Privacy Policy

Raccoon Couple (hereinafter referred to as the "Company") establishes and discloses this Privacy Policy to protect the personal information of users, to comply with applicable privacy laws worldwide (including but not limited to the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA/CPRA), and the Japanese Act on the Protection of Personal Information (APPI)), and to handle related complaints promptly and smoothly.

Article 1 (Purpose of Processing Personal Information)

The Company processes personal information for the following purposes. Personal information will not be used for purposes other than those listed below, and if the purpose of use changes, the Company will take necessary measures such as obtaining separate consent.

Membership Registration and Management

To confirm membership intent, provide member services, verify and authenticate identity, maintain and manage membership status, prevent misuse of services, provide notices and notifications, and handle complaints.

Handling User Inquiries and Complaints

To verify the identity of users, confirm inquiries or complaints, contact for fact-checking, and notify results.

Provision of Goods or Services

To provide services, send contracts and invoices, deliver content, provide customized services, perform identity verification, and handle payment and settlement.

Marketing and Advertising

To develop new services or products, provide customized services, offer opportunities for events and promotions, deliver targeted services and ads, verify service effectiveness, and analyze usage statistics.

Article 2 (Legal Basis for Processing)

Depending on the user’s jurisdiction, the Company processes personal information based on one or more of the following legal bases:

GDPR (EU/UK users): Consent, contract necessity, legal obligation, or legitimate interest
CCPA/CPRA (California residents): Processing for business purposes, with rights to opt-out of sale or sharing of data
APPI (Japan): Processing within the scope of disclosed purposes or with user consent

Article 3 (Processing and Retention Period)

Personal information will be processed and retained for the period necessary to fulfill the purposes stated above, or as required by applicable laws.
Specific periods:

Membership registration and management: Until membership withdrawal, with temporary retention for up to 30 days to prevent fraudulent use
Transaction-related records (payment, invoices): Retained as required by tax/accounting laws (typically 3–7 years depending on jurisdiction)

Article 4 (Items of Personal Information Processed)

Required items: Email, service usage records, access logs, payment records
Optional items: Mobile phone number, gender, name, anniversaries, profile photo

Article 5 (Data Subject Rights)

Users have the following rights depending on their jurisdiction:

GDPR (EU/UK): Right to access, rectification, erasure, restriction, portability, and objection to processing
CCPA/CPRA (California): Right to know categories and sources of data collected, right to deletion, right to opt-out of sale/share of personal information, right to non-discrimination
APPI (Japan): Right to request disclosure, correction, addition, deletion, suspension of use, and suspension of provision to third parties

Requests can be made in writing or via email, and the Company will respond without undue delay. The Company may verify the requester’s identity to protect personal information.

Article 6 (Cross-Border Data Transfers)

The Company may transfer and store personal information outside of the user’s country of residence (e.g., to servers located in Korea, the United States, or other jurisdictions). In such cases, the Company will ensure that adequate safeguards are in place, such as Standard Contractual Clauses (SCCs) under GDPR, or measures equivalent to those required under APPI.

Article 7 (Security Measures)

The Company takes organizational, technical, and physical measures to protect personal information, including but not limited to:

Access control and encryption
Secure network protocols and monitoring
Regular internal audits
Employee training and minimization of authorized personnel

Article 8 (Use of Cookies and Tracking Technologies)

The Company may use cookies or similar technologies to improve services and provide personalized experiences.
Users can manage cookie settings through their browser or device settings.
In jurisdictions where consent is required (e.g., EU/UK), cookies will not be activated without explicit consent.

Article 9 (Collection and Use of Behavioral and Advertising Data)

The Company may collect advertising identifiers (e.g., IDFA, GAID) and behavioral data (app usage, visit history) to provide personalized services and advertisements.
Users can opt out of interest-based advertising through device or browser settings.
Children under 16 (GDPR) or under 13 (COPPA in the US) are not knowingly targeted for behavioral advertising.

Article 10 (Third-Party Sharing and Service Providers)

The Company may share personal information with third-party service providers (such as cloud hosting, analytics, and payment processors) strictly for business purposes. These providers are contractually required to process information in compliance with applicable laws.

Article 11 (Children’s Privacy)

The Service is not directed to children under 13 (US) or under 16 (EU).
The Company does not knowingly collect data from children. If such data is collected inadvertently, it will be deleted promptly.

Article 12 (Privacy Officer)

Name: David Ha
Position: CEO
Contact: cs.arroyo.team@gmail.com

For EU/UK users, you may contact us to exercise your GDPR rights.
For California residents, you may contact us to exercise your CCPA/CPRA rights.

Article 13 (Changes to the Privacy Policy)

This Privacy Policy is effective as of July 4, 2024.
The Company may update this Policy from time to time and will notify users by posting an updated version within the app or on the website.