Privacy Policy
Effective Date: November 1, 2025
iTool (hereinafter referred to as “Service”) establishes and discloses this Privacy Policy to protect the personal information of data subjects and to promptly and smoothly handle related complaints in accordance with Article 30 of the Personal Information Protection Act.
Article 1 (Purpose of Processing Personal Information)
The Service does not require membership registration and collects only minimal personal information.
1. Contact and Feedback Processing
The Service collects personal information only in the following cases:
Contact Form
- Information Collected: Name, email, inquiry content
- Purpose: Responding to user inquiries and improving the service
- Retention Period: Deleted immediately after processing (deleted after sending email)
Feedback Form
- Information Collected: Email (optional), feedback content, feedback type (complaints/feature requests)
- Purpose: Service quality improvement and bug fixes
- Retention Period: Deleted immediately after processing (deleted after sending email)
2. File Processing
- Information that may be automatically collected by the browser during service use (IP address, cookies, visit history, etc.) is not stored.
- Files uploaded when using tools (PDF, images, etc.) are not transmitted to the server and are not collected as personal information.
Article 2 (File Processing Methods)
- Browser-Based Processing: All file processing is performed only in the user’s browser (client).
- No Server Transmission: Files uploaded or edited by users are not transmitted to the Service’s servers.
- No Storage: The Service does not store user files, even temporarily.
- No Access: Service operators cannot access files being processed by users.
Article 3 (Use of Cookies)
- The Service does not currently use cookies.
- If cookies are used in the future to improve user experience, we will notify users in advance and obtain consent.
Article 4 (Log Data)
- The Service may collect general web server logs (access time, IP address, etc.).
- Collected log data is used only for statistical analysis and service improvement.
- Log data is used only in a form that cannot identify individuals.
Article 5 (Provision of Personal Information to Third Parties)
The Service provides collected personal information to third parties as follows:
1. Email Service (Resend)
Email transmission for contact and feedback processing:
- Recipient: Resend, Inc.
- Information Provided: Email address, name, inquiry/feedback content
- Purpose: Responding to user inquiries and delivering feedback
- Retention Period: Deleted immediately after email transmission
- Privacy Policy: Resend Privacy Policy
Article 6 (Third-Party Services)
1. Google AdSense (Planned)
We plan to introduce Google AdSense for advertising revenue in the future:
- Information Collected: Cookies for ad click tracking, ad impression information
- Purpose: Providing personalized advertising
- Privacy Policy: Google AdSense Privacy Policy
2. Coupang Partners
The Service uses Coupang Partners for advertising revenue:
- Coupang Cookies: Cookies used for ad click tracking
- Information Collected: Ad click information, purchase conversion tracking
- Privacy Policy: Coupang Privacy Policy
3. Lucide Icons
We use Lucide Icons CDN for icon display:
- Information Collected: None (only provides static files)
- Privacy Policy: Lucide License
Article 7 (Retention and Use Period of Personal Information)
The Service retains collected personal information as follows:
- Contact and Feedback: Deleted immediately after email transmission (deleted after temporary processing in Cloudflare Functions)
- File Data: Not collected (processed only in browser)
Article 8 (Consignment of Personal Information Processing)
The Service consigns personal information processing tasks as follows for smooth service provision:
| Consignee | Consigned Task | Retention and Use Period |
|---|---|---|
| Resend, Inc. | Email transmission | Deleted immediately after email transmission |
| Cloudflare, Inc. | Serverless function hosting (email sending processing) | Deleted immediately after function execution |
When concluding consignment contracts, we specify in documents such as contracts matters concerning prohibition of processing personal information other than for the purpose of performing consigned tasks, technical and administrative protective measures, restrictions on re-consignment, management and supervision of consignees, and liability for damages in accordance with Article 26 of the Personal Information Protection Act, and supervise whether consignees process personal information safely.
Article 9 (Rights, Duties, and Exercise Methods of Data Subjects)
Data subjects can exercise the following rights regarding the Service at any time:
- Request to view personal information
- Request correction if there are errors
- Request deletion
- Request suspension of processing
Methods of exercising rights:
- Email: mongdaewon@naver.com
- Processing period: Within 10 days from the date of request
If a data subject requests correction or deletion of errors in personal information, the Service will not use or provide such personal information until the correction or deletion is completed.
Article 10 (Destruction of Personal Information)
The Service destroys personal information without delay when it becomes unnecessary, such as when the retention period has elapsed or the processing purpose has been achieved.
Destruction Procedures and Methods
Destruction Procedures:
- Contact and Feedback: Automatically deleted from Cloudflare Functions memory immediately after email transmission
- No separate destruction procedures required as personal information is not stored on servers
Destruction Methods:
- Electronic files: Immediately deleted in a way that cannot be recovered or reproduced
- Paper documents: Not applicable (not collected)
Article 11 (Personal Information Protection Officer)
The Service designates a Personal Information Protection Officer as follows to oversee all personal information processing tasks and to handle complaints and provide relief for data subjects regarding personal information processing.
Personal Information Protection Officer
- Email: mongdaewon@naver.com
- Responsibilities: Handling inquiries related to personal information protection
Article 12 (Measures to Ensure the Safety of Personal Information)
The Service takes the following measures to ensure the safety of personal information:
Technical Measures:
- Use of HTTPS security protocol
- Blocking server transmission through browser-based file processing
- Regular security updates
Administrative Measures:
- Regular review of personal information protection policies
- Compliance with security-related laws and regulations
Article 13 (Remedies for Rights Infringement)
Data subjects can apply for dispute resolution or consultation with the Personal Information Dispute Mediation Committee, Korea Internet & Security Agency Personal Information Infringement Report Center, etc. to receive relief from personal information infringement.
- Personal Information Dispute Mediation Committee: 1833-6972 (www.kopico.go.kr)
- Personal Information Infringement Report Center: 118 (privacy.kisa.or.kr)
- Supreme Prosecutors’ Office Cyber Investigation Department: 1301 (www.spo.go.kr)
- National Police Agency Cyber Safety Bureau: 182 (cyberbureau.police.go.kr)
Article 14 (Changes to Privacy Policy)
- This Privacy Policy applies from the effective date.
- If there are additions, deletions, or corrections to the contents according to laws and policies, we will notify through announcements at least 7 days before the implementation of changes.
Article 15 (Protection of Children’s Personal Information)
The Service does not collect personal information from children under 14 years of age. If children under 14 use the Service, consent from their legal guardian may be required.
Article 16 (Duty of Notification)
If there are additions, deletions, or modifications to the contents of this Privacy Policy, we will notify through ‘Announcements’ on the Service at least 7 days before the revision.
Summary
- ✅ Minimal Personal Information Collection: Email address and name collected only when processing contact and feedback
- ✅ Immediate Deletion: Personal information deleted immediately after email transmission (not stored)
- ✅ No File Server Transmission: All file operations are processed in the browser
- ✅ No File Storage: Uploaded files are not stored on the server
- ⚠️ Advertising Cookies: Third-party cookies may be used for Coupang Partners and Google AdSense (planned) advertising
- ✅ Secure Processing: Secure email transmission through Cloudflare Functions + Resend
Supplementary Provisions
Effective Date: This Privacy Policy takes effect from November 1, 2025.
For Inquiries: Please use the Contact page.