Privacy Policy


Article 1 : Information to be collected and method of collection

(1) Personal information to be collected

  • Information provided by the users
Title of ServiceInformation to be collected
WEMIX WalletEmail address, WEMIX Wallet ID/address, Social network ID, One-way hashed password, Encrypted key
Personalized AdvertisingWebsite visit history of the user, Application usage history of the user, Search history of the user, Advertising ID
GameSNS ID, Email address, WEMIX Wallet address, Nickname, Equipment information
WEMIX AuctionUser name, Email address, WEMIX Wallet ID/Address, Phone number
WEMIX Support CenterEmail address, Device OS, Inquiry type, WEMIX Wallet ID, WEMIX Wallet address(Optional), personal information that user submitted for customer service(Optional)
  • Information collected during service usage of users
ListItems to be collected (examples)
Equipment informationEquipment identifier, operation system, hardware version, equipment set-up, type and set-up of browser, usage information of website or application and telephone number
Log informationIP address, log data, usage time, search word input by users, internet protocol address, cookie and web beacon
Other informationPreference, advertisement environment, visited pages regarding service usage of users.
  • Optional information
Purpose of CollectionItems to be collected (examples)
Provision of customized adContents and result of marketing activities and event participation
Delivery of urgent noticeInformation provided by the users regarding the management of other agreements, maintenance, implementation and event participation.
MarketingPreference, advertisement environment, visited pages regarding service usage of users.

(2) Method of collection

  • Webpage, written form, fax, telephone calling, emailing, tools for collection of created information
  • Provided by partner companies

(3) Assignment of collected personal information

Name of subcontractorsDescription of assigned works (services)
Wemade Co., Ltd.Operation management, agency
Appsflyer Ltd., Google LLCProvision of customized advertisement based on user interests, user analysis
Amazon Web Services, Naver Cloud Platform, SSangYong Information & CommunicationsCloud service, including user data storage
Zendesk, Inc. , Glohow Holdings Pte. Ltd. , Qroad Inc.Customer service

(4) Details of provision of personal information to 3rd Party

Recipient of informationPurpose of use of recipientItems to be providedPeriod of retention and use of recipient

(5) Period of retention and use of personal information

Relevant laws and regulationsPersonal InformationRetention period
The Act on Consumer Protection in Electronic CommerceRecord regarding contract or withdrawal of subscription5 years
Record on payment and supply of goods5 years
Record on consumer complaint or dispute treatment3 years
Record on labeling and advertising6 months
The Act on Use and Protection of Credit InformationRecord on collection/process, and use of credit information3 years
The Protection of Communications Secrets ActLog record of users such as internet/data detecting the place of user connection3 months

(6) Procedure and method of destruction of personal information

(7) Technical, managerial and physical measures for protection of personal information

Technical measures
  • Utilize security servers for transmitting encryption of personal information
  • Take measures of encryption for confidential information
  • Install and operate vaccine software
  • Install and operate access control devices and equipments
  • Establish and execute internal management plan
Managerial measures
  • Appoint a staff responsible for protecting personal information
  • Provide education and training for staffs treating personal information
  • Establish and execute internal management plan
  • Establish rules for writing passwords which is hard to be estimated
  • Ensure safe storage of record of access to personal information processing system
  • Classify the level of authority to access to personal information processing system
Physical measures
  • Establish and operate the procedure for access control for the facilities for storing personal information
  • Store documents and external storage device that are containing personal information in safe places that have locking device

Article 2 : Use of collected information

  • User management and identification
  • To detect and deter unauthorized or fraudulent use of or abuse of the Service
  • Performance of contract, service fee payment and service fee settlement regarding provision of services demanded by the users
  • Improvement of existing services and development of new services
  • Making notice of function of company sites or applications or matters on policy amendment
  • To make statistics on member’s service usage, to provide services and place advertisements based on statistical characteristics
  • To provide information on promotional events as well as opportunity to participate
  • To comply with applicable laws or legal obligation
  • When necessary for uninterrupted provision of Service

Article 3 : Disclosure of collected information

1) When the Company discloses the information with its affiliates, partners and service providers;

  • when the Company's affiliates, partners and service providers carry out services such as bill payment, execution of orders, products delivery and dispute resolution (including disputes on payment and delivery) for and on behalf of the Company

2) When the users consent to disclose in advance;

  • when the user selects to be provided by the information of products and services of certain companies by sharing his or her personal information with those companies
  • when the user selects to allow his or her personal information to be shared with the sites or platform of other companies such as social networking sites
  • other cases where the user gives prior consent for sharing his or her personal information

3) When disclosure is required by the laws:

  • if required to be disclosed by the laws and regulations; or
  • if required to be disclosed by the investigative agencies for detecting crimes in accordance with the procedure and method as prescribed in the laws and regulations

