PRIVACY
See what is processed, why it is needed, where it goes, and how to remove it.
Operator: Brighten · Representative: 변희창 and one co-representative · Business registration no.: 329-56-00529 · Address: Inju-daero 751beon-gil, Namdong-gu, Incheon, Republic of Korea · Contact: brighten.develop@gmail.com. Privacy contact: HIKARI · Email: brighten.develop@gmail.com. Privacy rights requests and general enquiries are accepted at the same email address.
The initial official service region is the Republic of Korea. Additional jurisdictions will be reviewed before they are intentionally added.
ChatGPT handles sign-in. Earth Radio converts the email received during an authenticated request with a server-secret HMAC-SHA-256 key to create an internal identifier; it does not store the original member email or password in the community database. That identifier is never returned in public comments or the author-blocking API. You choose the public nickname; a ChatGPT account name is never used as its default.
Public nickname, likes, comments, language and timestamps, reports, blocks, and policy-version confirmations are processed to perform the community contract or take steps you request before entering it. Acknowledging this notice is not blanket consent to personal-data processing.
Restrictions, deletion markers, reports, and moderation records are processed for the legitimate interests of preventing abuse, securing the service, protecting rights, and handling disputes, subject to a documented and periodically reviewed balancing assessment; legal obligations apply where required. Administrator emails appear only in moderation audit records. We do not make solely automated decisions with legal or similarly significant effects.
Optional product analytics runs only after the user separately agrees. It processes a random visitor and session ID not linked to a name, date and time, normalized page, menu, search action, load-more, station play, share, device bookmark, fallback, language, theme, error events, and station identifier. The analytics database does not store names, member emails, raw IP addresses, user agents, exact location, search terms, comment text, stream URLs, or individual listening trails, and analytics is not joined to member data. Refusal does not limit any service feature.
The initial jurisdiction is the Republic of Korea. We will add jurisdiction-specific terms before intentionally offering the service in another country.
Profile, likes, comments, outgoing blocks, and policy confirmations remain while the account is active and are deleted from the operational database when the account is deleted. Deleted comment text is removed immediately and the minimal deletion state is removed after 30 days. An ordinary account-deletion marker is removed after 30 days. The exact hosting-backup rotation period will be added after the applicable contract is verified.
Reports, appeals, rights requests, and moderation records are retained for three years after closure, and rate-limit records for seven days. A secret-key HMAC restriction remains until the restriction is lifted. An incoming block identifier remains while the blocking member keeps both their account and that block. The admin data check runs expiry cleanup at most once per day, and HIKARI records the result on the first business day of each month. Data under a legal hold is isolated and deleted promptly when the hold ends.
The optional analytics visitor ID and daily visitor/session linkage are kept for no more than 30 days after the last use. We do not create individual raw-event rows; each accepted event is immediately added to a date, feature, page, or station total. Separated aggregate totals are kept for up to 13 months. Withdrawal promptly deletes that browser’s visitor and session linkage while already separated totals remain.
Emailing brighten.develop@gmail.com provides the sender address, display name, subject, message, user-provided attachments, and reply history so we can answer and manage disputes. General enquiries are retained for one year after closure; privacy, appeal, broadcast-rights, and content-rights requests for three years. Please do not send unnecessary ID documents, resident-registration numbers, or sensitive data.
Email is handled through Google Gmail and may be stored and processed over encrypted networks in the United States and other countries where Google operates. The applicable Google account terms and privacy policy govern provider storage, backups, and subprocessors.
Authentication and hosting use OpenAI's ChatGPT and Sites infrastructure. Login identifiers, access, device, and security logs, and service data needed to operate the product may be processed over encrypted networks in the United States and other countries where OpenAI and its processors operate. We do not treat the deletion timing in OpenAI's general consumer privacy policy as the Sites or D1 backup period. The applicable contract and current subprocessor list must be checked before more specific countries and retention periods are published.
When you play a station, your browser connects directly to that broadcaster, which may receive your IP address and ordinary network information. Earth Radio does not proxy or store the audio.
A necessary preference cookie remembers language for up to one year. Bookmarks, recent listening, theme, and playback settings remain in browser storage and can be cleared in Settings. Failed-source state expires after seven days.
Optional analytics is off by default. If allowed, a necessary choice cookie remembers the decision for one year, a random visitor ID lasts up to 30 days, and a session ID lasts 30 minutes after activity. These are first-party HttpOnly, SameSite=Lax cookies used only for consented-browser, return-visit, page, menu, feature, station, and playback totals. The choice can be withdrawn in Settings.
Ads, ad SDKs, targeted advertising, and cross-site tracking remain off. Analytics consent is not advertising consent and will not be repurposed automatically. We do not sell personal data or share it for cross-context advertising.
Station/source identifiers, ten-second success, and defined failure categories may be counted without a user history. The application database does not store the stream URL, IP address, user or session ID, search query, or listening duration for this purpose. Mandatory provider security logs are governed by the provider agreement and notice.
From Account you can correct your nickname, export your community data, and delete the account, including while suspended. Other access, correction, deletion, restriction, portability, or objection requests may be sent to brighten.develop@gmail.com. We acknowledge receipt within two business days. Access requests are answered within ten days; correction, deletion, and suspension requests are handled without delay after identity and scope are complete, with a ten-day operational target unless a shorter legal deadline applies.
Korean users may contact the Personal Information Infringement Report Center at 118.
Community accounts are not offered to anyone under 16. If we learn that an underage account has provided information, we will lock and delete it after appropriate verification. We do not collect dates of birth.
We minimize stored identity data, restrict admin and write routes on the server, use transport security, security headers, input validation, rate controls, and moderation audit records. Material notice changes will be announced before taking effect and kept in a version history.