Update date: 2025.11.04
Effective date: 2025.11.04
FAIRLAND HOLDINGS CO.,LTD and its affiliates (collectively the “Fairland”, “us” “our” or “we”) understand the importance of your privacy to you and will respect your privacy. The iGarden APP Privacy Policy ("this Policy") describes how we might collect, store, us, and/or share personal information when you interact with us. The Policy applies to the iGarden APP and devices that we provide and the extensions thereof,. If a separate privacy policy or user service agreement exists for a specific product or service, the privacy policy or user service agreement for that product or service will prevail. If the privacy policy or user service agreement for the product or service is not covered by such product or service, this Policy shall prevail. If one of our affiliated companies uses the products or services provided by us in their products or services but does not set up a separate privacy policy, this Policy shall also apply to such products or services. Unless otherwise agreed, the terms used in this Policy shall have the same meaning as those defined in the User Service Agreement.
Please note that the Policy does not apply to information collected through other means, such as offline channels or any other website operated by the company or any third parties. Additionally, any third-party application or content (including advertisements) that may link to or be accessible from this website is not covered by this Policy. This policy is not intended to override the terms of any contact you have with us, not any rights you may have under other applicable data privacy laws. Please take a moment to familiarize yourself with our privacy protection practices. If you have any questions or concerns, please contact us at services@igardeniot.com.
Personal information is all kinds of information relating to an identified or identifiable natural person, recorded electronically or by other means, excluding information that has been anonymized. Please note that the definition of "personal information" (or "personal data" and other similar expressions) may vary from country to country or region to region, so please refer to the laws and regulations related to the protection of personal information in your region.
Information We Collect From You
You may provide information directly to us in the following situations:
1.1 Account Registration and Login When you create or log into an account, we collect your username, password, mobile phone number, and/or email address. This information is used for account creation, authentication, and security management.
1.2 Device Setup and Management When adding devices via Bluetooth pairing, Wi-Fi pairing, or manual setup, you may provide a device name or nickname to help identify and manage your devices.
1.3 Scene and Control Settings When creating or managing a scene (e.g., preset operating modes, scheduled delays, multi-device control), we collect the configuration information you set to execute the scene as designed.
1.4 Customer Support and Feedback Online Customer Service: When contacting support, you may provide details of your request and any related information to help resolve your issue. Problem Feedback: When submitting feedback, you may provide problem type, description, fault images, and your contact information (phone number or email) so we can troubleshoot and respond.
1.5 Account and Yard Management Profile Updates: When you change your avatar or nickname, we store the updated information. Yard Management: When naming or renaming your yard, or enabling location-based yard management, we collect the name and your authorized location information to store yard location. Device Sharing: When sharing a device, we collect the recipient’s account details (phone number or email) to enable sharing.
1.6 Device Sharing (as a sharing initiator) When you share a device with another user, you need to provide the recipient’s account information, such as their registered phone number or email address, to identify the recipient and enable access. We will process this information solely for the purpose of verifying the recipient’s account and granting device access.
1.7 Voice Assistant and Command Processing To provide you with the voice assistant feature, when you activate and use this function, we collect your voice commands. This audio data is captured for the sole purpose of recognizing your commands and controlling your connected iGarden devices. Your voice audio is streamed in real-time to a third-party voice recognition service provider for immediate transcription, and our own servers do not store or retain any of your original voice data. The text transcribed from your command is used only to execute the device action you requested and is not associated with your account for any other purpose.
Information Automatically Generated and Collected
2.1 Device Identifiers and Technical Data Device serial number (SN), IoT ID, MAC address, IP address, firmware version, and device type, used for device binding, communication, and updates.
2.2 Operational and Diagnostic Data Device operation status, activity logs, error codes, crash logs, and performance metrics, used for troubleshooting, maintenance, and service optimization.
2.3 App Usage Data Records of features you use, user interface interactions, and in-App event logs, to analyze service performance and improve design.
2.4 Location Data If you enable location services (e.g., for yard positioning or device pairing), we collect your precise or approximate location to support relevant functions.
