Legal

Privacy Policy

Last updated: July 2025

Zhongshan City EOS Secure Technology Co., Ltd (operating under the brand name "EOSYS," and referred to herein as "EOSYS," "we," "us," or "our") is committed to protecting the privacy of our business partners, website visitors, and customers worldwide. This Privacy Policy explains how we collect, use, store, and share your personal information when you interact with our website, services, and business operations.

1. Who We Are

EOSYS is a brand of Zhongshan City EOS Secure Technology Co., Ltd, a high-precision lock cylinder manufacturer headquartered in Zhongshan, Guangdong, China. Established in 2013, we specialize in the design, development, and manufacturing of patented security lock cylinders, modular cylinder systems, master key systems, and regional-standard cylinders for professional security markets worldwide.

Our primary business relationships are B2B (business-to-business), serving lock brands, distributors, door manufacturers, locksmith channels, and project integrators across Europe, Russia, the Middle East, North America, South America, and Southeast Asia.

Data Controller: Zhongshan City EOS Secure Technology Co., Ltd (Brand: EOSYS)

Address: No.29 Ronghua South Road, Xiaolan Town, Zhongshan City 528415, Guangdong, China

Email: winny@eos-secure.com

2. Information We Collect

We collect information in the context of our B2B manufacturing and commercial operations. The types of personal data we may collect include:

2.1 Information You Provide Directly

Business contact details: name, job title, company name, business email address, phone number, and mailing address
Inquiry & order information: product specifications, customization requirements, key charts, OEM/ODM project details, and purchase order data
Communication records: emails, messages, meeting notes, and correspondence exchanged through our website forms, email, or messaging platforms
Trade show & event data: business cards, registration details, and contact information collected at industry exhibitions

2.2 Information Collected Automatically

Device & browser data: IP address, browser type and version, operating system, device identifiers, and screen resolution
Usage data: pages visited, time spent on pages, referral URLs, click patterns, and navigation paths
Location data: approximate geographic location derived from IP address

2.3 Information from Third Parties

Business referrals: contact information provided by existing partners or distributors in the context of business introductions
Public business directories: company and contact information available through industry databases, trade platforms, or public records

3. How We Use Your Information

We use the information we collect for the following business purposes:

Business Operations

• Process inquiries and quotation requests
• Manage OEM/ODM project development
• Fulfill orders and coordinate shipments
• Provide after-sales technical support

Customer Relationship

• Maintain and develop business relationships
• Communicate product updates and new patents
• Coordinate factory visits and audits
• Deliver customized solution proposals

Quality & Compliance

• Maintain quality control documentation
• Manage inspection and certification records
• Comply with ISO 9001/14001 requirements
• Fulfill legal and regulatory obligations

Website & Analytics

• Improve website functionality and content
• Analyze visitor behavior and preferences
• Ensure website security and prevent abuse
• Optimize user experience across devices

4. Legal Basis for Processing

For visitors and partners in jurisdictions that require a legal basis for processing personal data (such as the EU/EEA under the GDPR), we rely on the following grounds:

Legal Basis	Application
Contractual Necessity	Processing required to fulfill orders, manage OEM/ODM projects, and perform contractual obligations with business partners
Legitimate Interest	Maintaining business relationships, responding to inquiries, improving our services, website analytics, and marketing to existing B2B contacts
Consent	Where required for specific cookie usage, marketing communications, or data processing activities where consent is explicitly obtained
Legal Obligation	Compliance with applicable laws, regulations, tax requirements, and export control obligations

5. Cookies & Tracking Technologies

Our website uses cookies and similar technologies to enhance your browsing experience and analyze website traffic. The types of cookies we use include:

Essential Cookies

Required for basic website functionality, security, and session management. These cannot be disabled.

Analytics Cookies

Help us understand how visitors interact with our website by collecting anonymous usage statistics (e.g., Google Analytics). This data helps us improve content and user experience.

Functional Cookies

Remember your preferences such as language selection and form inputs to provide a more personalized experience.

