Mocatree Privacy Policy

Mocatree (hereinafter referred to as the 'Company') actively protects users' personal information, and does its best to protect users' rights by complying with relevant laws and regulations such as「Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc.」 (hereinafter referred to as the 'Information and Communications Network Act') and 「Personal Information Protection Act」.

The company would like to inform you of the purpose and method of using the personal information provided by the user through this privacy policy and what efforts the company is making to protect the user's personal information.

We may amend, at our discretion, any portion of this Privacy Policy at any time by posting or displaying the amended Privacy Policy on our Site. We will provide notice on our Site if these changes are material and, where required by applicable law.You will be deemed to have accepted such amendments by continuing to use the Service, so please review it frequently. You can see when this policy was last updated by checking the “Options”.

1. Terms of personal information collection and purpose of use
The company collects the information necessary for service provision by classifying it into Necessary/Selected information for the following purposes and with the consent of the user.
The information collected for the following purposes is collected either automatically or directly typing by the user when using the service and participating in events and marketing.
  • (1) Join the member
    • a. The purpose of collection and use : mobile service
    • b. Necessary/Selected : Necessary
    • c. Term of collection and use :
      • · Goldwing:Nickname, ID ,Password (encryption)
      • · Google:Name(Nickname,If you have a nickname), Profile image URL.
      • · Facebook:Name(Nickname,If you have a nickname), Profile image URL.
  • (2)Identity Verification
    • a.The purpose of collection and use : Identity Verification
    • b. Necessary/Selected : Necessary
    • c.The purpose of collection and use : Name, Birthday, Gender, Native/foreigner, Carrier information, Phone number, Connecting Information (CI), Duplication Information (DI)
  • (3) Event
    • a. The purpose of collection and use : Identity Verification
      • · Event participation
      • · Check for duplicate participation
      • · Gift delivery
      • · Taxation
    • b. Necessary/Selected :
      • · Event participation : Selected
      • · Check for duplicate participation : Selected
      • · Gift delivery : Necessary
      • · Taxation : Necessary
    • c. Term of collection and use :
      • · Event participation : Email, Phone number, SNS ID
      • · Check for duplicate participation : Ad identifier, Service use record, Cookie
      • · Gift delivery : Name, Phone number, Address
      • · Taxation : Name, ID number, address, account number, bank name, account name
  • (4) Marketing
    • a. The purpose of collection and use :
      • · New service and Newsletter announcement
      • · Personalized advertising
    • b. Necessary/Selected :
      • ·New service and Newsletter announcement : Selected
      • · Personalized advertising : Selected
    • c. Term of collection and use :
      • · New service and Newsletter announcement : Email
      • · Personalized advertising : Ad identifier, Service use record,Cookie
  • (5) Customer Service
    • a. The purpose of collection and use :
      • · User identification and contact
      • · Confirmation of consultation
    • b. Necessary/Selected :
      • ·User identification and contact : Necessary
      • · Confirmation of consultation : Selected
    • c. Term of collection and use :
      • · User identification and contact : E-mail, Contact information (mobile phone number, local call)
      • ·Confirmation of consultation : ID, Name, Nickname,Other information necessary for consultation
  • (6) Refund
    • a. The purpose of collection and use :
      • · Cancel or refund
    • b. Necessary/Selected :
      • ·Cancel or refund : Necessary
    • c. Term of collection and use :
      • · Cancel or refund : Open market purchase number and product number
  • (7) Service Provision
    • a. The purpose of collection and use :
      • · Personal location information
      • · Mobile service
    • b. Necessary/Selected :
      • · Personal location information : Selected
      • · Mobile service : Necessary
    • c. Term of collection and use :
      • · Personal location information : Inquiries about location information
      • · Mobile service : Service usage record, Access log, Payment record, IP address, Mobile phone number, Mobile device model name, Carrier information, OS information and version, Device identifier, Connected carrier country, Registered carrier country, Language and country information
      • *When using mobile services, payments and refunds are kept and processed through Google's payment service, so they comply with Google's terms of service, and we do not directly collect or provide payment-related information.
2. Who does Pearl Abyss share your information with?
The company obtains consent when it is necessary to provide users' personal information to a third party in accordance with the 「Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc.」 and 「Personal Information Protection Act」, and the same applies only to customers who use transfer services and use paid services Information is provided to payment agencies for ID registration prevention, payment service provision, and fee settlement.
  • (1) Recipient : Mocatree
    • a. Purpose of provision : Avoid joining the same ID
    • b. Items provided : Goldwing ID, Name(Nickname,If you have a nickname), Connecting Information (CI)
    • c. Retention and period of use : Destroy after use when signing up
  • (2) Recipient : Danal
    • a. Purpose of provision : Payment used
    • b. Items provided : Goldwing ID, Payment information
    • c. Retention and period of use : 5 years from the date of payment.
  • (3) Recipient : Pincrux
    • a. Purpose of provision : Activities and advertising cooperation
    • b. Items provided : ID, Member code, IP, Devices model, Carrier, OS version, Google account
    • c. Retention and period of use : Until the membership withdrawal or service is over,
  • The information specified below is optionally provided only if you have applied for and agreed to each service.
