Privacy Policy

Effective Date: January 4, 2026

Last Updated: January 4, 2026

This Privacy Policy (hereinafter referred to as the "Policy") is formulated by MCQ Team (Data Controller) (hereinafter referred to as "we" or "the Company"). The Company's registered address is: Post Office khas, Chak No. 79 NB, Tehsil and District,Sargodha Sargodha - 40190 Pakistan (PK); Customer service email: t20mcq@gmail.com.

Ola Live (hereinafter referred to as the "App") is a global dating and real-time interaction platform for users aged 18 and above. To protect the security and legitimate rights and interests of your personal information and regulate our data processing activities, this Policy will detail how we collect, use, store, and share your personal information, as well as the data control rights you enjoy. Please carefully read and fully understand all terms of this Policy and the User Terms before using the App. By checking to agree to this Privacy Policy and the User Terms, or continuing to use the App, you are deemed to have fully read, understood, and accepted all contents of the relevant agreements, and agreed to our processing of your personal information in accordance with the agreements. If you do not agree to any term of the relevant agreements, please stop using the App immediately.

This Policy complies with Google Play Developer Policies, the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), the Virginia Consumer Data Protection Act (VCDPA), the General Data Protection Regulation (GDPR) of the European Union, the Personal Data Protection Act (PDPA) of Singapore, the Children's Online Privacy Protection Act (COPPA) and other relevant laws, regulations and industry standards, ensuring that data processing activities are legal, transparent and secure, and fully protecting the privacy rights and interests of users in different regions around the world. All our activities of processing your personal information are based on the above laws and regulations and your explicit consent, and the entire process of data processing is strictly standardized.

I. Scope of Application and User Eligibility

1.1 Scope of Application: This Policy applies to all services provided by you using the App, including but not limited to video chat, real-time chat, intelligent matching, in-app purchase and other functions, as well as relevant interactive behaviors between you and us.

1.2 User Eligibility: The App is only for users aged 18 and above. You warrant that you are at least 18 years old and have full capacity for civil conduct when registering and using the App. If you are under 18 years old, please do not use the App, and we will not intentionally collect personal information of minors. If we find that a minor is using the App, we will immediately terminate the service, delete the relevant information, and take necessary measures to notify their guardian.

1.3 Special Provisions on the Protection of Minors' Personal Information

We attach great importance to the protection of minors' personal information and strictly follow the Children's Online Privacy Protection Act (COPPA), GDPR and relevant laws and regulations on the protection of minors in various regions around the world, and formulate special protection measures as follows:

1.3.1 Access Control: The App has set up a strict age verification mechanism. For accounts suspected of being minors, registration will be restricted or guardians' consent certificates will be required to block minors' use from the source.

1.3.2 Prohibition of Information Collection: We will not intentionally collect, store or use any personal information of minors (including name, contact information, photos, location information, etc.). If personal information of minors is collected due to special circumstances (such as minors registering by mistake), once found or notified by guardians, we will complete the information deletion within 7 working days and issue a deletion certificate.

1.3.3 Protection of Guardians' Rights: If a guardian finds that their minor child has used the App by mistake and submits relevant identity certificates and guardianship relationship certificates, they have the right to require us to: ① Verify and delete all information of the minor; ② Provide records of the collection and use of the minor's information; ③ Terminate all service functions of the account. We will respond to the guardian's reasonable request within 5 working days and provide relevant services free of charge.

1.3.4 Violation Handling: If a user violates the age warranty and conceals the minor's identity to use the App, we have the right to immediately cancel the account and delete the information, and will not bear any liability related to the termination of the service; if losses are caused to us or third parties due to this, the guardian will be held liable accordingly.

II. Collection and Use of Personal Information

We follow the principle of "minimum necessity" and only collect personal information necessary for realizing the core functions of the App, and do not collect information unrelated to the services. All information collection is based on your explicit authorization, and you can withdraw the authorization at any time (withdrawing the authorization may result in the unavailability of some functions, but will not affect the basic services).

2.1 Registration and Account Information

To complete account registration and identity verification, we will collect your account registration time and login records (including login device, login time, device id and IP address) to ensure account security, prevent malicious login and illegal behaviors. After you check to agree to this Privacy Policy and the User Terms, you can complete the login and use the App services. The checking behavior is deemed that you have fully read, understood and accepted all contents of the relevant agreements.