Article 4 : Cookies, Beacons and Similar Technologies

CategoryReasons for using cookies and additional information
Strictly Necessary Cookies
  • Check whether login is made on website
  • Check whether the users are connected with correct services of the website of the Company while the Company changes the way of operating its website
  • Connect the users with certain application or server of the services
Performance Cookies
  • Web analysis: provide statistical data on the ways of using website
  • Advertisement response fee: check the effect of advertisement of the Company
  • Tracing affiliated : provides anonymous feedback to affiliated companies regarding one of the visitors of the Company visiting the website of the affiliated companies.
  • Management of error: measure an error which may occur so as to give a help for improving website
Functionality Cookies
  • Memorize set-ups applied such as layout, text size, basic set-up and colors
  • Memorize when the customer responds to a survey conducted by the Company
Targeting cookies
  • carry out PR targeting users in other websites by connecting through social networks and these networks using the information of users' visit
  • provide the information of users' visit to advertisement agencies so that the agencies can suggest advertisements that may attract the interest of the users

Article 5 : User’s right

  • exercise right to access personal information;
  • make corrections or deletion;
  • make temporary suspension of treatment of personal information; or
  • request the withdrawal of their prior consent

Article 6 : Security

1) Encryption of personal information

  • Transmit users' personal information by using encrypted communication zone
  • Store important information after encryption of such information.

2) Counter-measures against hacking

  • Install a system in the area to which external access is controlled so as to prevent leakage or damage of users' personal information by hacking or computer virus.

3) Establish and execute internal management plan

4) Install and operate access control system

5) Take measures to prevent forging or alteration of access record

Article 7 : Protection of personal information of Minor

Article 8 : Modification of Privacy Protection Policy

Article 9 : Lawful processing of personal information under PDPA, GDPR

1) Processing personal information by the Company shall be lawful only if and to the extent that at least one of the following applies :

  1. 1. A user has given consent to the processing of his or her personal information.
  2. 2. Processing is necessary for the performance of a contract to which a user is party or provision of Service, or in order to take steps at the request of a user prior to entering into a contract or use of Service :
    • Member management, identification, etc.
    • Performance of a contract in relation to providing the services required by users, payment and settlement of fees or provision of Service, etc.
  3. 3. Processing is necessary for compliance with a legal obligation to which the Company is subject
    • Compliance with relevant law, regulations, legal proceedings, requests by the government
  4. 4. Processing is necessary in order to protect the vital interests of users, or other natural persons
    • Detection of, prevention of, and response to fraud, abuse, security risks, and technical issues that may harm users or other natural persons
  5. 5. Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Company
  6. 6. Processing is necessary for the purposes of the legitimate interests pursued by the Company or by a third party (except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a minor)

2) User’s right under GDPR

  • The right to access to personal information :
    The users or their legal representatives may access the information and check the records of the collection, use and sharing of the information under the applicable law.
  • The right to rectification :
    The users or their legal representatives may request to correct inaccurate or incomplete information.
  • The right to erasure:
    The users or their legal representatives may request the deletion of the information after the achievement of their purpose and the withdrawal of their consent.
  • The right to restriction of processing :
    The users or their legal representatives may make temporary suspension of treatment of personal information in case of the disputes over the accuracy of information and the legality of information treatment, or if necessary to retain the information.
  • The right to data portability :
    The users or their legal representatives may request to provide or transfer the information.
  • The right to object :
    The users or their legal representatives may suspend the treatment of personal information if the information is used for the purpose of direct marketing, reasonable interests, the exercise of official duties and authority, and research and statistics.
  • The right to automated individual decision-making, including profiling :
    The users or their legal representatives may request to cease the automated treatment of personal information, including profiling, which has critical impact or cause legal effect on them.
    If, in order to exercise the above rights, you, as an user, use the menu of 'edit member information” of service or contact the Company by sending a document or emails, or using telephone to the Company (or person in charge of management of personal information or a deputy), the Company will take measures without delay: Provided that the Company may reject the request of you only to the extent that there exists either proper cause as prescribed in the laws or equivalent cause.

3) Data transfer to other countries

4) 3rd party’s sites and services

5) Guide for users residing in California

Article 10 : Contact Information of Company

  • Company Name : WEMIX PTE. LTD.
  • Address : 18 Cross Street, #02-101, Singapore 048423 - Tel. : +65.3174.0791
  • email :
Revision History
VersionRevision HistoryNotification DateEnforcement Date
G1.0.0WEMIX Privacy Policy DesignationOct 12, 2020Oct 12, 2020
G2.0.0Added new service(BirdTornado), term changeDec 29, 2020Dec 29, 2020
G2.0.1Added new service(CrypTornado) and subcontractorsMay 31, 2021May 31, 2021
G2.0.2Added new service(CrypTornado) and subcontractorsMay 31, 2021May 31, 2021
G2.0.3Changed DPO and telephone number, etc.Nov 24, 2021Nov 24, 2021
G2.0.4Changed Name of Company, etc.May 20, 2022May 20, 2022
G2.0.5Added new service(WEMIX Play, WEMIX 3.0) and designated agent in the EU/UK, etc.July 1, 2022July 1, 2022