EeeDiary Privacy Policy

Effective Date: August 19, 2025
Last Updated: February 26, 2026

EeeDiary ("the Service") complies with applicable privacy laws, including the Personal Information Protection Act of the Republic of Korea, and has established and published this Privacy Policy to process users' personal information safely.

1. Overview of Personal Information Processing

1.1 Service Provider

• Service Name: EeeDiary
• Developer: Besl
• Contact: [email protected]
• Phone: +82-10-5561-4673

1.2 Purpose of This Privacy Policy

This policy explains what personal information is processed during service use, why it is processed, how long it is retained, and how third-party provision, entrusted processing, overseas transfer, and user rights are handled.

2. Purposes of Processing Personal Information

The Service processes personal information for the following purposes:

• Sign-up and identity verification
• User authentication and account management
• Providing core features such as group diaries and comments
• Notice delivery, inquiry handling, complaint processing, and customer support
• Service quality improvement, usage analytics, and stability analysis
• Security, abuse prevention, and response to violations of terms/policies
• Compliance with legal obligations
• Providing comment translation features

3. Categories of Personal Information Processed

3.1 During Registration and Login

The Service supports the following social login methods through Firebase Authentication and may collect information necessary for identification/authentication from each provider.

• Google login: email address, name, profile photo, Google unique identifier
• Apple login: email address (if provided), name (if provided), Apple unique identifier
• LINE login: email address (if provided), profile information, LINE unique identifier
• Kakao login: email address (if provided), profile information, Kakao unique identifier
• Collection method: OAuth/OIDC authentication via each login provider and Firebase Authentication integration

3.2 During Service Use

• User-generated content: diary text, uploaded images, comment text, group name/settings
• Automatically collected information:
  • Firebase Analytics: app usage statistics, session information, device information
  • Firebase Crashlytics: error/crash information, device model, OS version
  • FCM token (when push notifications are enabled)
  • Device/app information: device model, OS version, app version, language settings
  • Access/usage logs: the Service does not separately store these logs, but technical logs may be generated during operation of Firebase/Google infrastructure
• Installation/operation and refusal of automatic collection tools: The Service operates Firebase Analytics/Crashlytics for service provision and stability. No separate in-app opt-out is provided. Users may stop collection by deleting their account or uninstalling the app.

3.3 When Using the Comment Translation Feature

• Data processed for translation: original comment text, source language, target language, translation timestamp
• Purpose: provide requested translation results and minimize repeated translation for the same comment/language request (cache)
• Notice: processing occurs only when the user taps the translation button

3.4 Optional Information

• Profile information: nickname, profile photo (user input)
• Notification settings: push notification consent status

4. Retention and Use Period

4.1 General Personal Information

• Retention period: until account deletion
• Deletion: deleted within 30 days of receiving an account deletion request

4.2 Service Usage Records

• Firebase Analytics: retained within Google policy limits (up to 14 months configurable)
• Crashlytics: 90 days by default
• Service-level access/usage logs: not separately stored

4.3 User-Generated Content

• Diaries/images/comments: until deleted by the user or until account deletion
• Group content: may be retained within the scope of group operation when other group members remain

4.4 Comment Translation Cache (translation)

• Retained fields: translation.{languageCode}.text/sourceLanguage/targetLanguage/translatedAt
• Retention period: same as the retention period of the original comment
• Deletion criteria: related translation cache is also deleted when the comment is deleted, post is deleted, or account is deleted

5. Provision of Personal Information to Third Parties

As a rule, the Service does not provide users' personal information to external third parties. Exceptions may apply only in the following cases:

• Where the user has provided prior consent
• Where required by law or upon lawful request from investigative authorities

6. Entrusted Processing of Personal Information

To provide the Service smoothly, certain processing is entrusted as follows:

• Entrusted party: Google LLC
• Entrusted tasks:
  • Firebase Authentication (login/authentication)
  • Cloud Firestore/Storage (data storage)
  • Firebase Analytics/Crashlytics (analytics/error analysis)
  • Firebase Cloud Messaging (push notifications)
  • Cloud Translation API (comment translation processing)
• Related data categories: login information, profile information, diaries/comments/images, device information and error analysis data, translation-requested comment text and language information
• Retention/use period: until the purpose of each service is achieved or according to each provider policy
• Entrusted party policy: https://policies.google.com/privacy

7. Overseas Transfer of Personal Information

Because the Service uses Firebase and Cloud Translation API, personal information may be transferred overseas (including the United States).

• Recipient: Google LLC
• Destination countries: United States and other countries where Google data centers are located
• Transferred data:
  • Information required for authentication/storage/analytics
  • Comment text, source language, and target language when comment translation is requested
• Timing/method: transmitted over encrypted networks (TLS) when using the Service
• Purpose: service provision, data storage/analytics, and translation result delivery
• Retention period: until entrusted service purposes are achieved or according to each provider policy
• Right to refuse and possible disadvantages:
  • Users have the right to refuse consent to overseas transfer.
  • However, refusing consent may limit some or all service features, including login, data sync, and comment translation.
  • Comment translation is optional; users can still read original comments without using translation.

8. Procedures and Methods for Destruction of Personal Information

8.1 Destruction Procedure

• Personal information that becomes unnecessary due to retention period expiry, purpose completion, or account deletion is destroyed without delay.
• Information that must be retained under law is stored separately and destroyed when the retention period ends.

8.2 Destruction Method

• Electronic files: permanently deleted using technically irreversible methods
• Printed materials: shredded or incinerated

9. Security Measures

The Service takes the following measures to protect personal information:

• Encryption in transit (TLS/SSL)
• Access control based on Firebase security rules
• Access rights minimization and management
• Security updates and vulnerability checks
• Authentication framework operation (OAuth 2.0/OIDC)

10. User Rights and How to Exercise Them

Users may exercise the following rights at any time:

• Request access to personal information
• Request correction/deletion of personal information
• Request suspension of processing of personal information

Requests can be made via in-app features or the contact information below:

• Contact: [email protected]
• Phone: +82-10-5561-4673
• Processing timeline: handled within periods required by applicable law
• Identity verification: identity verification procedures may be required when rights are exercised

11. Children's Personal Information

The Service seeks not to collect personal information of children under the age of 14 without parental/legal guardian consent. If such information is identified, necessary actions will be taken in accordance with applicable law.

12. Personal Information Protection Officer

• Department: EeeDiary Development Team
• Email: [email protected]
• Phone: +82-10-5561-4673
• Responsibilities: handling privacy-related inquiries, complaints, and damage relief guidance

13. Changes to This Privacy Policy

If this policy is added to, deleted from, or modified, notice will be provided in advance through in-service announcements.

• General changes: announced at least 7 days before the effective date
• Material changes: announced at least 30 days before the effective date

14. External Login Provider Links

• Google: https://policies.google.com/privacy
• Apple: https://www.apple.com/legal/privacy/
• LINE: https://terms.line.me/line_rules/
• Kakao: https://privacy.kakao.com/main?lang=ko

15. Notice

This policy takes effect on August 19, 2025 and was last updated on February 26, 2026.