Privacy Policy

The Company processes personal information for the following purposes. The personal information being processed shall not be used for any purpose other than those stated below, and if the purpose of use changes, the Company will take necessary measures, such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.

1. Service Provision: Providing voice recording services, content provision, and customized services
2. Member Management: Member identification, maintaining and managing membership, preventing fraudulent use of services
3. Service Improvement: Developing new services, improving service quality, statistics and analysis

1. The Company processes and retains personal information within the period of retention and use of personal information in accordance with laws and regulations, or within the period of retention and use of personal information agreed upon when collecting personal information from the data subject.
2. The processing and retention period for each type of personal information is as follows:
   • Member registration and management: Until membership withdrawal (However, if an investigation or inquiry is in progress due to violation of related laws, until the completion of such investigation or inquiry)
   • Service usage records: 3 years (Communications Secrets Protection Act)
   • Records related to contracts or withdrawal of subscription: 5 years (Electronic Commerce Act)

The Company processes the following personal information:

1. Required Items:
   • Device information (device unique identifier, OS information)
   • Service usage records (recording files, access logs, etc.)
2. Optional Items:
   • Email address (when registering as a member optionally)
   • Nickname (when set optionally)
3. Automatically Collected Items:
   • IP address, cookies, service usage records, device information

The Company processes personal information of data subjects only within the scope specified in Article 1 (Purpose of Processing Personal Information), and provides personal information to third parties only in cases corresponding to Article 17 and Article 18 of the Personal Information Protection Act, such as consent from the data subject or special provisions of laws.

For smooth processing of personal information, the Company entrusts personal information processing tasks as follows:

1. Cloudflare
   • Entrusted tasks: Infrastructure operation for service provision
   • Entrustment period: During the service provision period

When entering into an entrustment contract, the Company specifies in documents such as contracts matters including prohibition of processing personal information for purposes other than performing entrusted tasks, technical and administrative protection measures, restrictions on re-entrustment, management and supervision of trustees, and compensation for damages in accordance with Article 26 of the Personal Information Protection Act, and supervises whether trustees safely process personal information.

1. Data subjects may exercise the following rights related to personal information protection against the Company at any time:
   • Right to request suspension of personal information processing
   • Right to request access to personal information
   • Right to request correction or deletion of personal information
   • Right to request suspension of personal information processing
2. The exercise of rights under paragraph 1 may be made to the Company in writing, by email, facsimile transmission (FAX), etc., and the Company will take action without delay.
3. If a data subject requests correction of errors in personal information, the Company shall not use or provide the personal information until the correction is completed.

1. The Company destroys personal information without delay when it becomes unnecessary, such as when the retention period has elapsed or the processing purpose has been achieved.
2. The procedures and methods for destroying personal information are as follows:
   • Destruction Procedure: The Company selects personal information for which a reason for destruction has occurred and destroys it after obtaining approval from the Company's personal information protection officer.
   • Destruction Method: Information in electronic file format is deleted using technical methods that make it impossible to reproduce records.

The Company is responsible for overall personal information processing tasks and has designated a personal information protection officer as follows to handle complaints and remedy damages related to personal information processing:

The Company takes the following measures to ensure the security of personal information:

1. Administrative Measures: Establishment and implementation of internal management plans, regular employee training, etc.
2. Technical Measures: Management of access rights to personal information processing systems, installation of access control systems, encryption of unique identification information, installation of security programs
3. Physical Measures: Access control to computer rooms, data storage rooms, etc.

This Privacy Policy takes effect from January 1, 2025, and if there are additions, deletions, or corrections to the contents in accordance with laws and policies, the Company will notify users of such changes through notices seven days before the implementation of the changes.