Last Updated: June 27, 2025
We at AquaID (Biowiki Holding Co., Limited together with its parents, affiliates, and subsidiaries collectively referred to as “AquaID”) are committed to protecting your privacy and providing you with concise, transparent, and easily accessible information about how we collect, use, and safeguard your personal data.
This Privacy Policy details how we collect, use and share your information which may include personally identifiable information (“Personal Data”) when you use the Services.
As you review our Policy, keep in mind that it applies to all AquaID brands, products and services that do not have a separate privacy policy or that link to this Policy, which we call the “AquaID Services” or “Services.”
Please read this Privacy Policy carefully. By accessing or using our Services or otherwise indicating your agreement to this Privacy Policy, you are acknowledging that you have read and agree to this Privacy Policy, and our Terms of Service and Copyright Policy, which are incorporated herein by reference. Terms not defined in this Privacy Policy shall have the meaning set forth in our Terms of Service.
If you are located in the UK or European Economic Area, you should review the General Data Protection Regulation (“GDPR”) Notice below.
If you are a California resident you can find out about your privacy rights in section “California Privacy Rights.”
1.What Kinds of Information Do We Collect?
To provide the AquaID Services, we must process information about you. The types of information we collect depend on how you use our Products.
Information You Provide Us With. We collect the content and other information you provide when you use our Services, including when you create an account. For example: When you create an account you can add or change your display name or photos at any time, post comments, follow other users, block other users, report other users, and receive notifications relating to your preferences, including, but not limited to recipe updates and recommendations. We also collect information about how you use our Services, such as the types of content you view or engage with or the frequency and duration of your activities. When you create an account to use the Services you may do so with an email address or through Facebook, or Google, or an Apple account. Creating an account is optional and you may access our Services without doing so. However, please keep in mind certain aspects of the Services may not function properly or as intended unless you register and create an account.
Registration Information via Email. When you register to use our Services via your email address, you will be asked to provide your email address, a display name and password.
Registration Via Third Party Social Network. If you register or log into your account through a third-party social network service, such as Apple ID, Facebook or Google, we will have access to some of your third-party account information from that service, such as your name, profile picture, unique identifier, email address, and other information in that account, as authorized by that service. You should review such third party social network’s privacy policy for more information about their data collection practices. You have the ability to disable the connection between our Services and your third-party account at any time. We will use your account name and profile picture associated with your third-party social network service to create your profile.
Device Information. We collect information from or about the computers, phones, or other devices where you install or access our Services, depending on the permissions you’ve granted. We may associate the information we collect from your different devices, which helps us provide consistent Services across your devices. Here are some examples of the device information we collect:
·Attributes such as the operating system, hardware version, device settings, file and software names and types, battery and signal strength, and device identifiers.
·Connection information such as the name of your mobile operator or ISP, browser type, language and time zone, mobile phone number and IP address.
·Our Services do not collect precise information about your location.
Images--EXIF Data. When you upload images onto our Services, please note that we will not remove the EXIF data that is contained in those images. EXIF is short for Exchangeable Image File Format, which is a standard that defines specific information related to an image or other media captured by a digital camera, containing information on the image such as shutter speed, camera exposure, date and time the image was taken and even GPS location. We will not use the EXIF data, but when you upload the images, you understand that the EXIF data will be stored by us as part of the images.
Cookies Policy: Please See Our Full Cookie Policy Here.
Connecting to a 3rd Party Appliance. If you connect a 3rd Party Connected Appliance to our Services, you will be required to provide us with certain credentials provided to you by the manufacturer of the 3rd Party Connected Appliance. Once your 3rd Party Connected Appliance is connected to our Services, information, including the below, may be collected:
·3rd Party Connected Appliance information, such as model number, serial number, order number, software and hardware version numbers, performance, and configuration, including work tools or other peripheral devices attached to 3rd Party Connected Appliance.
·Electronic information, such as sensor logs, trends, histograms, event data, other alerts, digital state data, fault codes, idle time, service meter hours, electronic data files downloaded manually or automatically from a 3rd Party Connected Appliance, troubleshooting data, and other data, depending on the type of 3rd Party Connected Appliance used.
·Real-time usage information for your 3rd Party Connected Appliance that depends on the type of 3rd Party Connected Appliance, such as the (number of) times a 3rd Party Connected Appliance is turned on or off, the type and/or number of cycles run by a 3rd Party Connected Appliance, different modes used, and the date your 3rd Party Connected Appliance was installed.
