Privacy Policy
At FiouA Diff Studios, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, and safeguard your data when you use our services and visit our website.
Effective Date: January 1, 2024
Last Updated: January 1, 2024
About FiouA Diff Studios
FiouA Diff Studios Co., Ltd. is a leading game development company based in Seoul, South Korea, specializing in innovative mobile and web games. Founded with a vision to create engaging digital experiences, we are committed to maintaining the highest standards of data protection and user privacy.
This Privacy Policy applies to all our services, including our websites, mobile applications, and games, collectively referred to as our "Services."
Information We Collect
1 Personal Information
- Name and contact information (email address, phone number)
- Account credentials (username, encrypted password)
- Profile information (avatar, preferences, settings)
- Payment information (processed securely through third-party providers)
2 Technical Information
- Device information (device type, operating system, browser type)
- Usage data (pages visited, time spent, features used, game progress)
- Cookies and similar tracking technologies
How We Collect Your Information
Direct Collection
Information you provide when creating accounts, making purchases, or contacting us directly.
Automated Collection
Data collected automatically through cookies, server logs, and similar technologies when you use our Services.
Third-Party Sources
Information from social media platforms, payment processors, and analytics providers with your consent.
How We Use Your Information
Primary Uses
Service Provision
- • Providing access to our games and services
- • Processing transactions and payments
- • Personalizing user experiences
- • Providing customer support
Communication
- • Sending service-related notifications
- • Responding to inquiries and requests
- • Marketing communications (with consent)
- • Security and fraud prevention
Legal Basis for Processing
Under Korean privacy laws and international data protection regulations, we process your personal data based on the following legal grounds:
Consent
When you explicitly agree to data processing for specific purposes.
Contract Performance
To fulfill our contractual obligations to provide services.
Legitimate Interests
For business operations, security, and service improvement.
Legal Obligations
When required by law or regulatory requirements.
Data Sharing and Disclosure
We May Share Your Information With:
| Recipient Type | Purpose | Data Shared |
|---|---|---|
| Service Providers | Cloud hosting, analytics, payment processing | Usage data, device info, payment details |
| Legal Authorities | Compliance with legal obligations | As required by law or court order |
| Business Partners | Joint marketing, co-branded services | Aggregated, non-personal data only |
Third-Party Integrations
Our Services may include integrations with third-party platforms for enhanced functionality. These include:
Analytics Providers
Google Analytics, Firebase Analytics for service improvement and usage insights.
Payment Processors
Secure payment processing through internationally certified providers.
Social Media Platforms
Social login and sharing features with user consent.
Cloud Storage Services
Secure cloud infrastructure for data storage and backup.
Data Security
Security Measures We Implement
Encryption
AES-256 encryption for data at rest and TLS 1.3 for data in transit
Access Controls
Role-based access with multi-factor authentication for employees
Monitoring
24/7 security monitoring and threat detection systems
Regular Updates
Continuous security patches and system updates
Breach Notification Procedures
In the unlikely event of a data breach that may affect your personal information, we have established comprehensive procedures to respond quickly and effectively:
Immediate Response (Within 72 hours)
Contain the breach, assess the scope, and begin investigation.
User Notification (Within 72 hours of confirmation)
Direct notification to affected users with details about the breach and protective measures.
Regulatory Reporting (Within 72 hours of confirmation)
Report to relevant authorities as required by Korean privacy laws.
Your Privacy Rights
Under Korean Privacy Laws and GDPR
As a user of our Services, you have the following rights regarding your personal information:
Right to Access
Request information about the personal data we hold about you and how it's being processed.
Right to Rectification
Request correction of inaccurate or incomplete personal information.
Right to Erasure
Request deletion of your personal data under certain circumstances.
Right to Portability
Receive your data in a structured, machine-readable format.
Right to Object
Object to processing of your personal data for certain purposes.
Right to Restrict
Request limitation of data processing in certain circumstances.
How to Exercise Your Rights
Written Request
Send mail to our Privacy Officer
FiouA Diff Studios Co., Ltd.
