Privacy Policy (JK Fandom)

Fan Communications Global Co., Ltd. (hereinafter "FG") establishes this Privacy Policy (JK Fandom) (hereinafter "this Policy") regarding the handling of personal information of users of the services provided by FG (hereinafter "the Service"), as set forth below.

1. Information Collected and Methods of Collection

FG collects the following information through the Service:

• Registration Information: User ID, nickname, gender, date of birth (month and year), email address, country/region code, preferred genre and artist information, social media account linkage information (access tokens, etc.)
• Usage Information: Log data, device information (OS and app version, device identifiers, etc.), IP address, cookies, purchase history, voting and action history, FCM tokens, referral and invitation information.
• Advertising Identifiers: Advertising identifiers such as IDFA (iOS) and AAID/GAID (Android).
• Inquiry Information: Name, email address, inquiry content, device information (OS, device identifiers, etc.).
• Device Permission Access (Optional Permissions):
  • Storage / Photos: Used for saving content (such as images) or uploading profile images.
  • Notifications: Used for sending push notifications regarding event announcements, voting results, and important notices.

* Users may deny these permissions through their device settings.

2. Purposes of Use

FG uses collected information for the following purposes:

• Providing, maintaining, protecting, and improving the Service.
• Screening for user registration, identity verification, and user authentication.
• Awarding, managing, and processing payments for Points.
• Delivering and measuring the effectiveness of campaigns, surveys, and advertisements (including personalized advertising).
• Investigating and responding to violations of the Terms of Service.
• Fulfilling obligations under applicable laws and internal policies.
• Analyzing users' Service usage history, purchase history, and voting history, and using automated means to prioritize the display of artist information and deliver advertisements tailored to users' interests and preferences.

3. Methods of Collection

• FG automatically collects user information through designated forms within the app or through information collection modules (such as SDKs) embedded in the app.
• FG may combine the information described in the preceding paragraph (such as viewing history and voting history) to infer users' interests, preferences, and attributes, and use such inferences to customize the Service.

4. Third-Party Disclosure, Joint Use, and Entrustment of Personal Information

• Except as permitted by applicable law, FG will not provide personal information to third parties without the prior consent of the User.
• In providing the Service, and in order to comply with the external transmission regulations under Japan's Telecommunications Business Act and the laws of other countries, FG may transfer and share information with external services (such as SDKs) for the following purposes:
  • Analytics & Advertising: Google Analytics for Firebase, Adjust, Facebook SDK (Purpose: analyzing usage, measuring advertising effectiveness and campaign performance)
  • Advertising & Reward Delivery: AppLovin MAX, Play times, MyChips, Skayflag (Purpose: displaying advertisements and providing offer wall functionality)
  • Payment Processing: Each app store (Apple / Google) (Purpose: payment processing and charging of Star Points, etc.)
  • Customer Support: Mail Dealer (Rakus Co., Ltd.) (Purpose: handling inquiries)

* For details on externally transmitted information and the privacy policies of each service, please refer to the List of External Transmission Recipients.

• For the purpose of hosting specific events or campaigns, or to support artists, FG may jointly use identifying information and voting history of users with partner organizations of the Service (such as artist management agencies and event organizers). In such cases, FG will announce in advance within the Service the items of information to be jointly used, the purpose of use, and the responsible party for management.

5. International Transfer of Data

• FG is based in Japan. In providing the Service, collected information is transferred to and stored in Japan as described below. By using the Service (including by consenting at the time of registration), Users agree to this transfer of data outside their country.
• Categories of personal information transferred: All information described in Section 1 of this Policy
• Destination country: Japan
• Timing and method of transfer: Transferred and stored via network on an ongoing basis during use of the Service
• Recipient of personal information: Fan Communications Global Co., Ltd.
• Contact: As set forth in Section 10 of this Policy
• Retention and use period at destination: As set forth in Section 6 (Data Retention Period) of this Policy
• FG shall implement appropriate security management measures to ensure that a level of data protection equivalent to that of the User's country of residence is maintained in the destination country (Japan). Japan has received an adequacy decision from the European Commission and has a legal framework for protecting personal information at a standard equivalent to that of South Korea and other countries.

