Privacy Policy
Last Updated: February 15, 2025
At ConnectiveBrainTech, we take your privacy seriously. This isn't just a legal document we threw together because we had to — it's an honest explanation of how we handle the information you share with us when using our smart budgeting platform.
We built our service to help people in South Korea manage their finances better. That means we handle sensitive financial data, and we understand the responsibility that comes with it. This policy explains what we collect, why we need it, how we use it, and what rights you have over your own information.
What Information We Collect
When you use ConnectiveBrainTech, we gather different types of information depending on how you interact with our platform. Let's break it down clearly.
Account Information
Your name, email address, phone number, and password. We need this to create and maintain your account, and to contact you when necessary.
Financial Data
Budget entries, expense categories, income sources, and financial goals you set. This is the core of what makes our service work for you.
Usage Information
How you interact with our platform — which features you use, when you log in, what pages you visit. This helps us improve the service.
Device Data
Your IP address, browser type, operating system, and device identifiers. We use this for security and to ensure the platform works properly on your device.
Information You Provide Directly
Most of what we know about you comes from what you tell us. When you sign up, you give us basic account details. As you use the budgeting tools, you enter financial information — your income, expenses, savings goals, spending patterns. You're in control of what you share here.
Information We Collect Automatically
Some data gets collected just by you using the service. We track technical stuff like your IP address and browser type — this helps us spot security issues and fix technical problems. We also use cookies to keep you logged in and remember your preferences.
Why We Need Your Information
We don't collect data just for fun. Everything we gather serves a specific purpose related to making ConnectiveBrainTech work better for you.
- To provide the core service: We can't help you budget if we don't know your income and expenses. The financial data you enter is what powers the budgeting tools, spending insights, and financial recommendations.
- To keep your account secure: We monitor login patterns and device information to detect suspicious activity. If someone tries to access your account from an unusual location, we want to know about it.
- To communicate with you: We send important updates about your account, security alerts, and occasionally feature announcements. You can opt out of most messages, but we'll always send critical security notifications.
- To improve our service: By analyzing how people use different features, we figure out what works and what needs fixing. This is always done with aggregated, anonymized data.
- To comply with legal obligations: South Korean financial regulations require us to maintain certain records and report specific activities. We only share what's legally required.
Important: We never sell your personal information to third parties. Your financial data is yours, and we're just the custodians helping you manage it better.
How We Protect Your Data
Security isn't an afterthought for us — it's built into everything we do. Financial information is sensitive, and we treat it that way.
Technical Security Measures
All data transmission happens over encrypted connections (TLS 1.3 or higher). Your financial information is encrypted both in transit and at rest using industry-standard AES-256 encryption. Even our own team can't see your raw financial data — we only see anonymized aggregates when analyzing usage patterns.
Access Controls
Only a small number of senior technical staff have access to production systems, and every access is logged and monitored. We use multi-factor authentication for all internal systems. Regular security audits happen quarterly, with penetration testing twice a year.
Data Storage
Your information is stored on secure servers located in South Korea, in compliance with local data residency requirements. We use reputable cloud infrastructure providers who maintain ISO 27001 certification and undergo regular security audits.
Data Retention and Deletion
We don't keep your data forever. Here's how long different types of information stick around, and why.
| Data Type | Retention Period | Reason |
|---|---|---|
| Account Information | Duration of account + 90 days | Account recovery and fraud prevention |
| Financial Data | Duration of account + 90 days | Service provision and legal compliance |
| Usage Logs | 12 months | Service improvement and security monitoring |
| Support Communications | 3 years | Legal requirements and quality assurance |
| Financial Transaction Records | 5 years | South Korean financial regulations |
When you delete your account, we start the deletion process within 48 hours. Most of your data disappears immediately, but some information might remain in backups for up to 90 days before being permanently removed. We're required by law to keep certain transaction records for five years, but these are completely anonymized after account deletion.
Your Privacy Rights
Under South Korean privacy law (Personal Information Protection Act), you have specific rights regarding your data. We respect these rights and make it easy to exercise them.
What You Can Do
- Access your data: Request a complete copy of all personal information we hold about you. We'll provide this in a readable format within 14 days.
- Correct inaccuracies: If any of your information is wrong, you can update it directly in your account settings or ask us to fix it.
- Delete your account: You can delete your account anytime from the settings page. This removes most data immediately, though some records remain for legal compliance.
- Restrict processing: Ask us to temporarily stop using certain data while we verify its accuracy or your rights.
- Data portability: Get your data in a machine-readable format to transfer to another service. We provide JSON and CSV exports.
- Object to processing: You can object to how we use your data for certain purposes, particularly for marketing or analytics.
- Withdraw consent: If we're processing data based on your consent, you can withdraw that consent anytime.
To exercise any of these rights, just email us at support@connectivebraintech.com with your request. We'll respond within 10 business days and complete most requests within 30 days.
Who We Share Data With
We don't hand out your information freely, but running a financial service means working with some trusted partners. Here's the complete list of who might see your data and why.
Service Providers
We use cloud hosting providers for infrastructure, email services for communication, and analytics tools for understanding platform usage. These companies only access what they need to provide their specific service, and they're all bound by strict confidentiality agreements.
Legal Requirements
If a court order or government agency legally requires us to disclose information, we'll comply with valid requests. We review every request carefully and only share the minimum necessary. When legally permitted, we'll notify you before sharing your data.
Business Transfers
If ConnectiveBrainTech is acquired or merges with another company, your information would transfer to the new entity. They'd still be bound by this privacy policy until they provide notice of changes.
With Your Consent
Sometimes you might ask us to share data with third-party services (like connecting to your bank for transaction imports). We only do this when you explicitly authorize it.
International Data Transfers
Your data stays in South Korea. We don't transfer information outside the country except in rare circumstances when you specifically request integration with international services.
If we ever need to transfer data internationally, we use standard contractual clauses approved by relevant authorities and ensure the receiving party maintains adequate security standards.
Cookies and Tracking
Like most websites, we use cookies. These are small text files stored on your device that help the service work properly.
Essential Cookies
These keep you logged in and remember your preferences. You can't really use the platform without these, but they don't track you across other websites.
Analytics Cookies
We use these to understand how people use different features. The data is anonymized and helps us improve the service. You can disable these in your account settings.
No Advertising Cookies
We don't use advertising networks or tracking pixels. Your budgeting habits stay private and aren't used to show you ads anywhere.
Children's Privacy
ConnectiveBrainTech is designed for adults managing their finances. We don't knowingly collect information from anyone under 19 years old (the age of majority in South Korea). If we discover we've accidentally gathered data from a minor, we delete it immediately.
Changes to This Policy
We update this policy occasionally as our service evolves or regulations change. When we make significant changes, we'll email you at least 30 days before they take effect. Minor clarifications might happen without notice, but we'll always update the "Last Updated" date at the top.
If you disagree with changes, you can delete your account before they take effect. Continuing to use the service after changes go live means you accept the updated policy.
Questions About Privacy?
If anything in this policy is unclear, or if you have questions about how we handle your data, we're here to help. Reach out anytime.
ConnectiveBrainTech
2F, 436-10 Seoseok-dong, Dong-gu
Gwangju, South Korea