Privacy Officer
123 Gangnam-gu, Seoul 06029, South Korea
Response Time
We will respond to all privacy rights requests within 30 days of receipt. For complex requests, we may extend this period by an additional 30 days with advance notice.
Data Retention
Retention Periods
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.
| Data Type | Retention Period | Reason |
|---|---|---|
| Account Information | Duration of account + 3 years | Customer service, legal compliance |
| Payment Information | 7 years | Tax and financial reporting requirements |
| Usage Data | 2 years | Service improvement and analytics |
| Marketing Data | Until consent withdrawn | Marketing communications |
Data Deletion Procedures
- Automated deletion upon account closure or retention period expiration
- Secure wiping of all databases and backup systems
- Confirmation of deletion sent to users upon request
Archive Policies
- Anonymized data may be retained for research purposes
- Legal obligations may require longer retention periods
- Active data stored separately from archived data
Cookies and Tracking Technologies
Types of Cookies We Use
Essential Cookies
Required for basic website functionality including:
- • User authentication and session management
- • Shopping cart functionality
- • Security features
Analytics Cookies
Help us understand how users interact with our services:
- • Google Analytics integration
- • Game performance metrics
- • User behavior analysis
Marketing Cookies
Used for targeted advertising and marketing:
- • Personalized advertising
- • Social media integration
- • Campaign tracking
Preference Cookies
Remember your settings and preferences:
- • Language settings
- • Game preferences
- • UI customization
Managing Your Cookie Preferences
Browser Settings
You can control cookies through your browser settings. Most browsers allow you to:
- View what cookies are stored on your device
- Set preferences for specific websites
Opt-Out Tools
You can also opt out of specific tracking services:
International Data Transfers
Cross-Border Data Transfers
FiouA Diff Studios operates globally, and your personal information may be transferred to and processed in countries other than your own. We ensure that these transfers are conducted in accordance with applicable data protection laws.
Adequacy Decisions
We transfer data to countries that have been recognized as providing adequate data protection:
- • European Union (EU)
- • United Kingdom (UK)
- • Japan
- • South Korea
- • Singapore
Safeguard Measures
For transfers to countries without adequacy decisions, we implement:
- • Standard Contractual Clauses (SCCs)
- • Binding Corporate Rules (BCRs)
- • Certification schemes
- • Privacy shield frameworks
Data Storage Locations
Primary Data Center
Seoul, South Korea
Main server infrastructure
Secondary Storage
Virginia, USA
Backup and CDN services
EU Regional
Frankfurt, Germany
GDPR compliance storage
Children's Privacy
Age Restrictions
Our Services are not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information promptly.
Important Notice
If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately using the contact information provided below.
Special Protections
- Enhanced data security for minors
- Simplified privacy controls
- Parental notification procedures
- Age verification processes
Parental Consent
For users between 13-18 years of age, we implement additional safeguards:
- Parental consent required for certain features
- Limited data collection for minors
- Easy account deletion for parents
Changes to This Privacy Policy
Policy Updates
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes to this policy.
Email Notification
Email updates to registered users for significant changes
In-App Notifications
Pop-up notifications within our applications
Website Banner
Prominent banner on our website homepage
Version History
Version 3.0
Enhanced international data transfer disclosures
Version 2.0
GDPR compliance updates and new user rights
Version 1.0
Initial privacy policy release
Contact Information
Get in Touch With Our Privacy Team
Company Address
123 Gangnam-gu
Seoul 06029
South Korea
Business Hours
Mon-Fri: 9:00-18:00 (KST)
Privacy inquiries
Response within 48 hours
Data Protection Officer
Our dedicated Data Protection Officer (DPO) is available to address any privacy concerns, data subject requests, or compliance questions. The DPO works closely with regulatory authorities to ensure our data protection practices meet the highest standards.
This Privacy Policy is effective as of January 1, 2024. For questions about this policy or our data practices, please contact us using the information provided above.