Privacy Policy for Slowly Slimmer
Last updated: June 2024
Introduction
Slowly Slimmer (“we”, “us”, “our”) offers guidance on dieting, weight loss, product and service reviews, personal stories, and researched insights to help individuals make informed decisions about health and fitness (the “Service”). We are committed to protecting your privacy and complying with South Korea’s Personal Information Protection Act (PIPA).
1. Scope & Definitions
- “Personal Information” refers to data that identifies you directly or may identify you when combined with other data.
- This policy applies to information collected via our website at slowlyslimmer.com and related online services.
2. Information We Collect
We collect the following categories of information when you voluntarily provide it or via analytics tools:
- Personal Identification Data: name, email address, phone number, and any content you share (e.g., photos, videos, audio).
- Communication Data: inquiries via contact forms, email, social media, or messaging. If signing in via social media, we may collect your profile ID and picture (with your consent).
- User Data: content you post, comments, stories, and reviews.
- Technical Data: IP address, browser type, device information, pages visited, session duration, navigation paths, cookies, time zone—collected via Google Analytics.
- Customer Data: if you subscribe, we may collect billing details (name, address, email), but only partial card information (e.g., last digits). Payments are processed via PayPal and Stripe; we don’t store full payment data.
- Marketing Data: communication preferences, opt‑ins, cookie tracking sources for promotional purposes.
3. Purpose & Legal Grounds for Processing
We process your information to:
- Provide Services: fulfilling subscriptions, sending requested materials.
Legal basis: Contract performance. - Communicate: replying to your messages or inquiries.
Legal basis: Legitimate interests. - Website Operations & Analytics: improve service quality and security.
Legal basis: Legitimate interests. - Marketing & Advertising: with your consent, we may use cookies and tracking pixels (e.g., Facebook pixels) for retargeting and promotions.
Legal basis: Consent or legitimate interests. - Automated Processing: such as tracking email opens to tailor future communication.
Legal basis: Legitimate interests.
4. Consent Requirements under PIPA
In line with PIPA, any collection of personal or sensitive data requires clear, informed, and affirmative consent—cookies or analytics tools (like Google Analytics) must not be assumed acceptable unless users actively opt in www.pipc.go.kr+1.
5. Sensitive Data
We do not intentionally collect sensitive information, such as health status, beliefs, political views, ethnicity, or sexual orientation. If inadvertently disclosed, we won’t retain it knowingly.
6. Minors’ Privacy
Our services are intended for individuals aged 18 and older. If a minor accesses our Service under parental supervision, the parent should manage the account. If notified of data from a minor, we will take reasonable steps to delete it.
7. Reviews & Testimonials
By submitting content like reviews or videos (e.g., YouTube clips), you grant us permission to use your name, likeness, website link, and date of service in marketing. Use is based on your consent, which you may withdraw anytime.
8. Third-Party Data Collection
We may receive analytics or advertising data from third parties like Google. All are governed under this policy.
9. Cookies & Tracking Tools
We use cookies and tracking tools for functional, analytical, and marketing purposes. Users can opt in or out—this is not automatic. Details and opt-out mechanisms are furnished separately (e.g., cookie banner).
10. Use & Disclosure of Personal Data
Your data may be used to:
- Verify identity, provide services, process inquiries/purchases.
- Customize your experience and send relevant information.
- Run promotions, store feedback, and improve offerings.
We may share such data:
- With your consent for marketing purposes.
- With service providers (e.g., payment processors, analytics, hosting), bound to keep data confidential.
- To resolve disputes (e.g., with PayPal or Stripe).
- With legal or governmental bodies if required by law.
11. Security & International Transfers
Our hosting providers and third-party partners (e.g., Google Analytics, PayPal, Stripe) may operate outside South Korea. We ensure appropriate safeguards are in place and obtain your consent for international data transfers when required. We adopt industry-standard security measures including firewalls, encryption, backups, and breach response mechanisms DLA Piper Data ProtectionBreachRxtruendo.com.
12. Data Breach Notification
In the event of a data breach, we will notify affected individuals and the Personal Information Protection Commission (PIPC) within 72 hours, as required under PIPA www.pipc.go.kr+3DLA Piper Data Protection+3truendo.com+3.
13. Data Retention
We retain personal data only as long as needed for its original purpose, or to meet legal or accounting obligations. Anonymized data may be kept indefinitely for research or analytics.
14. Third-Party Links
Our site may link to external resources. These are beyond our control and subject to their own privacy policies.
15. Policy Updates
We may revise this policy. Updates will be posted here, and the new version becomes effective immediately.
16. Your Rights Under PIPA
Under South Korean law, you have rights to:
- Access, correct, delete, or restrict processing of your data.
- Data portability.
- Withdraw consent (if processing is based on consent).
- Lodge a complaint with the PIPC if dissatisfied.
To exercise any of these rights—or if you wish to delete your personal data—contact us at contact@slowlyslimmer.com. Requests are generally processed within one month, unless complex.
17. Contact & DPO
You may reach us at contact@slowlyslimmer.com for any privacy-related concerns.
While appointing a Chief Privacy Officer isn’t mandatory for smaller businesses under PIPA thresholds, we commit to internal accountability and data protection practices in line with the law.