Team 5D (hereinafter referred to as the "Company") is committed to protecting your valuable personal information. The Company strictly complies with all relevant legal requirements regarding personal information protection that information and communication service providers must follow, including the "Act on Promotion of Information and Communications Network Utilization and Information Protection," the "Protection of Communications Secrets Act," and the "Telecommunications Business Act."
The Company hereby informs you about how your valuable personal information is used, for what purposes, by what methods, and how it is protected and managed, as outlined in the Company's personal information handling policy below, and seeks your consent for this policy.
Article 1. Collection and Use of Personal Information
The Company collects the following personal information to establish service agreements, respond to inquiries efficiently, and provide various services.
This personal information handling policy may be modified due to changes in relevant laws and guidelines or changes in the Company's internal policies. In case of modification, the Company will notify you of the reasons and details of the changes through in-game announcements or the official community.
A. Information Provided by Users
① Personal information items to be collected
The Company collects the following personal information to conclude a contract of use, smoothly respond to inquiries, and provide various services.
– Nickname, device information (model name, OS version, unique device identification number, etc.), carrier information, store information, game version, e-mail, game, and service use record, access record, cookie, payment record, paid billing information, promotion/event participation record, product delivery related information, IP address,
② When using external platform-based services, the following information may be collected:
– Steam: Member identifier, e-mail (ID), profile picture, profile name
– Google Plus: Member identifier, e-mail (ID), profile picture, profile name
– Apple Game Center: Member identifier, profile, nickname
Provided that, when using external platform-based services, the personal information items collected may differ depending on the information disclosure standards set by the account.
③ When using the following customer-related services of the Company, additional information may be collected, and consent for personal information collection and use may be obtained.
(1) Event participation and prize delivery
1. Physical products: Name, shipping address, phone number
2. Mobile products: Mobile phone number
3. Tax payment: Name, resident registration number, address, bank account number, bank name, account holder name
4. Participation application: Member number, nickname, email address
When applying for consultation through the Customer Center (including 1:1 inquiry submission)
- Email address, nickname, unique user ID, payment number, payment receipt information, and other information necessary for consultation
* Depending on the type of inquiry, different personal information may be collected or additional personal information may be collected.
(2) When a child under the age of 14 plays the game or when a minor under the age of 20 makes a payment to use paid services, the following personal information of the legal representative is collected to verify the consent of the legal representative:
- Name, mobile phone number, email, etc.
(3) The following information may be automatically generated and collected during the service use process or business processing:
- Service usage records, access logs, IP information, access mobile phone number, transaction records, service suspension records
B. Methods of Personal Information Collection
- Voluntary provision and collection upon request as needed during initial execution after game purchase, network connection, cash purchase, membership registration, customer center consultation, and event participation
Article 2. Purpose of Personal Information Collection and Use
The Company uses and utilizes collected personal information within the scope disclosed for the following purposes, and if the purpose changes, the Company provides detailed information and obtains consent before processing. In principle, the Company does not use beyond this scope or disclose users' personal information externally without prior consent. (However, information may be disclosed externally if the user has given prior consent to the disclosure of personal information, or if required by law, or if requested by investigative agencies according to procedures and methods prescribed by law for investigation purposes).
- Fulfillment of contracts related to service provision and payment settlement for service provision, content provision, purchase and payment processing, refunds
- Delivery of goods, identity verification, fee collection
- Identity verification for membership services, personal identification, prevention of fraudulent use by malicious members and unauthorized use, verification of legal representative consent (for children under 14 years of age), verification of legal representative identity
- Complaint handling and customer consultation, record keeping for dispute resolution, delivery of notices
- Development and specialization of new services, delivery of advertising/promotional information such as events, provision of services according to demographic characteristics and placement of advertisements, statistical analysis of members' service usage
Article 3. Sharing and Provision of Collected Personal Information to Third Parties
① The Company will not use users' personal information beyond the scope stated in the [Purpose of Personal Information Collection and Use] or provide it to third parties such as other individuals, companies, or institutions, except when the user has given consent or when requested by national agencies or investigative agencies with legitimate authority under legal provisions.
