AD LEFT 160x600
AD RIGHT 160x600
Effective Date: April 1, 2026
The Company collects the following personal information to provide the Service: 1. During registration: - Email address (required) - Nickname (optional) - Profile photo (optional) 2. During social login (Google, Kakao): - Email address, name, profile photo URL (Received from social service providers; passwords are not collected) 3. Information automatically generated/collected during service use: - Service usage records, access logs, IP addresses, last login time 4. Information directly entered by Members: - Bankroll records (venue, game type, buy-in/cash-out, memos, etc.) - Community posts, comments, hand data - Tilt notes (emotion and situation records) - Currency settings
Collected personal information is used for the following purposes: ① Member identification and verification ② Service provision: bankroll management, statistical analysis, AI analysis features ③ Community operation: displaying post/comment authors, processing reports ④ Level/achievement/GP system operation ⑤ Service improvement and new feature development ⑥ Service-related notices and event announcements ⑦ Prevention of fraudulent use and service security
The Company does not, in principle, provide Members' personal information to third parties. However, exceptions apply in the following cases: ① When the Member has given prior consent ② When required by law (such as lawful requests from investigative agencies) The following external services are used for service operation, and minimal information may be transmitted in the process: - Google OAuth: Social login authentication (email, name) - Kakao OAuth: Social login authentication (email, name) - OpenAI: AI analysis features (bankroll statistics summary, hand data — no personally identifiable information included) - Cloudflare R2: Profile photo storage - Resend: Email verification delivery (email address)
① Upon Member withdrawal, personal data is processed as follows: Immediately deleted: - Bankroll records, AI analysis results, level/XP/GP records, tilt notes, bookmarks, like records, notifications Anonymized (instead of deletion): - Email → released for re-registration - Nickname → changed to "Deleted User" - Profile photo → deleted Retained (community integrity): - Posts, comments → author displayed as "Deleted User" ② When retention is required by applicable laws, data is stored for the relevant period: - E-commerce related records: 5 years - Communication records per applicable laws: 3 months
The Company implements the following technical and administrative protection measures: ① Password encryption: PBKDF2 hash algorithm applied ② Transmission encryption: HTTPS (TLS) applied ③ Access control: JWT-based authentication, token expiration and renewal policies ④ Access rights management: Administrator accounts separated following the principle of least privilege ⑤ File upload verification: File size, format, and magic signature validation
① Members may view and modify their personal information at any time. (Settings page) ② Members may request deletion of personal information through account withdrawal at any time. ③ Personal information of children under the age of 14 is not collected.
The Service uses the following analytics tools to analyze user behavior: • Google Analytics 4 (Google LLC, USA): page views, events, device/browser info, approximate location (country/city level), and traffic sources. IP addresses are anonymized. As a consent mechanism is not yet in place, Google Analytics is currently configured to collect cookieless anonymous metrics only. • Microsoft Clarity (Microsoft Corporation, USA): anonymous session recordings, heatmaps, and scroll patterns. Password input fields are automatically masked. Collected data does not include personally identifiable information and is used solely for statistical analysis and service improvement. Trackers are not injected on authentication callbacks (/auth/*) or meta image routes (/og, /share). Opt-out methods: • Block cookies in your browser or use private/incognito mode • Google Analytics opt-out: https://tools.google.com/dlpage/gaoptout • Microsoft Clarity opt-out: enable "Do Not Track" in your browser Authentication tokens are stored in the browser's localStorage, which is an essential technical mechanism for service use.
For inquiries, complaints, or remedies regarding personal information processing, please contact us at: Email: support@pokergoat.xyz For additional personal information infringement reports and consultations, you may contact the following organizations: - Personal Information Infringement Report Center (privacy.kisa.or.kr / 118) - Personal Information Dispute Mediation Committee (www.kopico.go.kr / 1833-6972)