At Jodloo ("we," "our," or "Company"), we prioritize protecting the personal information of our users ("you," "your," or "users") who use Jodloo (hereinafter referred to as "Application"). This Privacy Policy outlines how we collect, use, store, and disclose personal information and addresses any related concerns.
We collect and process personal data to facilitate membership registration, verify identity, and ensure the security of user accounts. This information helps in managing membership accounts, maintaining service integrity, sending notifications, and preventing unauthorized use. Additionally, personal data supports the delivery of services, issuance of contracts, and verification of age and identity. We also use personal data for responding to user inquiries, facilitating payments, debt collection, and providing user support. The information aids in customized advertising, usage statistics, and improvement of our services. In some cases, we may process pseudonymized information for statistical, research, and public interest purposes.
Personal data collection includes mandatory registration information such as email, password, and nickname. Data may also be gathered from third-party services, such as Google or Apple, during registration. For paid services, payment details, such as credit card information or bank account numbers, may be required. Additional details, such as received SMS content, service usage history, device information, and cookies, may be automatically collected during usage. For consumer complaints, necessary information is obtained from users to resolve issues effectively.
The Company retains personal information for as long as the user maintains an account or until the information is no longer necessary. If a user requests to withdraw their membership or the purpose of data collection has been fulfilled, we promptly delete the data. However, to comply with legal obligations, certain records (such as transaction logs) may be retained for specified periods. Data related to unauthorized re-registration prevention is stored for one year, and transaction data related to user complaints is retained for up to five years.
The Company does not disclose personal information to third parties without user consent, unless required by law. Pseudonymized data may be shared with third parties for research and statistical purposes in compliance with data protection regulations.
To facilitate certain services, we work with trusted partners such as Google Cloud Platform for data storage and Twilio for email communication. Some of these entities may process data in countries outside the user’s region. Each data transfer meets privacy protection standards, and information is only retained as long as necessary.
In cases where additional data usage is necessary beyond the original purpose, we ensure it aligns with user expectations, relates reasonably to the original purpose, and does not compromise user privacy. Necessary safety measures, such as encryption, are implemented to protect personal data.
Users have rights over their personal data, including the ability to view, modify, delete, or restrict processing. Requests can be made via email, phone, or written communication, and we will verify the requester’s identity before taking action. Certain legal obligations may limit these rights.
When data is no longer needed, it is securely destroyed—either deleted from our servers or physically destroyed if stored in hard copy. Electronic data is irreversibly deleted, while paper records are shredded or incinerated.
We implement technical and administrative measures, including password encryption and security software, to prevent data loss, theft, or unauthorized access.
Cookies are used to enhance user experience by remembering login states, analyzing usage patterns, and securing access. Users can manage their cookie preferences through browser settings, although disabling cookies may impact service functionality.
For operational purposes, some data may be transferred outside the user’s country of residence. We ensure data is transferred securely and in adherence to applicable data protection standards, particularly for users within the European Economic Area (EEA).
Our services are not intended for children under the age of 13, and we do not knowingly collect their information.
Changes to this policy will be communicated through our website at least 7 days prior to implementation, and significant changes, such as adjustments to data collection methods, will be announced 30 days in advance.
Effective Date: This Privacy Policy is effective as of November 30, 2024.