2.2 Collection and Use of Function-Related Information

We collect the following permissions and relevant information. The core purpose is to ensure the normal realization of the core functions of the App, optimize the service experience, ensure account and use security, and provide you with stable and convenient global dating and real-time interaction services. All permission collection follows the principle of "minimum necessity" and is only used for the following clear scenarios:

2.2.1 Video Chat and Real-Time Chat Functions: To realize one-on-one video chat and text communication functions, you need to authorize us to access your camera and microphone, record ambient audio in real time (i.e., "recording"), and temporarily store the recorded audio files in the app's cache.

The purposes of collecting permissions and information are: ① Access to camera: Obtain real-time video images to realize the transmission and display of images during video calls, allowing you to interact intuitively with users around the world; ② Access to microphone (including recording): Obtain real-time voice information to realize voice transmission during voice calls and video calls, and support you to actively record and save chat content (requires your manual authorization); ③ Storage of chat content: Encrypt and store the text, emojis, pictures and other information you actively send to ensure the continuous operation of the chat function, and at the same time use it to handle chat disputes, ensure interaction security and maintain a good communication environment on the platform.

2.2.2 Photo and Image Related Functions: To realize the functions of sharing pictures in chats and improving personal data, you need to authorize us to access your photo album and external storage.

The purposes of collecting permissions are: ① Access to photo album: Facilitate you to select pictures and photos from the local photo album for sending chat messages, uploading personal avatars and profile photos, enriching interaction forms and improving personal display information; ② Access to external storage: Used to temporarily cache the pictures and photos you select to ensure the smoothness of picture sending and display, and at the same time store the chat pictures, avatars and other information you actively save to improve the user experience.

2.2.3 Intelligent Matching Function: To recommend friends that meet your preferences, we may collect the personal data you fill in (such as gender, hobbies, region) and interaction behavior records (such as chat frequency, follow/unfollow operations).

The purpose of collecting such information is: to analyze your dating preferences through non-identifiable algorithms, accurately match users with different cultural backgrounds and similar interests, reduce the cost of finding friends for you, provide you with more targeted dating recommendation services, and at the same time ensure the fairness and privacy security of the matching algorithm.

2.2.4 In-App Purchase Function: To realize in-app purchase functions such as virtual item purchase and subscription services, we will collect your payment order information (including order number, payment amount, payment time) through the Google Play settlement system.

The purposes of collecting such information are: ① Complete transaction settlement: Record payment order details, confirm whether the transaction is successful, and ensure that virtual items and subscription services are received in a timely manner; ② Order management: Provide you with order inquiry, after-sales consultation and other services, and handle in-app purchase related issues; ③ Security protection: Verify the authenticity of payment behaviors, prevent risks such as malicious payment and order tampering, and protect your property security. All payment operations are safely processed by Google Play, and we do not collect sensitive payment information.

2.2.5 System and Device Information: To ensure the normal operation of the App, optimize service performance and prevent security risks, we will collect your native system information (operating system version, device model, system language), app information (app version, installation time) and device identifiers (such as Device ID,Android ID, OAID).

The purposes of collecting such information are: ① Adapt to devices and systems: Optimize the running adaptability of the App according to your device model and system version to avoid problems such as crashes and freezes and ensure the stable operation of the App; ② Optimize service experience: Analyze user device usage habits and app version distribution, iteratively upgrade functions and fix vulnerabilities in a targeted manner to improve service smoothness; ③ Security protection: Identify risky behaviors such as abnormal login and malicious operations through device identifiers and app information, prevent security problems such as account theft and app tampering, and protect your account and use security.

2.3 Use of Advertising IDs

We may collect your device's advertising identifiers (such as GAID) to display personalized advertisements and evaluate advertising effects. You can reset the advertising identifier or turn off the personalized advertising function through device settings (Settings - Privacy - Ads). After turning off, we will no longer push personalized advertisements based on the identifier, but may still display non-personalized advertisements.

2.4 Legal Basis for Data Processing

Our processing of your personal information has legal and compliant basis, and we strictly follow the privacy laws and regulations of relevant regions around the world. The specific legal basis is as follows:

① Obtain your explicit consent: By checking to agree to this Privacy Policy and the User Terms and actively authorizing us to access camera, microphone and other permissions, you are deemed to agree to our processing of your personal information based on service needs. This consent is the core legal basis for our information processing;

② Fulfill contractual obligations: To provide you with video chat, in-app purchase and other services and realize the purpose of the service contract between you and us, it is necessary to process your account information, order information, etc., which is an act necessary for fulfilling the contract;

③ Fulfill legal obligations: To comply with the requirements of legal procedures such as court summons and law enforcement agency instructions, maintain public interests, and ensure the personal and property safety of users, it may be necessary to legally process or disclose relevant personal information;

④ Protect legitimate rights and interests: To prevent security risks such as account theft and malicious attacks, and protect the legitimate rights and interests of you, other users or us from infringement, relevant personal information can be processed within a reasonable scope;

⑤ Comply with the requirements of relevant regional regulations: Process your personal information within a legal, legitimate and necessary scope in accordance with regulations such as the General Data Protection Regulation (GDPR) of the European Union, the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), the Virginia Consumer Data Protection Act (VCDPA), the Personal Data Protection Act (PDPA) of Singapore, and the Children's Online Privacy Protection Act (COPPA) to protect your privacy rights and interests.

