GeumDdu

Privacy Policy

1. Purpose of Processing Personal Information

GeumDdu processes personal information only as needed to provide Pokemon Champions battle calculations, team storage, inquiries, service operations, and security management.

Battle setups, inquiry content, and login information entered by users are used only to provide and improve the service.

2. Personal Information Processed

  • Google sign-in: Google account identifier, email address, display name
  • Pokemon box and team storage: Pokemon teams, moves, items, abilities, natures, effort points, and related gameplay input saved by the user
  • Inquiry board: author name or nickname, title, inquiry body, creation time, administrator replies
  • Administrator features: administrator email address, login session, management activity records
  • Automatically generated information: cookies, session tokens, access logs, request paths, error logs, browser and device information, IP address
  • Analytics and ads: Google Analytics statistics if configured, and Google advertising information related to ads.txt

3. Retention Period

The service retains personal information for the period needed to fulfill the processing purpose, or for a period required by applicable law.

  • Member account and saved data: until account withdrawal or deletion request
  • Inquiry posts and replies: until deletion request or service termination for support and operational history
  • Login sessions: up to 30 days for users and up to 8 hours for administrators
  • Access and error logs: for the period needed for security, incident response, and abuse prevention

4. Third-Party Provision

The service does not provide personal information to outside parties in principle. Exceptions may apply when the user has agreed in advance, when required by law, or when requested through lawful procedures by an authorized agency.

5. Entrustment and External Services

The following external services may be used to operate the service, and each service processes information under its own privacy policy.

  • Google OAuth: sign-in and account authentication
  • Google Analytics: service usage statistics, if configured
  • Google AdSense and related ad services: ad delivery and measurement, if configured
  • OpenAI API or compatible LLM APIs: request data may be sent for AI features such as selection recommendations
  • AWS Lightsail and infrastructure providers: server hosting, networking, and storage operations
  • PokeAPI and public data APIs: Pokemon data lookup and caching

6. Cookies and Similar Technologies

The service may use cookies and browser storage for sign-in state, security, convenience, and analytics.

Users may reject or delete cookies through browser settings, but sign-in and team storage features may be limited.

7. Destruction

Personal information whose retention period has expired or whose purpose has been fulfilled is destroyed without delay in a difficult-to-recover manner.

8. User Rights

Users may request access, correction, deletion, suspension of processing, or withdrawal of consent by contacting pokegeumddu@gmail.com. The service will process requests after identity verification under applicable law.

9. Security Measures

  • Hashed session tokens and secure cookies
  • Restricted administrator access
  • CSRF prevention tokens
  • Error and access log monitoring
  • Operational access controls and HTTPS

10. Privacy Contact

  • Email: pokegeumddu@gmail.com

11. Changes

This policy may be revised due to changes in law, service features, or operations. Important changes will be announced through the service screen or a separate notice.