PRIVACY NOTICE

This Privacy Notice explains how KANG SEORYUN™, operated by Solevaz Enterprise, collects, uses, discloses, stores, transfers and otherwise processes Personal Data in connection with kangseoryun.com, its related digital properties, its products, services, editorial features, customer interactions, business enquiries, creator-related activities and associated operations.

This Privacy Notice should be read together with our Terms of Sale & Use, Cookie Notice, Shipping & Delivery Policy, Returns & Exchanges Policy, Made-to-Order Policy, Editorial, Features & Disclosures Policy, Credits & Vouchers Terms, Wholesale & B2B Terms, Warranty, Defects & Claims Policy, Contributor Terms, Early Access Policy, Copyright & DMCA Policy, Feature Requests page, Creator Application page and Careers page, where applicable.

By accessing or using the Website, contacting us, submitting information to us, placing an Order, requesting a feature, applying through a creator form, subscribing to updates or otherwise engaging with KANG SEORYUN™, you acknowledge that your Personal Data may be processed in accordance with this Privacy Notice and applicable law.

Click to expand/collapse ↴

1. Application and Scope

1.1 This Privacy Notice applies to Personal Data processed by or on behalf of Solevaz Enterprise in connection with the Website, its commercial activities, editorial activities, business administration and related customer, contributor, creator, supplier and partner interactions.

1.2 This Privacy Notice applies whether Personal Data is collected online, through the Website, through forms, by e-mail, through customer support interactions, through creator or contributor submissions, through transaction processes, through editorial coordination, through commercial communications or through any other lawful channel connected with our operations.

1.3 This Privacy Notice is intended to operate as the written notice provided to data subjects regarding the processing of their Personal Data in connection with our commercial activities.

2. Operator and Data User

2.1 KANG SEORYUN™ is operated by Solevaz Enterprise, a business registered in Malaysia under Registration No. IP0602800-M / 202403312940, with its principal place of business at Level 23, Exchange 106 Tower, Lingkaran TRX, Tun Razak Exchange, 55188 Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.

2.2 Solevaz Enterprise also maintains a Hong Kong office address at 86/F, International Commerce Centre, 1 Austin Road West, Kowloon, Hong Kong.

2.3 For the purposes of applicable Malaysian personal data protection law, Solevaz Enterprise acts as the relevant data user or controller in respect of Personal Data processed in connection with the Website and related activities, except where another role is expressly stated or necessarily implied by the circumstances.

2.4 Official enquiries may be submitted through the contact form made available on the Website. The official contact e-mail address and telephone number of Solevaz Enterprise are set out on the Corporate Information page and, where applicable, in other relevant legal pages.
3. Definitions

3.1 In this Privacy Notice, unless the context otherwise requires, the following definitions apply.

3.2 Personal Data means any information in respect of commercial transactions that relates directly or indirectly to a data subject, who is identified or identifiable from that information or from that and other information in our possession, including any sensitive or ordinary personal information to the extent applicable under law.

3.3 Website means kangseoryun.com and any page, subdomain, storefront, feature page, submission page, checkout environment or connected digital property operated by KANG SEORYUN™.

3.4 Order means any purchase, reservation, application, request, submission or transaction placed through or in connection with the Website.

3.5 Contributor means any person who submits, supplies or proposes photographs, text, artwork, interview responses, media materials, creator applications, feature requests, editorial materials or similar content to KANG SEORYUN™.

3.6 Cookies means cookies, tags, pixels, scripts, identifiers and similar technologies used to collect or store information from browsers, devices or sessions.
4. Categories of Personal Data We May Collect

4.1 We may collect and process Personal Data including:

  • full name;
  • preferred name or professional name;
  • billing address;
  • shipping address;
  • e-mail address;
  • telephone number;
  • account or login details;
  • payment-related information;
  • order history;
  • purchase preferences;
  • communications and correspondence;
  • enquiry content;
  • feature request content;
  • creator or contributor submission materials;
  • business details;
  • company name;
  • registration details supplied by you;
  • technical usage information;
  • device and browser information;
  • IP address;
  • cookie-related identifiers;
  • newsletter preferences;
  • customer support history;
  • media permissions, release information or rights-clearance information.

4.2 Depending on the nature of the interaction, we may also process:

  • photographs;
  • videos;
  • interview responses;
  • biography information;
  • portfolio links;
  • social media handles;
  • submitted media kits;
  • business proposals;
  • supplier information;
  • shipping and fulfilment information;
  • fraud-screening information;
  • dispute-related information;
  • complaint records;
  • records required for legal, tax, audit or compliance purposes.

4.3 We may also collect applicant-related information submitted in connection with employment, internship, freelance, contract or other role applications, including CVs, resumes, portfolios where provided, employment history, qualifications, salary expectations, supporting documents, relevant links and related correspondence.

