Privacy Policy | Airbridge

AB180 Inc. (hereinafter referred to as "AB180" or "the Company") complies with the "Personal Information Protection Act" and related laws and regulations to protect the freedom and rights of data subjects, lawfully process personal information, and securely manage it. In accordance with Article 30 of the "Personal Information Protection Act" AB180 establish and disclose a privacy policy to guide data subjects on the procedures and standards for processing personal information and to promptly and smoothly address related complaints.

1. Purpose of Processing Personal Information

AB180 processes personal information for the following purposes. The Company does not use processed personal information for any other purpose than the following, and if a purpose of use is to be changed, it shall seek prior consent.

Service	Purpose of Processing Personal Information	Legal Basis
Airbridge Membership Registration	Confirmation of membership registration intent, Identification and authentication of the individual for membership services provision, Maintenance and management of membership status, Prevention of misuse of services, etc.	Required: Personal Information Protection Act, Article 15 (Collection and Use of Personal Information) Optional : Consent for the collection of personal information from the data subject
Provision of Airbridge Services	Identification and management of Airbridge clients, Notifications regarding service use, Fee payment and settlement, etc.	Required: Personal Information Protection Act, Article 15 (Collection and Use of Personal Information)
Library Download	Download handbooks and guides for information dissemination	Required: Personal Information Protection Act, Article 15 (Collection and Use of Personal Information)
Newsletter Subscription	Sending newsletters for service promotion and information	Required: Personal Information Protection Act, Article 15 (Collection and Use of Personal Information)
Book a Demo	Application for and use of Airbridge demo services, Responding to inquiries regarding the introduction of Airbridge service	Required: Personal Information Protection Act, Article 15 (Collection and Use of Personal Information)
Service inquiries and Complaint Handling	Responding to inquiries from customers and partners, Various notifications and notices, Handling grievances, Preserving records for dispute resolution, Verifying the identity of the complainant, Confirming complaint details, Notifying the results of the processing, etc.	Required: Personal Information Protection Act, Article 15 (Collection and Use of Personal Information)
Request to Help Center	Responding to inquiries on Airbridge Dashboard	Required: Personal Information Protection Act, Article 15 (Collection and Use of Personal Information)
Share feedback	Providing Feedback on Help Center Guide	Optional : Consent for the collection of personal information from the data subject
ETC.	Retention of Records Related to Tax Evidence	The Basic Tax Law Article 85-3 (Storage and Preservation of Books, etc.) The Commercial Act Article 266 (Preservation of Books and Documents)

2. Collecting, Processing, Use, and Retention Periods of Personal Information

AB180 promptly destroys personal information once the purpose of its collection and use has been achieved. However, in cases where it is necessary to retain personal information in accordance with provisions of relevant laws such as the Commercial Act, the information will be retained for a certain period. The categories of personal information processed and used, as well as the retention periods, are as follows.

Service	Type	Item	Retention Period
Airbridge Membership Registration	Required	Name, Email, Password, Company Name, Country	Customers who have entered into a solution usage contract : 1 year from the contract termination date Other members : 1 year from the last login date after registration
Airbridge Membership Registration	Optional	Phone Number, Job Title	Customers who have entered into a solution usage contract : 1 year from the contract termination date Other members : 1 year from the last login date after registration
Provision of Airbridge Services	Required	Name, Company Name, Job Title, Email, Phone Number	Until the contract termination
Library Download	Required	Name, Company Name, Job Title, Email, Country	Until unsubscribing from the newsletter or the termination of the newsletter service
Newsletter Subscription	Required	Email	Until unsubscribing from the newsletter or the termination of the newsletter service
Book a Demo	Required	Name, Company Name, Job Title, Email, Phone Number, Country	1 year from the end of the demo request
Service inquiries and Complaint Handling	Required	Email, Name, Company Name, Phone Number	3 years from the date of inquiry or contract termination
Request to Help Center	Required	Name, Company Name, Email, Country	Customers on a paid plan : 3 years from the contract termination date Other members : 3 years from the inquiry completion date
Share feedback	Optional	Email	3 years from the feedback sharing date
ETC	Required	Tax basis documents (all transaction records and supporting documents)	For 5 years

3. Outsourcing of Personal Information Processing (Matters regarding the transfer of personal information overseas)

1) In order to facilitate the handling of personal information, AB180 outsources personal information processing tasks as follows. The entrusted work processed by an overseas corporation among entrustment is as follows.

