Privacy Policy

ART.it values your personal information and complies with applicable laws.

시행일: October 24, 2025

1. Purpose of Processing Personal Information

ART.it ('ArtIt') processes personal information for the following purposes. The personal information being processed will not be used for purposes other than those listed below. If the purpose changes, we will take necessary measures such as obtaining separate consent pursuant to Article 18 of the Personal Information Protection Act.

Member Registration and Management
Confirming intent to join, identifying and authenticating users for membership services, maintaining membership status, preventing misuse of services
Emotion Card Service Provision
Creating and storing emotion records, generating AI-based emotion journals, recommending personalized masterpieces, providing emotion analysis services
Service Improvement and Statistical Analysis
Analyzing service usage records and statistics, conducting surveys for service improvement
Event Operations
Confirming event participation, selecting winners and delivering prizes, preventing duplicate participation
Marketing and Advertising
Developing new services and providing customized services, providing event and promotional information

2. Personal Information Retention and Processing Period

ART.it processes and retains personal information within the period stipulated by law or agreed upon when collecting personal information from the data subject.

Member Information

Until account deletion (however, if an investigation is in progress due to a violation of applicable laws, until the investigation is concluded)

Emotion Card Data

Deleted immediately upon account deletion (however, publicly shared emotion cards may be anonymized and retained for statistical purposes)

Event Participation Information

3 months after the event ends

Service Usage Records

Retained for 5 years pursuant to the E-Commerce Act

3. Categories of Personal Information Processed

ART.it processes the following categories of personal information:

Required

Email address (OAuth login)
Name (provided via OAuth)
Profile photo (provided via OAuth)
MBTI type (profile input)
Emotion card content (emotion type, place, cause, diary content)
Service usage records (access logs, IP address, cookies)

Optional

Event participation information (survey responses)
Preference information for personalized recommendations (preferred artists, eras, media)

🔒 Automatically Collected Information

The following information may be automatically generated and collected during use of the service:

Device information (OS, browser version)
Service usage records (access time, usage history)
Cookie and session information

4. Third-Party Disclosure of Personal Information

ART.it does not, in principle, provide users' personal information to third parties. However, exceptions apply in the following cases:

When the user has given prior consent
When required by law, or when requested by an investigation agency in accordance with the procedures and methods prescribed by law for investigative purposes

5. Entrustment of Personal Information Processing

ART.it entrusts personal information processing as follows to provide smooth service:

Trustee	Entrusted Work	Retention Period
Google (OAuth)	Member registration and login authentication	Until account deletion or contract termination
GitHub (OAuth)	Member registration and login authentication	Until account deletion or contract termination
OpenAI	AI emotion journal generation and emotion analysis	Until account deletion or contract termination
Replicate	AI image generation	Until account deletion or contract termination
Convex	Database hosting and management	Until account deletion or contract termination
Vercel	Web hosting and deployment	Until account deletion or contract termination

6. Rights and Obligations of Data Subjects and Exercise Methods

Data subjects may exercise the following rights regarding personal information protection against ART.it at any time:

Request to access personal information
Request to correct errors
Request to delete
Request to stop processing

Rights may be exercised directly through the 'Profile Management' menu within the service, or by submitting a request via email.

7. Destruction of Personal Information

ART.it will promptly destroy personal information when it becomes unnecessary, such as when the retention period has expired or the processing purpose has been achieved.

Destruction Procedure and Method

Destruction procedure: Users' personal information is destroyed immediately after the purpose is achieved, or after being stored for a certain period in accordance with internal policies and applicable laws.
Destruction method: Electronic files are deleted using technical methods that prevent record recovery. Personal information printed on paper is shredded or incinerated.

8. Installation and Operation of Automatic Personal Information Collection Devices and Opt-Out

ART.it uses 'cookies' to store and retrieve user information to provide personalized services.

Purpose of Cookie Use

Maintaining member login status
Providing personalized services
Analyzing service usage statistics

How to Opt Out of Cookies

You can choose to allow or block cookies in your web browser settings. However, refusing cookies may cause difficulties in using the service.

9. Personal Information Protection Officer

ART.it has designated a Personal Information Protection Officer to oversee all personal information processing tasks and handle complaints and remedies from data subjects.

Personal Information Protection Officer

Department: Development Team

Email: hautesprit@naver.com

※ For inquiries, complaints, or remedies related to personal information protection, please contact us at the above address.

10. Changes to the Privacy Policy

This privacy policy is effective from the date of enforcement. If there are additions, deletions, or corrections to the contents pursuant to laws and policies, we will provide notice through the notice board at least 7 days before the changes take effect.

11. Remedies for Infringement

Data subjects may apply for dispute resolution or consultation with the Personal Information Dispute Mediation Committee or the Korea Internet & Security Agency's Personal Information Infringement Report Center to obtain remedies for personal information infringement.

Personal Information Dispute Mediation Committee

Tel: 1833-6972 | Website: www.kopico.go.kr

Personal Information Infringement Report Center

Tel: (without area code) 118 | Website: privacy.kisa.or.kr

Supreme Prosecutors' Office Cyber Crime Investigation Division

Tel: (without area code) 1301 | Website: www.spo.go.kr

National Police Agency Cyber Safety Division

Tel: (without area code) 182 | Website: cyberbureau.police.go.kr

※ This Privacy Policy is effective from October 24, 2025.