Security & Privacy

Information Security Certifications

We design, operate, and continuously improve our security and privacy controls to protect player and partner data. Our independent certifications validate that commitment.

Our Promise

We safeguard user data with industry-recognized standards.

▪️Independent, accredited audits
▪️Clearly defined scope and controls
▪️Ongoing improvement and transparency

Certified Programs

ISO/IEC 27001:2022

(United Kingdom Accreditation Service (UKAS))

Our Information Security Management System is certified to ISO/IEC 27001:2022.


Scope
Information Security Management System on Planning, Operation, Development and Maintenance regarding Online Game Service

Valid
2025-05-29  2028-05-28

ISO/IEC 27701:2019

(United Kingdom Accreditation Service (UKAS))

Our Privacy Information Management System extends ISO/IEC 27001 with ISO/IEC 27701.


Scope
PIMS in role as a 'PII Controller' on Planning, Operation, Development and Maintenance regarding Online Game Service

Valid
2025-05-29  2028-05-28


ISMS-P

(PIPC & KISA Program)

Certified under Korea’s ISMS-P for integrated information security & privacy.


Scope
Online Game Service Operation (KakaoGames)

Valid
2024-11-20  2027-11-19

 
 

How We Protect User Data

Certifications are one part of our program. We combine technical controls, policy, and culture to keep information secure and private.

Encryption by Default

Data encrypted in transit and at rest with strong key management.

Least-Privilege Access

Role-based access control, MFA, periodic access reviews.

Continuous Risk Management

Secure SDLC, vulnerability scanning, and third-party risk oversight.

Incident Readiness

24/7 monitoring, playbooks, and prompt user notification when required.

Note on AI usage: We use only company-approved AI tools and conduct reviews to ensure that personally identifiable information (PII) is not used or processed, in accordance with our internal AI and security policies