Our Privacy Policy was updated on 2019 December 30, 2019.
Please take a moment to familiarize yourself with our privacy policy and let us know if you have any questions.
Xiaomi Wi-Fi is an application provided by Xiaomi Inc. and its affiliates (hereinafter “Xiaomi” or “we/us”) for Mi Router management, network device management, Wi-Fi management and other services.
We greatly value your privacy. This Privacy Policy is a statement and commitment to privacy made by Xiaomi Wi-Fi, and is an important part of the Xiaomi Privacy Policy. Where any inconsistencies exist between Xiaomi Wi-Fi special agreements and the Xiaomi Privacy Policy, this Privacy Policy shall prevail; where not provided in this Privacy Policy, the Xiaomi Privacy Policy shall prevail. In particular, regarding the agreements on “Minor Information Protection, Security Measures, Cross-border Transmission,” it is recommended that you read the” Xiaomi Privacy Policy in detail.
This Privacy Policy is designed with you in mind, and it is important that you have a comprehensive understanding of our personal information collection and usage practices, and ultimately have control of any personal information provided to us. This Privacy Policy governs how we collect, use, disclose, process and store the information you provide to us when using our Xiaomi Wi-Fi. “Personal information” under this Privacy Policy means information that can be used to identify a particular individual, either from that information alone or through association with other information. We will use this information in strict accordance with this Privacy Policy.
Ultimately, we want to give users the best experience possible. Should you have any concerns with our personal information handling practices as summarized in this Privacy Policy, please contact us by emailing privacy@xiaomi.com to address your specific concerns. We are extremely grateful for your feedback.
(i) You must authorize us to collect and use your personal information
The purpose of collecting personal information is to provide services and/or products to you, and to ensure that we comply with applicable laws, regulations and other normative documents. You have the right to select whether or not to provide this information, however in most cases, should you not provide it, we may not be able to provide you with the appropriate services or respond to your issues. These functions include:
1.Functions necessary to manage and control the Mi router
(1) Mi Router configuration
In order to configure the Mi Router that provides you with Xiaomi Wi-Fi services, we may collect your Mi Account information, location information, device and account binding relationship, device identification information, configured Mi Router information and hardware and system information. Of which, your location information is used to obtain Wi-Fi info (Android 6.0 and above, must have location permission in order to obtain Wi-Fi info and Bluetooth use permissions) and determine the device’s connected server and default language. Configured Mi Router information will be used to confirm device type, activation and active status, determine the software functions included in the activation process, and identify the SSID used for binding with the device. Also for counting the number of device activation and activation. We will also use your aforementioned personal information in order to continue improving and optimizing the aforementioned functions.
The above various information types are listed in detail as follows:
· DEvice identification information: IMEIOAID, MAC address, Android IDIDFA and IP.
· Configured Mi Router information: Information related to your Mi Router. Includes Mi Router activation status, binding status, active status, sharing status, model, system version, MAC address, device SN, device ID, country code, and router location.
· Hardware and system information: LED light onoff status, USB 3.0 onoff status, default time zone, default date, default time, firmware version number and default language.
(2) Identify and display devices connected to the Mi Router
In order to provide management functions of the Mi Router, we may collect any or all information including network information, terminal device information, location information and hard drive information. Relevant Mi Router related information is used to identify the divice and provide corresponding functions and processes for every network device. For example, based on activation statusthe router will confirm whether to enter into initialization procedures; based on binding status, the router will confirm whether to bind with the Mi account; based on country code, the router will set the default time and language; and based on system version, the router will provide corresponding functions. Meanwhile, this portion of data may also be used for local router management and in-app displays of Xiaomi Wi-Fi, enabling you tomanage your network. Network SSID and encrypted passwords in the network information, as well as index information in the hard drive information may be used to provide remote access services. During remote access to your router, data may be transmitted via our servers to your device. Such data is encrypted and not stored on our servers.
The above various information types are listed in detail as follows:
· Network information: Information related to your network status. It includes network SSID, access mode, gateway address, upload and download speed of WAN port, encryption mode, Wi-Fi channel, non plaintext password, MU-MIMO onoff status, 2.4G/5G band onoff status and VPN configuration information (if the user has configured relevant information).
· Device information: Information of device connected to the network. Includes device connection status and timing, device name, IP address, MAC address, device type, device brand, connection type, signal strength, noise strength, upload and download speeds and throughput, maximum upload and download speeds, guest Wi-Fi ID information, guest network connect and disconnect time, operating system, device online duration and frequency of Wi-Fi connections made; in addition, bandwidth usage ratio and duration will be reported when the device exceeds a certain threshold.
· Location information: Information related to your location. Includes country code, GPS positioning (if granted permission), default time zone, default date, default time and default language.
· Hard disk information: if your Mi router is connected to a hard drive, or has a self-contained hard disk, we will collect information related to the hard drive. Includes a summary of stored files, specifically the total size, file count and index information. If you have activated the photo backup function (see below), we may also collect a summary of your backed up photo files, specifically the total size, photo count and index information.
