Fleek's Privacy Policy

Privacy Policy

DLT Partners Inc. (the "Company") attaches great importance to the privacy of its users while providing Fleek (the "Service"), and has established a privacy policy (the "Policy") to comply with relevant laws and regulations such as the Act on Promotion of Information and Communications Network Utilization and Information Protection, and the Personal Information Protection Act.

The Company's Privacy Policy may be revised due to changes in relevant laws and guidelines or changes in the Company's internal operating policies. Any changes to this Policy will be posted on the homepage. If you have any questions about this policy, you can provide your opinion through the customer inquiry channel on the service homepage and the company homepage.

1. Personal Information Collection Items and Purpose of Use

1. The Company collects only the minimum amount of personal information as follows to provide the service.

User ID and email

1. The Company collects User ID for the purpose of user analysis and service improvement. User ID is an anonymous ID used to distinguish each service user, and cannot be used for personal identification purposes.
2. In the process of receiving inquiries from users for the purpose of service consultation to provide better services, the Company collects minimal personal information such as email address or phone number to identify and reply to customer inquiries. In addition, customers may send error data arising from the use of the Service to the Company for more accurate error diagnosis. This is not mandatory, and the Company will not use such personal information for any purpose other than those specified below.

Location

1. When you use the Service, the Company requires approximate location and precise location permission to record the location of your use of the Service. Location information can only be used for the specificity of the record.
2. You can use the service even if you do not provide the permission.

Purchase History

1. In order to provide subscription services through in-app purchases, the Company collects purchase information data of users.
2. You can use the service without providing permission.

Health Data

1. We need access to health data to record your service usage history on your mobile device. Health data is only used to provide personalized services and for recording.
2. You can use the Services even if you do not provide permission.

Photos

1. we need access to your device photo library to upload content to the Service.
2. You can use the Service without providing permission.

Other

1. In addition, the Company may collect automatically generated information such as service usage history, OS type and version, access logs, advertising identification information, and terminal information in the course of the user's use of the Service or business processing, and the Company may use such information for user analysis and service improvement purposes.

2. Methods of collecting personal information

The Company collects personal information specified in Article 1 of this policy in the following ways to provide smooth service.

• Directly entered by the member when registering for membership through the mobile application
• Collected and generated in the process of installing and using the service Collected through information collection tools (including cookies)
• Collection through voluntary provision by members during use, etc.

3. Period of retention and use of personal information

1. In principle, the Company destroys the user's personal information without delay when the purpose of collecting and using personal information is achieved. However, in accordance with the Company's internal policy, the Company retains personal information for one year from the date of termination of the use contract in order to prevent abuse of rights, prevent abuse, and prepare for various disputes and requests for investigation cooperation if the member withdraws or the Company terminates the use contract with the member.
2. Notwithstanding Paragraph 1, if it is necessary to preserve the information in accordance with relevant laws such as the 「Communication Secrets Protection Act」, it shall be preserved for that period. In this case, the Company shall only use the retained information for the purpose of retention.
3. The history of personal information processed to comply with obligations stipulated by other laws may be retained for a period of time to prove its responsibility.

4. Outsourcing and Transfer of Personal Information

In order to improve the service, the Company entrusts and processes members' personal information to an external party after obtaining the user's consent or disclosing or notifying related matters in accordance with relevant laws and regulations. The Company concludes consignment contracts based on documents containing the contents of Article 26, Paragraph 1, Item 1 of the Personal Information Protection Act and supervises whether the trustee processes personal information safely. Currently, the consignees of your personal information and the contents of their work are as follows.

Fleek does not provide personal information to other businesses outside of Korea. However, for the purpose of fulfilling the contract for the provision of information and communication services and for the convenience of users, Fleek outsources the processing of personal information as follows.