Transferred Item	Name, Email, Password, Company Name, Country, Phone Number, Job Title
Countries	Japan
Transfer Method	Transmission through security protocols (encryption) upon using the Airbridge website service
Recipient (Information Manager)	Amazon Web Services, Inc. (aws-korea-privacy@amazon.com)
Purpose	For using Amazon Cloud Service(outsourcing physical operational environment)
Retention and Use Period	Until membership withdrawal or contract termination(However, if the laws and regulations impose duties to retain information for a certain period, personal information may be stored during the designated period)

Transferred Item	Name, Email, Company Name, Phone Number
Countries	USA
Transfer Method	Transmission through security protocols (encryption) upon using the Airbridge website service
Recipient (Information Manager)	Intercom, Inc. (Legal Department, compliance@intercom.com)
Purpose	For membership management and handling of civil affairs
Retention and Use Period	Until membership withdrawal or contract termination(However, if the laws and regulations impose duties to retain information for a certain period, personal information may be stored during the designated period)

Transferred Item	Email
Countries	USA
Transfer Method	Transmission through security protocols (encryption) upon using the Airbridge website service
Recipient (Information Manager)	The Rocket Science Group LLC d/b/a Mailchimp (Privacy, privacy@mailchimp.com)
Purpose	For sending email to customers
Retention and Use Period	Until unsubscribing from the newsletter or the termination of the newsletter service(However, if the laws and regulations impose duties to retain information for a certain period, personal information may be stored during the designated period)

Transferred Item	Email
Countries	USA
Transfer Method	Transmission through security protocols (encryption) upon using the Airbridge website service
Recipient (Information Manager)	Twilo(Sendgrid) (Privacy, privacy@twilio.com)
Purpose	For sending email to users
Retention and Use Period	Until membership withdrawal or contract termination(However, if the laws and regulations impose duties to retain information for a certain period, personal information may be stored during the designated period)

Transferred Item	Email
Countries	USA
Transfer Method	Transmission through security protocols (encryption) upon using the Airbridge website service
Recipient (Information Manager)	Mixmax, Inc. (Privacy, privacy@mixmax.com)
Purpose	For Business and performance management
Retention and Use Period	Until membership withdrawal or contract termination(However, if the laws and regulations impose duties to retain information for a certain period, personal information may be stored during the designated period)

Transferred Item	Name, Company Name, Job Title, Email, Phone Number, Country
Countries	USA
Transfer Method	Transmission through security protocols (encryption) upon using the Airbridge website service
Recipient (Information Manager)	Salesforce, Inc.(Privacy, privacy@salesforce.com)
Purpose	For Customer and contract management
Retention and Use Period	Until membership withdrawal or contract termination(However, if the laws and regulations impose duties to retain information for a certain period, personal information may be stored during the designated period)

Transferred Item	Name, Company Name, Job Title, Email, Phone Number, Country
Countries	USA
Transfer Method	Transmission through security protocols (encryption) upon using the Airbridge website service
Recipient (Information Manager)	ZenLeads Inc. (privacy@apollo.io)
Purpose	For Utilizing B2B marketing intelligence platforms
Retention and Use Period	Until membership withdrawal or contract termination(However, if the laws and regulations impose duties to retain information for a certain period, personal information may be stored during the designated period)

Transferred Item	Name, Email
Countries	UK
Transfer Method	Transmission through security protocols (encryption) upon using the Airbridge website service
Recipient (Information Manager)	Plain (Security team, security@plain.com)
Purpose	For handling customers and partners inquiries
Retention and Use Period	3 years from the end date of the contract (however, if retention is required according to other laws, the information will be retained until the end of that period)

Transferred Item	Card number, Expiration date, CVC, Country, Email (The above information is not collected or stored by AB180. It is directly entered by the user on the Stripe payment console and processed solely by Stripe.)
Countries	USA
Transfer Method	Immediate processing through security protocols (encryption) upon entering payment method information on the Stripe console
Recipient (Information Manager)	Stripe (privacy@stripe.com)
Purpose	For processing of post-payment
Retention and Use Period	Until membership withdrawal or contract termination(However, if the laws and regulations impose duties to retain information for a certain period, personal information may be stored during the designated period)

2) When signing an outsourcing contract, AB180 specifies matters such as prohibition of personal information processing for other purposes than conducting the outsourced duties, technical and administrative protection measures, restriction on subcontract, management and supervision of the outsourcee, indemnification for damages and other liabilities, etc. in accordance with Article 26 of the Personal Information Protection Act and supervises the outsourcee for safe handling of personal information.

3) In case of any change in the contents of the outsourced tasks or the outsourcee, the Company shall without delay disclose such change through this Privacy Policy

4) AB180 does not provide personal information to third parties without the prior consent of the users. However, personal information may be provided in the following cases: when the users directly consents to the provision of personal information in order to use the services of external affiliated companies, and when the company is obligated to submit personal information to the competent authority in accordance with relevant laws, and when there is an urgent need to protect the life or safety of the users and it is necessary to provide personal information to resolve such risks.

5) Users may refuse the transfer of personal information overseas by contacting 8. Privacy Protection Department. However, please note that refusal of the transfer of personal information overseas may result in difficulty in using the services smoothly.

