Privacy Policy

Privacy Policy for Morningstar Auto Used Car Wholesaler Website This Privacy Policy governs the collection, use, storage, and disclosure of your personal information when you use Morningstar Auto’s used car wholesaler website (the “Website”) and our related services (collectively, the “Services”). By accessing or using the Website and Services, you agree to the terms of this Privacy Policy. If you do not agree with this policy, please do not use Morningstar Auto’s Website or Services.

1. Information We Collect

Morningstar Auto collects personal and non-personal information to provide, improve, and secure our Services, and to facilitate your transactions as a used car wholesaler or buyer. The information we collect includes: 1.1 Personal Information Personal information is data that can be used to identify you individually. When you register, use our Services, or communicate with us, Morningstar Auto may collect the following personal information:

• Contact information: Name, email address, phone number, company name, and business address (if you are a wholesale buyer, seller, or dealer).
• Account information: Username, password (encrypted), and account preferences.
• Transaction information: Details of your vehicle purchases, sales, or inquiries, including vehicle identification numbers (VINs), vehicle specifications, pricing, and payment-related information (e.g., billing address, payment method details, which are processed by third-party payment processors).
• Communication records: Content of emails, messages, or calls between you and Morningstar Auto’s team, including inquiries about vehicles, pricing, and service support.
• Optional information: Any other personal information you choose to provide, such as business licenses, tax identification numbers, or references (required for wholesale verification).

1.2 Non-Personal Information Non-personal information is data that cannot be used to identify you individually. When you use our Website, Morningstar Auto may collect this information automatically:

• Technical information: IP address, browser type, operating system, device type, screen resolution, and browsing history (e.g., pages visited, time spent on the Website, links clicked).
• Usage data: Information about how you interact with our Services, such as vehicle searches, filter preferences, and transaction history (aggregated and anonymized).
• Cookies and similar technologies: We use cookies (small text files stored on your device) to enhance your browsing experience, remember your preferences, and analyze Website traffic. You can manage cookie settings in your browser, but disabling cookies may affect some features of the Website.

2. How We Use Your Information

Morningstar Auto uses the information we collect for the following purposes, in compliance with applicable data protection laws:

• To provide and maintain our Services: Facilitate wholesale vehicle transactions, process orders, communicate with you about your inquiries or transactions, and provide customer support.
• To improve our Services: Analyze usage data to enhance the Website’s functionality, optimize user experience, and develop new features tailored to wholesale car buyers and sellers.
• To ensure security: Detect and prevent fraud, unauthorized access, or other malicious activities; verify the identity of users (especially for wholesale transactions) to protect our community and comply with legal requirements.
• To communicate with you: Send you updates, notifications, and information related to your account, transactions, or our Services (e.g., new vehicle listings, promotional offers relevant to wholesale clients, if you opt in).
• To comply with legal obligations: Respond to subpoenas, court orders, or other legal requests; maintain records for tax, regulatory, or audit purposes.
• To personalize your experience: Show you vehicle listings, pricing, and content based on your browsing history and preferences.

3. How We Share Your Information

Morningstar Auto does not sell, rent, or share your personal information with third parties for their marketing purposes without your explicit consent. We may share your information in the following limited circumstances:

• With service providers: Third-party companies that assist us in providing our Services, such as payment processors (e.g., PayPal, Stripe), web hosting providers, IT support, and marketing platforms. These service providers are only given access to the information necessary to perform their services and are required to protect your information.
• With transaction partners: If you are a buyer or seller, we may share relevant information (e.g., contact details, vehicle information) with the other party to facilitate the wholesale transaction, with your consent.
• For legal reasons: If we believe disclosure is necessary to comply with a legal obligation, protect our rights, property, or safety, or the rights, property, or safety of others.
• In case of business transfer: If we are acquired, merged, or sell all or part of our business, your information may be transferred to the new owner, who will be bound by this Privacy Policy.
• Aggregated or anonymized data: We may share aggregated, non-identifiable data (e.g., number of wholesale transactions, popular vehicle models) with third parties for market research, analytics, or other legitimate purposes.

4. Data Retention

Morningstar Auto retains your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by law. If you close your account, we will retain your information for a reasonable period to comply with legal obligations, resolve disputes, or enforce our terms of service. After that period, we will securely delete or anonymize your personal information.

