1. Collect Personal Information

We collect the following types of personal information to provide our services:

A. Information You Provide to Us

When you create an account, place an order, or contact us, you may provide:

Contact Information: Name, email address, phone number, shipping & billing address

Account Information: Username, password, purchase history

Payment Information: Credit/debit card details, PayPal ID (We do not store full payment details)

Customer Support Data: Information provided through inquiries, complaints, or feedback


Otherwise submit personal information to us along with any related content of the communication.

The legal basis for collecting personal data under GDPR and CCPA is the necessity of processing for the provision of the requested services.
We collect and process personal data in compliance with the General Data Protection Regulation (GDPR) within the European Economic Area (EEA) and the California Consumer Privacy Act (CCPA).

B. Information We Collect Automatically

When you visit our website or use our services, we automatically collect:

Bridge on receives and stores certain types of information when customers interact with us. Our purpose is to ensure the proper functionality of the website, analyze website usage, and support website analytics and marketing campaigns. Some examples include:

Device Information

We may collect additional technical information, including your IP address, device operating system, browser type, and unique device identifiers (such as UDID and serial number). We may also collect mobile network information, including carrier details and phone number, referral website addresses (if applicable), and your navigation path through our website and mobile app. We use this information to improve our products and services, administer our website and mobile app, and diagnose technical issues. Additionally, your IP address may be used to gather broad demographic insights that do not personally identify you.

We may collect technical information, such as your IP address and MAC address, to determine your geographic location. This allows us to display the appropriate version of the website in your language or relevant to your region.

Usage Data
- Additionally, we may automatically collect device and usage data, network and connection information, location data (with user consent, where applicable), log data, and advertising tracking information.
This includes details such as device type, operating system, screen resolution, Wi-Fi or mobile network status, session duration, and browsing activity within our website and mobile app.

Cookies & Tracking Technologies
- We use cookies to enhance user experience and track site analytics (See "Cookies Policy" for more details)

C. Information from Third Parties

- We may receive information from:

Social Media Platforms
- If you log in using Facebook, Google, or Apple, we collect basic profile information (e.g., name, email)

Payment Processors
- We receive confirmation of successful payments but do not store full card details
Shipping Providers
- Delivery status and tracking information

2. Use of Personal Information

We use your information to provide and improve our products and services, support essential business functions, and comply with legal obligations. These purposes include:

1) Fulfilling Contracts & Providing Services

To process orders, complete transactions, and deliver products.
To create and manage your account, including authentication and security.

2) Customer Support

To respond to inquiries, process returns, and resolve issues.
Marketing & Personalized Advertising
To send promotional offers, recommend products, and conduct surveys.
To use cookies & analytics tools to improve our website experience.
You can opt-out of personalized advertising at any time.

3) Improving Services & Analyzing Usage

To analyze traffic, detect trends, and enhance our product offerings.
To use Google Analytics or other tracking tools for website optimization. Please see the Google Analytics website for information about Google Analytics, the Google Analytics auditing system, and the Google Analytics' privacy policy.

4) Legal Compliance & Security

To detect fraud, prevent abuse, and comply with financial/tax regulations.
To retain transaction records for dispute resolution and legal obligations.

We are not responsible for the privacy practices of third-party websites linked on our platform. Please review their privacy policies before providing any information.

If you are located in the European Economic Area (EEA), you have the right to object to the processing of your personal data based on our legitimate interests, including profiling for personalized recommendations and targeted advertising. You may exercise this right at any time by contacting us as described in the "How to Contact Us" section.

If you are a California resident, you have the right to opt out of the sale or sharing of your personal information for targeted advertising. To exercise this right, please visit our [Privacy Preferences Page] or contact us as described in the "How to Contact Us" section.

5) Sharing Personal Information

Except as described in this privacy policy, Bridge on will not share your personal information with third parties unless you have consented to the disclosure or under the following limited circumstances.
We do not sell personal information as defined under the California Consumer Privacy Act (CCPA). However, we may share information with service providers for operational and marketing purposes. California residents may opt out of such sharing by visiting our [Do Not Sell or Share My Personal Information] page.

All service providers are contractually obligated to process personal information only in accordance with our instructions and to implement appropriate security measures.

6) Within Our Corporate Group

To analyze traffic, detect trends, and enhance our product offerings.
To use Google Analytics or other tracking tools for website optimization. Please see the Google Analytics website for information about Google Analytics, the Google Analytics auditing system, and the Google Analytics' privacy policy.

7) Business Transfers

In case of a merger, acquisition, or bankruptcy, your personal data may be transferred.
In the event of a merger, acquisition, or bankruptcy (including insolvency proceedings), your personal data may be transferred. We will notify you in advance if the new entity adopts a materially different privacy policy.

8) Service Providers

We share data with trusted third-party vendors (e.g., logistics, payment processors, analytics providers, marketing partners).
These vendors are contractually restricted from using your data beyond the agreed scope.

Examples are shipping vendors, billing and refund vendors, payment card processors, promoters and administrators of sweepstakes, contests, giveaways and promotions, and companies that help us improve our product and service offerings and our websites.

