The ‘CLOVR’’ app service (hereinafter, the “Service”) operated by LIFEOASIS Inc. (hereinafter, the “Company”) establishes and operates the following Privacy Policy to protect personal information, rights, and interests of the Users pursuant to the Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc. (hereinafter, “Communications Network Act”).
Article 1) Collection, Use, and Retention Period of Personal Information
(1) Purpose of Collection: Membership Registration and Customer Management
1) Commonly collected items: Email address, mobile carrier information, date of birth, gender, nickname, images uploaded by the member, device ID, location information
2) When signing up with third-party accounts
- Google: Email address, Google ID identifier
- Apple: Email address, Apple ID identifier
(2) Purpose of Collection: Service Quality Improvement and Statistical Analysis of Usage
(3) Purpose of Collection: Customer Inquiry
(4) Purpose of Collection: Customer Inquiry
(5) Purpose of Collection: Participation in Marketing and Promotional Events
(6) Consent to Receive Advertisement Information (optional)
Processing of Personal Information
– The Company does not offer the Service to underaged persons younger than 17 years of age and does not collect relevant personal information.
– The Company collects personal information in the following methods and obtains prior consent before collection.
– To prevent misuse of the service and handle user complaints, video frame images from the user's video source may be collected and managed.
① A method in which the User directly inputs personal information in the process of using the Service.
② A method in which access records and usage records, etc. are automatically created and collected in the process of using the Service.
Article 2) Installation and Operation Rejection of Automatic Personal Information Collection Device
The Company automatically generates/collects the following information of the User in the process of using the Service, and the following information can be used for the purposes as below.
Notice on an automatic collection of personal information and rejection method
– Collected items: Visit record, access IP data, service use record, mobile communication terminal type, model name, OS version, location-based data, network type
Control over personal information
(1) Mobile: Android
Rejection method: Application Information > Storage > Delete cache and data
(2) Mobile: iOS
Rejection method: Settings > General > iPhone Storage > Select app > Organize app
Article 3) Retention and Use Period of Personal Information and Destruction
The Company processes personal information collected from the User within the retention/use period of personal information for which the Company obtained consent upon collecting thereof or the retention/use period of personal information under applicable laws. When the pertinent purposes are achieved or the retention/use period elapses, the Company destroys the personal information without delay by a method that cannot recover or reproduce thereof.
Member Information
① When the User withdraws from the Service membership, the Company retains the personal information of the User for one (1) year to prevent unauthorized use. In this case, the personal information is stored in a personally unidentifiable state, and the same ID is prohibited from re-registering. However, information on permanently suspended accounts is not deleted.
② An account of the User who does not use the Service for one (1) year is converted to a dormant account, and the personal information is safely stored separately from the membership DB in operation.
③ When the User withdraws from membership, the retention of personal information is determined by provisions of applicable laws when the laws require retention thereof.
Obligatory Retention Period under Applicable Laws
(1) Information: Record on representation and advertisement
Period: 6 months
Basis of retention: Act on Consumer Protection in the Consumer Protection in Electronic Commerce, Etc.
(2) Information: Record on contract or withdrawal of offer
Period: 5 years
Basis of retention: Act on Consumer Protection in the Consumer Protection in Electronic Commerce, Etc.
(3) Information: Record on payment and supply of goods, etc.
Period: 5 years
Basis of retention: Act on Consumer Protection in the Consumer Protection in Electronic Commerce, Etc.
(4) Information: Record on consumer complaints or dispute settlement
Period: 3 years
Basis of retention: Act on Consumer Protection in the Consumer Protection in Electronic Commerce, Etc.
(5) Information: Retention of records of access
Period: 3 months
Basis of retention: Protection of Communications Secrets Act
(6) Information: Record on electronic financial
Period: 3 years
Basis of retention: Electronic Financial Transactions Act
Article 4) Entrustment of Personal Information Processing
The Company entrusts part of personal information processing tasks for smooth processing of personal information and supervises the safe processing of personal information by the Trustee under applicable laws. When the content of the entrusted tasks or the Trustee is added or changed, the Company will notify on prior consent under applicable laws or disclose through the Privacy Policy without delay.
