

Privacy Policy
1. Personal data
Personal data refers to information that can be used alone or in combination with other information to determine the identity of an individual. Such data is submitted to us by you when you use our website, products or services and when you interact with us, or we obtain it by recording how you interact with our website, products or services, for example, through cookies and other technologies. Depending on the websites you visit or the products and services you use, the data we collect may include your name, address, email address, telephone number and other personal data. We collect personal data for the purpose of contacting you to provide relevant services or send important notifications.
2. Privacy policy
KEYSTONE ACADEMY and its global affiliates (hereinafter referred to as "[Company]", "We" or "our") understand the importance of personal data to our customers and users. To this end, Dingshi attaches great importance to the protection of personal data of customers and users, and has taken a series of measures to ensure that relevant businesses comply with the applicable personal data protection requirements (such as GDPR).
2.1 To ensure the effective implementation of personal data protection requirements, KEYSTONE ACADEMY has appointed a Data Protection Officer (DPO).
2.2 KEYSTONE ACADEMY adopts industry-recognized personal data protection methods and practices. In the business scenario where GDPR applies, KEYSTONE ACADEMY uses the Data Protection Impact Assessment (DPIA) method to assess and mitigate personal data security risks in products and services.
2.2.1 KEYSTONE ACADEMY requires that personal data involved in products and services should be fully evaluated, and projects involving personal data should be DPIA;
2.2.2 Data list and data flow diagram shall be established for projects involving personal data;
2.2.3 For projects involving personal data, possible risks in data processing (including collection, use, storage, sharing, deletion, etc.) shall be identified and appropriate measures (including management, physical and technical measures) shall be taken according to the risk level.
2.2.4 After the execution of DPIA, the corresponding report shall be output and approved by DPO.
2.3. KEYSTONE ACADEMY has implemented technical means, including intrusion detection, access control, encryption, data leakage prevention, spam prevention, terminal security protection, vulnerability scanning, etc., and tested the effectiveness of personal data protection measures through penetration testing.
2.4. KEYSTONE ACADEMY has established an emergency response mechanism for personal data leakage. In the event of a personal data breach, KEYSTONE ACADEMY will immediately initiate an emergency response process, and strive to reduce the loss that may result from the personal data breach and ensure that the affected personnel are properly notified.
2.5. KEYSTONE ACADEMY has established a continuous staff privacy policy training mechanism to ensure that every staff involved in GDPR can accurately understand the legal principles of data protection based on their specific job responsibilities and strictly implement the applicable policies and procedures of the company.
2.6. In order to ensure compliance, KEYSTONE ACADEMY has implemented necessary technical and process audits for personal data protection.
Personal data protection is not only a legal requirement, but also a corporate social responsibility. KEYSTONE ACADEMY will continue to optimize its products and services to ensure security and privacy and reduce the risk of personal data protection for customers and users.
3. Policy update
KEYSTONE ACADEMY reserves the right to update or modify this policy from time to time. If this policy changes, we will post the latest version of the policy here. If we make a material change to our privacy policy, we may also notify you of the change through various channels, for example, by Posting a notice on our website or by Posting a notice to you individually.