These companies may need information about you in order to perform their functions. These companies are not authorised to use the information we share with them for any other purpose. In some cases

Bridge on and certain third-party service providers may share tracking-related information, such as your IP address. Additionally, Bridge on may provide order-related information to referral websites (and their referral networks) solely for the purpose of calculating commissions.

9) Aggregate or De-identified Data

We may share anonymized or aggregated data that does not identify any individual.
Bridge on may provide aggregate statistics about our customers, sales, traffic patterns, and related website information to third parties, but these statistics will not include any personally identifying information.

10) Third-party Links and Plugins

Our website may include links, login interfaces, or embedded content from third-party websites and platforms (collectively referred to as "Links"). These may include plugins or framed content that visually appears within the Bridge on site but is hosted by external services.

When you interact with these Links — such as by clicking, logging in, or submitting information — the third parties may receive information about you. This could include your profile information, privacy settings, or usage data, depending on your interaction and account settings with that service.

Bridge on may also gain limited access to public information from your third-party accounts when you engage with certain embedded features.

We are not responsible for the privacy practices, content, or data handling of these third-party services.
We strongly recommend reviewing their privacy policies before sharing any personal information.

11) International Data Transfers

If you are located outside of Korea, please note that your personal information may be transferred to, stored, and processed in Korea or other countries where our servers or third-party service providers are located. We ensure that such transfers are made in compliance with applicable data protection laws, including the use of Standard Contractual Clauses (SCCs) where necessary.

3. Legal Basis for Processing

1) Under the GDPR

Bridge on processes personal data legally, fairly, and transparently in accordance with the GDPR. Our processing is based on one or more of the following legal bases:

Performance of a Contract (Art. 6(1)(b))** – for order processing, customer support, and account management
Legal Obligation (Art. 6(1)(c))** – to comply with tax, accounting, or other regulatory requirements

Consent (Art. 6(1)(a))** – for sending marketing communications or using cookies where required
Legitimate Interests (Art. 6(1)(f))** – for fraud prevention, analytics, and improving our services

You may object to processing based on legitimate interests at any time by contacting us.
We also follow the principles of purpose limitation** and data minimization**: we only collect what is necessary for specified, legitimate purposes. (See: [Bridge on Collect Information] and [Use of Personal Information])

2) Under the CCPA

Bridge on processes personal information in line with the transparency and disclosure obligations under the CCPA. We do not sell personal information as defined under the CCPA. California residents have the right to:

- Know what personal data is collected
- Request access to their data
- Request deletion
- Opt-out of the sale or sharing of personal information

To exercise these rights, see our [Privacy Preferences Page] or contact us as outlined in the “How to Contact Us” section.

3) Data Security

When you place orders or access your account, your information is transmitted over a secure server using Secure Socket Layer (SSL) encryption. We implement appropriate technical and organizational measures to protect your personal information.

**Note: Bridge on cannot guarantee the security of data transmitted over the internet. We are not responsible for unauthorized access gained through illegal means such as hacking.

If you receive a suspicious email requesting your personal information, do not respond. Bridge on will never ask for your password, credit card details, or other sensitive information via email.

4) Data Accuracy and Retention

We take all reasonable steps to ensure that the personal information we process is accurate and up to date. If you believe any information we hold about you is incorrect or incomplete, you may request that it be corrected.

We retain your personal data only for as long as it is necessary for the purposes stated in this privacy policy. After that period, data is securely deleted or anonymized in accordance with applicable laws and our internal data retention policies.

Your Rights Under GDPR

We respect your rights under the General Data Protection Regulation (GDPR). As a data subject, you have the following rights regarding your personal data:

Right of Access
You have the right to request information about how we process your personal data and obtain a copy of the personal data we hold about you.

Right to Rectification
If you believe that the personal data we hold is inaccurate or incomplete, you have the right to request that we correct or update it.

Right to Erasure
In certain circumstances, you can request that we delete your personal data. This may apply if the data is no longer necessary for its original purpose or if you withdraw your consent.

Right to Restriction of Processing
You may request that we limit the processing of your personal data in the following cases:
- You dispute the accuracy of your data.
- Your data is being processed unlawfully, but you do not want it deleted.
- We no longer need your data, but you need it for legal claims.

Right to Data Portability
You have the right to receive your personal data in a structured, commonly used format or request that we transfer it directly to another service provider.

Right to Object
You have the right to object to the processing of your personal data in certain situations, particularly for direct marketing purposes.

Right to Avoid Automated Decision-Making
If a decision that affects you is made solely by automated processes (e.g., AI-based profiling), you have the right to challenge the decision, request an explanation, and ask for human intervention.

If we process your personal data based on our legitimate interests, you have the right to object to such processing based on your specific situation at any time. This includes processing for direct marketing purposes.

How to Exercise Your Rights
You can contact us anytime to exercise your rights.

