Privacy Policy
Effective February 3, 2026
1. Purpose
This Privacy Policy defines the standards and principles by which Alpaon LLC (hereinafter “Company”) collects, uses, stores, and protects users’ personal information in relation to the cloud service “Synapus” (hereinafter “Service”) provided by the Company.
2. Purpose of Collection and Use of Personal Information
The Company collects and uses personal information for the following purposes:
| Purpose | Details |
|---|---|
| Service provision and contract fulfillment | Member registration, service provision, payment and settlement |
| Member management | Identity verification, personal identification, prevention of fraudulent use, confirmation of intent to register, age verification, confirmation of legal guardian consent for children under 14 |
| Customer support | Handling customer inquiries and complaints, delivering notices |
| Service improvement | Service usage statistics, new service development |
We partner with Microsoft Clarity and Microsoft Advertising to capture how you use and interact with our website through behavioral metrics, heatmaps, and session replay to improve and market our products/services. Website usage data is captured using first and third-party cookies and other tracking technologies to determine the popularity of products/services and online activity. Additionally, we use this information for site optimization, fraud/security purposes, and advertising. For more information about how Microsoft collects and uses your data, visit the Microsoft Privacy Statement .
3. Personal Information Collected
Information Collected During Registration
| Category | Items Collected |
|---|---|
| Required | Email address, password, contact number (mobile phone) |
| Optional | Company name, contact person name |
Information Collected During Identity Verification (Republic of Korea Users)
The following information is collected through mobile phone identity verification service during registration and identity verification:
| Category | Items Collected |
|---|---|
| Identity verification information | Name, date of birth, gender, Korean/foreigner status, mobile phone number, mobile carrier |
| Linked information | Connecting Information (CI), Duplicate Registration Confirmation Information (DI) |
| Service usage information | Identity verification request date/time, service information, IP address |
Information Automatically Collected During Service Use
IP address, cookies, service usage records, access logs, browser information, operating system information
4. Retention and Use Period of Personal Information
The Company, in principle, destroys personal information without delay once the purpose of collection and use has been achieved. However, if retention is required by relevant laws, the Company retains member information for the following periods:
| Item | Retention Period | Legal Basis |
|---|---|---|
| Records on contracts or withdrawal of subscription | 5 years | Act on Consumer Protection in Electronic Commerce |
| Records on payment and supply of goods | 5 years | Act on Consumer Protection in Electronic Commerce |
| Records on consumer complaints or dispute resolution | 3 years | Act on Consumer Protection in Electronic Commerce |
| Records on identity verification | 6 months | Act on Promotion of Information and Communications Network Utilization and Information Protection |
| Records on access | 3 months | Protection of Communications Secrets Act |
5. Procedure and Method of Destroying Personal Information
Information in electronic file format is deleted using technical methods that prevent record recovery. Personal information printed on paper is destroyed by shredding or incineration.
6. Entrustment of Personal Information Processing
The Company entrusts personal information processing as follows for service provision:
| Trustee | Entrusted Tasks | Retention Period |
|---|---|---|
| Payletter Co., Ltd. | Identity verification service operation (including payment/settlement) | Until termination of entrustment contract |
When concluding entrustment contracts, the Company specifies in contract documents the prohibition of processing personal information beyond the purpose of entrusted tasks, technical and administrative protective measures, restrictions on re-entrustment, supervision of trustees, and liability for damages in accordance with Article 26 of the Personal Information Protection Act, and supervises whether trustees process personal information safely.
7. Provision of Personal Information to Third Parties
The Company does not provide users’ personal information to external parties in principle. However, exceptions are made in the following cases:
- When users have given prior consent
- When required by law or when there is a request from investigative agencies following legally prescribed procedures and methods for investigation purposes
Third-Party Provision Related to Identity Verification Service
When using mobile phone identity verification service, personal information is provided to mobile carriers through identity verification agencies.
| Recipient | Items Provided | Purpose of Provision | Retention Period |
|---|---|---|---|
| Korea Credit Bureau Co., Ltd. | Name, date of birth, gender, Korean/foreigner status, mobile phone number | Identity verification service provision | Until purpose of identity verification service is achieved |
| SK Telecom, KT, LG U+, and MVNOs | Name, date of birth, gender, Korean/foreigner status, mobile phone number, CI, DI | Identity verification service provision | Until purpose of identity verification service is achieved |
8. User Rights and Obligations
Users can view or modify their personal information at any time and can request the Company to delete their personal information.
Users can exercise their rights through the following methods:
- Email: support@alpaon.com
- Identity verification history inquiry: You can check your identity verification history at Privacy Portal (Korea only).
9. Processing of Personal Information of Children Under 14
The Company restricts membership registration for children under 14 years of age. If personal information of children under 14 must be collected, the Company obtains consent from legal guardians and collects only the minimum personal information necessary for the service, confirming consent through legal guardian’s mobile phone identity verification.
10. Personal Information Protection Officer
The Company designates a Personal Information Protection Officer as follows to be responsible for overall personal information processing and to handle user complaints and remedies related to personal information processing:
| Category | Details |
|---|---|
| Personal Information Protection Officer | Jisub Kim |
| Contact | support@alpaon.com |
11. Changes to Privacy Policy
This Privacy Policy may be added to, deleted, or modified due to changes in laws, policies, or security technologies. Changes will be notified through website announcements at least 7 days before the effective date. However, for significant changes affecting user rights, notice will be given at least 30 days in advance.
- Announcement date: January 27, 2026
- Effective date: February 3, 2026
12. Inquiries
For inquiries regarding this policy, please contact support@alpaon.com.
If you need to report or consult about personal information infringement, please contact the following organizations:
- Personal Information Infringement Report Center: privacy.kisa.or.kr / 118
- Personal Information Dispute Mediation Committee: kopico.go.kr / 1833-6972
- Supreme Prosecutors’ Office Cyber Investigation Division: spo.go.kr / 1301
- National Police Agency Cyber Bureau: police.go.kr / 182