BNI International

数据及隐私保护政策

Effective/Last Updated: November 15, 2025

生效/最后更新日期：2025年11月15日

BNI® DATA PROTECTION AND PRIVACY POLICY

BNI®数据保护与隐私政策

BNI Worldwide Development Ltd (“BNI”, “we”, “our”) is the controller of your personal data. In some cases, BNI Global, LLC or other BNI affiliates (collectively, “BNI”, “our” or “we”). act as independent or joint controllers; where applicable, we will identify the relevant controller at the point of collection.

BNI Worldwide Development Ltd（以下简称“BNI”、“我们”或“本公司”）为您的个人信息控制者。在部分情况下，BNI Global, LLC或其他BNI关联公司（统称为“BNI”、“我们”或“本公司”）亦可作为独立或共同控制者；如适用，我们将在收集您的个人信息时明确相关控制者身份。

This Data Protection and Privacy Policy (“Policy”) is intended to explain to you, as a user of BNI, our services, BNIConnect.com, or web-accessed or mobile applications (“Sites”), what personal data we collect about you, how we use or process that data, with whom it may be shared, and your options about such uses and disclosures.

本数据保护与隐私政策（以下简称“本政策”）旨在向BNI用户、我们的服务使用者、BNIConnect.com网站访问者或通过网络及移动端应用（以下简称“网站”）访问者说明，我们收集的您的个人信息类型、数据的使用与处理方式、可能的数据共享对象，以及您针对上述数据使用与披露事项所享有的权利和选择。

If you are a California resident, please see our California Notice at Collection and Privacy Policy accessible at https://bnitos.com/ca-nacapp.

如您为加利福尼亚州居民，请参阅我们在https://bnitos.com/ca-nacapp提供的加州收集通知及隐私政策。

We encourage you to read this Policy carefully when using our Sites or transacting business with us.

我们建议您在使用本网站或与我们进行业务往来时，认真阅读本政策。

What Personal Data is Being Collected

收集的个人信息类型

We collect the following categories of personal data when you use our services, depending on your interactions with us:

根据您与我们的互动类型，在您使用我们的服务时，我们会收集以下类别的个人信息：

Identification & Contact Data such as your name, username, business or home address, email address, phone number, and account credentials used to create or manage an account.

用户识别及联系方式数据，包括您的姓名、用户名、企业或家庭地址、电子邮箱、电话号码，以及用于创建或管理账户的账号凭证。

Transaction & Account Data including purchase and subscription records, billing confirmations from our payment processor (we do not store full card numbers), and your in-product settings or preferences.

交易及账户数据，包括您的购买与订阅记录、由我们的支付处理商提供的账单确认（我们不存储完整的银行卡号），以及您在产品中的设置或偏好。

We currently do not collect payments or financial data from users in Mainland China.

我们目前暂未向中国内地用户提供收款服务，也不收集中国用户的付款信息。

Usage & Technical Data generated when you use our Sites, apps, or AI-powered features, including device and browser identifiers, IP-based approximate location, pages viewed, links clicked, session length, performance and crash diagnostics, and basic attribution (for example, which campaign link brought you to our site).

使用及技术数据，包括您在使用本网站、应用或人工智能功能时产生的设备与浏览器标识符、基于IP的大致位置、访问页面、点击链接、会话时长、性能与崩溃诊断，以及基本归因数据（例如，哪个营销链接引导您访问本网站）。

Communications Data contained in messages you send to us (support requests, feedback, surveys) and content you post through our services (for instance, a profile photo or short video).

通讯数据，包括您向我们发送的信息（如支持请求、反馈、调查问卷）及您通过我们的服务发布的内容（如个人资料照片、短视频等）。

Special Category / Sensitive Data only where you choose to provide it or where a specific feature requires it—such as health or biometric information, precise geolocation, financial account details, or information about minors. We collect and use this category only with an appropriate legal basis (including explicit or separate consent where required) and solely for the purpose disclosed at the time.

特殊类别/敏感信息仅在您自愿提供或特定功能需要时收集，例如健康或生物识别信息、精确地理位置、金融账户详情、未成年人信息等。我们仅在具备适当法律依据（包括必要时的明确或单独同意）且仅为收集时所披露的目的收集及使用此类数据。

We do not collect or use sensitive data from users in Mainland China.

我们不会向中国内地用户收集也不会使用敏感信息。

You are not required to provide special category or sensitive personal data to use most of our services. However, if you decline to provide such data or consent to its processing, certain features may not be available.

您无需提供特殊类别或敏感个人信息即可使用我们的大部分服务。但若您拒绝提供此类数据或不同意其处理，部分功能可能无法使用。

Ways in Which We Collect Your Personal Data

个人信息收集方式

We may collect personal data from a variety of sources. This includes:

我们可能通过多种渠道收集您的个人信息，包括：

Directly from you. You provide information when you register, purchase, complete a form or survey, upload content, or contact support. This can include your contact details and login information; profile fields you choose to add (such as role, age group, or preferred pronouns); the text, prompts, or files you submit to AI features so those features function; and any attachments you upload. For payments, we receive processor-issued tokens or confirmations, not full card numbers. In limited cases—only if you supply it—we may process your own professional revenue figures; most revenue data we handle relates to organizations rather than an identifiable person.

直接由您提供。在您注册、购买、填写表单或调查问卷、上传内容或联系客服时，您会向我们提供信息，包括联系方式与登录信息；您选择添加的个人资料字段（如角色、年龄段、偏好称谓）；您提交给人工智能功能的文本、提示或文件以便这些功能正常运行，以及您上传的附件。对于付款，我们收到的是支付处理商发放的令牌或确认信息，而非完整的卡号。在极少数情况下——仅在您主动提供的情况下——我们可能处理您的个人职业收入数据；我们处理的大多数收入数据均与公司企业有关，而非可识别的个人。

Automatically from your device/use. When you visit our Sites or apps, we receive technical and usage signals your device or browser ordinarily shares, such as IP address (which indicates an approximate location), device and browser type, operating system and language, referral and exit pages, timestamps, pages viewed, links selected, session duration, load times, search terms, and crash/error diagnostics. If you interact with AI features, we process the inputs you provide so the feature works as intended.