2.5 Network and System Information Mobile device model, operating system version, App version, network connection type, and signal strength, used to ensure compatibility and optimize performance.
Information From Third Parties
3.1 Shared Device Access (as a sharing recipient) If another user shares a device with you, we will receive from that user the necessary details to enable your access to the shared device, which may include: device identifiers (e.g., device serial number, IoT ID, MAC address), device name or nickname, Sharing settings and permissions (e.g., control rights, viewing rights), the sharing initiator’s account identifier (e.g., masked phone number or email) for verification purposes. We process this information only to enable the shared device functions in your account and to manage permissions according to the sharing settings defined by the initiator. We do not use this information for unrelated purposes. You may revoke shared access at any time via the App settings, and the corresponding data will no longer be accessible from your account.
3.2 Service Providers and Partners We may receive technical data or diagnostic reports from cloud service providers, analytics vendors, or other authorized partners to improve device connectivity, performance, and support.
Third-Party Service Providers
We may disclose or share your information with third-party service providers that support the provision of our products and services. These may include third-party professional service providers, voice recognition service providers, cloud hosting providers, and customer service providers, who process your personal information on our behalf.
Specifically, to ensure the proper functioning of the voice assistant feature, we share your voice command audio data with a professional voice recognition partner. This sharing is for the sole purpose of transcribing your voice commands into text to control your devices. We have entered into strict confidentiality and data processing agreements with this partner, requiring them to process the data according to our instructions, maintain data security, and not use the data for any other purpose.
We will only share personal information that is necessary for the provision of our products and services. We will also enter into strict confidentiality agreements with the companies, organizations and individuals with whom we share personal information, requiring them to process personal information in accordance with our instructions, this Policy and any other relevant confidentiality and security measures. Where the sharing of your data is based on consent, you have the right to refuse to consent to the sharing of your personal information with third parties. Please note that if you refuse to consent to the sharing of information with third parties, you may not be able to use the specific corresponding features.
Business Transfers
We may transfer your data to a buyer or other successor in the event of a merger, acquisition, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Fairland's asset, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by us may be among the assets transferred.
Compliance
We may share your personal information in certain circumstances, including:
l To law enforcement authorities, government or public agencies or officials, regulators, and/or any other person or entity with appropriate legal authority or justification for receipt of such information, if required or permitted to do so by law or legal process;
l When we believe disclosure is necessary or appropriate to prevent physical harm or financial loss, or in connection with an investigation of suspected or actual fraudulent or illegal activity;
l When the information is required for the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, or for the enforcement of civil law claims.
This section is for users in the EU/EEA region.
Data Processing
The table below provides the ways we use users’ data and the legal bases we reply on.
| Purpose | Categories of Personal Data | Legal Basis |
| Account registration and login | Username, password, mobile phone number, email address | Performance of a contract |
| Device setup and binding | Device name/nickname, pairing information | Performance of a contract |
| Device operation and management | Device identifiers (SN, IoT ID, MAC address, IP address), firmware version, operation logs | Performance of a contract |
| Scene creation and automation control | Scene configuration data, associated device identifiers | Performance of a contract |
| Customer service and technical support | Inquiry details, problem description, fault images, contact information | Performance of a contract |
| Feedback handling and troubleshooting | Problem type, description, photos, contact details | Performance of a contract |
| Profile management | Avatar, nickname | Performance of a contract |
| Yard management (manual entry) | Yard name, manually provided yard location | Performance of a contract |
| Location-based yard management or device pairing (upon permission) | Precise or approximate location data via GPS/Wi-Fi/Bluetooth | Consent |
| Device sharing (as initiator) | Recipient’s account details (phone number, email), shared device identifiers | Performance of a contract |
| Device sharing (as recipient) | Shared device identifiers, device name/nickname, permissions granted, sharer’s account ID | Performance of a contract |
| Voice command recognition and device control | Voice command audio and transcribed text | Performance of a contract (to provide the requested voice control service) |
| Automatically collected device performance and diagnostic data | Device status, error codes, crash logs, performance metrics | Legitimate interests – to maintain service functionality and security |
| App usage analytics and feature improvement | Feature usage data, in-App event logs, interaction records | Legitimate interests – to improve user experience |
| Compliance with legal obligations | Data required by applicable laws or authorities (e.g., consumer protection, tax, product safety) | Legal obligation |
| Data from third-party account integration (if used) | Third-party account ID, nickname, avatar | Consent |
| Data from service providers or partners | Technical logs, diagnostic reports | Legitimate interests– to improve service performance |
Your Rights
Data subjects enjoy certain rights under the GDPR. This section describes your rights and how you may exercise them. Please note that for security reasons, we may have to verify your identity before processing your requests.
