개인정보 처리방침

• Email address (required for waitlist, Magic Link auth, and campaign updates)
• Order and fulfillment information: name, email, phone, shipping address, order items, customization text, coupon code, and order notes collected during checkout.
• Payment information: payment provider, payment status, provider session / transaction identifiers, and limited payment metadata returned by the provider. We never receive or store your full card number, card security code, private wallet key, or seed phrase.
• Country (derived from IP via Cloudflare; not GPS or precise location)
• IP hash (SHA-256, irreversible) and device fingerprint (FingerprintJS) — used only for fraud detection
• Optional survey answers (preferred destination, source, role)
• Google OAuth profile data when you choose Google login: email address, Google account ID, display name, and profile picture if provided by Google.
• Passkey credentials: public key, credential ID, sign-in counter, device label, and transport hints. We never receive or store your fingerprint, face data, or device unlock secret.
• First-party anonymous behavior analytics: page views, referrer host, country, device type, section visibility time, image/video/game interactions, checkout funnel steps, and payment success events. We do not record checkout form contents, raw IP addresses, emails, phone numbers, shipping addresses, or typed messages in analytics.
• Photo wall uploads (only after explicit user submission, with moderation)

• Notify you when the Kickstarter goes live
• Track referral conversions and issue digital / physical rewards
• Create orders, process payment status, arrange shipping, provide customer support, and handle order issues.
• Authenticate accounts with email verification code, Google OAuth, or Passkey sign-in.
• Send mission updates (drip emails) — unsubscribe at any time
• Aggregate, anonymized analytics for product improvement

• Performance of a contract: checkout, payment status, shipping, account access, and order support.
• Consent: marketing emails, photo wall submissions, optional surveys, and non-essential advertising or third-party analytics tools if enabled later.
• Legitimate interests: fraud prevention, site security, abuse prevention, internal diagnostics, first-party anonymous behavior analytics, and improving our products.
• Legal obligations: tax, accounting, sanctions screening, and compliance recordkeeping where required.

• Sell your data to third parties.
• Email you outside campaign-relevant context.
• Track you across other websites.
• Share personal data for cross-site behavioral advertising.
• Profile minors. (We do not knowingly collect data from anyone under the age of 16, unless local law allows a lower age with valid guardian consent.)

• Cloudflare — CDN, DDoS protection, HTTPS
• Resend — Transactional email delivery
• Stripe — Card payment processing when enabled
• PayPal — PayPal payment processing when enabled
• NOWPayments — Crypto payment processing
• Kickstarter — Campaign hosting; their privacy policy applies separately
• Etsy — External purchase of Starship and Card Holder products
• Google OAuth — Optional Google sign-in when enabled
• FingerprintJS — Device fingerprinting for fraud prevention
• Reown / WalletConnect — Wallet connection for crypto checkout; analytics are disabled in our app configuration.

We use first-party anonymous behavior analytics to understand whether real visitors can find the product, which sections hold attention, which media gets opened or watched, and where the purchase funnel drops off. This analytics system runs on vokar.studio and is used for product improvement, security diagnostics, and checkout reliability.

We do not record checkout form contents, address fields, email fields, phone fields, card details, private wallet keys, raw IP addresses, full user-agent strings, keystrokes, screen recordings, or heatmap recordings. IP and user-agent values may be hashed for bot and abuse filtering only.

We do not currently use Google Analytics, Meta Pixel, TikTok Pixel, or cross-site advertising tracking. If we add advertising pixels or third-party non-essential analytics later, we will update this policy and request consent where required.

• Verified email accounts: until you request deletion
• Pending (unverified) emails: 48 hours, then automatically purged
• Orders and fulfillment records: kept as long as needed for delivery, customer support, tax, accounting, chargeback, and compliance purposes.
• Payment provider identifiers and payment status: kept with the order record for reconciliation, support, refunds where applicable, and dispute handling.
• Email verification code records: 10 minutes until expiry; stored as a hash, not the plain verification code.
• Google OAuth temporary state cookies: 10 minutes, then deleted after callback or expiry.
• Anonymous boarding pass previews: 180 days
• Server access logs: 90 days
• Referral records: 5 years (audit/compliance)

We currently use only essential cookies and localStorage for login, language, preview access, referral attribution, cart, checkout continuity, and first-party anonymous behavior analytics. We do not currently use advertising pixels or third-party non-essential behavior analytics cookies. If we add them later, we will request consent where required.

• vokar-user — user account session, 60 days
• vokar-admin — admin session for internal operations, 30 days
• vokar-gate — private preview access gate, up to 1 year while preview mode is enabled
• vokar-goog-state / vokar-google-state — Google OAuth CSRF state token, 10 minutes
• vokar-goog-next — Google OAuth return path, 10 minutes
• lang — language preference, 1 year
• vokar-cart — localStorage cart data, kept on your device for checkout continuity
• vokar-analytics-session / vokar-analytics-anon — sessionStorage and localStorage anonymous analytics identifiers for first-party aggregate reporting