Operator Information
- Service: Peekrate
- Company: Kimiyoka
- Representative: Kim Taemin
- Business Registration Number: 826-04-03843
- Address: Kimiyoka, 2F, 39 Seungpyeong-dong-gil, Seungju-eup, Suncheon-si, Jeollanam-do, Republic of Korea
- Contact: contact@kimiyoka.com
1. Purposes of Processing
- Account registration and management (identity verification, abuse prevention).
- Service delivery (image-based quiz/score/result and follow-up chat).
- Payment and refund processing.
- Customer support and dispute handling.
- Service security (logging, fraud detection, abuse mitigation).
- (Optional) Marketing or event notices, where you have opted in.
2. Items Collected
(1) Account
- Required: email/ID, password (hashed).
- Optional: nickname, profile image, bio.
(2) Service Use (Uploads and Generated Data)
Uploaded images
- Used solely to generate the service result.
- Stored in a private bucket; no public URL is exposed.
- Accessible only via signed URLs that typically expire within ~1 minute.
Service results and chat logs
- Score, label, explanation, chat content.
- Retained at the minimum needed for quality improvement, support, and abuse prevention.
Usage logs
- Timestamps, IP, device/browser info, cookie/session identifiers, error logs.
(3) Payment / Refund
- Order number, amount, time, status, PG transaction ID.
- Card details are handled by the payment processor and never stored by us.
(4) Customer Inquiries
- Contact info, message content, and attachments you provide when reaching out.
3. Retention
- Account data: until account deletion (longer where law requires).
- Payment / transaction records: up to 5 years (Korean e-commerce laws).
- Customer-inquiry records: up to 3 years or until the dispute is resolved.
- Service usage logs: until the security purpose is fulfilled (typically up to 1 year).
- Uploaded images: deleted after analysis and result delivery.
4. Temporary Storage and Deletion of Uploaded Images
- Isolated private storage; no public URL.
- Signed-URL access only, available only inside an authenticated session.
- Short-lived signed URLs that expire within ~1 minute.
- Deletion immediately after analysis and result delivery.
- (Optional) Hash records may be retained to prevent re-upload of harmful content.
5. Disclosure to Third Parties
We do not disclose personal data to third parties as a rule, except where required by law or with your consent.
6. Processing Entrustment
- Payment gateway (PG): payment and refund processing.
- Cloud infrastructure: operation and data storage.
- Email: transactional email delivery.
7. International Transfers
Where data is transferred outside of Korea, we will disclose the destination country, items transferred, method, and retention period.
8. Data-Subject Rights
You may request access, correction, deletion, or restriction of processing of your data.
9. Security Measures
We apply technical and administrative safeguards including access control, encryption, log management, and least-privilege access.
10. Cookies
We may use cookies for security and service-quality improvement.
11. Automated Processing Notice
Scores, explanations, and chat outputs may be generated automatically by AI.
12. Data Protection Officer
- Officer: Kim Taemin
- Contact: contact@kimiyoka.com
13. Changes
Material changes will be announced and the effective date will be updated.