PERSONAL INFORMATION COLLECTED FROM USERS
At Pluto Labs, Inc. ("we", "us", "our", "ours", "ourselves", “Pluto Labs”), we develop and operate online services ("Services”) to streamline researchers’ paper reading time, foster interdisciplinary research and collaboration, enhance research data usability, provide profound insights, and build a vibrant community around our innovative system. In furtherance of the foregoing, we need to collect, share, and analyze data from our Services’ users ("Users”). This process aims to enhance our Services and better cater for the needs of our community.
Pluto Labs sets forth this privacy policy (“Privacy Policy”) to explain the purposes and procedure under which personal information of our Users is collected, used, or otherwise processed, as well as the security measures which we implement to ensure privacy and protection of such information. We legally process and securely manage personal information in compliance with the “Personal Information Protection Act” and the “Act on Promotion of Information and Communications Network Utilization and Information Protection” of the Republic of Korea (“Applicable Laws”).
For the purposes of this Privacy Policy, and pursuant to the Applicable Laws, personal information shall mean any of the following information pertaining to a living individual:
•
information that identifies a particular individual by his or her full name, resident registration number (or equivalents), pictures, et cetera, or the pseudonymized version of such information; or
•
information that, on its own, cannot identify a particular individual but may easily merge with other information to identify the individual, or the pseudonymized version of such information.
Any capitalized terms used but undefined herein shall have the same meaning ascribed to such term under the Pluto Labs, Inc. Terms of Service. If nowhere defined, they shall take on the generally accepted meanings.
Any changes made to this Privacy Policy will be communicated through notifications on our websites (http://www.pluto.im or http://www.scinapse.io) or by individual notices.
PERSONAL INFORMATION COLLECTED FROM USERS
We use Personal information which we collect from our Users are as follows:
•
During Membership registration:
◦
Required: email, name, affiliation
◦
Optional: social media info., occupation
•
Paid Subscription
◦
Required: Financial information(credit / debit card numbers), Billing address
◦
Optional: Tax ID
•
During usage of service
◦
Required: IP address, System Info. Service usage Logs
◦
Optional: Cookie info.
PURPOSE OF PROCESSING PERSONAL INFORMATION
We use Personal information which we collect from our Users for the following purposes:
•
Member Registration and Management:
◦
Identity verification for membership-based services, personal identification, sending of notices, key announcement, etc.
•
Provision of Content Search Services
•
User Search-Log Analysis
◦
Collection and analysis of User search logs for the purpose of improving Services, enhancing User experience, and providing relevant content.
•
Provision of Paid Subscriptions
•
Personalized Services (including enterprise service)
•
Marketing and Advertisement
◦
Transmission of advertising information such as events, provision of services and advertisement placements based on demographic characteristics, tracking user access frequency, or statistical analysis of member service usage.
◦
Development of advertising product utilizing personal information collected from Users such as email addresses.
PERSONAL INFORMATION PROCESSING AND RETENTION PERIOD
Pluto Labs destroys personal information collected from User without delay upon cancellation of Membership by the User or attainment of the purpose for which such personal information has been collected and used. Notwithstanding the foregoing, Pluto Labs complies with any statutory retention period prescribed by relevant laws and regulations if applicable to such personal information.
RIGHTS OF USERS AND THEIR LEGAL REPRESENTATIVE
•
Users are entitled with the right to request Pluto Labs to provide access to their respective personal information retained. Pluto Labs will provide on its Websites the method and procedures for Users on how to access their personal information.
•
Users are entitled with the rights to request Pluto Labs to correct or erase, or to suspend processing of their respective personal information retained. Users may make foregoing requests by contacting personal information manager listed below.
•
Users may exercise the foregoing rights through a legal representative, in which case the respective User must execute and submit Annexed form No.11 of the Enforcement Regulations of the Personal Information Protection Act (power of attorney).
•
Notwithstanding the above, Users’ exercise of right to request to provide access to or to suspend processing of personal information may be restricted under art.35 para.4 and art.37 para.2 of the Personal Information Protection Act.
•
Notwithstanding the above, User’s exercise of right to request to correct or erase personal information may be restricted where such information is subject to mandatory collection under applicable laws and regulations.
•
Upon a User’s request to access, correct, erase, or suspend processing of his/her personal information retained, Pluto Labs is entitled to and will verify whether the requester is the User or a legitimate legal representative of the User.
•
Users are entitled to refuse consent to the collection and use of their personal information. However, withholding consent to the collection and use of required personal information will limit User’s use of the respective Pluto Labs service for which login is necessary.
DESTRUCTION OF PERSONAL INFORMATION
Subject to exceptions stated herein, we destroy personal information without delay upon Membership cancellation or attainment of purpose for collection and use of personal information.
The process and method employed in the destruction of personal information are as follows.
•
Destruction Process:
Once its purpose for collection and use has been fulfilled, the personal information entered by Users will be marked, segregated, and retained for a certain period of time in accordance with internal policy and applicable legal requirements before destruction (see Personal Information Processing and Retention Period).
The aforementioned personal information will not be used for any purpose other than for which it is retained unless required by law.
•
Destruction Method:
Personal information stored in electronic form is deleted using technical methods that make such information unrecoverable.
TRANSFER OF PERSONAL INFORMATION TO THIRD PARTY
Subject to the following exceptions, we do not provide the personal information of Users to any third party:
•
We may transfer the personal information of Users under the prior consent of each respective User.
•
We may transfer personal information of Users as required under Applicable Laws or as requested by an institution of investigation in accordance with due process and methods prescribed by the laws and regulations for the purpose of investigation.
