Keyfred keyfred

Privacy Policy

Effective Date
February 20, 2026
Controller
Keyfred Co., Ltd. (CEO: Yonghee Lee)
Contact
contact@keyfred.com
Address
11F, 100, Cheonggyecheon-ro, Jung-gu, Seoul, Republic of Korea (ZIP: 04542)

Section 1. Personal Data We Process

  • Stored (Required): Email address (account identification/login)
  • Stored (Optional): None
  • Stored (Automatically collected): None
  • Note (May be processed transiently): Text you submit for online AI processing (which may contain personal data depending on what you type). The Company does not store this raw text on Company servers ("Company-side storage: 0 days").

Section 2. Purposes

We process your email address to:
  • Create and manage your account
  • Send important notices (policy/security)
  • Handle customer support and dispute resolution

Section 3. Retention

  • Email address: retained until you delete your account, then deleted without undue delay.
  • If retention is required by applicable law, we retain it for the legally required period and then delete it.

Section 4. Text Submitted for Online AI Processing

  • Your typed text is transmitted/processed only when you explicitly request AI processing (e.g., by clicking an AI button) or have enabled auto-complete/word suggestion in Settings, and the online AI option is enabled in Settings.
  • Company-side storage: 0 days for raw text (temporary processing/transmission may occur to fulfill a request).
  • Blocking rules (secure input / non-text areas): In secure input contexts or non-text UI areas (as designated by the OS/host app), the Services may disable AI features and block server transmission for user protection.

Section 5. Sharing

We do not share your stored personal data (email address) with third parties except where required by law or valid legal process. If you use online AI features, the text you submit may be transmitted to third-party AI providers for processing (including cross-border transfers), as described below.

Section 6. Processors (Domestic/International)

We may use the following processors for service delivery, subject to applicable law and appropriate safeguards:
  • AWS (Korea Region)
    Scope: Infrastructure operation and data processing for service delivery
  • Third-party AI providers (may involve international processing): OpenAI / Google (Gemini)
    Scope: Processing of user-submitted text to provide AI features (correction/rewriting/translation/recommendations), and abuse prevention/quality control (within provider policy scope)

Section 7. Cross-border Transfers (When Using Online AI Features)

When you use online AI features, the text you submit may contain personal data and may be transferred and processed outside Korea.

1) Data categories transferred
  • Text you submit for AI processing (may contain personal data)
  • Minimal metadata necessary for request handling (e.g., request time; minimal information for billing/abuse prevention)
2) Countries, timing, and method
  • Countries: Countries where the providers' global infrastructure operates (including the United States)
  • Timing: At the time you request online AI processing
  • Method: Encrypted transmission over secure network protocols (e.g., TLS/HTTPS APIs)
  • Note: The Gemini Developer API may route requests through a global pool, so actual processing locations may vary.
3) Recipients (name/contact)
  • OpenAI (privacy rights/requests): dsar@openai.com
  • Google (privacy resources/contact): policies.google.com/privacy
4) Purpose and retention by recipients
  • Purpose: Provide AI features; security/abuse prevention; quality control; legal compliance (within provider policies and contractual scope)
  • Retention: Minimum period according to provider policies/contractual terms
    Example: OpenAI may retain abuse monitoring logs for up to 30 days by default.
    For Gemini, data use/retention may vary depending on service configuration; the Company uses the Paid Tier, under which user input data is not used for model training and is retained only for the minimum period necessary for security and quality management.
5) How to refuse & effect of refusal
  • You may refuse cross-border transfers by disabling the online AI (network transmission) option in Settings.
  • If you refuse, online AI features (e.g., correction/rewriting/translation/auto-complete/word suggestions) will be unavailable.

Section 8. Your Rights

You may request access, correction, deletion, or restriction of processing via contact@keyfred.com, as permitted by applicable law.

Section 9. Deletion

We delete personal data without undue delay when retention is no longer necessary, using methods designed to prevent recovery.

Section 10. Children (Under 14)

The Services are for users 14 and older; we do not permit users under 14. We do not knowingly collect personal data from children under 14. If we learn a user is under 14, we will restrict the account and delete the stored personal data (email address) without undue delay, unless retention is required by law.

If you have any questions about this Privacy Policy, please contact us at contact@keyfred.com