Privacy Policy

Hong Kong AuraAI Technology Limited (hereinafter referred to as "the Company" or "we") is the operator of FateTell. We attach great importance to your privacy. This Privacy and Personal Information Protection Policy (hereinafter referred to as "Privacy Policy") applies to your access to and use of all FateTell services by any means.

To safeguard your rights and interests, please read the following Privacy Policy in its entirety. This Privacy Policy is designed to help you understand what personal information we collect, why we collect such personal information, what we do with such personal information, and how we protect such personal information.

You are strongly advised to read this Privacy Policy carefully and to use FateTell services only after you have confirmed that you fully understand this Privacy Policy. If you or your guardian do not agree with any part of this Privacy Policy, you should immediately cease using the services. Please ensure that the personal information you provide to us, and the personal information you authorize us to collect, process, use, and store within the scope described in this Privacy Policy, does not infringe upon the lawful rights and interests of any third party. If you or your guardian do not agree with any part of this Privacy Policy, you should immediately cease using the services. Your use of, or continued use of, our services shall constitute your full understanding of and consent to the entire contents of this Privacy Policy.

If you have any questions or suggestions regarding the Terms of Use and Privacy Policy of this application, please contact contact@fatetell.com. To enable us to process your inquiry efficiently and provide timely feedback, you will need to submit proof of identity, valid contact information, a written request, and relevant supporting evidence. We will process your request after verifying your identity. Under normal circumstances, we will respond within fifteen (15) days.

I. How We Collect and Use Personal Information

1.1 Registration and Login

When you register for or log in to a FateTell account, we will require you to provide certain personal information, including but not limited to your email address, mobile phone number, and login password. We collect such information to assist you in completing account registration, to protect the security of your account, and to comply with applicable laws and regulations. If you do not provide such information, we will be unable to create an account for you or allow you to log in and access our services.

1.2 Personal Profile

When you complete your personal profile, you may provide information such as your avatar, username, gender, date of birth, age, and place of birth. We collect such information to assist you in completing your personal profile.

1.3 Personal Records

When you interact with characters within FateTell, depending on your specific needs, we may need to collect personal information such as your profile nickname, gender, date and time of birth, place of birth, current place of residence, and time zone. We collect such information to enable you to use FateTell and to engage in divination and entertainment features. If you do not provide such information, we will be unable to provide you with certain FateTell services due to the lack of necessary information.

1.4 Conversation Information

Once you have successfully connected to our services, you may engage in interactive conversations with our characters through the dialogue interface. We will automatically receive and record the conversation information that you voluntarily input during your interactions with FateTell characters, and use such information to generate output content for the purpose of providing human-machine interactive services. During conversations, you may also provide feedback on the content generated by FateTell, including likes, dislikes, and similar evaluations. We will collect your feedback information, including error reports that you voluntarily submit, in order to continuously improve the quality of FateTell's output. If you decline to allow us to collect and process the aforementioned personal information, please exercise caution when entering such information; however, doing so may affect your ability to use some or all of FateTell's features.

1.5 Historical Records

To provide you with a continuous and consistent user experience and to ensure service quality, we will record your personal conversation history, including the conversation information you input and the conversation topics derived therefrom. You may search for and manage your question-and-answer history that has not been deleted. Please be aware that, in order to comply with applicable laws and regulations and to fulfill our network information security obligations, we will retain your question-and-answer history and conversation topics for the period permitted by law.

1.6 In-App Purchases and Transaction Information

FateTell offers paid value-added services, including subscription services (e.g., monthly or annual subscriptions) and pay-per-use services (e.g., purchasing a specified number of divination sessions). When you make a purchase, all payments are processed through Apple's App Store In-App Purchase system. We do not directly collect or store sensitive payment information such as your credit card numbers or bank account details. We will collect your transaction records, including the services purchased, the order number generated by Apple, the transaction time, the transaction amount, and the order status. We collect such information to process your orders, confirm your subscription status, provide after-sales services, and enable you to review your purchase history. When you choose to make a tip or purchase value-added services, we need to collect your transaction and consumption records, including the content of the transaction, order number, transaction time, transaction amount, payment method, payment account, and order status. If we do not collect such information, we will be unable to provide you with the tipping feature and value-added services; however, this will not affect your normal use of our other services.