Right to Access Personal Information You have the right to access your personal information in accordance with applicable laws and regulations. You can exercise this right by emailing us at services@igardeniot.com.
Right to Data Portability You have the right to obtain a copy of your personal information and you can do so at any time by contacting us at services@igardeniot.com and we will respond to your request within 15 business days. Provided that it is technically feasible for us to do so, for example by matching data interfaces, we can also transfer a copy of your personal information directly to the third party you specify at your request.
Right to Rectification of Personal Information If you discover that we have processed your personal information incorrectly, you have the right to request that we make corrections. You can exercise this right by emailing us at services@igardeniot.com.
Right to Data Erasure/Deletion You have the right to request that the Company delete any of your personal information that we collected from you and retained, subject to certain exceptions. You may make a request to us to delete personal information in the following cases:
l We collect and use personal information in violation of laws and regulations;
l Our processing of personal information is in breach of the agreement with you;
l We collect and process your personal information without your consent;
l You no longer use our products or services, or you cancel your account;
l We no longer provide products or services to you; or
l You request the deletion of your account.
You can exercise your right by sending your request to services@igardeniot.com.
If we respond to your request for deletion, we will also simultaneously notify the entities (if any) from which we obtained your personal information to request its prompt deletion, unless otherwise required by law or regulation, or unless such entities have your independent authorization.
If immediate deletion is not possible (for example, because your Personal Information has been stored in backup archives), then we will securely store your Personal Information and isolate it from any further processing until deletion is possible.
Right to Restriction of Processing You may limit our processing of your personal information in the following circumstances:
l when you question the accuracy of the personal information we have collected about you, or when we are verifying the accuracy of the personal information in question.
l when you believe that our processing of your personal information is unlawful.
l when we no longer need your personal information in question for the processing purposes set out in this Policy, but you need that personal information for legal claims.
l when the legal basis for processing your personal information is in the public interest, or in the legitimate interests of us and third parties. You can exercise your right by sending your request to services@igardeniot.com.
Right to Refuse Automated Decision-Making Under the GDPR, you have the right to not be subjected to decisions made by automated processing, including profiling, where the decision has a significant legal impact on you. We do not process your data in this manner. Please contact us by emailing us at services@igardeniot.com if you have any questions or concerns.
Right to Object Processing of Personal Data You have the right to adjust the scope of the personal information we continue to collect or withdraw your authorization at any time, and when you withdraw such consent or authorization, we will no longer process the corresponding personal information and will not be able to continue to provide you with the services for which you have withdrawn your consent or authorization. Your adjustment of the scope of your authorization will not affect the processing of your personal information by Fairland based on your consent or authorization prior to the adjustment.
Right to Object to Direct Marketing You have the right to object to the processing of personal information for direct marketing purposes. You can exercise this right by emailing us at services@igardeniot.com. If you have previously subscribed to receive our marketing emails but no longer wish to receive them, you can unsubscribe by following the instructions in our marketing emails.
Right to Withdraw Consent Where we rely on your consent to process your data, you have the right to withdraw consent you have provided to us at any time, and we will stop further processing. You can always provide your consent to us again at a later time. You can send the request to services@igardeniot.com.
