Privacy and Policy

The ‘CLOVR’’ app service (hereinafter, the “Service”) operated by LIFEOASIS Inc. (hereinafter, the “Company”) establishes and operates the following Privacy Policy to protect personal information, rights, and interests of the Users pursuant to the Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc. (hereinafter, “Communications Network Act”).

Article 1) Collection, Use, and Retention Period of Personal Information

The Company collects the minimum amount of personal information necessary for the provision of the Service by varying the purpose of collection, items, and period of retention and use of personal information according to the Service provided as below.

(1) Purpose of Collection: Membership Registration and Customer Management

Category: Required
Collection Items

1) Commonly collected items: Email address, mobile carrier information, date of birth, gender, nickname, images uploaded by the member, device ID, location information

2) When signing up with third-party accounts

- Google: Email address, Google ID identifier

- Apple: Email address, Apple ID identifier

Retention and Usage Period: Until membership withdrawal or consent revocation, data is retained for a year and deleted after the legally mandated retention period.

(2) Purpose of Collection: Service Quality Improvement and Statistical Analysis of Usage

Category: Automatic
Collection Items: Visit records, connection IP information, service usage records, type of mobile communication terminal, model name, OS version, location information, network type
Retention and Usage Period: Until membership withdrawal or consent revocation, data is retained for 1 year and destroyed after the legally mandated retention period.

(3) Purpose of Collection: Customer Inquiry

Category: Required
Collection Items: Nickname, device information (OS version, model name, manufacturer information), country, city, language
Retention and Usage Period: Retained for 6 months from the completion of related inquiries, then destroyed after the legally mandated retention period.

(4) Purpose of Collection: Customer Inquiry

Category: Optional
Collection Items: Email address
Retention and Usage Period: Retained for 6 months from the completion of related inquiries, then destroyed after the legally mandated retention period.

(5) Purpose of Collection: Participation in Marketing and Promotional Events

Category: Optional
Collection Items: Nickname, unique identifier
Retention and Usage Period: Retained until membership withdrawal or after the legally mandated retention period. *Event participation details included in service promotions are not automatically deleted upon membership withdrawal.

(6) Consent to Receive Advertisement Information (optional)

Category: Optional
Collection Items: Nickname, Push message token
Retention and Usage Period: Retained until membership withdrawal or for 2 months from the date of consent revocation.

Processing of Personal Information

– The Company does not offer the Service to underaged persons younger than 17 years of age and does not collect relevant personal information.

– The Company collects personal information in the following methods and obtains prior consent before collection.

① A method in which the User directly inputs personal information in the process of using the Service.

② A method in which access records and usage records, etc. are automatically created and collected in the process of using the Service.

Article 2) Installation and Operation Rejection of Automatic Personal Information Collection Device

The Company automatically generates/collects the following information of the User in the process of using the Service, and the following information can be used for the purposes as below.

Notice on an automatic collection of personal information and rejection method

– Collected items: Visit record, access IP data, service use record, mobile communication terminal type, model name, OS version, location-based data, network type

Control over personal information

(1) Mobile: Android

Rejection method: Application Information > Storage > Delete cache and data

(2) Mobile: iOS

Rejection method: Settings > General > iPhone Storage > Select app > Organize app

Article 3) Retention and Use Period of Personal Information and Destruction

The Company processes personal information collected from the User within the retention/use period of personal information for which the Company obtained consent upon collecting thereof or the retention/use period of personal information under applicable laws. When the pertinent purposes are achieved or the retention/use period elapses, the Company destroys the personal information without delay by a method that cannot recover or reproduce thereof.

Member Information

① When the User withdraws from the Service membership, the Company retains the personal information of the User for one (1) year to prevent unauthorized use. In this case, the personal information is stored in a personally unidentifiable state, and the same ID is prohibited from re-registering. However, information on permanently suspended accounts is not deleted.

② An account of the User who does not use the Service for one (1) year is converted to a dormant account, and the personal information is safely stored separately from the membership DB in operation.

③ When the User withdraws from membership, the retention of personal information is determined by provisions of applicable laws when the laws require retention thereof.

Obligatory Retention Period under Applicable Laws

(1) Information: Record on representation and advertisement

Period: 6 months
Basis of retention: Act on Consumer Protection in the Consumer Protection in Electronic Commerce, Etc.

(2) Information: Record on contract or withdrawal of offer

Period: 5 years
Basis of retention: Act on Consumer Protection in the Consumer Protection in Electronic Commerce, Etc.

(3) Information: Record on payment and supply of goods, etc.

