Privacy Policy

Redbrick (hereinafter referred to as the "Company") values your personal information and makes every effort to process and safely manage your personal information in a lawful manner in compliance with the Personal Information Protection Act and related laws and regulations to protect your rights.

This Privacy Policy informs you of our policies with respect to the information we collect from visitors to this site and users of our services.

Article 1 Purpose of Collection and Use of Personal Information

The Company processes personal information for the following purposes. It will not be used for any purpose other than the following, and if the purpose of use changes, we will take necessary measures, such as obtaining separate consent in accordance with the Personal Information Protection Act. The Company processes a minimum number of personal information items by categorizing required information and optional information. In the case of optional information, there is no restriction on the use of the service even if you do not enter it.

1. Identify and manage members and users/use services/respond to various inquiries
   1. Confirm intent to join and identify members
   2. Maintaining and managing membership as you offer membership services
   3. Prevent bad members, prevent unauthorized use, and identify personal information theft
   4. Verifying a member's identity when requesting to view, correct, or delete personal information
   5. Handling complaints and other grievances, delivering notices, etc.
   6. Recordkeeping for dispute resolution
2. Improve your service
   1. Maintain, improve, and manage services (including fault response, data analysis, testing)
   2. Develop new services and provide customized services, and provide services based on statistical characteristics
   3. Statistics about your use of the service
3. Leverage marketing and advertising
   1. Provide commercial information such as offers, events, and new service announcements
   2. Service updates, new services available
   3. Personalized ad delivery

Article 2 Personal Information Collection Items

We process the following categories of personal information:

1. Redbrick Integration Account
   • Username, nickname, password, service usage history, UID, in-service purchases and payment history
   • Automatically collected during service use: information of connected mobile phones and PC terminals (model name, OS type and version, IMEI, carrier information, Android ID, ADID, IDFA), service use and access records, authentication records, payment records, abusive use records, service version, cookies * Some collection items may differ depending on the OS version of the device.
   • Collected when using affiliated services: We receive personal information from third parties through affiliation and linkage between services.
   • Profile photo, email, phone number, gender, various social media accounts (Google, Discord, X, MS, Kakao, Facebook, etc.), blockchain wallet address
2. When using paid services
   • When paying by credit card: Card number (partial), card company name, etc.
   • When paying with a cell phone: Mobile phone number, payment authorization number, etc. For direct deposit: Account name, account number, account bank, etc.
   • When issuing a refund: account bank, account number, account holder name, and email.
   • When issuing a cash receipt: mobile phone number, cash receipt card number

Article 3 Retention and Use Period of Personal Information

The Company shall process and retain personal information within the period of personal information retention and use agreed upon when collecting personal information from users or within the period of personal information retention and use in accordance with laws and regulations.

1. Redbrick integrated account: Until you cancel (but if you registered a Discord account, retained for 6 months after cancellation)
2. Marketing and advertising uses: Until you opt out of receiving commercial communications
3. Retention of personal information in accordance with applicable law
   1. The Consumer Protection in Electronic Commerce Act
   2. Records for display/advertising: 6 months
   3. Records relating to contracts or withdrawals: 5 years
   4. Records relating to payments and supply of goods and services: 5 years
   5. Records of consumer complaints or dispute handling: 3 years
   6. Communications Privacy Act
   7. Records of website visits: 3 months
4. National Tax Code
   1. Books and supporting documentation for all transactions as required by tax law: 5 years

Article 4 Provision and Consignment of Personal Information

1. The Company consigns some personal information processing tasks to ensure the smooth handling of personal information, and oversees that the consignee safely handles personal information in accordance with relevant laws and regulations when entering into consignment contracts.
2. If the contents of the consignment work or the consignee are added or changed, we will disclose it without delay through the prior consent notice in accordance with the relevant laws and regulations or through this privacy policy.
3. The Company may provide personal information to related organizations without the consent of the member in the event of an emergency, such as a disaster, infectious disease, an event or accident that poses an imminent danger to life or body, or an imminent loss of property, in accordance with the "Guidelines for Handling and Protecting Personal Information in the Event of an Emergency" jointly announced by government-related ministries.

About outsourced personal information processing and our subcontractors

Article 5 Provision of Personal Information to Third Parties

The Company shall not use the personal information of the information subject or provide it to a third party beyond the scope disclosed in "Article 1 Purpose of Collection and Use of Personal Information" in any case, except with the consent of the information subject or in accordance with the provisions of relevant laws and regulations. However, the following cases are exceptions.

1. If the user has given informed consent
2. When requested by law enforcement agencies in accordance with the provisions of applicable laws and regulations or in accordance with the procedures and methods prescribed by law for the purpose of investigation.
3. Necessary for billing for services rendered
4. Necessary for contractual performance
5. We believe that we have good reason to disclose your information in order to take legal action against someone who, in our judgment, is causing emotional or material harm to another person.
6. Processed in a de-identified form and provided to an outside agency or entity for statistical purposes, academic research, or market research.
7. Personal information that is necessary for the performance of a contract for the provision of the service and it is significantly difficult to obtain the usual consent due to economic or technical reasons.

Article 6 Destruction of Personal Information

In principle, the Company destroys the information without delay after the purpose of collecting and using personal information has been fulfilled.

1. Information entered by members for membership, etc. is stored for a certain period of time after the purpose is fulfilled and then destroyed in accordance with the obligation to keep information under internal policies and other relevant laws and regulations (see Retention and Use Period).
2. If the retention period of personal information agreed to by the user has expired or the purpose of processing has been achieved, but the personal information must continue to be retained in accordance with other laws and regulations, the personal information shall be transferred to a separate database (DB) or stored in a different place. (See 'Period of Retention and Use of Personal Information'.)
3. Personal information stored in electronic files is deleted using technical methods that make the records unrecoverable, and personal information printed on paper is destroyed by shredding or incineration.

