Privacy Policy

1. Definition of personal information

The Mars Co., Ltd. (hereinafter referred to as the “Company”) complies with the personal information protection regulations in the relevant laws and regulations that information and communication service providers must comply with, such as the Communications Secret Protection Act, the Telecommunications Business Act, and the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc. We are doing our best to protect users' rights and interests by establishing a privacy policy in accordance with relevant laws and regulations.

2) 2) The company collects essential personal information as follows: Name (Korean/English), residence (address), nationality, passport copy, resident registration number, passport number, issue date, expiration date, photo (face), and government issued IDs.

2. Items of personal information to be collected

Depending on the type of platform on which the game is provided, the company may collect the following personal information for membership registration, customer consultation, and provision of various services.

・In order to provide various services when subscribing to the service, the unique identification number, user name or nickname, device unique number (device ID or IMEI), cookies, etc. provided by the service of the user’s platform provider Possible user status information, visit date and time, service use record, bad use record, cookies, etc.・In the process of using free/paid services, if it is unavoidably necessary for payment, etc., credit card information, telecommunication company information, purchase history and gift certificate number, and other payment-related information may be collected. Additional personal information may be collected, such as e-mail address and purchase details for customer consultation, and to verify the fact that payments were made by someone other than the person himself/herself, such as real name and proof of family relationship.

3. Purpose of collection and use of personal information

The company does not disclose the collected personal information without the user's prior consent, and the collected information is used as follows.

・Fee settlement according to service provision contract implementation and service provision Provision of free or paid content, delivery of goods through purchase or sending of invoices, identity verification, purchase and bill payment, fee collection ・Membership management Individuals following membership service Confirmation, user confirmation related to game service provision, personal identification, prevention of illegal use and unauthorized use of bad members, confirmation of intention to join, limiting the number of subscriptions and subscriptions, retention of records for identity verification and dispute settlement, complaint handling, etc. Delivery of notices ・Development of new services and use of marketing/advertisements Development of new services and provision of customized services, provision of services and advertisements according to statistical characteristics, verification of service validity, provision of event and advertisement information and participation opportunities, access frequency Identification, statistics on member's service use.

4. Entrustment of processing personal information 

The "company" may entrust personal information to other companies within a limited scope for smooth and improved services. The following companies are entrusted with the processing of personal information for the performance of service contracts with members, and

The relevant laws stipulate necessary matters to ensure safe management of personal information, and the company entrusted with processing of personal information for the performance of service contracts with members is as follows:

Personal information processing consignment company.

Trustee: Full Stack Inc. 

Purpose of entrustment: non-face-to-face identification Period of use of personal information: the time, prescribed by Acts and subordinate statutes, upon 

withdrawal of members or the termination of the entrustment contract.

5. Sharing and Provision of Collected Personal Information

The company uses users' personal information within the scope notified in "Article 3. Purpose of collection and use of personal information", and uses the user's personal information outside the scope without the user's prior consent or, in principle, uses the user's personal information outside not disclosed. However, exceptions are made in the following cases.

・When the user consents to disclosure or provision in advance ・In case of violation of the policies set by the company, such as service terms and conditions or operation policy In case there are sufficient grounds to believe that personal information should be disclosed in order to take legal action against it by causing mental or material harm to others using the service.

6. Period of retention and use of personal information

In principle, users' personal information is destroyed without delay when the purpose of collection and use of personal information is achieved. However, the following information is retained for the period specified for the following reasons.

go. Reasons for information retention according to the Terms of Service

・Illegal use records (Reason for retention: prevention of illegal use, retention period: 1 year)

me. Reasons for information retention according to related laws

・Records related to visits (Reason for retention: Protection of Communications Secrets Act, retention period: 3 months) ・Records regarding identity verification (Reason for retention: Act on Promotion of Information and Communications Network Utilization and Information Protection, etc., retention period: 6 months) ・Consumer complaints or records related to dispute resolution (Reason for retention: Act on Consumer Protection in Electronic Commerce, etc., Retention Period: 3 years) Records on payment and supply of goods (Reason for Retention: Act on Consumer Protection in Electronic Commerce, etc.) , retention period: 5 years) ・Records on contract or subscription withdrawal, etc. (Reason for retention: Act on Consumer Protection in Electronic Commerce, etc., retention period: 5 years)

all. In case of obtaining the consent of the member individually ・ Customer confirmation records (Enforcement decree of the act on reporting and use of certain financial transaction information, preservation Period: 5 years) 

7. Procedure and method of destruction of personal information

In principle, users' personal information is destroyed without delay when the purpose of collection and use of personal information is achieved. The company's personal information destruction procedures and methods are as follows.

go. destruction procedure

The information entered by the user for membership registration, etc. is transferred to a separate DB after the purpose is achieved (separate filing cabinet in the case of paper) and is scheduled according to internal policy and other information protection reasons according to related laws (refer to retention and use period) It is destroyed after being stored for a period of time. This personal information will not be used for any other purpose other than being retained unless it is required by law.

