MyNurse Privacy Policy
Effective: February 22, 2026 | Last updated: February 22, 2026
Heewon Noh ("Developer") values the personal information of MyNurse ("App") users and complies with the Personal Information Protection Act and other applicable laws.
1. Personal Information Collected
1-1. Upon Registration
| Item | Required | Purpose |
|---|
| Email address | Required | Account creation, login, identification |
| Password | Required (email signup) | Account security |
| Nickname | Required | User identification in community |
1-2. Social Login
| Login Method | Collected Items | Purpose |
|---|
| Google Login | Email, name | Account creation and login |
| Apple Login | Email (or private relay address), name (optional) | Account creation and login |
1-3. During Service Use
| Item | Required | Purpose |
|---|
| Work schedule data | Optional | Schedule management |
| Posts, comments, likes | Optional | Community features |
1-4. Automatically Collected
- Advertising identifier (IDFA/GAID) - for personalized ads (only with user consent)
- Push notification token - for sending notifications
Information NOT collected: MyNurse does not collect device location, contacts, call logs, or medical records.
2. Purpose of Use
- Account management: Registration, authentication
- Service delivery: Schedule management, unit converter, medical dictionary
- Community: Posts, comments, likes, reports and blocks
- Advertising: Personalized ads (with user consent)
- Service improvement: Quality improvement and issue resolution
3. Third-Party Processing
| Processor | Task | Retention |
|---|
| Supabase Inc. (USA) | Database, authentication, file storage | Until contract ends or account deletion |
4. Third-Party Data Sharing
| Recipient | Items Shared | Purpose |
|---|
| Apple Inc. | Apple ID auth token, name (optional), email | Apple Login authentication |
| Google LLC | Google account auth token, name, email | Google Login authentication |
| Google LLC (AdMob) | IDFA/GAID, device info | Ad serving and personalization |
5. Retention Period
Personal information is retained during service use and deleted promptly upon account deletion.
6. Data Deletion
Upon account deletion, the following data is promptly removed:
- Account info (email, nickname)
- Work schedule data
- Community data (posts, comments, likes)
- Report and block records
7. Security Measures
- Password encryption: bcrypt one-way hashing
- Transport encryption: HTTPS (TLS)
- Access control: Row Level Security (RLS)
- Email privacy: Email addresses are not exposed to other users
8. User Rights
- View personal information via profile page
- Edit personal information via profile settings
- Delete account via app settings
9. Data Protection Officer