We collect some basic information such as where you are, and collect information that you create or provide to us. This includes the content you create like live streams, videos uploaded as a file, profile picture, and live chats you participated in.

When you create an SOOP Account, you provide us with personal information like your username, nickname and password. Specifically we collect the following:

username, password, nickname, gender, date of birth, email address, IP address

If you are using our service in Korea, we also collect the following information:

Unique identifiers (connecting information and duplication information), address, whether you have accepted to receive emails, and text messages from SOOP, and phone number.

If you are using the service in Korea and is a minor under 14 years old, the following information will be additionally collected:

Name, authentication information, and email address of your legal representative

You will not be restricted in using our service when you do not provide optionally collected information.

In addition, you will provide the following information in different situations when using our services such as:

We collect information about the apps, browsers, and devices you use to access Afreeca TV services, this helps us to provide features like automatic product updates.

The information we collect includes apps, browsers, device information, and information generated while interacting within AfreecaTV services. The information includes the following:

• unique identifiers, advertisement identifiers, browser type and settings, device type and settings, language, operating system and its version, mobile network information including carrier, and application version number.
• IP address, crash reports, system activity, date and time of request, and referrer URL.

We collect this information when Afreeca TV service on your device contacts our servers. If you're using Afreeca TV service, your device contacts SOOP servers to provide information about your device and connection to our services. This information includes things like your device type, carrier name, crash reports, and which apps you have installed.

We collect your activity information to recommend streams and videos that you might be interested. Information that we collect may include: Your activities includes searching, viewing videos, and listening to audios.

• Terms you search for, streams and videos you watch, views and interactions with content and advertisements, voice and audio information when you use audio features, purchase activities
• We also collect the history (log) of your personal messages, or chats which include stream information, streamer information, chatting log, comment log, time, and your IP.

You can view and manage your activity information by visiting SOOP Account Info. Go to Account Info

When using AfreecaTV services, we collect your location such as IP address information to provide a service suitable for your area. For example, website language, sign-up page, and privacy policy are different depending where you are.

We collect personal information in the following ways.

• Homepage, mobile
• written form, fax, phone, customer center inquiry, email, event application, delivery request
• Provision from partner companies

In addition to the personal information we collect, SOOP may also collect information about users from our partners such as marketing partners who provide information of our potential users of our services, and security partners who provide information to protect from abuse. We also receive information from our advertising partners to provide advertisement and search services.

We use various technologies to collect and store information, including cookies(more info), pixel tags, local storage, such as browser web storage or application data caches, databases, and server logs.

We collect unique identifiers like a copy of your ID or passport, when we would need to identify you in cases of Star Balloons exchange. We only collect unique identifiers when needed, and immediately discard the information after use.

For Korean citizens and residents, unique identification information refers to the Personal Information Protection Act Article 24 (1) and Article 19 of the Enforcement Decree of the Personal Information Protection Act "Information set by the Presidential Decree", and refers to resident registration number, passport number, driver's license number and alien registration number.

• Obligations to use transaction and payment service
• Imposing the duties incurred by the spot prize winner
• Complaint handling

For Korean citizens and residents, the collected unique identification information is not used or provided for purposes other than the purpose of collecting personal information except for the case specified in the Personal Information Protection Law and other laws, and it is encrypted and managed safely.

We use your information to provide various services such as recommending videos that you might like, notify you when your favorite streamers starts streaming, and so on. In addition, personal information is used to provide you a variety of services including:

• To send prizes to event winners
• To confirm your identity when exchanging Star Balloons
• To collect fees, when you pay for premium services

We also use your information to ensure our services are working as intended, such as tracking outages or troubleshooting issues that you report to us. And we use your information to make improvements to our services — for example we use video error reports created by you to identify the problem and to improve video playback features.

We develop new services based on the information collected in the existing service. For example, we use the chat data from the live stream you watch, to create highlight videos from replay videos.

Also, we check the validity of the service and decided whether to update or keep the service by using data and indices such as how many times you visit and use the service.

We offer membership services. Therefore to operate the service, we manage member information and this includes the following:

• Identifying users
• Restricting users who have violated the Terms of Use
• Restricting behaviors and abuse within the service that can interfere with the smooth operation of services
• Confirming membership and limiting the number of membership sign ups
• For Korean nationals and residents, confirming that the legal guardian has accepted the use of service for children under the age of 14
• For Korean nationals and residents, confirming that the legal guardian has accepted when a minor under the age of 19 makes payment
• Saving records for future dispute settlement, and to identify legal guardian
• Handling complaints and notifying users
• Confirming withdrawal of membership

We conduct marketing or advertising based on the information collected. For example, we use your age or gender information to advertise about products and services that people with similar statistical characteristics like.

Personal information is also used to provide various marketing and advertising information, such as promotional event information and opportunities

When we need to share or provide personal information separately with the third party for the purpose of providing the service, we will notify or get consent from you in advance in accordance with the "Act on Promotion of Information Network Usage and Information Protection, etc." and the "SOOP Personal Information Processing Policy". However, if there is difficulty in revising the personal information processing policy due to service partnership and event proceeding which occur frequently, users can directly check service provision history and event provision history through external content providers by providing personal information.

The list of services provided by external content providers and events are as the following. Users who do not use the following services will not receive personal information. This is the case where the user voluntarily provides his / her personal information to a third party in order to use the service. In such cases, SOOP shall notify the user (i) the receiving party of the personal information, (ii) the purpose for sharing the information, (iii) what information will be shared, (iv) the period of use and shall obtain explicit and individual consent from the user.

Services that external content providers provide and the personal information processed

※ If you want to withdraw your consent, contact the person in charge of personal information management in writing, by phone, and/or e-mail. We will take necessary measures such as discarding your personal information provided to the third party immediately.

