Effective Date: Apr. 7, 2025
Last Updated: Sept. 20, 2025

Korean Patch (“we”, “us”, or “our”) operates the websites koreanpatch.co, roverkorea.com, bando.news, youngno.blog, haedongdaily.com, aegukja.tv, yonggungpo.kr, taeyangdragons.com, and auth.koreanpatch.co (collectively, the “Sites”). This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our services and the choices you have associated with that data.

We are committed to protecting your personal information and your right to privacy, in compliance with the General Data Protection Regulation (GDPR) and South Korea’s Personal Information Protection Act (PIPA).

1. Data We Collect

We collect personal information that you voluntarily provide to us when you:

  • Subscribe to our newsletter
  • Register for free or paid memberships
  • Enroll in courses
  • Access paywalled content across our network of sites
  • Contact us directly via forms or email

This may include:

  • Name
  • Email address
  • Billing information (for paid members)
  • Course progress and learning activity
  • Content access history across all our sites
  • Authentication credentials and session data
  • IP address and device/browser data
  • Marketing preferences

We do not collect any special categories of personal data (e.g. race, religion, health).

2. Cross-Domain Authentication and Single Sign-On

We operate multiple websites that use a centralized authentication system through auth.koreanpatch.co powered by Authentik. This system provides the following functionality:

  • Single Sign-On Access: When you log in to any of our sites, your authentication credentials are securely shared across our network of websites
  • Seamless Content Access: This allows you to access paywalled content on roverkorea.com, bando.news, youngno.blog, haedongdaily.com, aegukja.tv, yonggungpo.kr, and taeyangdragons.com without logging in again
  • Unified Account Management: Your account information, preferences, and course access are synchronized across all our sites
  • Cross-Domain Session Management: We use secure tokens to maintain your logged-in status across different domains within our network

When you authenticate through our SSO system, we process your login credentials and account information across all our sites to provide seamless access to content and services you’ve purchased or subscribed to.

3. Paywalled Content and Course Access

When you purchase courses or memberships on koreanpatch.co, your access rights are automatically extended to relevant paywalled content across our entire network of sites. This includes:

  • Cross-Site Content Delivery: Courses and premium content purchased on the main site are accessible through our auxiliary sites
  • Unified Subscription Management: Your membership status and content access permissions are shared across all domains
  • Progress Tracking: Your learning progress and content consumption may be tracked across multiple sites to provide a cohesive educational experience

4. How We Use Your Data

We use your data for the following purposes:

  • To create and manage your account across all our sites
  • To deliver our newsletter and learning materials
  • To process payments and memberships
  • To provide seamless access to paywalled content across our network
  • To maintain SSO functionality and cross-domain authentication
  • To send transactional emails related to your account or purchases
  • To track course progress and learning activity across all platforms
  • To improve our services and content
  • To comply with legal obligations

We will never sell or rent your personal data.

5. Legal Basis for Processing

Under the GDPR and PIPA, we rely on one of the following legal bases:

  • Consent (for newsletter subscriptions and marketing)
  • Contract (for membership/course services and cross-domain content access)
  • Legal obligation (when required by law)
  • Legitimate interest (to improve user experience, analytics, SSO functionality, etc.)

6. Data Sharing and Third Parties

We may share your data with trusted third-party service providers who help us operate our sites, manage communications, process payments, deliver content, and maintain our SSO infrastructure. All such providers are GDPR and PIPA-compliant and process your data only on our behalf and under our instruction.

Your authentication and account data is shared internally across our network of sites to enable SSO functionality and seamless content access.

7. Your Data Rights (EU, EEA, and Korean Users)

You have the right to:

  • Access your personal data across all our sites
  • Correct inaccurate data
  • Delete your data (“Right to be Forgotten”)
  • Restrict or object to processing
  • Withdraw consent at any time
  • Data portability (receive your data in a structured format)
  • File a complaint with your Data Protection Authority

To exercise these rights, email us at: privacy@koreanpatch.co

8. Data Retention

We retain your data:

  • As long as you are an active subscriber or user across any of our sites
  • As required for accounting, legal, or tax purposes
  • For up to 24 months after inactivity across all platforms (unless requested otherwise)
  • Authentication and session data are retained only as long as necessary for SSO functionality

9. Cookies and Tracking

Our sites use cookies for:

  • Functional purposes (e.g., login sessions, SSO authentication)
  • Cross-domain authentication (to maintain your logged-in status across our network)
  • Analytics (e.g., page views, user behavior across sites)
  • Marketing (e.g., newsletter tracking)

We implement cross-domain cookie consent to ensure compliance across all our sites. You can manage cookie preferences via your browser settings or opt out of non-essential cookies.

10. Data Security

We use industry-standard security measures to protect your data, including:

  • HTTPS encryption across all sites
  • Secure SSO infrastructure with Authentik
  • Secure servers and access controls
  • Protected cross-domain data transmission
  • Regular security audits of our authentication system

However, no method of transmission is 100% secure.

11. International Transfers

If you are outside South Korea, your data may be processed in Korea or the United States. We ensure that such transfers are compliant with GDPR and PIPA using standard contractual clauses where needed.

12. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on all our sites and updating the “Last Updated” date. Changes apply to all sites in our network simultaneously.

13. Contact Us

If you have any questions or concerns about this policy or your data, contact:

Korean Patch
Busan, South Korea
Email: privacy@koreanpatch.co

This privacy policy applies to all websites operated by Korean Patch and covers your data across our entire network of sites.