5. Data Security

Morningstar Auto attaches great importance to the security of your personal information. We strictly comply with the requirements of relevant laws and regulations such as the “Regulations on the Administration of Network Data Security”. On the basis of network security level protection, we have established and improved network data security management systems, adopted comprehensive technical and management measures to fully protect your personal information from tampering, damage, leakage, illegal access or illegal use, and assume the main responsibility for the security of the data processed. 5.1 Technical Security Measures: We use encryption technology (including data transmission encryption and storage encryption) to protect your personal information and prevent illegal access during transmission and storage; establish access control mechanisms to strictly limit internal personnel’s access rights to personal information. Only authorized personnel can access relevant information within the scope required by their job responsibilities, and the access behavior is fully recorded; regularly conduct security inspections and vulnerability repairs on website systems and servers to timely prevent network security risks, and establish and improve network data security incident emergency plans. 5.2 Management Security Measures: We have established a sound privacy protection management system, clarified the privacy protection responsibilities of each department and position, regularly conducted data security and privacy protection training for employees to enhance their awareness of privacy protection; signed confidentiality agreements with employees, strictly prohibited employees from privately collecting, disclosing or tampering with users’ personal information, and will pursue legal responsibilities for employees who violate the regulations; conduct strict screening and supervision of third-party service providers entrusted with processing personal information, stipulate their security protection obligations through contracts, and fully supervise the performance of their obligations, with relevant processing records kept for at least 3 years. 5.3 Handling of Security Incidents: In the event of a security incident such as leakage, tampering or loss of personal information, we will immediately activate the emergency plan, take remedial measures to prevent the expansion of harm, eliminate security hazards, and report to the relevant competent authorities in accordance with regulations; if the security incident endangers your legitimate rights and interests, we will promptly notify you through phone calls, text messages, emails or website announcements, inform you of the security incident, risk situation, harmful consequences and the remedial measures taken, and cooperate with public security organs and national security organs in investigation, investigation and disposal. 5.4 User Assistance Obligations: Please properly keep your account information (especially your username and password), do not disclose your account information and verification information to any third party, and avoid illegal access to personal information due to account information leakage. If you find abnormal account login, information leakage and other situations, please contact us immediately, and we will take measures such as freezing the account and changing the password in a timely manner to reduce security risks.

6. Your Rights

In accordance with the requirements of relevant laws and regulations and the “Regulations on the Administration of Network Data Security”, as the subject of personal information, you have the following rights in accordance with the law, and Morningstar Auto will provide convenient channels for you to exercise your rights:

• Right of Access: You have the right to access all your personal information collected, stored and used by us, which can be applied for through the website account background or by contacting our customer service.
• Right of Correction: If you find that your personal information is incorrect or incomplete, you have the right to request us to correct or supplement the relevant information, and we will handle it in a timely manner after verification.
• Right of Deletion: Under the circumstances stipulated by law (such as the purpose of collecting information has been achieved, you withdraw your consent, etc.), you have the right to request us to delete your personal information. We will delete it in a timely manner after verification, and anonymize it if it cannot be deleted.
• Right to Withdraw Consent: You have the right to withdraw your consent to the collection, use and sharing of personal information. After withdrawing consent, we will no longer continue to collect, use or share your relevant personal information, but it will not affect the legality of the information processing activities completed based on your consent before.
• Right of Cancellation: You have the right to apply for cancellation of your website account. After the account is cancelled, we will process your personal information in accordance with the provisions of the “Data Retention” clause of this Privacy Policy, and will no longer retain personal information that can identify your identity.
• Right of Complaint and Report: If you believe that our personal information processing activities violate relevant laws and regulations or this Privacy Policy, you have the right to complain and report to us, or reflect the situation to the relevant regulatory authorities.

When you exercise the above rights, you can contact us through the contact information at the end of this Privacy Policy. We will verify your identity and respond to your request within 15 working days. If it is necessary to extend the processing period, we will inform you in advance.

7. Updates to This Privacy Policy

This Privacy Policy may be revised with the update of laws and regulations, the improvement of industry standards and the adjustment of our services. We will publish the updated Privacy Policy in a prominent position on the Website (such as the bottom of the homepage), and the updated policy will take effect on the date of publication. If the updated content involves significant changes to your rights and interests, we will notify you in advance through website announcements, emails, text messages, etc. We recommend that you review this Privacy Policy regularly to understand the latest privacy protection measures. Update Date of This Privacy Policy: April 17, 2026 Effective Date of This Privacy Policy: April 17, 2026

8. Disclaimer

8.1 We have taken reasonable security measures to protect your personal information, but due to the openness of the network environment, technical limitations, and force majeure (such as natural disasters, cyber attacks) and other factors beyond our control, personal information may occasionally be leaked, lost, etc. If the information security problem is caused by the above factors that are not our subjective fault, we will not bear corresponding responsibilities. 8.2 If you voluntarily disclose personal information to a third party (such as disclosing information during private communication with a transaction partner), or if the personal information security problem is caused by your own improper operation (such as password leakage, device loss), you shall bear the responsibility yourself, and we will not bear relevant responsibilities. 8.3 This Privacy Policy only applies to our Website and related Services, not to third-party websites, applications or services. When you visit a third-party platform, its privacy policy has nothing to do with us, and we will not bear any responsibility. Please carefully read the third party’s privacy policy.

9. Contact Information

If you have any questions, suggestions about this Privacy Policy, or need to exercise your rights related to personal information, complain or report, you can contact us through the following methods, and we will handle it for you in a timely manner:

• Contact Phone: [+86-13829202300]
• Email Address: [[email protected]]
• Contact Address: [Room 101, No. 552 Jinfu Road, Liaobu Town, Dongguan City, Guangdong Province]

Morningstar Auto will strictly perform its privacy protection obligations and effectively protect the security and legitimate rights and interests of your personal information.