Period: 5 years
Basis of retention: Act on Consumer Protection in the Consumer Protection in Electronic Commerce, Etc.

(4) Information: Record on consumer complaints or dispute settlement

Period: 3 years
Basis of retention: Act on Consumer Protection in the Consumer Protection in Electronic Commerce, Etc.

(5) Information: Retention of records of access

Period: 3 months
Basis of retention: Protection of Communications Secrets Act

(6) Information: Record on electronic financial

Period: 3 years
Basis of retention: Electronic Financial Transactions Act

Article 4) Entrustment of Personal Information Processing

The Company entrusts part of personal information processing tasks for smooth processing of personal information and supervises the safe processing of personal information by the Trustee under applicable laws. When the content of the entrusted tasks or the Trustee is added or changed, the Company will notify on prior consent under applicable laws or disclose through the Privacy Policy without delay.

Entrusted Tasks of Personal Information Processing and Trustee Companies

Trustee: Entrusted task
Contact Information: Channel Corp.
Customer counseling: 02-1644-4052

Article 5) Overseas Transfer of Personal Information

The Company entrusts the processing of personal information to overseas entities as follows:

(1) Trustee: Google play store

Country: United States
Entrusted task: In-app purchase
Information Transferred: Payment information, Google Play Store identifier, device information
Time and Method of Transfer: Transmit over the network at the time of service provision
Contact Information: 080-234-0051
Retention and Usage Period: Destroyed after the purpose is achieved or upon termination of contract

(2) Trustee: Apple store

Country: United States
Entrusted task: In-app purchase
Information Transferred: Payment information, Apple Store identifier, device information
Time and Method of Transfer: Transmit over the network at the time of service provision
Contact Information: apple.com/legal/privacy/contact
Retention and Usage Period: Destroyed after the purpose is achieved or upon termination of contract

(3) Trustee:

Country: United States
Entrusted task: System operation and data storage
Information Transferred: Personal information collected as per this privacy policy
Time and Method of Transfer: Transmit over the network at the time of service provision
Contact Information: aws@amazon.com
Retention and Usage Period: Destroyed after the purpose is achieved or upon termination of contract

(4) Trustee: Google firebase

Country: United States
Entrusted task: Service usage analysis
Information Transferred: Visit records, connection IP information, service usage records, type of mobile communication terminal, model name, OS version, location information, network type
Time and Method of Transfer: Transmit over the network at the time of service provision
Contact Information: googlekrsupport@google.com
Retention and Usage Period: Destroyed after the purpose is achieved or upon termination of contract

Methods, Procedures, and Effects of Refusing the Transfer

The user may refuse the overseas transfer of personal information by expressing their intent to the Company’s data protection officer. However, as the ‘overseas transfer of personal information’ is essential for the use of the service, refusal may result in the inability to use the service.

Article 6) Measures to Ensure Safety of Personal Information

The Company is committed to preventing loss, theft, leakage, alteration, or damage of personal information by safely managing the personal information of the User and implements necessary technical, administrative, and physical measures.

Minimization of personnel handling personal information and training
Establishment and implementation of internal management plans
Storage and management of access records to personal information processing system to store access records and prevent alteration/forgery (more than one (1) year)
Encryption of personal information
Installation of a security program and periodic inspection as a technical measure against hacking, etc.
Restriction on access control to personal information

Article 7) Rights of Users and Legal Representatives and Methods of Executing Rights

The User has the right to request access to their personal data, request correction in case of errors, and request deletion at any time.

These rights may be exercised through written correspondence, telephone calls, email, or fax, and the Company will take action without delay.

If the User requests correction or deletion due to errors in their personal data, the Company will not use or provide the relevant information until the correction or deletion is completed.

This service is allowed to users aged 17 and above.

The User must not violate the Information and Communications Network Act, the Personal Information Protection Act, or any other applicable laws by infringing upon the personal information or privacy of themselves or others handled by the Company.

Article 8) Personal Information Protection Manager and Remedy for Infringement of User Rights and Interests

The Company has the responsibility to oversee tasks related to the processing of personal information and designates the Personal Information Protection Manager as below for handling user complaints of and remedy for damages to the User related to personal information processing.

Personal Information Protection Manager

• Name: Jeong-Bum Sung
• Position: CTO
• Contact: help@lifeoasis.com
• Role of the Personal Information Protection Manager

Article 9) Changes in the Privacy Policy

The Privacy Policy takes effect from the date of implementation, and the Company will notify any addition, deletion, or correction of changes according to applicable laws and policies through the website without delay.