Privacy Policy

MadeinKorea.io
Last updated: March 20, 2025

 

1. Purpose, Scope, and Commitment

MadeinKorea.io (“MadeinKorea.io”, “we”, “us”, or “our”) recognizes that the responsible handling and protection of personal information are fundamental to maintaining trust with our users, partners, and stakeholders. We are committed to implementing and maintaining robust administrative, technical, and organizational measures designed to safeguard personal information and to comply with applicable privacy and data protection laws.

This Privacy Policy describes how personal information is collected, accessed, processed, used, disclosed, retained, and protected in connection with our website, platform, and related services (collectively, the “Services”). By accessing or using the Services, you acknowledge that you have read, understood, and agreed to the practices described in this Privacy Policy.

This Policy applies to all users of the Services, including brand owners, buyers, partners, representatives, and other business users.

 

2. Data Controller and Internal Governance

For purposes of applicable privacy and data protection laws, the data controller is MadeinKorea.io, Inc., United States.

MadeinKorea.io maintains internal governance practices to oversee privacy and data protection matters, including role-based access controls, internal data handling procedures, periodic reviews of data processing activities, and ongoing evaluation of operational and security practices to ensure alignment with this Privacy Policy.

 

3. Nature of the Services and Platform Role

MadeinKorea.io operates a business-to-business platform designed to introduce and connect curated Korean brands with global buyers and commercial partners.

MadeinKorea.io functions solely as a platform facilitating discovery, communication, and business connection and does not act as a seller of record, a payment institution or financial service provider, a logistics or fulfillment provider, or a guarantor of commercial or transactional outcomes. Commercial negotiations, transactions, and results occur independently between platform users.

 

4. Categories of Personal Information Collected

Personal information collected or processed by MadeinKorea.io may include the following categories, depending on how the Services are used:

  • Identification and contact information such as name, business email address, company name, role or job title, and business contact details

  • Account-related information including login credentials, account status, subscription status, and authentication data

  • Communications and correspondence submitted through email, contact forms, or platform messaging tools

  • Platform usage information such as login timestamps, feature usage patterns, interaction history, and communication metadata

  • Subscription and billing indicators such as payment confirmation status, billing cycle information, and transaction identifiers

MadeinKorea.io does not collect or store full payment card numbers or payment credentials.

 

5. Payment and Subscription Processing

Access to certain Services may require a paid subscription. Subscription payments are processed by a third-party payment processor, Stripe.

  • Payment credentials are collected and processed directly by the payment processor in accordance with its own security and compliance standards

  • MadeinKorea.io does not store, process, or directly access full payment card details

  • MadeinKorea.io receives only limited, non-sensitive billing information necessary for account administration, subscription management, and customer support

 

6. Purpose Limitation and Use of Personal Information

Personal information is processed strictly for defined, legitimate, and necessary business purposes, including:

  • Creating, authenticating, and managing user accounts

  • Providing access to platform features and Services

  • Administering subscriptions and account eligibility

  • Communicating with users regarding onboarding, service updates, security notices, and account-related matters

  • Responding to inquiries and providing customer support

  • Monitoring system performance, maintaining platform stability, and improving functionality

  • Ensuring compliance with legal obligations and enforcing platform policies

  • Detecting, preventing, and responding to fraud, misuse, or unauthorized access

Where feasible, MadeinKorea.io applies data minimization principles and may anonymize or aggregate personal information so that it can no longer be reasonably associated with an identifiable individual. Aggregated and anonymized data may be used for analytics, research, service improvement, and strategic planning purposes without identifying individual users.

 

7. Communications and Email Practices

Upon registration, users receive communications that are essential to the operation of the Services, including welcome messages, onboarding instructions, account verification notices, security alerts, system updates, maintenance notifications, and policy-related communications. These communications are considered an integral part of service delivery and cannot be opted out of while an account remains active.

Users may also receive occasional informational or promotional communications related to MadeinKorea.io or the Services. Such communications include a clear unsubscribe mechanism, and users may opt out of marketing communications at any time without affecting their access to or use of the Services.

By registering for an account, users expressly acknowledge and agree that the provision of a valid email address is required for service-related communications and that such communications are an integral part of accessing and using the Services.

 

8. Disclosure, Transfers, and Third-Party Processing

MadeinKorea.io does not sell personal information.

