Privacy

Privacy Policy

Last updated 2026-05-15 · Tarot Land (kr.co.doubletime.tarotland)

This policy describes what Tarot Land collects, why, and how to delete it. We collect the minimum needed to provide the service. We do not sell data, we do not run advertising, and we do not profile users for marketing.

Who we are

The app is published by DoubleTime ("we", "us"), based in the Republic of Korea. You can reach us at contact@doubletime.co.kr.

What we collect

Where it goes

Your data is stored on our server hosted at tarotland-api.doubletime.co.kr (DigitalOcean, US region). Limited data is sent to the following processors:

How long we keep it

Readings stay in your history until you delete your account. Feedback threads stay so the conversation makes sense. Purchase records are retained for the legally required period (typically 5 years under Korean accounting law). Everything else is kept only as long as needed to operate the service.

How to delete it

In the app, go to Settings → Account → Delete account (a two-step type-DELETE confirmation), or email contact@doubletime.co.kr with your public code (Settings → About). This records a deletion request: access ends immediately and your account, readings, feedback threads, and push tokens are permanently erased within 90 days (usually sooner). It is irreversible. Full details: Delete Account.

Children's privacy

Tarot Land is designed for adults. We do not knowingly collect personal data from anyone under the age of 18. If we learn that someone under 18 has created an account we will delete it. If you believe a minor has provided us with data, please contact us. See also our Child Safety statement.

Your rights

Under Korean PIPA and other applicable laws, you have the right to access, correct, or delete your data, and to withdraw consent. The fastest paths are the in-app Delete Account action and email to contact@doubletime.co.kr. We respond within 30 days, usually within 48 hours.

Security

The app talks to our server over HTTPS only. Your bearer token is stored in the platform's secure storage (Keychain on iOS, Keystore on Android). Our database server is not publicly reachable; only the Phoenix application and our TLS reverse-proxy expose ports.

Changes to this policy

If we change anything material we will update the "Last updated" date at the top of this page and notify in-app where appropriate. The current version is always at tarotland.doubletime.co.kr/en/privacy.