  • (4) Recipient : Mobile phone/ARS Payment Center
    • a. Purpose of provision : Resolving the dispute over payment.
    • b. Items provided : Information on the request
    • c. Retention and period of use : 6 month
  • In order to develop new technologies or provide better services, companies can share users' personal information. In this case, users should be informed of the organization or group sharing personal information, and who the business partners are and why they need the information before collecting and providing data. In addition, how to protect and manage data until when.After the consent process, without the user's consent, no additional information will be collected or shared with others.
  • Users' personal information is not provided to the person or company who requested the advertisement, even when posting and sending advertisements for groups of gender, age and other specific conditions.Information is provided only in a form where a specific individual cannot be identified even if necessary for other statistical processing, academic research, or market research.
  • In principle, the company does not disclose or provide users' personal information to the outside. However, exceptions are made in the following cases.
    • (1) In the case where the user agrees to disclose or provide in advance
    • (2) In case of obligation to submit personal information in accordance with relevant laws
      (In case the provision of data is compulsory by law, or when there is a request from the court, investigation agency, or other administrative agency through due process)
    • (3) In case of violation of the policies set by the company, such as the terms of service or operation policy posted in the game
    • (4) If someone use company services to cause spiritual and material losses to others, it is deemed necessary to disclose personal information and have sufficient evidence in order to take legal action against it
3. Entrusting the processing of personal information
The company entrusts the processing of personal information as follows to provide services and enhance user convenience.In accordance with relevant laws and regulations, when signing a commission contract, the necessary matters for the safe management of personal informations are stipulated.
The details of the company's personal information processing consignment agency and consignment work are as follows.
  • (1) Delegator : Mocatree
    • · Service operation and customer consultation support
    • · customer consultation recording system operation
    • · Send event gifts (contact, delivery, etc.)
    • ·Email,Text message, and notification message
  • (2) Delegator : Danal
    • · Payment and billing system operation
    • · User identification (Cell phone authentication)
4. Period of retention and use of personal information
In principle, the company holds and uses the user's personal information during the period notified and agreed, and destroys it when the purpose of collecting and using personal information is achieved, expiration of the retention period, or withdrawal of the user's consent.
Users who do not have a record of use for one year after final login and have not used it for a long time may take necessary measures such as termination of contract and disposal of personal information in accordance with relevant laws. In such cases, the user shall be notified of the necessary actions taken 30 days prior to the effective date, the expiration date of the personal data retention period, and the items of personal information.
If you wish to continue to use the service, we request that you log in within one year from the last login date.
The company retains the personal information collected at the time of membership registration, such as the user's name and contact information, for up to 30 days from the date of cancellation, and then completely deletes it in a way that cannot be reproduced for recovery and victim protection in case of damage caused by personal information theft.
However, exceptions are made in cases falling under each of the following.
  • (1) Information collected for event and service marketing.
    Storage for 3 months after achieving the purpose of collection(It may be different from event to event, and the period applied to individual events is applied first.)
  • (2) If there is a need to preserve it according to the operation policy.
    Store the service usage restriction record during that period.
  • (3) In case it is required to be preserved for a certain period in accordance with related laws
    • a. Related laws
      • · Act on Promotion of Information and Communications Network Utilization and Information Protection
      • · Communication Secret Protection Act
      • · Act on Consumer Protection in Electronic Commerce
      • · National Tax Law
    • b. Collected information
      • · Act on Promotion of Information and Communications Network Utilization and Information Protection : Login information
      • · Communication Secret Protection Act :
      • · Act on Consumer Protection in Electronic Commerce :
        • Records on consumer complaints or dispute resolution
        • Records of contract or withdrawal of subscription, etc.
        • Records on payment and supply of goods
      • · National Tax Law :
    • c. Retention period
      • · Act on Promotion of Information and Communications Network Utilization and Information Protection -1 year
      • · Communication Secret Protection Act - 3 months
      • · Act on Consumer Protection in Electronic Commerce :
        • Records on consumer complaints or dispute resolution -3 years
        • Records of contract or withdrawal of subscription, etc. - 5 years
        • Records on payment and supply of goods - 5 years
      • · National Tax Law : All books and evidence relating to transactions under the Tax Act - 5 years
5. Destruction procedures and methods of personal information
When the user's personal data collection and use purposes are achieved, it should be destroyed immediately and the destruction procedures and methods are as follows.
  • (1) Destruction procedure
    The data entered by the user for registered members, etc., shall be destroyed after being preserved within the storage period of the internal policy and other relevant laws after the purpose is achieved.
  • (2) Destruction method
    • ①Printout format : Should be destroyed with a paper shredder or burned.
    • ②Electronic file format : The record should be deleted using a method that cannot be recovered.
6. The rights of users and the method of exercising them.
The user can exercise the rights prescribed by law, such as viewing, correcting, processing restrictions, and canceling consent (withdrawal of membership) of the registered personal information at any time.
  • (1) Personal information of users held by the company.
