Privacy Policy

Last updated: July 6, 2025

1. Introduction

Shenzhen Sunray Software Technology Co., Ltd. (hereinafter referred to as "we," "us," or "our") respects and protects your privacy. This Privacy Policy (hereinafter referred to as the "Policy") explains how we collect, use, store, and protect your personal information through the Solar Meta application (hereinafter referred to as the "App").

The App is an Internet of Things (IoT) application designed for photovoltaic (PV) inverter monitoring, enabling users to view and manage the operational status and power generation data of PV devices in real time.

Please read and fully understand this Policy before using the App. If you do not agree with any part of this Policy, please discontinue use of the App. Continued use of the App constitutes your acceptance of this Policy.

2. Information We Collect

To provide PV inverter monitoring services, we may collect the following information during your use of the App:

2.1 Account Information

When you register an account, we collect:

  • Email address
  • Password (stored in encrypted form)
  • Nickname

2.2 Device Binding Information

When you bind a PV inverter, we collect:

  • Device serial number (SN)
  • Device MAC address
  • Device name as set by you

2.3 Energy Operational Data

After binding a device, we continuously collect and store the following device operational data:

  • Power generation (daily/monthly/yearly/cumulative)
  • Real-time power output
  • Voltage and current
  • Device operational status
  • Fault and alarm event records

2.4 Bluetooth and Location Information

The App communicates with PV inverters via Bluetooth Low Energy (BLE) technology. On Android devices, Bluetooth scanning requires location permissions (ACCESS_FINE_LOCATION / ACCESS_COARSE_LOCATION).

Additionally, with your consent, we may collect your GPS location information to display the installation location of your PV devices on a map. This feature is optional — you may decline authorization without affecting the normal use of other App features.

2.5 WiFi Network Information

When you configure WiFi connectivity for your inverter through the App, the App temporarily accesses the WiFi network name (SSID) for the provisioning process. WiFi passwords are used only during device provisioning and are not uploaded to our servers.

2.6 Device and System Information

To ensure proper operation of the service, we collect:

  • Phone model and operating system version
  • App version number
  • Language preference settings
  • Timezone information (for correctly displaying time labels on device data)
  • IP address (for assigning the nearest data storage region and server security logging)

2.7 Information We Do Not Collect

To protect your privacy, we explicitly do not collect the following:

  • Your phone's device identifiers (e.g., Android ID, iOS IDFV, advertising identifiers)
  • Your contacts or address book
  • Your SMS or call records
  • Your photos, videos, or audio files

2.8 Sensitive Personal Information

We do not collect your sensitive personal information (such as racial or ethnic origin, political opinions, religious beliefs, health conditions, biometric characteristics, criminal records, etc.), and the App does not provide any channel for submitting such information. Please do not provide sensitive personal information to us via the support email or any other means.

3. How We Use Your Information

The information we collect is used for the following purposes:

  1. Core Service Delivery: Displaying real-time operational data, power generation statistics, and fault alerts for PV devices
  2. Device Management: Supporting device binding, configuration, firmware upgrades, and other management functions
  3. Account Security: Verifying user identity, protecting account security, and preventing fraud
  4. Service Improvement: Analyzing anonymized usage trends to optimize product features and user experience
  5. Aggregated Data: We may de-identify or anonymize your personal information to create aggregated data that cannot be used to identify you. Such aggregated data may be used for internal research purposes such as product optimization and industry trend analysis. Aggregated data does not constitute personal information and is not subject to this Policy.
  6. Legal Compliance: Complying with applicable laws, regulations, and regulatory requirements

4. Information Storage and Security

4.1 Data Storage Location

We adopt a proximity storage principle. Your data is stored on servers in the region closest to you:

  • Users in mainland China: Data stored in Shenzhen, China (Alibaba Cloud)
  • Users in the Middle East: Data stored in Dubai, UAE (Alibaba Cloud)

We automatically assign data storage regions based on your geographic location at the time of registration. Data will, in principle, not leave its designated storage region. If cross-border transfer becomes necessary (e.g., for technical support), we will implement encryption measures and bind the recipient through data processing agreements.

4.2 Security Measures

We implement the following security measures to protect your personal information:

  • Data transmission encrypted via TLS
  • Passwords stored using irreversible hashing algorithms
  • Sensitive credentials (e.g., authentication tokens) stored in the device's secure enclave (Keychain / Keystore)
  • Strict access controls and network security protection on the server side

4.3 Data Breach Response

Despite our strict security measures, if a personal data breach occurs, we will immediately activate our incident response plan, take remedial measures, promptly notify affected users through in-app notifications or registered email, and report to the relevant regulatory authorities as required by applicable law.

4.4 Data Retention Period

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected. After account deletion, we will delete or anonymize your personal information within a reasonable period, unless otherwise required by law. Energy operational data is retained until you actively delete the device or close your account.

5. Information Sharing and Disclosure

We do not sell your personal information to any third party. We may share or disclose your information only in the following circumstances:

  1. With your explicit consent
  2. When required by law or competent government authorities
  3. When necessary to protect the personal safety, property, or other significant legitimate rights and interests of us or the public
  4. In the event of a merger, acquisition, or bankruptcy liquidation involving the transfer of personal information, we will require the recipient to continue to be bound by this Policy

6. Third-Party Services

The App does not integrate any third-party analytics, advertising, or crash reporting SDKs. We do not share your usage data with any third-party analytics companies or advertising networks.

7. Your Rights

Under applicable laws and regulations, you have the following rights:

  1. Right of Access: You can view your personal information and device data within the App
  2. Right to Rectification: You can modify your nickname and other account information
  3. Right to Erasure: You can delete bound devices and their associated data
  4. Right to Withdraw Consent: You can revoke location, Bluetooth, and other permissions at any time through your device settings
  5. Right to Account Deletion: You can delete your account and associated data through the account deletion feature in the App, or by sending a request to software@gdsunray.com
  6. Right to Data Portability: You have the right to request a copy of your personal account data for the purpose of migrating to another service. To exercise this right, please contact us using the information provided at the end of this Policy.

To exercise any of the above rights or if you have any privacy-related concerns, please contact us using the information provided at the end of this Policy. We will respond to your request within 15 business days.

8. Children's Privacy

The App is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and become aware that your child has provided personal information through the App, please contact us and we will promptly delete such information.

9. Changes to This Policy

We may update this Policy from time to time. Material changes will be communicated to you in advance through in-app notifications or your registered email address. The updated Policy will be published on this page with an updated "Last updated" date. Continued use of the App constitutes your acceptance of the updated Policy.

10. Contact Us

If you have any questions, comments, or suggestions regarding this Privacy Policy, or wish to exercise your privacy rights, please contact us through the following: