1. Controller and Scope
ALLKILL AI, operated by BlueCode (“Company,” “we,” “us,” or “our”), establishes and publishes this Privacy Policy to explain how we collect, use, store, protect, and manage personal information in connection with the ALLKILL AI service.
| Business name | ALLKILL AI / BlueCode |
|---|---|
| Representative | Junyoung Lee |
| Business registration number | 701-47-01015 |
| Mail-order business registration | 2026-Goyang Ilsanseo-0222 |
| Business address | Office 608, 240 Kintex-ro, Ilsanseo-gu, Goyang-si, Gyeonggi-do, Republic of Korea |
| Privacy contact | [email protected] |
This Policy applies to the ALLKILL AI website, logged-in user areas, admin operations, AI article creation, AI image generation, publishing management, P charging, PayPal payment records, and customer support functions.
2. Purposes of Processing Personal Information
We process personal information only as reasonably necessary for the following service purposes. If the processing purpose materially changes, we will take appropriate measures such as providing notice or obtaining consent where required.
- Account registration, Google or Apple social login, user identification, terms agreement, and account status management
- Workspace creation, permission management, and company-level service operation
- Connection of external publishing targets, including Google Blogger and WordPress
- Retrieval of publishing targets, image upload where required, article publishing, and publishing result verification
- Keyword-based topic generation, AI article generation, AI image generation, article review, editing, and storage
- Scheduled publishing, automatic publishing, retry handling, error handling, and log management
- P charging, P deduction, refund or restoration handling, free trial usage limits, and usage records
- PayPal payment processing and payment status verification for el servicio en español
- Notices, FAQ, support inquiries, reviews, and customer response
- Prevention and response to abuse, spam publishing, policy violations, security incidents, and unauthorized access
- Service improvement, statistics, error analysis, AI usage analysis, and cost analysis
3. Categories of Information We Process and Retention Periods
Depending on how the service is used, we may process the following categories of information.
| Categoría | Information processed | Retention period |
|---|---|---|
| Account and login | Email address, display name, profile image, social login provider, provider user ID, terms agreement date, signup completion date, last login date, and account status | Until account deletion or service termination, unless retention is required for abuse prevention, dispute handling, legal compliance, or security purposes |
| Social authentication | Google or Apple access token, refresh token where applicable, token expiration time, and social profile data required for service operation | Until account deletion, account disconnection, or token invalidation |
| Workspace and permissions | Workspace name, owner, members, roles, status, creation date, and modification date | Until workspace deletion, account deletion, or service termination |
| Publishing target connection | Channel type, account name, external account ID, authentication token, WordPress Application Password, connection settings, connection status, and error messages | Until the publishing target is disconnected, deleted, or the account is deleted |
| Writing profiles and topics | Profile name, blog topic, target audience, promotional site name and URL, tone, sentence style, CTA settings, default tags, required keywords, prohibited keywords, and saved topic candidates | Until the profile is deleted or the account is deleted |
| Generated articles and images | Title, summary, HTML body, plain text character count, tags, meta description, AI image prompt, image URL, alt text, caption, generation status, and P usage | Generated articles and publishing logs are generally retained for 6 months and may then be deleted or archived. User-deleted content may be deleted, anonymized, or retained where required for operational, legal, or dispute purposes |
| Publishing and auto publishing | Scheduled time, published time, external post ID and URL, request and response summaries, retry count, failure reason, and publishing logs | Generally 6 months, or longer where necessary for troubleshooting, billing, dispute handling, legal compliance, or security purposes |
| P charging and usage | P balance, free trial usage, charge amount, PayPal order or payment ID, approval or rejection status, deduction, refund, restoration, and usage history | As required for payment, accounting, tax, fraud prevention, dispute handling, and legal compliance |
| Support and reviews | Inquiry title and content, replies, review title and body, rating, display author information, creation date, and processing date | Until the inquiry is resolved or the review is deleted, unless retention is needed for dispute handling or legal compliance |
| Service usage and security | Access logs, usage logs, error logs, AI usage, token usage, actual cost records, admin processing records, suspected abuse records, IP-related technical logs, browser information, and security event records | For the period necessary for security, troubleshooting, billing, compliance, audit, or abuse prevention |
4. How We Collect Information
- Information directly entered by users during social login, terms agreement, profile setup, publishing target connection, article generation, P charging, and support requests
- Information provided through Google, Apple, Blogger, WordPress, PayPal, or other external APIs within the scope authorized by the user
- Information generated automatically during AI article generation, image generation, publishing, automatic publishing, payment processing, support handling, and service operation
- Technical information generated as server logs, error logs, security logs, and usage logs
5. Information Processed for Service Operation and Information Requiring Additional Consent
We may process information necessary for account creation, login, service provision, P charging, customer support, security, and contract performance. Where separate consent or notice is required by applicable law, such as for sensitive information, certain legally protected identifiers, or specific third-party sharing, we will provide the required notice or obtain consent.