·The 3rd Party Connected Appliances IP address, MAC address, RFID and/or WiFi connection.
We may also obtain the data from manufacturers of the components in your 3rd Party Connected Appliances, or from your other product/service providers, if you connect your 3rd Party Connected Appliance to their products or services (e.g., if you connect your 3rd Party Connected Appliance to a smart home hub). Such information may be provided to us automatically.
When using our Services through voice activated assistants such as Amazon Alexa or Google Assistant, our Services may collect certain information automatically as part of the normal operation within the context of Amazon Alexa, Google Assistant or any other licensed source, which may include, but is not limited to, the content of your requests, your hardware device unique ID, a unique User ID, your previous usage of the Services, and/or information about the manner which you use the Services. The Services may collect precise information about the location of your hardware device. For detailed information collected by the underlying voice activated assistants’ platform, please consult that platform’s or source’s relevant terms and conditions.
2.How is Collected Information Used?
We use the information we have (subject to the choices you make) as described below to improve, support and provide the AquaID Services.
Providing Services. We use the information to provide Services, including but not limited to account creation and registration, publication of recipe content for Users to access, providing the AquaID Grocery Shopping Technology, processing and recording payment transactions or transferring money to you, and pairing with 3rd Party Connected Appliances and voice-activated devices and provide related services.
Product Research and Development. We use the information we have to develop, test and improve our Services, including but not limited to conducting surveys, research, testing, troubleshooting new products and features. We may use information such as customer demographics, interests and behavior based on Personal Data provided to us, such as the number of "likes" for a specific recipe to determine how best to target our marketing and the products and services that we offer in certain geographic areas. This information and research may be compiled and analyzed on an aggregate basis and this aggregate information does not identify you personally and will not be treated as Personal Data under this Privacy Policy (“Aggregate Information”). To the extent that you have connected with a with 3rd Party Connected Appliances, voice-activated device and provided related services, we may use the information we have to help AquaID and other partners understand the use, effectiveness and distribution of their devices and services; and to assist in monitoring and troubleshooting errors and incidents, analyzing of web traffic, or optimizing the User experience; and to process and record payment transactions or transfer money to you.
3.How is Collected Information Shared?
We do not share, sell or rent to third parties your information except as described in this Privacy Policy. Examples of how we share your information are provided below:
Third Party Analytic Providers. We use one or more third–party analytic services to evaluate your use of the Services, as the case may be, by compiling reports on activity (based on their collection of IP addresses, Internet service provider, browser type, operating system and language, referring and exit pages and URLs, data and time, amount of time spent on particular pages, what sections of the Services you visit, number of links clicked, search terms and other similar usage data) and analyzing performance metrics. These third parties might use cookies and other technologies to help collect, analyze, and provide us reports or other data.
By accessing and using the Services, you consent to the processing of data about you by these analytic providers in the manner and for the purposes set out in this Privacy Policy. For more information on these third parties, including how to opt out from certain data collection, please visit the sites below. Please be advised that if you opt out of any service, you may not be able to use the full functionality of the Services.
·For Google Analytic, please visit: https://marketingplatform.google.com/about/analytics/
Legal Requirements. We may disclose your Personal Data if required to do so by law (including, without limitation responding to a subpoena or request from law enforcement, court or government agency or other public authorities) or in the good faith belief that such action is necessary (i) to comply with a legal obligation, (ii) to protect or defend our rights, interests or property or that of other customers or Users, (iii) to act in urgent circumstances to protect the personal safety of Users of the Services or the public, or (iv) to protect against legal liability or potential fraud, as determined in our sole discretion.
AquaID does not control third-party service providers’ data collection or privacy practices. Users are encouraged to review the privacy policies of their services for a better understanding of their practices.
·Google Privacy Policy: http://www.google.com/policies/privacy
Third-Party SDKs and Information Sharing
To ensure the stable operation of the AquaID service platform and achieve related functionalities, we may integrate third-party software development kits (SDKs). We are committed to exercising due diligence by conducting stringent security monitoring of the SDKs utilized by our partners to protect data security.