4.4 We do not ask for sensitive personal data unless it is genuinely necessary, lawfully permitted and appropriately handled. If sensitive personal data is ever required in a specific context, additional handling measures or notices may apply.
5. Sources of Personal Data

5.1 We may obtain Personal Data directly from you when you:

  • create an account;
  • place an Order;
  • complete a form;
  • contact us through the Website;
  • subscribe to communications;
  • request support;
  • submit a creator application;
  • submit a careers application;
  • provide recruitment or role-related materials;
  • send a feature request;
  • participate in an editorial process;
  • request collaboration;
  • upload content;
  • redeem a credit or voucher;
  • engage with us in a business capacity.

5.2 We may also obtain Personal Data from:

  • payment processors;
  • delivery and fulfilment providers;
  • customer support tools;
  • analytics tools;
  • advertising and marketing tools, where lawfully used;
  • social media platforms;
  • public-facing professional profiles;
  • artist, creator or representative submissions;
  • authorized agents or representatives acting on your behalf;
  • business partners, suppliers or service providers;
  • publicly available lawful sources.

5.3 Where Personal Data relating to another person is provided to us by you, you represent that you are authorized to provide it and that the relevant person has been informed, where required, of such disclosure.
6. Purposes of Processing

6.1 We may process Personal Data for one or more of the following purposes:

  • to operate, maintain and improve the Website;
  • to process Orders, payments, fulfilment and delivery;
  • to provide Digital Products, Physical Products, services, features and support;
  • to verify identity, eligibility or transaction integrity;
  • to detect, prevent or investigate fraud, abuse, security issues or unauthorized activity;
  • to manage customer service, enquiries and complaint handling;
  • to administer accounts, credits, vouchers, returns, exchanges and claims;
  • to manage made-to-order, pre-order or allocation-based transactions;
  • to coordinate creator applications, contributor submissions, feature requests and editorial processes;
  • to review and assess employment, internship, freelance, contract or other role applications;
  • to communicate with applicants and manage recruitment-related records;
  • to publish, manage or archive editorial content, where lawfully permitted;
  • to communicate updates, legal notices, service notices and operational messages;
  • to send newsletters, promotional materials or marketing communications where permitted or consented to;
  • to conduct internal analytics, research, service development and performance review;
  • to maintain records for legal, tax, audit, compliance and governance purposes;
  • to enforce our legal rights, policies and contractual terms;
  • to comply with applicable law, regulatory requirements, lawful requests or enforcement obligations.

6.2 We may also process Personal Data for any other purpose that is directly related to the original purpose of collection, reasonably expected in the context of the relationship or otherwise permitted by applicable law.
7. Whether Provision of Personal Data Is Obligatory or Voluntary

7.1 The provision of certain Personal Data is obligatory where such information is necessary for us to:

  • process your Order;
  • verify your payment;
  • fulfil delivery;
  • respond to a legal request;
  • administer an account;
  • handle a warranty or claims issue;
  • assess a creator or contributor submission;
  • assess a careers or role application;
  • provide a requested service or response;
  • comply with legal or regulatory obligations.

7.2 Other Personal Data may be voluntary, including certain marketing preferences, optional profile information, optional editorial information and non-essential submission materials.

7.3 If you do not provide Personal Data that is necessary for a relevant purpose, we may be unable to process your Order, respond to your request, assess your application, publish your feature, provide the requested service or otherwise deal with you effectively.
8. Disclosure and Classes of Third Parties

8.1 We may disclose Personal Data to the following classes of third parties where reasonably necessary and lawfully permitted:

  • payment processors and payment service providers;
  • banks and financial institutions;
  • fraud detection or verification providers;
  • logistics providers, couriers, warehouses and fulfilment partners;
  • hosting providers and cloud service providers;
  • website, security and information technology vendors;
  • software, communications and customer-service providers;
  • analytics and performance service providers;
  • professional advisers, including legal, tax, audit or compliance advisers;
  • insurers;
  • rights-management or enforcement service providers;
  • editors, photographers, production support providers or publication support providers where necessary for editorial or feature activity;
  • business partners, operational collaborators or service providers supporting the relevant transaction or project;
  • regulatory authorities, governmental bodies, law-enforcement agencies or courts where required or permitted by law;
  • any party to whom disclosure is necessary for the establishment, exercise or defence of legal claims;
  • any successor, purchaser, transferee or reorganized entity in connection with a restructuring, sale, merger, transfer or corporate reorganization.

8.2 We do not sell Personal Data in the ordinary consumer-data-broker sense.

8.3 Where we publish editorial or feature content, certain Personal Data may be made public where publication is requested, approved, consented to or otherwise lawfully permitted in the context of that feature, contribution or collaboration.
9. Cross-Border Transfers

9.1 Personal Data may be transferred to, stored in, accessed from or processed in jurisdictions outside Malaysia where required for hosting, communications, support, payment processing, delivery, fulfilment, editorial publication, cloud infrastructure, operational management or other legitimate business purposes.

9.2 Personal Data may be transferred outside Malaysia where necessary for our operations, subject to applicable law and appropriate safeguards.

9.3 Where applicable, we take reasonable steps and implement appropriate safeguards to ensure that transferred Personal Data continues to receive a level of protection appropriate to the nature of the data and the transfer context.