6. Use of External APIs and Data Transfers
To provide the service, we may use external APIs and platforms as described below. We aim to transmit only the minimum information reasonably necessary for each purpose.
| External service type | Purpose | Information that may be transmitted or used |
|---|---|---|
| AI API providers | AI article generation, article enhancement, image generation, quality checks, and error analysis | Keywords, topics, prompts, writing profile settings, portions of generated or edited article content, image generation request data, and usage information. We generally do not transmit external publishing target authentication tokens to AI API providers |
| Social login providers | User login, account identification, and token processing | Authentication request data, provider user ID, email address, name, profile image, and other information authorized by the user |
| Publishing platforms | Blog list retrieval, image upload where required, article publishing, and publishing result verification | Publishing target ID, title, body, tags, image data or image URL, scheduled or publishing request data, and authentication tokens |
| Payment provider | PayPal checkout, payment verification, payment completion, refund or dispute handling, and payment record management | Payment amount, PayPal order ID, payment status, payer-related information provided by PayPal, transaction metadata, and service account identifiers |
If a user includes personal information in generated content, prompts, image requests, or publishing materials, that information may be transmitted to AI API providers or external publishing platforms. Users must review content before publishing.
7. Sharing of Personal Information
We do not sell users’ personal information. We process personal information within the scope described in this Policy and do not share it with third parties except where required for service provision, authorized by the user, required by law, necessary to protect rights and security, or otherwise permitted under applicable law.
When a user requests publishing to an external platform, information necessary for publishing, such as title, body, tags, image data or image URL, target identifiers, and authentication information, is transmitted to the external platform connected by the user.
8. Service Providers and Processors
We may use external service providers or infrastructure providers for hosting, database operation, email, AI APIs, payment processing, logging, security, and customer support. Where such processing occurs, we take reasonable measures to require the service providers to process information securely and only for the relevant service purpose.
When specific processor information materially changes or becomes necessary to disclose under applicable law, we may provide notice through this Policy, service notices, or other appropriate methods.
9. International Processing and Transfers
Because ALLKILL AI may use cloud infrastructure, AI API providers, Google, Apple, Blogger, WordPress, PayPal, and other external services, personal information may be processed or stored in countries outside the user’s country of residence. Such processing is limited to what is necessary for service provision, security, payment processing, publishing, support, and legal compliance.
10. Deletion and Retention Procedures
- When the retention period expires, the processing purpose is achieved, the user deletes content, disconnects an external account, or deletes the account, we delete or anonymize personal information without undue delay unless retention is required.
- Electronic files are deleted or anonymized in a way designed to make recovery difficult.
- Information that must be retained for legal, accounting, tax, security, abuse prevention, or dispute purposes may be stored separately or access-restricted.
- Backup data may not be deleted immediately due to technical characteristics, but it is deleted according to backup cycles and not used for ordinary service operation.
11. User Rights and Choices
Users may request access, correction, deletion, restriction, withdrawal of consent, external account disconnection, or account deletion with respect to their personal information, subject to applicable law and legitimate service requirements.
- Users can review or modify account information, publishing targets, generated articles, and publishing settings through logged-in service menus where available.
- Requests that cannot be completed directly through the service may be submitted through support or by email.
- We may verify whether the requester is the user or an authorized representative. Requests may be limited where retention is legally required, where deletion would infringe another user’s rights, or where information is necessary for security, fraud prevention, payment, tax, audit, or dispute handling.
12. Children’s Privacy
ALLKILL AI is a blog operation and content publishing management tool and is not intended for children. We do not knowingly collect personal information from children under the age required by applicable law. If we become aware that such information has been collected, we will take appropriate steps to delete it or otherwise comply with applicable law.
13. Cookies and Similar Technologies
We may use cookies or similar technologies to maintain login sessions, support security, prevent CSRF attacks, remember service states, analyze service usage, and provide core functions. Users may disable or delete cookies through browser settings, but doing so may limit login and certain service functions.
14. Security Measures
- Encrypted storage of important connection information such as external publishing tokens, social login tokens, API keys, WordPress Application Passwords, and payment-related identifiers where appropriate
- Access control and role-based restrictions for administrative functions
- CSRF protection and request validation
- Prevention of raw exposure of sensitive credentials in screens and logs where reasonably possible
- Log management for security, service errors, and abuse detection
- Access restrictions for servers, databases, and storage, along with necessary security updates
- Deletion, anonymization, or access restriction after the processing purpose is achieved
15. Privacy Contact
For privacy inquiries, requests, complaints, or questions about this Policy, users may contact us using the information below.
| Privacy contact | Junyoung Lee |
|---|---|
| Business / service | ALLKILL AI / BlueCode |
| [email protected] |
Users may also submit service-related inquiries through the support features available after login, where provided.
16. Remedies and Complaints
Users may contact us regarding privacy concerns using the contact information above. Depending on the user’s jurisdiction, users may also have the right to contact a data protection authority or other relevant regulatory body. We will cooperate with lawful requests from competent authorities where required.
17. Changes to This Privacy Policy
This Privacy Policy may be updated to reflect changes in law, service functions, external APIs, payment methods, processing items, or operational practices. If we make material changes, we will provide notice through the service screen, notice page, or other appropriate method before or when the changes take effect.
Effective date: June 7, 2026
Última actualización: 19 de junio de 2026