自动由您的设备/使用情况收集。当您访问本网站或应用时，我们会接收您的设备或浏览器通常会共享的技术与使用信号，如IP地址（用于指示大致位置）、设备及浏览器类型、操作系统与语言、来源页面和退出页面、时间戳、访问页面、点击链接、会话时长、加载时间、搜索词及崩溃/错误诊断。如您与人工智能功能互动，我们会处理您提供的输入以确保该按语气运行。

Cookies and similar technologies (consent where required). We use cookies, SDKs, and pixels to keep you signed in, remember settings like language, secure the service, and understand what is working. Our emails may include simple beacons so we can gauge opens or link clicks and avoid unnecessary resends. You can manage non-essential cookies in our banner or your browser; some features may not function without them.

Cookies及类似技术（必要时需征得您的同意）。我们使用 Cookie、SDK 和像素来保持您的登录状态、记住您的语言等设置、保障服务安全并了解哪些功能运行良好。我们的电子邮件可能包含简单的信标，以便我们评估邮件打开率或链接点击率，避免不必要的重复发送。您可以在我们的横幅广告或浏览器中管理非必要的 Cookie；禁用这些 Cookie 可能会导致某些功能无法正常运行。

From other people and trusted partners. A colleague or member may share your business contact details to invite you to an event or make a referral; the person sharing should have a lawful basis and, where required, direct you to this policy. We also receive data from providers who help with operations and safety—such as address corrections from shippers, billing confirmations from payment processors, fraud-prevention risk signals, analytics or attribution aggregates about feature usage or campaign performance, customer-support tooling, and, where appropriate, public sources (for example, company registries) to validate business details. Where legally permitted and necessary (for fraud prevention or assessing eligibility for a financing option), we may obtain limited credit-reference information.

来自其他个人及可信合作伙伴。您的同事或会员可能会共享您的商业联系信息，以邀请您参与活动或提供推荐；分享人须具备合法依据，并在必要时引导您查阅本政策。我们亦会从协助运营与安全的服务商处获取数据，例如货运公司的地址更正信息、支付处理方的账单确认、反欺诈风险信号、功能使用或营销活动效果的分析归因汇总、客户支持工具，以及在适当情况下来自公开渠道（如企业登记）以验证商业信息。如法律允许且必要（如防止欺诈或评估融资资格），我们可能获取有限的信用参考信息。

Combining information. Where the law allows, we combine information from these sources—such as merging duplicate accounts, troubleshooting issues, enhancing security, keeping records accurate, or improving service quality.

信息整合。在法律允许的情况下，我们会整合上述渠道的信息，如合并重复账户、排查故障、提升安全性、确保记录准确或改善服务质量。

When and Why We Collect Special Category / Sensitive Data

特殊类别/敏感信息收集时间及理由

We do not require sensitive or special-category data for core services. If you choose to share such data—including via optional AI features—we will process it only with an appropriate legal basis and for the specific purpose disclosed at collection (for example, explicit consent under GDPR Article 9(2) or separate consent under PIPL for sensitive personal information). If you withhold consent for these items, only the related optional feature will be unavailable; other features will continue to work.

我们的核心服务不需要您提供敏感或特殊类别信息。如您选择共享此类信息（包括通过可选人工智能功能），我们将仅在具备适当法律依据情况下，且仅为收集时披露的特点目的而处理这些信息（如GDPR第9条第2款下的明确同意，或《中华人民共和国个人信息保护法》（PIPL）下敏感个人信息的单独同意）。如您拒绝同意，则只有相关可选功能无法使用，其他功能仍可正常运行。

What Purpose Do We Use Your Data For?

我们使用您的个人信息的目的

We use personal data to provide and improve our services. Depending on what you’re doing, we rely on your consent, our contract with you, or our legitimate interests. Where the law requires consent (for example, for non-essential cookies, certain marketing, or sensitive/special-category data), we will ask first. You may withdraw consent at any time; withdrawing won’t affect processing already carried out.

我们使用个人信息以提供及改进服务。根据您的具体操作，我们依据您的同意、与您的合同关系或我们的合法利益进行处理。如法律要求获得您的同意（例如非必要Cookies、特定营销、敏感/特殊类别信息），我们会事先征求您的同意。您可随时撤回该同意；撤回不影响已完成的处理。

Processing with your consent: With your permission we may: remember your settings and measure use through non-essential cookies/SDKs; send newsletters or product updates; allow partners to contact you directly about their offerings; run surveys or record certain optional interactions; and collect or use sensitive/special-category data you choose to share (such as health, biometric or precise location data) for a clearly stated purpose. If you use AI features, we process the text, prompts, or files you submit to enable the feature to work. We do not use your personal data to train or improve AI models unless you provide explicit (GDPR) / separate (PIPL) consent for that specific use. Under PIPL, we also request separate consent for cross-border transfers where required, and provide an opt-out of personalized recommendations.

基于您的同意进行处理：经您许可，我们可能记住您的设置并通过非必要Cookies/SDKs衡量使用情况；发送新闻通讯或产品更新；允许合作伙伴直接联系您推介其产品；开展调查或记录部分可选互动；出于明确说明的目的收集或使用您自愿提供的敏感/特殊类别信息（如健康、生物识别或精确定位数据）。如您使用人工智能功能，我们会处理您提交的文本、提示或文件以保障该功能正常运行。除非您给予明确（GDPR）/单独（PIPL）同意，我们不会将您的个人信息用于训练或改进人工智能模型。根据PIPL，我们在涉及跨境传输时亦会征求您的单独同意，并提供个性化推荐的退出选项。

Processing necessary to perform our contract with you: To deliver the service you requested, we create and manage your account, authenticate logins, provide core features (including AI-powered features you choose to use), process orders and subscriptions, and offer customer support. For payments, we rely on a payment processor and receive tokens/confirmations and receipts; we do not store full card numbers. We send service and transactional messages—for example, receipts, account or security notices, feature changes, or policy updates—so you can use the product you purchased.