1.7 Network and Device Information

To ensure the safe and stable operation of this application and to prevent network risks, we will collect your device information (including device model, operating system version, and IDFA), IP address, network type, access date and time, IMEI, Android ID (Android devices only), MAC address, OAID, IMSI, ICCID, BSSID, serial number, MCC+MNC, and device model), as well as network log information and other log data. Special note: In accordance with Apple's policies, we will only collect your Advertising Identifier (IDFA) after obtaining your explicit authorization through the iOS App Tracking Transparency (ATT) framework. You may manage this authorization at any time in your system settings. We collect such information to ensure the security and stability of your access to our network, to reduce security risks associated with your use of our services, and to ensure the stable operation of network access and our products and services. If you do not provide such information, we will be unable to guarantee the safe operation of the application during your use.

1.8 Data Analytics

In accordance with applicable laws and regulations, we will apply technical measures to de-identify or anonymize personal information as necessary; such processed information will not be capable of precisely identifying any specific individual. Please understand and agree that, to the extent that your personal information is not disclosed and applicable laws and regulations are not violated, we reserve the right to analyze and utilize user data, including but not limited to using technically processed conversation information to enhance FateTell's ability to understand your input, so as to continuously improve the speed and quality of FateTell's recognition and response capabilities and to enhance FateTell's intelligence.

1.9 Third-Party Use

We currently provide personal information to third parties in certain circumstances. FateTell uses third-party artificial intelligence large language model products (such as OpenAI). To fulfill your usage requirements, we may provide certain of your personal information to such large language model products. However, we adhere to the principle of data minimization when providing such information to third parties, and in accordance with applicable laws and regulations, we apply technical measures to de-identify or anonymize personal information as necessary; such processed information will not be capable of precisely identifying any specific individual.

1.10 Account Security

When you manage your account security settings, you may provide your email address or Google account. We collect such information to enhance the security of your account, enabling you to recover your account in the event that you forget your password or lose access. If you decline to provide such information, you will be unable to use the account security management and third-party account recovery features; however, this will not affect your normal use of our other services.

1.11 Cookies

To ensure the proper functioning of this application, to provide you with a more convenient browsing experience, or to recommend content that may be of interest to you, we may store Cookies, Flash Cookies, or other local storage typically containing identifiers, site names, and certain numbers and characters provided by your browser (or associated applications) on your computer or mobile device (collectively referred to as "Cookies"). If your browser or browser add-on service permits, you may modify the extent to which you accept Cookies or reject our Cookies. For details, please refer to: https://www.aboutcookies.org/. However, doing so may, in certain circumstances, affect your ability to securely access this application and may require you to modify your user settings each time you access our application.

1.12 Third-Party SDKs

To ensure the stable operation of FateTell and the implementation of related service features, this application embeds software development kits (SDKs) or similar applications from our business partners. We conduct rigorous security monitoring of SDKs that obtain information through our business partners, and endeavor to process personal information in accordance with this Privacy Policy and any other applicable confidentiality and security measures to safeguard data security.

1.13 Interaction Information

During your use of FateTell, we will collect your interaction records, including conversations, usage behavior, purchase behavior, interaction behavior, chat behavior, navigation paths, dwell time, and browsing and click records. We collect such information to provide you with higher-quality services, and the scope of use of such information may include but is not limited to the improvement of artificial intelligence algorithms, training, and the provision of improvement recommendations. Such information will serve as a reference for improving our products and services and will be used solely for internal analysis. We undertake not to disclose such information publicly.

1.14 Information Security

To safeguard the security of your information, please keep your network passwords and personal information secure and avoid disclosing your private information, such as your address, telephone number, and account credentials, to others.

1.15 Statutory Circumstances

In accordance with applicable laws and regulations, we may process your personal information without obtaining your consent in the following circumstances:

1. Where necessary for the conclusion or performance of a contract to which you are a party;
2. Where necessary for the performance of statutory duties or obligations;
3. Where necessary to respond to public health emergencies, or to protect the life, health, and property of natural persons in emergency situations;
4. Where personal information is processed within a reasonable scope for the purpose of news reporting, public opinion supervision, or other activities carried out in the public interest;
5. Where personal information that you have made public yourself, or that has otherwise been lawfully made public, is processed within a reasonable scope in accordance with applicable laws and regulations;
6. Where necessary to maintain the safe and stable operation of the services provided, such as detecting and resolving service malfunctions;
7. Other circumstances as provided by laws and administrative regulations.

