Privacy Policy

Welcome to Coohom. We value your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you visit coohom.com and use our services.

Quick Summary:

1. Personal Data We Collect & How We Use Your Data

Your personal data may be collected, stored, and used when we provide services. If you do not provide relevant personal data, you may not be able to register as a user or enjoy some of the services we offer, or you may not be able to achieve the desired results of the services.

1.1 Registration

To access Coohom's services, you need to register for an account. During registration, we will collect your email address to send a verification code. Alternatively, you can sign up using your Google account, in which case we'll collect your Google email address, username, and profile picture. A user account will be created for you when you register. We will retain the data in the user account until you request to delete your account.

1.2 Account Settings

Upon completing registration, you can customize your profile (including avatar, email, name, region, and preferred language), security settings, notification preferences, and affiliate details in your account settings. We will collect the information you provide.

1.3 Public Library

The Public Library is a channel provided by Coohom for showcasing 3D models. If you agree to publish your uploaded models to the Public Library, we will collect your user ID and uploaded content, making them accessible to other users.

1.4 Design Tool

When you create designs using models on the Coohom, we collect your design data, including: uploaded models, design tool clicks (frequency and timing), templates used, floor plan searches, rendering requests, the latest design version, and your UserID (“design data”).

1.5 Project Management

When you manage assets on Coohom, we collect project-related information including: product names, client details, location, creation time, deadline, project brief, size, model count, review count, asset count, 360° render totals, tags, and team members. This data enables our online design asset management system, helping you organize products efficiently and enhance workflow productivity.

1.6 Display Tool

When using display tools (including Photo & Video Studio and 3D Viewer & AR), we collect: your uploaded models, design tool click frequency, and interaction timestamps. This data helps optimize your experience with Coohom Platform's visualization features.

1.7 Enterprise Function Trial Application

To apply for an enterprise trial, we collect your full name, company details (including name, size, country, and industry), and contact email. We use this information to contact you and provide tailored services that better match your needs.

1.8 Online Customer Support

When using Coohom's services, you may contact online customer support for assistance with any issues encountered. We collect the information you provide to our support team to analyze problems and deliver appropriate solutions.

1.9 Marketing Message

Upon registering as a Coohom user, your email address will be used for promotional communications. You'll periodically receive emails featuring current topics, exclusive events, and special promotions. To opt out, you can turn marketing emails off in your account settings.

1.10 Subscription

If you subscribe to Coohom's premium services, we collect necessary payment and order information to process your subscription (Card information, credit card number, card expiration date, CVC, price of the service, whether the payment has been completed). The specific terms and conditions governing your subscription are detailed in Subscription Terms, available during the purchase process.

1.11 Stability of Service

When you use Coohom’s services, we automatically collect log data. This technical information, gathered through cookies, web beacons, and similar technologies, includes:

• Device information (hardware model, OS version, configuration, unique device identifiers, IP address)
• Approximate geolocation data
• Connection details (browser type, ISP, language settings)
• Device status (including sensor data)
• Browsing activity

We process this operational data to:

• Diagnose and resolve technical issues
• Ensure service stability across platforms
• Continuously improve our services

Your operational data will be retained only while your account remains active, after which it will be either deleted or anonymized.

2. Description of Information Collection Methods Such As Cookies

We may collect and use your information through cookies, web beacons, etc., and store this information as log information. You may choose to refuse cookies by modifying your browser settings, but you may not be able to sign in or use our services or features which rely on cookies.

We use our own cookies, web beacons, etc. to collect information for providing you with better services. Its main purpose is to: identify and remember your user identity; save the user preferences and other information you provide to us; analyze your use of our services and your activity preferences; optimize our ads to serve more personalized ads.

3. Your Right

You have the right to exercise your rights. We are doing everything possible to ensure that you can successfully exercise your rights in accordance with the laws and regulations. When you need to exercise your rights, we may ask you to authenticate to protect your personal data. If you have any questions regarding the Privacy Policy or you have a problem exercising your rights, you may send your request in writing to support@coohom.com.

3.1 Right to Withdraw Consent

You may withdraw previously given consent at any time. This withdrawal:

• Will not affect the lawfulness of processing before withdrawal
• May prevent us from continuing related services

You may submit a request for account deletion on Account Settings, and we'll process it within 10 business days.

