Privacy Policy

If you are a user located in the Middle East, this Privacy Policy shall apply. If you are not in the Middle East, this Privacy Policy shall apply.

Privacy Policy

(If you are a user located in the Middle East, this Privacy Policy shall apply) Last updated: July 2020

Introduction

Welcome to Stalar's privacy policy. Stalar respects your privacy and is committed to protecting your personal data. This privacy policy will inform you as to how we look after your personal data when you visit our website (regardless of where you visit it from) and tell you about your privacy rights and how the law protects you. 1. IMPORTANT INFORMATION AND WHO WE ARE 2. THE DATA WE COLLECT ABOUT YOU 3. HOW WE USE YOUR PERSONAL DATA 4. HOW WE SHARE YOUR PERSONAL DATA 5. INTERNATIONAL TRANSFERS 6. DATA SECURITY 7. DATA RETENTION 8. YOUR LEGAL RIGHTS 9. CHILDREN PROTECTION 10. CONTACT INFORMATION

1. IMPORTANT INFORMATION AND WHO WE ARE

Purpose of this Privacy Policy

This privacy policy aims to give you information on how Stalar, provided by Stalar, collects and processes your personal data through your use of this service. This website is not intended for children and we do not knowingly collect data relating to children.
By accessing or using Stalar Services, you acknowledge that you have read this privacy policy. It is important that you read this privacy policy together with any other privacy policy or fair processing policy we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data.
If you have any questions about this privacy policy, including any requests to exercise your legal rights, please contact us using the details set out below.

Contact details

If you have any questions about this privacy policy or our privacy practices, please contact us in the following ways: [Hypestar Technology Pte. Ltd. Email address: care@stalar.sg Postal address: 30 Pasir Panjang Road #15-31A Mapletree Business City, Singapore 117440

Changes to the privacy policy and your duty to inform us of changes

We keep our privacy policy under regular review. We may amend any of the terms of the privacy policy by posting the terms. Your continued access to or use of the services after the date of the updated policy constitutes your acceptance of the updated policy. If you do not agree to the updated policy, you must stop accessing or using the services. It is important that the personal data we hold about you are accurate and current. Please keep us informed if your personal data changes during your relationship with us.

Third-party links

This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy policy of every website you visit.

2. THE DATA WE COLLECT ABOUT YOU

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data). We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows: • Profile information, we will collect information from third-party service providers when you authorize us to do so. For example, if you log in Stalar through third-party service providers, such as Imo, you authorize us to collect information from such third-party application account, including nickname, profile image and UID of Imo. • Device identifiers, including operating system version, device model, type, brand of devices, serial number of your device. • Payment information, including bank account number or other payment information where required for the purpose of payment. • Delivery information, including delivery address, country, telephone/phone number. Note that for users domiciled in the Saudi Arabia, we will need to collect your identity number if the amount of your purchased goods/services exceeds 1000 SAR for import compliance requirements. • Network activity information, such as your browsing history, search history, the pages you visited, and the date and time of your visits.

3. HOW WE USE YOUR PERSONAL DATA

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances: • Where you consent to provide with us of such personal data. • Where we need to perform the contract we are about to enter into or have entered into with you. • Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. • Where we need to comply with a legal obligation. We describe below the purposes we plan to use your personal data. • Provision of services: to present our service to you, including any goods/services on Stalar, and to provide you with information, products or services that may interest you. • Improvement of services: to improve and personalize our services by presenting new services, information, recommendations, and feedback; • Customer management: to manage a registered user’s account, to provide customer support and notices to the registered user about his account or subscription, and notices about changes to Stalar or any other product or service we offer or provide through it; • Communication: to communicate and interact with you directly, for an example, we may send notifications regarding upcoming changes, promotion activities or improvements on Stalar; • Customization of content: to perform research and analysis about your use of, or interest in contents, products, advertising, or services available on Stalar Services in order to develop and display content tailored to your interests on our website • Functionality and security: to diagnose or fix technology problems, and to detect, prevent, and respond to actual or potential fraud, illegal activities; • Compliance: to enforce our terms of use and to comply with our legal obligations; • Aggregation: to aggregate information we collect about you to which one or more purposes described above. • Cookies: We will collect cookies during your use of Stalar Services. Cookies are small pieces of data to enable us to provide certain features, which are collected by us or our business partners to measure and understand how you use Stalar, enhance your experience using Stalar. We may also collect, use and share your information to produce and share aggregated insights that do not identify you. Aggregated data may be derived from your personal data but is not considered personal data as this data do not directly or indirectly reveal your identity. For example, we may aggregate your usage data to calculate the percentage of users accessing a specific website feature, to generate statistics about our users, to calculate the percentage of users accessing a specific website feature, or to calculate ad impressions served or clicked on.

