Privacy Policy

Article 1 (Information We Collect)

[When registering and using the Service] ① Required: email address, date of birth, social login identifier (Google ID or Apple ID) ② Optional: profile name, profile photo [Automatically collected during Service use] ③ Device information: device type, operating system, app version ④ Access information: IP address, access date/time, service usage records ⑤ App usage data: feature usage frequency, session duration, error logs [Payment-related information (for paid services)] ⑥ Payment processing is handled via Google Play / Apple App Store; the Company does not directly collect sensitive payment information such as card numbers. ⑦ Subscription status, purchase history, receipt information

Article 2 (Purpose of Collecting and Using Personal Information)

① Service provision and account management: user identification, service access authorization, customer support ② Service improvement and development: usage pattern analysis, bug fixes, new feature development ③ Legal compliance: record retention and legal dispute response under applicable laws ④ Marketing and promotions: announcements about new features and events, only with user consent ⑤ Safety and security: fraud detection, account protection, service integrity maintenance

Article 3 (Retention Period of Personal Information)

① Account information: until account deletion, except as required by applicable law ② Service usage records: 3 years from the date of collection ③ Payment records: 5 years under applicable law ④ Customer inquiry records: 3 years after resolution ⑤ Legally required retention: as prescribed by applicable laws such as the E-Commerce Act and Protection of Communications Secrets Act

Article 4 (Provision of Personal Information to Third Parties)

As a general rule, the Company does not provide users' personal information to third parties. Exceptions include: ① Cases where the User has given prior consent ② Cases required by law or by a lawful request from investigative authorities ③ Cases where it is deemed necessary to protect the life, physical safety, or property of the User or a third party

Article 5 (Entrustment of Personal Information Processing)

The Company entrusts the processing of personal information as follows to provide the Service: ① Cloud infrastructure: Amazon Web Services (AWS) — server operation and data storage ② Analytics services: anonymized usage statistics analysis (provided after de-identification) ③ Payment processing: Apple App Store ④ Customer support tools: email-based support system Subcontractors comply with applicable personal information protection laws, and the Company supervises their activities.

Article 6 (International Data Transfers)

The Company's servers may be located in certain countries/regions, and users' personal information may be transferred to those countries. ① EU/EEA users: Appropriate safeguards under Article 46 of the GDPR (e.g., Standard Contractual Clauses) are applied. ② Republic of Korea users: Lawful procedures under the Personal Information Protection Act are followed. ③ Users in other regions: The Company complies with the personal information protection laws of the applicable country.

Article 7 (User Rights)

[Rights common to all users] ① Right of access: verify whether and how your personal information is processed ② Right to rectification: request correction of inaccurate personal information ③ Right to erasure: request deletion of personal information upon service termination (excluding legally required retention) ④ Right to restriction of processing: request suspension of processing for specific purposes [Additional rights for EU/EEA users (GDPR)] ⑤ Right to data portability: receive your data in a structured format or transfer it to another service ⑥ Right to object: object to processing based on legitimate interests ⑦ Rights related to automated decision-making: object to decisions made solely by automated processing ⑧ Right to lodge a complaint with a DPA: lodge a complaint with the data protection authority of any EU member state [Additional rights for California users (CCPA/CPRA)] ⑨ Right to opt out of the sale or sharing of personal information ⑩ Right to limit the use of sensitive personal information ⑪ Right to non-discrimination for exercising privacy rights To exercise your rights, contact support@fanesis.app. The Company will respond within 30 days of receipt (GDPR standard).

Article 8 (Protection of Children's Personal Information)

① The Service is not intended for children under 14 in the Republic of Korea, under 13 in the United States (COPPA), or under 16 in the EU. ② Date of birth is collected upon registration to verify age; for users below the applicable age, separate consent from a legal guardian is obtained. ③ If the Company becomes aware that a child's personal information has been collected without authorization, it will take immediate steps to delete such information.

Article 9 (Cookies and Tracking Technologies)

① The Service may use local storage and cookie-like technologies for service functionality and usage analysis. ② Users may restrict the use of such technologies through device settings; however, some features may be limited as a result. ③ Data collected for analytics purposes is anonymized where possible.

Article 10 (Personal Information Protection Officer)

① Company: FASTRACTIVE ② Service: FANESIS ③ Personal information inquiries: support@fanesis.app ④ Response time: within 3 business days

Article 11 (Notice of Policy Changes)

This Privacy Policy may be revised due to changes in applicable laws or the Service. Material changes will be communicated at least 7 days in advance via in-app announcements or email.