Privacy Policy
Privacy Policy
Article 1 (Purpose of Processing Personal Information)
The company processes personal information for the following purposes and will not use the information for any purposes other than those listed below. If the purpose of use changes, necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act will be taken.
Furthermore, the company provides services to users who are 14 years of age or older and will immediately delete any personal information of children under 14 upon becoming aware that such information has been collected.
- Membership registration and management
Personal information is processed for the purpose of confirming the intention to join, maintaining and managing membership qualifications for service provision, preventing misuse of services, and for various notifications.
- Service provision
Personal information is processed for the purpose of providing services and content, and offering personalized services.
- Grievance handling
Personal information is processed for the purpose of verifying the identity of users, confirming inquiries, contacting for investigation, notification, and notifying the results.
- Partnership and proposals
Personal information is processed for the purpose of reviewing content written by users or business operators and contacting them if necessary during partnerships and proposals.
Article 2 (Period of Processing and Retaining Personal Information)
① The company processes and retains personal information within the period of retention and use of personal information consented to by the user or as specified by law.
② The specific period of processing and retention of personal information is as follows:
- Membership registration and management: Until membership withdrawal
However, personal information will be retained until the reason for retention is resolved in the following cases:
- 1) Until the end of investigation or inspection due to violations of relevant laws
- 2) Until the settlement of remaining debts related to service use
- 3) Until 90 days after membership withdrawal for restoration requests
- Service provision: Until the completion of service delivery or service use
- Grievance handling: Until grievance resolution
- Partnership proposals: 6 months after review completion
However, in the following cases, personal information will be retained until the end of the specified period:
| Relevant Law | Information Collected | Retention Period |
| Act on Promotion of Information and Communications Network Utilization and Information Protection, etc. | Information related to service use (access logs) | 3 months |
| Act on Consumer Protection in Electronic Commerce, etc. | Records on consumer complaints or dispute resolution | 3 years |
| Records on contract or withdrawal of subscription | 5 years | |
| Records on payment and supply of goods | 5 years |
Article 3 (Provision of Personal Information to Third Parties)
① The company processes the personal information of users only within the scope specified in Article 1 (Purpose of Processing Personal Information) and will provide personal information to third parties only in cases compliant with Article 17 and 18 of the Personal Information Protection Act, such as with the consent of the information subject or special provisions of the law.
② The company does not provide personal information to third parties, and if it becomes necessary to do so, consent will be obtained from the users.
- Article 4 (Outsourcing of Personal Information Processing)
① For smooth processing of personal information tasks, the company outsources the processing of personal information as follows:
| Outsourced Company | Contents of Outsourced Work | Retention and Use Period of Personal Information |
| OnTheLive Inc. | System operation for service provision | Until the end of service use or contract termination |
② There is no outsourcing of personal information processing tasks to foreign corporations.
③ When entering into an outsourcing contract, the company specifies in documents such as the contract, in accordance with Article 26 of the Personal Information Protection Act, matters concerning the prohibition of processing personal information beyond the scope of the outsourcing purpose, technical and administrative protection measures, restrictions on re-outsourcing, management and supervision of the trustee, and responsibility for damages, and supervises whether the trustee processes personal information safely.
④ If the contents of the outsourced work or the trustee changes, it will be disclosed without delay through this privacy policy.
Article 5 (Rights and Obligations of Users and Legal Representatives and How to Exercise Them)
① Users can exercise their rights to access, correct, delete, or request the suspension of processing of their personal information at any time with respect to the company.
- Access / Correction of Personal Information: My Information > Settings > My Profile > Select corresponding menu
- Name, ID (email), password, profile image
- Deletion of Personal Information (Membership Withdrawal): My Information > Settings > Withdraw Membership
- Membership registration and login information, My profile information
② The right to request access to and suspension of processing of personal information may be limited according to Article 35, Section 4, and Article 37, Section 2 of the Personal Information Protection Act.
③ Requests for correction and deletion of personal information cannot be made if the personal information is specified as a collection target in other laws.
④ When requesting access, correction, deletion, or suspension of processing, the company will verify whether the requester is the person in question or a legitimate representative.
⑤ When the subject of the right to exercise rights is a representative (legal representative or a person who has been delegated by the user), a power of attorney in accordance with the format in Annex No. 11 of the "Notice on the Method of Processing Personal Information (Notice No. 2020-7)" must be submitted.
Article 6 (Items of Personal Information Processed)
① The company processes the following items of personal information:
| Category | Purpose of Collection and Use | Mandatory/Optional | Collection and Use Items | |
| Login | Membership registration and login | Mandatory | (Mandatory) Email, password | |
| Password Reset | Password change | Mandatory | New password | |
| Suggestions and Complaints | Handling user inquiries and grievances | Mandatory |
② The following personal information items may be automatically generated and collected during the service use process:
IP address, cookies, service usage records
③ During the service use process, the following information may be generated and collected, although it is not personal information:
Advertising identifiers, visit records, device information (type, model name, OS version, APP version, device identifiers, language and country, browser version), user voice information during speech record
Article 7 (Destruction of Personal Information)
① The company will immediately destroy personal information once the retention period has expired or the purpose of processing has been achieved and the information is no longer necessary.
