top of page

Privacy Policy

<EIGHT> ('', hereinafter referred to as 'EIGHT STUDIO') establishes and discloses the following Privacy Policy in order to protect the personal information of the information subject in accordance with Article 30 of the Personal Information Protection Act and to promptly and smoothly handle grievances related thereto.

○ This Privacy Policy is effective from December 3, 2021.

Article 1 (Purpose of Processing Personal Information)
<EIGHT> ('', hereinafter referred to as 'EIGHT STUDIO') processes personal information for the following purposes. The personal information processed will not be used for any purpose other than those prescribed here, and if the purpose of use is changed, we will take necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.

1. Member Protection

Personal information is processed for the purpose of identification and authentication and prevention of unauthorized use of services in accordance with the provision of membership services.

2. Provision of Goods or Services

We process personal information for the purpose of providing services and content, and paying and settling fees.

3. Utilization for Marketing and Advertising

Personal information is processed for the purpose of developing new services (products) and providing customized services, providing event and advertising information and participation opportunities, providing services and displaying advertisements according to demographic characteristics, verifying the validity of the service, identifying the frequency of access, or statistics on the use of the service by members.

Article 2 (Processing and Retention Period of Personal Information)

① <EIGHT> processes and retains personal information within the period of personal information retention and use under laws and regulations or within the period of personal information retention and use agreed upon when collecting personal information from the information subject.

② The processing and retention periods of personal information are as follows.

A. Retaining information based on the company's internal policies

▪Records of unauthorized use

Reason for retention: Prevention of unauthorized use

Retention period: 1 year

B. Retaining information under relevant laws and regulations

▪Records on contract or subscription withdrawal etc.

Retention period: 5 years

▪Records on payment and supply of goods etc.

Reason for retention: Act on Consumer Protection in Electronic Commerce

Retention period: 5 years

▪Service use records

Reason for retention: Act on the Protection of Communications Secrets

Retention period: 3 months

C. When the consent of the member is obtained individually

Article 3 (Rights and Obligations of the Information Subject and Legal Representative and How They Are Exercised)

① The information subject may exercise the right to request the viewing, correction, deletion, or suspension of processing of personal information at any time.

② The exercise of rights under Paragraph 1 can be done by in writing, e-mail, and fax in accordance with Article 41 (1) of the Enforcement Decree of the Personal Information Protection Act, and EIGHT will be required to take action without delay.

③ The exercise of the rights under Paragraph 1 may be made through an agent, such as the legal representative of the information subject or a delegated proxy. In this case, a power of attorney in accordance with the form of Attachment No. 11 to the "Notification on Personal Information Processing Method (No. 2020-7)" must be submitted.

④ Requests for access to personal information and suspension of processing may restrict the rights of the information subject pursuant to Article 35 (4) and Article 37 (2) of the Personal Information Protection Act.

⑤ A request for correction and deletion of personal information cannot be made if the personal information is specified as the subject of collection in other laws and regulations.

⑥ EIGHT may verify whether the person who made the request for access, correction, deletion, or suspension of processing in accordance with the rights of the information subject is the person concerned or a legitimate representative.

Article 4 (Personal Information to be Processed)

① <EIGHT> processes the following personal information.

▪When using a Facebook account: public profile (name), email address

▪When using a Google account: public profile (name), email address

▪When using an Apple account: public profile (name), email address

▪The following information may be collected in the process of using the Service

▪Service usage history, access logs, IP information

▪After the first launch of the game, the following information may be collected with the consent of the member when determining illegal behavior.

▪Mobile phone number, MAC information

Article 5 (Destruction of Personal Information)

① When the retention of personal information becomes unnecessary, such as following the expiration of the personal information retention period or the achievement of the purpose of processing, <EIGHT> shall destroy the personal information without delay.

② The procedures and methods for destroying personal information are as follows:

1. Destruction Procedure

<EIGHT> selects personal information that is due to be destroyed and destroys it with the approval of the Personal Information Protection Officer of EIGHT STUDIO.

2. Destruction Method

Personal information printed on paper shall be physically destroyed by shredding or incineration. Personal information stored in the form of electronic files will be deleted using a technical method that does not allow the records to be recovered.

Article 6 (Measures to Ensure the Security of Personal Information)

<EIGHT> takes the following measures to ensure the security of personal information.

1. Employees Handling Personal Information - Training and Minimization

Implementing measures to manage personal information by designating employees who handle personal information, and minimizing the number of people handling personal information only to those in charge.

2. Establishment and Implementation of Internal Management Plan

Establishing and implementing an internal management plan for the secure handling of personal information.

3. Restriction of Access to Personal Information

Taking necessary measures to control access to personal information by granting, changing, and canceling access rights to the database system that processes personal information, and using an intrusion prevention system to control unauthorized access from the outside.

4. Use of Locks for Document Security

Documents containing personal information, auxiliary storage media, etc. are stored in a locked and secure location.

5. Access Control for Unauthorized Persons

Setting up and operating access control procedures for the physical location where personal information is separately stored.

Article 7 (Installation, Operation and Rejection of Automatic Personal Information Collection Devices)

EIGHT does not make use of 'cookies' that periodically store and retrieve the usage information of the information subject.

Article 8 (Personal Information Protection Officer)

① EIGHT is responsible for handling personal information processing, and designates a person in charge of personal information protection as follows to handle complaints and remedy damages related to personal information processing.

Personal Information Protection Officer

Name: Noh Jin


② The information subject may contact the Personal Information Protection Officer for all personal information protection-related inquiries, complaints, and requests for damage compensation that occur while using the service (or business) provided by EIGHT

Article 9 (Remedies for Infringement of Rights)

In order to receive compensation for personal information infringement, the information subject may apply for dispute resolution or consultation with the Personal Information Dispute Mediation Committee and the Korea Internet & Security Agency's Personal Information Infringement Report Center. Please contact the following organizations for other personal information infringement reports and consultations.

1. Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (

2. Personal Information Infringement Reporting Center: (without area code) 118 (

3. Supreme Prosecutors' Office: 1301 (without area code) (

4. National Police Agency: (without area code) 182 (

A person whose rights have been infringed upon by action or inaction taken by the head of a public institution in response to a request pursuant to the provisions of Articles 35 (Access to Personal Information), 36 (Correction and Deletion of Personal Information), and 37 (Suspension of Processing of Personal Information) of the Personal Information Protection Act may file an administrative appeal in accordance with the Administrative Appeals Act.

For more information on administrative appeals, please refer to the website of the Central Administrative Appeals Commission (

Article 10 (Changes to the Privacy Policy)

① This Privacy Policy is effective from December 3, 2021.

bottom of page