Privacy Policy

1) Scope & Definitions

This Privacy Policy ("Policy") describes how DreamWithUs ("we", "our", "us") handles personal information in connection with our mobile applications, related digital services, official websites (including cjdict.com and its subdomains), and any current or future applications, app variants, rebranded editions, localized releases, companion modules, APIs, widgets, and associated content or support services that we publish, operate, or make available (collectively, the "Services").

Reference to any specific product name (for example, CJ Dict) is illustrative and non-limiting; this Policy applies to all Services. To the extent any portion of the Services is operated through third-party platforms or distribution channels, the operator of that platform may also apply its own terms.

2) Information We May Collect

Depending on product configuration, platform behavior, device settings, and applicable law, the following categories of information may be processed in connection with the Services:

• Technical identifiers and device metadata — device/app identifiers, platform and OS attributes, SDK-level identifiers, network type, language/region.
• Usage and interaction data — session events, navigation flows, feature interactions, preference changes, engagement signals.
• Diagnostics and reliability data — crash records, exception traces, version/build info, runtime health.
• Performance telemetry — latency, startup timing, request/response metrics, resource usage indicators.
• Approximate geolocation — inferred by service providers from network signals such as IP address, where applicable.
• Locally stored user data — preferences, saved items, history, and recent activity stored on your device to support continuity and personalization.
• Commercial and transactional metadata — subscription or entitlement state, purchase platform metadata, refund or cancellation events (if any).
• Security and abuse indicators — abnormal traffic signals, integrity flags, fraud-risk signals.

2.1 Data Sources

• Directly from you — what you input, upload, or configure.
• Automatically from device/app context — telemetry, diagnostics, identifiers, interactions.
• From third-party service providers — analytics, attribution, advertising, reliability, and fraud-prevention signals operated by their own systems.

2.2 Sensitive Information

We do not intentionally solicit sensitive personal data unless strictly necessary for a feature you explicitly invoke, for lawful compliance, or where explicit consent is obtained as required by law.

2.3 Variability

Exact data elements may vary by jurisdiction, app version, platform, device model, operating system, SDK release, and your permission, privacy, or advertising settings. Third-party SDKs may collect data directly under their own legal disclosures.

3) System Permissions & Local Data

The Services request system permissions only when reasonably necessary for user-invoked functionality or lawful service operation. Permission categories may include:

• Audio-related permissions (for voice-enabled interactions, where available).
• Camera access (for image-based user workflows, where available).
• Photo/media library access (for user-selected media import or export, where available).

You may grant, deny, or revoke permissions through system settings at any time. If a required permission is denied or revoked, related features may be limited, unavailable, or degraded. Permission prompts and behavior may differ across operating systems, versions, and jurisdictions.

Certain data is stored locally on your device to support app state, continuity, and personalization. Local data may include configuration values, cached records, saved content, and recent activity artifacts, which you can remove by clearing app data, using in-app deletion actions, or uninstalling the relevant app.

4) How Information Is Used

• Deliver and measure advertising through integrated advertising and mediation partners.
• Analyze usage patterns and improve user experience through analytics and measurement services.
• Detect, investigate, and remediate technical failures through diagnostics and reliability services.
• Monitor and optimize runtime, network, and service quality through performance observability services.
• Operate features that rely on user-granted permissions.
• Perform aggregated measurement, product research, and service improvement.
• Protect against abuse, fraud, unauthorized access, and policy violations.
• Comply with legal obligations and enforce our legal rights.

Where permitted by law, we may use de-identified, aggregated, or statistical data for product planning, benchmarking, quality control, business operations, and strategic decision-making. We do not attempt to re-identify de-identified datasets.

We may also use data to test compatibility across devices, prevent misuse, enforce platform and legal requirements, and maintain operational continuity, auditability, and incident response readiness.

5) Third-Party Services & Processors

We may engage trusted third-party processors and service providers, including, without limitation:

• Advertising and ad-measurement providers.
• Analytics and attribution providers.
• Crash diagnostics and reliability providers.
• Performance monitoring and infrastructure providers.
• Cloud hosting, content delivery, and security service providers.

These providers may process data under their own privacy notices, as independent controllers or as processors, as permitted by applicable law. Provider lists, links, and integrations may change over time due to technical, contractual, legal, or operational reasons.

Where required, we rely on contractual safeguards such as data processing agreements (DPA), standard contractual clauses (SCC), or equivalent mechanisms.

5.1 Requests Directed to Third Parties

Where personal data is processed and independently controlled by third-party providers, privacy requests should be directed to the applicable third party. For example, for Google ecosystem services, users may refer to the Google Privacy Policy and related account and privacy controls. We are not responsible for how third parties independently handle or respond to user requests.