The third-party SDKs we integrate are primarily intended to serve you and other users. Therefore, we may adjust the third-party SDKs we use to meet new service requirements and business function changes. We will promptly publish information about the latest third-party SDKs in this Policy. The third-party SDKs currently integrated into the AquaID service platform are listed below:
| Type | Provider | Provider Privacy Policy | Data Collected | Purpose of Use |
|---|---|---|---|---|
| Gmail (Google Inc.) | Gmail Privacy Policy | Email address, IP address | For issue feedback during service | |
| Analytics tools, third-party login (for Android only) | Firebase SDK (Google Inc.) | Firebase Privacy Policy | Google Analytics for Firebase: Mobile advertising ID, IDFV/Android ID, Firebase Installation ID, and Analytics App Instance ID. Firebase Crashlytics: Crashlytics installation UUID, crash logs, and Breakpad minidump format data (for NDK crashes only). Firebase Authentication (for Android only): Password, email address, phone number, User agents, and IP address. | For data analysis and statistics, providing basic anti-cheat capabilities, and monitoring device App performance |
| Third-Party Login (for iOS only) | GoogleSignIn SDK (Google Inc.) | GooglesignIn Privacy Policy | User identifiers, used to record OAuth authorization created with user consent; IP address, used to estimate the general location of the device for fraud prevention. | For third-party login |
4.Compliance with the Children’s Online Privacy Protection Act
We do not knowingly collect personal information from children under the age of 16 through the Services. If you are under 16, please do not give us any Personal Data. We encourage parents and legal guardians to monitor their children’s Internet usage and to help enforce our Privacy Policy by instructing their children to never provide Personal Data without their permission. If you become aware that his or her child has provided us with information without their consent, he or she should contact us at support@biowiki.com.hk We will delete such information from our files within a reasonable time.
5.How Long Does AquaID Retain Information Collected?
We follow generally accepted standards to store and protect the Personal Data we collect, both during transmission and once received and stored, including utilization of encryption where appropriate. We retain Personal Data only for as long as necessary to provide the Services you have requested and thereafter for a variety of legitimate legal or business purposes. These might include retention periods (i) mandated by law, contract or similar obligations applicable to our business operations; (ii) for preserving, resolving, defending or enforcing our legal/contractual rights; or (iii) needed to maintain adequate and accurate business and financial records. If you have any questions about the security or retention of your Personal Data, you can contact us at support@biowiki.com.hk.
6.What is AquaID’s Security Policy?
We have implemented reasonable administrative, technical and physical security measures to protect your personal information against unauthorized access, destruction or alteration. For example, we limit access to this information to authorized employees and contractors who need to know that information in order to operate, develop or improve our Services. However, although we endeavor to provide reasonable security for information we process and maintain, no security system can ever be 100% secure.
7.California Privacy Rights
Shine the Light Law
California Customer Choice Notice: A Pursuant to Section 1798.83 of the California Civil Code, residents of California have the right to obtain certain information about the types of personal information that companies with whom they have an established business relationship (and that are not otherwise exempt) have shared with third parties for direct marketing purposes during the preceding calendar year, including the names and addresses of those third parties, and examples of the types of services or products marketed by those third parties. If you wish to submit a request pursuant to Section 1798.83, please contact us via email at support@biowiki.com.hk.
California Consumer Privacy Act Disclosure. This California Consumer Privacy Act Disclosure Notice applies to California consumers, and supplements the AquaID Privacy Policy and is effective as of July 1, 2020.
The AquaID Privacy Policy describes the personal information that we collect, and the sources from which we collect such information, in the “What Information Do We Collect” section; the purposes for which we use it in the “What Information Do We Collect” and “How Collected Information is Used” sections; and the limited circumstances under which we share personal information in and with whom we share it in the “How Collected Information is Shared” section. These additional disclosures are required by the California Consumer Privacy Act, as amended (“CCPA”). It also explains your rights regarding your personal data that we collect as set forth in the CCPA.
Categories of Information We Collect. The personal information that AquaID collects, or has collected from Users in the twelve months prior to the effective date of this Disclosures, fall into the following categories established by the CCPA, depending on which AquaID Service is used:
·Identifiers including your name, unique personal identifier, online identifier, internet protocol (IP) address, email address, account name;
·Bank account or credit card information;
·Commercial information, such as content purchase and streaming activity;
·Internet or other electronic network activity information, including, but not limited to, browsing history, search history, and information regarding your interaction with an internet website, application, or advertisement;
·Geolocation data, such as the location of your device or computer;
·Information derived from other Personal Data about you, which could include your preferences, interests and other information used to personalize your experience.
