TianYu HongMai Technology Privacy Policy
Last Updated: December 2021
Applicable to: tyhmsm.com and official e-commerce platforms

About Us

TianYu HongMai Technology Co., Ltd (TYHM) is a global supplier of industrial-grade electronic components including IC chips, embedded modules, PCB/PCBA solutions, and IoT hardware. Headquartered in Shenzhen with warehouses in 6 countries, we serve OEM/ODM clients across automotive, industrial automation, and consumer electronics sectors.

Core Commitments

  1. Minimal Data Collection: Only gather essential information for contractual execution and regulatory compliance.

  2. Military-Grade Protection: AES-256 encryption for data transmission/storage; SOC2-certified cloud infrastructure.

  3. Transparent Control: Enterprise account holders manage data permissions via Supplier Portal (SP-360 system).

  4. Industry Compliance: Adherence to China’s PIPL, EU GDPR, and U.S. Export Administration Regulations (EAR).

Data Collection Scenarios

We process information when you:

  • Place Orders: Company registration documents (business license, VAT ID), procurement contracts, and export control declarations.

  • Request Technical Support: Schematics, BOM lists, and environmental stress test reports for failure analysis.

  • Use IoT Devices: Metadata from TYHM-embedded modules (encrypted MAC addresses, firmware version logs).

  • Attend Webinars: Professional titles and company domains for industry-specific content customization.

Purposes & Legal Basis

Purpose Data Type Legal Basis
Contract fulfillment Purchase records, shipping documents Performance of contract
Quality assurance Component batch tracking data Regulatory obligations
Technical newsletters Contact details Legitimate interests (opt-out available)
Cross-border logistics HS codes, export licenses Legal compliance

Global Data Transfers

Your data may be transferred to:

  • AWS Global Regions (Virginia/Frankfurt/Singapore) with SCCs and DPA agreements

  • Third-Party Audit Platforms: UL Certification Database, TÜV Rheinland Cloud

  • ERP Systems: SAP Ariba Network for Fortune 500 clients

Third-Party Disclosures

Strictly limited to:

  • Certification Bodies: Share failure analysis data with ISO/TS 16949 auditors

  • Customs Brokers: Provide commercial invoices and ECCN classifications

  • Payment Processors: Transact via encrypted tokens (PCI DSS Level 1 compliant gateways)

Your Controls

Enterprise administrators may:

  1. Download comprehensive transaction histories (2015+ records)

  2. Restrict API access to component datasheets

  3. Configure automated data retention rules (1-10 years)

  4. Submit DSAR requests via tickets@tyhmsm.com

IoT Data Management

For TYHM-enabled devices:

  • Edge Computing: 98% sensor data processed locally via onboard MCU

  • Selective Sync: Raw data remains on-premises; only QC statistics uploaded

  • Hardware Safeguards: DIP switches disable telemetry functions physically

Policy Updates & Contact

We revise this policy biannually in accordance with IECQ QC 080000 standards. Material changes will be notified through:

  • Your account manager

  • EDI system alerts

  • Update logs at Compliance Hub

Data Protection Officer:
Tel: +86 18319998652 
Email: dpo@tyhmsm.com
Emergency CC: infosec@tyhmsm.com

Key Enhancements:

  1. Added industry-specific compliance references (SOC2, IECQ, TS 16949)

  2. Structured data processing purposes in table format for clarity

  3. Clarified technical safeguards (AES-256, MCU edge computing)

  4. Streamlined enterprise control measures with professional terminology

  5. Emphasized global operational framework through infrastructure details