that such disclosure is necessary to comply with legal process, protect our rights or property, or prevent harm to any person.
  • Business transfers: In the event of a merger, acquisition, reorganization, or sale of all or a portion of our assets, personal data held by us may be among the assets transferred. You will be notified via email or a prominent notice on our website of any change in ownership or use of your personal data.
  • With your consent: We may share your information with third parties when we have your explicit consent to do so.

6. International data transfers

Songyuan Zhuhong Network Technology Co., Ltd. is based in Songyuan, China. Your personal data may be transferred to, stored on, and processed on servers located in China or in other jurisdictions where our service providers operate. These jurisdictions may have data protection laws that differ from those in your country of residence.

When we transfer personal data across borders, we implement appropriate safeguards in accordance with applicable law to ensure that your data remains protected. These safeguards may include standard contractual clauses approved by relevant data protection authorities, binding corporate rules, or certification under recognized data protection frameworks.

By using our website or services, you acknowledge that your personal data may be transferred internationally as described in this policy.

7. Data retention

We retain personal data only for as long as is necessary to fulfill the purposes for which it was collected, or as required by applicable law. The specific retention period depends on the nature of the data and the purpose of processing:

  • Contact form submissions and correspondence: Retained for up to three years following the last communication, unless a longer period is required for contractual or legal purposes.
  • Website usage data: Retained in aggregate or anonymized form indefinitely for analytical purposes. Log-level data is retained for up to twelve months.
  • Legal and compliance records: Retained for the period required by applicable statutes of limitation or regulatory requirements.

When personal data is no longer needed, we securely delete or anonymize it in accordance with our data disposal procedures.

8. Data security

We implement and maintain technical, administrative, and physical security measures designed to protect personal data against unauthorized access, disclosure, alteration, and destruction. These measures include:

  • Encryption of data in transit using Transport Layer Security protocols
  • Access controls that limit personal data access to authorized personnel on a need-to-know basis
  • Regular security assessments and monitoring of our systems for vulnerabilities
  • Secure development practices and periodic review of our code and infrastructure
  • Employee training on data protection and confidentiality obligations

While we strive to protect your personal data, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security, but we are committed to promptly notifying you and relevant authorities in the event of a data breach, as required by applicable law.

9. Your rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Right of access: You may request a copy of the personal data we hold about you, along with information about how it is processed.
  • Right of rectification: You may request that we correct any inaccurate or incomplete personal data we hold about you.
  • Right of erasure: You may request that we delete your personal data, subject to certain legal exceptions.
  • Right to restrict processing: You may request that we limit the processing of your personal data in certain circumstances.
  • Right to data portability: You may request a copy of your personal data in a structured, commonly used, machine-readable format.
  • Right to object: You may object to processing of your personal data based on legitimate interests or for direct marketing purposes.
  • Right to withdraw consent: Where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of processing before withdrawal.

To exercise any of these rights, please contact us using the information provided in Section 11 of this policy. We will respond to your request within the timeframe required by applicable law, and we may ask you to verify your identity before processing your request.

10. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal obligations, or for other operational reasons. When we make changes, we will revise the effective date at the top of this policy and post the updated version on this page.

If the changes are material, we will provide a more prominent notice, such as a banner on our website or a direct email notification, where appropriate. We encourage you to review this policy periodically to stay informed about how we protect your data.

Your continued use of our website or services after any changes to this policy constitutes your acceptance of the updated terms.

11. Contact information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us using the information below:

Data Controller:
Songyuan Zhuhong Network Technology Co., Ltd.
Room C025, Fourth Floor
Commercial Building No. 2
Boxue Road Commercial Complex
Ningjiang District, Songyuan
131000, China

Email: reply@chasegrand.hair
Phone: +1 (938) 368-5011

We will acknowledge receipt of your inquiry within five business days and aim to resolve your concern within thirty calendar days. If you believe we have not adequately addressed your concern, you may have the right to lodge a complaint with the relevant data protection supervisory authority in your jurisdiction.