Categories of Personal Information Disclosed for a Business Purpose. The personal information that AquaID disclosed about Users for a business purpose in the twelve months prior to the effective date of this Disclosures fall into the following categories established by the CCPA, depending on which AquaID Service is used:
·Identifiers including your name, unique personal identifier, online identifier, internet protocol (IP) address, email address, account name;
·Bank account or credit card information;
·Commercial information, such as content purchase and streaming activity;
·Internet or other electronic network activity information, including, but not limited to, browsing history, search history, and information regarding your interaction with an internet website, application, or advertisement;
·Geolocation data, such as the location of your device or computer;
·Information derived from other Personal Data about you, which could include your preferences, interests and other information used to personalize your experience.
Sale or Share of Personal Information. California residents may opt out of the “sale” of their personal information and the sharing of their personal information for cross context behavioral advertising (also known as “Targeted Advertising”). CCPA defines “sharing” as making available, a consumer’s personal information by the business to a third party for cross-context behavioral advertising, and that is, the targeting of advertising to a consumer based on the consumer’s personal information obtained from the consumer’s activity across businesses, distinctly- branded websites, applications, or services, other than the business, distinctly-branded website, application, or service with which the consumer intentionally interacts. We disclose the following information to third parties and such disclosure may be considered as a sale of personal information under the CCPA and is sharing of personal information for targeting advertising purposes:
·Identifiers such as your user and mobile advertising IDs (your device ID and IDFA and internet protocol (IP) address;
·Internet or other electronic network activity information, including, but not limited to, browsing history, search history, and information regarding your interaction with an internet website, application, or advertisement;
·Geolocation data, such as the location of your device or computer.
You have the right to opt-out of the sale or share of your personal information. Please see “Right to Opt-Out” below.
Your Rights under California Consumer Privacy Act
Right to Know. You have the right to know what categories and specific pieces of CCPA personal information have been collected about you; the categories of sources from which CCPA personal information are collected; our business or commercial purpose for collecting, using, or disclosing CCPA personal information; the categories of third parties with whom we share CCPA personal information; the categories of CCPA personal information we have disclosed about you for a business purpose.
Right to Correct. You have a right to request any correction of your CCPA personal information.
Right to Receive a Copy. You have a right to receive a copy of the specific CCPA personal information we collected about you.
Right to Delete. You have a right to deletion of your CCPA personal information, subject to exceptions under the CCPA, among them:
·AquaID cannot verify your request;
·AquaID needs your Personal Data to complete your transaction, provide a reasonably anticipated product or service;
·For certain business security practices;
·For certain internal uses that are compatible with reasonable consumer expectations or the context in which the information was provided;
·To comply with legal obligations, exercise legal claims or rights, or defend legal claims.
If you request AquaID to delete your Personal Data, please note that your account will be deleted as well, to the extent the exceptions under CCPA do not apply. When your account is deleted, all data stored in your account, whether it be Personal or non-Personal Data, will be deleted, to the extent the exceptions under CCPA do not apply.
No Discrimination. We will not discriminate against you based on your exercise any of your CCPA rights.
Right to Opt-Out. If we sell or share your information, you have the right to request to opt-out from future “sales” or “sharing” of your personal information. To do so, please visit our “Do Not Sell My Information” page. We may disclose personal information to the companies that provide products and services to our Users to provide or improve their products and services and customize their offerings to you as described in our Privacy Policy. If you do not wish for us to “sell” or “share” your personal information to other companies as defined under the CCPA, you can opt out and exercise your Do Not Sell or Share My Information rights by making your Do Not Sell or Share request by visiting our “Do Not Sell or Share My Information” page. In order to have your opt-out associated with your account, you must log in.
How to Make the Request. California customers with an AquaID account can exercise their rights directly or through an authorized agent by signing in to their AquaID account. If you are a California customer and you or your authorized agent would like to exercise your privacy rights listed above, requests may be made by emailing as at support@biowiki.com.hk If you do not have an AquaID account, AquaID will ask you for information which we consider necessary to verify your identity for security and to prevent fraud. This information may include name, contact information, and information related to your transaction or relationship with AquaID, but the specific information requested may differ depending on the circumstances of your request for your security and to protect privacy rights.