履行合同所必需的处理：为向您提供所需服务，我们会创建并管理您的账户、验证登录、提供核心功能（包括您选择使用的人工智能功能）、处理订单及订阅，并提供客户支持。对于付款，我们依赖支付处理提供商，接收令牌/确认信息及收据；我们不存储完整银行卡号。我们会发送服务及交易信息，例如收据、账户或安全通知、功能变更或政策更新，以保障您使用所购产品。

Processing based on our legitimate interests: We also process personal data to keep the service secure and useful in ways that do not override your rights. This includes protecting accounts and our platform (fraud detection, abuse prevention, rate-limiting suspicious traffic), troubleshooting and improving performance (telemetry, crash diagnostics, load-time monitoring), understanding how features are used so we can improve them, and managing relationships (handling referrals or event invitations that others send you, maintaining accurate records, and de-duplicating accounts). In B2B contexts, we may send product news about similar services to existing customers under a soft-opt-in where permitted; you can opt out at any time. Where ePrivacy or local law requires consent (for example, for certain cookies or direct marketing), we rely on consent instead of legitimate interests.

基于我们的合法利益进行处理：我们还会处理个人信息以保障服务安全与实用，且不影响您的权利，包括账户及平台保护（欺诈检测、滥用防止、限制可疑流量）、故障排查及性能提升（遥测、崩溃诊断、加载时间监控）、分析功能使用以优化产品，以及关系管理（处理他人发送的推荐或活动邀请、维护准确记录、账户去重）。在B2B场景下，若允许，我们可向现有客户发送类似服务产品资讯，您可随时选择退出。如电子隐私或本地法律要求同意为必须条件（如特定Cookies或直接营销），我们将根据您是否同意来处理。

Compliance and legal duties: We process data where needed to comply with laws (for example, tax and accounting, record-keeping, responding to lawful requests) and to enforce our terms or establish, exercise, or defend legal claims.

履行合规及法律义务：在我们需要遵守法律的规定和义务（如税务与会计、记录保存、回应合法请求），以及执行我们的条款或确立、行使及维护合法权益时处理数据。

Artificial Intelligence Experiences: From time to time, we offer AI-powered features (for example, chatbots). Unless it’s obvious from context, we will make it clear when you are interacting with an AI system rather than a human. When you use these features, you may submit text, prompts, images, or files (“Prompts”), which generate responses based on your Prompts (“Outputs”). We process your Prompts and related interaction data to generate Outputs and to operate, secure, and troubleshoot the feature.

人工智能体验：我们不定期提供人工智能功能（如聊天机器人）。除非情境明显，否则我们会明确告知您是在与人工智能系统互动而非人工客服。使用这些功能时，您可能提交文本、提示、图片或文件（“提示”），系统会基于您的提示（“输出”）生成响应。我们处理您的提示及相关互动数据以生成输出结果，并运营、保障及排查该功能。

For safety, reliability, and abuse prevention, we log technical and usage data associated with AI features (e.g., timestamps, error/abuse signals, and performance diagnostics). In limited cases, and under confidentiality obligations, authorized personnel may review a sample of minimized or de-identified prompts/outputs to investigate abuse, resolve incidents, or improve reliability. Many AI features do not require personal data; if you include personal data in a prompt, it may appear in the output you receive.

为保障安全、可靠性及防止滥用，我们会记录与人工智能功能相关的技术及使用数据（如时间戳、错误/滥用信号、性能诊断）。在有限情况下，且受保密义务约束，授权人员可审查部分最小化或匿名化的提示/输出样本，以调查滥用、处理事件或提升可靠性。多数人工智能功能不需要个人信息；如您在提示中包含个人信息，则该信息可能在您收到的输出结果中出现。

We retain AI prompts/outputs and related logs for the period necessary to operate and secure the feature and as set out in our Data Retention Policy. Where feasible, you may request deletion of prompts/outputs associated with your account; we may retain minimal suppression or audit records to honor your choices and protect the Service.

我们会按照运营及保障该功能所需期限及我们的数据保留政策，保留人工智能提示/输出及相关日志。如可行，您可请求删除与您账户相关的提示/输出；我们可能保留最小化的抑制记录或审计记录，以尊重您的选择并保护服务。

Many AI features do not require you to include personal data; if you choose to include personal data, it may appear in the Outputs. We may de-identify Prompts and Outputs and retain the de-identified data for analytics, safety, and monitoring in support of operating, securing, and fixing the feature.

多数人工智能功能不要求您提供个人信息；如您选择提供个人信息，该信息可能出现在结果输出中。我们可能会对提示及输出进行匿名化处理，并保留匿名化的数据用于分析、安全及监控，以支持功能运营、保障及修复。

We do not make decisions based solely on automated processing that produce legal or similarly significant effects about you without human involvement. If that ever changes, we will provide specific notice and explain your rights, including the ability to obtain human review, express your view, and contest the decision.

我们不会仅依赖自动化处理做出对您具有法律或类似重大影响的决策且无人工介入。如未来此项原则发生变化，我们会专门通知并说明您的权利，包括获得人工审核、表达意见及提出异议的权利。

We may share personal data with our AI service providers solely to deliver these features, under contracts that require them to act on our instructions and protect your data.

我们可能仅为提供人工智能功能，将个人信息共享给人工智能服务提供商，并要求其依据我们的指令行事并保护您的个人信息。

How Long Do We Keep Your Data For?

数据保留期限

We will retain your personal data for the duration necessary for the purpose of its processing, including the provision of AI-related services and/or to meet any applicable legal obligations. Please see our Data Retention Policy, accessible at https://bnitos.com/retention.html for more information.

我们将仅在实现处理目的（包括提供人工智能相关服务和/或履行任何适用的法律义务）所需的期限内保留您的个人信息。详情请参阅我们的数据保留政策，访问https://bnitos.com/retention.html。

How Do We Protect Your Data

数据保护措施

We take reasonable and appropriate technical and organizational measures to safeguard your personal data against any breach, unauthorized or illegal access, alteration, disclosure, or deletion. This measure may include identity verification, encryption, access control, malicious code resistance, and regular security audits.

