Privacy Policy

Providing vFlat (the "Service"), VoyagerX (the "Company") considers the protection of the user’s personal data very important and in order to comply with relevant laws, such as the "Act on Promotion of Information and Communications Network Utilization and Information Protection," and the "Personal Data Protection Act," the Privacy policy (hereinafter "the Policy") is enacted and complied with.

The Policy can be revised due to changes in related laws and guidelines or changes in the company's internal operation policy. If this Policy is changed, the changes will be posted on a screen that users can easily check, such as the first screen of the Service. Having any inquiries regarding the Policy, you can provide feedback through the customer inquiry channel or the Company’s website.

Items of personal data collected and purposes of use

1. In order to provide the Service, the Company collects the following personal data.

2. The Company can collect automatically generated information such as service usage record, OS type and version, access log, advertisement identifier, and device information during the user's use of the Service or in the business process, and the Company may use the information for user analysis and service improvement purposes.

3. For the purpose of service consultation to provide better services, the company collects the minimum amount of personal data, such as e-mail addresses, to identify and reply to customer inquiries. In addition, customers can send data about errors and problems arising from the use of the service to the company for more accurate error diagnosis. This is not a mandatory collection and the Company does not use the personal data for any purposes other than those specified below.

4. In order to provide text recognition service and error diagnosis service, the Company collects image files only for those who submit by their own intentions. In this case, the image file may contain unstructured personal data that can identify a specific individual. The Company processes the information only for the purpose of text recognition and text generation requested by the user and deletes it within 24 hours after completion of text recognition and text generation.

5. In order to provide and manage paid services, the Company collects e-mail addresses only from the users of the Service. The Company uses the information only to manage the products paid by the user.

Methods of collection of personal data

The Company collects personal data specified in Article 1 of this Policy in the following ways to provide adequate delivery of the Service.

• Collection during installation and use of the Service

• Collection through voluntary provision by the user

• Collection by affiliate service

Retention and use period of personal data

1. The Company basically destroys the personal data of the users without delay after the purposes of use and collection are achieved. However, if preservation of the contents is necessary under the relevant laws, such as the "Protection of Communications Secrets Act," these will be preserved during that period. In this case, the Company uses this information for preservation purposes only.

2. Personal data history processed to comply with the obligations provided in other laws can be kept for a period of time to prove its responsibility.

Consignment of personal data processing

In order to provide the Service, the company consigns the users' personal data to external businesses after obtaining the consent of the users in accordance with the relevant laws or after disclosing or notifying the relevant subject. Currently, the consignee and their tasks are as follows.

1. Google Analytics and Firebase, which are used for service analysis and statistics, collect, analyze and save atypical personal data, installation information, non-identifiable information, and statistical information collected with the user's consent or generated in the process of use of the Service.

2. The Google Cloud Vision API, which is used to recognize text in images, collects and analyzes images sent by the user upon request. The image may include personal information including atypical personal information, installation information, personal identification information, and statistical information.

Provision of personal data to a third party

1. The company uses the user's personal data within the scope as notified by Article 1 and does not use it beyond that scope or provide it to other companies or organizations. However, exceptions are made in the following cases.
   1. In case the investigation agencies request the provision of personal data according to the procedure and method prescribed by the relevant law for investigation purposes
   2. In case it is provided to advertisers, business partners, or research groups, in a form that an individual cannot be identified, for statistical purposes, academic research, or market research
   3. In case there is a request in accordance with the provisions of other relevant laws

2. Besides, in the event that personal data is required to be provided to a third party, it can be provided to the third party with the user's consent by notifying the purpose of collection and use, collected items, and retention period.

Process and method of destruction of personal data

The Company basically destroys the personal data immediately upon the accomplishment of the purpose of collecting and using such personal data. Specific destruction procedures and methods are as follows.

Rights and obligations of the user

1. The user (or its legal representative) shall have the right to access or request a modification of his/her registered personal data at any time and may withdraw consent to the use of his/her personal data by deleting the Service or notifying the Company.

2. The user has a duty to protect the user's personal data and not to infringe that of others. Please be careful not to leak personal data, such as e-mail addresses, and not to infringe others' personal data.

3. The user shall always keep his/her personal data up to date and is also responsible for any problems caused by any incorrect information.

Children’s personal data

This Service is not intended for children under the age of 14. If the Company finds out that it has collected personal data of children under the age of 14 or if a legal representative requests access to or deletion of it, the Company shall take the necessary actions within the boundaries of the according to laws.

Protection of personal data for overseas users

The Service of the Company is provided and operated in accordance with the Korean laws and this Privacy Policy is based on the original copy of the Privacy Policy written in Korean. This Privacy Policy may be translated into English and Japanese, and if there is any contradiction between the translated version and the Korean version, the Korean version will take precedence. The Company complies with the personal data protection regulations applicable to the user's jurisdiction and the laws of each country.

Operation of automatic collecting device for personal data and Rights of option

1. The Company may operate cookies on the Service website. Cookies identify your browser and are used to provide useful and convenient services, such as usage patterns analysis, to the user.

2. The user has the right of option regarding the installation and use of cookies. Through options settings in the web browser, the user can permit saving all cookies, each time verifies whether cookies are saved, or refuse the storage of all cookies. Refusal to the storage of cookies may restrict the use of some services.

Technical/Administrative protection measures for personal data

The Company has prepared the following technical/administrative measures to ensure that personal data is not lost, stolen, leaked, tampered with, or damaged while processing it.

1. Technical protection
   1. To prevent leakage or damage to the users' personal data by hacking or computer viruses, the Company enables secure transmission of personal data on the network through encrypted communication.
   2. The firewall prevents unauthorized access from outside and all possible technical devices are installed to ensure systematic security.

2. Administrative protection
   1. The Company designates management of personal data only to those in charge, and through frequent education, the Company always emphasizes compliance with the personal data protection policy.
   2. To immediately solve any problems detected, implementation of the policy and compliance of the person in charge is checked through the Company’s personal data protection organization.
   3. The Company will not take responsibility for problems related to personal data caused by any mistakes of an individual or third parties without reasons attributable to the Company.

3. Chief Privacy Officer

   The Company does its best to provide the best service by using personal data safely. However, the Company is not liable for damage to information due to unexpected accidents caused by hacking or other basic risks in networking, despite the Company has taken technical complementary measures, and does not take responsibility for disputes caused by users and third-party postings.

   Information about the Chief Privacy Officer is as follows. We are actively and fully responding to inquiries regarding personal data.

If you need to report or consult for infringement of personal data, please contact the following organizations.

• KISA (privacy.kisa.or.kr / without area code 118)

• Internet Crime Investigation Center in the Supreme Prosecutors' Office (www.spo.go.kr / without area code 1301)

• Korean National Police Agency Cyber Bureau (cyberbureau.police.go.kr / without area code 182)

Additional clause

• Version No. of Privacy policy: 1.2

• The enforcement date of Privacy policy: 1st day of December 2022