Privacy Policy

Article 1 (Purpose)

ChartIQ (hereinafter referred to as the "Company") establishes this Privacy Policy (hereinafter referred to as "this Policy") to protect the personal information (hereinafter referred to as "Personal Information") of individuals (hereinafter referred to as "Users" or "Individuals") using the Company's services (hereinafter referred to as "Company Services"), in compliance with the Personal Information Protection Act, the Act on Promotion of Information and Communications Network Utilization and Information Protection (hereinafter referred to as "Information and Communications Network Act"), and other applicable laws. This Policy aims to facilitate the prompt and smooth handling of privacy-related concerns of service users.

Article 2 (Principles of Personal Information Processing)

In accordance with relevant laws and this Policy, the Company may collect Users' Personal Information and may provide such collected information to third parties only with the User’s consent. However, if legally mandated, the Company may provide collected Personal Information to third parties without prior consent.

Article 3 (Disclosure of this Policy)

The Company makes this Policy easily accessible to Users through the homepage or a linked page from the homepage.

When disclosing this Policy under the preceding paragraph, the Company ensures that Users can easily recognize it by utilizing font size, colors, and other visual elements.

Article 4 (Changes to this Policy)

This Policy may be amended in accordance with changes in laws, guidelines, government policies, or Company Services.

In the event of an amendment, the Company shall notify Users by at least one of the following means:

1. Posting the changes on the Company’s website homepage or a separate notification page.

2. Sending notifications via written documents, facsimiles, emails, or other similar methods.

The Company will notify Users at least seven (7) days before the revised Policy takes effect. However, if the changes significantly affect User rights, a minimum of thirty (30) days' notice will be provided.

Article 5 (Information for Membership Registration)

The Company collects the following information for membership registration:

• Required Information: Email address and nickname.

• Optional Information: Profile picture.

Article 6 (Information for Payment Services)

To provide payment services, the Company collects the following information:

• Optional Information: Purchase history and purchase data.

Article 7 (Information for Providing Company Services)

To provide Company Services, the Company collects the following information:

• Required Information: User ID and email address.

Article 8 (Information for Service Usage and Fraud Prevention)

For statistical analysis of service usage and detection of fraudulent activities (e.g., repeated membership withdrawals and re-registrations to exploit promotions or economic benefits), the Company collects the following information:

• Required Information: Service usage records and cookies.

Article 9 (Methods of Collecting Personal Information)

The Company collects Personal Information through the following means:

1. When Users enter their Personal Information on the Company’s website.

2. When Users enter their Personal Information through Company-provided applications or services other than the website.

Article 10 (Use of Personal Information)

The Company uses Personal Information for the following purposes:

1. For necessary Company operations, such as delivering notices.

2. For responding to User inquiries and improving service quality.

3. For providing Company Services.

4. For restricting members who violate the Terms of Service, engage in fraudulent activities, or disrupt the smooth operation of services.

Article 11 (Outsourcing of Personal Information Processing)

For seamless service provision and effective operations, the Company outsources Personal Information processing to the following third parties:

• Firebase (Google LLC) and Amazon Web Services (AWS, Inc.) for data transmission, processing, and storage until membership termination or contract termination.

Article 12 (Retention and Use Period of Personal Information)

The Company retains and uses Users' Personal Information for the period necessary to achieve the purpose of collection and use.

Notwithstanding the preceding paragraph, the Company retains records of fraudulent service usage for up to one (1) year from the time of membership termination to prevent fraudulent activities.

Article 13 (Legal Retention and Use Period of Personal Information)

The Company retains Personal Information in accordance with relevant laws as follows:

1. Act on Consumer Protection in Electronic Commerce:

   • Records of contracts and withdrawals: 5 years

   • Records of payments and supply of goods: 5 years

   • Records of consumer complaints and dispute resolution: 3 years

   • Records of advertising and marketing: 6 months

2. Protection of Communications Secrets Act:

   • Website log records: 3 months

3. Electronic Financial Transactions Act:

   • Records of electronic financial transactions: 5 years

4. Act on the Protection and Use of Location Information:

   • Personal location information records: 6 months

Article 14 (Principles of Personal Information Disposal)

In principle, the Company immediately disposes of Personal Information when the processing purpose is achieved or the retention period expires.

Article 15 (Personal Information Disposal Procedure)

Personal Information entered by the User is transferred to a separate database (or stored separately in paper form) after the processing purpose is achieved and is destroyed after a certain period according to relevant laws and internal policies.

The Company follows an approval process before disposing of Personal Information.

Article 16 (Personal Information Disposal Methods)

• Electronic files containing Personal Information are deleted using technical methods that prevent data recovery.

• Paper documents containing Personal Information are shredded or incinerated.

Article 17 (Transmission of Advertising Information)

The Company obtains explicit prior consent from Users before transmitting commercial advertising via electronic means. However, the following cases are exceptions:

1. When contact information is collected during transactions, and commercial advertisements for similar products are sent within six (6) months of the transaction.

2. When telephone sales are conducted per the Direct Selling Act.

Article 18 (Access to and Withdrawal of Consent for Personal Information)

Users may access, modify, or withdraw their consent to Personal Information collection at any time by contacting the Company’s designated personnel via written documents, phone, or email.

Article 19 (Correction of Personal Information Errors)

Users may request corrections to their Personal Information, and until the correction is completed, the Company will not use or provide incorrect data to third parties.

Article 20 (Users’ Responsibilities)

Users must maintain accurate Personal Information, and they bear responsibility for any issues caused by inaccurate information input.

Article 21 (Company’s Personal Information Management)

The Company implements technical and managerial security measures to prevent Personal Information leakage, loss, alteration, or damage.

Article 31 (Designation of Personal Information Protection Officer)

• Name: Jaeho Park

• Position: CEO

• Phone: +821051484187

• Email: pakjaeho4187@gmail.com

Article 32 (Remedies for Privacy Violations)

Users may seek dispute resolution and consultation from the following organizations:

• Personal Information Dispute Mediation Committee: 1833-6972

• Korea Internet & Security Agency (KISA): 118

• Supreme Prosecutor’s Office: 1301

• Cyber Bureau of National Police Agency: 182

Supplementary Provisions

• This Policy shall take effect from February 19, 2025.