Analog Lab Inc. (hereinafter referred to as "the Company") establishes and discloses this Privacy Policy to protect and handle the personal information of users who use the 'MOODA' service (hereinafter referred to as "the Service") promptly and smoothly in accordance with relevant laws and regulations.
Article 1 (Purpose of Processing Personal Information)
The Company processes personal information for the following purposes:
Membership registration and management: confirmation of membership registration, identification authentication, confirmation of being over 14 years old, maintenance and management of membership status, prevention of unauthorized use of the Service, various notices and notifications, etc.
Provision of goods or services: delivery of products, provision of basic/customized services, issuance of contracts/bills, personal authentication, age verification, fee payment and settlement, etc.
Handling complaints: verification of the user's identity, confirmation of complaints, contact/notification for fact-finding, notification of processing results, etc.
Utilization for marketing and advertising: provision of customized advertising, provision of event and advertising information and opportunities to participate, etc.
Improvement and development of the Service: improvement of existing services and development of new and customized services.
Utilization of anonymous information: anonymization and utilization of anonymous information for statistical analysis, scientific research, and public record preservation purposes.
Article 2 (Items of Personal Information Collected and Processed)
① The Company collects and processes the following personal information of service users:
Essential information collected during membership registration: Login SNS identifiers (user identifiers provided by Apple, Google, Facebook, LINE operators), profile name
Optional information collected during membership registration: Date of birth
Information automatically collected during service use: Device information(model name, OS), app settings, app push token, metadata, service usage records.
During the process of using the service, the member inputs: diary title, diary cover image, diary title text, diary body text, and diary body image, memo text, image added in the room.(stored on the server with encryption technology applied.)
Purchase history provided by open market operators when using paid services.
Information required for and separately collected and processed for the relevant grievance handling among the above information upon request from the user.
Article 3 (Retention and Disposal Period of Personal Information)
① The Company shall without delay delete and dispose of the collected user information when the user withdraws from the service or loses the eligibility to use the service, unless otherwise requested. However, the Company may retain the following information for the reasons below, even in the case of withdrawal or loss of eligibility for service use:
Until the end of the investigation or trial if an investigation or trial is in progress due to a violation of relevant laws and regulations.
Until the settlement of relevant rights and obligations in case of residual rights and obligations related to app use.
The user's login SNS identifiers (user identifiers provided by Apple, Google, Facebook, LINE operators) are retained until the end of the service in order to prevent unauthorized re-registration and service use if the Company terminates the service use contract according to the terms of use.
② Despite the previous paragraph, the Company shall retain the information until the end of the following period if any of the following reasons apply:
Personal information related to service use (log records): 3 months, pursuant to the "Act on Protection of Communications Secrets".
Records on contracts, subscription withdrawals, payment of fees, and supply of goods: 5 years, pursuant to the "Act on Consumer Protection in Electronic Commerce, etc."
Records on consumer complaints or dispute resolution: 3 years, pursuant to the "Act on Consumer Protection in Electronic Commerce, etc."
Records on display advertising: 6 months, pursuant to the "Act on Consumer Protection in Electronic Commerce, etc."
Books and supporting documents related to all transactions specified by tax laws: 5 years, pursuant to the "National Tax Basic Act".
Article 4 (Provision of personal information to third parties)
① The company provides personal information to a third party only if the user has given consent or if there is a special provision in the Personal Information Protection Act or other laws.
② The company is currently not providing personal information to any third parties.
Article 5 (Outsourcing of Personal Information Processing)
① The Company entrusts the following personal information processing tasks to ensure smooth processing of personal information:
Recipients: Amazon Web Services, Google Analytics, Google Cloud Platform (Firebase)
Contents of entrusted tasks: Cloud server operation and management, App usage analysis, app performance data collection and analysis.
Period of retention and use of personal information: Same as the retention and use period stated in Article 3.
Article 6 (Rights and Obligations of Users and Legal Representatives and Method of Exercising Them)
① Users may exercise their rights, such as access, correction, deletion, and suspension of personal information processing, at any time against the Company.
② The exercise of the rights under paragraph 1 may be made in writing, email, etc., and the Company will promptly take measures for it.
③ The rights under paragraph 1 may be exercised through a legal representative or a delegate who has been delegated the authority by the user. In this case, you must submit a power of attorney that confirms the delegation of authority for the delegate.