Right to Compliant If you are unable to exercise your rights as described above, or if you believe that Fairland has violated any laws, administrative regulations, or agreements with you regarding the processing of your personal information, you may contact us through the channels set forth in this Policy. You also have the right to lodge a complaint to an applicable supervisory authority or other regulators if you are not satisfied with our responses to your requests or how we manage your personal information. A list of and more information about the EU/EEA Data Protection Authorities can be found here: https://www.edpb.europa.eu/about-edpb/about-edpb/members_en. We encourage you to first or also reach out to us at services@igardeniot.com, so we have an opportunity to address your concerns directly.
This section is for users in California.
Data Collection
The table below sets out the categories of personal information we collect from users within the last twelve (12) months. Some information included in different categories may overlap.
| Category (as defined by CCPA) | Information Details | Data Sharing |
| Identifiers | Account username, password, mobile phone number, email address, device identifiers (SN, IoT ID, MAC address, IP address), yard name, profile nickname | No |
| Personal information | Contact details (phone, email), profile photo/avatar, yard location (if manually entered) | No |
| Commercial information | Usage history of devices, device sharing logs (initiator and recipient), scene creation history | No |
| Internet or other electronic network activity information | App usage logs, feature interaction records, error/crash reports, connection history | No |
| Geolocation data | Approximate or precise location (upon user permission) via GPS, Wi-Fi, Bluetooth for yard location and device pairing | No |
| Audio information | Voice command audio recordings (processed transiently) and resulting text transcripts used for device control. | No |
| Electronic information | Fault or feedback photos submitted by users | No |
“Do Not Track” (DNT) signals We do not track its Users over time and across third party websites to provide targeted advertising and therefore does not respond to Do Not Track (DNT) signals. However, some third- party sites do keep track of your browsing activities when they serve you content, which enables them to tailor what they present to you. If you are visiting such sites, your browser may include controls to block and delete cookies, web beacons and similar technologies, to allow you to opt out of data collection through those technologies.
Your Rights
Users enjoy certain rights under the California Consumer Privacy Act of 2018 (CCPA) and its amendments. This section describes your rights and how you may exercise them. The following rights may be exercised by you directly or by the request of your representative. Please note that for security reasons, we may have to verify your identity before processing your requests.
Right to Know and Access You have the right to access your personal information and request us to disclose certain information to you about our processing of your personal information over the past 12 months. Once we receive and confirm your verifiable consumer request, we will disclose to you:
l The categories of personal information we collected about you.
l The categories of sources for the personal information we collected about you.
l Our business or commercial purpose for collecting or sharing that personal information.
l Whether we share or sell your personal information, and if so, the categories of third parties with whom we share that personal information.
l The specific pieces of personal information we collected about you (also called a data portability request). If we disclose your personal information for a business purpose, we will identify the personal information categories that each category of recipient obtained. If you wish to access and edit your personal information, you can exercise this right by emailing us at services@igardeniot.com.
Right to Data Portability You have the right to obtain a copy of your personal information and you can do so at any time by sending your request to services@igardeniot.com and we will respond to your request within 15 business days. Provided that it is technically feasible for us to do so, for example by matching data interfaces, we can also transfer a copy of your personal information directly to the third party you specify at your request.
Right to Rectification of Personal Information If you discover that we have processed your personal information incorrectly, you have the right to request that we make corrections. You can exercise this right by emailing us at services@igardeniot.com.
Right to Erasure/Deletion You have the right to request that the Company delete any of your personal information that we collected from you and retained, subject to certain exceptions. You may make a request to us to delete personal information in the following cases:
l We collect and use personal information in violation of laws and regulations;
l Our processing of personal information is in breach of the agreement with you;
l We collect and process your personal information without your consent;
l You no longer use our products or services, or you cancel your account;
l We no longer provide products or services to you; or
l You request the deletion of your account.
You can send your request to services@igardeniot.com. If we respond to your request for deletion, we will also simultaneously notify the entities (if any) from which we obtained your personal information to request its prompt deletion, unless otherwise required by law or regulation, or unless such entities have your independent authorization.
If immediate deletion is not possible (for example, because your Personal Information has been stored in backup archives), then we will securely store your Personal Information and isolate it from any further processing until deletion is possible.
