top of page
privacy policy

Sound Platform Co., Ltd. (hereinafter referred to as the "Company") values the personal information of users and strives to comply with the 'Act on Promotion of Information and Communications Network Utilization and Information Protection' and 'Personal Information Protection Act'. Through the personal information processing policy, the company informs you of the purpose and method of using the personal information provided by the user and what measures the company is taking to protect personal information.

Article 1 Items of personal information to be collected and method of collection

  1. Items of Personal Information Collected
    The “Company” collects the following personal information at the time of initial membership registration for membership registration, smooth customer consultation, and provision of various services.

    1. Kakao Login (Kakao Sync): Required (login information identification value, email), optional (nickname, name, birthday, phone number, gender)

    2. Apple Login (Apple Login): login information identification value, Apple ID

    3. Google sign-in (Google sign-in): Sign-in information identification value, Google ID
       

  2. In the process of using the service, the following information may be generated and collected.

    1. IP address, cookie, date and time of visit, bad use record, service use record, device information (device serial number, OS version, model name, manufacturer information, etc.), advertising ID, communication record, etc.
       

  3. "Company" collects personal information in the following ways.

    1. Automatic collection of personal information necessary for Kakao, Apple login, and Google login, such as the user's name (nickname) and email during the membership sign-up process

    2. Users while using the serviceCollection through voluntary provision of
       

  4. Matters concerning installation/operation and refusal of automatic personal information collection process The “Company” collects personal information in the following ways.

    1. The “Company” collects and uses behavioral information as follows and does not collect sensitive behavioral information that may clearly infringe on the rights, interests or privacy of users.

    2. Items of information to be collected: User's service use records
       

  5. The “Company” restricts the use of services by children under the age of 14, and allows membership registration only to users over the age of 14 to protect personal information.

Article 2 Purpose of processing personal information

The "company" collects only the minimum amount of personal information for service provision for the following purposes, and does not use the collected information for any other purpose or disclose it to the outside without the user's consent.

  1. Personal information is processed to provide services such as member management and identity verification in accordance with service provision, member sign-up intention confirmation, and membership maintenance management.

  2. Restrictions on use of members who violate the Terms of Use, etc., restriction on sign-up and number of sign-ups, restriction on illegal use of service, prevention of unauthorized use, prevention of sign-up of children under the age of 14, preservation of records for grievance handling and dispute mediation, delivery of notices, member Confirmation of intent to withdraw, etc.

  3. Personal information is used to fulfill contracts for service provision, such as provision of contents and tickets in the service, provision of specific customized services, delivery of goods or billing, purchase and payment, and collection of charges, etc.process.

  4. New service/content development and statistical analysis, use for marketing events: development of new services and provision of customized services, analysis and statistics on service use, provision of event/advertising information and opportunities to participate

Article 3 Processing and Retention Period of Personal Information

The “company” retains and uses personal information within the period of retention and use of personal information according to the law or the period of retention and use of personal information agreed upon when collecting personal information from the information subject. In principle, the company destroys the user's personal information without delay when the purpose of collection/use is achieved.

  1. Personal identification information: login ID, email, password, name

    1. processand Retention period: Until membership withdrawal

      1. If an investigation or investigation is in progress due to violation of laws and regulations, until the end of the investigation or investigation

      2. Receivables/debts related to app use remain until the receivables/debts are settled

  2. Reasons for retaining information according to company internal policy

    1. fraudulent use record

      1. Retention reason: Prevention of fraudulent use

      2. Retention period: 1 year

However, if it is necessary to preserve it in accordance with the provisions of the relevant laws and regulations, the company will retain personal information for a certain period of time as set forth in the relevant laws and regulations as follows. In this case, the "company" uses the information it keeps only for the purpose of keeping it, and the retention period is as follows.

  1. Records on transactions, such as display advertisements, contract details and execution, in accordance with the “Act on Consumer Protection in Electronic Commerce, etc.”

    1. Records on display and advertisement: 6 months

    2. Record of contract or subscription withdrawal, payment, supply of goods, etc.: 5 years

    3. Records on handling consumer complaints or disputes: 3 years
       

  2. Storage of communication confirmation data in accordance with Article 41 of the “Protection of Communications Secrets Act”

    1. Computer communication, Internet log record data, access tracking data: 3 months

    2. Other communication confirmation data: 1 year

Article 4 Personal information destruction procedure and method

In principle, the "Company" immediately destroys the personal information when the purpose of processing the personal information is achieved. However, if the personal information is specified as subject to collection in the law, deletion cannot be requested.

  1. Destruction procedure
    The information entered by the user for membership registration, etc., is transferred to a separate DB after the purpose of collection and use is achieved (separate filing cabinet in case of paper), Reference) After being stored for a certain period of time, it is immediately destroyed. At this time, the personal information transferred to a separate DB will not be used for any other purpose except in accordance with the law.

  2. Destruction method
    Information in the form of electronic files is deleted using a technical method that makes it impossible to reproduce the record, and information printed on paper is destroyed by shredding or incineration.

Article 5 Provision of personal information to third parties

The "company" uses personal information within the scope of the purpose of collection and use notified to users, and does not provide it to third parties beyond the scope of consent. However, the following cases are exceptions.

  1. When users have agreed to the disclosure in advance

  2. If there is a request from an investigative agency in accordance with the procedures and methods set forth in the law for the purpose of investigation

  3. statistics writing, scienceWhen personal information is provided in a form in which a specific individual cannot be identified as necessary for technical research or market research

Article 6 Overseas Transfer of Personal Information

The company does not provide personal information to other businesses abroad. However, in order to fulfill the contract for the provision of information and communication services and to enhance user convenience, the following personal information processing tasks are consigned overseas.