② When providing users' personal information to third parties, the Company will individually notify users via email, telephone, etc., about the recipient of the personal information, the purpose of use by the recipient, the items of personal information provided, and the retention and usage period of the personal information by the recipient, and obtain prior consent. However, personal information may be provided without the customer's consent in the following cases:
(1) When necessary for payment settlement for service provision
(2) When provided in a form that cannot identify individuals for statistical compilation, academic research, or market research
(3) When there are special provisions in laws
(4) When requested by national agencies or investigative agencies according to procedures and methods prescribed by law for investigation purposes
(5) When necessary for postal/delivery service or electronic transmission such as email, SMS, MMS, messenger, etc., for event prizes or mail delivery (sending) that the user has applied for and consented to.
③ The Company may provide personal information to third parties with the customer's consent in the following cases:
(1) For settlement of paid content usage, the customer's name, phone number, payment information, etc., may be provided to content providers, open markets, telecommunication companies, credit card companies, or other payment companies used by the user.
(2) Personal information of customers who have participated in various events may be provided to the host of the relevant event.
Article 4. Processing and Retention Period of Personal Information
Under the 「Act on Promotion of Information and Communications Network Utilization and Information Protection, etc.」 and the Enforcement Decree thereof, the Company may take necessary measures such as converting the account to a dormant account and separating and storing, managing or destroying the personal information of users who have not used the service for the past one consecutive year. One year after the start of the service, the Company will announce the measures taken against dormant accounts through the official community and in-game. In addition, the following information will be retained for the period specified in the following grounds and will never be used for any other purpose.
① The Company will retain and use users' personal information only during the period when services are being provided from the date of the service agreement, and in principle, will destroy such information without delay after the purpose of personal information collection and use has been achieved. However, the following information will be preserved for the preservation period according to the grounds specified in the preservation basis.
1) Information collected for service provision: 30 days
– Grounds: For consumer complaints and dispute resolution when withdrawing from the game
2) Selection of event/promotion winners
– Information collected for the event: 3 months
– Information collected for the promotion: 6 months
– The retention period may vary depending on the event/promotion, and the period indicated for the individual event/promotion will be prioritized.
② If it is necessary to preserve it under the provisions of the relevant laws and regulations, the Company may keep the user’s personal information for a certain period as stipulated by the relevant laws as follows. In this case, the Company will use the information it keeps only for storage.
1) Protection of Communications Secrets Act
– Login-related records: 3 months
2) Act on Consumer Protection in Electronic Commerce, etc.
– Records on /advertisement: 6 months
– Records on contract or withdrawal of subscription: 5 years
– Records on payment and supply of goods: 5 years
– Records on handling consumer complaints or disputes: 3 years
3) Basic National Tax Act
– Books and supporting documents for all transactions stipulated by the tax law: 5 years
Article 5. Personal Information Destruction Procedures and Methods
The Company will destroy personal information without delay when the retention period of personal information that was previously disclosed to and consented by users expires or when the purpose of collection and use is achieved. The destruction procedures and methods are as follows:
① Destruction Procedure
- Personal information provided by users is stored for a certain period according to internal policies and other relevant legal information protection reasons after the purpose of collection and use is achieved, and then destroyed in a manner that cannot be restored.
② Destruction Methods
- Personal information stored in electronic file format is deleted using technical methods that prevent the reproduction of records.
- Personal information printed on paper is destroyed by shredding or incineration.
Article 6. Rights of Users and Legal Representatives and How to Exercise Them
(1) Users may withdraw consent to personal information collection by contacting the personal information management officer in writing, by telephone, or by email. In this case, the Company will verify the identity of the individual and take necessary measures such as destroying the personal information, except in cases where the law stipulates otherwise. However, when personal information is destroyed, related information that the user has created and accumulated while using the Company's services may also be destroyed.
(2) When a user's representative visits to request access to or correction of information, the Company will verify whether the person is the user's genuine representative. In this case, the Company may request the presentation of documentation indicating the representative relationship.
(3) If the Company has legitimate reasons to refuse a user's request for access to or correction of all or part of their personal information, the Company will notify the user without delay and explain the reasons.
(4) The legal representative of a child under the age of 14 may equally exercise the rights specified in this article regarding personal information about themselves and the child under the age of 14.
(5) Users shall not infringe upon the personal information and privacy of themselves or others that the Company processes in violation of relevant laws such as the Information and Communications Network Act and the Personal Information Protection Act.
