Privacy Policy

1. Information We Collect

We collect the following categories of information when you use the Service:

1.1 Information You Provide

• Email address (required) - to deliver your reading results and communicate with you
• Name (optional) - to personalize your reading
• Gender (required) - used in saju calculation methodology
• Birth date (required) - used to calculate your Four Pillars
• Birth hour (optional) - provides more precise readings when available
• Partner birth data (optional) - birth date, birth hour, and gender provided for compatibility readings
• Subscription preferences (optional) - preferences for features such as daily fortune notifications or marketing communications

1.2 Information Collected Automatically

When you visit or interact with the Service, we may automatically collect:

• IP address - for rate limiting, security, and fraud prevention
• Device and browser information - device type, operating system, browser type and version, screen resolution, and language preferences
• Usage data - pages viewed, reading interactions, time spent on pages, referral URLs, and navigation patterns

We do not collect payment card information directly. All payment processing is handled by PayPal.

2. How We Use Your Information

We use your personal information to:

• Generate your personalized saju reading
• Deliver reading results to your email
• Process your payment through PayPal
• Provide customer support and respond to your requests
• Improve our Service, reading quality, and user experience
• Enforce rate limits, prevent abuse, and protect against fraud
• Analyze usage patterns to understand how our Service is used and to develop new features
• Send promotional or marketing communications, if you have opted in (see Section 5)
• Comply with legal obligations

We do not sell your personal information to third parties. We do not use your data for third-party advertising purposes.

3. Data Minimization

We collect only the minimum data necessary to provide our Service. Birth data and gender are collected solely because they are required inputs for saju calculations. Optional fields are clearly marked, and you are never required to provide more information than is needed for your selected reading type.

4. AI and Algorithm Disclosure

SajuCast uses algorithmic calculations based on traditional Korean saju methodology to generate readings. These calculations follow established rules of the Four Pillars system (heavenly stems, earthly branches, five elements, and their interactions). No artificial intelligence models or machine learning systems process your personal data to make decisions about you. Your reading results are determined by deterministic calculations rooted in traditional methodology.

5. Marketing Communications

We may send you promotional emails, newsletters, or notifications about new features, reading types, or special offers if you explicitly opt in to receive such communications. You can unsubscribe at any time by clicking the "unsubscribe" link included in every marketing email or by contacting us directly. Opting out of marketing communications does not affect transactional emails related to your purchases (such as reading delivery or purchase confirmations).

6. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or another jurisdiction that requires a legal basis for processing personal data, we rely on the following:

• Contract performance - processing your birth data and email is necessary to deliver the reading you purchased
• Legitimate interest - service improvement, usage analytics, fraud prevention, rate limiting, and ensuring the security of our Service
• Consent - marketing emails, optional features, and any non-essential data processing where we request your explicit agreement
• Legal obligation - where we are required by law to process or retain your data

You may withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

7. Payment Processing

All payments are processed securely through PayPal. We do not store, process, or have access to your credit card numbers, bank account details, or other financial information. PayPal's handling of your payment data is governed by PayPal's Privacy Policy.

8. Data Storage and Security

Your data is stored on cloud infrastructure provided by Vercel (hosting) and Neon (database), both located in the United States. All data is encrypted in transit using TLS/SSL. We implement reasonable technical and organizational measures to protect your personal information against unauthorized access, alteration, or destruction. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

9. Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify affected users within 72 hours of discovering the breach, as required by the GDPR and other applicable data protection laws. Notification will be sent to the email address associated with your reading. We will also notify the relevant supervisory authority where required by law.

10. Third-Party Services & Cross-Border Data Transfers

Under 개인정보 보호법 (PIPA) Article 28-8, we disclose every overseas recipient of your personal data, what we transfer, why, how long they retain it, and the legal basis. All recipients process your data under their own privacy policies in addition to ours.

We add new recipients only after updating this policy. If any category of data transferred or purpose materially changes, we will notify you by email and through this page before the change takes effect.

11. Analytics

We may use analytics services such as Google Analytics to understand how our Service is used. These services may collect anonymized or pseudonymized usage data, including pages visited, time spent on pages, referral sources, and general geographic location (derived from IP address). This data helps us improve the Service and understand user behavior. Where required by law, we will obtain your consent before enabling analytics tracking.

12. Cookies and Local Storage

We use the following cookies and browser storage:

Strictly necessary

• site-auth - an authentication cookie used for site access during preview periods
• sj_consent - records your cookie preference so we do not show the banner again for 180 days
• sessionStorage - temporary browser storage for UI state, cleared when you close the tab

Analytics & marketing (consent-gated in regulated regions)

If you are located in the European Economic Area, the United Kingdom, or California, these cookies are only loaded after you click Accept on our consent banner. Outside those regions they load by default under Consent Mode v2 and you may opt out via the Privacy Policy link in the footer.

• Google Tag Manager - loads our analytics and marketing tags in a consent-aware container
• Google Analytics 4 (_ga, _gid) - aggregate usage analytics and conversion measurement; supports Consent Mode v2 modeling when you decline
• Meta Pixel (_fbp) - measures conversions from Facebook and Instagram ads and helps us reach similar audiences
• Vercel Analytics - cookieless page view counts and Core Web Vitals for performance monitoring

We do not use third-party advertising cookies from any networks other than the ones listed above. You can withdraw consent at any time by clearing the sj_consent cookie and reloading the page, after which the banner will reappear.

13. Data Retention

Your reading data is stored indefinitely so you can access it at any time via your unique reading URL. If you would like your data deleted, you may request deletion at any time by contacting us (see Section 18). We will process deletion requests within 30 days. Upon deletion, your reading URL will no longer function and all associated personal data will be permanently removed from our systems.

14. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

All Users

• Request access to your personal data
• Request correction of inaccurate data
• Request deletion of your data

European Economic Area (GDPR)

If you are in the EEA, you additionally have the right to:

• Data portability - receive your data in a structured format
• Restrict or object to processing of your personal data
• Withdraw consent at any time where processing is based on consent
• Lodge a complaint with your local data protection authority

California Residents (CCPA/CPRA)

If you are a California resident, you have the right to:

• Know what personal information we collect and how it is used
• Request deletion of your personal information
• Opt out of the sale of personal information (we do not sell your data)
• Non-discrimination for exercising your privacy rights

Korean Residents

Under the Korean Personal Information Protection Act (PIPA), you have the right to access, correct, delete, and suspend processing of your personal information. You may also request information about our data processing practices.

15. Children's Privacy

SajuCast is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected data from a child under 13, we will delete it promptly. If you believe a child has provided us with personal information, please contact us.

16. International Data Transfers

Your personal data is processed and stored in the United States through our hosting provider (Vercel) and database provider (Neon). By using our Service, you acknowledge that your data will be transferred to and processed in the United States, which may have different data protection laws than your country of residence. We take steps to ensure your data is treated securely and in accordance with this Privacy Policy, including implementing appropriate safeguards for cross-border data transfers where required by applicable law.

17. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy. For material changes, we will provide notice on the website or by email where possible.

18. Contact Us

For privacy-related requests, questions, or concerns, please contact us at:

Email: support@sajucast.com

SEMAK

Republic of Korea, Seoul, Seocho-gu, Dongsan-ro 6-Gil 41-5