Y Factory

Privacy Policy

Effective Date: June 3, 2026

YFactory Apps / YFactory (“Company,” “we,” “us,” or “our”) respects your privacy and is committed to protecting your personal information.

This Privacy Policy explains how we collect, use, store, disclose, transfer, and protect personal information when you use our website, mobile games, applications, customer support, communities, advertisements, events, and related services.

1. Data Controller and Contact

The data controller responsible for personal information is:

Company: YFactory Apps / YFactory
Email: contact@yfactorysoft.com
Website: [www.yfactorysoft.com]
Address: [214, Teherna-ro 415, Gangnam-gu, Seoul, Korea]

Privacy Contact / Personal Information Protection Officer:
Name/Title: [Ryan Kim]
Email: contact@yfactorysoft.com

If you have any questions about this Privacy Policy or wish to exercise your privacy rights, please contact us using the email address above.

2. Scope of This Privacy Policy

This Privacy Policy applies to:

  1. The Company’s official website.
  2. The Company’s mobile games and applications.
  3. Customer support, inquiries, and email communications.
  4. Events, promotions, surveys, and marketing activities.
  5. Advertising, analytics, crash reporting, fraud prevention, and service improvement tools used in connection with the Services.

Third-party services, app stores, advertising networks, analytics providers, and external websites may have their own privacy policies. Please review their policies separately.

3. Personal Information We Collect

The Company may collect the following categories of information depending on how you use the Services.

3.1 Information Provided by Users

  1. Customer support information: email address, name or nickname, inquiry details, screenshots, videos, device information, purchase receipts, and attachments submitted by the user.
  2. Event or promotion information: name, email address, country, social media account, shipping information, or other information necessary to provide rewards, only when applicable.
  3. Account connection information: user ID, nickname, profile information, or authentication token provided through Google, Apple, Facebook, or other login providers, only when users choose to connect such services.
  4. Payment support information: purchase history, order number, product name, payment status, refund status, and store receipt information. The Company does not directly collect full credit card numbers or full payment account credentials.

3.2 Information Collected Automatically

When users access the website, games, or applications, the Company may automatically collect:

  1. Device information: device model, operating system, app version, language, country or region, screen resolution, network status, and device settings.
  2. Identifiers: advertising ID, app instance ID, device identifier, user ID, session ID, or similar identifiers.
  3. Gameplay data: level progress, game actions, item usage, virtual currency balance, event participation, mission progress, purchase history, ad reward history, and crash logs.
  4. Usage data: access time, session duration, pages viewed, clicks, interactions, error logs, diagnostic logs, and performance data.
  5. Advertising and analytics data: ad impressions, clicks, conversions, attribution data, campaign information, and ad engagement data.
  6. Technical data: IP address, browser type, cookie information, SDK data, and server logs.

3.3 Sensitive Information

The Company does not intentionally collect sensitive personal information such as race, religion, political opinions, health information, biometric information, or precise real-time location unless required by law or separately consented to by the user.

4. How We Use Personal Information

The Company uses personal information for the following purposes:

  1. To provide, operate, maintain, and improve the Services.
  2. To save game progress, provide game features, deliver items, restore purchases, and manage accounts.
  3. To respond to customer inquiries, complaints, refund requests, technical issues, and support requests.
  4. To process purchases, verify payment history, prevent payment abuse, and resolve billing issues.
  5. To provide events, promotions, rewards, coupons, and user participation benefits.
  6. To analyze service performance, user behavior, gameplay balance, retention, monetization, and service quality.
  7. To personalize content, offers, events, advertisements, and user experience where permitted by law.
  8. To measure advertising performance, attribution, campaign effectiveness, and user acquisition results.
  9. To detect and prevent fraud, cheating, abuse, unauthorized access, security incidents, and violations of our Terms of Use.
  10. To comply with legal obligations, platform policies, accounting requirements, tax requirements, dispute resolution, and regulatory requests.
  11. To send service notices, policy updates, security alerts, and important operational messages.
  12. To send marketing messages only where legally permitted or where the user has provided consent.