II. How We Store Personal Information

2.1 Retention Period

We will retain your personal information for the period necessary to fulfill the purposes set forth in this Privacy Policy and as required by applicable laws and regulations. Upon expiration of the aforementioned period, we will delete or anonymize your personal information.

2.2 Storage Location

All user personal information generated and collected during the course of our product operations is stored in the Hong Kong region.

III. Information Security and Protection Measures

3.1 Public Disclosure

As a matter of principle, we do not publicly disclose your personal information. Should it become necessary to publicly disclose your personal information, we will obtain your separate consent or satisfy other conditions as required by applicable laws and regulations.

3.2 Administrative Measures

We have adopted industry-standard data protection technologies and administrative measures, including but not limited to network isolation, data encryption, and employee access controls, to prevent unauthorized access, disclosure, alteration, loss, or destruction of personal information.

3.3 Employee Confidentiality

All employees of the Company have received comprehensive confidentiality training and fully understand that protecting the confidentiality of user data is a fundamental duty. Any breach of confidentiality obligations will be subject to penalties in accordance with applicable laws and regulations and the Company's internal policies.

3.4 Uncontrollable Risks

We also ask that you understand that, due to the inherent limitations and rapid evolution of technology in the internet industry and the existence of various potential malicious attack vectors, even with our best efforts to enhance security measures, it is not possible to guarantee the absolute security of information at all times. Please be aware that the systems and communication networks you use when accessing our services may be subject to security issues arising in environments beyond our control.

3.5 Information Security Incidents

In the unfortunate event of a personal information security incident, we will, in accordance with applicable laws and regulations, promptly notify you of the basic circumstances of the security incident and its potential impact, the remedial measures we have taken or intend to take, suggestions for actions you may take to mitigate risk, and the remedies available to you. We will promptly inform you of the relevant circumstances of the incident via in-app notifications, SMS, telephone, email, or other contact methods you have provided. Where it is impracticable to notify each individual, we will issue a public announcement through reasonable and effective means. We will also proactively report the handling of the personal information security incident to the relevant regulatory authorities as required (if applicable).

IV. Third-Party AI Usage

This section specifically provides transparent disclosure regarding data processing practices in connection with the integration of third-party artificial intelligence (AI) services in this application, in compliance with the requirements of the European Union General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable regulations.

4.1 Third-Party AI Service Providers

We currently use the following three third-party AI service providers. When you use AI-related features, certain of your data will be transmitted to these service providers for processing.

GDPR Legal Basis Statement: Our legal basis for processing data is Legitimate Interests, meaning processing that is necessary to provide you with the core AI features you have requested. You have the right to object to such processing; please refer to the user rights provisions in the main Privacy Policy for details. If you do not wish your data to be transmitted to third-party AI service providers, you may disable AI-related features under "My > Privacy > AI Features." Once disabled, your input content will no longer be transmitted to third-party AI service providers.

4.2 Data Transmission Description

Data Transmitted to AI Service Providers

When you use AI-related features, we transmit only the following necessary data:

• Text content you actively input (such as conversation messages, content generation requests, etc.)
• Session context information (such as feature category, anonymous session ID)
• Device language and regional settings (used to improve response quality)

Data Not Transmitted to AI Service Providers

The following data will not be transmitted to any third-party AI service provider, unless such information is actively included by you in your input content:

• Your name, email address, mobile phone number, and other personally identifiable information
• Payment information or account passwords
• Precise geolocation
• Apple Advertising Identifier (IDFA) or other device tracking identifiers

4.3 International Data Transfers

To our knowledge, the servers of the three AI service providers listed above are all located in the United States. If you are located in the European Union/European Economic Area (EEA) or the United Kingdom, your data will be transferred to a third country (i.e., the United States) that has not been deemed by the European Commission to provide an adequate level of data protection.

Transfer safeguards: We access the aforementioned services through standard API integration. All three service providers have made data protection commitments in their developer-facing terms of service, including the implementation of Standard Contractual Clauses (SCCs) or participation in relevant privacy framework certifications. You may review the specific safeguard measures of each service provider directly through the links provided in the table above.