我们采取合理且适当的技术与措施，以防止您的个人信息遭受泄露、未经授权或非法访问、篡改、披露或删除。相关措施包括身份验证、加密、访问控制、恶意代码防护及定期安全审计。

How We Disclose Your Data

数据披露方式

We share personal data only as described below and only for the purposes needed to provide and improve our services. Where the law requires it (for example, partner marketing, non-essential cookies/SDKs, sensitive/special-category data, or cross-border transfers under PIPL), we obtain your consent first. All recipients must implement appropriate technical and organizational measures consistent with this Policy and applicable law. This does not limit our own obligations to you.

我们仅按下述方式共享个人信息，且仅为提供与改进服务所需目的。如法律要求（如合作伙伴营销、非必要Cookies/SDKs、敏感/特殊类别信息、PIPL下的跨境传输），我们会先征求您的同意。所有接收方须采取与本政策及适用法律一致的技术与措施。上述要求不影响我们对您的义务。

Service providers (processors). We use trusted vendors to operate the service—payment processing, hosting, security/fraud prevention, analytics/measurement, email/SMS delivery, customer support tools, and AI platform providers that power optional AI features. These providers act on our instructions, must protect your data, and may not use it for their own purposes. For payments we receive tokens/confirmations and receipts from our processor; we do not store full card numbers. For AI features, providers (and their subprocessors) process your inputs (e.g., text, prompts, files) and interaction data so the feature works; we do not allow training or enrichment of AI models with your personal data unless you give explicit (GDPR) / separate (PIPL) consent for that specific use. A current list of core subprocessors is available on request.

服务提供商（处理方）。我们委托可信供应商运营服务，包括支付处理、托管、安全/防欺诈、分析/测量、邮件/SMS发送、客户支持工具，以及为可选人工智能功能提供平台的AI服务商。上述供应商须依据我们的指令行事、保护您的个人信息，且不得用于自身目的。支付过程中，我们仅接收处理方提供的令牌/确认及收据，不存储完整银行卡号。人工智能功能中，供应商（及其分处理方）会处理您的输入（如文本、提示、文件）及互动数据以保障功能正常；除非您给予明确（GDPR）/单独（PIPL）同意，我们不会允许用您的个人信息训练或丰富AI模型。核心分处理方名单可根据请求提供。

Affiliates and franchisees/licensees. To run our network and deliver the services you request, we may share business contact details and relevant account or participation information with our affiliates and franchise/license organizations for chapter administration, event management, member directories, and similar operational needs. Depending on the activity, these entities may act as our processors or as independent controllers under their own privacy policies. Where we operate as joint controllers for a defined activity, we will make the essence of our joint-controller arrangement available on request.

关联公司及知识产权被许可人。为运营我们的业务网络及提供您所需服务，我们可能向关联公司及知识产权被许可人共享商业联系信息及相关账户或参与信息，用于分会管理、活动管理、会员目录及类似运营需求。根据具体活动，关联公司或知识产权被许可人可能作为我们的处理方或依据自身隐私政策作为独立控制者。如就特定活动构成共同控制者，我们会根据请求提供共同控制安排的要点。

Members and community visibility. If you choose to participate in member directories, chapters, referrals, or community features, the profile information you provide (for example, name, company, role, and business contact details) and certain participation metrics may be visible to other members or chapters as part of the service. You can manage what you share in your settings where available.

会员及社区可见性。如您选择参与会员目录、分会、推荐或社区功能，您提供的个人资料信息（如姓名、公司、角色、商业联系信息）及部分参与指标可能作为服务内容对其他会员或分会可见。您可在设置中管理共享内容（如适用）。

Business partners (co-sponsored offerings). For co-branded events, promotions, contests, or webinars that you choose to join, we share only the information necessary to run the program and, where required by law, we obtain your opt-in before a partner may market to you directly. You can opt out at any time.

业务合作伙伴（联合活动）。对于您选择参与的联合品牌活动、促销、竞赛或网络研讨会，我们仅共享开展活动所需信息；如法律要求，我们会在合作伙伴直接营销前征求您的同意。您可随时选择退出。

Compliance, safety, and enforcement. We disclose information when we must comply with law (for example, court orders, lawful requests from authorities), enforce our terms (including our Acceptable Use Policy), prevent fraud or abuse, or protect our rights, users, or the public.

合规、安全及执法。我们在法律要求（如法院命令、主管机关的合法请求）、执行条款（包括可接受使用政策）、防止欺诈或滥用、保护我们的权利、用户或公众时披露信息。

Corporate transactions. If we are involved in a merger, acquisition, reorganization, or asset sale, your information may be transferred to the successor; we will require the recipient to honor this Policy.

公司交易。如我们涉及合并、收购、重组或资产出售，您的信息可能转移至继承方；我们将要求接收方遵守本政策。

Cross-Border Transfers

跨境数据传输

This section covers transfers to our affiliates/franchisees, members, business partners, and service providers when they are located outside your country. When your personal data is transferred outside your country, we apply safeguards designed to ensure a level of protection essentially equivalent to that required by applicable law.

