SeoulComix Co., Ltd. (“Company”) protects users’ personal information in accordance with relevant laws such as the “Act on Promotion of Information and Communications Network Utilization and Information Protection” and the “Personal Information Protection Act,” and establishes this Privacy Policy to promptly and effectively handle privacy-related matters.
This Privacy Policy is accessible through the main service page, and may be revised based on changes in laws, guidelines, or company policies.
Collection and Use of Personal Information
The Company collects and uses personal information strictly within the following purposes. Personal information is not used beyond stated purposes unless additional consent is obtained.
(1) Member Information
Service usage
Payment processing, verification of payment methods, fraud prevention
Card information (number, first 2 digits of password, expiry date), CI (Connecting Information), mobile number, date of birth, gender, name, nationality
Until service termination (card information transmitted directly to financial institutions, not stored by the company)
Notices and updates
Notification of service status and policy updates
Mobile number, email address
Deleted immediately upon termination
Phone verification
User identification and fraud prevention
Provided by third-party: Mobile number, CI, DI, date of birth, gender, nationality
Deleted immediately upon termination
Analytics and improvement
Member management, analytics, service improvements, new service development
IP address, cookies, service logs, device information, Ad ID, communication logs
-
(2) Optional Service Use Information
Purpose
Information Collected
Retention Period
SMS notifications
Mobile number
Deleted 1 day after purpose fulfilled
Event participation
Mobile number
Deleted after event completion
Store visitation linkage
Mobile number, visited store, date/time, number of visitors
Deleted upon unlinking service
SNS account linkage
SNS type and profile URL
Deleted upon unlinking service
(3) Information Collected Based on Internal Policies
Purpose
Information Collected
Retention Period
Prevention of fraud, account abuse, and fraudulent reviews
Mobile number, email, device info, CI/DI
Retained for 3 years after termination
(4) Automatically Collected Information
• IP address, cookies, service logs, device information (device ID, OS version, model), Ad ID, communication logs
(5) The Company may use collected data for analytics, improvements, and new service development.
(6) Users have the right to refuse consent, but refusal may restrict service usage.
Providing Personal Information to Third Parties
Personal information is not shared without explicit user consent except:
(1) With User Consent
(2) Required by law or for criminal investigations following legal procedures.
Outsourcing of Personal Information Processing
To enhance services, personal information may be entrusted to external service providers. The Company oversees outsourced activities to ensure secure handling of personal information.
Current outsourcing providers:
Recipient
Purpose
Toss Payments
Payment processing
NHN (Toast)
SMS/LMS/App push messaging
SureM
Kakao notification (AlimTalk) service
Supabase, AWS (Korea)
Data infrastructure management
OneSignal
App push notifications
Twilio
SMS, VoIP, call recording services
AppsFlyer
Deep-linking and referrals
BugSnag
Application error monitoring
SendGrid
Email delivery services
Disposal of Personal Information
The Company promptly disposes of personal information upon fulfillment of its purpose or user account termination unless retention is required by law:
Law
Data type
Retention Period
Consumer Protection Act
Contracts and withdrawal records
5 years
Payment and supply records
5 years processing
Complaint or dispute records
3 years
Location Information Act
Location data
6 months
Electronic Financial Act
Electronic financial transactions
5 years
Communication Privacy Act
Service logs
3 months
Inactive users (no login for 1 year) may have personal data destroyed or separately stored. Notifications are sent 30 days before any such action.
Disposal Methods:
Electronic data: permanently deleted
Paper documents: shredded or incinerated
Users’ Rights and Exercising Them
Users (and their legal guardians) can access, modify, or delete personal information directly or by contacting the company. Incorrect information will be corrected immediately. Users must keep their information up-to-date and secure their accounts.
Cookies and Online Advertising
The Company uses advertising IDs and behavioral data to deliver personalized ads through platforms like Google and Facebook. Users may opt-out:
Android: Settings > Google > Ads > Disable personalized ads
iOS: Settings > Privacy > Ads > Limit Ad Tracking (On)
Security Measures for Personal Information
The Company uses advertising IDs and behavioral data to deliver personalized ads through platforms like Google and Facebook. Users may opt-out:
Password encryption
Anti-hacking measures (firewalls, antivirus)
Data encryption in transmission
Limited access and regular training for handling personal information
Privacy Officer
Role
Contact
Privacy Officer
CEO Kim Dae-hun
support@seoulcomix.com
Reporting Privacy Violations
Personal Information Infringement Reporting Center: Call 118 / privacy.kisa.or.kr
Supreme Prosecutor’s Office Cybercrime Division: Call 1301 / www.spo.go.kr
Police Cyber Safety Bureau: Call 182 / www.cyber.go.kr
E-commerce Mediation Committee: 1661-5714 / www.ecmc.or.kr
Notification of Policy Changes
This Privacy Policy is effective from October 1, 2024. Updates will be posted on the website.
Announcement Date: October 1, 2024
Effective Date: October 1, 2024