이이이일기

개인정보처리방침

본 문서는 이이이일기 서비스의 개인정보 처리 방침을 설명합니다.

EeeDiary Privacy Policy

Effective Date: August 19, 2025
Last Updated: August 19, 2025

1. Privacy Policy Overview

1.1 Service Provider

Service Name: EeeDiary
Developer: Besl
Contact: contact@besl.me

1.2 Purpose of Privacy Policy

This Privacy Policy has been prepared in accordance with applicable privacy laws and regulations to protect the personal information of users who use the EeeDiary mobile application (hereinafter "Service").

2. Personal Information Collection and Use Purposes

EeeDiary processes personal information for the following purposes:

Member registration and identity verification
Group diary service provision
User authentication and account management
Service improvement and personalized service provision
Customer support and inquiry response
Service usage statistics and analysis
Security and fraud prevention
Legal compliance

3. Categories of Personal Information Collected

3.1 Information Collected During Registration

Google Login

Required Information: Email address, name, profile photo, Google unique identifier
Collection Method: Google OAuth 2.0 authentication service

3.2 Information Collected During Service Use

User-Generated Content

Diary content (text)
Uploaded photos and images
Comment content
Group names and settings information

Automatically Collected Information

Firebase Analytics: Anonymized app usage statistics, session information, device information
Firebase Crashlytics: App error and crash information, device model, operating system version
Push Notifications: FCM token (when notification consent is given)
Device Information: Device model, operating system version, app version, language settings
Usage Logs: Access time, usage records, IP address

3.3 Optionally Collected Information

Profile Information: Nickname and profile photo entered directly by the user
Notification Settings: Push notification consent status

4. Personal Information Processing and Retention Period

4.1 General Personal Information

Retention Period: Until account deletion
Deletion Process: Complete deletion within 30 days of account deletion request
Exception: Retained for the period required by relevant laws when mandatory retention period applies

4.2 Service Usage Records

Firebase Analytics: Maximum 14 months according to Google's data retention policy
Crashlytics: 90 days (default setting)
Log Data: 1 year (for security and service improvement purposes)

4.3 User-Generated Content

Diaries and Photos: Until deleted by the author or account deletion
Group Content: Retained until group dissolution if other members exist in the group
Comments: Until the corresponding diary is deleted or the author's account is deleted

5. Third-Party Disclosure and Processing Entrustment

5.1 Principle

EeeDiary does not disclose users' personal information to external parties in principle. However, exceptions apply in the following cases:

When explicit consent from the user is obtained
When required by law or regulation

5.2 Processing Entrustment (Firebase/Google Services)

Google LLC (United States)

Entrusted Services: Cloud services, user authentication, data storage, analytics services
Personal Information Categories:
- Authentication: Login information, profile information
- Firestore: Diary content, photos, comments, group information
- Storage: Uploaded image files
- Analytics: Anonymized usage statistics
- Crashlytics: Error and crash information
- FCM: Push notification tokens
Retention Period: According to each service's data retention policy
Contact: https://policies.google.com/privacy

6. International Transfer of Personal Information

This service uses Google Firebase to process data, and some data is stored on overseas servers including the United States:

Transfer Countries: United States (Google data centers)
Legal Basis: User consent under applicable privacy laws
Protection Measures: Google's international data transfer protection measures applied

7. Personal Information Protection Measures

7.1 Technical Protection Measures

TLS/SSL encryption during data transmission
Access control through Firebase security rules
Group-specific data isolation and permission management
Regular security updates
Secure authentication systems (OAuth 2.0)

7.2 Administrative Protection Measures

Minimization of personal information access rights
Training for personal information processing staff
Regular security inspections
Monitoring of personal information processing status

7.3 Physical Protection Measures

Use of Firebase/Google's secure data centers
Server access control (managed by Google)

8. User Rights and Exercise Methods

8.1 Personal Information Self-Determination Rights

Users have the following rights:

Right to request access to personal information
Right to request correction and deletion of personal information
Right to request suspension of personal information processing
Right to claim damages for personal information

8.2 Methods of Exercising Rights

Direct Processing Within the App

Profile Editing: Settings > Profile Management
Account Deletion: Settings > Account Management > Delete Account
Group Withdrawal: Group Settings > Leave Group
Content Deletion: Individual deletion of diaries and comments

Processing Through Customer Support

Contact: contact@besl.me
Processing Period: Within 10 days of request receipt
Identity Verification: Identity verification process required

8.3 Push Notification Settings

Android: Settings > Apps > EeeDiary > Notifications

8.4 California Residents Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act:

Right to Know: Information about personal information collected
Right to Delete: Request deletion of personal information
Right to Opt-Out: Opt out of sale of personal information (we do not sell personal information)
Right to Non-Discrimination: Not face discrimination for exercising privacy rights

9. Children's Privacy Protection

We obtain consent from legal guardians when collecting personal information from children under 14 years of age
Legal guardians may request access, correction, or deletion of children's personal information
Personal information collected without legal guardian consent is immediately deleted

10. Privacy Officer and Responsible Department

Privacy Officer

Department: EeeDiary Development Team
Email: contact@besl.me
Responsibilities: Overall management of personal information processing, handling complaints and damage relief

Privacy Rights Agencies

If you need to file a complaint or seek consultation regarding personal information, you may contact:

United States: Federal Trade Commission (www.ftc.gov)
Other Countries: Your local privacy or data protection authority

11. Privacy Policy Changes

11.1 Reasons for Changes

Amendment of relevant laws and regulations
Changes in service content
Changes in personal information processing status

11.2 Change Notification

Notification Method: In-app notifications, email alerts
Notification Timing: 7 days before implementation (30 days for significant changes)
Application: Continued use of the service after notification is deemed consent

12. Security Measures for Personal Information

12.1 Encryption

Network encryption during personal information transmission (TLS 1.2 or higher)
Important personal information encrypted during storage

12.2 Access Restrictions

Establishment of procedures for granting, changing, and revoking access rights to personal information processing systems
Password creation rules and regular changes

12.3 Physical Measures

Physical access control to servers where personal information is stored

13. Miscellaneous

13.1 Governing Law

This Privacy Policy is prepared in accordance with applicable privacy laws and regulations. We comply with local privacy requirements in the countries where our service is available.

13.2 Effectiveness

This Privacy Policy becomes effective from August 19, 2025.

This Privacy Policy applies to the use of the EeeDiary service.