本节涵盖向境外关联公司/特许经营商、会员、业务合作伙伴及服务提供商的数据传输。您的个人信息跨境传输时，我们会采取措施确保数据保护水平与适用法律要求基本等同。

EEA/UK/Switzerland. If you are located in the EEA, the UK, or Switzerland, we rely on:

欧洲经济区/英国/瑞士。如您位于欧洲经济区、英国或瑞士，我们依赖以下方式：

Adequacy decisions where available (EU/UK/CH).
对已获充分性认定的国家（欧盟/英国/瑞士）按照该标准。
Standardized transfer tools where adequacy is not available, including the EU Standard Contractual Clauses (SCCs), the UK IDTA/Addendum, and the Swiss FDPIC addendum, as applicable.
无充分性认定时，采用标准化传输工具，包括欧盟标准合同条款（SCCs）、英国IDTA/附录及瑞士FDPIC附录（如适用）。
Transfer impact assessments and supplementary measures (for example, encryption in transit and at rest, strict access controls, minimization/pseudonymization, and contractual limits on onward disclosure).
传输影响评估及补充措施（如传输及静态加密、严格访问控制、最小化/匿名化处理及对后续披露的合同限制）。

If you are a resident of China, we will obtain separate consent before we share, transfer, or store (export) personal data. The name and contact details of overseas recipients, the purpose and method of processing, the categories of personal information exported, the retention period, and our transfer mechanism are set out in our Vendor & SDK Register below. We use an approved export path as legally required. You may withdraw consent at any time; doing so may limit features that rely on the export. If you wish to exercise your rights with respect to overseas data recipients, you may contact them directly through publicly available channels (such as email, the official website’s customer service portal, or a mailing address), or you may reach out to us using the contact methods specified in this Policy.

如您为中国居民，我们会在共享、转移或存储（导出）个人信息前征求您的单独同意。境外接收方名称及联系方式、处理目的与方式、传输个人信息类别、保留期限及传输机制详见下方第三方服务商及SDK信息表。我们依法采用批准的出口路径。您可随时撤回同意；撤回后，依赖出口的数据功能可能受限。如需向境外数据接收方行使权利，您可通过公开渠道（如电子邮件、官方网站客户服务门户、邮寄地址）直接联系该接收方，或依本政策指定方式联系本公司。

Onward transfers to vendors/sub-processors. Any overseas service providers that process personal data on our behalf must act on our instructions, implement appropriate security measures, and agree to equivalent protections for any onward disclosures.

向供应商/分处理方的后续传输。任何境外服务商在代表我们处理个人信息时，须依据我们的指令行事、采取适当安全措施，并同意对后续披露采取等效保护。

Vendor & SDK Register

第三方服务商及SDK信息表

我们使用以下第三方工具。此列表反映的是当前的核心工具集，但可能会有所变更；如有变更，我们将更新此列表，并在必要时通知您或再次征求您的同意。

Provider	服务商	Schoox
Role	角色	Processor	数据处理方
Purpose of Use	用途	Member Training	会员培训
Personal Data Processed	处理的个人信息	Member name, member email address	会员姓名、会员电子邮箱地址
Processing Locations	处理地点	United States, United Kingdom, Canada	美国、英国、加拿大
Cross-Border Mechanisms	跨境机制	EU-U.S. Data Privacy Framework (EU-U.S. DPF) Principles for personal data received from the European Union and Gibraltar. UK Extension to the EU-U.S. Data Privacy Framework (UK Extension to the EU-U.S. DPF) Principles for personal data received from the United Kingdom. Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) Principles for personal data received from Switzerland.	·欧盟-美国数据隐私框架原则（EU-U.S. DPF）适用于来自欧盟及直布罗陀的个人信息。 ·英国扩展至欧盟-美国数据隐私框架原则（UK Extension to the EU-U.S. DPF）适用于来自英国的个人信息。 ·瑞士-美国数据隐私框架原则（Swiss-U.S. DPF）适用于来自瑞士的个人信息。
Retention / Deletion	保留/删除	Schoox commits to the following in their published privacy policy, “Storage limitation – Data is kept only for as long as necessary for the purposes we have communicated."	Schoox在其公开隐私政策中承诺：“存储限制——仅为已告知目的保留数据至必要期限。”
Privacy Policy	隐私政策	https://www.schoox.com/privacy.php

Provider	服务商	Marketo
Role	角色	Processor	数据处理方
Purpose of Use	用途	Member marketing communication and management	会员营销沟通与管理
Personal Data Processed	处理的个人信息	Member name, member email address, phone number, business address, member gender (optional)	会员姓名、会员电子邮箱地址、电话号码、商业地址、会员性别（可选）
Processing Locations	处理地点	The Marketo Engage service infrastructure is located in data centers in the United States, the United Kingdom, the Netherlands, and Australia.	Marketo Engage服务基础设施位于美国、英国、荷兰及澳大利亚的数据中心。
Cross-Border Mechanisms	跨境机制	Adobe uses several legal mechanisms, including Standard Contractual Clauses (SCCs) and adequacy decisions (where applicable).	Adobe采用多种法律机制，包括标准合同条款（SCCs）及充分性认定（如适用）。
Retention / Deletion	保留/删除	Marketo has a defined retention policy for lead activities up to 25 months	Marketo对潜在客户活动设定最长25个月的保留政策。
Privacy Policy	隐私政策	https://www.adobe.com/privacy/policy.html

Provider	服务商	Creatio
Role	角色	Processor	数据处理方
Purpose of Use	用途	Customer relationship management system	客户关系管理系统
Personal Data Processed	处理的个人信息	Member name, member email address, phone number, business address, member gender (optional)	会员姓名、会员电子邮箱地址、电话号码、商业地址、会员性别（可选）
Processing Locations	处理地点	Creatio's cloud application is hosted on Amazon Web Services (AWS) and Microsoft Azure. Customers can choose from data centers located around the world.	Creatio云应用托管于亚马逊AWS及微软Azure，客户可选择全球各地的数据中心。
Cross-Border Mechanisms	跨境机制	Data may be transferred and processed outside the EU/EEA. Creatio states it "may use standard data protection clauses adopted by supervisory authorities and approved by the European Commission" to safeguard these transfers.	数据可在欧盟/欧洲经济区之外转移及处理。Creatio声明“可能采用由监管机构采纳并经欧盟委员会批准的标准数据保护条款”以保障此类传输。
Retention / Deletion	保留/删除	Closed Profiles: Deleted within 15 business days of a request. Backups: Kept for 90 calendar days. Billing & Legal Info: Kept for 10 years. Process Logs: Automatically deleted or archived after 30 days.	已关闭账户：请求后15个工作日内删除。备份：保留90个日历日。账单及法律信息：保留10年。流程日志：30天后自动删除或归档。
Privacy Policy	隐私政策	https://www.creatio.com/privacy-policy

Provider	服务商	KCADI, LTD
Role	角色	Processor	数据处理方
Purpose of Use	用途	Data analysis and reporting	数据分析与报告
Personal Data Processed	处理的个人信息	Name, email, phone number, business and billing address, business name, member gender (optional)	姓名、电子邮箱、电话号码、商业及账单地址、企业名称、会员性别（可选）
Processing Locations	处理地点	United Kingdom	英国
Cross-Border Mechanisms	跨境机制	N/A	不适用
Retention / Deletion	保留/删除	N/A	不适用

What Are Your Rights?

