TNAS Mobile Management Software Privacy Statement

Effective Date: October 15, 2025
Last Updated: December 11, 2025

1. scope of application

TNAS Mobile management software is a mobile application developed by Noon Technology Co., Ltd. (hereinafter referred to as "we", “us”, or “our”) under the TerraMaster brand.
We fully understand the importance of your personal information and are committed to protecting its security and reliability. To maintain your trust, we follow principles such as consistency of rights and responsibilities, clear purpose, informed consent, data minimization, security assurance, subject participation, and transparency. We undertake to adopt industry-standard security measures to safeguard your personal information.
Please read this Privacy Statement carefully to understand how we collect, use, store, and protect your personal information when you use our products or services. This Privacy Statement describes our policies on the collection and use of data related to your use of the TNAS Mobile management software (hereinafter referred to as “this software”). When you start the software for the first time, you will be prompted to read and agree to this Privacy Policy. Your continued use will be deemed acceptance of the terms herein.

2. personal information collection and use

2.1 categories of personal information we collect

To provide you with complete and high-quality services, this software may collect the following information during operation:

1. basic device information:

● Device identifiers (IMEI / Android ID / DEVICE_ID / IDFA, SIM card IMSI information, OAID)
● Mobile device hardware model
● Network hardware address (MAC)
● Network access methods and types
● Device manufacturer, model, and brand information
● Mobile network operator information

2. application operation information:

● Application startup data
● Error and crash logs
● System logs (for diagnosing errors and crashes)

3. network connection information:

● Network status information
● Wi-Fi status information (including BSSID and SSID)
● IP address information

4. storage access information:

● Basic information of personal photos, videos, audio, and files (for backup and upload services)
● File metadata such as file type, size, and modification time

2.2 purposes of information collection

All information collected is used for the following legitimate purposes:

1. Service provision and optimization: Statistical analysis, product performance improvement, and user experience enhancement
2. Feature implementation: Ensuring the normal operation of core functions such as file backup, upload, and download
3. Device connectivity: Helping you search for and connect to TNAS devices within the local network
4. Error diagnosis: Analyzing app crashes and anomalies to improve stability
5. Network optimization: Improving file transfer efficiency based on network conditions

3. permissions required

To operate properly, this software requires access to certain permissions on your device. You can disable these permissions in your device settings, but doing so may affect the corresponding functionality.

Required permissions include but are not limited to:

● Data reading permission: Accessing your photos, videos, audio, and files for backup and upload
● Local storage access: Reading and writing data to device storage—essential for backup, upload, and download
● Read/write external storage: Managing files on the SD card
● Mount/unmount file system: Writing downloaded files to the SD card
● Delete cache files: Clearing temporary app data
● Camera: Scanning QR codes for OTP secondary authentication (dynamic, user-authorized)
● Flashlight: Assisting QR code scanning for OTP binding
● Request installation permission: For installing the APK opened through the app (dynamic, user-authorized)
● Install application: Used for app auto-update
● Network access: Required for remote connection to TOS devices
● Network state access: Determining network availability for device search and file transfer
● Network state change: Adjusting behavior when network conditions change
● Wi-Fi status access: Checking Wi-Fi connectivity and WLAN information
● Wi-Fi state changes: Identifying Wi-Fi changes for LAN device discovery
● BSSID and SSID: Identifying WLAN network information
● Battery statistics: Pausing backup functions when battery is low (dynamic, user-authorized)
● System settings read/write: Allowing background app operation
● Bluetooth access: Accessing Bluetooth device files (dynamic, user-authorized)
● Bluetooth management: Scanning and pairing management (dynamic, user-authorized)
● Access Gmail accounts: Used for sharing files or links
● Write SMS: For link sharing
● Write voicemail: For sharing functions
● Modify audio settings: For media playback and audio configuration
● Read system logs: Diagnosing errors and crashes
● Vibration: Providing vibration feedback for incorrect safe-box password inputs
● File information access: Reading essential file metadata for upload and backup services

4. personal information storage and protection

4.1 storage location

In compliance with the laws of the People’s Republic of China, your personal information is stored within mainland China. We will not transfer your personal information overseas unless legally required or with your explicit consent.

4.2 storage period

We retain your personal information for the duration necessary to achieve the purposes defined in this Policy (unless extended by law). Once the retention period expires, we will delete or anonymize your personal information.

Retention considerations include:

1. Whether we continue to provide TerraMaster products and maintain user relationships
2. Whether the account owner or user deletes information
3. Whether we are legally required or advised to retain certain data

4.3 post-expiration handling

When the retention period expires, we will delete or anonymize the information. Anonymized data cannot identify individuals and may be used for statistical analysis and product improvement.