Right to Opt-out of the Selling or Sharing of Personal Information California Consumers have the right to opt-out of the “sale” of your Personal Information for monetary or other valuable consideration. We do not knowingly sell your personal information, yet our use of tracking technologies may be considered a "sale"/ "sharing" under California law. If you are a California Consumer and would like exercise your Right to Opt-Out of Sale or Sharing, please email us at services@igardeniot.com. Alternatively, where available, you may enable a universal tool such as the global privacy control ("GPC”) on your browser that automatically communicates your opt-out preferences.
Sensitive Information We do not process or disclose any sensitive information for purposes beyond providing you with the services you requests, which may include the provision of our goods and services, optional features you may choose to enable, and any programs you choose to participate in.
Non-Discrimination We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:
l Deny you goods or services.
l Charge you different prices or rates for like-goods or services, including through granting discounts or other benefits, or imposing penalties.
l Provide you with a different level or quality of like-goods or services.
l Suggest that you may receive a different price or rate for like-goods or services or a different level or quality of like-goods or services.
“Shine the Light” California's "Shine the Light" law (Civil Code Section § 1798.83) permits users of our websites, other products, services and platforms that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. You can submit the request by contacting us at services@igardeniot.com.
This section is for users in Australia.
Collection of Personal Data If you provide personal information to us while located in Australia, you must ensure that it is lawful for you to disclose that information under the Privacy Act 1988 (Cth). We will process your personal information only for legitimate purposes and in accordance with the Australian Privacy Principles (APPs).
Cross-Border Disclosure In compliance with the Privacy Act 1988 (Cth) and the APPs, any personal information collected in Australia that is disclosed to an overseas recipient will be handled in accordance with the APPs, or the recipient will be subject to privacy laws equivalent to or more stringent than the APPs. We will take reasonable steps to ensure that overseas recipients do not breach the APPs in relation to your information. Your personal information will only be disclosed to support the primary purpose for which it was collected, unless an exception applies.
Data Retention Personal information will be retained only as long as necessary to fulfill the purposes for which it was collected, or as required or permitted by law. In particular, personal information may be retained for an additional twelve (12) months following the end of any applicable legal limitation period, to allow sufficient time to respond to potential claims.
Your Legal Rights If you have any complaint, you may contact us by emailing us at services@igardeniot.com. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) via https://www.oaic.gov.au/contact-us.
We define “children” as individuals (i) under the age of 16 residing in the EU/EEA, (ii) anyone under 13 residing in all other regions, or (iii) individuals who qualifies as “children” under the applicable data protection laws of their respective jurisdiction. We do not knowingly collect personal information from children. Children may not send us personal information such as their names, address, phone numbers, email address, etc., unless permitted by local law and their guardians have given their consent. We will only use or publicly disclose personal information collected from children with the consent of their guardians as permitted by law, with the consent of the guardian, or as necessary to protect the child. We do not sell or share children’s data under the definition of the California Consumer Privacy Act (CCPA) and its regulations. If we become aware that we have collected personal information from a child without the consent of the child's guardian, we will delete the data as soon as we are aware of it. If you believe that we may improperly hold personal information from or about a child, please contact us.
Data Retention We will only store your personal information for as long as necessary for the purposes described in this Policy and for as long as required by law, regulation and supervision, unless there is a mandatory retention requirement by law. If we terminate the service or operation, we will promptly stop the activities of continuing to collect your personal information, and, unless otherwise required by applicable laws and regulations, delete or anonymize your personal information. Where the immediate deletion is not possible, for example, because your Personal Information has been stored in backup archives, then we will securely store your Personal Information and isolate it from any further processing until deletion is possible. If we anonymize your personal information (so that it can no longer be associated with you), we may use this information indefinitely without further notice to you.
Data Security We have taken reasonable and practicable security measures, consistent with industry standards, to protect your information from unauthorized access, disclosure, use, modification, damage or loss of personal information. We take the following steps to keep your data secure:
l Using encryption technology to improve the security of personal information, protected by SSL protocol encryption when exchanging data between your browser and the server, providing HTTPS protocol for secure browsing;
l Use of trusted protection mechanisms to prevent malicious attacks on personal information;
l Deploy access control mechanisms and make every effort to ensure that only authorized personnel have access to personal information;
l Conducting security and privacy training courses to enhance employees' awareness of the importance of protecting personal information;
l Specialized data compliance management systems, processes and organizations are in place to safeguard information. For example, we strictly limit the scope of people who access information, require them to comply with confidentiality obligations, and conduct audits.
