1. Introduction
This Cookie Policy explains how Maroo ("we", "us", "our") operated by Hashed Open Finance, Inc. uses cookies and similar technologies on our website maroo.io (the "Website"). This policy complies with applicable data protection laws including:
- Korea's Personal Information Protection Act (PIPA)
- EU General Data Protection Regulation (GDPR)
- California Consumer Privacy Act (CCPA) and other US state privacy laws
By using our Website, you consent to the use of cookies as described in this policy.
2. What Are Cookies?
Cookies are small text files that are placed on your device (computer, smartphone, or tablet) when you visit a website. Cookies are widely used to make websites work more efficiently and provide information to website owners.
We also use similar technologies such as:
- Local Storage: Data stored in your browser that persists even after closing the browser
- Session Storage: Temporary data stored only during your browsing session
- Web Beacons: Small graphic images used to track page visits
3. Types of Cookies We Use
3.1 Strictly Necessary Cookies
These cookies are essential for the Website to function properly. They enable basic functions like page navigation and access to secure areas of the Website.
| Cookie Name | Purpose | Duration | Type |
|---|---|---|---|
| Session identifiers | Maintain user session state | Session | First-party |
| Language preference | Store selected language (EN/KO) | 1 year | First-party |
3.2 Functional Cookies
These cookies allow the Website to remember choices you make and provide enhanced, personalized features.
| Cookie Name | Purpose | Duration | Type |
|---|---|---|---|
| AI Chat History | Store conversation context with Maroo AI | Session | First-party |
| UI Preferences | Remember your interface settings | 6 months | First-party |
3.3 Third-Party Services
Google Fonts
- Purpose: Load custom typography for better user experience
- Data Shared: Your IP address, browser type, referring page
- Privacy Policy: https://policies.google.com/privacy
- Opt-out: You cannot opt-out of font loading while maintaining full site functionality
4. Data Collection and Processing
4.1 Information We Collect
- Browser Information: Browser type, version, and settings
- Device Information: Device type, operating system
- Usage Data: Pages visited, time spent, interaction patterns
- Technical Data: IP address (anonymized where possible), referring URL
- Newsletter Subscription: Email addresses voluntarily provided
4.2 AI Chat Interactions
When you use the Maroo AI chatbot:
- Your queries are processed by our Small Language Model (SLM)
- Conversations are stored temporarily in session storage
- No personal data from conversations is permanently retained
- Chat logs are not used for training or shared with third parties
4.3 Newsletter Data
When you subscribe to our newsletter:
- We collect and store your email address
- Your email is used solely for sending Maroo updates
- You can unsubscribe at any time using the link in our emails
- Your data is stored securely and not shared with third parties without consent
5. Legal Basis for Processing (GDPR)
For users in the European Union, we process your data based on:
- Consent: For optional cookies and newsletter subscription
- Legitimate Interest: For essential website functionality and security
- Contract Performance: To provide services you request
6. Your Rights
6.1 Rights Under PIPA (Korean Users)
- Right to know what personal information is being collected
- Right to access and review your personal information
- Right to request correction of inaccurate information
- Right to request deletion of your information
- Right to suspend processing of your information
- Right to withdraw consent at any time
6.2 Rights Under CCPA (California Users)
- Right to know what categories of personal information are collected
- Right to know whether personal information is sold or disclosed
- Right to opt-out of the sale of personal information (Note: We do not sell personal information)
- Right to request deletion of personal information
- Right to non-discrimination for exercising your rights
6.3 Rights Under GDPR (EU Users)
- Right to access your personal data
- Right to rectification of inaccurate data
- Right to erasure ("right to be forgotten")
- Right to restrict processing
- Right to data portability
- Right to object to processing
- Right to withdraw consent at any time
- Right to lodge a complaint with a supervisory authority
7. How to Manage Cookies
7.1 Browser Settings
You can control and delete cookies through your browser settings:
- Chrome: Settings > Privacy and Security > Cookies
- Firefox: Options > Privacy & Security > Cookies
- Safari: Preferences > Privacy > Cookies
- Edge: Settings > Cookies and Site Permissions
Please note that disabling certain cookies may limit your ability to use some features of our Website.
7.2 Opting Out of Newsletter
To unsubscribe from our newsletter:
- Click the "Unsubscribe" link in any newsletter email
- Contact us directly at: inquiry@hashedopenfinance.com
8. Data Retention
- Essential Cookies: Deleted when you close your browser (session) or after 1 year
- Functional Cookies: Deleted after 6 months of inactivity
- Newsletter Data: Retained until you unsubscribe or request deletion
- AI Chat Sessions: Cleared when you close the browser tab
9. International Data Transfers
Your data may be transferred to and processed in countries outside your country of residence, including:
- Server locations: Globally distributed via Vercel's edge network (including United States, Europe, and Asia-Pacific regions)
- Hosting provider: Vercel Inc. (United States)
- Third-party services: United States (Google Fonts)
We ensure appropriate safeguards are in place for international transfers, including:
- Standard Contractual Clauses (SCCs) approved by the EU Commission
- Adequacy decisions where applicable
- Other legally valid transfer mechanisms
10. Children's Privacy
Our Website is not intended for children under 14 years of age. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.
11. Changes to This Policy
We may update this Cookie Policy from time to time. We will notify you of any significant changes by:
- Posting the new policy on this page
- Updating the "Last Updated" date
- Sending an email notification to newsletter subscribers (for material changes)
12. Contact Information
If you have questions about this Cookie Policy or wish to exercise your rights:
Hashed Open Finance, Inc.
Email: inquiry@hashedopenfinance.com
Address: 19F, 374 Gangnam-daero, Gangnam-gu, Seoul, Republic of Korea
For EU users, you may also contact your local data protection authority.
13. Consent
By continuing to use our Website, you acknowledge that you have read and understood this Cookie Policy and consent to our use of cookies as described herein. You may withdraw your consent at any time by adjusting your browser settings or contacting us.