법적 고지

개인정보 처리방침

저희는 가족이 자신의 데이터가 어떻게 처리되는지에 대해 명확하고 정직한 답변을 받을 자격이 있다고 믿습니다. 특히 아이가 관련된 경우에는 더욱 그렇습니다.

최종 업데이트: 2025년 6월 1일  ·  모든 Pikidoo 서비스에 적용됩니다

목차

  1. 회사 소개
  2. 수집하는 데이터
  3. 데이터 이용 방법
  4. 법적 근거 (GDPR)
  5. 아동의 개인정보
  6. 데이터 공유
  7. 쿠키
  8. 데이터 보관
  9. 회원님의 권리
  10. 보안
  11. 변경 사항
  12. 문의처

1 회사 소개

Pikidoo는 Pikidoo("당사")가 운영하는 가족용 할 일 및 보상 관리 서비스입니다. 당사 서비스를 통해 부모님은 집안일과 규칙을 만들고, 자녀에게 보상을 배정하며, 완료 여부를 추적하고, 용돈 지급을 관리하실 수 있습니다. 이 모든 것을 웹 및 모바일 앱에서 이용하실 수 있습니다.

본 개인정보 처리방침은 회원님이 Pikidoo를 이용하실 때 당사가 어떤 개인정보를 수집하는지, 왜 수집하는지, 어떻게 보호하는지, 그리고 EU GDPR 및 기타 관련 법률에 따라 회원님이 어떤 권리를 가지시는지를 설명합니다.

개인정보 보호 담당 연락처
개인정보 관련 문의는 privacy@pikidoo.app으로 이메일을 보내 주십시오.

2 수집하는 데이터

Account data (parents / guardians)

  • Name and email address — collected at registration
  • Encrypted password — stored as a secure hash; we never see your plain-text password
  • Family name and a unique family code you choose
  • Preferred language and currency
  • Subscription plan information (linked to your Stripe customer record)

Child profile data

  • First name (or nickname) — provided by the parent
  • Avatar icon and colour — chosen by the child or parent
  • Optional: birth year (used only to display age-appropriate content)
  • Hashed PIN — children authenticate with a 4-digit PIN; we store only the hash
  • Wallet balance — the in-app reward balance calculated from approved tasks

Task and activity data

  • Task names, reward amounts, icons, and group assignments created by parents
  • Task completion records: which child, which task, date, and approval status
  • Payout records: amounts paid, dates, and associated children

Technical data

  • Server-side logs (IP address, request path, timestamp) — retained for 30 days for security and debugging
  • No browser cookies are set by the Pikidoo application itself

Payment data

Subscription payments are processed by Stripe, Inc. We never store your full card number, CVV, or bank details. Stripe shares with us only a customer reference ID and subscription status. Stripe's privacy policy applies to payment data: stripe.com/privacy.

3 데이터 이용 방법

  • Provide the service — authenticate users, store and display tasks, calculate balances, process payouts
  • Manage subscriptions — apply the correct plan limits, handle upgrades, downgrades, and cancellations via Stripe
  • Communicate with you — send transactional emails (account creation, password reset, subscription receipts)
  • Improve Pikidoo — analyse aggregate, anonymised usage patterns to prioritise features
  • Ensure security — detect and prevent fraudulent or abusive access
  • Comply with law — retain records required by applicable financial and tax regulations

We do not use your data for advertising, sell it to third parties, or use it to build marketing profiles.

4 법적 근거 (GDPR)

For users in the European Economic Area (EEA) and United Kingdom, our legal bases are:

  • Contract performance (Art. 6(1)(b)) — processing necessary to deliver the service you signed up for
  • Legitimate interests (Art. 6(1)(f)) — security logging and aggregate service improvement
  • Legal obligation (Art. 6(1)(c)) — retaining financial records as required by law
  • Consent (Art. 6(1)(a)) — for optional analytics cookies, where applicable

For child profile data we rely on parental consent — the parent or guardian who creates the account is responsible for providing that consent on behalf of the children added to the family.

