Privacy policy

Last updated: January 15, 2026

Positive Me (“Positive Me”, “we”, “us”, “our”) values your privacy and is committed to protecting your personal information.

This Privacy Policy explains how we collect, use, disclose, store, and protect your personal information when you visit or use our website, create an account, make a purchase, communicate with us, or otherwise interact with our services (collectively, the “Services”).

If there is any conflict between this Privacy Policy and our Terms & Conditions, this Privacy Policy governs with respect to personal data.

1. Who We Are (Data Controller)

For the purposes of applicable data protection laws, Positive Me is the data controller of your personal information.

Company: Positive Me
CEO / Personal Information Manager: Hana Kim
Address: 4th Floor, Seoul Design Startup Center, 19 Sinchon-ro 2-gil, Mapo-gu, Seoul, Republic of Korea
Email: hello@positiveme.kr

Our Services are hosted on Shopify, which acts as a data processor and, in certain cases, an independent controller for its own purposes.

2. Personal Information We Collect

We collect only personal information that is necessary and proportionate to operate our business.

Depending on how you interact with us, we may collect:

a) Information you provide directly

  • Name

  • Billing and shipping address

  • Email address

  • Phone number (where required for delivery)

  • Account login details (if you create an account)

  • Communications with us (e.g. customer support inquiries)

b) Transaction information

  • Products viewed, added to cart, purchased, returned, or exchanged

  • Order history and transaction records

  • Payment confirmation and method (payment details are processed securely by payment providers; we do not store full card numbers)

c) Technical and usage information

  • IP address

  • Device type, browser type, operating system

  • Website interaction data (pages visited, time spent, referring URLs)

d) Marketing and preferences

  • Communication preferences

  • Interaction with marketing emails (where permitted by law)

We do not intentionally collect sensitive personal data (such as government ID numbers, health data, or biometric data).

3. How We Collect Personal Information

We collect personal information:

  • Directly from you when you place an order, create an account, or contact us

  • Automatically through your use of the Services (via cookies and similar technologies)

  • From service providers that help us operate the Services (e.g. e-commerce, payments, logistics)

4. Legal Bases for Processing (GDPR)

Where GDPR or similar laws apply, we process personal data based on one or more of the following legal grounds:

  • Performance of a contract (e.g. processing orders, shipping products, customer support)

  • Legal obligations (e.g. accounting, tax, fraud prevention)

  • Legitimate interests (e.g. improving our Services, preventing misuse, business analytics)

  • Consent, where required (e.g. marketing communications, non-essential cookies)

5. How We Use Your Personal Information

We use personal information to:

a) Provide and operate the Services

  • Process orders and payments

  • Deliver products

  • Manage accounts

  • Handle returns, refunds, and exchanges

  • Provide customer support

b) Improve and personalize our Services

  • Analyze usage and performance

  • Improve website functionality and user experience

  • Develop new features and offerings

c) Marketing and communications

  • Send transactional communications (order confirmations, service messages)

  • Send marketing communications where you have consented or where permitted by law

  • Manage promotions and campaigns

You can opt out of marketing communications at any time.

d) Security and legal compliance

  • Prevent fraud and misuse

  • Protect our users, business, and systems

  • Comply with legal obligations and enforce our terms

6. Cookies and Similar Technologies

We use cookies and similar technologies to operate and improve our Services.

  • Essential cookies are required for website functionality

  • Analytics and marketing cookies may be used where permitted by law and subject to your consent

You can manage cookie preferences through your browser settings or any cookie consent tools provided on the website. Refusing non-essential cookies may limit certain features but will not prevent you from using the core Services.

7. How We Share Personal Information

We do not sell personal information.

We may share personal information with:

  • E-commerce and website platform providers (e.g. Shopify)

  • Payment service providers to process transactions

  • Shipping and logistics partners to deliver orders

  • Customer support, analytics, and marketing service providers

  • Professional advisers (legal, accounting) where necessary

  • Authorities where required by law or legal process

All service providers are required to process personal information only for specified purposes and with appropriate safeguards.

8. International Data Transfers

As a global business, we may transfer personal information to countries outside your country of residence, including outside the European Economic Area (EEA) and the United Kingdom.

Where required, such transfers are protected using:

  • Standard Contractual Clauses approved by the European Commission or UK authorities, or

  • Other lawful transfer mechanisms recognized by applicable law

9. Data Retention

We retain personal information only as long as necessary for the purposes described in this Privacy Policy, including:

  • To fulfill contracts and provide Services

  • To comply with legal, accounting, and regulatory obligations

  • To resolve disputes and enforce agreements

Retention periods vary depending on the type of data and legal requirements.

10. Your Rights

Depending on your location, you may have the right to:

  • Access your personal information

  • Correct inaccurate or incomplete data

  • Request deletion of personal information

  • Object to or restrict certain processing

  • Withdraw consent (where processing is based on consent)

  • Request data portability

  • Lodge a complaint with a data protection authority

You may exercise your rights by contacting us at hello@positiveme.kr.
We may need to verify your identity before fulfilling your request.

We will not discriminate against you for exercising your rights.

11. Children’s Privacy

Our Services are not intended for children under the age of majority in their jurisdiction. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so we can delete it.

12. Security

We implement reasonable technical and organizational measures to protect personal information. However, no system is completely secure, and we cannot guarantee absolute security.

13. Third-Party Links

Our Services may contain links to third-party websites or platforms. We are not responsible for the privacy practices or content of those third parties.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will update the “Last updated” date and provide notice where required by law.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact:

Positive Me
Email: hello@positiveme.kr
Address: 4th Floor, Seoul Design Startup Center, 19 Sinchon-ro 2-gil, Mapo-gu, Seoul, Republic of Korea