Good Words Privacy Policy

Last Updated: 2025-01-04

Glonaris (Legal Business Name: Glonaris, hereinafter "Company") provides the mobile application Good Words (hereinafter "App") and protects user personal information in accordance with applicable laws and app store policies (Apple App Store, Google Play). This policy explains what information we collect, use, store, and share, as well as your rights.

Business Information: Legal Business Name — Glonaris / D-U-N-S Number — 696250960

1. Information We Collect

The App may process the following information for service provision.

  • Account Information (Optional): Basic profile information when using Google Sign-In (name, email address, Google account ID)
  • Device Information: Device model, OS version, app version, language/region settings, device identifiers (e.g., advertising ID or installation ID)
  • Usage Information: App feature usage records, screen views/clicks and other usage events, crash logs and performance data
  • Notification Token: Device push token (FCM/APNs) for push notification delivery
  • Media/Content (Optional): Images/screenshots that users voluntarily upload or choose to share
  • Audio Playback Information (Optional): Content audio playback status (position, duration, etc.) — may be aggregated in non-identifiable form
  • Local Storage: App settings, cache data (encrypted and stored securely on device)

Note: We do not collect microphone or precise location data. Notification and photo access permissions are only requested when using related features.

2. How We Use Your Information

  • User authentication and account linking (when using Google Sign-In)
  • Core feature provision (text/content display, audio playback, sharing)
  • Service quality improvement (error analysis, performance enhancement, usability analysis)
  • Announcements and service-related notifications (optional)
  • Legal compliance and dispute resolution

3. Third-Party Services

We may process data with the following service providers.

  • Firebase (Analytics, Auth, Cloud Messaging): Usage analysis, authentication, push token management — Provider: Google LLC
  • Google Sign-In: Social login — Provider: Google LLC
  • Sentry: App crash/performance monitoring — Provider: Sentry, Inc.
  • Mixpanel: User behavior analysis and event analytics for service improvement — Provider: Mixpanel, Inc.
  • Google AdMob: Personalized advertising and ad performance measurement — Provider: Google LLC
  • RevenueCat: In-app purchase management and subscription analytics — Provider: RevenueCat, Inc.

Only the minimum information necessary for service operation is transmitted to these providers, and information is protected with industry-standard security during transmission and storage. We do not sell personal information except as required by law or with user consent.

4. App Tracking Transparency (ATT)

On iOS 14.5 and later, the App requests your explicit consent before using the advertising identifier (IDFA) in accordance with Apple's App Tracking Transparency (ATT) policy.

  • If you allow tracking: We use the advertising identifier to deliver personalized ads based on your interests, providing more relevant advertising content.
  • If you deny tracking: Non-personalized, general ads will be displayed. The advertising identifier will not be collected or shared with third-party ad networks.
  • Changing your settings: You can change your tracking permission at any time in iOS Settings > Privacy & Security > Tracking.

On Android, the Google Advertising ID may be used for advertising purposes. You can disable ad personalization in your device settings.

5. Data Retention

  • Account Information: Until account deletion or purpose fulfillment, in accordance with applicable laws
  • Usage/Analytics Data: Aggregated and anonymized for statistical/analytical purposes
  • Crash/Log Data: Deleted within a reasonable period after problem analysis is complete
  • Push Tokens: Updated or deleted upon cancellation, reinstallation, or token rotation
  • Local Storage Data: Can be manually reset/deleted by users within the app

6. Your Rights

You have the following rights regarding your personal information.

  • Access/Portability: Request to view and receive a copy of your data
  • Correction/Deletion: Request correction of inaccurate information or deletion of unnecessary information
  • Restriction/Objection: Request restriction or object to certain processing purposes
  • Withdraw Consent: Withdraw optional consents such as marketing/notifications

You can exercise these rights through in-app settings or by contacting us at the address below. Additional information may be requested for identity verification.

7. Security Measures

  • Encryption during transmission (HTTPS/TLS) and at rest
  • Access control and principle of least privilege
  • Regular updates and vulnerability assessments for key libraries

8. Children's Privacy

This App is not intended for children under 13 years of age (or the applicable age in your jurisdiction), and we do not knowingly collect personal information from children. If you believe that children's data has been collected, please contact us and we will take prompt action.

9. International Data Transfer

We may use global infrastructure (Firebase, Sentry, etc.), and personal information may be transferred internationally in this process. In such cases, we implement appropriate safeguards in accordance with applicable laws.

10. Data Retention and Deletion (Summary)

  • You can reset cache and local data in app settings.
  • Account deletion and data erasure requests are accepted through our contact information.
  • Analytics data is aggregated and stored in non-identifiable form.

11. Policy Changes

This policy may be updated due to changes in applicable laws or services. Significant changes will be announced through in-app notifications and this page.

12. GDPR and CCPA Compliance

We respect the European Union General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA), and guarantee the following rights to users subject to these laws.

GDPR (EU/EEA Residents)

  • Right of Access: Request a copy of personal data being processed
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure (Right to be Forgotten): Request deletion of personal data in certain circumstances
  • Right to Restriction: Request restriction of processing
  • Right to Data Portability: Receive data in a structured format
  • Right to Object: Object to processing based on legitimate interests

CCPA (California Residents)

  • Right to Know: Verify categories of personal information collected, used, and disclosed
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: Opt out of the sale of personal information (we do not sell personal information)
  • Right to Non-Discrimination: No discrimination for exercising these rights

To exercise these rights, please contact us using the information below. Processing may take up to 30 days (GDPR) or 45 days (CCPA).

13. Contact Us

  • Email: hello@glonaris.com
  • Address: 123 Innovation Street, Gangnam-gu, Seoul 06234, South Korea

[Korean Version Available / 한국어 버전]

For the Korean version of this Privacy Policy, please visit Good Words 개인정보 처리방침.