We will take all reasonably practicable steps to ensure that no unrelated personal information is collected.
We will retain your personal information only for the shortest period necessary to achieve the purposes described in this Policy, unless otherwise required by the laws and regulations of your location.
The Internet environment is not 100% secure and we will endeavor to ensure or warrant the security of any information you send us.
If our physical, technical, or administrative safeguards are compromised, resulting in unauthorized access, public disclosure, tampering, or destruction of information, resulting in damage to your legal rights and interests, we will assume appropriate legal liability.
After the unfortunate occurrence of personal information security events, we will strictly follow the requirements of the laws and regulations of your location and inform you in a timely manner of: the basic situation and possible impact of the security event, the disposal measures we have taken or will take, the suggestions you can independently prevent and reduce the risk, the remedial measures for you, etc. We will promptly inform you of the event-related situation by email, letter, telephone, push notification, etc. When it is difficult to inform the subject of personal information one by one, we will take a reasonable and effective way to issue an announcement. At the same time, we will also take the initiative to report the disposal of personal information security incidents and fulfill the obligations stipulated in other laws and regulations in accordance with the requirements of regulatory authorities.
As we provide our Products or Services through resources and servers around the world, we process and back up personal data through a global operating and control infrastructure. Currently, we use cloud servers deployed in the United States(North California), Germany(Frankfurt) to process personal data of users in the United States, the United Kingdom and the European Economic Area (EEA). We rely on multiple legal basis to lawfully transfer personal data around the world. These include your consent (if applicable) and EU Commission approved model contractual clauses, which require certain privacy and security protections. You may obtain copies of the model contractual clauses by contacting us. We are subject to the oversight of the US Federal Trade Commission and remains responsible for personal data that we transfer to others who process it on our behalf as described in “HOW DATA IS SHARED AND DISCLOSED” section. If you have a complaint about our international data transfer, please contact us by means described in “CONTACT INFORMATION” section. You may make a complaint to the competent regulatory authority in your jurisdiction.
This Policy may be updated to provide you with better service and as our business evolves. However, we will not reduce your rights under this Policy without your consent. We will notify you of updates to this Policy by posting updated versions on our website and by appropriate means before they become effective, and we invite you to visit our Platform to keep up to date with the latest Privacy Policy. We will also provide more prominent notice of material changes (we will provide specific notice of changes to our Policy, including, but not limited to, a special notice on the viewing page). Material changes within the meaning of this Policy include, but are not limited to:
l Significant changes in our service model, such as the purpose of processing personal information, the type of personal information processed, and the way personal information is used;
l Significant changes in our ownership structure, organizational structure, etc. such as changes in ownership due to business restructuring, bankruptcy and mergers, etc;
l Changes in the primary recipients of personal information sharing, transfer or public disclosure;
l Significant changes in your rights to participate in the processing of personal information and how they are exercised;
l In the event of a change in the department responsible for handling the security of personal information, our contact information and complaint channels; and
l When the personal information security impact assessment report indicates a high risk. We will also keep an older version of this Policy on file for your review.
If you have any questions, comments or complaints about our Privacy Policy, or wish to contact us, you can reach us via services@igardeniot.com. You may contact us at:
Company Name: Shenzhen Fairland Technology Co., Ltd.
Email: services@igardeniot.com
Contact number: 0757-26669979
Address: 19 / F ABCDE, China Energy Storage Building, No. 3099, South Keyuan Road, High-tech Community, Yuehai Street, Nanshan District, Shenzhen
If you are not satisfied with our response, especially if our processing of personal information has harmed your legitimate rights and interests, you may also file a complaint or report to the regulatory authority in your area.
This version of the Privacy Policy was updated on 2025.11.04 and will become effective on 2025.11.04.