Privacy Policy

Privacy Policy

studio chorok (hereinafter referred to as the "Company"), operating the service Asisto, complies with the Personal Information Protection Act and related laws to protect the freedom and rights of data subjects, and processes personal information lawfully and manages it safely. In accordance with Article 30 of the Personal Information Protection Act, the Company establishes and discloses the following privacy policy to guide data subjects on the procedures and standards regarding the processing and protection of personal information and to handle related grievances promptly and smoothly.

1. Items Collected & Methods

The Company collects and uses personal information to the minimum extent necessary to provide its services.

  • Items collected during Google Simple Login (OAuth) (Required): Name, Email address, Profile picture
  • Items collected during service use: Resume data written by the user
  • Items automatically collected during service use: Session Cookies for maintaining login status, site visit and usage records (using Google Analytics)

2. Purpose of Processing

The Company processes personal information for registration, management, provision of services, and service analysis/improvement.

  • Membership: Identification via Google OAuth, session maintenance.
  • Provision of services: Providing core services (resume creation, storage, shareable link generation).
  • Service analysis: Visitor statistics and analysis using Google Analytics.

3. Retention Period

The Company processes and retains personal information until membership withdrawal.

  • Asisto service member info and usage data: Until membership withdrawal.

4. Destruction Procedure

The Company destroys personal information without delay when the purpose of processing has been achieved or upon membership withdrawal.

  • Electronic files: Permanently deleted using irrecoverable technical methods.

5. Security Measures

The Company ensures the security of personal information through the following technical and administrative measures.

  • HTTPS encrypted communication
  • JWT token-based authentication
  • Restricted database access

6. Rights and Obligations

Data subjects may request access, correction, deletion, and suspension of processing of their personal information at any time.

  • Requests processed via email inquiry
  • Immediate deletion available through membership withdrawal

7. Privacy Officer

Name김영민 (YoungMin Kim)
Emailcloudmins@gmail.com

8. Effective Date

This privacy policy is effective as of March 4, 2026.

← Back