Scope of Personal Information Collection and Use

iisacc.com (the “Website”) is a static website and does not provide features that presuppose the processing of personal information, including account creation, login, subscriptions, comments, or messaging. Accordingly, the Website does not collect, store, or otherwise process any personally identifiable information, including without limitation a user’s name, email address, postal address, telephone number, payment instrument information, or any account identifier. Mere access to and viewing of the Website does not result in the Operator receiving personally identifiable information, and use of the Website is not conditioned upon the provision of personal information. The Operator does not operate any database or member registry for the purpose of storing or managing user personal information.

Limited Processing of Non-Identifying Information and Web Analytics

The Website uses only Vercel Analytics to obtain non-identifying, aggregated technical information, such as visit counts, page views, approximate location information, and browser and device types. Such information is processed solely for statistical and operational purposes, including the security, stability, and performance management of the Website. The Operator does not use such information to identify specific individuals and does not operate any tracking mechanism beyond Vercel Analytics. The Website does not deploy cookies or similar tracking technologies for the purpose of identifying users or conducting behavioral tracking, and the Operator does not maintain any user-identification scheme based on browser storage (including local storage or IndexedDB) for the purpose of tracking.

Third-Party Services and Payment Processing

Where the Website offers paid products, payment processing is performed entirely by external payment service providers. Any personal information entered or generated during the payment process, including credit card details, payment account information, billing information, and authentication information, is processed within the systems of the relevant payment service provider. The Operator does not access, store, or manage such information. The collection and processing of personal information relating to payments are governed by the payment service provider’s privacy policy and terms, and the Operator does not assume responsibility beyond that scope.

Information Voluntarily Provided by Users

The Website does not request personal information as a condition of use. However, a user may voluntarily provide information via explicit contact channels (e.g., email) when submitting inquiries, bug reports, or refund requests. In such cases, the Operator processes the voluntarily provided information solely for the purpose of responding to the request and resolving the issue. The Operator retains such information only for the period necessary to complete the request and, unless retention is required by applicable law, deletes or anonymizes it without undue delay after the purpose has been fulfilled. The Operator does not use voluntarily provided information for marketing, resale, or disclosure to third parties beyond its original purpose.

Retention Period and Deletion of Personal Information

As a matter of operating policy, the Website does not collect or store personal information; therefore, there is no standing repository of personal information subject to long-term retention. Where personal information is voluntarily provided under Article 4, it is retained only as long as necessary to fulfill the stated purpose and is deleted or destroyed without undue delay thereafter, unless a mandatory legal retention obligation applies. Aggregated and non-identifying analytics information is maintained as statistical data and does not constitute personal information held by the Operator in an identifiable form.

User Rights

Users, as data subjects, may have statutory rights under applicable data protection laws, including rights relating to access, correction, deletion, or restriction of processing. However, because the Operator does not collect or retain users’ personal information through the Website, there is generally no personal information held by the Operator to which such requests can apply. Where the Operator temporarily processes personal information solely for request handling under Article 4, the user may request deletion of that information, and the Operator will take appropriate action without undue delay, subject to any mandatory legal retention requirements.

Inquiries and Handling Principles

Because the Website does not collect or maintain a database of personal information, privacy-related requests are limited in scope. The Operator handles any privacy-related inquiries in accordance with this Privacy Policy and applicable law, and will take necessary measures within the extent reasonably possible where any personally identifiable information is temporarily received solely for request handling. Any communications regarding privacy matters shall be submitted through the contact method posted on the Website, and the Operator will respond within a reasonable period where a response is necessary.

Legal Compliance and Policy Updates

The Operator complies with applicable data protection laws, including the Personal Information Protection Act of the Republic of Korea, to the extent relevant to the Website’s operating model. This Privacy Policy is intended to describe, in definitive terms, the scope and limits of personal information processing based on the Website’s actual operation. If laws change or the Website’s functions or processing practices change, this Privacy Policy may be amended. Any material additions, deletions, or modifications will be announced on the Website prior to taking effect within a reasonable notice period. This Privacy Policy is effective as of January 19, 2026.