me. Destruction method

Personal information printed on paper is shredded or destroyed through incineration, and personal information stored in electronic file format is deleted using a technical method that cannot reproduce the record.

all. How to request destruction

If users wish to delete their personal information and game data, please send a request to

8. Rights of users and their legal representatives and how to exercise them

go. Protection of personal information of children under the age of 14

・If it is difficult to verify the account holder's account due to a minor, etc., the company may request the minimum necessary information such as the name and contact information of the legal representative. It shall not be used for any purpose other than that for which it is intended or provided to a third party.・The consent of the legal representative is used for the purpose of resolving consumer complaints and disputes in the event of a contract between the child and the company, withdrawal of subscription, payment, and supply of goods.・The consent form of the legal representative of the child who has withdrawn from membership, the withdrawal of consent, or the consent of the legal representative whose validity period has expired will be destroyed in a way that cannot be reproduced 30 days after the purpose of use has expired.・However, if it is necessary to preserve the personal information of the legal representative for the period stipulated by the relevant laws and regulations, such as the Commercial Act or the Consumer Protection Act in Electronic Commerce, etc., the company will keep the personal information. The child's legal representative may request to view or correct the child's personal information, or to withdraw consent to the collection, use, and provision of personal information.

me. Matters concerning the management of the user's own personal information

・Users may withdraw their consent to collection of personal information in writing, by phone, or e-mail to the person in charge of personal information management. We take necessary measures such as destruction of personal information. However, if personal information is destroyed due to membership withdrawal, related information created and accumulated while the user uses the company's services may be destroyed together. The play data of the nickname is left only as a record regardless of the player and cannot be used to identify an individual.・Users may request to view and correct their personal information, and in that case, the company will take necessary measures.・When a user's agent visits and requests for reading or correction, the company checks whether the user is a real agent, and in this case, the company may request to present a proof of agency relationship. If there is a justifiable reason to reject a request for viewing or correction of all or part of the user's personal information, the company will notify the member without delay and explain the reason. Since changes to the required input items provided by the user at the time of membership registration are matters that may cause errors in the services provided by the company, the company shall notify the member in relation to the change of the essential input items of the member in order to provide smooth and stable service. You can request the procedure separately.

9. Matters concerning the installation/operation of automatic personal information collection devices

In order to provide personalized and customized services, the company automatically collects phone numbers and device identification numbers (device IDs or IMEIs) when users sign up for the first time. However, if the user refuses to automatically collect the phone number and device identification number, restrictions on the use of some services may occur.

10. Technical/Administrative Protection Measures for Personal Information

In handling users' personal information, the company is taking the following technical/administrative measures to ensure safety so that personal information is not lost, stolen, leaked, altered or damaged.

go. Measures against hacking The company is doing its best to prevent leakage or damage to members' personal information due to hacking or computer viruses. In preparation for damage to personal information, we frequently back up data, prevent leakage or damage of users' personal information or data, and ensure that personal information can be safely transmitted over the network through encrypted communication, etc. In addition, an intrusion prevention system is used to control unauthorized access from the outside, and we are trying to equip all possible technical devices to secure other systemic security.

me. Minimization and training of employees handling personal information The company's employees handling personal information are limited to the person in charge, and a separate password is assigned for this purpose and is regularly updated. There is.

all. Operation of an exclusive organization for personal information protection The company checks the implementation of the personal information handling policy and compliance with the person in charge through an in-house personal information protection organization, etc., and, if a problem is found, makes an effort to correct it immediately. However, the company is not responsible for any problems caused by leakage of personal information due to reasons other than the user's negligence or the company's intention or gross negligence.

11. Person in charge of personal information protection and civil service

① The company is responsible for handling personal information, and has designated a person in charge of personal information protection as follows to handle complaints and damage relief from information subjects related to personal information processing.

▶ Person in charge of personal information protection

Name: Go Kwang-hyun

Position: CFO


※ You will be connected to the department in charge of personal information protection.

▶ Department in charge of personal information protection

Department Name: Management Support Team

Contact Person : Minkyung Jung


② The information subject may inquire about all personal information protection related inquiries, complaint handling, damage relief, etc. that occurred while using the company's services (or business) to the person in charge of personal information protection and the department in charge. The company will respond and handle the inquiries of the information subject without delay.

You may report all personal information protection-related complaints that occur while using the company's services to the person in charge of personal information management or the department in charge, such as the withdrawal of consent to the provision of personal information to a third party and the consignment of personal information handling, which you agreed upon at the time of membership registration. can. The company will promptly and sufficiently respond to users' reports.

If you need to report or consult on other personal information infringement, please contact the following organizations.

KISA Privacy Infringement Report Center ( / 02-405-5118) Information Protection Mark Certification Committee ( / 02) -550-9531~2) Advanced Crime Investigation Division, Supreme Prosecutors' Office ( / 02-3480-2000) National Police Agency Cyber Security Bureau ( 182)


This privacy policy is effective from August 3, 2022.