Jaesim Privacy Policy | Memorial App Jaesim

Jaesim Co., Ltd. (the "Company") has established this Privacy Policy to protect users' personal information and handle related requests in accordance with the Personal Information Protection Act. If this policy is revised, the Company will notify users through website notices or individual announcements. This policy takes effect on October 28, 2025.

Article 1: Purpose of Processing Personal Information

Jaesim processes personal information for the following purposes. The information will not be used beyond these purposes unless prior consent is obtained when the purpose changes. Marketing and advertising: development of new services, customized services, event and promotional information, usage analytics, and access statistics.

Article 2: Personal Information Files

The Company manages collected personal information as follows. 1. File name: Personal information file Items: Email, login ID, gender, name, service usage records, access logs, cookies, access IP information Collection methods: Website and direct input Retention basis: Service provision Retention period: Until account withdrawal Related law: Display and advertising records are retained for 6 months

Article 3: Processing and Retention Period

Personal information used for marketing and advertising is retained from the date of consent until account withdrawal. The basis for retention is service provision, and display and advertising records are stored for 6 months as required by law.

Article 4: Provision to Third Parties

Jaesim provides personal information to third parties only when the user has consented or when Articles 17 and 18 of the Personal Information Protection Act or other legal requirements apply.

Article 5: Outsourcing of Processing

Jaesim may entrust personal information processing to service providers for smooth business operations. When outsourcing, the Company specifies in contracts the prohibition on use outside the entrusted purpose, protection measures, limits on re-outsourcing, supervision of vendors, and liability for damages under Article 25 of the Personal Information Protection Act. If the entrusted work or vendors change, the Company will disclose the change without delay through this policy.

Article 6: Rights of Data Subjects

Users may request access, correction, deletion, or suspension of processing of their personal information at any time. These rights may be exercised in writing, by email, fax, or other permitted methods, and the Company will respond without delay. Authorized representatives may also exercise these rights by submitting the required power of attorney. Some requests may be limited by applicable law, and deletion requests may be restricted where another law requires the information to be retained. The Company verifies whether the requester is the data subject or a duly authorized representative.

Article 7: Items Processed

Jaesim processes the following personal information items: Email, login ID, gender, name, service usage records, access logs, cookies, and access IP information.

Location and Place Information

Jaesim may process place information so users can save or share memory places, funeral homes, or memorial-related locations. This may include place names and addresses entered directly by users, as well as place names, addresses, latitude, longitude, and coordinate information selected through a map or place search. Users may enter places manually even if they do not grant location permission.

Notification and Device Information

To provide reminders for meaningful dates such as birthdays, memorial dates, and adoption days, Jaesim may process push notification tokens, notification tokens, device identifiers, device IDs, notification permission status, app version, operating system, language, and time zone information. Users may turn off notifications in device settings or in-app settings.

Advertising and Tracking Information

Jaesim may use advertising-related SDKs such as Google Mobile Ads and AdMob to provide ads and measure ad performance. In this process, advertising IDs, advertising ID, and app measurement information may be processed. On iOS, the scope of possible tracking may vary depending on ATT consent status. Users may reset the advertising ID, limit personalized ads, or change ATT tracking permission in device settings.

Account Deletion and Data Deletion

Users may request account deletion from the account management screen in the app. Once account deletion is completed, account information and linked data stored on the server will be deleted except for information that must be retained under applicable law. Guest data stored only on the device may be removed when the app is deleted or device data is erased. Subscription status managed by an app marketplace may remain separate from account deletion, so users should directly check their subscription status in Apple App Store or Google Play subscription management.

Article 7-2: AI Features and Minimal Data

Jaesim's web AI memorial and AI obituary features are designed to create wording from the minimum wording and factual details entered by the user. The AI memorial and AI obituary features do not ask for phone numbers, bank accounts, government IDs, detailed addresses, causes of death, or similar sensitive details. Wording entered by the user and generated results are used only to prepare writing and are not separately kept inside Jaesim unless the user chooses to save or copy them. If future app features provide saved memorial spaces or memory organization, full originals, original photos, contact details, bank accounts, detailed addresses, and cause-of-death details are excluded from default storage. Jaesim stores only the minimum needed information, such as user-approved summaries, tags, anniversaries, visibility settings, and deletion status. For photo classification or memory-assist AI, Jaesim will prioritize on-device processing or user-approved processing. Servers should receive only the minimum necessary data, such as approved tags, summary signals, or anonymous events. Interactive remembrance, voice synthesis, and video recreation features that use a deceased person's records, voice, or face will require separate consent, family sharing-scope confirmation, rights checks, and deletion-request procedures before launch. If consent is withdrawn or a deletion request is received, Jaesim will stop the relevant feature use and delete the necessary data unless retention is required by law. AI-generated wording should be reviewed and edited if needed. Inaccurate or uncomfortable wording can be reported or sent as feedback by contacting support.

Article 8: Destruction of Personal Information

The Company destroys personal information without delay once the processing purpose has been achieved. Information entered by users is moved to a separate database or document archive after the purpose is fulfilled, retained for the period required by internal policy and applicable law, and then deleted. It is not used for other purposes unless required by law. Information whose retention period has expired is destroyed within 5 days from the end of that period. Information that becomes unnecessary due to service closure or completion of purpose is destroyed within 5 days from the date it is deemed unnecessary. Electronic files are deleted using technical measures that prevent recovery.

Article 9: Cookies

Jaesim may use cookies to provide personalized services. Cookies are small pieces of information sent by a website server to the user's browser and may be stored on the user's device. They may be used to understand visits, usage patterns, popular searches, and secure access in order to provide optimized information. Users can refuse cookie storage through browser privacy settings. If cookies are blocked, some personalized features may not work as intended.

Article 10: Personal Information Protection Officer

Jaesim has designated the following person to oversee personal information processing and handle related requests and remedies. Name: Kim Do-won Role: Privacy Lead Title: Product Manager Contact: bluesky840712@gmail.com Users may contact this officer regarding privacy questions, complaints, or remedies, and the Company will respond without delay.

Article 11: Changes to This Policy

This Privacy Policy applies from its effective date. If additions, deletions, or corrections are made due to law or internal policy changes, the Company will post notice at least 7 days before the changes take effect.

Article 12: Security Measures

The Company takes the following measures under Article 29 of the Personal Information Protection Act. 1. Regular internal audits at least once per quarter 2. Minimization and training of employees who handle personal information 3. Establishment and implementation of internal management plans 4. Security software, updates, and monitoring against hacking and malware 5. Encryption of important information 6. Retention of access logs for at least 6 months and prevention of tampering 7. Access control and intrusion prevention systems 8. Locking devices for document security 9. Physical access controls for storage areas

Article 13: Email Retention During Community Suspension

If community activity is suspended, Jaesim may retain encrypted email information to comply with legal obligations and support service resumption. The encrypted data is protected in a form that does not allow restoration of the original email address.