HEARTCOUNT Privacy Policy
Last updated: March 19, 2026
HEARTCOUNT is committed to protecting the privacy of its users. This Privacy Policy describes how IDK Squared Inc. ("Company," "we," "us," or "our") collects, uses, and safeguards your personal information when you use the HEARTCOUNT service. This Policy is incorporated by reference into our Terms of Service.
The Service is intended for users aged 14 and older.
Information We Collect
We collect the following information when you register and use our Service:
Required: Email address, password, name, service usage records, access logs, and IP address, uploaded datasets and analysis history.
Optional: Phone number, company phone number, job title, department, and company name.
We collect this information through direct input at registration, Google Sign-In (email, name, and Google account ID), payment processing via TossPayments, and automatic collection of IP address and browser User Agent upon accessing the Service.
How We Use Your Information
We use the information we collect to:
•
Create and manage your account, verify your identity, and maintain account security
•
Deliver and personalize the Service, including billing and payment processing
•
Respond to inquiries, complaints, and customer support requests
•
Send service-related notices such as confirmations, invoices, and technical updates
•
Analyze usage patterns to improve the Service
•
Send marketing and promotional communications — only with your separate consent
Sharing Your Information
We do not sell your personal data.
We may share your information with the third-party service providers listed below, solely for the purposes described. We require these providers to handle your data securely and only as instructed.
Provider | Purpose |
Amazon Web Services, Inc. | Cloud infrastructure and data storage |
Google LLC (Sign-In) | User authentication |
Google LLC (Analytics) | Website and usage analytics |
Twilio Inc. (SendGrid) | Transactional email delivery |
Ghost Foundation | Newsletter subscription management |
Typeform SL | User surveys and feedback |
TossPayments Inc. | Payment processing |
We may also disclose your information when required to do so by law or in response to valid legal process.
AI-Powered Features
HEARTCOUNT provides AI-assisted data analysis features powered by third-party AI models. Please read this section carefully if you use these features.
What we send to AI providers. When you run an AI analysis, the Company may transmit the following to the AI model provider: data structure information (column names and a sample of categorical values), applied filter conditions, and aggregated or statistical results. We do not transmit your login credentials or account identifiers to AI providers.
Do not upload personal data to AI features. You are responsible for ensuring that data submitted through AI features does not contain personal information. If personal data is present in the data you upload or connect, it may be transmitted to the AI model provider and processed outside of your country.
AI provider. The AI features are currently powered by OpenAI (United States). For details on how OpenAI handles data, please refer to OpenAI's Privacy Policy: https://openai.com/policies/privacy-policy
AI output disclaimer. AI-generated results (including queries, insights, and recommendations) are probabilistic and should be treated as reference material only. The Company does not guarantee the accuracy or completeness of any AI-generated output.
Provider changes. If we change our AI model provider, we will update this Privacy Policy accordingly.
Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes described in this Policy. When your account is terminated or the purpose of collection is achieved, we delete your data without undue delay.
Certain records are retained for longer periods where required:
Record Type | Retention Period |
Contract and subscription records | Up to 5 years |
Payment and billing records | Up to 5 years |
Dispute and complaint records | Up to 3 years |
Access and connection logs | Up to 1 year |
For retention periods applicable to service datasets and analysis history, please refer to Section 10 of our Terms of Service.
Your Rights
You may, at any time, request to access, correct, delete, or restrict the processing of your personal information. To exercise these rights, contact us at support@idk2.co.kr. We will respond within 10 business days.
Note that certain information may not be eligible for deletion where retention is required by applicable law.
Security
We maintain reasonable physical, technical, and organizational measures to protect your personal information, including access controls, security software, and regular internal audits. Access to personal data is limited to authorized personnel only.
We encourage you to also protect your account by using a strong password and not sharing your credentials with others.
Cookies
We use cookies to enable core functionality, maintain login sessions, personalize your experience, and analyze usage. You can configure your browser to refuse cookies, though doing so may affect certain features of the Service. For more detail, please see our Cookie Policy.
Updates to This Policy
We will notify you of any changes to this Privacy Policy by posting the updated version on our website. For material changes — such as changes to the categories of data we collect or how we share it — we will provide at least 30 days' advance notice. For other changes, we will provide at least 7 days' notice. Your continued use of the Service after the effective date constitutes acceptance of the updated Policy.
Contact
For any questions or concerns regarding this Privacy Policy, please contact us:
IDK Squared Inc. 602 Jeongdong-gil 35, Jung-gu, Seoul, 04518, South Korea Email: support@idk2.co.kr Tel: +82 70-8841-2912
