Privacy Policy
Neurojourney, Inc. (the "Company") complies with personal information protection regulations under relevant laws such as the 「Personal Information Protection Act」 and is committed to protecting user rights by establishing a privacy policy in accordance with relevant laws. This privacy policy applies to the Neutropic service (the "Service") provided by the Company.
Article 1 (Purpose of Processing Personal Information)
The Company processes personal information for the following purposes. The processed personal information will not be used for purposes other than the following, and if the purpose of use is changed, necessary measures such as obtaining separate consent in accordance with Article 18 of the 「Personal Information Protection Act」 will be implemented. 1. Membership Registration and Management: Identification and authentication for membership service use, maintenance and management of member qualifications, prevention of unauthorized service use, various notices and notifications, and record preservation for dispute resolution. 2. Service Provision and Operation: Provision of paid services, content provision, contract fulfillment, fee payment and settlement, and customer support and inquiry handling. 3. Service Improvement and New Service Development: Analysis of service use records and access frequency, utilization of statistical data, verification of service validity, improvement of AI model performance, development of new features, and provision of customized services. 4. Utilization for Marketing and Advertising: Information on new services and events, provision of promotional information (only when separate consent of the data subject has been obtained).
Article 2 (Items and Methods of Personal Information Collection)
1. Collected Personal Information Items - Essential Items: Name, email address, password, service use records, access logs, cookies, access IP address, device information (OS, browser type, etc.) - For Paid Services: Country information, zip code, payment records (part of card numbers, etc., are collected directly by the payment agency) 2. Collection Methods - Membership registration and service use through the website - Inquiry and consultation process through the customer center - Automatic collection through generation information collection tools
Article 3 (Retention and Processing Period of Personal Information)
1. The Company processes and retains personal information within the personal information retention and use period in accordance with laws or the personal information retention and use period agreed upon when collecting personal information from the data subject. 2. The processing and retention period for each personal information is as follows: - Member Information: Until membership withdrawal. However, it is retained until the end of investigations in case of violation of relevant laws, and until settlement is completed if debt/claim relationships remain. - Mandatory Retention by Law: Website visit records (3 months), E-commerce contract/subscription withdrawal/payment records (5 years), customer complaint/dispute resolution records (3 years).
Article 4 (Entrustment of Personal Information Processing)
The Company processes the personal information of the data subject only within the scope specified in Article 1, and provides personal information to a third party only when it falls under the data subject's consent or special provisions of the law. The Company entrusts personal information as follows for smooth service provision.
| Provider | Purpose | Retention Period |
|---|---|---|
| Stibee Inc. | Operation of newsletter and marketing email delivery system | Until membership withdrawal or termination of entrustment contract |
Article 5 (Overseas Transfer of Personal Information)
The Company transfers (entrusts processing and stores) personal information overseas as follows for service provision and stable data management.
| Provider | Purpose | Retention Period |
|---|---|---|
| Supabase, Inc. | User authentication and database operation | Until membership withdrawal |
| Vercel Inc. | Web service hosting and server infrastructure operation | Until membership withdrawal or termination of entrustment contract |
| Resend Inc. | System email notification delivery | Until membership withdrawal or termination of entrustment contract |
| Amazon Web Services, Inc. | Cloud infrastructure operation and data storage | Until membership withdrawal or termination of entrustment contract |
| Google LLC (Google Analytics) | Service usage statistics and log analysis | 26 months after collection |
| OpenAI, L.L.C. | Provision and operation of AI functions | Immediate destruction upon achievement of service provision purpose |
| Paddle.com Market Ltd. | Payment processing, fraud prevention, settlement, and refund processing | Until the retention period according to Paddle's privacy policy and relevant laws |
| Mixpanel, Inc. | Service usage statistics and log analysis | Until termination of entrustment contract or membership withdrawal |
Article 6 (Rights and Obligations of Data Subjects)
1. Data subjects may exercise their rights such as request for access, correction, deletion, and suspension of processing of personal information to the Company at any time. 2. Rights may be exercised through writing, email, etc., and the Company will take action without delay. 3. Membership registration for children under the age of 14 is not allowed.
Article 7 (Destruction Procedure and Method of Personal Information)
The Company destroys personal information without delay when it becomes unnecessary, such as the expiration of the retention period or achievement of the processing purpose. Electronic files are deleted using technical methods that cannot reproduce records, and paper documents are shredded or incinerated.
Article 8 (Measures to Ensure Safety of Personal Information)
The Company takes administrative measures (establishment of internal management plans), technical measures (access authority management, encryption), and physical measures (access control) to ensure the safety of personal information.
Article 9 (Privacy Officer)
The Company is responsible for general tasks regarding personal information processing and designates a privacy officer as follows for handling complaints and remedying damages. - Name: Hyunwoo Lee - Position: CEO - Contact: contact@neurojourney.ai