Privacy Policy
This page provides Squarelight Inc.'s publicly available privacy policy for convenient reference. For the latest original version, please use the Notion link in the header.
Squarelight Inc. (hereinafter "the Company") establishes and discloses the following privacy policy in accordance with Article 30 of the Personal Information Protection Act (PIPA) of the Republic of Korea, in order to protect the personal information of data subjects and to handle related grievances promptly and smoothly.
Article 1 (Purpose of Processing Personal Information)
The Company processes personal information for the following purposes. The personal information being processed shall not be used for purposes other than those listed below, and if the purpose of use changes, necessary measures such as obtaining separate consent shall be taken in accordance with Article 18 of PIPA.
- Member registration and management: Confirmation of membership intent, identification and authentication for membership services, maintenance and management of member status, prevention of service misuse
- Service provision: Provision of AI-based code generation service (SquareCode) and related features, management of service usage records
- Grievance handling: Verification of complainant identity, confirmation of complaints, contact and notification for fact-finding, notification of processing results
Article 2 (Categories of Personal Information Processed and Collection Methods)
The Company processes the following categories of personal information.
| Category | Items Collected | Collection Method |
|---|---|---|
| Member registration (required) | Email address, password, name (nickname) | Directly entered by user during registration |
| Automatically generated during service use | Service usage records, access logs, access IP information | Automatically collected during service use |
Article 3 (Processing and Retention Period of Personal Information)
The Company processes and retains personal information within the retention and use period prescribed by law or the retention and use period agreed upon when collecting personal information from the data subject.
| Category | Retention Period | Legal Basis |
|---|---|---|
| Member registration information | Until membership withdrawal | Data subject consent |
Article 4 (Provision of Personal Information to Third Parties)
The Company processes personal information only within the scope specified in Article 1, and provides personal information to third parties only in cases falling under Articles 17 and 18 of PIPA, such as consent from the data subject or special provisions of law.
Currently, no personal information is being provided to third parties.
Article 5 (Entrustment of Personal Information Processing)
The Company entrusts personal information processing as follows for smooth service provision.
| Trustee | Entrusted Tasks |
|---|---|
| Railway | Cloud server operation (application hosting) |
| Supabase | Database operation and data storage |
| Vercel | Web application hosting and deployment |
If the content of entrusted tasks or the trustee changes, it will be disclosed without delay through this privacy policy.
Article 6 (Rights and Obligations of Data Subjects and Methods of Exercise)
Data subjects may exercise the following rights related to personal information protection against the Company at any time.
- Request to access personal information
- Request to correct errors, if any
- Request for deletion
- Request to suspend processing
How to Exercise Rights
The above rights may be exercised by sending an email to the contact below, and the Company will take action without delay.
Email: info@squarelight.ai
Processing deadline: Response within 10 days from the date of request
All requests including membership withdrawal, personal information deletion, access, correction, and processing suspension will be processed after identity verification upon receipt at the above email address.
Article 7 (Destruction of Personal Information)
The Company destroys personal information without delay when it becomes unnecessary, such as upon expiration of the retention period or achievement of the processing purpose.
- Electronic files: Permanently deleted using methods that prevent recovery
- Records, printed materials, documents: Shredded or incinerated
Article 8 (Measures to Ensure Security of Personal Information)
The Company takes the following measures to ensure the security of personal information.
- Access rights management: Limiting personnel handling personal information to the minimum necessary
- Encryption: Important information such as passwords is encrypted for storage and management
- Security program operation: Operating security systems against hacking and other threats
- Access log retention: Retaining and managing access logs to personal information processing systems for at least 6 months
Article 9 (Personal Information Protection Officer)
The Company designates the following Personal Information Protection Officer to oversee personal information processing and to handle complaints and damage relief related to personal information processing by data subjects.
| Category | Details |
|---|---|
| Position | CEO |
| Name | Yunho Maeng |
| Contact | info@squarelight.ai |
Article 10 (Remedies for Rights Infringement)
Data subjects may apply for dispute resolution or consultation with the following organizations to receive remedies for personal information infringement.
| Organization | Contact | Website |
|---|---|---|
| Personal Information Dispute Mediation Committee | 1833-6972 | www.kopico.go.kr |
| Personal Information Infringement Report Center | 118 | privacy.kisa.or.kr |
| Supreme Prosecutors' Office Cyber Investigation Division | 1301 | www.spo.go.kr |
| National Police Agency Cyber Bureau | 182 | ecrm.cyber.go.kr |
Article 11 (Changes to This Privacy Policy)
This privacy policy is effective from March 30, 2026. If there are any changes, they will be announced through this page at least 7 days before implementation.