3.2 Right of Access

You may request:

• Purposes and categories of processing
• Data recipients and retention periods
• Your rectification, erasure, or restriction rights
• Information about automated decision-making
• Data sources (when not collected from you)

3.3 Right to Rectification

You may request:

• Correction of inaccurate data
• Completion of incomplete data (including via supplemental statement)

3.4 Right to Erasure ("Right to Be Forgotten")

You may request data deletion, except when processing is necessary for:

• Legal obligations
• Public interest
• Legal claims
• Freedom of expression

3.5 Right to Restriction of Processing

You may restrict processing when:

• Data accuracy is contested
• Processing is unlawful but you oppose erasure
• We no longer need the data but you require it for legal claims
• You've objected to processing (pending verification)

3.6 Right to Object

You may object to processing:

• Based on legitimate interests (for reasons relating to your situation)
• For direct marketing purposes (including related profiling)

3.7 Right Regarding Automated Decision-Making

You may object to solely automated decisions (including profiling), except when:

• Necessary for a contract with you
• Authorized by law with appropriate safeguards
• Based on your explicit consent

3.8 Non-Discrimination

We will not discriminate against you for exercising these rights.

4. The Methods We Retain, Store and Protect Your Personal Data

4.1 Data Storage Location

Your personal data is stored exclusively on Amazon Web Services ("AWS") servers.

4.2 Data Retention & Deletion

We retain your personal data only as long as necessary for its intended purpose. However, we may extend retention where required by law (e.g., legal, tax, or compliance obligations). Once these obligations expire, we securely delete or anonymize your data.

4.3 Security Measures

We implement industry-standard safeguards, including:

• Access controls (strict authentication protocols)
• Encryption & network security
• Dedicated security team monitoring threats
• Incident response procedures

Despite these measures, no digital system is 100% immune to risks (e.g., evolving cyber threats). If a breach occurs, we will:

• Act immediately to mitigate harm
• Notify affected users as legally required
• Enhance defenses to prevent recurrence

4.4 Your Role in Security

To help safeguard your account security, we strongly recommend using complex passwords that are changed regularly, exercising caution when disclosing sensitive personal information, and verifying device permission settings—particularly when switching devices. Additionally, we will issue timely notifications regarding emerging security threats and recommended protective measures, which we urge you to review carefully whenever received.

5. How We Share or Disclose Your Personal Data

We may share your information with:

• Vetted service providers who assist us in operating our business.
• Legal and regulatory authorities when required to comply with applicable laws.

We will not share your personal data with potential buyers during any stage of business transactions. In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal information may be transferred to the acquiring entity. We will ensure that the successor entity is bound by this Privacy Policy or provides you with notice and, if required, seeks your consent before any changes are made regarding your personal data.

6. How We Transfer Your Personal Data Across the Border

When you access Coohom, your personal data may be transferred to our servers in the US, or to other countries other than your own. This may be a direct provision of your personal data to us, or a transfer that we or a third party make.

Where the data is transferred outside the EEA or the UK, we ensure it benefits from an adequate level of data protection by relying on:

• Adequacy decisions. These are decisions from the European Commission under Article 45 GDPR (or equivalent decisions under other laws) where they recognise that a country outside of the EEA offers an adequate level of data protection. We transfer your information as described in "Collection of Personal Data" to some countries with adequacy decisions, or
• Standard contractual clauses. The European Commission has approved contractual clauses under Article 46 GDPR that allows companies in the EEA to transfer data outside the EEA. These (and their approved equivalent for the UK and Switzerland) are called standard contractual clauses. We rely on standard contractual clauses to transfer information as described in "Collection of Personal Data" to certain affiliates and third parties in countries without an adequacy decision.

In certain situations, we rely on derogation provided for under applicable data protection law to transfer information to a third country. We ensure appropriate safeguards are in place for such transfers.

7. Third-Party Websites and Services

Coohom may involve integrations with, or may direct you to, websites, apps, and services managed by third parties. By interacting with these third parties, you are providing information directly to the third party and subject to the third party’s privacy policy. If you access third-party services, such as social media sites or other sites linked through the services, these third-party services will be able to collect personal data about you, including information about your activity on the services. If we link to a site or service via our services, you should read their data usage policies or other documentation. Our linking to another site or service doesn’t mean we endorse it or speak for that third party.

8. Children

Coohom is not directed towards, and we do not knowingly collect, use, disclose, sell, or share any information about children under the age of 18 or below the legal age of majority in their jurisdiction. If you become aware that a child has provided any personal data to us while using our services, please email us at support@coohom.com and we will investigate the matter and, if appropriate, delete the personal data.

9. Changes to Privacy Policy

We may update this policy periodically. We will notify you of any material changes by posting the new policy on this page and updating the "Effective Date."

10. Data Protection Officer and Contact

We have appointed a data protection officer to support us in relation to data privacy issues and with whom you can also make contact directly. Our data protection officer is available to you to deal with queries relating to our processing of personal data or to provide other information on data privacy issues.

Data Privacy Contact

Name: Privacy Department E-mail: support@coohom.com We will then check the matter and respond to your requests.

By using our services, you consent to the practices described in this Privacy Policy.

South Korea

If you are a Korean resident, the following provisions take precedence over the main body of the Privacy Policy.