 

목적
항목
일시 및 방법
보유 기간
업체
인앱결제
청구 주소 및 은행 세부 정보, 신용 카드, 직불 카드 또는 기타 지불 카드 정보 등 지불 방법에 대한 데이터
서비스 제공 시 암호화된 네트워크를 통해 전송
동의 철회일과 위탁 계약 종료일
Apple Store / Google Play Store

Article 7 Measures to ensure safety for personal information protection

"Company" is making the following technical, managerial, and physical efforts to protect users' personal information.

  1. technical measures

    1. Personal information encryption
      Important information such as the user's password is encrypted and stored and managed, and confirmation and change of personal information is possible only by the person himself/herself.

    2. Countermeasures against hacking
      In order to prevent leakage or damage of users' personal information by hacking or malicious codes, the company operates an intrusion prevention system to control unauthorized access from outside and strives to prevent the system from being infected with malicious codes or viruses. In addition, the company strives to have maximum technical methods for more secure handling of personal information.

    3. Measures to prevent forgery and alteration of access records Restriction of access to personal information
      Necessary measures are taken to control access to personal information by granting, changing, or canceling access to the database system that processes personal information.

  2. Administrative measures

    1. Establishment and execution of internal management plan

    2. Minimization and training of personnel handling personal information
      Minimization and training of personal information processing personnel The company limits the number of employees handling personal information to a minimum, and conducts regular training for related employees to make them aware of the importance of the personal information processing policy.

  3. physical action

    1. Control access to computer room and data storage room
      We use a locking device for document security and store documents and auxiliary storage media containing personal information in a safe place with a locking device.

Article 8 Rights, obligations and exercise methods of users and legal representatives

In order to improve the service, the "company" consigns and operates personal information to an external consignment company or service as follows, and upon the end of the consignment business, the personal information is destroyed without delay.

 

수탁업체
위탁업무
개인정보의 보유 및 이용기간
Apple Store
인앱결제
회원탈퇴 또는 위탁계약 종료 시
Google Play Store
인앱결제
회원탈퇴 또는 위탁계약 종료 시
Apple
로그인
회원탈퇴 또는 위탁계약 종료 시
Google
로그인
회원탈퇴 또는 위탁계약 종료 시
(주)카카오
로그인 및 알림 관련 서비스 제공 (알림톡)
회원탈퇴 또는 위탁계약 종료 시
Amazon Web Service
시스템 운영 및 데이터 보관
회원탈퇴 또는 위탁계약 종료 시

Article 9 Rights of users and how to exercise them

  1. Users' rights and obligations

    1. Users are responsible for accidents caused by inaccurate user information entered by users, and membership may be lost if false information is entered, such as stealing other people's information.

    2. Users have the right to have their personal information protected, as well as the obligation to protect themselves and not infringe on others' information. Please be careful not to leak your personal information, including your password.

  2. Right to request access to personal information

    1. Users may request to view their personal information processed by the "Company".

    2. The “company” must allow the information subject to view the personal information within 14 days when requested to view it from the information subject. If there is a legitimate reason for not accessing, the information subject may be notified of the reason and the period may be delayed or access may be refused.

    3. In the case of the following reasons, the "company" may notify the information subject of the reason and limit or reject the viewing.

      1. When viewing is prohibited or restricted by law

      2. If there is a risk of harming the life or body of another person, or of unfairly infringing on the property or other interests of another person

  3. Right to request correction and deletion of personal information

    1. The information subject may request the “Company” to correct or delete their personal information. However, if the personal information is specified as subject to collection in the law, deletion cannot be requested.

    2. If the information subject requests correction or deletion of his or her personal information, the "Company" shall take necessary measures such as correction or deletion without delay and notify the information subject of the result, except when a separate procedure is stipulated in the law. do.

    3. When the "company" deletes personal information, measures must be taken to prevent it from being recovered or reproduced.

    4. If necessary, the "Company" may have the information subject submit evidence necessary for confirmation of correction or deletion requirements.

  4. How to request access, correction, or deletion of personal information

    1. If the information subject requests to view, correct, or delete, please fill out the “Personal Information Request Form” and send it to the person in charge of personal information protection by sending an e-mail or making an inquiry, and we will process it quickly.

  5. Withdrawal of consent to the collection, use and provision of personal information

    1. Users can withdraw their consent at any time regarding the collection, use, and provision of personal information through membership registration, etc. However, if the consent to the collection, use, and provision of essential information is withdrawn, the "Company" may guide membership withdrawal.

    2. When you withdraw from membership, you are considered to have withdrawn your consent to the collection, use, and provision of personal information. In addition, if you contact the person in charge of personal information management and personal information management in writing, by phone or e-mail, we will take necessary measures to withdraw your consent.

Article 10 Personal information protection manager and responsible department

UseThe person in charge of personal information protection or the department in charge of personal information protection can inquire about all personal information-related inquiries and complaints that occur while using the company's services. The company strives to promptly and faithfully respond to and process inquiries from users.

[Personal Information Protection Officer]

Personal Information Protection Officer: Jeonghoon Seo
Position: CEO
email :ceo@soundplatform.co.kr
 

If you need to report or consult about other personal information infringement, please contact the following organizations.

Article 11 Revision of personal information processing policy and obligation to notify

If there is a change in the personal information processing policy, the "company" will notify you through the Internet homepage, service app notice, or e-mail at least 7 days before the effective date of the revised personal information processing policy. In addition, if necessary, the user's consent may be obtained again.

Addenda

This Privacy Policy is effective from April 4, 2023.

 

bottom of page