  • (2) The status of the company using the user's personal information or providing it to a third party
  • (3) Current status of users using or providing personal information to third parties
  • (4) How to exercise your rights
    • ①Mobile Phone
      • - Inquiries and corrections : Contact customer center (wired, e-mail) or in-game 1:1 inquiry
      • - Withdrawal of consent (withdrawal of membership) : Contact customer center (wired, e-mail) or in-game 1:1 inquiry
      • - Personal informations processing restrictions(Email/SNS reception) : Contact customer center (wired, e-mail) or in-game 1:1 inquiry
If the user requests correction of personal information errors, the relevant personal information shall not be used or provided until correction is completed.If wrong personal information has already been provided to a third party, we will notify the third party of the correction process without delay so that the correction can be made.
The company will immediately notify the user and explain the reason when there have justifiable reasons for refusing to view or modify all or part of the user's personal data, processing restrictions, or cancellation of consent.
The company allows online customized advertising operators to collect behavioral information.
  • (1)Advertiser who collects and processes behavioral information : Facebook, Google, AppsFlyer, Unity, Vungle, AppLovin, IGAWorks, TNK Factory, Metapsplus, Youappi, Fyber, AdColony,MOLOCO,MOBON
  • (2)How to collect behavioral information : Automatic collection and transmission when users visit a site or run an app.
8. Service usage history analysis
The company uses the user's advertising identifier and analysis software to provide suitable and more useful services to users.
By changing the device's settings to non-permanent and non-personal identifiers, such as Android ad IDs, Apple ad IDs, etc., advertising identifiers can be rejected, reset, and not used to connect to personal information or identify individuals.
Analysis software is used to analyze information that is automatically generated when a user visits a website or uses a mobile service, and the user can refuse this.
  • (1) Refusing to collect advertising identifier.
    • ①For Android User[ Settings->Google ->Ads] or [Settings->General->Google->Personalization service->Ads]
9. Technical, management, and physical protection measures for personal information
In processing users' personal information, the company has prepared and implemented technical and management measures to ensure safety so that personal information is not lost, stolen, leaked, altered or damaged. However, the company is not responsible for any problems caused by leakage of important personal information due to the user's negligence, such as loss of a device, despite the company fulfilling its obligation to protect personal information.
  • (1) Technical measures
    • ① The company encrypts and stores User's items designated by the relevant laws and regulations, and verification and change of personal information can only be made through their own request.
    • ② The company makes it possible to transmit personal information safely over the network through encrypted communication.
    • ③ The company installs security programs to prevent personal information leakage and damage caused by hacking, etc., and periodically renews and inspects them. Systems are installed in areas where access is restricted from the outside, and technically/physically monitored and blocked.
    • ④ The company periodically backs up personal information in case of emergency.
    • ⑤ The company controls unauthorized access from inside and outside the personal information processing system that processes personal information by periodically reviewing access rights and using an intrusion prevention system.
  • (2) Management measures
    • ①The company limits a minimum number of people to access users personal information, and the minimum number of people is as follows.
      • - A person who performs marketing, events, customer support, and delivery services directly to the user.
      • - Person in charge of personal information protection, including the person in charge of personal information protection.
      • - A person who is inevitable to process other personal information for business.
    • ② The company should regularly inspects and educates personal information managers and entrusted companies on personal data protection obligations.
    • ③ The company establishes and manages an internal management plan for personal information processing in the department in charge of personal information protection. In addition, we regularly check compliance with internal regulations so that if a problem is found, we can correct it immediately.
  • (3) Physical measures
    • ① Access control for unauthorized persons
      The physical storage place of the personal information system that stores personal information is separate and access control procedures are established and operated.
    • ② Use of locks for document security
Documents and auxiliary storage media containing personal information should be stored in a safe place with locks.
10. Person in charge of personal information protection
In order to protect users' personal information and to handle complaints and grievances related to personal information, the company has designated a person in charge of personal information protection as follows.
  • Person in charge of personal information protection
  • Name: Jae Gwan Park
  • Phone: 1899-7216
  • Fax: 1899-7216
  • Email: privacy@mocatree.com
If you need a report or consultation on other personal information infringement, please contact the institution below.
  • - Personal Information Infringement Report Center( http://privacy.kisa.or.kr Without area code 118)
  • - Cybercrime Investigation Division of the Supreme Prosecutors' Office (http://www.spo.go.kr Without area code 1301)
  • - National Police Agency Cyber Safety Bureau ( http://cyberbureau.police.go.kr Without area code 182)
  • - Personal Information Dispute Mediation Committee (https://www.kopico.go.kr Without area code 1833-6972)
11. Link site
The Company may provide links on its web pages to other companies' websites or materials. If you go to another company's website linked on the web page, it will apply the privacy policy of that website.
12. Duty of notice
In case of addition, deletion, or modification of the contents of the personal information processing policy, it shall be notified through the 'Notice' from 7 days before the revision. If changes that are unfavorable to customers will be notified 30 days prior to the revision.
<Addendum>
This policy shall enter into force from June 21, 2021.