1
Items of Personal Information Collected
We collect the minimum information necessary to provide a safe campus marketplace:
- •Mandatory: Email Address, Full Name, Nickname.
- •Optional: Profile Picture, KakaoTalk/Telegram ID (for 1:1 trading), Major.
- •Automatically Collected: IP Address, Device ID, Access Logs, Cookies (for session management).
2
Purpose of Collection and Use
We use your information strictly for the following:
- •Verification: Confirming you are a registered and verified user.
- •Safety: Preventing fraudulent accounts and multi-account abuse.
- •Communication: Sending important service updates and verifying trades.
- •Dispute Resolution: Identifying users in case of reported scams or policy violations.
3
Retention and Destruction of Information
- •Retention Period: We keep your data only as long as your account is active.
- •Automatic Deletion: If you delete your account, your data is wiped from our servers within 24 hours.
- •Legal Exception: If required by the Act on the Protection of Consumers in Electronic Commerce, transaction records may be kept for 5 years, and login history for 3 months as per the Protection of Communications Secrets Act.
- •Destruction Method: Electronic files are permanently deleted using technical methods that prevent recovery.
4
Third-Party Data Sharing
ShelterLab does not sell your personal data.
- •We only provide your nickname and verified badge to other users during the listing process to facilitate trade.
- •We may disclose data if required by a legal warrant from the South Korean police or court order.
5
Rights of the Data Subject (Your Rights)
Under PIPA, you have the right to:
- •Request access to your personal information.
- •Request correction of inaccurate data.
- •Request the suspension of processing or account deletion.
- •Right to be Forgotten: You can exercise these rights via your Profile settings or by emailing our CPO.
6
Technical and Administrative Security Measures
To keep your data safe, we implement:
- •Encryption: All passwords and sensitive identifiers are hashed/encrypted at rest.
- •Access Control: Only the lead developer (Admin) has access to the user database.
- •Security Monitoring: Regular log audits to check for unauthorized access.
7
Chief Privacy Officer (CPO)
In accordance with Article 31 of PIPA, we have appointed a CPO to handle privacy inquiries and complaints.
Role: Lead Developer & CPO
Email: admin@shelterlab.shop