5. Legal Basis for Processing

Depending on the user’s country or region, the Company may process personal information based on one or more of the following legal bases:

  1. Performance of a contract: to provide the Services requested by users.
  2. User consent: for optional information, marketing communications, personalized advertising, or certain data processing activities where consent is required.
  3. Legitimate interests: to improve the Services, prevent fraud, ensure security, analyze performance, and operate the business, provided that such interests are not overridden by user rights.
  4. Legal obligations: to comply with applicable laws, accounting rules, tax rules, consumer protection requirements, and regulatory requests.
  5. Protection of rights and safety: to protect users, the Company, third parties, and the integrity of the Services.

6. Cookies, SDKs, and Similar Technologies

The Company may use cookies, mobile SDKs, pixels, local storage, and similar technologies for:

  1. Website operation and security.
  2. Login and session management.
  3. Analytics and service improvement.
  4. Crash reporting and performance monitoring.
  5. Advertising, attribution, and campaign measurement.
  6. Fraud prevention and abuse detection.

Users may disable cookies through browser settings. Users may also limit ad tracking or reset their advertising ID through device settings. However, some features may not function properly if cookies or identifiers are disabled.

7. Personalized Advertising and Opt-Out

The Company may use advertising identifiers, gameplay data, device data, and analytics data to provide or measure personalized advertisements where permitted by law.

Users may limit personalized advertising through the following methods:

  1. iOS: Settings > Privacy & Security > Tracking, or Apple advertising settings.
  2. Android: Settings > Privacy > Ads, or Google advertising settings.
  3. In-app privacy settings, if provided.
  4. Contacting the Company at contact@yfactorysoft.com.

If personalized advertising is disabled, users may still see ads, but they may be less relevant.

8. AI, Automation, and Game Optimization

The Company may use automated systems, analytics, or AI-assisted tools to improve game balance, detect abnormal activity, classify customer support inquiries, analyze service quality, optimize events, or improve advertising performance.

The Company does not use automated processing to make decisions that produce legal or similarly significant effects on users without appropriate notice, consent, or legal basis where required by applicable law.

9. Sharing and Disclosure of Personal Information

The Company does not sell personal information for monetary payment.

The Company may disclose or share personal information with the following parties when necessary:

  1. App stores and payment providers, such as Apple App Store and Google Play, for purchase processing, refund handling, and payment verification.
  2. Cloud hosting and infrastructure providers for secure service operation.
  3. Analytics, crash reporting, and performance monitoring providers.
  4. Advertising networks and attribution partners for advertising delivery, measurement, and fraud prevention.
  5. Customer support tools and communication providers for handling user inquiries.
  6. Legal, accounting, tax, audit, and compliance advisors.
  7. Government authorities, courts, law enforcement agencies, or regulators when required by law.
  8. Business transfer recipients in connection with merger, acquisition, restructuring, asset transfer, or similar transactions, where permitted by law.

The Company requires service providers to process personal information only for the agreed purposes and to apply appropriate security measures.

10. Third-Party Service Providers

The Company may use third-party service providers, including but not limited to:

  1. Apple Inc. – app distribution, payment processing, analytics, and platform services.
  2. Google LLC – app distribution, payment processing, analytics, advertising, crash reporting, and platform services.
  3. Firebase / Google Analytics – analytics, crash reporting, and service improvement.
  4. AppLovin – mobile advertising, campaign measurement, and attribution.
  5. Unity Technologies – mobile advertising, analytics, and game service tools.
  6. Meta Platforms – advertising, campaign measurement, and marketing analytics.
  7. Other advertising networks, analytics providers, hosting providers, and customer support tools used for service operation.

The actual providers may vary depending on the game, platform, country, campaign, or service feature.

11. International Transfer of Personal Information

Because the Company provides global game services, personal information may be transferred to, stored in, or processed in countries outside the user’s country of residence, including Korea, the United States, the European Economic Area, Singapore, Japan, or other regions where our service providers operate.

When transferring personal information internationally, the Company takes reasonable measures required by applicable laws, such as contractual safeguards, data processing agreements, standard contractual clauses, consent, or other lawful transfer mechanisms.

12. Retention Period

The Company retains personal information only for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

General retention standards are as follows:

  1. Account and service use data: retained while the user uses the Services and deleted after account deletion or service termination, unless retention is required for legal, security, fraud prevention, or dispute resolution purposes.
  2. Customer support records: retained for up to 3 years for dispute resolution and service improvement.
  3. Purchase, payment, contract, and refund records: retained for up to 5 years where required by applicable e-commerce, tax, accounting, or consumer protection laws.
  4. Advertising and promotional records: retained for the period required by applicable laws or for the period necessary to verify campaign performance.
  5. Website access logs and security logs: retained for the period required by applicable laws or for a reasonable period necessary for security and fraud prevention.
  6. Fraud, cheating, abuse, or violation records: retained for a reasonable period necessary to protect the Services and prevent repeated violations.
  7. Event participation and reward delivery information: retained until the event ends and rewards are delivered, unless legal retention is required.

