Privacy Policy

DreamDepth ("we", "us", "our") operates dreamdepth.net, a Jungian dream psychology platform. This Privacy Policy explains what personal data we collect, why we collect it, how long we keep it, and your rights. This policy applies to all users regardless of location, and is designed to comply with Korea's Personal Information Protection Act (PIPA) and the EU General Data Protection Regulation (GDPR).

We collect only the minimum data necessary to provide our service: • Dream content (text you enter for analysis) — used solely to generate your psychological interpretation • Email address — collected only when you choose to receive your results by email or when you purchase credits • Payment transaction identifiers — Polar order ID or KakaoPay transaction ID (TID), used to verify payment and unlock your results • Payment method label — e.g., "kakaopay" or "polar", to identify how you paid • Session token — a randomly generated UUID that identifies your analysis session (not linked to any account) We do NOT collect: names, phone numbers, IP addresses (beyond what Cloudflare processes transparently), or any sensitive categories of personal data beyond dream content.

• Dream content → Generate your 5-card Jungian analysis • Email address → Send your result URL after payment; send OTP for credit verification • Transaction identifiers → Verify payment completion and unlock paid cards • Session token → Allow you to return to your results without an account Legal basis (GDPR Art. 6): Contract performance (providing the analysis service you requested) and legitimate interests (preventing fraud, maintaining service integrity).

We apply tiered retention periods based on your engagement: • Free session (no email, no payment): deleted after 30 days • Session with email provided: deleted after 90 days • Paid session (cards unlocked): deleted after 365 days (1 year) • Payment transaction records: retained for 5 years per the Korean Act on Consumer Protection in Electronic Commerce These periods are automatically enforced by our database cleanup system. After expiry, data is permanently deleted and cannot be recovered.

We share data only with the processors necessary to run the service: | Provider | Purpose | Location | Supabase | Database hosting | USA (SOC 2 certified) Cloudflare Workers | Application hosting & CDN | Global Polar | Payment processing (non-KR users) | USA KakaoPay | Payment processing (Korean users) | Korea Resend | Transactional email delivery | USA Google AI (Gemini) | Dream analysis generation | USA Google AdSense | Advertising | USA None of these providers are permitted to use your data for their own purposes beyond providing their service to us.

Under GDPR and PIPA, you have the right to: • Access — request a copy of personal data we hold about you • Rectification — request correction of inaccurate data • Erasure ("Right to be Forgotten") — request deletion of your session data • Data portability — receive your data in a machine-readable format • Objection — object to processing based on legitimate interests • Complaint — lodge a complaint with your national data protection authority (EU users: relevant DPA; Korean users: 개인정보보호위원회) To exercise any right, email us at cyberkik@gmail.com with your session URL or share token. We will respond within 30 days.

Option 1 (Self-service): Email cyberkik@gmail.com with the URL of your result page (e.g., https://dreamdepth.net/en/result/YOUR-TOKEN). We will delete your session within 72 hours. Option 2 (Automatic): Your data is automatically deleted on the schedule described in Section 4 above. No action needed. Note: Payment transaction records cannot be deleted early due to the 5-year legal retention requirement under Korean e-commerce law. These records contain only the order ID and amount — not your dream content.

We use: • sessionStorage (browser-only, not a cookie) — temporarily stores your result URL for the "Bookmark" reminder banner • Google AdSense — places advertising cookies. You can opt out via Google's Ad Settings or your browser's cookie controls. • No analytics cookies, tracking pixels, or fingerprinting beyond what AdSense uses.

DreamDepth is not directed at children under 14 (or 16 in the EU). We do not knowingly collect personal data from children. If you believe a child has submitted data, contact us immediately at cyberkik@gmail.com and we will delete it.

We may update this policy. Material changes will be indicated by updating the "Last updated" date at the top. Continued use of the service after changes constitutes acceptance of the updated policy.

By using DreamDepth, you agree to the following: • DreamDepth provides psychological self-reflection tools based on Jungian psychology. It is NOT a medical service, psychiatric diagnosis, or clinical treatment. • Do not use DreamDepth as a substitute for professional mental health care. If you are experiencing a mental health crisis, please contact a qualified professional. • You must be at least 14 years old (16 in the EU) to use this service. • You may not use DreamDepth for any illegal purpose or in violation of any applicable laws. • Payments are non-refundable once your results have been unlocked. • We reserve the right to suspend access for abuse of the service. Governing law: Republic of Korea. Disputes shall be resolved in the courts of Seoul, Korea.

Data Controller: DreamDepth Email: cyberkik@gmail.com Response time: within 30 days