🎉 New Product Launch! Check out our latest ASTRA Cloud solution.

Privacy Policy

Effective Date: October 31, 2022
Last Updated: October 14, 2025

Innofactory, Inc. (“the Company”, “we”, “our”, or “us”) values your privacy and complies with applicable data protection laws, including the Personal Information Protection Act (PIPA) of Korea, the EU General Data Protection Regulation (GDPR), and other international standards.

This Privacy Policy applies to all services provided by Innofactory, Inc., including websites, cloud-based platforms, software applications, and customer support portals (collectively referred to as “the Services”).

1. Purpose of Personal Data Collection

We collect and process personal data for the following purposes:

  • Account Management & Service Provision : To verify identity, manage accounts, deliver services, process payments, and provide customer support.

  • Service Improvement : To analyze usage, diagnose technical issues, enhance performance, and develop new features.

  • Marketing & Communication : To provide newsletters, promotional materials, event invitations, and product updates.

We do not use your personal data for purposes other than those stated above without your consent.

2. Categories and Methods of Data Collection

Data We Collect

  • Required Information: Name, email address, phone number, company name, position, account ID, and password
  • Optional Information: Address, department, industry, job title, and service interests
  • Automatically Collected Data: IP address, log data, browser/OS type, device ID, cookies, and usage activity

Collection Methods

  • Through registration or inquiry forms on our website, applications, or cloud services
  • Via customer inquiries, event participation, or promotional sign-ups
  • Automatically collected during service use

3. Data Retention and Storage Period

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected. However, we may retain certain data for the period required by applicable laws and regulations, such as:

  • Records of contracts or agreements: 5 years
  • Records of payment and supply of goods/services: 5 years
  • Records of customer complaints and dispute resolutions: 3 years
  • Connection logs and service usage data: 3 months

After these periods, data is securely deleted or anonymized.

4. Data Deletion Procedures and Methods

Deletion Procedure

Once the purpose of collection has been fulfilled or the retention period has expired, the data is deleted or transferred to a separate storage system.

Deletion Method

  • Electronic files are permanently deleted using secure erasure technologies.
  • Paper records are shredded or incinerated.

5. User Rights and Choices

Users have the following rights regarding their personal data:

  • Access, correct, or delete personal data
  • Request restriction or object to processing
  • Withdraw consent or delete account information

To exercise these rights, contact us via the email address below.
For users in the European Economic Area (EEA), GDPR rights such as data portability and the right to lodge a complaint apply.

6. Data Security Measures

We implement appropriate technical and organizational safeguards to protect personal data from unauthorized access, loss, or misuse.
These include:

  • Access control and staff training
  • Secure log retention and regular monitoring
  • Security software installation and updates
  • SSL/TLS encryption for data transmission
  • Physical access control to servers and facilities
  • Regular internal security audits

7. Cookies and Similar Technologies

We use cookies and similar technologies to enhance user experience and improve service quality.

  • Cookies store session information and preferences to provide personalized experiences.
  • Users can refuse or delete cookies via browser settings.

8. Cross-Border Data Transfer (if applicable)

We may store or process personal data on servers located outside your country of residence (e.g., AWS or Microsoft Azure).
When transferring data internationally, we ensure appropriate safeguards and obtain consent where required by law.

9. Data Protection Officer (DPO)

We have appointed a Data Protection Officer (DPO) responsible for overseeing data protection compliance and handling inquiries.

For privacy concerns, you may also contact:

10. Updates to This Privacy Policy

This Privacy Policy may be updated periodically to reflect changes in applicable laws, services, or internal practices.
All updates will be announced on our website or service platform prior to implementation.

Last Updated: October 14, 2025