(3) Push notifications
In order to provide push notifications for your Mi Router, we may collect your Mi Account, terminal device information, disk information and network information to provide you with message push services. Push services cover terminal device online alters, new software update alerts, backup behavior alert, channel switch alerts, permission sharing alerts, system error alerts, device report alerts and function recommendations.
(4) Application update
In order to allow you to continue enjoying Xiaomi Wi-Fi services, we will provide you with application updates. During this function, we may collect the router name and system version information to display to you the version information and update functions of the device.
(5) Firewall settings
We can provide you with firewall settings for your Mi Router. In order to use this function, we may collect your firewall level settings, network blacklist and whitelist and the MAC address of devices that have been blocked and experienced access failure, used to demonstrate the firewall effects and realize firewall functions. Please be assured that this information is stored locally on the Mi Router and will not be stored in the cloud.
(6) Wi-Fi speed testing and optimization:
We will read information such as download speeds, upload speeds, network delays, mobile network security status, Wi-Fi channel status, noise strength, channel throughput, download task status, upload status and signal strength. This information will be used to assess and display Wi-Fi quality, download status, upload status and signal strength. Please be assured that this information is read locally and will not be stored in the cloud.
(7) Quality of service (QoS):
We provide QoS functions. When you turn on the QoS functions, we may collect information such as bandwidth information, upload and download speeds, the type of speed limit you set (such as game priority) and the upload and download speed limit you set. This information will be used for intelligent speed distribution and speed limits.
(8) Regular visitor Wi-Fi:
We support the set-up of a Wi-Fi subnet that is specifically for visitors. If you set up visitor Wi-Fi, the supported device will connect to the subnet as a visitor, thereby distinguishing it from the primary network. In order to enable this function, we may collect the function on/off status, network SSID, encryption status, encrypted passwords and network terminal information that you have set. This information will be used to provide visitor Wi-Fi and network device display functions.
(9) Wi-Fi timer, scheduled reboot:
For better Xiaomi Wi-Fi service, we support setting Wi-Fi timer and scheduled reboot. When you turn on these functions, we may collect your Wi-Fi reboot time in order to enable you to set the Wi-Fi timer and/or reboot.
(10) Photo Backup:
When you use the hard drive version of the Mi Router, or an external hard drive to the router, we provide Photo Backup to the router. When you authorize storage permissions and turn on syncing photos with router automatically, we may collect drive status, operating action information, photo index information, picture size, backup date and most recent backup time to determine whether the router has a storage device, to display the backup status and information and to provide you with Photo Backup.
(11) Hard drive storage:
When you use the hard drive version of the Mi Router, or an external hard drive to the router, we may also collect hard drive-related information in order to provide you with hard drive storage. Includes a summary of stored files, specifically the total size, file counts and index information, as well as a summary of backed up photo files (if using Photo Backup), specifically the total size, file counts and index information. This information will be used to provide you with the ability to view and manage your hard drive information.
(12) Router sharing:
When this function is turned on, we will collect the sharing status and shared account information of your Mi Router, enabling users to provide you with sharing functions while also giving you the ability to control your sharing and view the sharing status of your router.
(13) Router backup:
When this function is turned on, we will upload your router configuration information to the cloud in order to back up your router configuration. Router configuration information uploaded to the cloud includes: Device model, MAC address, device SN, device country code, system version number, network SSID and password.
(14) Feedback:
In order to locate and resolve the issue you've encountered faster, we may collect the following data: the description of the issue, attached screenshots, your phone number and email address, models of your router and phone, system versions, Mi WiFi app version, your region.
2.Necessary features to ensure Wi-Fi security
In order to improve the security of your system when using our products and/or services and guard against hackers or unauthorized access, we will collect your environmental characteristics value (ECV) (i.e., from the Mi Account, connected Wi-Fi account and geographic location information) to verify the identity of the user.
(ii) You fully understand that we do not require your consent to collect and use personal information in the following situations:
1.Situations related to national security and national defense security;
2.Situations related to public safety, public health, and major public interest;
3.Situations related to criminal investigations, lawsuits, trials, and execution of judgments;
4.Situations in which it is difficult to obtain personal consent for the purpose of protecting the life, property and other material and legitimate rights of the personal information subject or other individuals;
5.Situations in which the personal information collected is disclosed by the personal information subject to the public;
6.Situations in which personal information is collected from legitimately and publicly disclosed information, such as legitimate news reports, government information disclosures and other channels;
7.Situations in which it is necessary for entering into a contract according to your requirements;
8.Situations in which it is necessary to protect the secure and stable operation of the products andor services provided, such as failure to discover and dispose of products andor services;
9.Situations in which it is required for legitimate news reporting;
10.Situations in which an academic research institution conducts statistical or academic research based on public interests; where providing the results of academic research or descriptions externally, the personal information contained in the results shall be anonymized;
(iii) Non-personal information
We may also collect other information that does not identify a particular individual (i.e., information that does not fall under personal information), such as statistical data generated when you use a particular service, including device-related information, function module clicks and push notification alerts or clicks. Such information is collected in order to improve the services we provide to you. The type and amount of information collected will depend on how you use our products and/or services.
