Privacy Policy
Last Updated: 2026-05-06
This Policy is a v5.2 draft; formal publication is scheduled for 2026-05-29 (S3).
1. Information Collected
(Required) Email, name, payment information (held by payment processor). (Optional) Company name, title, categories of interest. (Auto-collected) IP, cookies, access logs, User-Agent.
2. Purpose of Collection and Use
(1) Granting dataset download permissions, (2) Processing payment + issuing receipts / tax invoices, (3) Service notices + B2G sales response, (4) Fraud prevention + security logs.
3. Retention Period
Member info: until withdrawal. Payment records: 5 years per E-Commerce Act. Access logs: 3 months per Communications Privacy Act.
4. Third-Party Disclosure
We do not disclose to third parties as a rule. However, disclosure may occur for (1) payment processors (Toss Payments / Paddle), (2) tax processing (CPA), (3) when required by law.
5. User Rights (PIPA §35-§37 + GDPR Art. 15-22)
Users have the rights of (a) access, (b) correction/deletion, (c) processing suspension, (d) consent withdrawal, exercisable via privacy@garangbiai.com.
6. Security Measures
(1) AES-GCM encryption (secrets), (2) Access control (PIN 369527 + audit log), (3) HTTPS transport, (4) Regular security audits.
7. Privacy Officer
Name: Jeongseok Hwang / Title: CEO / Email: privacy@garangbiai.com / Phone: (added with business registration number)