Thank you for trusting Mongloo with your information and personal records. Your privacy and trust are important to us.
We use personal information only to provide a better service experience and never for sale to advertisers or other third parties. Records are encrypted, and analytics are pseudonymized or anonymized.
1. Purposes of Processing
- Account registration and management
- Providing and operating services
- Handling inquiries and complaints
- Meeting legal obligations
- Improving service quality and user experience
- Marketing only with separate consent
- Minimal processing needed to protect life, health, or property in emergencies
2. Personal Information We Process
- Registration: name or nickname and email supplied by Apple or Google
- Service use: forms of address, text records, and photos you provide
- Automatically collected: pseudonymous ID, device information, access and error logs, cookies, and similar technology
- Future features: external links, community posts, and AI recommendation data
- We do not store passwords or financial information such as card numbers.
3. Retention and Deletion
- Information is deleted promptly after account withdrawal; backups are securely removed according to system cycles.
- Contract and payment records are retained for 5 years, complaint and dispute records for 3 years, advertising records for 6 months, and tax records for 5 years.
- Information needed to prevent abusive use may be retained for up to one year.
- Electronic files are securely deleted beyond recovery; paper documents are shredded or incinerated.
4. Third-Party Disclosure
We generally do not provide personal information to third parties. We may provide the minimum necessary information where required by law or with separate user consent.
5. Processors and International Transfers
- Supabase: database hosting in Seoul, Korea and the United States, retained until account withdrawal or the processing arrangement ends
- Google Firebase: error monitoring and analytics in the United States and other countries, retained under provider policy
- Apple App Store and Google Play: in-app payment processing in various countries, retained under provider policy
- Personal information may be transferred to countries where a processor operates its servers.
6. Additional Use Within a Reasonably Related Scope
We may additionally use or provide information within a scope reasonably related to the original purpose after considering relevance, predictability, and safeguards.
7. Your Rights and How to Exercise Them
- You may request access, correction, deletion, suspension of processing, or withdrawal of consent at any time.
- You may exercise these rights through the service or by emailing [email protected].
- A legal guardian may exercise the same rights for a minor and may be required to submit authorization.
- Some rights may be restricted by law.
- California residents have rights under the CCPA/CPRA, including access, deletion, correction, and opting out of information sharing.
- You may complain to the data protection authority in your country.
8. Data Breach Notification
If we become aware of a personal-information breach, we will notify affected individuals and supervisory authorities without undue delay as required by law.
9. Security Measures
- Administrative: internal management plans and staff training
- Technical: encryption in storage and transit, least-privilege access, and security software
- Physical: access controls for server rooms and document storage areas
10. Privacy Officer
- Name: Hyunwoo Hwang
- Email: [email protected]
- Address: 1055 Dongil-ro, Nowon-gu, Seoul, Republic of Korea
11. Changes to This Policy
- This policy applies from its effective date.
- Material changes, such as expanding collected information or third-party disclosure, will be announced 30 days in advance.
- General changes will be announced 7 days in advance.