4. HOW WE SHARE YOUR PERSONAL DATA

We may share your personal data with certain authorized third parties to assist in the improvement and optimization of Stalar, in order to prevent illegal uses, increase user numbers, development, engineering and analysis of information or for our internal business purposes, including but not limited to: • to our business partners so that we can improve our services; • to analytics and search engine providers that assist us in the optimization and improvement of the user experience on our Services; • to any member, subsidiary, parent, or affiliate of our corporate group, to improve, optimize the Stalar and to prevent illegal use. • to third parties to whom we may choose to sell, transfer or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this privacy policy. Except for the above, we will not disclose or share with any third party your personal information, unless under the following circumstances: • if we obtained your consent, either implied or express; • if we are required to do so in order to comply with the applicable laws and regulations and government requests; • if we believe in our good faith that this is necessary to protect the public interest; • if it is necessary to do so to protect the safety and fundamental rights of another person; • if it is necessary to address fraud, security, or technical issues; and • if it is necessary to ensure the enforcement of our terms and conditions and the daily operation of our Services.

5. INTERNATIONAL TRANSFERS

We maintain servers around the world and your information collected by us may be stored and processed in your region, or in any other country where we or our affiliates, subsidiaries, partners, or service providers are located or maintain facilities. We take appropriate steps to ensure that the information we collected is processed in accordance with the privacy policy and the relevant applicable laws and regulations. If we provide any information about you to any legal agency, we will take appropriate measures to ensure such receiving institutes protect your information adequately in accordance with this privacy policy and the applicable laws.

6. DATA SECURITY

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know and they are subject to a duty of confidentiality. In addition, we use encryption in the transmission of certain your personal information between your system and ours, and we use firewalls to help prevent unauthorized persons from gaining access to your personal information. Please be advised, however, that we cannot fully eliminate security risks associated with the storage and transmission of your personal information. You should use caution whenever submitting information through our Services and take special care in deciding which information you provide us with.

7. DATA RETENTION

How long will you use my personal data for? We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, for contractual obligations and rights in relation to the information involved, or for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you. To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.

8. YOUR LEGAL RIGHTS

Under certain circumstances, you have some or all the following rights under data protection laws you reside in relation to your personal data. If you wish to exercise any of the rights set out above, please contact us at care@stalar.sg . What we may need from you We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response. • access to your personal data that you have provided with us by logging into your account and using the features and functionalities available there. • rectify your personal data retained on Stalar. • delete your acount, you will need to follow our instructions in order to delete your account. Once your account is deleted, you will not be able to restore your account and all your historical data on Stalar will be deleted after certain period of time (usually within 12 months), expect for certain behavioral data which will be anonymized for statistical research.

9. CHILDREN PROTECTION

Stalar is not directed to children, and if you are under the minimum age as required by the laws of the state of your domicile, you may not create use Stalar. We have zero tolerance to any form of child abuse or exploitation. Your data may be shared with legal agencies if we in our good faith believe that you have engaged in child abuse, or if we are requested to do so by relevant legal agencies.

10. CONTACT INFORMATION

Hyperstar Technology Pte. Ltd. 30 Pasir Panjang Road #15-31A Mapletree Business City, Singapore 117440 If you have any questions about this privacy policy or our information-handling practices, please contact us at care@stalar.sg.

