Effective date: 2026.05.29
Must Games (the "Company") operates minimini games (the "Service") and values the personal information of its users.
The Company complies with applicable laws including the Personal Information Protection Act and informs users through this Privacy Policy of the purposes for which their personal information is collected and used, and how it is protected.
The Company processes personal information for the following purposes.
Service Provision and Operation
Member Management
Ranking and Game Record Management
Service Improvement and Statistical Analysis
Customer Inquiry Handling
The Company may process the following personal information to provide the Service.
The Service uses Firebase-based Google Login. When using Google Login, the following information may be processed.
The Company does not collect unique identification information or sensitive information such as resident registration numbers, passport numbers, driver's license numbers, or credit card information, unless separately provided by the user.
The Company retains and uses personal information until the purpose of collection and use is achieved.
Member Information
Retention period: Until membership withdrawal or account deletion request. However, personal information may be retained for a certain period if necessary for fraud prevention, dispute resolution, or fulfillment of legal obligations.
Game Records and Ranking Information
Retention period: During the service provision period or ranking operation period. If a season-based ranking is operated, records may be retained for a certain period after the season ends for past record viewing, fraudulent use review, and statistical analysis.
Game Currency, Item, and Collectible Information
Retention period: Until membership withdrawal or service termination. Records may be retained for the period necessary if error grants, fraudulent use, or dispute verification is required.
Inquiry and Customer Support Records
Retention period: 3 years after inquiry processing is complete. If a dispute is ongoing, records may be retained until the dispute is resolved.
Access Logs and Security-Related Records
Retention period: Up to 1 year. Records may be retained for the period necessary for security incident response, fraud prevention, and service stability.
Firebase Analytics Information
Retention period: In accordance with Firebase settings and the Company's internal operating standards. Analytics information is used for service improvement, error verification, and usage statistics analysis.
Information that must be retained under applicable laws will be kept for the period specified by such laws.
The Company does not, in principle, provide users' personal information to external parties.
However, personal information may be provided in the following exceptional cases.
If personal information is to be provided to a third party in the future, the Company will inform users in advance of the recipient, purpose, items, and retention/use period, and obtain consent as necessary.
The Company may use the following external services to provide the Service smoothly.
| Category | Company or Service | Purpose | Information Processed |
|---|---|---|---|
| Authentication & Data Processing | Firebase | Google login, user identification, data storage, service analytics | Google account information, Firebase user identifier, service usage records, game records, analytics information |
| Infrastructure & Security | Cloudflare | Service access processing, CDN, security, traffic management | IP address, access logs, browser and device information |
| Own Server | Must Games Web Server | Service operation, game data processing, record storage | Account identification, game records, ranking information, access records |
| Analytics Tool | Firebase | Service usage statistics, error verification, feature improvement | Service usage records, device information, event logs |
The Company strives to ensure that personal information is processed safely in using external services through necessary management and oversight.
The Service uses global infrastructure services such as Firebase and Cloudflare. As a result, personal information may be processed or stored overseas during service provision, authentication, security, data storage, and analytics.
| Recipient | Country | Items Transferred | Purpose | Method | Retention Period |
|---|---|---|---|---|---|
| Google LLC or Firebase service providers | USA and other countries where Google/Firebase infrastructure operates | Google account information, Firebase user identifier, service usage records, analytics information | Google login, data storage, service analytics, error verification | Transmission via network upon service use | Service use period or period per Firebase settings |
| Cloudflare, Inc. | USA and other countries where Cloudflare infrastructure operates | IP address, access logs, browser and device information | CDN, security, traffic management, service stability | Transmission via network upon service access | Until the purpose of service provision and security is achieved |
※ The actual countries of transfer, storage locations, and retention periods may vary depending on the settings and policies of each service. The Company will update this Privacy Policy if the service operating environment changes.
The Company may use cookies to provide better user experience and analyze service usage.
Cookies are small information files stored in the user's browser by a website.
The Service may use cookies for the following purposes.
Users may refuse or delete cookie storage through browser settings. However, refusing cookie storage may restrict some features such as maintaining login status, saving game records, and ranking functions.
The Service does not currently include advertisements.
The Company is currently awaiting Google AdSense approval, and advertisements may be added to the Service in the future. If advertisements are introduced, the Company will reflect information such as the advertising provider, advertising method, information processed in connection with advertisements, and whether personalized advertising is used in the Privacy Policy.
The Company may currently process analytics information such as service usage status, errors, and event logs through Firebase.
Analytics information that may be collected
Purpose of use
Retention and use period
If advertising services such as Google AdSense are introduced in the future, advertising-related cookies or behavioral information may be processed for purposes such as advertising delivery, advertising performance measurement, and fraud prevention.
The Company promptly destroys personal information when the retention period has expired or the processing purpose has been achieved.
Destruction Procedures
Destruction Methods
Users may exercise the following rights regarding their personal information at any time.
Rights may be exercised through in-service features, inquiry email, or customer support.
The Company will promptly take action upon receiving a user's request in accordance with applicable laws. However, requests may be restricted if there is a legal retention obligation or legitimate reasons such as fraud prevention or dispute response.
If personal information of children under 14 years of age is processed, legal guardians may request access, rectification, deletion, or restriction of processing of the child's personal information.
The Service does not, in principle, collect personal information from children under 14 years of age. If personal information of children under 14 is required, consent will be obtained from their legal guardian in accordance with applicable laws.
The Company strives to implement the following measures to prevent loss, theft, leakage, forgery, falsification, or damage of personal information.
The Company designates a Privacy Officer for inquiries, complaint handling, and damage relief related to personal information processing.
Privacy Officer: 강백주 / Baekju Kang
Organization: Must Games
Email: [email protected]
Inquiry Reception: Available 24/7 via email
Response Time: Responses provided sequentially after review on business days
Users may contact the Privacy Officer with inquiries, complaints, or requests for relief related to personal information arising from service use.
Response time may vary depending on the nature of the inquiry, volume of requests, and whether fact verification is required.
Users may contact the following organizations for consultation or relief regarding personal information infringement.
※ Please verify the latest contact information and website addresses of each organization when posting.
This Privacy Policy takes effect from the effective date.
The Company may amend this Privacy Policy in cases of changes to laws, service content, personal information processing methods, outsourcing companies, advertising platforms, or analytics tools.
If this Privacy Policy changes, the changes will be notified through in-service notices or a separate notification screen.
Current Privacy Policy effective date: 2026.05.29
Previous Privacy Policy: N/A