② Despite the provisions of Paragraph 1, if it is necessary to continue retaining personal information in accordance with other laws, such personal information will be transferred to a separate database (DB) or stored in a different location. (Please refer to Article 2 for the retention period according to laws)
③ The procedure and method of destroying personal information are as follows:
- Destruction Procedure
- 1) Personal information collected at the time of membership registration may be temporarily stored for 14 days for recovery and protection of victims in case of personal information theft or other harms.
- 2) The company selects personal information that has become subject to destruction, and destroys the information upon approval by the company's personal information protection officer.
- Destruction Method
- 1) Electronic file form: Use technical methods to ensure the information cannot be recovered or reproduced
- 2) Paper documents: Shred or incinerate
Article 8 (Measures for Securing the Safety of Personal Information)
The company takes the following measures to ensure the security of personal information:
- Administrative Measures
Establishing and implementing an internal management plan, regular employee training, regular inspection of access records, inspection of entrusted companies, etc.
- Technical Measures
Management of access rights to personal information processing systems, installation of access control systems, encryption of information (during transmission and storage), installation of security programs
- Physical Measures
Access control for data centers, document storage rooms, etc.
Article 9 (Installation, Operation of Automatic Personal Information Collection Devices, and Refusal)
The company uses advertising identifiers and analytical software to provide suitable and more useful services to users.
- Advertising identifiers are automatically collected when users enable the advertising features in the OS settings of their smartphones or tablet PCs, and users can refuse the use of advertising identifiers for interest-based advertising by changing the device settings or using the Opt-Out feature provided by advertising platform operators. Even if the Opt-Out feature is set, unilateral advertisements may still be sent.
- 1) Marketing analysis tools / Advertising platform operators
- - Marketing analysis tools: AppsFlyer, Google Analytics for Firebase, Facebook Analytics
- - Advertising platform operators: AdMob
- 2) Blocking reception of marketing information
- - Android: [Settings->Google>Privacy>Opt out of Ads Personalization]
- 3) Blocking personalized ads
- - Android: [Settings->Google>Ads] or [Settings->Google>Privacy>Ads Preferences>Opt out of Ads Personalization]
- - iOS: [Settings->Privacy->Apple Advertising>Turn off Personalized Ads]
- 4) Using Opt-Out features of marketing analysis tools / advertising platform operators
- - AppsFlyer: https://www.appsflyer.com/optout
- - Facebook Analytics: https://www.facebook.com/help/562973647153813?helpref=faq_content
- - AdMob: https://adssettings.google.com/authenticated
- 1) Marketing analysis tools / Advertising platform operators
- Analytical software is used to analyze information automatically generated when
users visit websites or use mobile services, and users can refuse this.
Android: [Settings->Internet settings>Privacy and security] Select "Smart anti-tracking" or "Request that sites do not track"
- - iOS: [Settings->Privacy->Tracking] Select "Allow Apps to Request to Track"
- - Internet Explorer: "Tools" menu at the top of the web browser > "Safety" menu > Select "Turn on Do Not Track requests"
- - Chrome: [Settings>Privacy and security>Cookies and other site data>General settings] Select "Send a 'Do not track' request with your browsing traffic"
Article 10 (Personal Information Protection Officer)
① The company has designated a personal information protection officer as follows to oversee the overall processing of personal information, handle complaints and damage relief related to personal information processing.
| Name | Affiliation | Position | Contact |
| Seong-wook Yang | - | CEO | Inquire |
② Users can contact the personal information protection officer for any inquiries, complaints, or damage relief related to the protection of personal information while using the company's services. Your inquiries will be answered and processed promptly. However, if there is a delay due to unavoidable reasons, we will inform you again.
Article 11 (Remedies for Infringement of Rights)
Users can contact the following organizations for remediation of personal information infringement, consultation, and other needs.
| Organization Name | Website | Phone |
| Personal Information Infringement Report Center | http://privacy.kisa.or.kr/ | 118 (without area code) |
| Personal Information Dispute Mediation Committee | http://www.kopico.go.kr/ | 1833-6972 (without area code) |
| Cybercrime Investigation Department, Supreme Prosecutors' Office | http://cybercid.spo.go.kr/ | 1301 (without area code) |
| Cyber Investigation Department, National Police Agency | http://cyberbureau.police.go.kr/ | 182 (without area code) |
Article 12 (Scope of Application of the Privacy Policy)
① This privacy policy applies to all services provided by the company (including websites and APPs), but if the characteristics of the service differ, a service-specific privacy policy may be applied.
② This privacy policy does not apply when visiting websites linked to the company's service or when other companies' websites visited collect personal information.
Article 13 (Changes and Notification of Privacy Policy)
① If there are additions, deletions, or modifications to the content of this privacy policy, notification will be provided through the 'Notices' section at least 7 days prior to the changes. Additionally, if there are significant changes affecting users' rights, such as changes in the items of personal information collected or the purpose of use, consent may be obtained again if necessary.
② This privacy policy will be applied from March 14, 2024.