D'CENT App Privacy Policy
IoTrust Co., Ltd. (hereinafter referred to as the "Company") complies with the personal data protection regulations and related laws applicable to information and communication service providers. The Company has established this privacy policy in accordance with the relevant laws to make every effort to protect the rights and interests of users (hereinafter referred to as "Users").
The Company complies with the Personal Information Protection Act and the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc. when processing personal information.
Purpose and use of personal information
The company processes personal information for the following purposes. Personal information will not be used for other purposes, and if the purpose of use changes, separate consent will be obtained, or necessary actions will be taken.
Furthermore, the company does not collect personally identifiable information that can identify the user's identity directly. D'CENT does not store or have access to the user's personal confidential information, such as passwords, recovery words, private keys, PIN codes, and biometric data. Maintaining the confidentiality of this personal confidential information is solely the user's responsibility. Even if the following information is collected, it does not contain personally identifiable information, so the company cannot provide user identity information.
| Category | Purpose |
|---|---|
| The Company processes the following information: device session identifiers, instance IDs, IP addresses, clicks, actions (e.g., application launches, use of transaction functions, page views), attributes (e.g., hardware device ID, device type, operating system type, version, language, and region), timestamps, identifiers used by partners to distinguish users (e.g., anonymous UUIDs and FCM device registration tokens), cryptocurrency account lists, wallet addresses, user settings information (language, currency, wallet mode), and application error reports. | This information is used for bug fixes, analysis for product and service improvements, processing support requests, detecting and preventing security issues, fraud, and regulatory violations, optimizing marketing activities, and transmitting important information (such as security alerts). |
Methods of Personal Information collection
The personal information mentioned may be collected through the following methods:
| Category | Details |
|---|---|
| Online | Information is collected through the company's mobile app. |
| Collection through user consent provided to third parties. |
Providing personal information to third party
In principle, company shall process and manage collected personal information within the scope specified for the purpose of collection and use, and shall not process it beyond the scope of its original purpose or provide it to a third party without prior consent from owner of information except for below cases;
- In cases where explicit consent is obtained from the data subject
- When there are specific legal provisions in force
- When it is deemed necessary for the urgent interests of the information subject or a third party's life, body, property.
Retention and usage period of personal information
The user's personal information is collected and used within the following usage period as a general rule.
| Category | Purpose | Usage Period |
|---|---|---|
| The company processes the following information: device session identifiers, IP addresses, clicks, actions (e.g., application launch, transaction function use, page views), attributes (e.g., type, version, language, and region recorded on the operating system), timestamps, identifiers used by partners to distinguish users (if using the service), cryptocurrency account lists, wallet addresses, user settings information (language, currency, wallet mode). | This information is used for analysis to support bug fixes, product and service improvements, research into additional services and features that may be needed, processing support requests, addressing security issues and fraud prevention, exploring and preventing regulatory violations, optimizing marketing activities (e.g., information about the most frequently used features), and transmitting important information (e.g., security alerts). | until the purpose of use is achieved |
However, when it is necessary to retain personal information for a certain period in accordance with the provisions of relevant laws such as the Commercial Act and the Act on Consumer Protection in Electronic Commerce, the company retains the personal information for the period prescribed by the relevant laws. In such cases, the company only uses the information for the purpose of retention. The retention periods are as follows, and if there are other laws that apply not included in the list below, they will be retained in accordance with those laws.
| Information to be kept about | Applied Law | Period |
|---|---|---|
| Records of Display/Advertising | Consumer Protection Act in Commercial Law and Electronic Commercial Law | 6 months |
| Records and supporting documents for all transactions as regulated by tax laws | National Tax Law, Corporate Tax Law | 5 years |
| customer’s complaint or settlement of disputesRecords related to electronic financial transactions | Electronic Financial Transaction Law | 5 years |
| Records related to app usage | Protection of Communications Secrets Act | 3 months |
| Records related to the collection, processing, and use of credit information | Use and Protection of Credit Information Act | 3 years |
Outsourcing of Personal Information Processing (Newly Added)
The Company transfers personal information collected from service users to overseas entities as described below. If a user does not consent to or wishes to withdraw consent to such overseas transfer, the user may discontinue use of the Services by refraining from using the Services or deleting the application.
