Effective Date: November 13, 2025
Yellow Horizon (“the Company”) – www.onedollardrive.com
This Privacy Policy explains how Yellow Horizon (“the Company,” “we,” “our,” or “us”) collects, uses, stores, shares, and protects the personal information of individuals (“Users”) who access or use our website, services, and online platforms (collectively, “Services”).
We comply with applicable laws including the Korean Personal Information Protection Act (PIPA), GDPR, and other international privacy regulations.
We follow the principles of:
Lawfulness, fairness, and transparency
Purpose limitation
Data minimization
Accuracy
Storage limitation
Integrity and confidentiality
Accountability
Full name
Email address
Date of birth
Gender
Phone number
Address (if required for verification or legal compliance)
Google account information (for Firebase authentication)
Legal guardian information (if age < 14)
For payment processing via PayPal or domestic bank transfer:
Card number & expiration date
Bank name and account number
(※ We do NOT store or retain full payment card details. They are processed by third-party payment providers.)
IP address
Device information
Cookies
Access logs
Usage logs
Crash logs (Firebase Crashlytics)
Analytics data (Google Analytics)
Donation records
Chat logs
Preference settings
Service usage history
Fraud detection logs
We process personal data for the following purposes:
Provide and operate our Services
Verify identity and manage user accounts
Process payments and manage donations
Prevent fraud or unauthorized activities
Deliver important notices (legal updates, system changes, etc.)
Improve service quality and user experience
Conduct analytics and statistical research
Marketing communications (only with explicit consent — GDPR Art. 6(1)(a))
We process personal data under:
User consent (newsletter, marketing, optional data)
Contract performance (account, payments, services)
Legal obligation (tax, consumer protection, financial records)
Legitimate interest (fraud detection, service improvement)
Your information may be transferred to third-party partners outside your country, including:
Provider
Purpose
Location
Google LLC / Firebase
Authentication, database, analytics, crash logs
USA / Global
PayPal, Inc.
International payment processing
USA
Domestic Banks (Korea)
Bank transfer, verification
South Korea
We only share minimum necessary information.
Your data may be transferred outside your country, including to countries that may not have the same level of data protection as your jurisdiction.
Under GDPR, we ensure:
Standard Contractual Clauses (SCCs)
Adequate safeguards
Transparent disclosure
Users may withdraw consent at any time.
Personal data is stored only as long as necessary:
Type
Duration
Contract & payment records
5 years (legal requirement)
Complaints, disputes
3 years
Access logs
3 months
Fraud prevention logs
1 year
Marketing consent data
Until withdrawal
You may request:
Access to your data
Correction
Deletion (“Right to Be Forgotten”)
Restriction of processing
Objection to processing
Data portability
Withdrawal of consent
Contact: onedolladrive@gmail.com
We use cookies for:
Authentication
Personalization
Analytics
You may disable cookies in your browser settings.
Some services may not function properly without cookies.
We implement technical and organizational safeguards:
Encryption
Secure transmission (HTTPS/SSL)
Access control
Firewalls
Data minimization in third-party environments
Limited staff access
Data Protection Officer (DPO)
Name: Myeongjun Lee
Email: onedolladrive@gmail.com
Phone: +82-10-4829-3911
Users may contact EU supervisory authorities or:
Korea Internet & Security Agency (KISA)
Personal Information Dispute Mediation Committee
We may update this policy and will notify users at least 7 days prior, or 30 days prior for major changes.
Effective Date: November 13, 2025
This Privacy Policy explains how Yellow Horizon (“the Company”, “we”, “our”, “us”) collects, uses, stores, and protects personal information of individuals (“Users”) who use our services (“Company Services”).
The Company complies with applicable privacy laws, including the Korean Personal Information Protection Act (PIPA) and other relevant international regulations.
This Privacy Policy is established to protect Users’ personal information and to process any privacy-related concerns quickly and appropriately.
We may collect personal information in accordance with applicable laws and use it only within the scope of Users’ consent.
We may provide personal information to third parties only with prior consent, unless required by law.
This Privacy Policy is always available on the main page of our website.
Important sections are displayed clearly for ease of understanding.
This Policy may be updated due to legal requirements or service changes.
When updated, we will notify Users through:
Notices on the website, or
Email or similar methods
Notifications will be provided at least 7 days before implementation (30 days for major changes affecting User rights).
We collect the following information when Users register an account:
Required Information:
Name, date of birth, gender
Login ID, password
Phone number, mobile number
Email address
For Users under the age of 14: legal guardian information
To process payments, we collect the following information:
Required Information:
Card number, expiration date
Date of birth (YY/MM/DD)
Bank name and account number
Required Information:
Username, email address, name
Additional data automatically generated during service use:
Service usage logs, access logs, IP address, cookies, payment history, records of misuse
To analyze service usage and detect fraud, we collect:
Usage logs
Cookies
Technical note: TTL deletion may occur within 24 hours for Firestore; Storage soft-delete periods may apply.
We collect personal information through:
Input fields on our website
Mobile applications
Email communications
Customer support inquiries and interactions
We use personal information for:
Announcements and notifications
Responding to inquiries and complaints
Providing Company Services
Preventing misuse or violations of Terms
Marketing and event notifications
Statistical analysis and service improvement
Authentication and security management
Firebase services: Firestore, Analytics, Crashlytics, Storage, and related Google services
We may provide personal information to third parties only when Users give prior consent.
Recipients:
Google LLC (Firebase Services) — only the minimum information required for service analytics and improvement
Any changes to third-party sharing will be communicated to Users.
We may outsource processing to provide services more efficiently.
Outsourcing Entities:
PayPal, Inc. — payment processing
KB Kookmin Bank — bank transfers and identity verification
Personal information is deleted immediately upon achieving the purpose, unless required to be retained by law.
Personal information is retained only for the duration necessary to fulfill the purpose.
Required legal retention (examples):
Records of contracts or withdrawals: 5 years
Payment records: 5 years
Customer complaints: 3 years
Website access logs: 3 months
Personal information is destroyed without delay when no longer needed.
Electronic files: permanently deleted by technical methods
Paper records: shredded or incinerated
We send commercial messages only with explicit consent, except where permitted by law.
Users may withdraw consent at any time.
Users may:
Access their personal information
Correct inaccuracies
Request deletion
Withdraw consent
Requests can be made via email, phone, or written notice.
Users must:
Keep their information accurate
Not use false or stolen information
Keep their login credentials secure
We implement technical and administrative safeguards to protect personal information from loss, theft, alteration, or leakage.
Deleted information is processed strictly according to retention and destruction policies and cannot be accessed for any other purpose.
We take necessary cybersecurity measures, including:
Malware protection
Network intrusion prevention
Encryption for sensitive information
Staff training and limited access control
If a breach occurs, we will notify affected Users promptly and report it to relevant authorities, unless contact is impossible.
We may transfer personal information abroad for service operation.
We will notify Users of:
The items being transferred
Recipient’s country
Purpose and retention period
Contact information of the data controller
Examples of overseas recipients:
Google LLC (USA)
PayPal, Inc. (USA)
We use cookies for personalized services.
Users may disable cookies through browser settings, which may affect service functionality.
Personal Information Protection Officer:
Name: Myeongjun Lee
Position: CEO
Phone: +82 10-4829-3911
Email: onedolladrive@gmail.com
Users may contact Korean authorities for privacy-related disputes:
Personal Information Dispute Mediation Committee
Korea Internet & Security Agency (KISA)
Prosecutor’s Office
National Police Agency
This Policy is effective from November 13, 2025.