6) Sharing, Disclosure & "Sale"

We do not sell personal information for monetary consideration. We share data only with service providers and partners as reasonably necessary to operate, analyze, secure, and monetize the Services, and as described in this Policy.

6.1 Service Provider Disclosures

We may disclose personal information to processors and service providers for hosting, analytics, diagnostics, ad delivery, fraud prevention, legal compliance, and support operations, subject to applicable contractual and legal safeguards.

6.2 Legal & Safety Disclosures

We may disclose information where required by law, regulation, legal process, or governmental request, or to enforce rights, prevent harm, and protect the integrity, security, or availability of the Services.

6.3 Broader "Sharing" Under Local Law

Some jurisdictions define "share" broadly to include certain advertising, analytics, or measurement disclosures. Where legally required, users may exercise applicable opt-out rights through platform controls or by contacting us.

6.4 Corporate Events

In connection with a merger, acquisition, financing, reorganization, bankruptcy, insolvency, or sale of assets, personal data may be disclosed or transferred as part of due diligence or transaction execution, subject to applicable legal safeguards.

7) Legal Bases

Where required by applicable law, processing is based on one or more of the following:

• Consent — for processing that legally requires consent.
• Contract / Service Delivery — to provide functionality you request.
• Legitimate Interests — service improvement, security, fraud prevention, diagnostics, and business continuity, balanced against your rights.
• Legal Obligation — compliance with applicable law or lawful requests.

8) User Rights & Request Handling

Depending on your jurisdiction, you may have rights including, without limitation:

• Access to personal data we process about you.
• Correction or deletion where applicable.
• Objection to or restriction of certain processing.
• Withdrawal of consent where processing is consent-based.
• Opt-out of personalized advertising through device-level controls.
• Data portability where required by law.
• Appeal where granted by local law.
• Non-discrimination for exercising privacy rights where required by law.

To exercise applicable rights, contact us at [email protected].

We may verify identity, authority, and scope before processing requests, and may deny or limit requests where legally permitted (for example, when requests are manifestly unfounded, excessive, technically infeasible, or conflict with legal obligations). Where required by law, we will provide reasons for denial and appeal channels.

9) No Direct Identity Database

We generally do not operate a direct account-identity database containing legal names, government ID numbers, or similar direct identity records for core use of the Services. If we cannot reasonably identify you from the data we hold, we may be unable to fulfill certain requests unless additional identifying information is provided, subject to applicable law.

For data held independently by third-party providers (including advertising, analytics, attribution, diagnostics, or infrastructure providers), requests should generally be submitted directly to those providers, who act under their own legal terms and disclosures.

10) Retention

We retain data only for as long as reasonably necessary to deliver the Services, maintain security and integrity, perform diagnostics and analytics, fulfill legal compliance, and prevent fraud or abuse. Retention periods vary by data type, processor, and applicable legal obligation.

Locally stored data can generally be removed by clearing app data, using in-app deletion actions, or uninstalling the relevant app, subject to platform behavior. Backup, archival, and disaster-recovery copies may persist for limited periods after deletion and are removed or anonymized in accordance with technical lifecycle constraints and legal requirements.

11) Security

We apply reasonable administrative, technical, and organizational safeguards proportional to operational risk. Controls may include access restrictions, encryption where appropriate, least-privilege principles, logging, vendor risk management, and incident response procedures.

No method of transmission or storage is completely secure. You acknowledge that use of internet-connected services inherently involves security risk, and that we are not liable for unauthorized access events beyond our reasonable control, to the fullest extent permitted by law.

12) Children's Privacy

The Services are not directed to children under the age required by applicable law (for example, 13 in the United States, 16 in certain EEA jurisdictions). We do not knowingly collect personal information from such children. If you believe such data has been inadvertently provided, contact us to request deletion.

13) Cookies & Tracking Technologies

Mobile applications do not set browser cookies directly. Integrated SDKs and service providers may use device identifiers, local storage tokens, software development tags, pixels, web beacons, or similar technologies for measurement, diagnostics, attribution, fraud prevention, frequency capping, and ad delivery where permitted by law. Websites operated under the Services may also use cookies or equivalent technologies subject to applicable consent requirements.

You may manage many tracking preferences through device-level privacy settings, browser controls, or platform advertising preferences.

14) International Data Transfers

Personal data may be processed on servers located outside your country or region by us or our service providers. Where required, we rely on legally recognized transfer mechanisms such as adequacy decisions, standard contractual clauses, certifications, or equivalent safeguards, and may perform transfer impact assessments and apply supplemental controls where required.

Data localization, security assessment, filing, or approval requirements will be followed where mandated by local law.