4. Rights and Duties of Data Subject and Legal Representative and Methods of Exercising Them

As a personal data subject, the users can exercise the following rights.

1) The data subject may at any time exercise the right to access, correct, or delete his/her personal information or request discontinuance of personal information processing to AB180.

2) The users can exercise the rights under Paragraph 1 by documents, email, fax, etc. according to Article 41, Paragraph 1 of the Enforcement Decree of the Personal Information Protection Act, and AB180 shall take actions accordingly without delay.

3) The data subject may exercise the rights under Paragraph 1 through his/her legal representative, trustee, or other authorized agents. In this case, the users shall submit a power of attorney produced on the form in Annex 11 of the Enforcement Rules of the Personal Information Protection Act.

4) The data subject’s right to request suspension of personal information access or processing may be limited pursuant to Article 35, Paragraph 4 and Article 37, Paragraph 2 of the Personal Information Protection Act.

5) Correction or deletion of personal information may not be requested if such personal information is specified to be subject to collection in other laws or regulations.

6) AB180 performs verification of whether the requester of viewing, correcting or deleting personal information or suspending processing of such information is the data subject or his/her rightful agent.

7) Users may exercise their rights such as access, correction, deletion, and suspension of processing of their personal information through 8. Privacy Protection Department.

5. Destruction of Personal Information

In principle, AB180 shall destroy personal information without delay when the purpose of processing the personal information is achieved. The procedure, time, and method of destruction are as follows.

1) Procedure of destruction

The information entered by the users is transferred to a separate DB (separate documents in the case of data on paper) after achieving the purpose and is stored for a certain period of time or immediately destroyed according to the internal policy and other related statutes. Here, the personal information transferred to the DB shall not be used for any other purpose than what is required by the laws.

2) Time of destruction

Personal information of the users shall be destroyed within five days after the end date of the retention period or within five days after the date on which it is acknowledged that processing of such personal information is no longer necessary due to reasons such as fulfillment of the purpose of personal information processing, discontinuation of the service, closing of the business, etc.

3) Method of destruction

Personal information recorded and stored in electronic file format is destroyed in a way that makes it unrecoverable, and personal information recorded and stored in paper documents is shredded or incinerated for disposal.

6. Matters Concerning Installation, Operation, and Rejection of Automatic Personal Information Collection Devices

1) AB180 uses cookies to store and retrieve information automatically generated or collected during service use, in order to provide stable services and a personalized experience for users.

2) Information automatically collected may include IP address, device information, browser type, access time, service usage history, and cookies. This information is used for purposes such as website operation, statistical analysis, and personalized service delivery.

3) Cookies are small pieces of data sent by the server (HTTP) used to operate a website to the user's browser. They may be stored on the user's computer or mobile device and are automatically transmitted to the server upon accessing the website.

4) Users can configure their web browser settings to allow or block cookies. However, refusing cookies may cause limitations in using some personalized services.

※ How to Install, Operate, and Reject Cookies

Web Browser
a) Chrome: Web Browser Settings > Privacy and Security > Clear Browsing Data
b) Edge: Web Browser Settings > Cookies and Site Permissions > Manage and Delete Cookies and Site Data

Mobile Browser
a) Chrome: Mobile Browser Settings > Privacy and Security > Clear Browsing Data
b) Safari: Mobile Device Settings > Safari > Advanced > Block All Cookies
c) Samsung Internet: Mobile Browser Settings > Tabs > Turn on Secret Mode > Start

7. Behavioral Information Collection, Use, Provision, and Rejection

The company collects and uses online behavioral information to analyze the usage of this site for purposes such as product and service development and customer analysis. Behavioral information refers to online user activity data that can be used to understand and analyze users' interests, preferences, and tendencies, such as website visit history, app usage history, purchase and search history.

The company collects only the minimum amount of behavioral information necessary for analyzing site usage and does not collect any sensitive behavioral information that may infringe on the rights, interests, or privacy of users, such as political beliefs, religious views, or medical history.

1) The company collects behavioral information on the Airbridge website as follows.

Items of Behavioral Information Collected	Users’ service visit records, activity logs, search history, and advertising identifiers
Method of CollectingBehavioral Information	- Cookie Installation and Operation - Automatic collection and transmission through tools for generating information during visits to web/app sites - Automatic collection and transmission through tools for generating information upon app execution
Tools Used for Collection	Airbridge, Amplitude, Google Analytics
Purpose of CollectingBehavioral Information	- Analyzing the usage patterns of company services to provide recommended services to users (including advertisements) - Utilizing users behavioral information analysis as a measure for new service development, service improvement, etc.
Retention, Usage Period, and Subsequent Processing Methods	The behavioral information will be retained for a maximum of 2 years from the date of collection and then destroyed.