III. Data Sharing and Disclosure

We strictly control the scope of data sharing and will not arbitrarily share your personal information with third parties unless it conforms to the following circumstances:

3.1 Obtain your explicit consent: With your authorization, we may share necessary personal information with third parties designated by you (such as sharing chat content to social platforms).

3.2 Third-party service providers: To realize app functions and optimize service quality, we may entrust third-party service providers (such as cloud storage service providers, security authentication service providers, advertising service providers) to process relevant data. We will sign strict privacy protection agreements with third parties, clarify their data processing rights and responsibilities, require them to process data only within the authorized scope, and supervise their data processing behaviors.

3.3 Requirements of laws and regulations: If in accordance with legal procedures such as court summons and law enforcement agency instructions, or to fulfill legal obligations, protect public interests, and ensure the personal and property safety of users, we may legally disclose your personal information.

3.4 De-identified data processing: We may share de-identified and anonymized information with third parties (such as academic research institutions and advertising platforms). Such information can no longer identify individuals, and third parties can use it for legal purposes such as data analysis and advertising optimization.

3.5 Prohibited sharing circumstances: We will not sell or lease your personal information to any third party, nor share your sensitive information (such as chat records, unpublished photos) with third parties for unauthorized purposes.

IV. Responsibilities of the Data Protection Officer (DPO)

To ensure the compliance of data processing, we have appointed Leah as the Data Protection Officer (DPO), who is responsible for supervising the implementation of this Policy, handling user inquiries and complaints related to data, and cooperating with regulatory inspections. You can contact the DPO in the following ways:

Contact email: t20mcq@gmail.com (please note "DPO Consultation")

The main responsibilities of the DPO include:

• Provide consulting services on data protection laws and regulations to the Company and employees to ensure that data processing activities are legal;

• Supervise the compliance of data collection, use, sharing and other links, and conduct regular data protection audits;

• Handle users' requests for data access, deletion, correction, etc., and respond to data-related complaints;

• Maintain communication with regulatory authorities and cooperate with data protection-related investigations and inspections;

• Organize employees to carry out data protection training to enhance privacy protection awareness.

V. Data Storage and Security

5.1 Data Storage

5.1.1 Storage Location: We store your personal information on cloud servers that meet security standards to ensure that data storage complies with local laws and regulations.

5.1.2 Storage Period: We only store your personal information for the period necessary to realize the purpose of the service. After the account is canceled, we will delete your account information, chat records and other core data within 15 working days; if it is necessary to retain data to fulfill legal obligations, it will be deleted immediately after the obligations are fulfilled.

5.1.3 Data Retention Practices

We follow the retention principle of "minimum necessity and shortest period", and formulate clear data retention management specifications in combination with service scenarios, legal and regulatory requirements and business needs. The specific practices are as follows:

① Classified retention: Classify and manage account information, chat records, payment orders, device information, etc. according to the type, importance and use scenario of personal information, set differentiated retention periods, and strictly control the retention period of core sensitive information within the scope necessary for the service;

② Expiration processing: Establish an automatic cleaning mechanism for expired data retention. For personal information that exceeds the retention period, it will be completely deleted or anonymized through safe means to ensure that the data cannot be recovered, and cleaning records will be retained;

③ Retention exceptions: If it is necessary to extend the retention period due to special circumstances such as fulfilling legal obligations, handling disputes, and ensuring information security, the reasons, period and scope of retention will be recorded separately, and the data will be cleaned up immediately after the obligations are fulfilled or the disputes are resolved;

④ Log retention: Data processing operation logs, security audit logs, etc. will be retained for no less than 1 year to meet the needs of regulatory verification, and will be destroyed in accordance with specifications after the retention period expires.

5.2 Data Security Assurance

We attach great importance to the security of your personal information, and adopt mature industry security technologies and standardized management measures to build a multi-dimensional data security protection system to comprehensively ensure the security of your personal information in the whole process of collection, storage, transmission and use. The specific measures are as follows:

5.2.1 Physical and Network Security Protection

The servers storing user data are deployed in compliant and secure data centers, equipped with complete physical protection and environmental protection measures to prevent unauthorized personnel from accessing the equipment. At the network transmission level, all data is transmitted through HTTPS encryption, and mechanisms such as firewalls and abnormal traffic monitoring are enabled to block network attacks, isolate core services from public network access, and ensure data transmission security.

