Privacy Statement

The OpenAtom Foundation (hereinafter referred to as "we," "us," or "foundation") understands the importance of your privacy and fully respects it. Please read this Privacy Statement (hereinafter referred to as "this Statement") carefully before you submit your personal data to us. If you have any questions about how we process your personal data, please feel free to contact us.

Version Change Notes

Please carefully review the following updates to this Privacy Statement:

  1. Deleted the section "Third-Party SDK Privacy and Security Policy".
  2. Optimized some description.

1. How We Collect and Process Your Personal Data

We generally do not require your personal data if you only browse the general content of the openEuler community website (collectively, "the website"). We will collect your personal data accordingly in the following circumstances. You may also obtain a quick understanding of how we collect and use personal data by reviewing the Personal Data Collection Overview:

a) Account Service

  1. When you register for an openEuler community account, we will collect your user name, email address, phone number, password, and email/phone verification code. A unique account identifier will be automatically generated. Refusal to provide this information will prevent account creation.

  2. When you log in to the openEuler community using your user name, email address, or phone number, we will collect your user name, email address, phone number, password and email/phone verification code for authentication. Refusal to provide this information will prevent login.

  3. When you log in using a third-party account (Gitee, GitHub, OpenAtom, or AtomGit), we will collect the following information based on your login mode for authentication and code repository access management: - Gitee UUIDGitee ID、Gitee nickname、Gitee email address、and Gitee avatar; - Github UUIDGithub ID、Github nickname、Github email address、and GitHub avatar; - OpenAtom UUIDOpenAtom user name、OpenAtom nickname、OpenAtom email address、and OpenAtom avatar; - AtomGit UUIDAtomGit IDAtomGit nickname、AtomGit email address、and AtomGit avatar;

    When you log in using a third-party account without binding to any existing openEuler account, a new openEuler account with a unique identifier will be automatically generated from your Gitee ID GitHub ID, OpenAtom user name or 、AtomGit ID. Refusal to provide this information will prevent login via third-party accounts.

  4. After logging in, you can optionally provide your avatar, nickname, and company in User Center. This information is not mandatory for using openEuler community features.

  5. After logging in, you can modify your email address, phone number, and password in User Center. We will collect your email address, phone number, password and email/phone verification code for authentication.

  6. After logging in, you can bind your openEuler account to a third-party account (GitHub, Gitee, OpenAtom or AtomGit) in User Center. We will collect the following information about that third-party account accordingly:

- **Gitee UUID**、**Gitee ID**、Gitee nickname、**Gitee email address**、and Gitee avatar;
- **Github UUID**、**Github ID**、Github nickname、**Github email address**、and Github avatar;
- **OpenAtom UUID**、**OpenAtom user name**、OpenAtom nickname、**OpenAtom email address**、and OpenAtom avatar;
- **AtomGit UUID**、**AtomGit ID**AtomGit nickname、**AtomGit email address**、and AtomGit avatar;

Refusal to provide this information will prevent third-party account binding for login purposes.

b) Forum Service

  1. When you sign up or log in to the forum service, we will collect your user name, email address, phone number, password, nickname, avatar, and the following information based on your login mode: Gitee ID, GitHub ID, OpenAtom user name or AtomGit ID from your openEuler account, and assign permissions and roles to your account. In addition, we will collect your IP address, region, device information, login time, and preference settings to provide you with more secure services.
  2. When you use the forum service, we collect your like information, follow information, favorite content, post count, reply count, follow count, follower count, personal profile, badge acquisition, sidebar settings, follow list, follower list, email summary, time zone, post and reply content, images, audio, video, documents, and comments to understand your personal preferences and better serve you.
  3. When you report a concern about a forum post or reply, we will collect your report type, description, user name, IP address, region, organization, and host name to verify and confirm the content of the report.

c) Mailing List Service. When you use our mailing list service, we will collect your email address and name (optional). to enable email subscriptions that facilitate your participation in community discussions.

d) Service Optimization. To ensure service quality and smooth business operations, we automatically collect and store necessary log information, including access timestamps, IP address, region, request details, access status, resource size, access sources, and user agent information. We also collect your device details (device name/type/vendor, OS type/version, and screen dimensions), app details (app ID, SDK version, browser type and version, and browser viewport size), and app usage information (event name, event attributes, reporting time, anonymous client ID, and user name (if you have logged into community account)). The information is used for community operations and O&M security purposes.

e) Contributor License Agreement ("CLA") Signing. When you participate in code contribution through the Contributor License Agreement ("CLA") signing system (click here to learn more), you need to submit your relevant personal data to the CLA signing system. We will obtain such personal data to confirm if you have signed the CLA, and to conduct statistical analysis for community operation insights.