Article 7 Refusal to Install and Operate Automatic Personal Information Collection Devices

The Company may automatically generate/collect the following information from users in the process of using the Service and use it for the following purposes.

1. Collections
   1. Visiting history, access IP information, service usage history, advertising identifiers, cookies (cookies are small amounts of information sent to your computer's browser by the server (http) used to operate the website and may be stored on your computer's hard disk).
   2. We may use cookies to provide web-based services. (A cookie is a very small text file sent to your browser by the server used to operate a website and stored on your computer.)
   3. Personal information stored in electronic files is deleted using technical methods that make the records unrecoverable, and personal information printed on paper is destroyed by shredding or incineration.
2. Purpose
   1. o provide you with personalized and customized services, we use cookies to store and retrieve your information from time to time. When you visit the Website, the Website server reads the contents of the cookies stored on your device to maintain your preferences and provide you with personalized services. When you visit the Website, cookies help you access and use the Website according to your preferences, and are used to provide you with customized information, such as the history of your visits to the Website and optimized advertisements based on your usage.
3. Refuse cookie collection
   1. Cookies do not store personally identifiable information, such as your name or phone number, and you have a choice about the installation of cookies. Therefore, you can accept all cookies, confirm each time a cookie is stored, or refuse to store all cookies by setting options in your web browser. However, if you refuse to accept cookies, your web experience may be impaired and you may have difficulty using some services that require you to log in.
4. Examples of how to set it up
   1. For Internet Explorer: Tools menu at the top of the web browser Internet Options Privacy Settings
   2. For Chrome: Settings menu on the right side of the web browser Show advanced settings at the bottom of the screen Privacy content settings button Cookies

Article 8 How we ensure the safety of personal information

We are committed to keeping your personal information secure so that it is not lost, stolen, disclosed, altered or destroyed, including by

1. Minimize and train privacy staff: We take measures to manage personal information by minimizing the number of employees who handle personal information and conducting periodic privacy training.
2. Develop and implement an internal control plan: We have established and implemented an internal management plan for the safe handling of personal information.
3. Archiving and tamper-proofing access records: To facilitate response in the event of a personal information infringement incident, records of access to the personal information processing system (web logs, summary information, etc.) are kept and managed for at least one year, and security functions are used to prevent access records from being forged, altered, stolen, or lost.
4. Encryption of personal information: Your personal information is stored and managed encrypted.
5. Technical measures against hacking and more: The Company installs security programs and periodically updates and inspects them to prevent personal information leakage and damage caused by hacking or computer viruses. In addition, the Company installs systems in areas with controlled access from the outside and monitors and blocks them technically and physically.
6. Restrict access to personal information: We take measures to control access to personal information by granting, changing, or canceling access rights to the personal information processing system that processes personal information.

Article 9 Request for access to personal information

Redbrick protects your rights.

1. You (or your legal representative if you are under the age of 14) may view or modify your personal information at any time, withdraw your consent to its collection and use, or request to cancel your subscription.
2. More specifically, you can modify your membership information or cancel your membership through the settings within the Service, and we will respond to your request in writing, by phone or email through the Customer Center without delay.
3. If you request that we correct an error in your personal information, we will not use or provide that personal information until we have completed the correction.
4. You cannot require us to correct or delete your personal information if another law requires us to collect it.
5. The Company shall verify that the person who made the request is the person who made the request, such as a request for access in accordance with the user's rights, a request for correction or deletion, or a request for suspension of processing.

Section 10 Privacy Officer

The Company has designated a person in charge of personal information protection as follows to be responsible for the overall handling of personal information and to handle complaints and remedy damages related to the handling of personal information. Users may contact the person in charge of personal information protection for all personal information protection-related inquiries, complaints, and damage relief arising from the use of the Service. The Company will respond to and handle your inquiries without delay.

Privacy Officer

• Full Name: Kwangyong Lee
• Job Title: Chief Privacy Officer (CPO)
• Email: k@redbrick.space

You may make a request for access to your personal information under the Personal Information Protection Act to the following departments. The Company will endeavor to promptly process your request for access to personal information.

Personal Information Protection Officer/Personal Information Access Request Reception and Processing Department

• Department Name: Privacy Team
• Email: redbrick.official@redbrick.space

Section 11 Remedies for Infringement

Personal Information Infringement Report Center (operated by the Korea Internet & Security Agency)

• Responsibilities: Report personal information infringement, request for consultation
• Homepage: privacy.kisa.or.kr
• Phone: 118 (without area code)

Privacy Dispute Resolution Board

• Responsibilities: Personal information dispute mediation application, collective dispute mediation (civil resolution)
• Homepage:www.kopico.go.kr
• Phone: (without area code) 1833-6972

Cyber Investigation Division of the Supreme Public Prosecutor's Office

• Responsibilities: Leading the investigation of cybercrime cases
• Homepage:www.spo.go.kr
• Phone: 1301 (without area code)

National Police Agency Cyber Safety Bureau

• Responsibilities: Investigation of cybercrime cases
• Homepage: police.go.kr/www/security/cyber.jsp
• Phone: (without area code) 182

Section 21 Changes to the Privacy Policy

We may modify this Privacy Policy, including to reflect changes in the law or our Services. If we make changes to our Privacy Policy, we will post the changes, and the revised Privacy Policy will be effective 7 days after we post it. However, we will notify you at least 30 days in advance of any significant changes to your rights, such as changes in the items of personal information we collect or the purpose of use.

Announcement Date: 02/27/2024

Effective Date: 03/01/2024

At Redbrick, we value your information and promise to do everything we can to make our services more secure for you.