④ The exercise of rights such as access, correction, deletion, and suspension of personal information processing may be restricted in accordance with the Personal Information Protection Act and other related laws and regulations. In addition, if the personal information is specified as a collection subject by law, you cannot request its deletion.
Article 7 (Destruction of Personal Information)
① When personal information becomes unnecessary due to the expiry of the retention period or the achievement of the processing purpose, the Company shall promptly destroy the relevant personal information.
② If the personal information must be retained in accordance with the laws and regulations specified in Article 3, Paragraph 2, even after the retention period agreed upon by the user has elapsed or the processing purpose has been achieved, the Company shall store the personal information separately in a database or a different storage location.
③ The procedures and methods of personal information destruction are as follows:
Destruction procedure: The Company selects personal information for destruction due to the reasons for destruction and obtains approval from the Company's personal information protection manager before destroying the personal information.
Destruction method: The Company destroys electronic files of personal information using technical methods that prevent the reproduction of records, and destroys personal information recorded and stored on paper documents by shredding or incinerating them.
Article 8 (Measures to Ensure the Security of Personal Information)
① The Company takes the following measures to ensure the security of personal information:
Administrative measures: establishment and implementation of an internal management plan, regular employee education, etc.
Technical measures: technical measures to prepare for hacking, encryption of personal information, management of access rights to personal information processing systems, storage of access records, and prevention of forgery.
Article 9 (Installation, Operation, and Refusal of Personal Information Automatic Collection Devices)
The company does not use 'cookies' that store and retrieve usage information from users on a regular basis.
Article 10 (Personal Information Protection Manager)
① The company is responsible for overall personal information processing and has designated a personal information protection manager as follows for handling user complaints and remedial measures related to personal information processing.
▶ Personal Information Protection Manager
Name: Areum Kim
Position: CEO
Contact: mooda@analoglab.io
Article 11 (Changes to the Personal Information Processing Policy)
The company may modify the personal information processing policy for purposes such as reflecting changes in laws or services. If the personal information processing policy is modified, the company will notify users in advance before the effective date.
Supplementary Provisions
Most Recent Revision Date : 2023. 10. 27.
Previous Version : 2023. 05. 01.
Analog Lab Inc. (hereinafter referred to as "the Company") establishes and discloses this Privacy Policy to protect and handle the personal information of users who use the 'MOODA' service (hereinafter referred to as "the Service") promptly and smoothly in accordance with relevant laws and regulations.
Article 1 (Purpose of Processing Personal Information)
The Company processes personal information for the following purposes:
Membership registration and management: confirmation of membership registration, identification authentication, confirmation of being over 14 years old, maintenance and management of membership status, prevention of unauthorized use of the Service, various notices and notifications, etc.
Provision of goods or services: delivery of products, provision of basic/customized services, issuance of contracts/bills, personal authentication, age verification, fee payment and settlement, etc.
Handling complaints: verification of the user's identity, confirmation of complaints, contact/notification for fact-finding, notification of processing results, etc.
Utilization for marketing and advertising: provision of customized advertising, provision of event and advertising information and opportunities to participate, etc.
Improvement and development of the Service: improvement of existing services and development of new and customized services.
Utilization of anonymous information: anonymization and utilization of anonymous information for statistical analysis, scientific research, and public record preservation purposes.
Article 2 (Items of Personal Information Collected and Processed)
① The Company collects and processes the following personal information of service users:
Essential information collected during membership registration: Login SNS identifiers (user identifiers provided by Apple, Google, Facebook, LINE operators), profile name
Optional information collected during membership registration: Date of birth
Information automatically collected during service use: Device information(model name, OS), app settings, app push token, metadata, service usage records.
During the process of using the service, the member inputs: diary title, diary cover image, diary title text, diary body text, and diary body image.(stored on the server with encryption technology applied.)
Purchase history provided by open market operators when using paid services.
Information required for and separately collected and processed for the relevant grievance handling among the above information upon request from the user.
Article 3 (Retention and Disposal Period of Personal Information)
① The Company shall without delay delete and dispose of the collected user information when the user withdraws from the service or loses the eligibility to use the service, unless otherwise requested. However, the Company may retain the following information for the reasons below, even in the case of withdrawal or loss of eligibility for service use:
Until the end of the investigation or trial if an investigation or trial is in progress due to a violation of relevant laws and regulations.