6. Data Retention Period

As a general rule, FG retains users' personal information for 90 days following withdrawal from the Service. However, FG may retain such information for up to five years to the extent necessary to handle inquiries, prevent fraudulent use, or fulfill legal obligations related to payments and taxation. Upon expiration of the applicable retention period, FG will promptly delete or anonymize such information.

7. User Controls

Users may stop the collection of their information by uninstalling (deleting) the app. To request deletion of information already collected, Users must separately complete the withdrawal procedure or contact the rights request office. To opt out of personalized advertising, Users may restrict tracking via advertising identifiers through the following device settings:

• iOS: [Settings] > [Privacy & Security] > [Tracking]
• Android: [Settings] > [Google] > [Ads] > [Delete Advertising ID]

8. Region-Specific Provisions (GDPR, CCPA, etc.)

The following provisions apply depending on the User's country of residence.

EEA (European Economic Area) and UK Residents (GDPR / UK GDPR)

Users have the right to access, rectify, erase, restrict the processing of, and port their personal information, as well as the right to object to processing. Users also have the right to lodge a complaint with the relevant supervisory authority.

California Residents (CCPA / CPRA)

• Users have the right to request disclosure of their personal information, request its deletion, and opt out of the sale or sharing of their personal information with third parties.
• FG does not "sell" users' personal information to third parties for monetary consideration.
• Notwithstanding the preceding paragraph, FG may "share" advertising identifiers with partners for the purpose of personalized advertising. Users may restrict this through their device settings.

Thailand, Singapore, and Other Residents (PDPA)

FG ensures the right to withdraw consent and the right of access in accordance with the personal data protection laws of each country.

South Korean Residents (PIPA)

• Users have the right to access, correct, delete, and request the suspension of processing of their personal information.
• In providing the Service, collected information is transferred to FG's servers located in Japan.
• Users consent to this cross-border transfer by agreeing at the time of app registration.
• Users under the age of 14 who reside in South Korea may not use the Service.
• When FG entrusts the processing of personal information of South Korean residents to third parties (such as payment processors and cloud infrastructure providers), FG shall manage and supervise such processors to ensure that personal information is handled securely.

9. Security Measures

FG implements organizational, human, physical, and technical security management measures (such as encryption and access controls) to prevent the leakage, loss, or damage of personal information and to otherwise ensure the safe management thereof.

10. Inquiries and Rights Request Office

For inquiries regarding this Policy or requests for disclosure, deletion, or other rights related to personal data, please contact us at:

• Business Name: Fan Communications Global Co., Ltd.
• Address: 1-1-8 Shibuya, Shibuya-ku, Tokyo, Japan
• Data Protection Officer: Chief Privacy Officer (CPO): Tetsuya Endo
• Contact: In-app inquiry form — [Settings] > [Contact Us]
• EU / UK Representative: Handled collectively through the Japan office above.

11. Changes to This Policy

• FG may amend this Policy at any time in the event of amendments to applicable laws, changes to the content of the Service, or whenever FG otherwise deems it necessary.
• When FG amends this Policy, FG will notify Users of the effective date and content of the amended Policy in advance by posting a notice within the Service, via email notification, or through other means FG deems appropriate.
• In principle, notice of amendments will be provided at least 30 days prior to the effective date. However, in the case of minor corrections, changes that do not disadvantage Users, or changes required to immediately respond to amendments to applicable laws, FG may shorten this notice period or provide notice simultaneously with or after the change takes effect.
• If a User uses the Service after the effective date of an amended Policy, such User shall be deemed to have agreed to the amended Policy.
• If a User does not agree to an amended Policy, the User shall cease using the Service and complete the withdrawal procedure as set forth in Article 14 (Withdrawal) of the JK Fandom Terms of Service.