RemoteLeveler Privacy Policy

Effective Date: September 6, 2025

OldJeans Corporation (hereinafter “Company”) complies with the Personal Information Protection Act and related laws to ensure the protection of individuals’ rights and freedoms while providing RemoteLeveler. The Company processes and manages personal information lawfully and securely. In accordance with Article 30 of the Personal Information Protection Act, the Company provides the following privacy policy to inform data subjects about the procedures and criteria for processing personal information and to address any concerns in a timely and efficient manner.

Key Personal Information Processing Notices

For more details, please refer to the privacy policy below.

General Collection of Personal Information

Nickname, email address, profile picture

Purpose of Personal Information Processing

Identity verification, prevention of fraudulent registration and use of services, membership management and maintenance, and RemoteLeveler service operation

Retention Period of Personal Information

Until account deletion

Outsourcing of Personal Information Processing

Cloud and infrastructure services

Purpose of Processing, Collection Items, Retention and Usage Period

  1. The personal information items, purposes, and retention periods the Company processes are as follows.
    2. Classification (business name) Purpose of processing Items collected Retention and use period Basis for processing
    Membership registration and management • Identification and authentication of the user
    • Maintenance and management of membership qualifications
    • Prevention of fraudulent registration and use of the service
    • Provision and operation of RemoteLeveler features    		 Required: Email address
    Optional: Nickname, Profile photo    		 Until withdrawal of membership Consent of the information subject
  2. The personal information processed will not be used for purposes other than those stated above. If the purpose of use changes, the Company will take necessary actions, such as obtaining separate consent from the data subject, in accordance with Article 18 of the Personal Information Protection Act.
  3. The Company processes and retains personal information within the retention and usage periods specified by laws or the period agreed upon by the data subject at the time of collection. However, in the following cases, the information may be retained until the cause for retention expires:
    ① If an investigation is ongoing due to a violation of laws, the information will be retained until the completion of the investigation.
    ② If there are remaining claims or obligations related to service usage, the information will be retained until settlement of those claims.
    ③ If required by law, the information will be retained for the prescribed retention period.
  1. Telecommunications Secret Protection Act: Communication fact confirmation data such as service usage logs (3 months)
  2. Electronic Commerce Act: Records related to contracts or withdrawal of offers (5 years)
  3. Electronic Commerce Act: Records related to payment and supply of goods or services (5 years)
  4. Electronic Commerce Act: Records related to consumer complaints or dispute resolutions (3 years)
  5. Electronic Commerce Act: Records related to display and advertising (6 months)
  6. Information and Communications Network Act: Records related to identity verification (6 months)

Provision of personal information to third parties

  1. The company processes the personal information of the information subject only within the scope specified in the purpose of processing personal information, and personal information is provided to third parties only in cases falling under Articles 17 and 18 of the Personal Information Protection Act, such as consent, special provisions of laws, etc.
  2. The company may provide personal information to relevant organizations without consent in the event of an emergency, such as a disaster, infectious disease, or an imminent threat to life, body, or property. Link

In such cases, the minimum personal information necessary will be provided in accordance with applicable laws.

Entrustment of personal information processing work

  1. The company entrusts personal information processing work as follows for smooth service operation.
    2. Entrustee Entrusted work Re-entrustment
    Amazon Web Services, Inc. Provision of RemoteLeveler service operating environment • Data storage

    The company entrusts personal information processing overseas as follows.

    Consignee Country Location Date and Method Entrusted Items Retention and Usage Period Contact
    Amazon Web Services, Inc. United States us-west-2 Transmitted through server during service use Email address, nickname, profile picture • Until the end of the contract
    • Until request for deletion
    • Until account withdrawal    		 janpoo6427@gmail.com

    Methods, procedures, and effects of refusal to transfer personal information: The data subject may refuse the transfer through the personal information department. However, refusal may limit the ability to use RemoteLeveler services.

  2. The company includes clauses regarding protection measures, restrictions on re-consignment, and supervision in accordance with Article 26 of the Personal Information Protection Act and supervises safe processing.
  3. Changes regarding consigned work or the consignee will be disclosed through this policy.

Destruction of Personal Information and Procedures

  1. When personal information becomes unnecessary, the company destroys it without delay.
  2. If retention is required by law despite the achievement of purpose, the information will be transferred to a separate database or stored separately.
  3. Destruction procedures and methods follow the standards described above.

Electronic data is destroyed irreversibly, and paper documents are shredded or incinerated.

Rights and obligations of the information subject

  1. The information subject may request access, correction, deletion, or suspension of processing at any time.
  2. Requests may be made by writing, email, or fax. The company will process such requests without delay.
  3. Requests may be made through a legal representative or designated agent.
  4. Requests for access or suspension may be restricted under the law.
  5. Requests for deletion cannot be made if the information is legally required to be collected.
  6. The company verifies the identity of anyone making a request.

Safety Measures

The company takes the following measures to protect personal information.

  1. Administrative: Internal management plan, dedicated personnel, regular employee training
  2. Technical: Access control, encryption, security program installation and updates

Automatic personal information collection devices

The company does not use cookies or similar tracking technologies.

Collection and use of behavioral information

The company does not collect or use behavioral information for personalized advertising.

Personal information protection officer

  1. The Company appoints the following officer to oversee data protection and handle related inquiries.
  2. Requests for access may be directed to the department below.
    3. Category Person in charge Contact
    Personal Information Protection Officer Position: CEO • Name: Lee Yujun zxcmn1224@naver.com
    Request to access personal information Department: Development Team • Lee Yujun, Lee Janghee zxcmn1224@naver.com, janpoo6427@gmail.com
  3. The Company will promptly respond to any inquiries or requests related to personal information.

Methods of Redressing Rights Infringement

  1. The Company guarantees the right to personal information self-determination and offers consultation and remedies for infringements.
  2. Data subjects may seek resolution through the Personal Information Dispute Mediation Committee or other public institutions.

    3. Personal Information Dispute Mediation Committee: 1833-6972 (www.kopico.go.kr)
    Personal Information Infringement Report Center: 118 (privacy.kisa.or.kr)
    Supreme Prosecutors' Office: 1301 (www.spo.go.kr)
    National Police Agency: 182 (ecrm.cyber.go.kr)

  3. Administrative appeals may be filed if rights are violated through public institutional actions.

Revisions to this Privacy Policy

  1. This policy is effective as of September 5, 2025.