Managing Cookies

You can control and delete cookies through your browser settings. Please note that disabling certain cookies may affect website functionality. Most browsers allow you to refuse cookies, delete existing cookies, or alert you before a cookie is stored.

6. Third-Party Sharing & Disclosure

EOSYS does not sell your personal information. We may share your data with the following categories of third parties only as necessary for our business operations:

Service providers: hosting providers, email platforms, analytics services, and IT support vendors who process data on our behalf under strict confidentiality agreements
Logistics & shipping partners: freight forwarders, customs brokers, and courier services necessary to fulfill international orders and sample deliveries
Certification & testing bodies: third-party laboratories and certification organizations (e.g., EN1303 testing facilities) as required for product compliance
Legal & regulatory authorities: when required by law, regulation, legal process, or enforceable governmental request
Professional advisors: legal counsel, auditors, and consultants who require access to data in the course of providing professional services

All third parties with whom we share data are required to implement appropriate security measures and process personal data only for the specified purposes.

7. International Data Transfers

As a global manufacturer headquartered in China with customers across Europe, the Middle East, North America, South America, Russia, and Southeast Asia, your personal data may be transferred to and processed in countries outside your country of residence.

When we transfer personal data internationally, we take appropriate safeguards to ensure your data is protected in accordance with applicable data protection laws, including:

Implementing Standard Contractual Clauses (SCCs) approved by the European Commission where applicable
Ensuring that receiving parties maintain adequate data protection standards
Applying technical and organizational security measures to protect data during transfer and storage
Complying with China's Personal Information Protection Law (PIPL) requirements for cross-border data transfers

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law. Our retention periods are determined by:

Active Business Relationships

Contact and transaction data is retained for the duration of the business relationship plus an additional period as required for legal, tax, and audit purposes.

Inquiry Records

Information from inquiries that do not result in a business relationship is retained for up to 24 months, after which it is securely deleted.

Quality & Compliance Records

Inspection reports, certification documents, and quality control records are retained in accordance with ISO 9001/14001 and applicable regulatory requirements.

Website Analytics

Anonymized analytics data may be retained indefinitely for trend analysis. Identifiable data from cookies is retained according to the cookie's specified expiration period.

9. Data Security

EOSYS implements appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. As an ISO 9001 and ISO 14001 certified manufacturer, we apply rigorous management standards to our data handling processes.

Our security measures include:

SSL/TLS encryption for data transmitted through our website
Access controls limiting data access to authorized personnel on a need-to-know basis
Secure storage of physical and digital records related to customer projects and master key systems
Confidentiality agreements with employees and third-party service providers
Regular review and update of security practices to address evolving threats

Note on master key system data: Given the security-sensitive nature of our products, we apply enhanced protection to master key charts, key hierarchy data, and proprietary keyway designs. Access to such data is strictly controlled and limited to authorized engineering and quality control personnel.

10. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

Right of Access

Request a copy of the personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete data.

Right to Erasure

Request deletion of your data where there is no legitimate reason for continued processing.

Right to Restrict Processing

Request limitation of how we process your data in certain circumstances.

Right to Data Portability

Receive your data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent

Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us using the details provided in the Contact section below. We will respond to your request within 30 days. We may ask you to verify your identity before processing your request.

If you are located in the EU/EEA and believe your data protection rights have been violated, you have the right to lodge a complaint with your local supervisory authority.

11. Children's Privacy

Our website and services are designed for business professionals and are not directed at individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected personal data from a child, we will take steps to delete such information promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations. When we make material changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically.

For significant changes that may affect your rights, we will make reasonable efforts to notify affected parties through appropriate channels, such as email notification or a prominent notice on our website.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us:

Zhongshan City EOS Secure Technology Co., Ltd

Brand: EOSYS

No.29 Ronghua South Road, Xiaolan Town, Zhongshan City 528415, Guangdong, China

winny@eos-secure.com

+86 13420436003

We aim to respond to all privacy-related inquiries within 30 business days.

Quality Control

R&D Solution

Customization

Service

Product Differentiation