Farming AI (hereinafter referred to as the "Company"), the developer of the "Tomato Disease Diagnosis" and "Bee Disease Diagnosis" apps, establishes and discloses this Privacy Policy in accordance with the Personal Information Protection Act and other relevant laws to protect users' personal information and to promptly and smoothly handle related complaints.
Service Introduction
1. Collection and Use of Personal Information
The Company collects personal information directly entered by users during the service usage process or information automatically generated as follows. (Currently, the Tomato Disease Diagnosis app is not included)
| Category | Items | Retention Period |
|---|---|---|
| Individual Membership Registration Social Membership Registration (Google/Apple) |
[Required] Email, Password [Optional] Nickname, Profile Photo |
Immediately deleted upon membership withdrawal |
| Purchase Activity | [Required] Email, Purchased Products, Purchase Change History | Retained for 3 years in accordance with the Act on Consumer Protection in Electronic Commerce, then deleted |
| Voucher Registration Activity | [Required] Email, Voucher Number (Code), Voucher Registration History | Service usage period |
Automatically Collected Information:
During service use, the following information may be automatically generated, collected, stored, combined, and analyzed:
• IP Address, Service Usage Records, Device Information (Device Unique Number, OS, Version, Model Name, etc.)
During service use, the following information may be automatically generated, collected, stored, combined, and analyzed:
• IP Address, Service Usage Records, Device Information (Device Unique Number, OS, Version, Model Name, etc.)
2. Purpose of Collection and Use of Personal Information
The Company uses all collected personal and generated information for the following purposes:
- Providing membership-based services, identifying and managing members
- Providing and improving services, developing new services, offering personalized services
- Preventing illegal or fraudulent use (checking for fraudulent transactions), delivering notifications
3. Provision of Personal Information to Third Parties
The Company uses users' personal information only within the scope of the purposes stated above and does not provide it to external parties without the user's prior consent. However, exceptions are made in the following cases:
- When the user has given prior consent or when required by law or for investigative purposes
- When requested by investigative agencies in accordance with procedures and methods prescribed by law
4. Retention and Use Period of Personal Information
(1) In principle, the Company promptly deletes personal information once the purpose of collection and use has been achieved or the retention period has expired.
(2) If the retention period agreed to by the user has expired or the processing purpose has been achieved, but other laws or internal policies require retention, the information will be stored in a separate database (DB) or in a different storage location.
(3) Information collected and used in accordance with laws:
| Law | Purpose of Retention/Use | Retention/Use Period |
|---|---|---|
| Protection of Communications Secrets Act | Provided upon request by investigative agencies with a court warrant | 3 months |
| Act on Consumer Protection in Electronic Commerce, etc. | Records on labeling/advertising | 6 months |
| Records on consumer complaints or dispute resolution | 3 years |
5. Procedures and Methods for Destroying Personal Information
The procedures and methods for destroying personal information are as follows:
(1) Destruction Procedure
The Company destroys personal information without delay once the reason for destruction arises or the separately designated retention/use period has passed.
(2) Destruction Method
Personal information recorded and stored in electronic file format is destroyed using technical or physical methods so that the records cannot be reproduced. Personal information printed on paper is shredded or incinerated.
6. Rights and Obligations of Users and How to Exercise Them
- Users may directly view, modify, or delete their personal information, and the Company provides functions for this purpose.
- Users and legal representatives may request to view, modify, or delete personal information, and the Company will take action after verifying identity in accordance with its policy.
- If a user requests correction of an error in personal information, the Company will not use or provide the information until the correction is completed.
- Users must keep their personal information up to date, and are responsible for any problems arising from inaccurate information entered by themselves.
- If a user registers using another person's personal information, their membership may be revoked or they may be subject to penalties under relevant laws.
- Users are responsible for maintaining the security of their ID, password, and email, and may not transfer or lend them to third parties.
7. Technical and Managerial Measures for Protection of Personal Information
The Company takes the following technical and managerial measures to ensure the safety of personal information from loss, theft, leakage, alteration, or damage:
🔐 Encryption of Important Personal Information
User passwords are stored and managed using one-way encryption, and can only be checked or changed by the user who knows the password. Financial information such as account numbers is encrypted and managed using strong two-way encryption algorithms.
🛡️ Measures Against Hacking, etc.
The Company does its best to prevent users' personal information from being leaked or damaged due to hacking, computer viruses, or network intrusions. The latest antivirus programs are used, and access control devices such as intrusion prevention systems are installed and operated.
👥 Minimization and Training of Personal Information Handlers
The Company limits the number of personnel handling personal information to the minimum necessary and emphasizes compliance with laws and internal policies through training and management measures.
🏢 Operation of Personal Information Protection Department
The Company operates a department dedicated to personal information protection, checks compliance with the privacy policy and relevant laws, and promptly resolves and corrects any issues found.
8. Personal Information Protection Officer
The Company designates the following person and department as the Personal Information Protection Officer and department in charge to take overall responsibility for personal information processing and to handle users' complaints and remedies related to personal information:
📋 Personal Information Protection Officer
Developer: Haesung Lee (Stephen Lee)
Department: Personal Information Protection Team
Contact: 0507-1473-1394
Email: farmingai.ceo@gmail.com
9. Reporting and Consulting on Personal Information Infringement
Users may contact the following agencies for relief or consultation regarding personal information infringement. These agencies are government-affiliated, and if you are not satisfied with the Company's own complaint handling or need more detailed help, please contact them:
🏛️ Related Agencies
Personal Information Infringement Report Center: privacy.kisa.or.kr (☎ 118)
Personal Information Dispute Mediation Committee: kopico.go.kr (☎ 1833-6972)
Supreme Prosecutors' Office Cyber Investigation: spo.go.kr (☎ 1301)
National Police Agency Cyber Safety Bureau: cyberbureau.police.go.kr (☎ 182)
10. Duty of Notification
📅 This Privacy Policy is effective as of July 30, 2025.