1. Information Collected
(Required upon registration) Name, email address, password, nickname.
(Optional upon registration) Date of birth, gender.
(Automatically collected) Service usage records, visit history, access logs, cookies, IP address, device information (OS, browser type, device identifier).
(Location-based services) GPS location data (latitude/longitude), Wi‑Fi connection information.
(Customer inquiries) Name, email address, inquiry details.

2. Collection Methods
- Direct input through registration, service use, and customer inquiries.
- Automatic collection through cookies and logs.
- Information provided by third-party social login providers such as Kakao and Google.

The Company uses personal information for:
1. Member management and identity verification.
2. Providing pilgrimage site information, pilgrimage routes, map-based location services, and personalized content.
3. Service analytics, development, and improvement.
4. Customer support and complaint handling.
5. Marketing and promotional communications (with separate consent).

Personal information is destroyed once the purpose of collection and use has been fulfilled unless retention is required by law.
Examples:
- Contract and withdrawal records: 5 years.
- Payment and supply records: 5 years.
- Consumer complaint records: 3 years.
- Advertising records: 6 months.
- Website visit logs: 3 months.
- Location information usage records: 6 months.

The Company does not provide personal information to third parties without prior consent except where required by law or requested by investigative authorities under applicable procedures.

The Company may outsource:
- Map and location services providers (e.g., Kakao, Google Maps API).
- Cloud service providers for server and data storage.
- Email service providers for notification emails.
All outsourcing agreements require compliance with personal information protection laws.

Users may review, correct, or delete their personal information and withdraw consent at any time. Legal guardians may exercise these rights on behalf of children under 14 years of age.

The Company uses cookies to provide personalized services. Users may accept, reject, or configure cookie settings through their web browser. Some services may not function properly if cookies are disabled.

Personal information is destroyed without delay once the purpose of processing has been achieved.
Electronic files are permanently deleted using non-recoverable methods.
Printed documents are shredded or incinerated.

Technical Measures:
- Encryption of passwords and sensitive information.
- Security software against hacking and malware.
- HTTPS encrypted transmission.

Administrative Measures:
- Limiting personnel with access to personal information.
- Access control management.
- Designation of responsible personnel and internal audits.

The Company designates a Privacy Officer responsible for personal information protection, complaint handling, and user support regarding privacy matters.

Users may request access to their personal information pursuant to applicable privacy laws.
Contact: privacy@example.com / 02-0000-0000

Users may contact relevant Korean authorities, including:
- Personal Information Dispute Mediation Committee
- Personal Information Infringement Report Center
- Supreme Prosecutors' Office Cyber Investigation Division
- Korean National Police Agency Cyber Bureau

Any additions, deletions, or modifications to this Privacy Policy will be announced at least seven (7) days in advance through the Service. This Privacy Policy becomes effective on June 1, 2026.

Date of Notice: April 5, 2026
Effective Date: June 1, 2026