Entrusted Tasks of Personal Information Processing and Trustee Companies
Trustee: Entrusted task
Contact Information: Channel Corp.
Customer counseling: 02-1644-4052
Article 5) Overseas Transfer of Personal Information
The Company entrusts the processing of personal information to overseas entities as follows:
(1) Trustee: Google play store
Country: United States
Entrusted task: In-app purchase
Information Transferred: Payment information, Google Play Store identifier, device information
Time and Method of Transfer: Transmit over the network at the time of service provision
Contact Information: 080-234-0051
Retention and Usage Period: Destroyed after the purpose is achieved or upon termination of contract
(2) Trustee: Apple store
Country: United States
Entrusted task: In-app purchase
Information Transferred: Payment information, Apple Store identifier, device information
Time and Method of Transfer: Transmit over the network at the time of service provision
Contact Information: apple.com/legal/privacy/contact
Retention and Usage Period: Destroyed after the purpose is achieved or upon termination of contract
(3) Trustee:
Country: United States
Entrusted task: System operation and data storage
Information Transferred: Personal information collected as per this privacy policy
Time and Method of Transfer: Transmit over the network at the time of service provision
Contact Information: aws@amazon.com
Retention and Usage Period: Destroyed after the purpose is achieved or upon termination of contract
(4) Trustee: Google firebase
Country: United States
Entrusted task: Service usage analysis
Information Transferred: Visit records, connection IP information, service usage records, type of mobile communication terminal, model name, OS version, location information, network type
Time and Method of Transfer: Transmit over the network at the time of service provision
Contact Information: googlekrsupport@google.com
Retention and Usage Period: Destroyed after the purpose is achieved or upon termination of contract
Methods, Procedures, and Effects of Refusing the Transfer
The user may refuse the overseas transfer of personal information by expressing their intent to the Company’s data protection officer. However, as the ‘overseas transfer of personal information’ is essential for the use of the service, refusal may result in the inability to use the service.
Article 6) Measures to Ensure Safety of Personal Information
The Company is committed to preventing loss, theft, leakage, alteration, or damage of personal information by safely managing the personal information of the User and implements necessary technical, administrative, and physical measures.
Minimization of personnel handling personal information and training
Establishment and implementation of internal management plans
Storage and management of access records to personal information processing system to store access records and prevent alteration/forgery (more than one (1) year)
Encryption of personal information
Installation of a security program and periodic inspection as a technical measure against hacking, etc.
Restriction on access control to personal information
Video frame data from users is used for complaint resolution and service management purposes and is securely stored in encrypted storage
Article 7) Rights of Users and Legal Representatives and Methods of Executing Rights
The Company is committed to preventing loss, theft, leakage, alteration, or damage of personal information by safely managing the personal information of the User and implements necessary technical, administrative, and physical measures.
The User has the right to request access to their personal data, request correction in case of errors, and request deletion at any time.
These rights may be exercised through written correspondence, telephone calls, email, or fax, and the Company will take action without delay.
If the User requests correction or deletion due to errors in their personal data, the Company will not use or provide the relevant information until the correction or deletion is completed.
This service is allowed to users aged 17 and above.
The User must not violate the Information and Communications Network Act, the Personal Information Protection Act, or any other applicable laws by infringing upon the personal information or privacy of themselves or others handled by the Company.
Article 8) Personal Information Protection Manager and Remedy for Infringement of User Rights and Interests
The Company has the responsibility to oversee tasks related to the processing of personal information and designates the Personal Information Protection Manager as below for handling user complaints of and remedy for damages to the User related to personal information processing.
Personal Information Protection Manager
• Name: Jeong-Bum Sung
• Position: CTO
• Contact: help@lifeoasis.com
• Role of the Personal Information Protection Manager
Article 9) Changes in the Privacy Policy
The Privacy Policy takes effect from the date of implementation, and the Company will notify any addition, deletion, or correction of changes according to applicable laws and policies through the website without delay.