Privacy Policy

(If you are not in the Middle East, this Privacy Policy shall apply) Last updated date: January, 2021 This Privacy Policy describes how Hypestar Technology Pte. Ltd. (“Stalar”, “We”)collects and processes your personal information through devices, products, services and applications that reference this Privacy Policy (together "Stalar Services"). By using Stalar Services, clicking "Log In" or “Register”, you are consenting to the practices described in this Privacy Policy.

Contact Information

Hypestar Technology Pte. Ltd. Email address: care@stalar.sg Postal address: 30 Pasir Panjang Road #15-31A Mapletree Business City, Singapore 117440

Table of Content

What Information Does Stalar Collect For What Purposes Does Stalar Process Your Personal Information? Cookies and Other Identifiers Does Stalar Share Your Personal Information? International Data Transfers Links to Other Websites or Applications Data Security What Choices Do You Have? Your Rights Children Retention of Your Information Changes and Updates to This Privacy Policy

What Information Does Stalar Collect?

We obtain information about you through the means discussed below when we provide the Stalar Services. Please note that we need certain types of information so that we can provide the Stalar Services to you. i. Information you give us ii. Collected Information for Legitimate Interests iii. Information from Other Sources We may collect some or all of the following Personal Information about you when you use Stalar Services for legitimate interests. • Information you give us: we receive and store any information you provide in relation to Stalar Services. You can choose not to provide certain information but then you might not be able to take advantage of many of our Stalar Services. • Collected Information for Legitimate Interests: we collect and store certain types of information for legitimate interests about your use of Stalar Services, such as information about your use, including your interaction with content and services available through Stalar Services. Like many websites, we use cookies and other unique identifiers and we obtain certain types of information when your web browser or device accesses Stalar Services and other content served by or on behalf of Stalar on other websites. • Information from other sources: we might receive information about you from other sources such as updated delivery and address information from our carriers, which we use to correct our records and deliver your next purchase more easily.

Information You Give Us When You Use Stalar Services

You provide information to us when you: • Search for products or services in our stores; • Place an order through Stalar Services; • Download, stream, view, or use content on a device, or through a service or application on a device; • Provide information in Your Account (and you might have more than one if you have used more than one e-mail address or mobile number when shopping with us), such as your name, nickname, gender, delivery information (including your address, postal code and telephone number) and your profile; • Configure your settings on, provide data access permissions for, or interact with an Stalar device or service; • Offer your products or services on or through Stalar Services; • Communicate with us by phone, e-mail, or we communicate and interact with you directly, for an example, we may send notifications regarding upcoming changes, promotion activities or improvements on Stalar Services; • Complete a questionnaire, a support ticket, or a contest entry form; • Compile Wish Lists or gift registries; • Participate in community features, provide and rate Customer Reviews; • Specify a Special Occasion Reminder; or • Receive our notices, such as order notifications, delivery notices, coupon notices and notifications related to changes of price. As a result of those actions, you might supply us with the following information: • Your account and registration information, such as your name, nickname, language, username, gender and date of birth, address, phone number (or email, if applicable), password, user identifier and profile image; • Payment information, such as your bank account information collected for refund, withdrawal of money or other actions in relation to Stalar Services; • Your location information, and people, addresses and phone numbers listed in your Addresses; • User-generated contents, such as reviews, comments, texts, messages, pictures, images, and personal description and photograph in Your Profile; • Your opt-in choices and correspondence with us, such as information used to verify with your account or to resolve your feedback or complaints; • Information you provide when participating in in-app surveys and activities; • Images and videos collected or stored in connection with Stalar Services; and • Device log files and configurations, including Wi-Fi credentials, if you choose to automatically synchronise them with your other Stalar devices.

