PLEASE SELECT THE DESTINATION COUNTRY AND LANGUAGE :
Information Collection and Usage
When you register for and/or log in to CookieRun Store, we will collect your name, email address and password. Furthermore, we may collect information from you to process your purchase and ship the product purchased. Such information includes name, email address, payment information, shipping address, zip code, phone number. In order to provide services such as prevention of illegal or unauthorized usage of the service, compliance with the rules regarding personal information retention period, product recommendation, retrieval of recently viewed product and etc., name, email address, service usage data, user suspension data, user termination data will be collected.[DEV2]
Disclosure of Your Information
We will not share your personal information without your consent except the following conditions:
We may also share your information in connection with any merger, sale of our assets, or a financing or acquisition of all or a portion of our business to another company. You will be notified via email and/or notified on our site of any change in ownership or additional users of your personal information.
International Data Transfers
Our online payments system partner: PayPal Inc.
Our shipping partner in Japan: Sagawa Express Co., Ltd.
Security of User Information
We follow generally accepted industry standards and maintain reasonable safeguards to attempt to ensure the security, integrity, and privacy of the information in our possession. As further security measures, we implement the following technical and managerial safeguards to ensure that any personal information of users we handle is secure from loss, leaks, or damage:
Improving Network Security - We implement various technical measures to prevent the leakage of your personal information by unauthorized access to its network via hacking, computer viruses, etc., and continuously monitors network access. In addition, to ensure the security of communications between its server and database, we use strong encrypted communication methods.
Conduct Security Training and Designation of Privacy Officer - We conduct regular security training for our employees on the protection of your personal information. Furthermore, we have designated a privacy officer to develop expertise in the handling of your personal information and to minimize the risk of information leakage.
Restrict Access and Storage - The location in which the handling and storage of personal information are performed has been designated as a secure area and access thereto has been restricted to personnel with the requisite authority. Documentation, storage mediums, and electronic records containing personal information are stored in a location equipped with a locking device or on a computer with restricted access.
We will retain your personal information for as long as your account is active or as needed to provide you services. We may retain your personal information until one month after your account is closed. If you no longer want us to use your information or wish to cancel / delete your account, contact us at email@example.com. In some cases, we may not be able to delete your account. In this case, we will let you know why.[DEV3]
Opt-Out of Marketing Emails and Other Direct Marketing
You may opt-out of receiving promotional communications, such as marketing emails from us by following the instructions in such communications.
Opt-out of targeted advertising
You can opt-out of interest-based advertising on mobile applications by checking the privacy settings of your Android or iOS device and selecting "Limit Ad Tracking" (Apple iOS) or "Opt-out of interest-based ads" (Android).
Access to Personal Information
If there is a change to your personal information, or you no longer desire our Services, you may edit, update, or delete the data by making the change within your account settings or by contacting us at firstname.lastname@example.org. We will provide you a copy of your personal information in an electronic format upon request. In some cases, we may not be able to remove your personal information. In this case, we will let you know if we are unable to do so and why.
Your privacy rights
Pursuant to your local law, you may have the following rights:
We do not carry out automated individual decision-making and profiling of your personal information.
If you have questions about data protection, or if you have any requests for resolving issues with your personal information, please contact us at the information below:
Name of the controller: Devsisters Corp.
Address: Devsisters Corp., SGF Chungdam Tower 15F, 327 Dosan-daero, Gangnam-gu, Seoul, Korea.
Collection and Use of Children’s Personal Information
We do not knowingly collect any personal information from anyone under the age of 13 (under the age of 16 in Europe), unless consent is given by a parent or legal guardian. If you are under 13 years of age (16 in Europe), please do not send us any information about yourself, and you should not use or attempt to use our Services. Some of our Services have age restrictions which may vary depending on countries, regions, OS, platforms, etc. If you are under the applicable age restrictions, please do not send us any information about yourself and you should not use or attempt to use our Services.
In the event we learn that we have inadvertently gathered personal information from children under the age of 13 (16 in Europe), we will take reasonable measures to promptly delete such information from its records in a secure manner. If you believe that we may have any information from or about children under the age of 13 (16 in Europe), please let us know by sending us an email at email@example.com.
Data Protection Officer and Representative
We have designated the following persons as the Chief Privacy Officer and Personal Information Manager to remain responsible for responding to user inquiries regarding personal information and resolving any related complaints.
Name: Moonhee Chung
Division: Management Support Division
Changes to This Policy
Please visit YOUR CALIFORNIA PRIVACY RIGHTS for special disclosures pertaining to California residents.
In this section we set out the legal grounds on which we rely to process your personal information and under each legal ground, we explain the purposes for which we collect and use your personal information.
Provision of our services or products based on your contractual relationship with us
We process your personal information when this is necessary under our contract with you, to:
The legal basis for this processing in the EU/EEA is Article 6(1)(b) GDPR.
We process personal information to the extent this is necessary to fulfil our legitimate interests (or those of third parties), which include our interests to:
The legal basis for this processing in the EU/EEA is Article 6(1)(f) GDPR.
We seek your consent to process your personal information, where we consider it appropriate or where this is required by law. We use consent to send you marketing communications.[DEV8]
On other occasions where we ask you for consent, we will use the data for the purpose explained to you at that time. When we rely on your consent, you always have the right to withdraw your consent at any time. This will not affect the lawfulness of any processing we carried out before you withdrew your consent. To exercise this right, please see the “Access to Personal Information” section above.
The legal basis for this processing in the EU/EEA is Article 6(1)(a) GDPR.
We process personal information to the extent this is necessary for us to:
Where we need your information to perform our contract with you or to comply with our legal obligations, you are required to provide this information to us. In other instances, you are not required to provide personal information, however, not doing so may impact the way you use our services.
The legal basis for this processing in the EU/EEA is Article 6(1)(c) GDPR in conjunction with relevant EU/EEA or national legislation.
International data transfers
If you are in the EEA (that is in the European Union and Iceland, Lichtenstein, Norway), UK or Switzerland, we will transfer your personal information to the Republic of Korea, Japan, the U.S. We will take appropriate measures, in compliance with applicable laws, to ensure that your personal information remains protected. Such measures include for instance the use of EU approved model clauses. In some instances, we will rely on your explicit consent, where this is appropriate. To request more information or obtain a copy of the contractual agreements or other safeguards in place, use the contact details set out in the “Contact Us” section.
Automated decision-making, including profiling, referred to in Article 22 (1), (4) GDPR does not take place.