※ Events are conducted mostly for Korean nationals and residents, and does not include overseas residents such as EU residents.

Also, when you want to use games provided by SOOP, personal information will be provided to game developers or operators. In other words, users who do not use the game will not receive personal information. In the event that the user voluntarily provides his / her personal information to a third party for use of the game, we will also inform the user that the receiver of the personal information, the purpose of providing, what information will be provided, period of use and will inform the user in advance, and obtain individual consent.

Parties we share personal information and processed information when using SOOP Games

We may provide personal information when required by applicable laws and regulations in accordance with procedures and methods set forth in laws and ordinances for the purpose of investigation.

Reason for preservation: Prevention of confusion and misuse (unauthorized subscription, unusual use of services) in using services such as dissatisfaction and dispute settlement of consumers at the time of membership withdrawal

Preserved items: username, identification code (Connection information, Duplication information)

Preservation period: 6 months

If it is necessary to preserve the information in accordance with the relevant laws and regulations, such as the Commercial Act, the Consumer Protection Act in Electronic Commerce, etc., we will keep the member information for a certain period as stipulated by related laws and regulations. In this case, we will only use the information according to the purpose of keeping it, and keep it for the period of preservation according to the grounds stated in the reason for preservation. If the period of preservation is terminated, the personal information of the user will be deleted without delay.

• Reasons of record preservation regarding contracts or membership withdrawal: Act on Consumer Protection in Electronic Commerce etc. Preservation period: 5 years
• Reasons of record preservation regarding payment and goods supply: Act on Consumer Protection in Electronic Commerce etc. Preservation period: 5 years
• Reasons of record preservation regarding e-banking transaction: Act on e-banking transaction: 5years
• Reasons of record preservation regarding consumer’s complaint or resolution of dispute: Act on e-banking transaction of consumer protection: 3years
• Reasons of record preservation regarding visiting of website: Protection act on communication secret: 3 months

If the purpose of collecting and using personal information of the user is accomplished, it will be deleted without delay and if it should be stored according to other laws and regulations, it will be transferred to a separate DB and will be deleted without delay after being safely kept for a certain period in compliance with relevant laws and regulations.

This personal information will not be used for any purpose other than the purpose for which it is being held, except as provided in laws and regulations.

Personal information printed on paper is a destroyed by a grinder or by incineration.

Personal information stored as an electronic file is deleted using a technical method so it cannot be restored.

The personal information of the service user who is in a dormant state without a service use record for one year is separately stored and managed separately from the user's personal information. However, if there is a request from the dormant service user, the personal information will be provided again when the service is resumed.

We will notify the users by e-mail etc. before 30 days before transition into an inactive account.

Separated and stored personal information will not be used or provided unless otherwise specified in other laws and regulations. In addition, personal information that has been separated and archived will be deleted without delay at the time specified in the related laws and will be notified to users by e-mail or other means before 30 days from the time of deletion.

We use cookies to frequently store and retrieve information of users in order to provide personalized and customized services.

Cookies are very small text files sent to the user's browser by the server used to run the website and stored on the user's hard disk. When a user visits a website, the website server is used to maintain the user's preferences and provide customized services by reading the contents of cookies stored on the user's hard disk.

Cookies do not automatically and / or actively collect personally identifiable information, and you can deny or delete these cookies at any time.

It is used to provide optimized and customized information including advertisement to users by understanding the types of visits, usage of services, websites visited by users, popularity queries, security access, news editing, and user volume.

You have the option of installing cookies. Therefore, you can allow all cookies by setting options in your web browser, check each time a cookie is saved, or refuse to save all cookies.

However, if you refuse to store cookies, some services that require login may be difficult to use.

Here's how to specify whether to allow cookies to be installed (for Internet Explorer):

1. ① From the [Tools]menu, select [Internet Options]
2. ② Click the [Privacy] tab
3. ③ You can set [Privacy Level]

The password of the username registered in SOOP service is stored and managed with secure encryption. Only the user will know the password. Also, checking and modifying personal information can be done only by the user.

We provide a 2-step verification function that checks passwords when you change your personal information to protect your account.

You can export a copy of content in your SOOP Account if you want to back it up or use it with a service outside of Google.

• You can download your VODs on Blog > Recent Stream.
• Personal information can be downloaded as an excel file on the Manage Account page.

• You can delete your personal information by clicking on 'Delete Personal Info' button on the Privacy Policy page or Manage Account page.

We are doing our best to prevent leakage or damage of personal information of our users caused by hacking or computer viruses. In order to prevent personal information from being damaged, we are backing up the data on a regular basis. The latest vaccine program is used to prevent personal information or data from being leaked or damaged, and to securely transmit personal information on the network with encryption. We use intrusion prevention system to control unauthorized access from outside, and try to have all possible technical devices to secure it systematically.

Personal information is only processed and handled by the person we appoint. Also, a separate password is given to them and updated regularly. We train our data processors through regular trainings and emphasize to comply with personal information processing policies.

In addition, through the internal personal information protection department, we check the implementation of the personal information processing policy and compliance with the person in charge, and are working to correct and rectify any problems that are found. However, we shall not be held responsible for damages that are not attributable to us, even though we have fulfilled its obligation to protect personal information, such as carelessness of users or accidents in areas not controlled by us.

Data protection laws vary among countries, with some providing more protection than others. Regardless of where your information is processed, we apply the same protection as described in this policy. We also comply with certain legal frameworks related to the transfer of data, such as the EU-US and Swiss-US Privacy Shield Frameworks.

When we receive formal written complaints, we respond by contacting the person who made the complaint. We work with the appropriate regulatory authorities, including local data protection authorities, to resolve any complaints regarding the transfer of your data that we cannot resolve with you directly.