Personal information may be disclosed only in the following circumstances:

  • To carefully selected third-party service providers that support platform operations, infrastructure, analytics, payment processing, or security, solely to the extent necessary to perform such services

  • To comply with applicable laws, regulations, subpoenas, court orders, or lawful governmental requests

  • To protect the rights, property, or safety of MadeinKorea.io, its users, or others

  • In connection with a merger, acquisition, reorganization, sale of assets, joint venture, bankruptcy, or similar corporate transaction, subject to appropriate confidentiality, security safeguards, and applicable law

All third-party service providers are contractually required to implement appropriate security and confidentiality measures.

 

9. Data Processing, Hosting, and Cross-Border Transfers

MadeinKorea.io does not independently operate primary data hosting infrastructure. Personal information is processed and stored through the infrastructure of third-party service providers used by MadeinKorea.io, including Shopify and other supporting providers.

As a result, personal information may be processed or stored in jurisdictions where such service providers maintain servers or operations, which may differ from a user’s country of residence. Regardless of location, MadeinKorea.io takes reasonable steps to ensure that personal information is handled in accordance with this Privacy Policy and applicable legal requirements.

By using the Services, you acknowledge and consent to such cross-border processing and storage.

 

10. Cookie and Tracking Technologies

MadeinKorea.io uses cookies and similar tracking technologies to ensure the proper operation, security, and continuous improvement of the Services. Cookies are small text files placed on a user’s device and are commonly used to enable essential functionality, enhance user experience, and collect aggregated usage data.

Cookies and similar technologies used in connection with the Services may include:

  • Strictly necessary cookies that enable core platform functionality such as authentication, session management, security controls, and account access

  • Functional cookies that support user preferences, language settings, and account-related configurations to provide a consistent experience

  • Analytics and performance cookies that collect aggregated and anonymized information regarding usage patterns, feature performance, and system stability for the purpose of improving platform reliability and usability

  • Security and fraud prevention technologies used to detect, prevent, and respond to suspicious or unauthorized activity and to protect the integrity of the Services

MadeinKorea.io does not use cookies to sell personal information or to engage in third-party behavioral advertising. Where third-party service providers are involved in analytics, infrastructure, or platform functionality, such providers may set or access cookies in accordance with their own privacy and security practices.

Users located in the European Union or other jurisdictions requiring consent for non-essential cookies may be presented with a cookie consent mechanism that allows them to manage their preferences. Where required by law, non-essential cookies are used only after appropriate consent has been obtained. Users may also manage cookies through their browser settings, although disabling certain cookies may affect the functionality of the Services.

 

11. Information Security Measures

MadeinKorea.io maintains a layered security approach that includes administrative controls, technical safeguards, and organizational policies designed to protect personal information against unauthorized access, disclosure, alteration, or destruction. These measures may include access restrictions, authentication controls, encryption technologies, monitoring practices, and reliance on industry-standard security frameworks implemented by service providers. Despite these efforts, no system can be guaranteed to be completely secure.

 

12. Data Retention and Disposal

Personal information is retained only for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required by law or legitimate operational needs. Residual copies of personal information may remain in system backups, audit logs, or archival records for limited periods as required for legal compliance, security, or operational continuity, after which such information is securely deleted or rendered inaccessible.

 

13. Individual Rights and Requests

Depending on applicable law, users may have the right to request access to, correction of, or deletion of their personal information, to restrict or object to certain processing activities, or to opt out of marketing communications. To protect user privacy and system integrity, MadeinKorea.io may require identity verification before responding to certain requests. Requests may be submitted by contacting hi@madeinkorea.io.

 

14. California Privacy Rights (CCPA)

If you are a resident of California, you may have additional rights under the California Consumer Privacy Act, including the right to know what personal information is collected, the right to request deletion of personal information subject to legal exceptions, and the right to non-discrimination for exercising your privacy rights. MadeinKorea.io does not sell personal information as defined under the CCPA. Requests may be submitted to hi@madeinkorea.io and identity verification may be required prior to response.

 

15. Children’s Privacy

The Services are intended exclusively for business users and are not directed to individuals under the age of 18. MadeinKorea.io does not knowingly collect personal information from minors.

 

16. Changes to This Privacy Policy

This Privacy Policy may be updated periodically to reflect changes in legal requirements, technology, or operational practices. Updates will be posted on this page, and continued use of the Services after such updates constitutes acceptance of the revised Privacy Policy.

 

17. Contact Information

Questions or concerns regarding this Privacy Policy or our privacy practices may be directed to hi@madeinkorea.io.