f) Content Release. When you participate in community meetings/activities/organizations, make contributions, or write blogs or news, you may post your photo, name, email address, company name, position, school, profile, region and code hosting platform user ID on our website to help developers connect and engage with the community easily.

g) Meetup. When you organize an openEuler meetup, the community will collect your name, phone number, email address, company, and meetup details (including organization, agenda, date, duration, city, event scale, event form, event support, and topics) from the application form you fill in. The collected data will be used to contact you for the purpose of confirming your application and related matters, as well as arranging for relevant affairs, including sign-ins and nameplates.

h) Quick Issue Creation. When you submit an issue through the community's QuickIssue service, if you submit the issue using your AtomGit account, we will collect your AtomGit ID; if you submit the issue using your email, we will collect your email address and email verification code. In addition, we will collect issue-related information (title, SIG name, scenario, repository name, and issue description) for quick issue submission. After your issue is successfully created, for the purpose of efficient tracking and identification of your submission, we will display your AtomGit ID or anonymized email address in the description of the issue page and the submitter field of the issue board.

i) Compatibility Certification. When you use the compatibility certification service, we will collect your UUID, user name, phone number and email address from your openEuler account for authentication. Your user name and phone number will be used to notify you of the enterprise certification results, while your user name and email address will be used to inform you of the compatibility certification progress. Upon successful completion of the openEuler compatibility certification, the compatibility certification service will collect your enterprise information (including the enterprise name, business license, unified social credit code/organization code, business address, legal representative, registered capital, date of establishment, business term, applicant's name, applicant's phone number, applicant's email address, business registration country/region, and enterprise email address) for the purpose of enterprise certification. The compatibility certification service will also collect the project leader's signature via the certificate confirmation page for the purpose of generating your compatibility certificate.

j) EulerMaker. When you use the EulerMaker service, we will collect your user name, email address from your openEuler account for authentication.

k) Personal Tokens. When generating a personal token, we will collect your email address and email verification code for authentication. Upon successful authentication, we will collect your token name, granted permissions, and validity period, and will generate the personal token. The personal token can then be used to access the target API endpoint.


We may also collect your personal data from third parties, including other platforms, communities, or legal and public channels within the scope of your authorization and consent. We promise to process your personal data in strict compliance with applicable laws and regulations. Please read the privacy statements and user agreements of the third parties carefully. If the openEuler community requires third parties to provide your personal data, but you refuse to permit these third parties to collect, use, transfer, or share your personal data in the course of your use of their services, you may not be able to use relevant services of the openEuler community. For example, when you use an authorized third-party account to log in to the openEuler community, we will obtain your personal data from the third party with your consent.

2. How We Use Cookies and Similar Technologies

To ensure our website works properly, we may at times place cookies on your computers or mobile devices. Please refer to About Cookies for details about how we use cookies and similar technologies and how they process your personal data.

3. How We Share Your Personal Data

Sharing means providing third parties with your personal data. The third parties and we would handle your personal data independently. We will not share your personal data with any third party without your consent, except in the following circumstances or as described in this Statement:

a) Sharing under your instruction. We may share your personal data with your consent and under your instruction to the third parties indicated by you.

b) Sharing your personal data as necessary for protecting national security, public security, and your and other individuals' crucial legitimate rights and interests.

c) Sharing with affiliated companies. We may share your personal data with our affiliated companies for the purposes of service support or security support.

d) Sharing with partners. We may share your personal data with our partners. Such sharing will only be conducted for legitimate, justified, necessary, specific, and explicit purposes and to the minimum extent necessary for providing services.

For more details, please refer to the Data Sharing with Third Parties. If you refuse to allow our partners to collect personal data necessary to provide services, you may be unable to use the services provided through those partners.

When we share your personal data with affiliated companies or partners as outlined above, we will stipulate their responsibilities and obligations through contracts and other means, and mandate their implementation of necessary measures to ensure the security of the personal data processed.

4. How Long We Retain Your Personal Data

We will retain your personal data for no longer than is necessary for the purposes set out in this Statement, unless extension of the retention period is required by laws or requested by you.

From the date of acquisition of your personal data within the community, we will store or retain such data for the period specified by applicable laws or service agreements. Once the prescribed retention period has expired and no legal obligation requires the continued processing of your specific personal data, we will delete or anonymize your personal data in accordance with applicable laws and regulations.

Upon your active request for the deletion of your personal data, the retention period for the relevant data will be one month. We will respond to your request and delete your personal data within this period.

