PINPINO (hereinafter "Company") establishes and discloses this Privacy Policy in accordance with Article 30 of the Personal Information Protection Act of Korea to protect personal information and handle related complaints promptly and smoothly.
Privacy Policy
Last updated: January 15, 2025
Notice: This is a translation for reference only. In case of any discrepancy, the Korean version shall prevail.
1. Privacy Policy Overview
2. Personal Information Collected
The Company collects the following personal information to provide services:
| Collection Point | Items Collected | Purpose |
|---|---|---|
| Registration | Name, email address, profile picture (optional) | Member identification and service provision |
| Social Login | Social account ID, name, email (if provided) | Easy login and member identification |
| Service Use | IP address, cookies, service usage records | Service improvement and security |
| Payment | Payment information (payment method, date/time) | Paid service provision and refund processing |
| Inquiry | Name, email, inquiry content | Customer support |
3. Purpose of Processing Personal Information
The Company processes personal information for the following purposes:
- Member Management: Verification of registration intent, membership service provision, identity verification, prevention of fraudulent use
- Service Provision: Pattern creation, storage, and sharing services, personalized services
- Marketing and Advertising: Event and promotional information (only with consent)
- Service Improvement: Service usage analysis, new service development
4. Retention and Use Period
In principle, the Company destroys personal information without delay once the purpose of collection and use has been achieved. However, the following information is retained as required by law:
| Item | Retention Period | Legal Basis |
|---|---|---|
| Records of contracts or subscription withdrawal | 5 years | E-Commerce Act |
| Records of payment and supply of goods | 5 years | E-Commerce Act |
| Records of consumer complaints or disputes | 3 years | E-Commerce Act |
| Website access records | 3 months | Protection of Communications Secrets Act |
5. Disclosure to Third Parties
The Company does not, in principle, provide users' personal information to third parties.
Exceptions apply in the following cases:
- When the user has given prior consent
- When required by law or requested by investigative agencies following legal procedures
6. Destruction of Personal Information
The Company destroys personal information without delay when it is no longer needed due to expiration of retention period or achievement of processing purpose.
- Electronic files: Permanently deleted in a manner that prevents recovery
- Paper documents: Shredded or incinerated
7. User Rights and How to Exercise Them
Users may exercise the following rights as data subjects:
- Request to access personal information
- Request correction of errors
- Request deletion
- Request suspension of processing
These rights can be exercised through the "My Account" menu within the Service or by contacting customer support.
8. Use of Cookies
The Company uses cookies to provide personalized services to users.
- What are cookies: Small text files sent by websites to users' browsers and stored on their devices.
- Purpose: Maintaining login sessions, saving user preferences, analyzing service usage
- Refusing cookies: Users can refuse cookie storage through browser settings. However, refusing cookies may limit access to some services.
9. Security Measures
The Company takes the following measures to ensure the security of personal information:
- Administrative measures: Minimizing staff handling personal information and providing training
- Technical measures: Encryption of personal information, security software installation, access control management
- Physical measures: Access control to server rooms and data storage facilities
10. Privacy Officer
The Company has designated a Privacy Officer responsible for overseeing personal information processing, handling complaints, and providing remedies related to personal information.
Privacy Officer
Department: Operations Team
Contact: Please use the 1:1 inquiry feature within the Service
11. Changes to Privacy Policy
This Privacy Policy takes effect from the enforcement date. Any additions, deletions, or corrections due to changes in laws or policies will be announced through notices at least 7 days prior to implementation.
12. Remedies for Rights Infringement
Data subjects may apply for dispute resolution or consultation regarding personal information infringement to the following organizations:
- Personal Information Dispute Mediation Committee: 1833-6972 (www.kopico.go.kr)
- Personal Information Infringement Report Center: 118 (privacy.kisa.or.kr)
- Supreme Prosecutors' Office: 1301 (www.spo.go.kr)
- National Police Agency: 182 (ecrm.cyber.go.kr)
Supplementary Provisions
This Privacy Policy shall take effect from January 15, 2025.