If you request AquaID to delete your Personal Data, please note that your account will be deleted as well, to the extent the exceptions under CCPA as mentioned above do not apply. When your account is deleted, all data stored in your account, whether it be Personal or non-Personal Data, will be deleted.
8.How Does AquaID Respond to “Do Not Track” Signals?
“Do Not Track” is a feature enabled on some browsers that sends a signal to request that a web application disable its tracking or cross-site User tracking. At present, AquaID does not respond to or alter its practices when a Do Not Track signal is received.
9.Changes to Our Privacy Policy
This Privacy Policy is effective as of the last updated date stated at the top of this Privacy Policy. We’re likely to update this Privacy Policy in the future and when we make changes, we will revise the date at the top of the policy and, in some cases, will notify you through the Services, such as on our homepage, or via email or other communication. By accessing the Services after we make any such changes to this Privacy Policy, you are deemed to have accepted such changes. Please be aware that, to the extent permitted by applicable law, our use of the information collected is governed by the Privacy Policy in effect at the time we collect the information. Please come back and check from time to time for the latest information on our privacy practices
10.General Data Protection Regulation Notice
The following notice applies to individuals located in the European Economic Area (“EEA”) and the United Kingdom.
Legal Basis for Processing. We process your Personal Data pursuant to the following legal bases: (i) in some instances, where required, we will rely on your consent, such as to send you marketing emails, which you may withdraw at any time; (ii) we will process Personal Data as necessary for the performance of contracts to which you are a party, such as our Terms of Service or Privacy Policy, or to take requested steps to enter into such contracts; (iii) we will process your personal data pursuant to our legitimate interest for those purposes provided in Section 2 above.
Data Subject Rights. If you are located in the EEA and UK, you have the following rights:
·Access, Update or Delete Personal Data. You have the right to request access to, update and/or deletion of your Personal Data. You can make such requests by contacting us via our official email support@biowiki.com.hk. Please note that as part of the request, you may be asked to provide information which may include name, email address, and information related to your transaction or relationship with AquaID, but the specific information requested may differ depending on the circumstances of your request for your security and to protect privacy rights. If you request AquaID to delete your Personal Data, please note that your account will be deleted as well, to the extent the exceptions under applicable European data protection laws do not apply. When your account is deleted, all data stored in your account, whether it be Personal or non-Personal Data, will be deleted, to the extent the exceptions under applicable European data protection laws do not apply.
·Restrict the Personal Data We Can Process. You can use the Services and restrict the Personal Data we can process by disabling cookies, not registering an account with us, or emailing us at support@biowiki.com.hk. If you choose to restrict the Personal Data you provide and/or to disable cookies, you may not be able to use certain functionalities of our Services. For instance, in order to purchase goods and services on our Services, payment and shipping information must necessarily be provided.
·Objecting to Legitimate Interest/Direct Marketing. You may object to Personal Data processed pursuant to our legitimate interest. In such case, we will no longer process your personal data unless we can demonstrate appropriate, overriding legitimate grounds for the processing or if needed for the establishment, exercise, or defense of legal claims.
11.Data Transfers Outside the EEA
AquaID relies on appropriate Standard Contractual Clauses for appropriate transfer of your Personal Data outside of the EEA. Additionally, Personal Data may be transferred to or from our third party hosting service, Amazon Web Services (AWS). AWS delivers an industry-leading network of state-of-the-art data centers located around the world. Like AquaID, helping to protect the confidentiality, integrity, and availability of customer data is of the utmost importance to AWS, as is maintaining customer trust and confidence. AWS are certified under the US-EU and US-Swiss Privacy Shield and, in compliance with the Privacy Shield Principles, act as our agent with regard to data privacy. For more details of AWS’s privacy and security processes, please visit https://aws.amazon.com and https://aws.amazon.com/security/. By using the Services, you consent to your Personal Data being transferred as described herein.
12.Account and Data Deletion
If you wish to delete your account and associated personal data, you may do so by contacting us through emailing support@biowiki.com.hk with the subject line “Account and Data Deletion Request.” We may request additional information to verify your identity before proceeding with the deletion process. Once your request is received and verified, we will process your request in accordance with applicable laws and regulations, typically within 30 days. If you request AquaID to delete your personal data, please note that your account will be deleted as well.
13.Contact Us
If you have any questions regarding privacy while using our Services, or have questions about our practices, please contact our official email, at support@biowiki.com.hk.