Collected Information for Legitimate Interests

Examples of the information we collect for legitimate interests may include: • The location of your device or computer; • Content interaction information, such as content downloads, streams, and playback details including duration and number of simultaneous streams and downloads, and network details for streaming and download quality, including information about your internet service provider; • Device metrics, such as when a device is in use, application usage, connectivity data, and any errors or event failures; • Stalar Service metrics (e.g., the occurrences of technical errors, your interactions with service features and contents, your settings preferences and backup information, location of your device running an application, information about uploaded images and files (e.g., file name, dates, times and locations of your images); • Version and time zone settings; • Transaction Records, such as costs, products purchased and details of transactions. We use this information to facilitate your payment and maintain a record of your transaction histories. • Mobile advertising identifiers, which are used by mobile operating systems and made available to advertising providers to gather metrics on mobile apps (Apple’s IDFA or Google’s AAID) to help us to deliver customized recommendations; • Device information, such as your device identifier, operating system, browser type, brand, model and serial number of your mobile device, Internet Protocol (IP) address, mobile carrier, screen resolution, language setting, IMEI number, IMSI number, and media access control address; • Network activity information, such as purchase history, browsing history and content use history, which we sometimes aggregate with similar information from other customers to create features and deliver customized recommendations; • The full Uniform Resource Locators (URL) clickstream to, through and from our website (including date and time); cookie number; products and/ or content you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs); and • Images or videos when you shop in our stores using Stalar Services. We may also use other technologies on devices, applications and our web pages to collect browsing, usage or other technical information for fraud prevention purposes.

Information from Other Sources

Examples of information we receive from other sources may include: • When you access the Stalar Services through social media networks or accounts, or when you connect the Stalar Services to social media networks, you are authorizing Stalar to collect, store, and use such additional information and content in accordance with this Privacy Policy, such as your profile image, name or nickname; • Updated delivery and address information from our carriers or other third parties, which we use to correct our records and deliver your next purchase or communication more easily; • Account information, purchase or redemption information and page-view information from some merchants with which we operate co-branded businesses or for which we provide technical, fulfillment, advertising or other services; • Information about your interactions with products and services offered by our subsidiaries; • Search results and links; • Credit history information from credit bureaus or other authorities, which we use to help prevent and detect fraud and to offer certain credit or financial services to some customers.

For What Purposes Does Stalar Process Your Personal Information?

We process your personal information to operate, provide, and improve the Stalar Services that we offer our customers. These purposes include: • Purchase and delivery of products and services. We use your personal information to take and handle orders, deliver products and services, process payments, and communicate with you about orders, products and services, and promotional offers. • Provide, troubleshoot, and improve Stalar Services. We use your personal information to provide functionality, analyse performance, fix errors, and improve usability and effectiveness of the Stalar Services. • Recommendations and personalisation. We use your personal information to recommend features, products, and services that might be of interest to you, identify your preferences, and personalise your experience with Stalar Services. • Provide voice, image and camera services. When you use our voice, image and camera services, we process your voice input, images, videos, and other personal information to respond to your requests, provide the requested service to you, and improve our Stalar services. • Comply with legal obligations. In certain cases, we collect and use your personal information to comply with laws. • Communicate with you. We use your personal information to communicate with you in relation to Stalar Services via different channels (e.g., by phone, email, chat). • Fraud prevention and credit risks. We process personal information to prevent and detect fraud and abuse in order to protect the security and legitimate right of our customers, Stalar, and others. • Purposes for which we seek your consent. We may also ask for your consent to process your personal information for a specific purpose that we communicate to you. When you consent to our processing your personal information for a specified purpose, you may withdraw your consent at any time and we will stop processing of your data for that purpose.

Cookies and Other Identifiers

We and service providers use cookies and other similar technologies (e.g., web beacons, flash cookies, etc.) (“Cookies”) to automatically collect information, measure and analyze which web pages you click on and how you use the Platform, enhance your experience using the Platform and improve our services. Cookies are small files which, when placed on your device, enable the Platform to provide certain features and functionality. Web beacons are very small images or small pieces of data embedded in images, also known as “pixel tags” or “clear GIFs,” that can recognize Cookies, the time and date a page is viewed, a description of the page where the pixel tag is placed, and similar information from your computer or device. By using the Platform, you consent to our use of Cookies. Additionally, we link your contact or subscriber information with your activity on our Platform across all your devices, using your email or other log-in or device information. We are not responsible for the privacy practices of these third parties, and the information practices of these third parties are not covered by this Privacy Policy. You may be able to refuse or disable Cookies by adjusting your browser settings. Because each browser is different, please consult the instructions provided by your browser. Please note that you may need to take additional steps to refuse or disable certain types of Cookies. In addition, your opt-out selection is specific to the particular browser or device that you are using when you opt out, so you may need to opt out separately for each of browser or device. If you choose to refuse, disable, or delete Cookies, some of the functionality of the Platform may no longer be available to you.

