MIRI Privacy Policy

Effective September 1, 2025

Article 101

General Provisions

MIRI (hereinafter referred to as the 'Company') has established and adheres to the following privacy policy to protect the personal information of its users in accordance with Article 30 of the Personal Information Protection Act. This policy may be amended in accordance with relevant laws and government guidelines and is available for review at any time.

Article 202

Purpose of Processing Personal Information

The Company collects only the minimum personal information necessary to provide its services and uses it within the scope of consent obtained. If the purpose of use changes, separate consent will be obtained.

  • Membership registration and management: identity verification, prevention of fraudulent sign-ups, membership maintenance, notifications, etc.
  • Service provision: identity verification, payment processing, cancellation and refund processing
  • Event management: entry and winner notifications, prize delivery, tax reporting
  • Marketing and advertising: new service announcements, personalized advertising, statistical analysis
  • Customer support: complaint handling, notice delivery, dispute mediation record keeping
Article 303

Personal Information Items Collected

The personal information items collected by the Company are as follows.

  • Membership registration — Required: ID, password, name, etc.
    Optional: date and time of birth, email, marketing consent, etc.
  • Automatically collected during service use: IP address, visit date/time, service usage records, access logs, etc.
  • Paid service payments: card issuer name, card number, payment approval number, bank name, account number, etc.
Article 404

Retention and Use Period of Personal Information

The Company retains and uses personal information for the period consented to at the time of collection or for the retention period required by law.

  • Membership information: until membership withdrawal
  • Service provision information: until service provision is completed
  • E-commerce related records: up to 5 years
Article 505

Provision of Personal Information to Third Parties

The Company does not provide personal information to third parties without the user's consent. However, exceptions may be made in the following cases.

  • When required by law or upon a lawful request from an investigative agency
  • When necessary for contract performance such as providing payment services (e.g., payment processors)
Article 606

Outsourcing and Overseas Transfer of Personal Information

The Company may outsource certain tasks to external professional companies for service operation and AI-based content generation. Entrusted parties may change as service quality improves and technology evolves; material changes will be announced through amendments to this policy. Data may also be stored and processed on overseas servers.

  • Entrusted party: Vercel Inc. (web hosting and serverless infrastructure)
    Country: United States
    Items: member information, payment history, service usage records, etc.
    Purpose: data storage, backup, service stabilization
    Retention: until membership withdrawal or contract termination
  • Entrusted party: Neon Inc. (PostgreSQL database)
    Country: United States
    Items: member information, payment history, service usage records, etc.
    Purpose: data storage and backup
    Retention: until membership withdrawal or contract termination
  • Entrusted party: Google LLC (Google AI
    Gemini API and other generative AI services)
    Country: United States and Google's global data centers
    Items: user input for saju interpretation (name, date and time of birth, gender, and other potentially de-identifiable data) and prompts
    Purpose: generating saju interpretation content via AI models
    Retention: Per Google API data processing policy, data is not used for model training and is discarded immediately after the required processing is completed
  • The AI model may change as technology evolves, and any new model will operate under the same Google API data processing policy.
Article 707

Destruction of Personal Information

When the retention period of personal information has expired or the purpose of processing has been achieved, the Company immediately destroys the information.

  • Electronic file format: permanently deleted using irrecoverable technical methods
  • Paper documents: shredded or incinerated
Article 808

Rights and Obligations of Users

Users may request to view, correct, delete, or suspend the processing of their personal information at any time, and the Company will take action without delay.

Article 909

Privacy Officer

The Company has designated the following officer to handle inquiries related to personal information protection.

  • Officer: mendii
  • Email: mendii.team@gmail.com
Article 1010

Policy Changes

This policy may be amended in accordance with changes in laws, policies, or security technologies. When revised, the effective date and key changes will be announced.