Privacy Policy
Policy and procedures for protecting pastors' personal information
Last Updated: 2026-03-01
AES-256 Encryption Applied
Keryx values the personal information of pastors and processes it safely in accordance with applicable laws. This policy is based on the Personal Information Protection Act and the Act on Promotion of ICT Network Utilization and Information Protection.
1Purposes of Processing Personal Information
1. Service Provision
- • Providing sermon draft composition service
- • Personalized sermon recommendations and management
- • Denomination-specific customized services
- • User authentication and account management
2. Pastor Identity Verification
- • Review of ordination certificates and qualification documents
- • Eligibility verification for closed platform membership
- • Denomination and church affiliation verification
3. Service Operation and Improvement
- • Customer support and inquiry response
- • Service usage statistical analysis
- • Development and improvement of new services
- • Marketing and promotions (only with consent)
Personal Information Collected
Required Information
Basic Information
- • Full name
- • Email address
- • Phone number
- • Password (stored encrypted)
Ministry Information
- • Church name
- • Denomination
- • Position (Senior pastor, Associate pastor, etc.)
- • Invite code
Optional Information
- • Year of ordination
- • Seminary information
- • Specialty (Youth, Education, Missions, etc.)
- • Marketing communication consent
Verification Documents (Temporary Processing)
Important: Verification documents are deleted immediately after identity confirmation.
- • Certificate of employment (issued within the last 6 months)
- • Ordination certificate
- • Pastoral ID
- • Seminary enrollment certificate (seminary students only)
Automatically deleted within 24 hours after verification
Automatically Collected Information
- • IP address (access logs)
- • Device information (browser, OS)
- • Service usage records
- • Cookies (for maintaining login sessions)
Data Retention Periods
Member Information
- Retention Period: 1 year after account deletion
- Purpose: Preventing re-registration abuse, dispute resolution
- Deletion: Automatic upon retention period expiry
Service Usage Records
- Retention Period: 3 months
- Purpose: Service improvement, statistical analysis
- Deletion: Periodic automatic deletion
Verification Documents
- Retention Period: Deleted immediately after verification
- Purpose: Pastor identity verification
- Deletion: Completely deleted within 24 hours
Generated Sermons
- Retention Period: Until member requests deletion
- Purpose: Service provision
- Deletion: Immediately upon member request
Members may request deletion of their personal data at any time, and such requests will be processed immediately.
Personal Data Security Measures
Encryption
- • Passwords: bcrypt hashing
- • Personal data: AES-256 encryption
- • Data in transit: TLS 1.3
- • Database: Encrypted storage
Access Control
- • Two-factor authentication for admin accounts
- • IP-based access restrictions
- • Role-based data access control
- • Access log monitoring
Infrastructure Security
- • Cloud security certification (SOC2)
- • Regular security audits
- • Intrusion detection system
- • Encrypted backup data
Monitoring
- • 24/7 security monitoring
- • Anomalous access detection
- • Regular security training
- • Incident response plan
We apply all technical, administrative, and physical security measures in accordance with the Personal Information Protection Act and ICT Act.
5Third-Party Disclosure of Personal Information
Principle: Keryx does not provide users' personal information to third parties.
Exceptions
- • When required by law or regulation
- • When required by legal procedure for investigation purposes
- • When the user has given explicit consent
Service Providers
- Backend hosting: Render (server operations)
- Frontend hosting: Vercel (web service delivery)
- Database: Supabase (data storage and management)
- Payment: Paddle (payment processing)
* All service providers are supervised in accordance with applicable data protection laws.
6Your Rights
Users may exercise the following rights:
Right of Access
You may review the status of your personal data processing.
Right to Correction and Deletion
You may request correction or deletion of inaccurate information.
Right to Suspend Processing
You may request suspension of personal data processing.
Right to Withdraw
You may request account deletion and data removal at any time.
How to Exercise Your Rights
- • Online: Account Settings > Privacy Management
- • Email: privacy@keryx.one
- • Phone: 070-7954-1871
- • Processing time: Within 10 days of receiving the request
7Data Protection Officer
Data Protection Officer
- Name: Privacy Officer
- Organization: Keryx
- Email: privacy@keryx.one
Please contact us at any time regarding complaints or reports related to personal data processing. We will handle your inquiries promptly and diligently.
8Changes to Privacy Policy
- • Changes will be announced via in-service notices
- • Significant changes will be individually notified (email, SMS)
- • Updated policies take effect 7 days after announcement
- • Users who disagree with changes may delete their account
Effective Information
- Effective Date: 2026-03-01
- Revision Date: 2026-03-01
- Version: v1.0
9Related Legislation and Reporting Agencies
Applicable Laws
- • Personal Information Protection Act (PIPA)
- • Act on Promotion of ICT Network Utilization and Information Protection
- • Credit Information Use and Protection Act
Personal Data Breach Reporting Centers
Personal Information Protection Commission (PIPC)
- • Report: privacy.go.kr
- • Phone: 182 (Korea)
Supreme Prosecutors' Office Cyber Crime Investigation Unit
- • Report: spo.go.kr
- • Phone: 02-3480-3573
We safeguard pastors' personal information in accordance with the Personal Information Protection Act.
Verified Source
Compliant with Personal Information Protection Act and ICT Act - AES-256 encryption applied