Does Stalar Share Your Personal Information?

Information about our customers is an important part of our business and we do not sell our customers' personal information to others. Stalar shares customers' personal information only as described below and with our affiliates and subsidiaries. • Transactions involving third parties: We make available to you services, products, applications, or skills provided by third parties for use on or through Stalar Services. For example, you can order products from third parties through our stores. We may also offer services or sell product lines jointly with third-party businesses. You can tell when a third party is involved in your transactions and we share customer personal information related to those transactions with that third party. • Third-party service providers: We employ other companies and individuals to perform functions on our behalf. Examples include fulfilling orders for products or services, delivering packages, sending postal mail and e-mail, removing repetitive information from customer lists, analysing data, providing marketing assistance, providing search results and links (including paid listings and links), processing payments, transmitting content, assessing and managing credit risk, and providing customer service. These third-party service providers have access to personal information needed to perform their functions, but may not use it for other purposes. Further, they must process the personal information in accordance with this Privacy Policy and as permitted by applicable data protection laws. • We may share your Personal Information outside of Stalar Services when we have your consent. • We may disclose your Personal Information to members of our corporate group (that is, entities that control, are controlled by, or are under common control with us) to the extent this is necessary for services, customer management, customization of content, advertising, analytics, verifications, functionality and security, and compliance. • We may disclose or share your Personal Information to a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation or similar proceeding, in which Personal Information held by us about our users is among the assets transferred. If such a sale or transfer occur, we will use reasonable efforts to try to ensure that the entity to which we transfer your Personal Information uses information in a manner that is consistent with this privacy policy. • We access, preserve and share your Personal Information with regulators, law enforcement or others where we reasonably believe such disclosure is needed to (a) comply with any applicable law, regulation, legal process, or governmental request, (b) enforce applicable terms of use, including investigation of potential violations thereof, (c) detect, prevent, or otherwise address illegal or suspected illegal activities, security or technical issues, (d) protect against harm to the rights, property or safety of our company, our users, our employees, or other third parties; or (e) to maintain and protect the security and integrity of Stalar Services or infrastructure.

International Data Transfers

Your Personal Information may be processed by us, our trusted third-party suppliers outside of the country (s) in which you reside, including in countries where data protection and privacy laws or regulations may be equivalent to, or as protective as, the data protection laws and regulations in your country. In accordance with applicable data protection and privacy laws and regulations, we will implement appropriate measures to ensure that your personal information remains protected and secure when it is transferred outside of your country to a jurisdiction that has a less adequate level of protection of personal data. These measures include (where applicable) transferring pursuant to data transfer agreements implementing standard data protection clauses. We may also transfer your personal information outside of your country as permitted by applicable data protection and privacy laws and regulations. Examples include where we need to transfer your personal information: (a) to perform a contract with you (or to take steps before the contract at your request); (b) perform a contract in your interests; or (c) in relation to legal claims.

Links to Other Websites or Applications

When you click on a link to any other website, mobile application or third-party content through Stalar Services, you will go to another website or other mobile application and another entity may collect information from or about you. We have no control over, do not review, and cannot be responsible for, these third-party websites or mobile applications or their contents. Please be aware that the terms of this privacy policy do not apply to these third-party websites or mobile applications or content, or to any collection of information after you click on links to these third-party websites, mobile applications or content.