The access timestamp, IP address, region, request details, access status, resource size, access source, and user agent information collected for service optimization purposes will be automatically deleted upon the expiration of a ten-day retention period.

4.1 Deletion

You may log in to the openEuler community and choose "User Center" > "Settings" > "Account Settings" > "Account Security" > "Delete" to delete your openEuler community account. This action will also delete your personal data in the openEuler community. Exercise caution when performing this operation.

5. How We Protect Your Personal Data

We take the security of your personal data seriously. We take appropriate physical, organizational, and technical measures to protect your personal data. These measures include, but are not limited to, the use of encryption technologies to ensure data confidentiality; deployment of protective mechanisms to defend against attacks; strict access controls to limit data access only to authorized personnel; and regular security and privacy protection training for our staff. In a word, we are committed to protecting your personal data. Please note, however, that no security measure is entirely infallible, and no product, service, website, data transfer, computing system, or network connection is absolutely secure.

In the event of a personal data security incident, we will, in accordance with applicable laws and regulations, notify you in a timely manner via email, letter, phone call, or push notification. Such notification will include the basic information and possible impacts of the security incident, measures we have taken or will take, and suggestions you can take to prevent and reduce risks. Should it become impracticable to notify each personal data subject individually, we will issue a public notice through reasonable and effective means. Furthermore, we will report the handling of the personal data security incident as required by applicable laws or supervisory authorities.

6. How We Access or Control Your Personal Data

You may have the following rights regarding your personal data under applicable laws and regulations:

a) Access the personal data we hold about you and obtain copies thereof;

b) Request us to update or correct your personal data;

c) Request us to delete your personal data;

d) Object to our processing of your personal data;

e) Restrict our processing of your personal data;

f) Lodge a complaint with the competent data protection authority.


  • Please note that these rights are not absolute and may be restricted under applicable laws. Should you require assistance in exercising these requests or rights, or if you have additional requests, inquiries, comments, or suggestions regarding your data subject rights, please contact us as set out in the "How to Contact Us" section below.

    • To provide you with the CLA signing service, we will retain your personal data. The retention period of such data will depend on the specific purpose for which it is used, as well as the stipulations of applicable laws and regulations. You acknowledge and agree that the CLA is a legally binding document signed by you or the corporation you represent, serving as evidence of the permanent rights granted over your contributions. Therefore, if you request the deletion of the data collected for the purpose of signing the CLA (including, but not limited to, your name and email address), we may not be able to fulfill such a request, unless the deletion of such data would not impair the legal validity of the CLA you have signed.
    • Any personal data you publicly disclose on the community website will be stored in the relevant code repository, and historical records will persist even after deletion of such data.

We will respond to your request within one month unless otherwise required by applicable laws and regulations. Please note that under certain circumstances, such as when we are unable to verify your identity or when your request exceeds the scope of your rights under applicable laws, we may reject your request. Should this occur, we will inform you in writing of the rejection and detail the grounds for our rejection.

You may change the scope of your authorization for our collection of your personal data or withdraw your authorization. However, your withdrawal of consent or authorization does not affect the lawfulness of processing based on your authorization prior to its withdrawal.

7. Where Your Personal Data Is Stored and How It Is Transferred

Your personal data will be stored on servers located in the Hong Kong Special Administrative Region of the People's Republic of China. To enable our affiliated companies and partners to provide better support, some of your personal data will be transferred from the Hong Kong Special Administrative Region of the People's Republic of China to the Chinese mainland. In such cases, we will fulfill our compliance obligations in accordance with applicable laws and regulations and this Statement to ensure that your personal data is protected as required by applicable laws and regulations and in line with the terms set forth in this Statement. We will also implement appropriate safeguards during the transfer of your personal data. For example, when transferring your personal data over public networks, we will encrypt the data to prevent unauthorized access.

8. How This Statement Is Updated

We may update or modify this Statement from time to time according to changes to our services or data processing. We will post updated versions of this Statement on this website, effective immediately after release. You are advised to review this Statement periodically for any changes. We will inform you of any updates to this Statement via appropriate channels (such as bulletins and pop-ups) and obtain your consent.

9. How We Protect Minors

This website, including its content and services, is mainly intended for individuals over the age of 14. Individuals under the age of 14 are not allowed to use the services we provide without the consent of their parents or guardians. If we have inadvertently collected personal data of an individual under the age of 14 without verifiable prior consent from the individual's parents or guardians, we will take prompt steps to delete such data.

10. How to Contact Us

If you want to contact us or exercise your rights, please contact us at:

Email: contact@openeuler.io

Last updated: Jan 30, 2026

Privacy policy version: v20260130