4.4 security measures

We protect your personal information using the following measures:

1. Encryption technologies such as secure transmission protocols
2. Strict internal access control and permission management
3. Encryption of stored personal information
4. Data masking technologies during information use
5. Strict data access workflows and multi-factor authentication to prevent misuse

5. third-party sdk information

To deliver complete functionality, we integrate the following third-party SDKs:

1. wxmediamessage (wechat sharing)

● Function: Share content to WeChat Moments or contacts
● Privacy Policy: https://support.weixin.qq.com/cgi-bin/mmsupportacctnodeweb-bin/pages/RYiYJkLOrQwu0nb8
● Provider: Shenzhen Tencent Computer Systems Co., Ltd.

2. com.netease (within msa oaid sdk)

● Function: Device information identification for OAID; no active data collection, no network transmission
● Collected locally:
 ○ Device manufacturer, model, and brand
 ○ Network operator info
 ○ App package name
● Privacy Policy: http://www.msa-alliance.cn/col.jsp?id=122
● Provider: Mobile Security Working Committee

3. alibaba weex sdk

● Function: Rendering nvue pages in uni-app
● Privacy Policy: https://terms.alicdn.com/legal-agreement/terms/suit_bu1_taobao/suit_bu1_taobao201703241622_61002.html
● Provider: Taobao

4. weex, com.terramaster.tmplugin

● Function: Receiving and detecting broadcast IP information of dedicated TNAS devices within LAN
● Privacy Policy: https://www.terra-master.com/cn/privacy-app/
● Provider: Shenzhen TerraMaster System Co., Ltd.

5. ads sdk (huawei)

● Function: Obtains Android ID to assign temporary network addresses to prevent address conflicts
● Privacy Policy:
https://developer.huawei.com/consumer/en/doc/HMSCore-Guides/whale-hong-kinetic-energy-sdk-privacy-statement-0000001658283582
● Provider: Huawei Software Technologies Co., Ltd.
Note: Third-party SDKs operate under their own privacy policies. Please refer to their official documentation for updated details.

6. your rights

When you register or log in using a local account, all your data is stored on your TerraMaster NAS device and your mobile device or computer. We do not collect any personal data in this scenario.

6.1 accessing your personal information

You may view your personal information via:
Path: User Settings (avatar, username, description, password, email, phone number)

6.2 correcting your personal information

You may correct information via:
Path: User Settings (edit avatar, username, description, password, email, phone number)

6.3 deleting your personal information

If we have collected your personal information, you may contact us using the details in this policy. We will delete your information within 15 business days under the following circumstances:
1. If we process information in violation of laws
2. If we collected/used information without your consent
3. If processing violates agreement terms
4. If you stop using our products/services
5. If we cease service provision
We will also notify third parties that received this data from us to delete it unless otherwise required by law.

6.4 changing your consent

Some permissions are essential for certain services. If you decline necessary permissions, we may be unable to provide the related service. When you re-use such services, we will again request your consent.

6.5 account deletion

Your hardware-linked account is a local account created on your TerraMaster device. We cannot delete it on your behalf.
You may delete it via: Control Panel → Users

7. protection of children’s personal information

Our products and services are primarily intended for adults. If you are a minor under the laws of your region, please use our services under the supervision and consent of your parents or guardians.

If you are a parent or guardian, please ensure that minors use our services only after your authorization. If you believe we have collected information from a minor without proper consent, please contact us at: support@terra-master.com, and we will promptly delete the data.

8. information sharing and disclosure

8.1 sharing principles

We do not share your information with third parties without your explicit consent except in the following cases:
1. Legal or regulatory requirements
2. Protection of rights and interests of us, users, or the public
3. Sharing within our affiliated companies
4. Authorized partners, strictly limited to necessary information

8.2 scope of shared information

Shared information is limited to what is necessary for functionality and is regulated by strict processing agreements.

9. policy updates

We may update this policy from time to time. We will not reduce your rights without your explicit consent. Updates will be published on this page, and major updates will be announced via pop-ups, notifications, or emails. Your continued use will constitute acceptance of the revised policy.

10. contact us

If you have questions, opinions, or requests regarding this Privacy Policy, please contact us:
Address: Room 506, Building 8, 1970 Tech Park, Minkan Community, Minzhi Street, Longhua District, Shenzhen
Support Email: support@terra-master.com
Online Support: Via the official TerraMaster website: www.terra-master.com
We will respond within 15 business days after receiving your request.