| Recipient (Processor) | Transfer Country | Transfer Timing | Transferred Personal Information | Purpose of Use | Retention Period |
|---|---|---|---|---|---|
| Google Analytics | USA | Upon Service Use | Transfer via Network | Anonymous UUID, Instance ID, Device Type, Extension Version/Mode | 14 months |
| Amplitude | USA | Upon Service Use | Transfer via Network | Instance ID, Hardware Device ID, Extension Version/Mode, Currency Settings, Testnet Status | 1 year |
| Pushwoosh | USA | Upon Service Use | Transfer via Network | FCM Device Registration Token | 2 years |
Destruction of personal information
When personal information is no longer necessary (including the completion of personal information processing, termination of services, and business closure), it is securely disposed of according to the following:
The company identifies personal information for which the disposal reason has arisen and, with the approval of the Personal Information Protection Officer, disposes of the personal information.
The company disposes of personal information in the following ways:
- Personal information recorded or stored on paper: Shredding or incineration
- Personal information stored in electronic file format: Permanently deleting it to make it irrecoverable.
User's rights and duties and how to exercise them
User has the right to receive sincere response from the company’s customer support team when there is a question, and can ask to view, correct or withdraw the registered user's personal information and request the company to view, provide, correct or withdraw the personal information.
The user should input the personal information accurately and precisely to prevent potential accidents. User has full responsibility for accidents caused by entering incorrect information, and you may lose membership if you enter false information including unauthorized use of other person's information.
Users have the right to protect the personal information. But also has responsibility to protect registered personal information and not to infringe other’s personal information. User has to be careful not to disclose the personal information, including passwords and should not to damage the privacy of others, including posts. If user fails to fulfill such responsibilities and damage other’s information, user may be punished under the Information and Communications Network Act.
Remedies for infringement of rights
Remedies for Infringement of Rights Information subjects may inquire about damage relief and counseling for personal information infringement to the following organizations.
<The following organizations are separate organizations from the company, so if you are not satisfied with the company's own personal information complaint handling and damage relief results, or if you need more detailed help, please contact them.>
Personal Information Infringement Report Center (operated by Korea Internet & Security Agency)
- Responsibilities: Report personal information infringement, apply for counseling
- Website : privacy.kisa.or.kr
- Telephone Number: 118
- Address: 9, Jinheung-gil, Naju-si, Jeollanam-do (301-2 Bitgaram-dong) 3rd floor (58324)
Personal Information Dispute Mediation Committee
- Responsibilities: Personal information dispute mediation application, collective dispute mediation (civil settlement)
- Website : www.kopico.go.kr
- Telephone Number: 1833-6972
- Address: 12th floor, Seoul Government Complex, 209 Sejong-daero, Jongno-gu, Seoul (03171)
Supreme Prosecutor's Office Cyber Crime Investigation Team: 02-3480-3574 ( www.spo.go.kr )
National Police Agency Cyber Security Bureau: 182 ( http://cyberbureau.police.go.kr )
Personal information protection
To protect personal information of members and handle complaints and inquiries for personal information reading, the company operates related department and chief privacy officer as the following:
| CPO | KyungEun Kim Vice President |
| Telephone Number : +82-2-1833-4022 | |
| E-mail : contact@iotrust.kr | |
| Privacy Management team / Request Personal information reading team | D’CENT Customer Support Team |
| Telephone Number : +82-2-1833-4022 | |
| E-mail : contact@iotrust.kr |
Announcement date: May 13, 2026
Effective date: May 20, 2026
The End.
Previous version of privacy policy
2023.12.11 ~ 2026.05.19 Application Guideline ( Click )