9.4 Such safeguards may include contractual measures, internal governance measures, vendor due diligence, transfer assessments, access controls, data minimization and other appropriate protective arrangements.
10. Cookies and Similar Technologies

10.1 We may use Cookies and similar technologies to operate the Website, remember preferences, maintain sessions, improve functionality, analyse usage, support performance measurement and, where applicable, support marketing or communication activities.

10.2 Some Cookies may be strictly necessary for the operation of the Website. Others may be optional depending on how the Website is configured and which tools are active at a given time.

10.3 Further information about our use of Cookies, including categories, controls and preference options, is set out in our Cookie Notice.

10.4 Where required by applicable law or platform configuration, we may implement consent or preference-management tools for non-essential Cookies.
11. Marketing Communications

11.1 We may send newsletters, announcements, launch notices, promotional content, editorial updates, feature-related updates or similar communications where you have requested them, consented to them, subscribed to them or where we are otherwise permitted to do so under applicable law.

11.2 You may opt out of non-essential marketing communications at any time by using the unsubscribe mechanism provided in the relevant communication or by contacting us through the appropriate channel.

11.3 Even if you opt out of marketing communications, we may still send operational, legal, transactional, service-related or account-related communications where necessary.
12. Accuracy, Access and Correction

12.1 We take reasonable steps to ensure that Personal Data processed by us is accurate, complete, not misleading and kept up to date where necessary having regard to the purpose of processing.

12.2 You should notify us if your Personal Data changes or if you believe information held by us is inaccurate, incomplete, outdated or misleading.

12.3 Subject to applicable law, you may request access to your Personal Data and request correction of inaccurate, incomplete, misleading or outdated Personal Data held by us.

12.4 We may require reasonable verification of identity before acting on an access or correction request.

12.5 We may refuse a request to the extent permitted by applicable law, including where legal privilege, security, disproportionality, third-party rights, technical impracticability or statutory exemptions apply.
13. Retention

13.1 We retain Personal Data only for as long as reasonably necessary for the purposes for which it was collected or lawfully processed, or for as long as required or permitted by applicable law, contractual obligations, internal governance requirements, tax requirements, dispute handling needs, audit purposes or legal compliance obligations.

13.2 Retention periods may vary depending on the nature of the data, the transaction type, the relationship with you, the existence of disputes or claims and the legal or operational context.

13.3 Where Personal Data is no longer required, we will take reasonable steps to destroy, delete, anonymize or securely dispose of it, subject to legal and operational retention requirements.
14. Security Measures

14.1 We take practical and reasonable steps to protect Personal Data against loss, misuse, unauthorized access, unauthorized disclosure, alteration or destruction.

14.2 Such steps may include access controls, authentication measures, role-based permissions, contractual confidentiality obligations, secure storage, process controls, staff awareness measures, vendor oversight and other technical or organizational safeguards appropriate to the context.

14.3 No method of storage, transmission or electronic processing is completely secure. Accordingly, while we take reasonable measures, we do not warrant that Personal Data will be immune from every possible security incident.
15. Data Breach Response

15.1 We may maintain internal breach response and escalation procedures for the identification, assessment, documentation and handling of Personal Data incidents.

15.2 Where required by applicable law, we may notify the relevant authority, affected persons or both in relation to a reportable personal data breach.
16. DPO and Privacy Governance

16.1 We may designate a data protection officer, privacy contact or other responsible function to oversee privacy compliance, incident response, internal governance coordination, privacy reviews and related data protection matters.
17. Rights and Choices

17.1 Subject to applicable law, you may have one or more of the following rights:

  • to be informed of the processing of your Personal Data;
  • to request access to your Personal Data;
  • to request correction of your Personal Data;
  • to withdraw or vary consent where consent is the relevant basis for processing;
  • to limit or object to certain processing in circumstances recognized by law;
  • to opt out of direct marketing communications.

17.2 Any request may be subject to identity verification, lawful exceptions, technical limitations, record-keeping obligations and other conditions permitted under applicable law.
18. Children and Minors

18.1 The Website is not intended to solicit Personal Data from children in circumstances where such collection would be unlawful or inappropriate.

18.2 If you are a parent, guardian or person responsible for a minor and believe that Personal Data has been provided to us inappropriately, you may contact us so that we may review the matter.
19. Third-Party Websites and Services

19.1 The Website may contain links to third-party websites, embeds, platforms or services.

19.2 We do not control and are not responsible for the privacy practices, content, terms or security of third-party websites or services. You should review the privacy notices and terms of those third parties separately.
20. Changes to This Privacy Notice

20.1 We may amend, revise, replace or update this Privacy Notice from time to time by publishing the updated version on the Website.

20.2 The version in force at the time of the relevant interaction, submission, Order or data processing event will generally apply unless the updated version is required by law or expressly stated to apply otherwise.

20.3 You should review this Privacy Notice periodically to remain informed about our current data protection practices.
21. Language

21.1 If this Privacy Notice is translated into another language, the English version shall prevail to the extent permitted by law unless another language version is expressly stated to govern.
22. Contact

22.1 For privacy-related enquiries, access or correction requests, communications regarding consent, marketing opt-out requests, cross-border transfer questions or other privacy matters, official enquiries may be submitted through the contact form made available on the Website.