For detailed documentation regarding the cross-border transfer safeguards of each service provider, please visit their official privacy policy pages directly (links provided in the table above).

4.4 Data Retention and Model Training Statement

Data Retention by Third-Party AI Service Providers

When we invoke third-party AI services via API, each service provider processes request data on its own servers. Specific retention periods are subject to each service provider's most current privacy policy. The following is provided for reference:

• OpenAI API: Data is deleted by default after thirty (30) days; API call data is not used for model training
• Anthropic API: API call data is not used for model training by default; for specific retention periods, please refer to their official privacy policy (https://anthropic.com/privacy)
• Google Gemini API: API call data is not used for model training by default; for specific retention periods, please refer to their official data processing terms (https://policies.google.com/privacy)

We recommend periodically reviewing each service provider's official website for the most current data retention policy information.

Model Training Statement

Regarding our own practices: We do not use your conversation content to train AI models.

Regarding third-party service providers: The service providers we have selected have committed in their standard API terms that data submitted via API will not be used to train their models by default. However, specific terms are subject to each service provider's most current policies, and we are unable to make binding commitments on their behalf. We recommend that you review each service provider's privacy policy directly for confirmation (links provided in the table above).

4.5 User Rights and Data Deletion

If you wish to exercise your rights regarding the data processed by third-party AI service providers (including access, rectification, or deletion), please note that as an API consumer, we do not have direct access to or the ability to operate on data stored on third-party service providers' servers. Accordingly, please contact the relevant service provider directly and submit your request through their privacy policy page (links provided in the table above).

If you wish to cease data transmission to third-party AI service providers, you may disable AI-related features at any time under "My > Privacy > AI Features." If you wish to delete data related to you that is stored by us, please contact us through the contact methods specified in the main Privacy Policy.

V. Your Choices and Rights

5.1 Information Management

During your use of FateTell, you may access, copy, correct, supplement, and delete your personal information, as well as exercise your rights to modify the scope of your authorized consent and to deactivate your account.

5.2 Access and Copying

If you wish to access or copy the question-and-answer history associated with your account, you may view your conversation history on the left side of the service page and search for specific historical records. If you are unable to access or copy such personal information through the aforementioned means, or if you wish to access or copy other personal information generated during your use of our services, you may contact us at any time at contact@fatetell.com.

5.3 Data Portability

If you need to transfer the personal information we have collected, you may contact us at any time at contact@fatetell.com. We will provide transfer pathways in accordance with applicable national laws, regulations, and regulatory requirements, subject to the conditions specified therein.

5.4 Correction and Supplementation of Your Personal Information

If you discover that the personal information we hold about you is inaccurate or incomplete, you have the right to correct or supplement such inaccurate or incomplete information. You may contact us at any time at contact@fatetell.com. To ensure security, we will verify your identity before you exercise your right to correction or supplementation.

5.5 Deletion of Your Personal Information

You may submit a request for deletion of your personal information to us at contact@fatetell.com in the following circumstances:

1. If we have collected, used, shared, or transferred your personal information in violation of applicable laws and regulations or our agreement with you;
2. If we have publicly disclosed your personal information in violation of applicable laws and regulations or our agreement with you, you have the right to require us to immediately cease public disclosure and to issue notices requiring relevant recipients to delete the corresponding information;
3. Other circumstances as provided by applicable laws and regulations.

After you delete information from our services, we may not immediately delete the corresponding information from our backup systems, but will delete such information upon the next backup update.

5.6 Modification of the Scope of Your Authorized Consent

You may modify the scope of your consent or withdraw your authorization by adding or deleting information, changing privacy settings, or enabling or disabling the corresponding features and permissions on your device, as well as by contacting us through the methods specified in this Privacy Policy. You may also opt out of receiving marketing communications from us by contacting us or by following the unsubscribe instructions provided in the marketing materials. Please understand that individual products or services may require the activation of certain permissions and the collection of necessary personal information in order to function. Please understand that when you withdraw your consent, we will no longer be able to provide you with the products or services corresponding to the withdrawn consent; however, this will not affect the personal information processing services that were carried out prior to your withdrawal based on your authorization.