5.2.2 Application and Data Security Protection

At the application level, establish a strict identity authentication mechanism, set multiple verifications for sensitive operations, strengthen interface security and client protection, regularly detect and fix application vulnerabilities, and prevent data from being tampered with or stolen. At the data level, encrypt and store sensitive information such as chat records and photos, and desensitize non-sensitive information; strictly control internal data access permissions and retain operation logs for verification; after the account is canceled or the data expires, the data will be completely destroyed through safe means to ensure that it cannot be recovered.

5.2.3 Security Management and Emergency Handling

Establish and improve data security management systems, clarify the security responsibilities of each post, conduct background checks and security training for employees who have access to user data, and sign confidentiality agreements. Regularly carry out security audits and vulnerability detection to improve security protection capabilities. At the same time, establish a data security emergency plan. If a data leakage or other security incident occurs, the emergency plan will be activated immediately, remedial measures will be taken, and the affected users and relevant regulatory authorities will be notified within 72 hours.

Please note that Internet services have certain security risks, and we cannot completely avoid data leakage caused by external factors such as force majeure, hacker attacks, and user device security vulnerabilities. You should properly keep your account and device information to avoid information leakage.

VI. User's Data Control Rights (in accordance with CCPA/CPRA/VCDPA and regional-specific regulations)

In accordance with global major regional privacy regulations such as the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), the Virginia Consumer Data Protection Act (VCDPA), the General Data Protection Regulation (GDPR) of the European Union, and the Personal Data Protection Act (PDPA) of Singapore, you enjoy the following data rights, and we will provide you with relevant services free of charge:

6.1 General Data Rights (applicable to users in all regions)

6.1.1 Right of Access: You have the right to inquire about all your personal information collected and stored by us, including detailed information such as information type, source, purpose of use, sharing object and storage period. We will show you the inquiry results in a clear and understandable manner.

6.1.2 Right of Correction: You have the right to request us to correct inaccurate or incomplete personal information (such as modifying personal data and contact information). You can operate directly through the in-app settings or contact customer service for assistance. We will complete the correction within 3 working days after verifying your identity.

6.1.3 Right to Erasure (Right to be Forgotten): You have the right to request us to delete your personal information, including account information, chat records, photos, etc. You can actively cancel your account through the "Account Cancellation" function in the App (relevant data will be deleted in accordance with Article 5.1.2 of this Policy) or contact customer service to apply for deletion of specific information. We will complete the deletion and issue a certificate within 7 working days after verifying your identity.

6.1.4 Right to Data Portability: You have the right to request us to provide your personal information in a machine-readable format (such as CSV, JSON) to you or a third party designated by you to facilitate your data transfer. We will complete the data export within 10 working days after verifying your identity.

6.1.5 Right to Opt-Out: You have the right to opt out of data sharing, personalized advertising push and other services, which can be operated through in-app settings, device settings or by contacting customer service. In accordance with CPRA, you have the right to opt out of the "sale" of personal information (we do not sell your personal information; if the relevant business is adjusted later, we will notify you separately and obtain your consent).

6.1.6 Right to Non-Discrimination: When you exercise the above data rights, we will not treat you discriminatorily, nor reduce the service quality, increase the service price or refuse to provide services.

6.2 Regional-Specific Special Data Rights

6.2.1 European Union Region (GDPR applicable scope): If you are a resident of the European Union, in addition to the above rights, you also enjoy: ① Right to withdraw consent to data processing: You can withdraw your consent to data processing at any time, and the withdrawal of consent will not affect the legal data processing behaviors based on consent before the withdrawal; ② Right to Restriction of Processing: If you believe that personal information is inaccurate, the processing behavior is illegal or there is a dispute, you can request us to restrict the processing of the information (only retain the storage function); ③ Right to Object: You have the right to object to our data processing based on legitimate interests or public interests. We will verify and respond within 15 working days. If we cannot prove the necessity of processing, we will stop processing; ④ Right to Data Portability: You have the right to request us to directly transmit your personal information to another data controller (such as other app platforms), provided that it is technically feasible.