15) Disclaimers & Limitation of Liability

15.1 As-Is Services

To the fullest extent permitted by applicable law, the Services are provided on an "as is" and "as available" basis without any representation or warranty of any kind, whether express, implied, or statutory, including without limitation merchantability, fitness for a particular purpose, non-infringement, uninterrupted availability, accuracy, reliability, or error-free operation.

15.2 Content & Output Disclaimer

All outputs, results, computations, references, translations, recognitions, estimations, and suggestions produced or presented by the Services are provided for general reference and convenience only. They are not legal, medical, financial, tax, regulatory, educational, engineering, or professional advice.

15.3 Limitation of Liability

To the fullest extent permitted by law, DreamWithUs and its operators are not liable for any direct, indirect, incidental, consequential, special, exemplary, or punitive damages, or for loss of data, profits, revenue, goodwill, business opportunities, or device interruption or damage, arising from or related to your use of, or inability to use, the Services.

15.4 Liability Cap

Where liability cannot be fully excluded, our aggregate liability for all claims related to the Services will not exceed the amount you paid (if any) for the relevant Service during the twelve (12) months preceding the event giving rise to the claim, or one hundred United States dollars (US$100), whichever is greater.

15.5 Mandatory Law Carve-Out

Nothing in this Policy excludes, restricts, or modifies any right, remedy, guarantee, or condition that cannot be lawfully excluded, restricted, or modified under applicable mandatory law. In such cases, limitations apply to the maximum extent legally permitted, and the remainder of this Policy remains in full force and effect.

15.6 Third-Party Responsibility

The Services may include third-party services, SDKs, platforms, and content. We are not responsible for third-party privacy practices, legal compliance, availability, or content accuracy. Third-party obligations, breaches, outages, or policy decisions are outside our reasonable control and remain subject to each third party's own legal and operational responsibility.

15.7 Force Majeure

We are not liable for delays, failures, or interruptions caused by events beyond our reasonable control, including internet outages, platform or provider actions, regulatory directives, cyber incidents, labor disputes, pandemics, or natural events.

15.8 Indemnity

You agree to defend, indemnify, and hold harmless DreamWithUs and its operators from any claims, liabilities, damages, losses, and expenses (including reasonable legal fees) arising from your misuse of the Services, violation of law, or violation of third-party rights.

16) Global Compliance Framework

This Policy is designed as a unified, globally applicable framework. It is intended to operate consistently across jurisdictions where the Services are available, and to integrate with local mandatory requirements rather than replicating every jurisdictional regime.

16.1 Local Law Supremacy

• Where mandatory local privacy, cybersecurity, consumer, or data-governance law imposes stricter requirements, those requirements prevail to the extent legally required.
• Where local law grants specific rights, notices, restrictions, or remedies, users in that jurisdiction may exercise them under applicable procedures.

16.2 Lawful Basis, Purpose Limitation & Minimization

• We process data on recognized lawful bases where required.
• We apply purpose limitation and proportionality and collect data reasonably necessary for disclosed operational, security, analytics, and compliance purposes.
• We do not knowingly sell personal information for monetary consideration; we support legally required opt-out rights where applicable.

16.3 Cross-Border Safeguards

• We apply legally recognized transfer safeguards such as contractual clauses, adequacy mechanisms, assessments, and certifications where required.
• We apply technical and organizational safeguards proportional to risk.
• Where mandated, we follow data localization, security assessment, filing, or approval obligations.

16.4 Rights & Request Handling

• Subject to local law, users may exercise rights including access, correction, deletion, restriction, objection, portability, consent withdrawal, complaint, appeal, and non-discrimination for rights exercise.
• We may verify identity, authority, and scope before processing requests and deny or limit where legally permitted.

16.5 Compliance Evolution & Auditability

• We may adapt data handling practices, notices, and controls as privacy, cybersecurity, and platform rules evolve.
• Where lawfully required, we cooperate with regulators, courts, and competent authorities.
• If any provision of this Policy conflicts with mandatory law in a jurisdiction, that provision will be interpreted or replaced to the minimum extent needed for legal validity while the remainder remains effective.

17) Governing Law & Dispute Forum

This Policy is governed by the laws of the jurisdiction in which DreamWithUs operates, excluding conflict-of-law rules, except where mandatory local consumer protection laws provide otherwise. Disputes shall be submitted to the competent courts of that jurisdiction unless non-waivable law requires a different forum.

18) Changes to This Policy

We may update this Policy from time to time to reflect operational, technical, legal, or regulatory changes. Updates become effective when posted with a revised effective date. Your continued use of the Services after the effective date constitutes acceptance of the revised Policy to the extent permitted by law.

19) Contact

For privacy questions, requests, or legal notices:
[email protected]