2) Users have the right to collectively block or allow the collection of behavioral information by adjusting cookie and device settings on the web/app. However, changing cookie settings may restrict the use of certain services such as automatic login on websites.

3) Customers can refuse the use of cookies by adjusting their browser settings.

Web Browser
a) Chrome: Web Browser Settings > Privacy and Security > Clear Browsing Data
b) Edge: Web Browser Settings > Cookies and Site Permissions > Manage and Delete Cookies and Site Data

Mobile Browser
a) Chrome: Mobile Browser Settings > Privacy and Security > Clear Browsing Data
b) Safari: Mobile Device Settings > Safari > Advanced > Block All Cookies
c) Samsung Internet: Mobile Browser Settings > Tabs > Turn on Secret Mode > Start

8. Privacy Protection Department

1) AB180 operates a Privacy Protection Department to handle personal data processing and address any complaints or remedy issues related to personal data processing as follows.

2) Users can contact the Privacy Protection Department regarding any inquiries, access requests, complaints, or remedy issues related to personal data protection arising from their use of AB180 Inc.'s services (or business). AB180 Inc. will respond to and address these inquiries without delay.

Classification	Relevant Department	Email
Privacy Protection Department	Security & Privacy Team	compliance@ab180.co

9. Measures to Ensure Safety of Personal Information

AB180 ensures security measures necessary for safety in accordance with Article 29 of the Personal Information Protection Act through technical, managerial, and physical measures.

1) Periodic self-audit

In order to ensure safety in handling personal information, the Company conducts self-audit on a regular basis (once a year).

2) Minimization and training of personnel handling personal information

The Company designates persons who handle personal information and minimizes such personnel size by limiting assignment of such tasks to managers only.

3) Establishment and implementation of internal management plan

The Company establishes and implements internal management plans for safe handling of personal information.

4) Technical measures against hacking, etc.

To prevent personal information leak or damage caused by hacking, computer viruses, etc. the Company installs security programs, performs periodic updates and inspections, installs systems in areas where access from outside is restricted, and performs technical and physical monitoring and blocking.

5) Encryption of personal information

The Users’ password encrypted and stored and managed so that only the user can know, and uses separate security functions for handling important data such as encrypting files and transmitted data and using file locking.

6) Storage of access records and prevention of forgery and falsification

The Company keeps and manages the access records in the personal information processing system for at least 2 years and uses security functions to prevent forgery, falsification, theft, and loss of the access records.

7) Restriction on access to personal information

The Company controls access to personal information by granting, modifying, and canceling access rights to the database system that processes personal information and blocks unauthorized access from outside using an intrusion prevention system.

8) Blocking of unauthorized access

The Company has a separate physical storage area for personal information and has an established access control procedure in operation for the area.

10. Remedies for Infringement on Rights of data Subjects

The following are separate organizations from AB180, and if you are not satisfied with AB180's handling of privacy complaints, damage relief results, etc. or need further assistance, you can contact these organizations.

1) Personal Information Infringement Report Center (operated by the Korea Internet and Security Agency)

Services : Personal information infringement report, consultation (through application)

Website : privacy.kisa.or.kr

Phone : (without area code) 118

Address : (58324) 301-2, Bitgaram-dong, Jinheung-gil 9, Naju-si, Jeollanam-do, Personal Information Infringement Report Center

2) Personal InformationDispute Mediation Committee

Services : Mediation of personal information disputes (through application) and collective disputes (civil resolution)

Website : kopico.go.kr

Phone : (without area code) 1833-6972

Address : (03171) 12th Floor, Government Seoul Building, 209 Sejong-daero, Jongno-gu, Seoul

3) Prosecutor's Office Cyber Investigation Division : (without area code) 1301 (spo.go.kr)

4) National Police Agency Cyber Investigation Unit : (without area code) 182 (ecrm.police.go.kr)

11. Change in Privacy Policy

1) This policy will be effective from Aug 8, 2025.

2) Previous privacy policies can be reviewed by selecting the date at the top of the page.

3) AB180 will announce any revisions to the company's privacy policy

Click here to view the previous privacy policy
- Privacy Policy (2025.05.19.)
- Privacy Policy (2024.11.22.)
- Privacy Policy (2024.08.19.)
- Privacy Policy (2024.06.20.)

Representative (GDPR)

The GDPR requires a written designation of a representative in the EU by the controller or processor not based in the EU. Contact information and address of AB180 Inc., a service provider of Airbridge, in the EU are as follows:

GDPR-Rep.eu
Maetzler Rechtsanwalts GmbH & Co KG
Attorneys at Law
c/o AB180 Inc.
Schellinggasse 3/10, 1010 Vienna, Austria

Please add the following subject to all correspondence:
GDPR-REP ID: 12799064