5 아동의 개인정보

Special protections for children's data

Pikidoo is designed to be used by parents on behalf of their children. Children do not register themselves — a parent or guardian creates and manages all child profiles. This means:

  • We collect only the minimum data needed for a child profile (name, avatar, PIN hash, balance)
  • Children's data is never shared with advertisers or third-party analytics providers
  • Child profiles do not have email addresses or direct marketing contact
  • Children's task history and balances are visible only to the family
  • Parents may delete any child profile at any time, which permanently removes all associated data

We comply with the GDPR provisions on children's data (Art. 8) and, for US users, COPPA. If you believe we have inadvertently collected data from a child without appropriate parental consent, please contact us immediately at privacy@pikidoo.app.

6 데이터 공유 및 수탁자

We share data only with the following trusted processors, all bound by data processing agreements:

ProcessorPurposeLocationPrivacy policy
Stripe, Inc.Subscription payment processingUSA (SCCs in place)stripe.com/privacy
Cloud hosting providerDatabase and application hostingEUAvailable on request
Google FontsTypeface delivery on this websiteUSA (SCCs in place)policies.google.com/privacy

We do not sell personal data. We do not share data with law enforcement except where legally compelled.

7 쿠키 및 추적

This marketing website (pikidoo.app)

  • Essential: A cookie_consent entry in your browser's localStorage remembers your cookie preference.
  • Third-party: Google Fonts (loaded from fonts.googleapis.com) may set its own cookies or log your IP to serve font files.
  • Analytics: We do not currently use any analytics cookies or tracking pixels on this website.

The Pikidoo app

  • The app stores your authentication token in the browser's localStorage — this is a technical necessity, not a tracking cookie.
  • No third-party tracking or advertising cookies are used inside the app.
You can review or change your cookie preference at any time using the button.

8 데이터 보관

  • Active accounts: Data is retained for as long as your account is active.
  • After account deletion: All personal data is permanently deleted within 30 days, except where required by law (typically 7 years for financial records — anonymised where possible).
  • Child profiles: Deleted immediately and permanently when removed by a parent, or when the parent account is deleted.
  • Server logs: Automatically purged after 30 days.
  • Backups: Encrypted backups are retained for up to 90 days before being overwritten.

9 회원님의 권리

Under the GDPR (and equivalent laws in the UK and other jurisdictions) you have the following rights:

열람권당사가 보유한 회원님에 관한 모든 개인정보의 사본을 요청하실 수 있습니다.
정정권부정확하거나 불완전한 데이터의 수정을 당사에 요청하실 수 있습니다.
삭제권회원님의 데이터 삭제를 요청하실 수 있습니다("잊힐 권리").
처리 제한권분쟁이 진행되는 동안 처리 중단을 당사에 요청하실 수 있습니다.
데이터 이동권기계가 읽을 수 있는 형식으로 데이터를 받으실 수 있습니다.
반대권당사의 정당한 이익에 근거한 처리에 반대하실 수 있습니다.
동의 철회언제든지 쿠키에 대한 동의를 철회하실 수 있습니다.
민원 제기현지 데이터 보호 기관에 민원을 제기하실 수 있습니다.

To exercise any of these rights, email us at privacy@pikidoo.app. We will respond within 30 days. We may ask you to verify your identity before acting on the request.

10 보안

  • All data is transmitted over TLS (HTTPS)
  • Passwords are hashed using a strong, salted algorithm — plain-text passwords are never stored
  • Child PINs are stored as secure hashes
  • Database access is restricted to application servers over private networking
  • Encrypted backups are stored separately from production data
  • Access to production systems is restricted to authorised personnel using multi-factor authentication

If you discover a potential security vulnerability, please report it responsibly to security@pikidoo.app rather than disclosing it publicly.

11 본 방침의 변경

We may update this Privacy Policy from time to time. When we make material changes, we will notify active users by email at least 14 days before the changes take effect. The "Last updated" date at the top of this page always reflects the most recent revision. Continued use of Pikidoo after changes take effect constitutes acceptance of the updated policy.

12 문의처

Pikidoo — Privacy Team

privacy@pikidoo.app

security@pikidoo.app (security disclosures only)

If you are not satisfied with our response, you have the right to lodge a complaint with your national data protection authority. A list of EU supervisory authorities is available at edpb.europa.eu.