Data Security

We take appropriate administrative, technical and physical security measures to safeguard your Personal Information from unauthorized access and disclosure. For example, only authorized employees are permitted to access Personal Information, and they may do so only for permitted business functions. In addition, we use firewalls to help prevent unauthorized persons from gaining access to your Personal Information. Please be advised, however, that we cannot fully eliminate security risks associated with the storage and transmission of your Personal Information. You should use caution whenever submitting information through Stalar Services and take special care in deciding which information you provide us with. You are responsible for maintaining the secrecy of your password and account information at all times. We recommend using a unique password for your Stalar account that is not utilized for other online accounts. Be sure to sign off when you finish using a shared computer.

What Choices Do You Have?

If you have any questions about how we collect and process your personal information, please contact our Customer Service at Contact Us function. Many of our Stalar Services also include settings that provide you with options as to how your information is being used. • As described above, you can choose not to provide certain information but then you might not be able to take advantage of many of the Stalar Services. • If you don't want to receive in-app notifications from us, please adjust your notification settings in your device. • The Help feature on most browsers and devices will tell you how to prevent your browser or device from accepting new cookies, how to have the browser notify you when you receive a new cookie or how to disable cookies altogether. Because cookies allow you to take advantage of some essential features of Stalar Services, we recommend that you leave them turned on. For instance, if you block or otherwise reject our cookies, you will not be able to add items to your Shopping Basket, proceed to Checkout, or use any Stalar Services that require you to Sign in. • If you want to browse our websites without linking browsing activity to your account, you may do so by disabling cookies on your browser.

Your Rights

You have the following rights with respect to our collection of the Personal Information we collect about you. We will respond to your request consistent with the applicable laws as soon as practicable, normally within one month, after proper verification procedures. Your exercise of these rights is usually free of charge, unless we deem it is chargeable under the applicable laws. Right to access-You may submit a request to access the Personal Information we collect about you by (a) using Contact Us function on Stalar Services or (b) sending your request to us via email at care@stalar.sg. Right to rectification-You may submit a request to rectify the Personal Information we collect about you by (a) using Contact Us function on Stalar Services or (b) sending your request to us via email at care@stalar.sg. Right to erasure-You may submit a request to erase the Personal Information we collect about you by (a) using Contact Us function on Stalar Services or (b) sending your request to us via email. Though we cannot guarantee a complete erasure of your data that has been stored in our backup servers, we promise that we will not use the data within the backup servers for any other purpose. Right to data portability-You may ask us to transfer some of your Personal Information, if it is collected on the basis of your consent, in structured, commonly used and machine-readable formats to you or other environments designated by you, if technically feasible, by (a) using Contact Us function on Stalar Services or (b) sending your request to us via email at care@stalar.sg. Right to withdraw consent-You may withdraw your consent and ask us not to continue to collect or process your Personal Information at any time if that information is collected on the basis of your consent by (a) using Contact Us function on Stalar Services or (b) sending your request to us via email. Your exercise of this right will not affect the processing activities that occurred before your withdrawal. Right to restrict processing-You may request us to stop processing your Personal Information if you believe such information is collected unlawfully or you have other reason by (a) using Contact Us function on Stalar Services or (b) sending your request to us via email at care@stalar.sg. We will examine your request and respond accordingly. Right to object-You may object to the processing of any Personal Information we collect about you, if such information is collected on the basis of legitimate interests, at any time by (a) using Contact Us function on Stalar Services or (b) sending your request to us via email at care@stalar.sg. Please note that we may reject your request if we demonstrate compelling legitimate grounds for the processing, which override your interests and freedom or the processing is for the establishment, exercise, or defense of legal claims. In addition to the foregoing rights, you also have the right to lodge complaints to the competent data protection authority (“DPA”), usually the DPA of your home country.

Children

Stalar doesn't sell products for purchase by children. We sell children's products for purchase by adults. If you're under 16, you may use Stalar Services only with the involvement of a parent or guardian. We do not knowingly collect or maintain personal information from persons under 16 years-of-age. If we learn that Personal Information of persons under 16 has been collected on or through the Stalar Services, we will take appropriate steps to delete this information. If you believe that we have inappropriately collected Personal Information from a young user, please contact us at care@stalar.sg.