Article 7. Matters Concerning Installation/Operation and Rejection of Automatic Personal Information Collection Devices
① Advertising Identifiers (ADID, IDFA)
(1) The Company utilizes advertising identifiers (advertising IDs) to provide customized advertising services based on user characteristics by analyzing users' mobile app usage patterns and access records. Users have the right to refuse this.
(2) An advertising identifier is a unique minimum identification unit assigned at the device level by Google and Apple to analyze the behavior of mobile app users. Through advertising IDs, users can manage advertisements more efficiently, and app developers get a simple standard system that allows them to continue generating revenue from apps. The advertising ID assigned by Google Play Store is called ADID, and the advertising ID assigned by Apple App Store is called IDFA.
(3) If users do not wish to utilize advertising identifiers, they can change settings according to their OS as follows:
Android: [Home > Settings > Ads > Delete Advertising ID]
iOS below 14: [Home > Settings > Privacy > Advertising > Limit Ad Tracking]
iOS 14 and above: [Home > Settings > Privacy > Tracking > App in use > OFF]
② Google Analytics
(1) The Company utilizes Google Analytics, a log analysis tool, for service improvement and statistical analysis purposes, and users have the right to refuse this.
(2) If users do not wish to have their logs analyzed through Google Analytics, they can install the Google Analytics add-on through the link below to refuse log analysis.
https://tools.google.com/dlpage/gaoptout
Article 8. Technical and Administrative Protection Measures for Personal Information Protection
The Company is implementing the following technical and administrative measures to prevent personal information from being lost, stolen, leaked, altered, or damaged when handling users' personal information:
(1) Password Encryption
- Customer ID passwords are encrypted for storage and management, known only to the customer, and verification and changes to personal information are only possible by customers who know their passwords.
- However, the Company assumes no responsibility for problems caused by the leakage of personal information due to customers' carelessness with their ID, password, etc., or for issues arising from basic internet vulnerabilities.
(2) Measures Against Hacking
- The Company is doing its best to prevent customers' personal information from being leaked or damaged by hacking or computer viruses.
- To prepare for damage to personal information, data is regularly backed up, and the latest antivirus programs are used to prevent customers' personal information or data from being leaked or damaged. Encrypted communication is used to safely transmit personal information over the network.
- To guard against illegal external intrusions, intrusion prevention systems are used to control unauthorized access from outside, and efforts are being made to equip all possible technical devices to secure system security.
(3) Minimization and Training of Handling Personnel
- The Company limits personal information handling personnel to designated staff, assigns separate passwords that are regularly updated, and constantly emphasizes compliance with personal information handling policies through regular training of personnel.
(4) Physical Protection Measures
- The Company has established its personal information processing system in a cloud environment to fundamentally block physical access by unauthorized persons.
Article 9. Contact Information for Personal Information Management Officer and Manager
The Company has appointed a personal information management officer to protect members' personal information and handle complaints related to personal information. If you have any questions regarding personal information, please contact the personal information management officer below. We will respond promptly and sincerely to your inquiries.
[Personal Information Management Officer]
Position: Representative
Name: Choi Wonjae
Email: choi@wonjae.net
[Personal Information Management Department]
Email: rolalala.team5d@gmail.com
Users can report all personal information protection-related complaints that occur while using the Company's services to the personal information management officer or personal information management department, or through the Company's customer center.
The Company will provide prompt and sufficient answers to members' reported matters.
If necessary to report or consult about other personal information infringements, please contact the following organizations.
1) Electronic Transaction Dispute Mediation Committee (https://ecmc.or.kr / 1661-5714)
2) Personal Information Infringement Report Center (https://privacy.kisa.or.kr / 118 without area code)
3) Cyber Investigation Division, Scientific Investigation Department, Supreme Prosecutor’s Office (http://www.spo.go.kr / 1301 without area code)
4) National Police Agency Cyber Security Bureau (http://cyberbureau.police.go.kr / 182 without area code)
Article 10. Obligation to Notify Due to Policy Changes
When there are additions, deletions, or modifications to the content due to changes in laws, policies, or security technologies, the Company will immediately notify and announce the updated personal information handling policy, and will notify the reasons and details of the changes through the representative page (SNS), etc.
Supplementary Provision
This personal information handling policy is effective from March 22, 2024.