1. Personal information, generated installation information, non-personally identifiable information, and statistical information collected with the consent of the user in accordance with the use of the service are transmitted, processed, and stored in Firebase, Supabase, and Amazon Web Services (AWS) of Amazon Web Services, Inc.
2. To provide payment features for paid services, we use payment systems provided by Google Play and Apple App Store.

5. Provision of Personal Information to Third Parties

1. The Company uses the user's personal information within the scope notified in Article 1, and does not use it beyond the scope or provide it to other companies or organizations, except in the following cases.
   1. When an investigative agency requires the provision of personal information in accordance with the procedures and methods prescribed by relevant laws for the purpose of investigation.
   2. when provided to advertisers, partners, or research organizations in a form that does not identify specific individuals for statistical compilation, academic research, or market research.
   3. When requested in accordance with the provisions of other related laws.
2. If it is necessary to provide personal information to a third party, we may provide personal information to a third party with the consent of the user after notifying the purpose of collection and use, items, and retention period.

6. Procedures and methods for destroying personal information

In principle, the company destroys the information without delay after the purpose of collecting and using personal information is achieved. The specific destruction procedures and methods are as follows.

1. destruction procedure

   Personal information collected by the Company shall be stored for the period stipulated in this Agreement and other relevant laws and regulations after the purpose of collection is achieved, and then destroyed. The personal information shall not be used for any purpose other than the consented purpose of retention unless required by law.

2. destruction method

   1. Personal information printed on paper shall be destroyed by shredding or incineration.
   2. Personal information stored in the form of electronic files will be deleted using a technical method that makes it impossible to reproduce the records.

7. Rights and Obligations of Users and Legal Representatives

1. Users (or their legal representatives if they are under the age of 14) have the right to view or request modification of their registered personal information at any time, and may withdraw their consent to the use of personal information by deleting the service or notifying the Company. However, the member's email address entered at the time of registration cannot be modified.
2. Users are obligated to protect their own personal information and not to infringe on the personal information of others. Please be careful not to leak personal information such as emails, and be careful not to infringe on the personal information of others.
3. You must keep your personal information up to date at all times, and you are responsible for any problems caused by inaccurate information entered by you.

8. Personal Information Protection for Overseas Users

The Company's Services are provided and operated in accordance with the laws and regulations of the Republic of Korea, and this Privacy Policy is an authentic version of the Privacy Policy written in Korean. This Policy may be translated into English and Japanese, etc., and if there is any conflict between such translation and this Korean version, the Korean version shall prevail. The Company complies with the privacy-related regulations and laws of each country applicable to the jurisdiction of the user using the Service.

9. Technical and administrative protection measures for personal information

The Company takes the following technical and administrative measures to ensure the safety of personal information while processing users' personal information so that it is not lost, stolen, leaked, altered or damaged.

1. Technical protection measures

   1. In order to prevent users' personal information from being leaked or damaged by hacking or computer viruses, the Company ensures that personal information can be transmitted safely on the network through encrypted communication, etc.
   2. The Company prevents unauthorized access from the outside by using a firewall and strives to have all possible technical devices to ensure systematic security.
   3. The Company redundantly stores members' information collected at the time of membership in databases of AWS, Firebase, and Supabase.

2. Administrative Safeguards

   1. The Company's personal information processing staff is limited to the person in charge, and the Company always emphasizes compliance with the Privacy Policy through frequent training for the person in charge.
   2. The Company checks the implementation of the Privacy Policy and the compliance of the person in charge through the in-house personal information protection organization, and makes efforts to immediately correct and correct any problems found.
   3. The Company is not responsible for any personal information-related problems caused by users' individual mistakes and third parties that occur without any reason attributable to the Company.

3. Personal Information Protection Officer

   The Company is doing its best to provide the best service by using personal information safely. However, despite technical complementary measures, the Company is not responsible for any damage to information due to unexpected accidents caused by basic network risks such as hacking, and various disputes caused by posts made by users and third parties.

   The person in charge of personal information protection is as follows, and we will respond promptly and sincerely to inquiries related to personal information.

End of Document