Retention of Your Information

We will retain your Personal Information and other information for as long as you maintain your Stalar account. We keep your personal information to enable your continued use of Stalar Services, for as long as it is required in order to fulfil the relevant purposes described in this Privacy Policy, as may be required by law such as for tax and accounting purposes, or as otherwise communicated to you. You may request deletion of your account at any time by sending email to care@stalar.sg. Following such request with appropriate review or verification by us, we will delete the data that it is not required to retain for purposes of regulatory, tax, insurance, litigation, or other legal requirements. If there is a pending settlement, compliant, dispute or any other controversy between you, your account, and Stalar or any other third party, we may reject your application. In addition, we may be unable to delete your account, such as if there’s a balance on the account. Upon resolution of the aforesaid issues preventing deletion, we will delete the account as described above.

Changes and Updates to This Privacy Policy

We may modify or revise our privacy policy from time to time. Although we may attempt to notify you when major changes are made to this privacy policy, you are expected to periodically review the most up-to-date version found at Stalar Services so you are aware of any changes, as they are binding on you. If we change anything in our privacy policy, the date of change will be reflected in the “last updated date”. By continuing to access or use the Services after those changes become effective, you agree to be bound by the revised Privacy Policy.

California Privacy Disclosure

This California Privacy disclosure page supplements the Stalar Privacy Policy. These additional disclosures are required by the California Consumer Privacy Act. This privacy disclosure page applies to California residents and information that identifies, relates to, describes, or could reasonably be linked, directly or indirectly, with California consumers (“California Information”).

Categories of Personal Information Collected

The personal information that Stalar collects, or has collected from you in the twelve months prior to the effective date of this disclosure page, fall into the following categories. • Your account and registration information, such as your name, nickname, language, username, gender and date of birth, address, phone number (or email, if applicable), password, user identifier and profile image; • Payment and transaction information, such as your bank account information collected for refund, withdrawal of money, and costs, products purchased and details of transactions, or other actions in relation to Stalar Services. We use this information to facilitate your payment and maintain a record of your transaction histories. • Your location information, and people, addresses and phone numbers listed in your Addresses, and the location of your device or computer; • User-generated contents, such as reviews, comments, texts, messages, pictures, images, and personal description and photograph in Your Profile; • Your opt-in choices and correspondence with us, such as information used to verify with your account or to resolve your feedback or complaints; • Information you provide when participating in in-app surveys and activities; • Images and videos collected or stored in connection with Stalar Services; • Device log files and configurations, including Wi-Fi credentials, if you choose to automatically synchronise them with your other Stalar devices; • Content interaction information, such as content downloads, streams, and playback details including duration and number of simultaneous streams and downloads, and network details for streaming and download quality, including information about your internet service provider; • Device metrics or information, such as when a device is in use, application usage, connectivity data, any errors or event failures, version, time zone settings, your device identifier, operating system, browser type, brand, model and serial number of your mobile device, Internet Protocol (IP) address, mobile carrier, screen resolution, language setting, IMEI number, IMSI number, and media access control address; • Stalar Service metrics (e.g., the occurrences of technical errors, your interactions with service features and contents, your settings preferences and backup information, location of your device running an application, information about uploaded images and files (e.g., file name, dates, times and locations of your images); • Mobile advertising identifiers, which are used by mobile operating systems and made available to advertising providers to gather metrics on mobile apps (Apple’s IDFA or Google’s AAID) to help us to deliver customized recommendations; • Network activity information, such as purchase history, browsing history and content use history, which we sometimes aggregate with similar information from other customers to create features and deliver customized recommendations; • The full Uniform Resource Locators (URL) clickstream to, through and from our website (including date and time); cookie number; products and/ or content you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs); • Images or videos when you shop in our stores using Stalar Services; • When you access the Stalar Services through social media networks or accounts, or when you connect the Stalar Services to social media networks, you are authorizing Stalar to collect, store, and use such additional information and content in accordance with this Privacy Policy, such as your profile image, name or nickname; • Information about your interactions with products and services offered by our subsidiaries; and • Credit history information from credit bureaus or other authorities, which we use to help prevent and detect fraud and to offer certain credit or financial services to some customers.