OUTSOURCING PERSONAL INFORMATION PROCESSING
We outsource the processing of personal information for smooth handling thereof as follows:
Outsourcee | Details of Outsourced Work | Use/Retention Period |
STRIPE, INC. | Payment Settlement |
Until membership cancellation or termination of outsourcing contract
|
Pluto Labs US, Inc. | Payment Settlement |
Until membership cancellation or termination of outsourcing contract
|
Freshworks Inc. | Customer Support |
Until membership cancellation or termination of outsourcing contract
|
Twilio Inc. | Email Mangement |
Until membership cancellation or termination of outsourcing contract
|
GOOGLE LLC | Cloud Infrastructure |
Until membership cancellation or termination of outsourcing contract
|
Agreements executed by us for the outsourcing of personal information explicitly prohibit any processing of personal information outside authorized purpose and include provisions stipulating requirements for technical and administrative protection measures, restrictions on re-outsourcing, inspection and supervision over the outsourcee, and liability for damages.
we exercise oversight over its outsourcees for the safe processing of personal information.
In the event of any changes to the outsourcees or the details of the outsourced work, such changes will be publicly announced through this Privacy Policy without undue delay.
INTERNATIONAL TRANSFER OF PERSONAL INFORMATION
Users’ personal information will be transferred overseas as follows:
Transferee | Personal Information Manager Contact Information | Purpose of Transfer | Personal Information Transferred | Country of Transfer | Time and Method of Transfer | Usage and Retention Period |
STRIPE, INC.
| privacy@stripe.com | Payment Sattlement | Account Info., Financial Info., Billing Adress., Tax ID
| US | Transmission through the network at the time of your payment request | Until membership cancellation
or termination of contract with transferee
|
Pluto Labs US, Inc. | support@pluto.im | Payment Sattlement | Account Info., Financial Info., Billing Adress., Tax ID
| US | Transmission through the network at the time of your payment request | Until membership cancellation
or termination of contract with transferee
|
Twillo., Inc. | privacy@twillo.com | Email Management | Account Info.
| US | Transmission throug the network when the service sends email to users | Until membership cancellation
or termination of contract with transferee
|
Freshworks Inc. | support@freshdesk.com | Customer Support | Account Info. | US | Transmission throug the network when the users request support | Until membership cancellation
or termination of contract with transferee
|
GOOGLE LLC
| https://www.google.com/safetycenter/?hl=en_US | Cloud Infrastructure | All items listed in this
Privacy Policy for collection
| US | Transmission through the network at the time of service usage
| Until membership cancellation
or termination of contract with transferee
|
AUTOMATIC COLLECTION OF PERSONAL INFORMATION
We employ “cookies” to store and retrieve usage data, aiming to provide personalized and tailored services to Users.
Cookies are small information pieces sent by the server operating the website to the User's computer browser, subsequently stored on the User's PC hard disk.
•
Purpose of using cookies:
We utilize cookies to enhance our services by recognizing User visit types, usage patterns, user volumes, and more.
•
Installation/Operation and Declining Cookies:
Users have the choice to enable or disable cookies. You can reject the storage of cookies via your web browser's settings menu, which may vary based on the browser type.
•
Impact of Declining Cookies:
Refusing to store cookies might result in difficulties when using personalized services.
We also employ Google Analytics to help provide us with information about traffic to our Websites and use of our Services, which Google may share with other services and websites who use the collected data to contextualize and personalize the ads of its own advertising network (Google’s Privacy Policy: https://policies.google.com/privacy?hl=en-US ). To opt out of having your activity on Services made available to Google Analytics by installing the Google Analytics opt-out add-on for your web browser, visit and follow guidance provided on the following website: https://tools.google.com/dlpage/gaoptout.
SAFEGUARDING OF PERSONAL INFORMATION
We have established the following measures to ensure the safety of personal information:
•
Administrative Measures: implementation and execution of internal management plan, and regular training of employees on safeguarding personal information
•
Technical Measures: installation of access rights management regarding personal information system, etc., access controls, cryptography, firewalls, security programs
•
Physical Measures: control of unauthorized persons’ physical access to computer rooms, data archives, etc.
Despite various measures we implement to protect information from unauthorized access, there's no such thing as completely secure data transmission or storage, so we can't guarantee that our security will not be breached.
Although we might provide features like temporary password or password resetting, we never ask passwords from users. For your own protection, please be responsible of safeguarding your own password, and never disclose it to anyone.
If you are asked your password or you find any sign of your personal information being misused due to security breach, please let us know by sending us email at support@pluto.im, so we can fight against malicious attempts and better protect users and ourselves.
USER SUPPORT SERVICE
We designate the following personal information manager to protect Users’ personal information and handle complaints about personal-information-related issues. Users can report any complaints related to the protection of personal information arising from using our Services to the personal information manager. We will promptly respond within business hours to reports submitted by Users.
•
Name: Junseon Yoo
•
Position: CEO
•
Email: support@pluto.im
REMEDIES FOR INFRINGEMENT OF RIGHTS AND INTERESTS
For reports or consultations on other issues regarding infringement of personal information, please contact the following agencies:
•
Personal Information Dispute Mediation Committee (https://www.kopico.go.kr), (1833-6972)
•
Korea Internet & Security Agency (https://privacy.kisa.or.kr), (118 w/o area code)
•
CID, Supreme Prosecutor’s Office (https://www.spo.go.kr), (1301 w/o area code)
•
ECRM, National Policy Agency (https://ecrm.police.go.kr), (182 w/o area code)
CHANGES TO PRIVACY POLICY
•
This Privacy Policy will be applied from [2024. 1. 15]
•
We may modify the contents of this Privacy Policy as necessary due to changes in legal, regulatory or operational requirements. We will notify you of such changes (including the effective date) in accordance with the law. Your continued use of our Services after the effective date of the changes will constitute your acknowledgment and acceptance of those changes.
•
Previous versions of Privacy Policy can be found in the link below: