G-Planner Privacy Policy

Effective Date: September 5, 2025

Article 1 (Purpose)

G-Planner establishes this Privacy Policy (hereinafter referred to as “this Policy”) to protect the information (hereinafter referred to as “Personal Information”) of individuals (hereinafter referred to as “Users” or “Individuals”) who use the services provided by G-Planner, to comply with relevant laws such as the Personal Information Protection Act and the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc. (hereinafter referred to as the “Information and Communications Network Act”), and to handle complaints related to the protection of service users’ personal information promptly and smoothly.

Article 2 (Principles of Personal Information Processing)

• G-Planner may collect users’ personal information in accordance with relevant laws and this Policy.
• G-Planner does not provide users’ personal information to third parties.

Article 3 (Disclosure of this Policy)

• G-Planner discloses this Policy through the settings menu or application introduction screen within the G-Planner mobile application so that users can easily access it at any time.
• When disclosing this Policy in accordance with paragraph 1, G-Planner uses font size, color, and other means to ensure users can easily review this Policy.

Article 4 (Changes to this Policy)

1. This Policy may be revised according to changes in personal information-related laws, guidelines, notices, or changes in government or G-Planner service policies or content.
2. When G-Planner revises this Policy in accordance with paragraph 1, it will notify users through one or more of the following methods:
   • Notification through the announcement screen within the G-Planner application
   • Notification to users via written correspondence, fax, email, or similar methods
3. G-Planner will provide notification at least 7 days before the effective date of the Policy revision. However, in cases of significant changes to users’ rights, notification will be provided at least 30 days in advance.

Article 5 (Information for Providing G-Planner Services)

G-Planner collects the following information to provide its services to users:

• Required Information: Email address, social account unique identifier
• Optional Information: Profile, avatar photo URL

Article 6 (Methods of Personal Information Collection)

G-Planner collects users’ personal information through the following methods:

• When users directly input their personal information into the G-Planner application
• When users input information during the use of G-Planner services, such as customer service consultations or activities on in-app bulletin boards

Article 7 (Use of Personal Information)

G-Planner uses personal information in the following cases:

• When necessary for G-Planner operations, such as delivering announcements
• For replying to usage inquiries, handling complaints, and improving services for users
• To provide G-Planner services
• For restricting usage of members who violate laws and G-Planner terms, and preventing and sanctioning activities that disrupt smooth service operations, including fraudulent usage
• For developing new services
• For marketing purposes such as event and promotion notifications
• For demographic analysis and analysis of service visit and usage records

Article 8 (Retention and Use Period of Personal Information)

1. G-Planner retains and uses users’ personal information for the period necessary to achieve the purposes of collecting and using personal information.
2. Notwithstanding the preceding paragraph, G-Planner retains records of fraudulent service use for up to 1 year from the time of membership withdrawal to prevent fraudulent registration and usage according to internal policies.
3. Personal information that is no longer necessary will be destroyed without delay. However, this does not apply when retention is required by other laws.

Article 9 (Retention and Use Period of Personal Information According to Laws)

G-Planner retains and uses personal information in accordance with relevant laws as follows:

Information and Retention Periods under the Act on Consumer Protection in Electronic Commerce, etc.

• Records of contracts or withdrawal of offers: 5 years
• Records of payment and supply of goods: 5 years
• Records of consumer complaints or dispute resolution: 3 years
• Records of labeling and advertising: 6 months

Information and Retention Periods under the Protection of Communications Secrets Act

• Access log records including login records: 3 months

Information and Retention Periods under the Electronic Financial Transactions Act

• Records of electronic financial transactions: 5 years

Act on the Protection and Use of Location Information

• Records of personal location information: 6 months

Article 10 (Principle of Personal Information Destruction)

In principle, G-Planner destroys personal information without delay when it is no longer necessary, such as when the purpose of processing personal information has been achieved or the retention period has expired.

Article 11 (Personal Information Destruction Procedures)

1. Information entered by users for membership registration, etc., is transferred to a separate database (or separate filing cabinet for paper documents) after the purpose of personal information processing has been achieved, and is stored for a certain period according to internal policies and other relevant laws for information protection reasons (refer to retention and use period) before being destroyed.
2. G-Planner destroys personal information subject to destruction through the approval process of the personal information protection officer.

Article 12 (Personal Information Destruction Methods)

G-Planner deletes personal information stored in electronic file format using technical methods that prevent the records from being recovered, and destroys personal information printed on paper through shredding or incineration.

Article 13 (Transmission of Advertising Information)

1. When G-Planner transmits commercial advertising information using electronic transmission media, it obtains explicit prior consent from users. However, prior consent is not required in the following cases:
   • When G-Planner transmits commercial advertising information about goods similar to those previously transacted with the recipient within 6 months from the end of the transaction, if G-Planner has directly collected contact information from the recipient through a goods transaction relationship
   • When a telemarketing salesperson under the “Act on Door-to-Door Sales, etc.” verbally informs the recipient of the source of personal information collection and conducts telemarketing
2. Notwithstanding the preceding paragraph, G-Planner will not transmit commercial advertising information if the recipient has expressed refusal to receive such information or has withdrawn prior consent, and will notify the processing results of refusal and withdrawal of consent.
3. When transmitting commercial advertising information using electronic transmission media between 9 PM and 8 AM the following day, G-Planner obtains separate prior consent from the recipient notwithstanding paragraph 1.
4. When transmitting commercial advertising information using electronic transmission media, G-Planner specifically discloses the following matters in the advertising information:
   • G-Planner’s name and contact information
   • Display of matters regarding the expression of intent to refuse receipt or withdraw consent
5. When transmitting commercial advertising information using electronic transmission media, G-Planner does not take any of the following measures:
   • Measures to avoid or obstruct the recipient’s refusal to receive advertising information or withdrawal of consent
   • Measures to automatically create recipients’ contact information such as phone numbers or email addresses by combining numbers, symbols, or characters
   • Measures to automatically register phone numbers or email addresses for the purpose of transmitting commercial advertising information
   • Various measures to hide the identity of the advertising information sender or the source of advertising transmission
   • Various measures to deceive recipients and induce replies for the purpose of transmitting commercial advertising information

Article 14 (Personal Information Inquiry and Withdrawal of Collection Consent)

1. Users and legal representatives may inquire about or modify their registered personal information at any time and may request withdrawal of consent to personal information collection.
2. If users and legal representatives wish to withdraw consent to the collection of their registration information, they may contact the personal information protection officer or person in charge via written correspondence, telephone, or email, and G-Planner will take action without delay.

Article 15 (Personal Information Modification, etc.)

1. Users may request correction of errors in personal information from G-Planner through the methods described in the preceding article.
2. In such cases, G-Planner will not use or provide the personal information until the correction is completed, and if incorrect personal information has already been provided to third parties, G-Planner will promptly notify the third parties of the correction results to ensure corrections are made.

Article 16 (User Obligations)

• Users must maintain their personal information in the most current state, and users are responsible for problems arising from entering inaccurate information.
• In cases of membership registration using another person’s personal information, user qualifications may be lost or punishment may be imposed under relevant personal information protection laws.
• Users are responsible for maintaining the security of email addresses, passwords, etc., and may not transfer or lend them to third parties.

Article 17 (G-Planner’s Personal Information Management)

G-Planner implements necessary technical and administrative protective measures to ensure security and prevent loss, theft, leakage, alteration, or damage of personal information in processing users’ personal information.

Article 18 (Processing of Deleted Information)

G-Planner processes personal information that has been terminated or deleted at the request of users or legal representatives according to the “Retention and Use Period of Personal Information” collected by G-Planner and ensures it cannot be viewed or used for other purposes.

Article 19 (Use of External Authentication Services)

1. G-Planner provides login functionality through external authentication services (OAuth) for user convenience. When logging in through external authentication services, the privacy policy of the respective service provider may apply, and G-Planner receives and uses only the minimum necessary information.
2. Information received through external authentication services is transmitted securely through encrypted communication, and G-Planner uses this information solely for the purpose of user account identification and service provision.