Email: tp.legal@bridgeon.com
Phone: +1-949-734-7391 (World Customer Support Center)
Address: 26, Beotkkot-ro 24-gil, Geumcheon-gu, Seoul, Republic of Korea

We will respond to all requests within 30 days. If we are unable to fulfill your request for legal reasons, we will provide an explanation.
For any questions or concerns, please feel free to reach out to us.

Your Rights Under CCPA

As a California resident, you have the following rights under CCPA:

Right to Know
You have the right to request details about the personal information we have collected over the past 12 months.

Right to Delete
You can request that we delete your personal data, subject to certain legal exceptions.

Right to Opt-Out of Sale
If we sell personal information to third parties, you have the right to opt out. But we do not sell personal information as defined under CCPA. However, we may share data with certain service providers, and you may opt out of this sharing.

Right to Non-Discrimination
Exercising your privacy rights will not result in discrimination, such as changes in service quality or pricing.

How to Exercise Your Rights
To request access, deletion, or opt out of data sharing, please contact us:

Email: tp.legal@bridgeon.com
Phone: +1-949-734-7391 (World Customer Support Center)
Address: 26, Beotkkot-ro 24-gil, Geumcheon-gu, Seoul, Republic of Korea

You can also submit a request directly through our website.
Submit a Privacy Request
All requests will be processed within 45 days, as required by CCPA.

Your rights under PIPA

If you are located in South Korea, you also have rights under the Personal Information Protection Act (PIPA), including the right to access, correct, suspend processing, and delete your personal information.

4) Security and Data Retention

Data Security
We take the security of your personal information seriously. When you place orders or access your account, your information is transmitted using Secure Socket Layer (SSL) encryption. We also implement appropriate technical and organizational measures to protect your data from unauthorized access, disclosure, alteration, or destruction.

Note: While we take all reasonable measures, no method of transmission over the internet is 100% secure. Bridge on is not responsible for unauthorized access caused by hacking or other illegal activities.
If you receive a suspicious email requesting your personal data, do not respond. Bridge on will never ask for your password or payment information via email.

Data Accuracy
We take reasonable steps to ensure that the personal data we process is accurate and up to date. You may request correction of your personal information at any time.

Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this privacy policy, including to meet legal, tax, accounting, or regulatory requirements.
After the applicable retention period, we will securely delete or anonymize your data in accordance with our internal policies and applicable laws.

5. Children’s Privacy

Bridge on values the safety and privacy of children. Our website is not intended for children under the age of 13, and we do not knowingly collect personal information from them.

If we become aware that we have collected personal data from a child under 13, we will take immediate steps to delete such information unless required by law to retain it for child protection or legal obligations.

If you believe we may have collected information from a child under 13, please contact our customer support team.

6. Cookies

Bridge on uses cookies and similar technologies to enhance your browsing experience, improve site performance, and provide personalized content and advertisements.

Cookies are small text files that are stored by your browser on your device. They help us remember your preferences and provide features such as your shopping bag, saved shipping/billing information, and login details.

If you are located in the European Economic Area (EEA), you will be presented with a cookie banner requesting your consent to the use of non-essential cookies (e.g., marketing or analytics cookies). You may manage your cookie preferences at any time through the cookie settings on our website.

Types of Cookies We Use
Essential Cookies: Enable core functions like security, account login, and shopping cart.
Performance Cookies: Help us analyze website traffic and improve performance.
Functionality Cookies: Remember your choices such as language, region, and preferences.
Marketing Cookies: Help deliver relevant ads based on your interests and measure ad effectiveness.

Third-Party Cookies
We may allow third-party partners to use cookies on our site to provide analytics and serve targeted ads. These cookies may collect anonymous technical data such as your IP address, browser type, device identifiers, and usage behavior.

To opt out of behavioral advertising, visit:
- [Network Advertising Initiative (NAI)](https://optout.networkadvertising.org/?c=1)
- [YourAdChoices](https://youradchoices.com/)

Managing Cookies
You can manage or disable cookies through your browser’s settings. Please note that disabling cookies may affect the functionality of certain parts of our website.

GDPR Compliance
If you are located in the European Economic Area (EEA), we will request your consent before placing non-essential cookies. You may adjust your preferences at any time through our cookie banner or settings page.

7. Privacy and Data Protection

See our Data Retention section

Phishing Warning
“Phishing” refers to fraudulent attempts to obtain personal information by pretending to be a legitimate company. If you receive an email claiming to be from Bridge on requesting your password, credit card details, or other sensitive information, **do not respond**. We will never ask for such information via email.

Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected. Where applicable laws require longer retention periods (e.g., for legal, regulatory, or tax reasons), we will retain the data accordingly. Once no longer needed, your information will be securely deleted or anonymized.

8. Updates to This Privacy Notice

We may revise this Privacy Notice from time to time to reflect changes in our practices, legal requirements, or services.
Any material changes will be posted on this page and, where appropriate, we will notify you via email or through our website.

**Last Updated:** [17-JUN-2025]

If you have any questions or concerns about this notice or our data practices, please contact us.
We remain committed to protecting your privacy.