To provide you with our services, we will directly collect and process your personal information, which will be stored on AWS servers located in the United States, and your rendering instructions will be processed overseas in the People's Republic of China.

1. Personal Data We May Collect & How We Use Your Data

(1) Personal information items processed without your consent
We process personal information described in Sections 1.1. Registration, 1.3. Public Library, 1.4. Design Tool, 1.5. Project Management, 1.6. Display Tool, 1.7 Enterprise Function Trial Application, 1.8 Online Customer Support without your consent, based on Article 15(1)(4) of the Personal Information Protection Act (i.e., the performance of a contract).

(2) Personal information items processed with your consent
We process personal information described in Sections 1.2. Account settings and 1.9. Marketing Message with your consent, based on Articles 15(1)(1) of the Personal Information Protection Act (i.e. the data subject's consent).

(3) Additional Use of Personal Information for improving and training our technologies
Under Article 15(3) of the PIPA, we are permitted to utilize your personal information for the additional purpose of improving and training our technologies. In doing so, we have carefully considered the following factors:

• The additional use is closely related to the original purpose of collection, which is to provide and improve our services;
• Given the nature of the rendering services, it is reasonably foreseeable at the time of agreeing to the Terms of Use that personal information may be utilized for training of the rendering model;
• The additional use does not unduly infringe upon the interests of the data subject, as it is essential for the provision of our services; and
• Prior to using the data for model training, we implement appropriate security measures, including filtering out personal information such as user names, to ensure protection of data.

2. How We May Transfer Your Personal Data Across the Border

We entrust your personal information to an overseas third party as follows in accordance with Article 28-8(1)(3) of the Personal Information Protection Act. We will transfer personal information by electronic means when you use our services.

Personal Information Transferred	Country	Transferee	Purpose of Transfer	Retention Period of Transferee
Card, credit card number, card expiry, CVC, price of the service, whether the payment has been completed	United States, Singapore, South Korea	Amazon Web Services, Inc (aws-korea-privacy@amazon.com)	To enable you to pay online. To store and backup your personal information	Until the purpose is achieved or your membership withdrawal
UserID, email, password, occupation, ip address, account name, first name, last name, country, state, city, location, user status, the time of the creation of account	United States, Singapore, South Korea	Amazon Web Services, Inc (aws-korea-privacy@amazon.com)	To store and backup your personal information	Until the purpose is achieved or your membership withdrawal
Rendering requests (UserID, username, account type, designing scheme and models)	China	Hangzhou Qunhe Information Technology Co., Ltd. (kujiale-sec@qunhemail.com)	To provide assistance in the rendering	Until the purpose is achieved or your membership withdrawal
Order management information (plan ID)	China	Hangzhou Qunhe Information Technology Co., Ltd. (kujiale-sec@qunhemail.com)	To manage orders	Until the purpose is achieved or your membership withdrawal

You may refuse the transfer of your personal information to an overseas third party by notifying us of your refusal through the contact information, except in cases where the transfer is necessary for the conclusion and performance of a contract. However, in such cases, your use of some services may be restricted.

3. The Methods We Retain, Store and Protect Your Personal Data

We may need to retain your personal information in accordance with the relevant laws and/or in accordance with the obligations under the relevant laws, as follows:

• (1) Records related to contracts or withdrawal of subscriptions: retained for 5 years (Article 6(1)2 of the Enforcement Decree of the Act on the Consumer Protection in Electronic Commerce);
• (2)Records related to payment and supply of goods/services: retained for 5 years (Article 6(1)(3) of the Enforcement Decree of the Act on the Consumer Protection in Electronic Commerce);
• (3)Records related to consumer complaints or dispute resolution: retained for 3 years (Article 6(1)(4) of the Enforcement Decree of the Act on the Consumer Protection in Electronic Commerce);
• (4)Records related to labeling and advertising: 6 months (Article 6(1)(1) of the Enforcement Decree of the Act on the Consumer Protection in Electronic Commerce);
• (5)Records of computer communications, internet log data, and tracking data of access points: retained for 3 months (Article 15-2(2) of the Protection of Communications Secrets Act).

We destroy your personal information following the procedures and methods outlined below.

(1)Destruction Procedure: We identify the information to be destroyed and destroy personal information when the reason for its destruction arises, under the supervision of our personal information protection officer.

(2)Destruction Methods: We ensure that personal information stored in electronic files is destroyed in a manner that prevents any possibility of restoration. For personal information recorded in paper documents, we utilize shredding or incineration to ensure complete destruction.

4. Processing of personal information for children under age 14

Our services are not intended for users under the age of 14. If you become aware that a child under 14 has registered for our services, please notify us. If we discover that we have collected personal information from a child without the consent of a legal guardian, as required by law, we will delete that information in accordance with applicable laws and regulations.