6.2.2 United States Region (CCPA/CPRA/VCDPA applicable scope): If you are a resident of California or Virginia in the United States, in addition to the above rights, you also enjoy: ① Right to Know: You have the right to know whether your personal information has been shared, and you have the right to obtain a detailed list of your personal information collected and shared by us in the past 12 months, including the names and purposes of the shared third parties; ② Right to Opt-Out of Data Sale: In accordance with CPRA, you have the right to apply to opt out of personal information sale by sending an email to t20mcq@gmail.com (please note "Opt-Out of Personal Information Sale" and provide identity verification information) (we do not currently have information sale behavior); ③ Right to Protection of Sensitive Information: You have the right to restrict the scope of our use of your sensitive personal information (such as biometric information, precise location information) to only scenarios necessary for realizing the service; ④ Right to Compensation for Data Leakage: If your personal information is leaked due to our intentional or gross negligence and causes losses, you have the right to claim compensation in accordance with the law.

6.2.3 Singapore Region (PDPA applicable scope): If you are a resident of Singapore, in addition to the above rights, you also enjoy: ① Right to Free Information Inquiry: We will not charge any fee when you inquire about personal information, and can only charge a reasonable handling fee when you request a paper report; ② Extension of Right to Correction: If you find that your personal information shared by us to a third party is incorrect, you can request us to notify the relevant third party to correct the information; ③ Right to Complain: You can complain to the Personal Data Protection Commission (PDPC) of Singapore about our data processing behaviors, and we will actively cooperate with PDPC's investigations and handling.

6.3 Ways to Exercise Rights: You can exercise the above rights in the following ways: ① Self-service operation through "Settings - Privacy Center" in the App; ② Send an email to t20mcq@gmail.com (please note "Data Rights Application" and provide identity verification information); ③ Contact online customer service. We will respond to your application within 15 working days, and the time limit can be extended to 30 working days for complex cases (we will notify you in advance). For special rights in specific regions, we will assign special personnel to connect to ensure that the response time limit meets the requirements of local regulations.

VII. Description of Third-Party Services

The App may integrate third-party SDKs or access third-party services (such as Google Play settlement SDK, advertising SDK, map SDK, etc.). Third-party service providers may collect your relevant information. We have conducted strict audits on third-party service providers and require them to comply with privacy protection regulations and the requirements of this Policy.

The privacy policies of third-party services are formulated by themselves and have nothing to do with us. You can view the privacy agreements of third parties to understand their information processing rules. If you do not agree to the collection of information by third parties, you can turn off relevant functions or stop using third-party services.

VIII. Policy Changes and Notifications

8.1 Policy Changes: We may revise this Policy in accordance with the update of laws and regulations, business development needs and other circumstances. The revised Policy will be published in a prominent position in the App (such as startup page pop-up window, settings interface) for a public notice period of no less than 7 days.

8.2 Change Notification: If there are major changes to the Policy (such as expansion of the scope of information collection, adjustment of data sharing rules), we will actively notify you through in-app pop-up windows, registered emails, text messages and other ways, and you can choose whether to accept the revised Policy. If you continue to use the App, you are deemed to accept the revised Policy; if you do not agree, you can stop using the App.

IX. Disclaimer

9.1 You warrant that when using the App, you will not upload or publish illegal, non-compliant or vulgar content, and will not infringe on the privacy, intellectual property rights and other legitimate rights and interests of others. If your behavior causes third-party complaints, claims or losses to us, you shall bear full responsibility.

9.2 We shall not be liable for data leakage or service interruption caused by uncontrollable factors such as force majeure, hacker attacks, network interruptions and equipment failures, but will make every effort to take remedial measures.

Disputes arising from your interaction with other users through the App shall be resolved by you and the other party. We may provide necessary assistance (such as providing relevant records) but shall not bear joint and several liability.

X. Dispute Resolution and Governing Law

10.1 Governing Law: This Policy shall be governed by the laws of the Hong Kong Special Administrative Region of the People's Republic of China and relevant international conventions. In case of any conflict between laws, the provisions protecting users' privacy shall prevail.

10.2 Dispute Resolution: Any dispute arising between you and us in connection with this Policy shall first be resolved through friendly negotiation; if negotiation fails, either party may file a complaint with the regulatory authority.

XI. Other Provisions

11.1 The right to interpret this Policy shall belong to MCQ Team.

11.2 If any term of this Policy is deemed invalid or unenforceable, it shall not affect the validity of other terms.

11.3 You can contact us in the following ways:

Company Name: MCQ Team

Address: Post Office khas, Chak No. 79 NB, Tehsil and District,Sargodha Sargodha - 40190 Pakistan (PK)

Customer Service Email: t20mcq@gmail.com

Working Hours: Monday to Friday 9:00-18:00 (Hong Kong Time)