For the purposes of this Privacy Policy, aggregated data is considered non-personal information. If we use non-personal information in combination with personal information, such information will be treated as personal information during the combined use.
We retain personal information for the period of time necessary for the purpose of information collection as described in this Privacy Policy, or for compliance with applicable laws. After the purpose of personal information collection has been achieved, after we confirm your application for deletion or cancellation, or after we terminate the operation of the corresponding product or service, we will cease the retention of information and delete or anonymize it. If in the public interest, for scientific or historical research or statistical purposes, we will continue to retain relevant data based on applicable laws, even if further processing is incompatible with the original purpose.
(i) Control settings
We recognize that privacy concerns differ from person to person. Therefore, we provide some examples of the various ways Xiaomi Wi-Fi enables you to choose to restrict the collection, use, disclosure or processing of your personal information and control your privacy settings:
· Toggle on/off permissions to location access, read contacts, access mobile accounts, read and write phone storage and read application list;
· Log in or log out of your Mi Account;
· Bind/unbind your Mi Router;
· Toggle on/off automatic backup of photos on your phone.
If you have previously agreed to us using your personal information for the abovementioned purposes, you may change your mind at any time by writing to us or emailing us at privacy@xiaomi.com.
(ii) Your rights to your personal information
Depending on the national or regional laws and regulations that apply to you, you have the right to request access to, corrections of and removal of any personal information we hold about you (hereinafter the “Request”).
You may access and change details relating to the personal information in your Mi Account at http://account.mi.com or by logging into your account on your device. For additional information, please write to us or contact us at the email address below. Email: privacy@xiaomi.com .
Most laws require that Requests from personal information subjects be subject to specific requirements. This Privacy Policy requires that your Request be consistent with the following:
· For the protection of your information security, your Request should be made through our dedicated Request channel in writing (unless local law explicitly recognizes verbal application);
· Provide sufficient information to enable us to verify your identity and ensure that the requester is the subject of the Request or legal licensor of the requested information;
Once we obtain sufficient information and confirm we can accommodate your Request, we shall proceed to respond to your request within the time frame set out under your applicable data protection legislation. In particular:
· A copy of your personal information record collected and processed by us will be provided to you free of charge upon your Request and as provided in applicable laws. For any additional Requests for the same information, we may charge a reasonable fee according to relevant laws and based on actual administrative costs.
· If you believe that any information we hold about you is incorrect or incomplete, you may Request that your personal information be corrected or made complete based on the purpose of use.
· Depending on the applicable laws and regulations, you may have the right to Request we delete your personal data. We shall consider the grounds regarding your deletion Request and take reasonable steps, including technical measures, if the corresponding regulations are satisfied. After you delete the information (or are assisted by us in deleting the information), we may not be able to immediately remove the information from the backup system due to applicable laws and security technologies. We will securely store your personal information and isolate it from any further processing until the backup can be cleared or information anonymized.
We have the right to refuse to process Requests that are not substantive or meaningful, repetitive requests, requests that harm the privacy of others, extremely unrealistic requests, and requests for disproportionate technical work, as well as Requests that do not have to be granted in accordance with local laws, Requests for confidential information that has been made public, and information given under confidential conditions. If we believe that certain aspects of the Request to delete or access data may result in our inability to legally use the data for the aforementioned anti-fraud and security purposes, it may also be rejected.
(iii) Withdrawal of consent
· You may withdraw your consent for the collection, use, andor disclosure of your personal information in our possessionor control by submitting a request in the APP by going to “Router Settings > User Agreement & Privacy Agreement”. We will process your request within a reasonable time once it has been made, and depending on your request we will not collect, use andor disclose your personal information from that point on.
· Please note that your withdrawal of consent will result in certain legal consequences. Depending on the extent to which you authorize us to handle your personal information, it may affect your enjoyment of Xiaomi’s products or services. However, your decision to withdraw your consent or authorization will not affect the previous processing of personal information based on your authorization.
(iv) Cancellation of services or account
If you want to cancel specific products or services, you can send an email to privacy@xiaomi.com.
If you want to cancel your Mi Account, please do so with caution as canceling your Mi Account will prevent you from using the full range of products and services offered by Xiaomi. In order to protect the legitimate rights of yourself or others, we will determine whether to honor your cancellation request in conjunction with your use of Xiaomi’s products and services. For example, if there are outstanding installments, we cannot immediately honor your request.
If you have any comments or questions about this Privacy Policy or any questions relating to Xiaomi’s collection, use, or disclosure of your personal information, please contact us at the address below referencing “Privacy Policy”. We have a professional team to resolve your issues when it comes to requests for rights and questions regarding your personal information. If your issue involves more serious matters, we may ask you to provide further information. If you are not satisfied with the response received, you may transfer the complaint to the relevant regulatory authority in your jurisdiction. If you consult us, we will provide information on the relevant complaint channels that may be applicable based on your actual situation.
Xiaomi Singapore Pte. Ltd.
20 Cross Street, China Court #02-12
Singapore 048422
Email: privacy@xiaomi.com