Privacy Policy

ClawPod Privacy Policy

April 22, 2026

Wondermove Inc. (hereinafter "the Company") establishes and discloses the following Privacy Policy to protect Users' personal information in accordance with the Personal Information Protection Act, the Act on Promotion of Information and Communications Network Utilization and Information Protection, and other applicable laws, and to handle related complaints promptly.

Article 1 (Personal Information Collected and Collection Methods)

Users have the right to refuse consent to the collection and use of personal information. Refusal to consent to required items may limit registration or service provision.

  1. Required items
  2. Optional items
  3. Collection methods: Direct input during registration and service use; automatic generation and collection during service use (cookies, access logs, audit logs, etc.); collection through customer support inquiries

Article 2 (Purpose of Personal Information Use)

Collected personal information is used only for the following purposes. If the purpose of use changes, the Company shall obtain separate consent in accordance with Article 18 of the Personal Information Protection Act.

Article 3 (Provision of Personal Information to Third Parties)

The Company does not, in principle, provide personal information to third parties without the User's consent. However, information may be provided in the following cases:

  1. AI Model Service Providers (essential for service provision): Conversation content is transmitted to AI Model Providers when using AI Agents. The Company uses APIs with opt-out options for training.
    • Anthropic: anthropic.com/legal/commercial-terms
    • OpenAI: openai.com/policies/terms-of-use
    • Google AI: ai.google.dev/gemini-api/terms
  2. Processing outsourcing: The Company outsources personal information processing for service provision and supervises processors to ensure safe handling.
  3. Legal requirements: Information may be provided within the minimum scope required by court orders or lawful requests from investigative authorities.

Article 4 (Retention Period and Destruction of Personal Information)

Personal information shall be destroyed without delay when the retention period expires or the processing purpose is achieved.

  1. Retention during service use
  2. Legally mandated retention
  3. Destruction procedures and methods: Upon withdrawal, data is retained for a 30-day recovery grace period, then permanently destroyed. Electronic files are permanently deleted using irreversible methods; S3 files are fully deleted for the applicable User.

Article 5 (Measures to Ensure Personal Information Security)

The Company takes the following protective measures pursuant to Article 29 of the Personal Information Protection Act:

  1. Technical measures
  2. Administrative measures: Minimizing access to personal information, regular security training, maintaining and auditing access records, regular security vulnerability assessments
  3. Physical measures: Use of cloud infrastructure (AWS); physical security based on AWS data center certifications including SOC 2 and ISO 27001

Article 6 (User Rights and Exercise Methods)

Users (or legal guardians) may exercise the following rights at any time:

  • Right to access: Users may view the status and details of their personal information processing.
  • Right to rectification/deletion: Users may request correction or deletion of inaccurate or incomplete personal information.
  • Right to suspend processing: Users may request suspension of personal information processing.
  • Right to withdraw consent: Users may withdraw consent to the collection and use of personal information.
  • Right to data portability: Users may receive their personal information in a structured, machine-readable format.

Exercise method: Through Service settings or by emailing privacy@wondermove.net. The Company shall process requests within 10 business days.

Article 7 (Automatic Collection Devices — Cookies)

The Company does not use third-party tracking cookies for advertising or marketing purposes. Users may refuse or delete cookies through browser settings.

Article 8 (International Transfer of Personal Information)

The Company transfers Users' personal information abroad for service provision. Protective measures are taken in accordance with Article 28-8 of the Personal Information Protection Act, including standard contractual clauses and encryption.

Article 9 (Privacy Officer and Department)

Users may contact the Privacy Officer and designated department for all inquiries related to personal information protection. The Company shall respond and process requests within 10 business days.

Article 10 (Changes to the Privacy Policy)

This Policy may be amended due to changes in laws, policies, security technology, or services. Notice shall be given at least 7 days before the effective date. For significant changes affecting User rights, 30 days' advance notice shall be given.

Article 11 (Remedies for Rights Infringement)

Users may contact the Korea Internet & Security Agency (KISA) Personal Information Infringement Report Center, the Korea Consumer Agency, and other relevant organizations for remedies and consultations regarding personal information infringement.

Article 12 (Video Surveillance Equipment)

The Company does not install or operate video surveillance equipment (such as CCTV).

Article 13 (Processing of Pseudonymized Information)

The Company may pseudonymize personal information for statistical analysis, scientific research, or public interest record preservation. Pseudonymized information is stored and managed separately from the original personal information.

Supplementary Provisions

This Privacy Policy takes effect on March 11, 2026. This Policy also applies to personal information collected before the effective date.

ClawPod Privacy Policy | ClawPod