Privacy Policy
Effective: March 3, 2026 | Last updated: March 3, 2026
Seoul Saju (hereinafter "the Service") values your personal information and complies with applicable privacy laws, including the Korean Personal Information Protection Act. This Privacy Policy explains what personal information we collect, why we collect it, how long we retain it, third-party disclosures, and your rights.
Article 1 (Personal Information Collected and Collection Methods)
1. Information collected during registration
| Category | Items Collected | Collection Method |
|---|---|---|
| Social login (Google, Kakao) | Name (nickname), email address, profile photo URL | Automatically collected during OAuth authentication |
2. Information collected during service use
| Category | Items Collected | Purpose |
|---|---|---|
| Saju profile | Name, date of birth, time of birth, gender, place of birth, solar/lunar calendar type | Saju (Four Pillars) analysis service |
| Payment information | Payment method, transaction history (processed by PortOne and Creem.io) | Credit purchase and refund processing |
| Automatically collected | IP address, browser type, access time, service usage records | Service improvement and fraud prevention |
Article 2 (Purpose of Collection and Use)
The Service processes personal information for the following purposes:
- Registration and account management: identity verification, service provision, account management
- Saju analysis service: Four Pillars analysis based on date and time of birth
- Payment and refund processing: credit purchases, usage history, refunds
- Service improvement: usage statistics, quality enhancement
- Customer support: inquiry response, complaint resolution
- Fraud prevention: abuse detection and blocking
Article 3 (Retention Period)
The Service promptly destroys personal information once the purpose of collection has been fulfilled. However, information may be retained as required by applicable laws.
| Item | Retention Period | Legal Basis |
|---|---|---|
| Records of contracts or withdrawal of offers | 5 years | Act on Consumer Protection in Electronic Commerce |
| Records of payment and supply of goods | 5 years | Act on Consumer Protection in Electronic Commerce |
| Records of consumer complaints or dispute resolution | 3 years | Act on Consumer Protection in Electronic Commerce |
| Service access logs | 3 months | Protection of Communications Secrets Act |
Upon account deletion, personal information is immediately destroyed. However, payment and transaction records subject to the retention obligations above are securely preserved for the required periods, after which they are promptly destroyed.
Article 4 (Third-Party Disclosure)
The Service does not, in principle, provide personal information to third parties. Exceptions include:
- When the user has given prior consent
- When required by law
Service Providers
| Provider | Services |
|---|---|
| KoreaPortOne, Inc. (PortOne) | Payment gateway integration and payment data processing |
| OpenAI (OpenAI, L.L.C.) | AI-based Saju analysis |
| Cloudflare, Inc. | Website hosting and security |
| Creem.io (Creem Labs Ltd.) | International payment processing as Merchant of Record (MoR) — handles global payment collection, tax compliance, and billing |
Article 5 (Destruction Procedures and Methods)
- Procedure: Personal information is promptly destroyed when the retention period expires or the purpose of processing is achieved.
- Method: Electronic files are deleted using technical methods that make recovery impossible.
Article 6 (User Rights and How to Exercise Them)
Users may exercise the following rights at any time:
- Request to access personal information
- Request to correct or delete personal information
- Request to suspend processing of personal information
- Account deletion (withdrawal)
These requests can be submitted through the in-app settings or by emailing hello@seoulsaju.com.
Article 7 (Security Measures)
The Service implements the following measures to ensure the security of personal information:
- Encryption: Passwords and sensitive data are encrypted for storage
- Access control: Access to personal information is minimized
- Security software installation and updates
- SSL/TLS encryption for data transmission
Article 8 (Use of Cookies)
The Service uses cookies or local storage for authentication token management. You may refuse cookie storage through your browser settings; however, some features may be limited.
Article 9 (Privacy Officer)
For inquiries regarding personal information, please contact us at:
- Email: hello@seoulsaju.com
Article 10 (Changes to This Policy)
This Privacy Policy may be updated due to changes in laws, policies, or security technologies. Changes will be announced through the Service.