Until the settlement of relevant rights and obligations in case of residual rights and obligations related to app use.
The user's login SNS identifiers (user identifiers provided by Apple, Google, Facebook, LINE operators) are retained until the end of the service in order to prevent unauthorized re-registration and service use if the Company terminates the service use contract according to the terms of use.
② Despite the previous paragraph, the Company shall retain the information until the end of the following period if any of the following reasons apply:
Personal information related to service use (log records): 3 months, pursuant to the "Act on Protection of Communications Secrets".
Records on contracts, subscription withdrawals, payment of fees, and supply of goods: 5 years, pursuant to the "Act on Consumer Protection in Electronic Commerce, etc."
Records on consumer complaints or dispute resolution: 3 years, pursuant to the "Act on Consumer Protection in Electronic Commerce, etc."
Records on display advertising: 6 months, pursuant to the "Act on Consumer Protection in Electronic Commerce, etc."
Books and supporting documents related to all transactions specified by tax laws: 5 years, pursuant to the "National Tax Basic Act".
Article 4 (Provision of personal information to third parties)
① The company provides personal information to a third party only if the user has given consent or if there is a special provision in the Personal Information Protection Act or other laws.
② The company is currently not providing personal information to any third parties.
Article 5 (Outsourcing of Personal Information Processing)
① The Company entrusts the following personal information processing tasks to ensure smooth processing of personal information:
Recipients: Amazon Web Services, Google Analytics, Google Cloud Platform (Firebase)
Contents of entrusted tasks: Cloud server operation and management, App usage analysis, app performance data collection and analysis.
Period of retention and use of personal information: Same as the retention and use period stated in Article 3.
Article 6 (Rights and Obligations of Users and Legal Representatives and Method of Exercising Them)
① Users may exercise their rights, such as access, correction, deletion, and suspension of personal information processing, at any time against the Company.
② The exercise of the rights under paragraph 1 may be made in writing, email, etc., and the Company will promptly take measures for it.
③ The rights under paragraph 1 may be exercised through a legal representative or a delegate who has been delegated the authority by the user. In this case, you must submit a power of attorney that confirms the delegation of authority for the delegate.
④ The exercise of rights such as access, correction, deletion, and suspension of personal information processing may be restricted in accordance with the Personal Information Protection Act and other related laws and regulations. In addition, if the personal information is specified as a collection subject by law, you cannot request its deletion.
Article 7 (Destruction of Personal Information)
① When personal information becomes unnecessary due to the expiry of the retention period or the achievement of the processing purpose, the Company shall promptly destroy the relevant personal information.
② If the personal information must be retained in accordance with the laws and regulations specified in Article 3, Paragraph 2, even after the retention period agreed upon by the user has elapsed or the processing purpose has been achieved, the Company shall store the personal information separately in a database or a different storage location.
③ The procedures and methods of personal information destruction are as follows:
Destruction procedure: The Company selects personal information for destruction due to the reasons for destruction and obtains approval from the Company's personal information protection manager before destroying the personal information.
Destruction method: The Company destroys electronic files of personal information using technical methods that prevent the reproduction of records, and destroys personal information recorded and stored on paper documents by shredding or incinerating them.
Article 8 (Measures to Ensure the Security of Personal Information)
① The Company takes the following measures to ensure the security of personal information:
Administrative measures: establishment and implementation of an internal management plan, regular employee education, etc.
Technical measures: technical measures to prepare for hacking, encryption of personal information, management of access rights to personal information processing systems, storage of access records, and prevention of forgery.
Article 9 (Installation, Operation, and Refusal of Personal Information Automatic Collection Devices)
The company does not use 'cookies' that store and retrieve usage information from users on a regular basis.
Article 10 (Personal Information Protection Manager)
① The company is responsible for overall personal information processing and has designated a personal information protection manager as follows for handling user complaints and remedial measures related to personal information processing.
▶ Personal Information Protection Manager
Name: Areum Kim
Position: CEO
Contact: mooda@analoglab.io
Article 11 (Changes to the Personal Information Processing Policy)
The company may modify the personal information processing policy for purposes such as reflecting changes in laws or services. If the personal information processing policy is modified, the company will notify users in advance before the effective date.
Supplementary Provisions (May 1, 2023)
This personal information processing policy shall be effective from May 1, 2023.