Privacy Policy
Privacy policy for the SYU CAMPUS service.
Effective Date
This English version is provided for convenience. If it differs from the Korean Privacy Policy, the Korean version applies. Effective March 23, 2026. Last updated June 21, 2026.
1. Purposes of Processing
SYU CAMPUS processes personal information only as needed to operate and improve the service.
- Providing and operating service features
- Analyzing service usage and improving quality
- Reviewing contact requests, reports, and suggestions
- Creating schedule coordination links and collecting responses
- Creating timetable share links selected by users
- Sending service push notifications when users opt in
- Supporting internal admin triage with AI-assisted classification when configured
2. Retention
- Local settings remain on the user's device and are deleted when browser data is cleared.
- Contact requests and campus-tip suggestions are retained until the review or service-improvement purpose is fulfilled.
- Schedule coordination rooms, participant responses, and timetable share links are retained for up to 90 days.
- Notification tokens are retained until the user disables notifications, the token becomes invalid, or delivery is no longer needed.
- Rate-limit counters are retained for the configured request window, and notification send locks may be retained for up to 14 days to prevent duplicate sends.
Third-party data such as Kakao Maps cookies and Google service data follows each provider's policies.
3. Categories of Information
- Local settings such as theme preference
- Service logs, access records, IP address, and user agent
- Kakao Maps SDK cookies used for map and shuttle features
- Contact, report, campus-tip, and optional contact details entered by users
- Schedule room titles, descriptions, candidate times, participant nicknames, and availability responses
- Schedule response edit-token hashes used to protect edits
- Timetable share course IDs, year, semester, and user agent
- Firebase Cloud Messaging tokens and notification delivery records when notifications are enabled
- Rate-limit counters and notification duplicate-send locks
- Admin-only AI classification metadata for contact requests or suggestions, when generated
4. Processors and Third-Party Services
| Provider | Purpose | Retention |
|---|---|---|
| Kakao | Campus map and location-based map SDK features | According to Kakao policies |
| Analytics, Search Console, Firebase, Firestore, and push notifications | According to Google policies | |
| Vercel | Hosting and deployment | Until the processing purpose is fulfilled or the service relationship ends |
| GitHub | Source repository and change history management | According to GitHub policies and repository operation |
Third-party provision
The service does not provide personal information to third parties except where the user has consented, where required by law, or where processing is necessary through the processors listed above.
Overseas or external processing
Google, Vercel, GitHub, Kakao, and a configured AI classification API may process data on servers located outside Korea or in regions operated under each provider's policy. The categories of data are limited to the minimum needed for hosting, analytics, Firebase/Firestore storage, map features, notification delivery, repository operation, and redacted admin triage.
5. Cookies, Analytics, Firebase, and AI Classification
The service primarily uses local storage for user settings. Kakao Maps SDK may set cookies for map and shuttle features. Google Analytics, Search Console, Firebase, and Firestore may be used for analytics, search visibility, user reports, schedule coordination, and notification delivery.
Blocking third-party cookies may limit map or shuttle-related features.
When the admin classification feature is enabled, selected contact request or suggestion content may be sent to a configured AI classification API after contact details and obvious identifiers are redacted where possible. The result is stored only as admin-facing triage metadata.
6. Security Measures
The service uses HTTPS, client-side storage where appropriate, Firebase security controls, environment variable management, and administrator authentication to protect service data within the scope of its operation.
7. User Rights and Contact
Users may request access, correction, deletion, or suspension of processing by contacting the service operator through the contact page or email.
Privacy Contact
Team: Development Team
Owner: Sanghyeok Seo
Email: singhic_dev@syu.kr
8. Remedies and Changes
Users may contact Korean privacy dispute or reporting agencies for remedies where applicable. This policy may change due to legal, governmental, or service operation needs, and important changes will be announced in advance.
Effective date: March 23, 2026
Last updated: June 21, 2026