PANDAO Privacy Policy

This Privacy Policy explains how PANDAO collects, uses, stores, shares, protects, and responds to requests concerning personal information when users access the platform, register, post, comment, message, submit provider profiles, post hiring tasks, list items, or use the Korean e-commerce directory.

PANDAO has users who may be located in China, Korea, and other regions. This policy is written with reference to common principles in Korean privacy law, China’s Personal Information Protection Law, and GDPR-style transparency and user-rights rules.

We may collect account information, profile information, authentication and verification information, user-generated content, provider and hiring information, listings, ratings, reports, messages, device information, IP addresses, access logs, security logs, and administrator operation records.

Users should avoid posting sensitive personal information, customer lists, passwords, verification codes, identity documents, financial account details, or confidential business materials in public areas or ordinary messages.

We use information to provide registration, login, posting, comments, messaging, provider listings, hiring tasks, sale listings, notifications, review, support, and security functions.

We also use necessary information to prevent spam, fraud, account theft, fake transactions, review abuse, points manipulation, security incidents, and other harmful activity.

PANDAO does not sell personal information. We may share or entrust information only where necessary for service delivery, security, legal compliance, dispute handling, or with user authorization.

External websites and third-party services have their own terms and privacy policies. Users should review those policies before submitting information outside PANDAO.

Because PANDAO serves Korea-related e-commerce users, information may be accessed or processed across borders depending on server location, user location, email services, backups, support, and security operations.

Where cross-border processing occurs, PANDAO will aim to apply reasonable notice, necessity, access control, and security safeguards.

Account and content information is generally retained while the account or content exists. Some logs, verification records, reports, dispute records, and administrator records may be retained for longer where needed for security, disputes, compliance, or fraud prevention.

PANDAO uses reasonable safeguards such as encrypted password storage, role-based access, logs, request frequency controls, verification, review, and backups. No internet service can guarantee absolute security, so users should also protect passwords, devices, and verification codes.

Users may request access, correction, supplementation, copying, deletion, withdrawal of consent, account closure, explanation, or objection where allowed by applicable law and platform security requirements.

PANDAO may verify identity before responding. Some requests may be refused or delayed where they affect other users, security records, legal obligations, or dispute evidence.

Users may contact PANDAO through the published support channel or pandao@pandao3.com for privacy questions, requests, or complaints. Do not send passwords, verification codes, full identity numbers, or unrelated sensitive materials by ordinary email.

PANDAO may update this policy as features, laws, security needs, or third-party services change.

PANDAO may process account fields, profile fields, verification and provider fields, hiring and listing fields, content, messages, IP addresses, device and browser information, security logs, review logs, reports, appeals, and administrator operation records where needed for platform functions and safety.

PANDAO may use services such as Resend or Aliyun email for messages, Google Analytics and Google Tag Manager for analytics, DeepSeek or other AI services for review or language assistance, and cloud providers for hosting, logs, storage, and backups. Data sent to each provider should be limited to the function being performed.

Users should not submit identity documents, bank details, verification codes, customer lists, full contracts, backend passwords, or unrelated sensitive materials to public pages, ordinary messages, or unnecessary third-party services.

Users may request access, correction, deletion, export, account closure, withdrawal of consent, or an explanation of processing rules. PANDAO may verify identity and may refuse or delay requests that affect other users, disputes, security audits, fraud prevention, or legal obligations.

After deletion or account closure, PANDAO may retain necessary records for at least 30 days for security, disputes, backups, audits, fraud prevention, or legal compliance. Longer retention may apply where complaints, investigations, or legal processes are pending.

This policy is an operational version prepared for PANDAO and should be reviewed by qualified counsel before broader commercial use, especially where cross-border data, identity verification, payments, advertising, or automated decisions are introduced. If language versions differ before formal legal review, the Chinese version controls.