您的权利

Where we process your personal data, you have a number of rights over how the data is processed and can exercise these rights at any point. We have provided an overview of these rights below. You can exercise your rights by emailing us at [*].

在我们处理您的个人信息时，您对信息的处理方式享有多项权利，并且可以随时行使这些权利。以下为权利概述。您可通过发送邮件至[*]行使您的权利。

The right to be informed. You have the right to be provided with clear, transparent, and easily understandable information about how we use your personal data and your rights. Therefore, we’re providing you with the information in this Policy.
知情权。您有权获得关于我们如何使用您的个人信息及您权利的清晰、透明、易于理解的信息。因此，我们特此提供本政策中的相关信息。
The right to withdraw consent. Where we rely on consent, you can withdraw it at any time; this will not affect processing already carried out.
撤回同意权。如我们依赖您的同意来处理您的信息，您可随时撤回该同意；撤回不影响已完成的处理。
The right to access and rectification. You have the right to access, correct, or update your personal data at any time. We understand the importance of this, and should you want to exercise your rights, please email us at [email protected].
访问及更正权。您有权随时访问、更正或更新您的个人信息。我们理解此权利的重要性，如需行使该权利，请发送邮件至[email protected]。
The right to data portability. The personal data you have provided us with is portable. This means it can be moved, copied, or transmitted electronically under certain circumstances.
数据可携权。您提供给我们的个人信息具备可携性，即在特定情况下可进行迁移、复制或电子传输。
The right to be forgotten. Under certain circumstances, you have the right to request that we delete your data. If you wish to delete the personal data we hold about you, please let us know and we will take reasonable steps to respond to your request in accordance with legal requirements. If the personal data we collect is no longer needed for any purposes and we are not required by law to retain it, we will do what we can to delete, destroy, or permanently de-identify it.
被遗忘权。在特定情况下，您有权请求我们删除您的信息。如您希望删除我们持有的关于您的个人信息，请告知，我们将根据法律要求采取合理措施回应您的要求。若我们收集的个人信息已无任何用途且法律无保留要求，我们将尽力删除、销毁或永久匿名化这些信息。
The right to restrict processing. Under certain circumstances, you have the right to restrict the processing of your personal data.
限制处理。在特定情况下，您有权限制对您个人信息的处理。
The right to object. Under certain circumstances, you have the right to object to certain types of processing, including processing for direct marketing (i.e., receiving emails from us notifying you or being contacted with varying potential opportunities).
权反对权。在特定情况下，您有权反对部分处理方式，包括被用于直接营销（如接收我们发送的电子邮件或被联系推送多种潜在商机）。
You have the right to complain to a data protection authority about our collection and use of your personal information. You may lodge a complaint with a supervisory authority where you live or work, or where the alleged infringement occurred. Contact details for data protection authorities in the EEA here, in the UK here, and in Switzerland here.
投诉权。您有权就我们收集及使用您的个人信息向数据保护主管机关投诉。您可向居住地、工作地或涉嫌侵权发生地的监管机关提出投诉。欧洲经济区、英国及瑞士的数据保护主管机关联系方式分别点击上述链接。
Rights related to automated decision-making. You have the right not to be subject to a decision which is based solely on automated processing and which produces legal or other significant effects on you. In particular, you have the right: to obtain human intervention, express your point of view, and contest the decision.
自动化决策相关权利。您有权不受仅依赖自动化处理且产生法律或其他重大影响的决策约束。具体而言，您有权要求人工干预、表达观点及提出异议。

If you are a resident of China under the Personal Information Protection Law of the People’s Republic of China (PIPL), you have the following rights:

如您为中国居民且受《中华人民共和国个人信息保护法》（PIPL）保护，您拥有以下权利：

Right to access and copy of data.
个人信息访问及复制权。
Right to transfer.
个人信息转移权。
Right to correct or supplement.
更正或补充个人信息的权利。
Right to deletion in certain circumstances.
特定情况下删除个人信息的权利。
Right to limit or withdraw consent.
限制或撤回同意权。
Right to request details of processing (including for automated decision-making, and can refuse such decision) and of handling rules.
要求了解处理详情（包括自动化决策处理及拒绝此类决策）及处理规则的知情权。
Right to deregister accounts.
账户注销权。
Right to make a complaint to the Cybersecurity Administration of China (CAC).
向中国国家互联网信息办公室投诉的权利。

If you have an online account with us, you can review and update your personal information online by logging into your account. You can also review and update your personal information and exercise your other rights by contacting us. More information about how to contact us is provided below. You can close your account at any time by emailing us at [email protected]. If you close your account, we may still retain certain information associated with your account for analytical purposes and record-keeping requirements per our Data Retention section above, as well as to prevent fraud, collect any fees owed, enforce our Terms of Service, or take other actions otherwise permitted by law. In addition, if certain information has already been provided to third parties as described in this Privacy Policy, retention of that information will be subject to those third parties' policies.

如您拥有我们的在线账户，您可登录账户在线审查及更新个人信息。您也可以通过联系我们来查看和更新您的个人信息并行使您的其他权利。更多联系方式请见下文。您可随时发送邮件至[email protected]关闭账户。账户关闭后，我们可能仍会出于分析目的和记录保存要求（详见上文“数据保留”部分）保留与您的账户相关的某些信息，以及用于防止欺诈、收取任何应付费用、执行我们的服务条款或采取其他法律允许的行动。此外，如果某些信息已按照本隐私政策所述提供给第三方，该信息的保留将受这些第三方政策的约束。

Third-Party Websites

第三方网站

Our Sites, apps, and communications may include links to, or integrations with, websites, apps, or services that are not owned or controlled by us (for example, an advertisement, a search result, an embedded video/map, social-sharing buttons, single-sign-on, or a checkout hosted by a payment provider). If you follow those links or interact with those features, your personal data may be collected directly by the third party and processed under that party’s own privacy policy, not this one.

我们的网站、应用程序和通讯内容可能包含指向或集成到非我们所有或控制的网站、应用程序或服务的链接（例如，广告、搜索结果、嵌入式视频/地图、社交分享按钮、单点登录或由支付服务提供商托管的结账页面）。如果您点击这些链接或与这些功能互动，您的个人信息可能会被第三方直接收集，并根据该第三方自身的隐私政策而非本隐私政策进行处理。

Except where a third party acts as our service provider (processor) under contract (see “How we share personal data” and our Vendor & SDK Register), those third parties typically act as independent controllers of any data you provide to them. We do not endorse, control, or take responsibility for their content, security, or privacy practices. Before you use any third-party website or feature, review its privacy and cookie notices and settings, including any choices about advertising, analytics, and tracking.

除非第三方根据合同作为我们的服务提供商（数据处理者）（请参阅“我们如何共享个人信息”和我们的供应商及SDK信息表），否则这些第三方通常会作为您提供给他们的任何个人信息的独立控制者。我们不对其内容、安全性或隐私处理方式进行认可、控制或承担任何责任。在使用任何第三方网站或功能之前，请仔细阅读其隐私和Cookie声明及设置，包括有关广告、分析和跟踪的任何选项。

Communities and Forums Offered on our Sites

社区与论坛

Some areas of our Sites allow you to post information about yourself (e.g., your name and email address), communicate with others, upload content, and post comments. These postings are governed by our Terms of Service. Any personal data you voluntarily disclose in these areas may be visible to others with access to your content and may be collected and used by them. Please exercise discretion and caution. Once posted, you may not be able to edit or delete the data.

本网站部分区域允许您发布个人信息（如姓名、电子邮箱地址）、与他人交流、上传内容及发表评论。上述发布受我们的服务条款约束。您在此类区域自愿披露的个人信息可能被其他有权限访问您内容的人员查看、收集及使用。请谨慎行事。一旦发布，您可能无法编辑或删除相关数据。

Children’s Privacy

儿童隐私保护

Our Site is designed and intended for use by adults. We do not knowingly collect personal data from children under the age applicable in your jurisdiction (for example, under 16 in the EEA; under 14 in China). If we discover that we have collected personal data from a child without consent from a parent or guardian where such consent should have been obtained, we will delete that personal data as soon as practical.

本网站及相应服务仅供成年人使用。我们不会在明知情况下向低于您所在司法辖区适用年龄的儿童收集个人信息（例如欧洲经济区16岁以下、中国14岁以下）。如发现未经父母或监护人同意收集儿童个人信息，我们会尽快删除该个人信息。

Data Privacy Framework

数据隐私框架合规说明

BNI Global, LLC complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. BNI Global, LLC has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. BNI Global, LLC has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/. BNI’s U.S. subsidiaries adhering to the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF are: BNI Connect Global, LLC, BNI Franchising, LLC, BNI Global, LLC, BNI Global Holdings LLC, BNI Holdings, LLC, BNI Intermediate Holdings, LLC, BNI International Holdings CTB, LLC,, Corporate Connections Franchising, LLC, Corporate Connections Global, LLC, Prosperity Brands, LLC, and Scion Social Holdings LLC.

BNI Global, LLC遵守美国商务部制定的欧盟-美国数据隐私框架（EU-U.S. DPF）、欧盟-美国数据保护框架协议的英国扩展条款，及瑞士-美国数据隐私框架（Swiss-U.S. DPF）。BNI Global, LLC已向美国商务部证明，其在依赖欧盟-美国数据隐私框架及英国扩展框架处理来自欧盟及英国的个人信息时遵守欧盟-美国数据隐私框架原则。BNI Global, LLC亦已认证其在依赖瑞士-美国数据隐私框架处理来自瑞士的个人信息时遵守瑞士-美国数据隐私框架原则。如本隐私政策条款与欧盟-美国/瑞士-美国数据隐私框架原则存在冲突，以该原则为准。欲了解数据隐私框架（DPF）项目及查阅我们的认证，请访问https://www.dataprivacyframework.gov/。BNI美国子公司遵守上述框架的包括：BNI Connect Global, LLC、BNI Franchising, LLC、BNI Global, LLC、BNI Global Holdings LLC、BNI Holdings, LLC、BNI Intermediate Holdings, LLC、BNI International Holdings CTB, LLC、Corporate Connections Franchising, LLC、Corporate Connections Global, LLC、Prosperity Brands, LLC及Scion Social Holdings LLC。

Under the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, you have the following rights:

依据欧盟-美国数据保护框架协议、欧盟-美国数据保护框架协议的英国扩展条款及瑞士-美国数据隐私框架，您拥有以下权利：

Right to choose (opt out) whether your personal information is (i) to be disclosed to a third party or (ii) to be used for a purpose that is materially different from the purpose(s) for which it was originally collected or subsequently authorized by you, through clear, conspicuous, and readily available mechanisms to exercise choice.
选择权（退出权）：您有权选择（退出）是否将您的个人信息(i) 披露给第三方，或 (ii) 用于与最初收集或随后经您授权的目的有实质性差异的目的，并通过清晰、醒目且易于获得的机制行使选择权。
Right to access personal information about you that we hold and the right to correct, amend, or delete that information where it is inaccurate, or has been processed in violation of the Principles, except where the burden or expense of providing access to you would be disproportionate to the risks to your privacy in the case in question, or where the rights of persons other than you would be violated.
访问权及更正、修改或删除权：您有权访问我们持有的您的个人信息，并在信息不准确或违反原则的情况下更正、修改或删除该信息，但如果向您提供访问权限的负担或费用与您在相关情况下隐私面临的风险不成比例，或者会侵犯您以外的其他人的权利，则不在此列。

Additional information on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF can be viewed at https://www.dataprivacyframework.gov/s/. The Federal Trade Commission (FTC) has jurisdiction over BNI’s compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF. BNI will annually renew its EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF self-certification to help ensure the treatment of all personal data continues to be accurate and processed in accordance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF principles. In cases of onward transfer to third parties of EU, UK, and Swiss Personal Data received pursuant to the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and Swiss-US DPF, BNI is potentially liable. All questions or complaints regarding the processing and use of personal data should be directed to [email protected]. You may also contact BNI's Data Protection Officer by email at [email protected].

关于欧盟-美国数据隐私框架、欧盟-美国数据隐私框架英国扩展版，及瑞士-美国数据隐私框架的更多信息，详见https://www.dataprivacyframework.gov/s/。美国联邦贸易委员会（FTC）负责监管BNI对上述框架的遵守。BNI将每年更新其欧盟-美国数据隐私框架、欧盟-美国数据隐私框架英国扩展版以及瑞士-美国数据隐私框架的自我认证，以确保所有个人信息持续准确并依上述原则处理。如果根据欧盟-美国数据隐私框架、欧盟-美国数据隐私框架英国扩展版以及瑞士-美国数据隐私框架接收的欧盟、英国和瑞士个人数据被转交给第三方，BNI 可能承担相应的法律责任。所有关于个人信息处理与使用的疑问或投诉请发送至[email protected]。您亦可通过[email protected]联系BNI的数据保护官。

In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, BNI Global, LLC commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF to JAMS, an alternative dispute resolution provider. If you do not receive timely acknowledgment of your DPF Principles-related complaint from us, or if we have not addressed your DPF Principles-related complaint to your satisfaction, please visit https://www.jamsadr.com/dpf-dispute-resolution for more information or to file a complaint. The services of JAMS are provided at no cost to you.

根据欧盟-美国数据保护框架（EU-US DPF）、欧盟-美国数据保护框架的英国扩展条款以及瑞士-美国数据保护框架（Swiss-US DPF），BNI Global, LLC承诺将任何未解决的、与我们依据欧盟-美国数据保护框架、欧盟-美国数据保护框架的英国扩展条款以及瑞士-美国数据保护框架处理个人数据相关的投诉提交给JAMS（一家替代性争议解决机构）。如果您未及时收到我们对您基于数据保护框架原则提出的投诉的确认，或者我们未能令您满意地解决您基于数据保护框架原则提出的投诉，请访问 https://www.jamsadr.com/dpf-dispute-resolution了解更多信息或提交投诉。JAMS提供的服务完全免费。

You may have the option to select binding arbitration for the resolution of your complaint under certain circumstances, provided you have taken the following steps: prior to initiating an arbitration claim: (1) raised the claimed violation directly with BNI and afforded us the opportunity to resolve the issue within the timeframe set forth in section (d)(i) of the Supplemental Principle on Dispute Resolution and Enforcement; (2) made use of the independent recourse mechanism under the Principles, at no cost to you; and (3) raised the issue through your Data Protection Authority (DPA) to the US Department of Commerce and afforded the US Department of Commerce an opportunity to use best efforts to resolve the issue within the timeframes set forth in the Letter from the Department’s International Trade Administration, at no cost to you.

在特定情况下，您可选择具有约束力的仲裁方式解决投诉，前提是您已采取以下步骤：在提出仲裁请求前：（1）直接向BNI提出所声称的违反事项，并给予我们按照《争议解决与执行补充原则》第(d)(i)节规定期限解决问题的机会；（2）无偿使用原则下的独立追索机制；（3）通过您的数据保护主管机关向美国商务部提出问题，并给予美国商务部在商务部国际贸易管理局的信函规定期限内尽最大努力解决问题的机会，且无需您支付任何费用。

How to Contact Us

联系我们

If you have any questions or concerns about BNI’s Privacy Policy or data processing or if you would like to make a complaint about a possible breach of local privacy laws, please do so by contacting us by email, telephone, or mail as follows:

如对BNI隐私政策或数据处理有任何疑问切，或者您想就可能违反当地隐私法律的情况提出投诉，请通过以下电子邮件、电话或邮件方式联系我们：

BNI Worldwide Development Ltd
Ballinrobe Road
Castlebar
Co. Mayo
F23 FT28
IRELAND
Phone: +353 94 902 1553
Email: [email protected]

BNI Worldwide Development Ltd
Ballinrobe Road
Castlebar
Co. Mayo
F23 FT28
爱尔兰
电话：+353 94 902 1553
邮箱：[email protected]

BNI’s Data Protection Officer can be contacted at the above address or phone number, or by email at [email protected].

可通过上述地址或电话联系BNI数据保护官，或发送邮件至[email protected]。

If you are a resident of China, please contact us at:

如您为中国居民，请通过以下方式联系我们：

BNI Enterprise Business Network (Guangzhou) Co Ltd
Room A, 12/F., No.33 Huangpu Avenue West,
Tianhe District, Guangzhou, China
Phone: 86-020-86846574
Email: [email protected]
商网天企业管理（广州）有限公司
中国广州市天河区黄埔大道西33号12楼A室
电话：86-020-86846574
邮箱：[email protected]

Changes to this Policy

政策变更

We will update this Privacy Policy when necessary to reflect customer feedback and changes in our products and services. When we post changes to this statement, we will revise the “last updated” date at the top of this Policy. We recommend that you check our Sites from time to time to inform yourself of any changes in this Policy. We will not reduce your rights under this Policy without your consent.

我们会根据客户反馈以及产品和服务的变化，在必要时更新本隐私政策。政策变更时，我们会更新顶部“最后更新日期”。建议您定期查阅本网站以了解政策变更。未经您的同意，我们不会减少您在本政策下享有的权利。

（End 正文结束）

所有版权归BNI Global, LLC所有。

Effective/Last Updated: October 2025

最后更新：2025年10月

BNI Worldwide Development Limited and BNI Global, LLC affiliated entities:
BNI关联公司列表：