Privacy Policy

Effective Date: August 31, 2025

Across Inc. (hereinafter "Company") has established this Privacy Policy in accordance with the Personal Information Protection Act, the Act on Promotion of Information and Communications Network Utilization and Information Protection, and other relevant laws to protect users' personal information and handle related complaints smoothly.

1. Purpose of Processing Personal Information

The Company processes personal information for the following purposes. The personal information being processed will not be used for purposes other than the following, and if the purpose of use changes, necessary measures will be taken, such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.

  • AI Search Optimization Service Provision: URL analysis, AI exposure diagnosis, optimization consulting
  • Service Application and Consultation: Service application processing, identity verification, consultation progress, result notification
  • Marketing and Advertising: New service development and customized service provision, event and promotional information (with consent)
  • Service Improvement: Service usage record analysis, service improvement and new service development

2. Personal Information Items Processed

When Using URL Analysis Service

  • Automatically Collected: Service usage records, access logs, cookies, access IP information, analyzed URLs

When Applying for Service

  • Required: Contact name, email address, mobile phone number
  • Optional: Company name, service category, service region

When Subscribing to Email

  • Required: Email address

3. Personal Information Processing and Retention Period

The Company processes and retains personal information within the personal information retention and use period in accordance with laws or the personal information retention and use period agreed upon when collecting personal information from data subjects.

Service Provision Related

  • Service application information: 1 year after service completion
  • URL analysis records: 6 months after analysis
  • Email subscription information: Until unsubscription

Retention According to Related Laws

  • Records on contracts or withdrawal of offers: 5 years (Consumer Protection Act in Electronic Commerce, etc.)
  • Records on payment and supply of goods, etc.: 5 years (Consumer Protection Act in Electronic Commerce, etc.)
  • Records on consumer complaints or dispute resolution: 3 years (Consumer Protection Act in Electronic Commerce, etc.)
  • Records on labeling and advertising: 6 months (Consumer Protection Act in Electronic Commerce, etc.)
  • Website visit records: 3 months (Protection of Communications Secrets Act)

4. Provision of Personal Information to Third Parties

In principle, the Company processes personal information within the scope of the purposes specified in Article 1 and does not process or provide it to third parties beyond the original scope without the user's prior consent. However, the following cases are exceptions:

  • When the user has consented in advance
  • When there is a request from an investigative agency in accordance with the procedures and methods prescribed by law for investigative purposes

5. Destruction of Personal Information

The Company destroys personal information without delay when it becomes unnecessary, such as when the personal information retention period has elapsed or the processing purpose has been achieved.

Destruction Procedure

Information entered by users is transferred to a separate DB after the purpose is achieved and stored for a certain period according to internal policies and other related laws before being destroyed.

Destruction Method

Information in electronic file format is deleted using technical methods that make records irreproducible.

6. Rights of Users and Methods of Exercise

Users can exercise the following rights as data subjects:

  • Request to view personal information
  • Request correction if there are errors
  • Request deletion
  • Request suspension of processing

Rights can be exercised to the Company through written documents, email, etc., and the Company will take action without delay.

7. Personal Information Protection Officer

The Company has designated a Personal Information Protection Officer as follows to take overall responsibility for personal information processing and to handle complaints and remedy damages related to personal information processing by data subjects.

▶ Personal Information Protection Officer

Department: Personal Information Protection Team

▶ Personal Information Protection Inquiries

Email: privacy@gpto.kr

Data subjects can contact the Personal Information Protection Officer for all personal information protection-related inquiries, complaint handling, and damage relief that occur while using the Company's services.

8. Use of Cookies

The Company uses cookies to provide customized services to users.

Purpose of Using Cookies

  • Analyze access frequency and visit times of members and non-members
  • Identify users' tastes and interests and utilize them for target marketing
  • Utilize for service improvement

Installation/Operation and Rejection of Cookies

Users have the choice to install cookies. By setting web browser options, you can allow all cookies, confirm each time a cookie is saved, or refuse to save all cookies.

9. Measures to Ensure Safety of Personal Information

The Company takes the following measures to ensure the safety of personal information:

  • Minimization and education of personal information handling employees
  • Establishment and implementation of internal management plan
  • Encryption of personal information
  • Technical measures against hacking, etc.
  • Restriction of access to personal information

10. Changes to Privacy Policy

This Privacy Policy takes effect from the effective date, and if there are additions, deletions, or corrections to changes in content according to laws and policies, they will be announced through the notice 7 days before the effective date of the changes.

11. Changes to Privacy Policy

This Privacy Policy takes effect from August 31, 2025.

You can view previous Privacy Policies below.

  • Before August 31, 2025: Not applicable (initial implementation)

Personal Information Infringement Report Center

If you need to report or consult about personal information infringement, please contact the following organizations.
- Personal Information Infringement Report Center: (without area code) 118 (privacy.kisa.or.kr)
- Supreme Prosecutors' Office Cybercrime Investigation Division: (without area code) 1301 (www.spo.go.kr)
- National Police Agency Cyber Bureau: (without area code) 182 (ecrm.cyber.go.kr)

AI Optimization - GPTO.io