Article 20 (Measures Against Hacking, etc.)

• G-Planner makes every effort to prevent users’ personal information from being leaked or damaged due to hacking, computer viruses, and other network intrusions.
• G-Planner uses the latest antivirus programs to prevent users’ personal information or data from being leaked or damaged.
• G-Planner uses intrusion prevention systems to ensure maximum security in preparation for contingencies.
• G-Planner ensures that sensitive personal information (when collected and retained) can be transmitted securely over networks through encrypted communication and other means.

Article 21 (Minimization and Education of Personal Information Processing)

G-Planner limits personal information processing personnel to a minimum and emphasizes compliance with laws and internal policies through administrative measures such as education for personal information processors.

Article 22 (Measures for Personal Information Leakage, etc.)

When G-Planner becomes aware of the loss, theft, or leakage (hereinafter referred to as “leakage, etc.”) of personal information, it immediately notifies the affected users of all the following matters and reports to the Korea Communications Commission or Korea Internet & Security Agency:

• Items of personal information that have been leaked, etc.
• Time when the leakage, etc. occurred
• Measures users can take
• Response measures by information and communications service providers
• Department and contact information where users can receive consultation

Article 23 (Exceptions to Measures for Personal Information Leakage, etc.)

Notwithstanding the preceding article, when there are legitimate reasons such as inability to contact users, G-Planner may substitute the notification by posting on the application’s announcement board for at least 30 days.

Article 24 (Collection and Use of User Behavior Information)

1. G-Planner may collect and use users’ behavioral information during service use to provide customized services to users. This is used solely for purposes such as user identification or access frequency assessment.
2. Users may refuse consent to the collection and use of behavioral information through logging out of the application and withdrawing from the service, though this may limit the use of customized services.

Article 25 (Mobile App Access Permissions)

The G-Planner application may request the following permissions to provide services:

Required Access Permissions

• Internet Access: Required for service use and data synchronization
• Device Boot Detection: Required to restore notification services after device restart
• Vibration Use: Required for vibration functionality during notifications
• Wake Lock: Required to wake the screen when receiving notifications
• Exact Alarm Use: Required to deliver notifications at precise times

Optional Access Permissions

• Notification Display: Required to display important information and notifications

These access permissions can be modified in the settings menu for each operating system (iOS, Android).

Article 26 (Designation of G-Planner’s Personal Information Protection Officer)

G-Planner has designated the following department and personal information protection officer to protect users’ personal information and handle complaints related to personal information:

Personal Information Protection Officer

• Name: Hyunbeom Heo
• Phone: +82-10-5692-6129
• Email: gplanner.app@gmail.com

Article 27 (Remedies for Rights Violations)

Data subjects may apply for dispute resolution or consultation with the Personal Information Dispute Mediation Committee, Korea Internet & Security Agency’s Personal Information Infringement Report Center, etc., to receive remedies for personal information infringement. For other reports and consultations regarding personal information infringement, please contact the following organizations:

• Personal Information Dispute Mediation Committee: 1833-6972 (www.kopico.go.kr)
• Personal Information Infringement Report Center: 118 (privacy.kisa.or.kr)
• Supreme Prosecutors’ Office: 1301 (www.spo.go.kr)
• National Police Agency: 182 (ecrm.cyber.go.kr)

G-Planner guarantees data subjects’ right to self-determination of personal information and strives to provide consultation and damage relief for personal information infringement. If you need to report or consult, please contact the department mentioned in paragraph 1.

Individuals whose rights or interests have been violated by dispositions or omissions by heads of public institutions in response to requests under Articles 35 (Access to Personal Information), 36 (Correction and Deletion of Personal Information), and 37 (Suspension of Personal Information Processing, etc.) of the Personal Information Protection Act may file an administrative appeal in accordance with the Administrative Appeals Act.

• Central Administrative Appeals Commission: 110 (www.simpan.go.kr)

Supplementary Provisions

This Policy is effective as of September 5, 2025.