Categories of Personal Information Disclosed for a Business Purpose

The personal information that Stalar disclosed about you for a business purpose in the twelve months prior to the effective date of this Disclosure fall into the following categories: • Payment and transaction information, such as refund and order information; • Your location information, and people, addresses and phone numbers listed in your Addresses; • Device information, such as when a device is in use, application usage, connectivity data, any errors or event failures, version, time zone settings, your device identifier, operating system, browser type, brand, model and serial number of your mobile device, Internet Protocol (IP) address, mobile carrier, screen resolution, language setting, IMEI number, IMSI number, and media access control address; • Stalar Service metrics (e.g., the occurrences of technical errors, your interactions with service features and contents, your settings preferences and backup information, location of your device running an application, information about uploaded images and files (e.g., file name, dates, times and locations of your images); • Mobile advertising identifiers, which are used by mobile operating systems and made available to advertising providers to gather metrics on mobile apps (Apple’s IDFA or, Google’s AAID and GAID); • Network activity information, such as purchase history, browsing history and content use history, which we sometimes aggregate with similar information from other customers to create features and deliver customized recommendations; • The full Uniform Resource Locators (URL) clickstream to, through and from our website (including date and time); cookie number; products and/ or content you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs).

We disclose personal information to the following types of entities:

• Transactions involving third parties: We make available to you services, products, applications, or skills provided by third parties for use on or through Stalar Services. For example, you can order products from third parties through our stores. We may also offer services or sell product lines jointly with third-party businesses. You can tell when a third party is involved in your transactions and we share customer personal information related to those transactions with that third party. • Third-party service providers: We employ other companies and individuals to perform functions on our behalf. Examples include fulfilling orders for products or services, delivering packages, sending postal mail and e-mail, removing repetitive information from customer lists, analysing data, providing marketing assistance, providing search results and links (including paid listings and links), processing payments, transmitting content, assessing and managing credit risk, and providing customer service. These third-party service providers have access to personal information needed to perform their functions, but may not use it for other purposes. Further, they must process the personal information in accordance with this Privacy Policy and as permitted by applicable data protection laws. • We may share your Personal Information outside of Stalar Services when we have your consent. • We may disclose your Personal Information to members of our corporate group (that is, entities that control, are controlled by, or are under common control with us) to the extent this is necessary for services, customer management, customization of content, advertising, analytics, verifications, functionality and security, and compliance. • We may disclose or share your Personal Information to a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation or similar proceeding, in which Personal Information held by us about our users is among the assets transferred. If such a sale or transfer occur, we will use reasonable efforts to try to ensure that the entity to which we transfer your Personal Information uses information in a manner that is consistent with this privacy policy. • We access, preserve and share your Personal Information with regulators, law enforcement or others where we reasonably believe such disclosure is needed to (a) comply with any applicable law, regulation, legal process, or governmental request, (b) enforce applicable terms of use, including investigation of potential violations thereof, (c) detect, prevent, or otherwise address illegal or suspected illegal activities, security or technical issues, (d) protect against harm to the rights, property or safety of our company, our users, our employees, or other third parties; or (e) to maintain and protect the security and integrity of Stalar Services or infrastructure.

Your California Privacy Rights

You may have the right under the California Consumer Privacy Act to request information about the collection of your personal information by Stalar, or access to or deletion of your personal information. If you wish to request information about the collection of your personal information, please send an email to us via care@stalar.sg. If you wish to delete your personal information, please send an email to us via care@stalar.sg. Please note that certain information may be exempt from such requests under California law and that, depending on your data choices, certain services may be limited or unavailable. No sale of personal information. In the twelve months prior to the effective date of this Disclosure, Stalar has not sold any personal information of you, as those terms are defined under the California Consumer Privacy Act. No discrimination. Stalar will not discriminate against any consumer for exercising their rights under the California Consumer Privacy Act.