# Privacy Policy

{% hint style="info" %}
Last Updated: 2024-11-17
{% endhint %}

***

## 1. Information Collection and Use

1. **Purpose of Collection**
   * Service provision and contract fulfillment
   * Service improvement and new service development
   * Personalized service and content delivery
   * Service quality enhancement through data analysis
   * Prevention of service abuse and unauthorized use
   * Marketing and advertising purposes
   * Statistical analysis and research
   * Business development and partnership marketing
2. **Types of Information Collected**
   * Required: Email, name, company name, country, position, service usage records, IP information, device information
   * Optional: Phone number, profile image, social media information
   * Automatically collected: Cookies, log data, usage patterns, location data

## 2. Data Usage and Retention

1. **Data Usage**
   * Information collected will be used for service improvement and development
   * Anonymized/pseudonymized data may be used for statistical purposes
   * Usage for marketing and advertising purposes
   * Analysis for service quality enhancement
2. **Retention Period**
   * Throughout the service provision period
   * As required by applicable laws
   * For periods necessary for dispute resolution and legal proceedings

## 3. Data Sharing and Third-Party Disclosure

1. **We may share personal information for:**
   * Service operation and improvement
   * New service development
   * Marketing and advertising purposes
   * Analysis and statistics
   * Legal compliance
   * Protection of company rights
   * Corporate transactions (mergers, acquisitions, restructuring)
2. **Consent exemptions for third-party disclosure:**
   * Essential service provision
   * Legal requirements
   * Company's legitimate interests

## 4. Global Data Processing

1. **International Transfer**
   * Personal information may be transferred internationally for global service provision
   * Including transfers for cloud service usage
   * Transfers may occur without additional consent
2. **Data Protection Regulations**
   * Compliance with GDPR, CCPA, and other applicable regulations
   * Implementation of appropriate data protection measures

## 5. Data Protection Measures

1. **Technical Measures**
   * Encryption and security protocols
   * Access control and monitoring
   * Regular security checks
2. **Administrative Measures**
   * Internal policies and guidelines
   * Employee training and management
   * Security requirements for third-party contracts

## 6. User Rights

1. **Basic Rights**
   * Access request
   * Correction request
   * Deletion request
   * Processing limitation request
2. **Limitations on Rights**
   * Technical impossibility
   * Excessive costs
   * Infringement of other users' rights
   * Harm to company's legitimate interests

## 7. Limitation of Liability

1. **The Company is not liable for:**
   * Information leaks due to user fault
   * Issues caused by third-party services
   * Force majeure events, technical difficulties
   * User's failure to comply with security guidelines
2. **Damage Compensation**
   * Limited to minimum statutory requirements
   * Only for direct damages

## 8. Policy Changes

1. **Company may modify this policy as needed**
2. **Changes effective upon website posting**
3. **Continued service use constitutes acceptance of changes**

## 9. Governing Law and Jurisdiction

1. This policy is governed by the laws of the Republic of Korea
2. Korean courts have jurisdiction over international disputes

## 10. Contact Information

For privacy-related inquiries:

* Email: <support@waa-art.com>

## 11. Additional Rights for EU Residents

1. **GDPR Rights**
   * Right to data portability
   * Right to be forgotten
   * Right to restrict processing
   * Right to object to processing

## 12. Additional Rights for California Residents

1. **CCPA Rights**
   * Right to know what personal information is collected
   * Right to know whether personal information is sold or disclosed
   * Right to say no to the sale of personal information
   * Right to equal service and price

## 13. Security Breach Notification

1. **In case of a security breach:**
   * We will notify affected users as required by applicable laws
   * Notification will include the nature of the breach and recommended actions
   * We may delay notification if law enforcement determines notification will impede investigation

## 14. Cookie Policy

1. **Use of Cookies**
   * Essential cookies for service operation
   * Performance and analytics cookies
   * Targeting/advertising cookies
   * Users may refuse non-essential cookies