Privacy Policy
WeaklyEat (the "Company") establishes and discloses this Privacy Policy in accordance with Article 30 of the Personal Information Protection Act to protect users' personal information and handle complaints smoothly. In case of discrepancies between this Privacy Policy and the Terms of Use regarding personal information, the Terms of Use shall prevail.
1. Purpose of Personal Information Processing
The Company processes personal information for the following purposes. Personal information will not be used for purposes other than those listed below. If the purposes change, the Company will take necessary actions such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.
- Service Provision and Operation: User authentication, membership management, service provision, security, enforcement of Terms violations, etc.
- Service Improvement: Enhancing existing services, discovering new services, and improving user experience.
2. Items of Personal Information Collected
- Membership and Management: Anonymous internal ID, email
- Service Use: Usage records, logs, customer inquiries and responses, etc.
3. Collection Methods
- Voluntary provision via registration, event participation, and service use
- Automatic generation during service use (e.g., logs)
- Inquiries via email or customer service
4. Retention and Use Period
The Company retains personal information within the period agreed upon or required by law:
- Until termination of the service agreement
- Immediate deletion upon user request
- Immediate deletion upon resolution of inquiries
Retention as per relevant laws:
| Retention Item |
Legal Basis |
Retention Period |
| Contract and withdrawal records |
E-commerce Consumer Protection Act |
5 years |
| Complaints and dispute handling records |
E-commerce Consumer Protection Act |
3 years |
| Display/advertising records |
E-commerce Consumer Protection Act |
6 months |
| Visit logs |
Communications Secrets Protection Act |
3 months |
5. Third-Party Disclosure
The Company does not share personal information with third parties without consent, except in the following cases:
- When the user consents
- When required by law or for investigations
- For statistical or research purposes in anonymized form
6. Destruction of Personal Information
The Company promptly destroys personal information when it becomes unnecessary:
- Electronic files: Deleted using technical, irreversible methods
- Printed materials: Shredded or incinerated
7. User Rights and Their Exercise
- Users can request access, correction, deletion, or suspension of personal data.
- Requests may be made via written form, email, fax, etc.
- Legal representatives may act on behalf of users with proper documentation.
- Rights may be restricted under specific legal circumstances.
- Information required by law cannot be deleted.
- Identity verification is required before processing requests.
8. Security Measures
The Company implements the following to ensure security:
- Encrypted transmission (e.g., SSL)
- Security software installation and regular updates
- Access control and monitoring
9. Use of Cookies or Similar Technologies
The Company does not use cookies, sessions, or similar automated tools to collect personal information.
10. Additional Use and Provision Criteria
The Company may process personal information without consent based on the following criteria:
- The purpose is relevant to the original collection purpose.
- The user can reasonably expect such additional use or provision.
- The additional use or provision does not unduly infringe on user rights.
- Safety measures such as pseudonymization or encryption are implemented.
11. Data Protection Officer
12. Policy Amendment
- This Policy may change due to laws or internal policy. Changes will be announced at least 7 days in advance (30 days for significant changes).
- This version is effective as of May 11, 2025.