Privacy Policy

Effective: 2026-04-18

PNA Company Inc. (“Company”) establishes and discloses this Privacy Policy pursuant to Article 30 of the Personal Information Protection Act of Korea to protect users’ personal information and rights.

1. Purposes of Processing

  • Member sign-up, authentication, and account management
  • Service delivery: AI analysis, personalized alerts, telegram integration
  • Subscription billing, settlement, and refund processing
  • Marketing and event notifications (with consent)
  • Customer support and compliance with legal obligations

2. Items Collected

  • Email signup: email, hashed password, nickname, (optional) avatar
  • Google OAuth: email, name, stable identifier (sub), avatar (optional)
  • Telegram: chat_id, username, language, alert preferences
  • Payments: payment method identifier and billing history via payment processors (the Company does not store card data)
  • Automatically collected: IP, cookies, browser/device info, usage logs

3. Retention Periods

  • Account data: until withdrawal (30-day grace period for recovery, then permanently deleted)
  • Billing records: 5 years (Korean e-commerce law)
  • Complaint and dispute records: 3 years
  • Access logs: 3 months (Korean Telecommunications Secrecy Act)

4. Disclosure to Third Parties

The Company does not disclose personal data to third parties except (a) with prior user consent, or (b) as required by law or a lawful investigation request.

5. Processing Partners

  • Google Cloud (asia-northeast3): infrastructure
  • Vercel (icn1): web hosting
  • Toss Payments, Stripe: payment processing
  • OpenAI, Anthropic, Google AI, xAI, Groq: AI model inference (non-PII only)
  • Telegram FZ-LLC: alert delivery

6. Cross-Border Transfer

Some data may be transferred outside Korea for AI inference and international payments. Transfers comply with applicable law; contractual safeguards are in place.

7. Your Rights

You may request access, correction, deletion, or restriction of processing at any time by emailing looca312@naver.com.

8. Security Measures

Administrative policies, access controls, one-way hashing of passwords, TLS 1.2+ in transit, and physical safeguards by cloud providers.

9. Privacy Officer

Taemin Ahn · looca312@naver.com · 070-7733-7905

10. Grievances

For privacy grievances, contact the Personal Information Dispute Mediation Committee (1833-6972 / www.kopico.go.kr) or the Korea Internet & Security Agency’s privacy hotline (118 / privacy.kisa.or.kr).