When personal information is no longer necessary, the Company deletes or anonymizes it in a secure manner.

13. User Rights

Depending on applicable laws, users may have the right to:

  1. Access personal information.
  2. Request correction of inaccurate information.
  3. Request deletion of personal information.
  4. Request suspension of processing.
  5. Withdraw consent.
  6. Object to certain processing activities.
  7. Request data portability.
  8. Opt out of sale, sharing, or targeted advertising where applicable.
  9. Lodge a complaint with a supervisory authority.

Users may exercise these rights by contacting the Company at contact@yfactorysoft.com.

The Company may request additional information to verify the identity of the requester before processing a request. The Company will respond within the period required by applicable law.

14. Account Deletion and Data Deletion

Users may request account deletion or deletion of personal information by:

  1. Using the in-app account deletion or privacy settings, if available.
  2. Sending a request to contact@yfactorysoft.com.

When a deletion request is processed, the Company will delete or anonymize personal information unless retention is required for legal obligations, payment records, dispute resolution, fraud prevention, security, or legitimate business purposes.

Deleting an account may result in the permanent loss of game progress, virtual items, purchase history within the game, event progress, and other service data.

15. Children’s Privacy

The Company’s Services are not specifically directed to children under the age of 13.

The Company does not knowingly collect personal information from children under 13 without verifiable parental consent where such consent is required by law.

If a parent or legal guardian believes that a child has provided personal information to the Company without appropriate consent, please contact us at contact@yfactorysoft.com. The Company will take appropriate steps, including deletion of the information where required.

For users in countries or regions with a higher minimum age requirement, the applicable local standard will apply.

16. Security Measures

The Company applies reasonable technical, administrative, and physical safeguards to protect personal information, including:

  1. Access control and permission management.
  2. Encryption or secure transmission where appropriate.
  3. Security monitoring and log management.
  4. Regular review of service providers and SDKs.
  5. Internal privacy and security policies.
  6. Measures to prevent unauthorized access, loss, misuse, alteration, or disclosure.

However, no method of transmission or storage is completely secure. The Company will continue to improve its security measures to protect user information.

17. Regional Privacy Notices

17.1 Users in Korea

Users in Korea may exercise rights under applicable Korean personal information protection laws, including access, correction, deletion, suspension of processing, and withdrawal of consent.

17.2 Users in the European Economic Area and United Kingdom

Users in the EEA and UK may have rights under applicable data protection laws, including access, rectification, erasure, restriction, objection, data portability, and withdrawal of consent.

Where required, the Company will process personal information based on a lawful basis such as contract performance, consent, legitimate interests, legal obligations, or protection of rights.

17.3 California Residents

California residents may have rights to know, access, delete, correct, and opt out of sale or sharing of personal information, as well as the right not to be discriminated against for exercising privacy rights.

The Company does not sell personal information for monetary payment. However, certain advertising or analytics activities may be considered “sharing” or “targeted advertising” under applicable privacy laws. Users may contact us at contact@yfactorysoft.com to exercise applicable opt-out rights.

18. Links to Third-Party Websites

The Services may contain links to third-party websites, stores, platforms, advertisements, or services.

The Company is not responsible for the privacy practices of third parties. Users should review the privacy policies of such third parties before using their services.

19. Changes to This Privacy Policy

The Company may update this Privacy Policy from time to time due to changes in laws, platform policies, service features, technologies, or business operations.

When material changes are made, the Company will notify users through the website, app notice, in-game notice, email, or other appropriate methods.

The updated Privacy Policy becomes effective on the date stated at the top of the policy.

20. Contact

If you have any questions, requests, or complaints regarding this Privacy Policy or the processing of personal information, please contact us at:

YFactory Apps / YFactory
Email: contact@yfactorysoft.com
Website: [www.yfactorysoft.com]
Address: [214, Teheran-ro 415, Gangnam-gu, Seoul, Korea]