Skip to content
← Home

Privacy Policy

What we collect, why, how long we keep it, and what control you have over it.

Plain English. Effective 2026-05-26.

1. Who we are

GIGASCOPE is operated as a Korean sole proprietorship (개인사업자) by Jaebin Kim, registered as 기가스코프 (GIGASCOPE), business registration number 568-24-02193, based at 42, Hongik-ro 5an-gil, Mapo-gu, Seoul 04039, Republic of Korea. Contact: sincetwentytwo@gmail.com.

We are the “data controller” for the personal data described below. The same individual serves as the personal-information manager (개인정보 보호책임자) under the Korean Personal Information Protection Act (PIPA).

2. What we collect

We minimize collection. The categories we collect are:

  • Email address— collected when you subscribe to the free digest or start a paid subscription. Used to send the digest, billing receipts, and service notices.
  • Subscription tier and status— whether you are on the free digest, charter paid tier, or unsubscribed; the timestamp of state changes.
  • Telegram chat ID — only if you explicitly link a Telegram account at /account. Used to deliver alerts you opted into.
  • Server-side request data— standard web-server access logs: IP address, user-agent, request path, timestamp. Retained for security and rate-limiting; not used for advertising.
  • Payment and billing data— processed by Paddle, our Merchant of Record. We receive only the subscription status, customer identifier, and country (for tax classification). We do not store card numbers, bank details, or full billing addresses.

We do not run third-party advertising trackers. The site uses a privacy-respecting visit counter that stores only an aggregate count per IP per day in our Upstash Redis store.

3. Why we collect (lawful basis)

  • Performance of contract— to deliver the digest, alerts, and paid features you signed up for.
  • Legitimate interest— to operate, secure, and improve the service (rate limiting, anti-abuse, debugging).
  • Consent— for optional features such as Telegram linking and any future marketing emails (none currently sent).
  • Legal obligation— tax record-keeping under Korean law (5-year retention of transactional records).

4. Who we share data with

We share data only with the processors needed to operate the service. We do not sell personal data.

ProcessorPurposeLocation
Paddle.com Market LimitedPayment processing, tax remittance, billing support (Merchant of Record)United Kingdom / United States
Resend, Inc.Transactional email delivery (digest, receipts, alerts)United States
Upstash, Inc.Redis storage for subscriber list, visit counters, dedup flagsUnited States (US-east region)
Vercel, Inc.Web hosting, CDN, serverless function executionUnited States (multi-region)
Telegram Messenger LLPOptional bot alerts (only if you link Telegram)Global infrastructure

Each processor receives only the minimum data needed for its function and is contractually bound to use that data only for service delivery.

5. International data transfer

Our processors are based primarily in the United States. Cross-border transfers from Korea, the EU, and the UK rely on the processors’ standard contractual clauses or equivalent safeguards. If you are located in a jurisdiction with data-localization requirements that cannot be met by US-hosted services, please do not use the paid service.

6. How long we keep data

  • Free subscribers: email + subscription state kept until you unsubscribe. On unsubscribe, the address is removed from the active mailing set within 24 hours; unsubscribe-event logs are retained for one year to comply with anti-spam laws.
  • Paid subscribers: subscription record kept for the duration of the subscription plus 5 years after the last transaction, as required by Korean tax law (전자상거래법 6조, 국세기본법 85조의3).
  • Server access logs: 90 days, then aggregated and discarded.
  • Telegram chat link: kept until you /stop the bot or unsubscribe.

7. Your rights

Depending on your jurisdiction, you have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Delete your data (subject to retention obligations above).
  • Export your data in a portable format.
  • Object to processing based on legitimate interest.
  • Withdraw consent for any processing based on consent.
  • Lodge a complaint with your local data-protection authority (Korea: 개인정보보호위원회; EU: your national DPA; UK: ICO; California: California Privacy Protection Agency).

To exercise any of these, email sincetwentytwo@gmail.com from the address associated with your subscription. We respond within 30 days.

8. Cookies

The site uses no marketing or tracking cookies. Strictly-necessary cookies may be set by our hosting and payment providers for fraud prevention, session continuity, and billing flow.

9. Children

The service is not directed to children. We do not knowingly collect personal data from anyone under 14 (Korea) or under 16 (EU). If you believe we have collected data from a child, email the contact above and we will delete the data.

10. Security

All traffic between you and the service is TLS-encrypted. Subscriber data at rest is stored on Upstash and Vercel infrastructure with encryption at rest. Payment data is never stored on our infrastructure; it lives only with Paddle. Access to production systems is restricted to the operator.

11. Changes to this policy

Material changes will be communicated by email to active subscribers at least 30 days before they take effect. The current version date is shown at the bottom of this page; prior versions are available on request.

12. Contact

For privacy questions, data-subject requests, or complaints: sincetwentytwo@gmail.com. Mark the subject line “Privacy request” for fastest handling.

Last updated: 2026-05-26