This Privacy Policy applies to the NWAS WebApp, NWAS Wallet, the NWAS User Node mobile app, and directly connected authentication, wallet, and user-node functions provided by Altermo Co., Ltd. ("Company").

The Company explains how it collects, uses, stores, deletes, protects, and otherwise processes personal information across the NWAS services and the NWAS User Node app published through Google Play.

We may collect or process the following categories of information: account identifiers (such as username, email address, phone number, social login provider identifiers, and profile information provided by the provider), wallet and security setup information (such as wallet label, internal wallet identifiers, account-address reference values, passkey/WebAuthn credential metadata, and transaction PIN verification data), user-node and device linkage information (such as pairing status, device metadata, approval session data, and wallet approval/signing request data), technical and security logs (such as IP address, browser or device type, app version, timestamps, error logs, audit logs, and session state), and contact verification records (such as email or SMS verification status and related verification history).

The NWAS User Node mobile app may store wallet labels, wallet account reference values, pairing runtime state, and approval-related local metadata in the device secure storage. Device-binding cryptographic keys are intended to remain in the operating system secure storage and are not designed to be exported as plain secret material.

We use information to create and authenticate accounts, maintain sessions, verify contacts, create and manage wallets, operate transaction approval and user-node pairing, detect suspicious activity, conduct security and audit operations, respond to support requests, and comply with applicable law.

We do not sell personal information and we do not provide personal information for third-party advertising tracking purposes.

We may share or process information only to the extent needed to provide the service. This may include social login providers (such as Google, GitHub, Apple, and Naver), email or SMS verification and messaging providers, and cloud hosting, infrastructure, or security operation providers.

We may also disclose information when required by law or when necessary to protect users, prevent fraud, respond to security incidents, or enforce legitimate operational or legal obligations.

We retain personal information for as long as needed to provide the service, respond to security issues, and satisfy legal obligations. When an account or wallet deletion request is completed, information that is no longer needed for service operations is deleted or handled in a way that reduces the ability to re-identify the user.

Some security, audit, fraud-prevention, dispute-response, or legally required records may remain for a limited period under applicable law or internal security requirements.

Users may initiate wallet deletion through the manage/settings flow in the app or web experience, and additional security verification may be required before deletion completes.

The NWAS WebApp may use cookies and similar technologies to maintain login state, protect sessions, and enforce security checks. This includes the use of session cookies such as `nwas_session` and related security values.

We do not use cookies for advertising tracking by default.

You may request access, correction, deletion, or restriction of your personal information, subject to applicable law and reasonable identity verification requirements.

Some information may not be deleted immediately after account or wallet deletion if limited retention is required for legal, security, or audit reasons.

We apply reasonable technical and organizational safeguards, including access control, session protection, security logging, device binding, passkeys/WebAuthn, transaction PIN controls, and secure storage practices.

However, no internet or mobile transmission and storage environment can guarantee absolute security.

The service is not designed for children who cannot legally provide independent consent under applicable law. If we learn that personal information from a child was collected without the required authorization, we will take appropriate action.

We may update this Privacy Policy when laws, service functions, security operations, or data handling practices change. Material updates will be posted on this page.

Company: Altermo Co., Ltd.

Phone: 031-991-3999

Email: nwas@nwas.co.kr

For privacy-related questions or requests, please use the contact details above.