개인정보처리방침
주식회사 마인드사이트 · 시행일: March 13, 2026
1. Purpose of Processing Personal Information
Nodamen Inc. (hereinafter referred to as the "Company") processes personal information for the following purposes: • Membership registration and management: Identity verification, service provision, and delivery of notices • Service provision: Meditation content, timer, emotion journaling, reservations, counseling, and chat • Personalized services: Analysis of meditation records and personalized content recommendations • Payment and refunds: Processing payments for Paid Services, subscription withdrawals, and refunds • Service improvement: Analysis of usage statistics and enhancement of service quality • Notifications: Sending reservation confirmations, attendance reminders, payment receipts, and other notifications via KakaoTalk alerts and SMS
2. Categories of Personal Information Collected
[Required Items] • At registration: Email address, password (stored in encrypted form), and nickname • When using Paid Services: Payment information (processed through Toss Payments; card numbers and similar details are not directly stored by the Company) [Optional Items] • Via Kakao Login (optionally collected with user consent): Name, date of birth, phone number, and gender • Profile image, preferred meditation categories, and preferred language [Additional Items Collected for Partner (Instructor/Space Partner/Counselor) Registration] • Full name, mobile phone number, date of birth, and gender — collected via Kakao certificate or carrier-based identity verification • Purpose: Partner identity verification, service reliability, and prevention of fraudulent registrations [Automatically Collected Items] • Service usage records: Meditation records, emotion check-in data, and timer usage records • Device information: IP address, browser type, operating system information, and access logs
3. Retention and Period of Use of Personal Information
Personal information is retained until the User withdraws their membership and is destroyed without delay following withdrawal. However, where retention is required by applicable laws and regulations, the information shall be retained for the legally prescribed period. • Records relating to contracts or withdrawal of subscriptions: 5 years (Act on Consumer Protection in Electronic Commerce) • Records relating to payment and supply of goods: 5 years (Act on Consumer Protection in Electronic Commerce) • Records relating to consumer complaints or dispute resolution: 3 years (Act on Consumer Protection in Electronic Commerce) • Access log records: 3 months (Protection of Communications Secrets Act)
4. Provision of Personal Information to Third Parties
The Company does not, as a matter of principle, provide personal information to third parties without the consent of the User. However, exceptions are made in the following cases: • The User has given prior consent. • There is a specific provision in law or it is unavoidable for compliance with legal obligations. • An investigative authority makes a request based on applicable law. [Third-Party Provision Details] • When booking an offline class: Reservation information (name and contact details) is provided to the relevant Partner Center. • When using counseling services: Counseling reservation information is provided to the relevant counseling instructor.
5. Entrustment of Personal Information Processing
The Company entrusts the processing of personal information as follows for the smooth operation of the Service: Entrusted Party | Entrusted Tasks Supabase Inc. | Database hosting and user authentication Cloudflare Inc. | CDN and media streaming hosting Toss Payments Co., Ltd. | Electronic payment processing (payment agency) Vercel Inc. | Web service hosting OpenAI Inc. | AI-based content analysis and recommendations Naver Cloud Corp. | KakaoTalk alerts and SMS delivery (SENS) Daily.co (Daily, Inc.) | Video and voice counseling service provision Entrusted parties process personal information securely in accordance with their entrustment agreements and are prohibited from using it for purposes other than those specified.
6. Rights of Users and How to Exercise Them
Users (or their legal representatives) may exercise the following rights at any time: • Right to request access to personal information • Right to request correction or deletion of personal information • Right to request suspension of personal information processing • Right to withdraw consent (withdraw membership) The above rights may be exercised directly through Settings > Account within the Service or by contacting Customer Support at support@mindsight.im. Upon request, identity verification procedures will be completed and the request will be processed without delay.
7. Procedures and Methods for Destruction of Personal Information
The Company destroys personal information without delay once the retention period has expired or the purpose of processing has been fulfilled. [Destruction Procedures] Personal information is transferred to a separate database after the retention period has expired and is destroyed after a designated period of storage in accordance with internal policies and applicable laws and regulations. [Destruction Methods] • Electronic files: Permanently deleted using technical methods that prevent recovery • Paper documents: Shredded or incinerated
8. Use of Cookies
The Service uses cookies to maintain Users' login status and to enhance the convenience of Service use. Users may refuse the storage of cookies through their browser settings; however, doing so may limit access to certain features of the Service that require login.
9. Measures to Ensure the Security of Personal Information
The Company implements the following measures to ensure the security of personal information: • Administrative measures: Establishment of internal management plans and employee training • Technical measures: Encryption of personal information, operation of access control systems (RLS-based), and installation of security software • Physical measures: Access control for server rooms
10. Personal Information Protection Officer
The Company has designated a Personal Information Protection Officer to oversee all matters relating to the processing of personal information and to handle user complaints and remediation of damages. Name: Wonjun Lee Title: CEO Email: support@mindsight.im For reports or inquiries regarding personal information infringement, you may contact the following organizations: • Personal Information Infringement Report Center: privacy.kisa.or.kr / 118 (no area code required) • Personal Information Dispute Mediation Committee: kopico.go.kr / 1833-6972 • Supreme Prosecutors' Office Cyber Crime Investigation Division: spo.go.kr / 1301 (no area code required) • National Police Agency Cyber Bureau: cyberbureau.police.go.kr / 182 (no area code required)
11. Notice of Amendments
This Privacy Policy shall take effect on March 13, 2026. In the event that this Privacy Policy is amended, notice shall be provided within the Service no later than seven (7) days prior to the effective date of such amendment. [Business Information] Company Name: Nodamen Inc. (Service Name: Mindsight) CEO: Wonjun Lee Business Registration No.: 489-88-00555 Address: 2F, 55 Tapdong-ro, Jeju-si, Jeju Special Self-Governing Province, Republic of Korea Mail-Order Business Registration No.: 2023-Seoul Jongno-0993 Customer Support: support@mindsight.im