5.7 Account Deactivation

If you wish to deactivate your account, you may do so by navigating to "My > Settings > Account Security > Deactivate Account," or you may contact us through the contact methods specified in this Privacy Policy. We will respond to your request promptly. The deactivation of your account is irreversible. We will cease providing services to you, will no longer collect your personal information, and will, in accordance with your request, delete the personal information associated with your account or anonymize it.

5.8 Right to Explanation

If you have questions regarding our personal information processing rules, you may contact us at contact@fatetell.com. We will provide you with an explanation of the relevant personal information processing rules.

5.9 Response to Requests

To ensure security, you are required to submit a written request or otherwise verify your identity. We may require you to verify your identity before processing your request. We will generally respond to your request within fifteen (15) days. In principle, we do not charge a fee for your reasonable requests; however, for requests that are repeated multiple times or exceed reasonable limits, we may charge a reasonable cost fee at our discretion. We may decline requests that are vexatiously repetitive, require disproportionate technical effort (e.g., requiring the development of new systems or fundamentally changing existing practices), pose risks to the lawful rights and interests of others, or are highly impractical (e.g., involving information stored on backup tapes).

In the following circumstances, in accordance with applicable laws and regulations, we will be unable to respond to your aforementioned requests:

1. Where related to our performance of obligations under applicable laws and regulations;
2. Where directly related to national security or national defense;
3. Where directly related to public safety, public health, or significant public interests;
4. Where directly related to criminal investigation, prosecution, trial, or enforcement of judgments;
5. Where we have sufficient evidence to indicate that you have acted with subjective malice or have abused your rights (e.g., where your request would endanger public safety or the lawful rights and interests of others, or where your request exceeds the scope that can be covered by generally available technical means and reasonable commercial costs);
6. Where responding to the request of the personal information subject would cause serious harm to the lawful rights and interests of you or other individuals or organizations;
7. Where necessary to protect the life, property, or other significant lawful rights and interests of you or other individuals, but where obtaining consent is impracticable;
8. Where trade secrets are involved.

VI. How We Handle the Personal Information of Minors

We attach great importance to the protection of the personal information of minors. The collection and use of personal information of minors who are fourteen (14) years of age or older but under eighteen (18) years of age may be authorized by a guardian or by the minor themselves.

We do not provide services to children under the age of fourteen (14). If you are a child under the age of fourteen (14), please select an age-appropriate application with the guidance of your guardian. If you are a minor who is fourteen (14) years of age or older but under eighteen (18) years of age, we require that your parent or other guardian carefully read this Privacy Policy, and that you use our services or provide information to us only with the prior authorization and consent of your guardian.

If you are the guardian of a minor, please be attentive to whether the minor under your guardianship is using our products or services with your authorization and consent. If you have any questions regarding the personal information of the minor under your guardianship, please contact us through the methods specified in this Privacy Policy.

VII. Updates and Amendments to This Privacy Policy

To better protect the privacy of our users, our privacy protection policy may be adjusted and revised from time to time as necessary.

For material changes that would substantially diminish your rights under this Privacy Policy, we will notify you prior to the effective date of such changes through prominent placement on the main exposure pages of our services, or through in-app notifications, email, or other appropriate means reasonably calculated to reach you. If you do not agree to such changes, you may cease using FateTell services.

Material changes as referred to in this Privacy Policy include but are not limited to: significant changes in our service model; changes in the circumstances under which personal information is provided to third parties, transferred, or publicly disclosed; significant changes in your rights regarding the processing of personal information and the manner in which such rights may be exercised; changes in our contact information and complaint channels; and instances where a personal information security impact assessment report indicates the existence of high risk.

Any updated terms will be published within this application. Please review and carefully read these changes.

Your continued use of the services shall be deemed to constitute your having read, understood, and agreed to accept the revised terms of the Privacy Policy.

In the event that this application undergoes a merger, acquisition, or reorganization, or transfers some or all of its assets to a third party in any form, requiring the transfer of your personal information to a new operating entity, we will notify you of the new privacy policy at the time of data transfer.

If you do not agree with any amendment to this Privacy Policy, you are advised to immediately cease using our services.

---

This Privacy Policy was last updated on March 1, 2026 and first published on May 20, 2024.