milc

Security Policy

Last Updated: March 15, 2026

This Security Policy (hereinafter referred to as the 'Policy') defines the information security and data handling practices of GLODING Inc. (hereinafter referred to as the 'Company') regarding milc. This Policy applies together with the milc Terms of Service (hereinafter referred to as the 'Terms'). In the event of any conflict between this Policy and the Terms, the Terms shall prevail.

Basic Policy

The Company recognizes the appropriate protection of user information and secure operation of services as an important responsibility in providing milc, and implements reasonable technical and organizational security measures.

Handling of User Text

  1. 1.Text entered by users into milc is used solely for the purpose of providing editing functionality.
  2. 2.The Company does not store user text on the Company's servers.
  3. 3.Text content is not recorded in databases, persistent storage, backup areas, or system logs.
  4. 4.Text is processed only temporarily in memory and is not retained after processing is complete.

Use of External AI Services

  1. 1.milc uses external AI service APIs (e.g., OpenAI, Google Gemini, etc.) for text processing.
  2. 2.User input text is transmitted to external AI services via the Company's cloud servers using encrypted communication (TLS/HTTPS).
  3. 3.The Company does not directly own or operate AI models; services are used under API agreements with each AI service provider.
  4. 4.The Company provides services on the premise that transmitted data is not used for AI model training under the API agreement.
  5. 5.Data handling by external AI service providers is subject to each provider's terms of use, security policy, and data policy.
  6. 6.Matters regarding external providers' service content, security standards, or data handling are beyond the Company's control, and the Company assumes no responsibility beyond what is stipulated in the Terms.

Information Stored by the Company

  1. 1.Information stored by the Company is limited to the minimum necessary for service operation.
  2. 2.Stored information includes the following:
    • Token usage (data for usage measurement)
    • Account identification information
    • Payment-related information
  3. 3.Sensitive payment information such as credit card details is processed by Stripe's payment system and is not stored on the Company's servers.

Communication and Security Measures

  1. 1.The Company implements communication encryption (TLS/HTTPS).
  2. 2.API keys and authentication credentials are properly managed.
  3. 3.Reasonable access control is implemented to prevent unauthorized access.

However, due to the nature of internet communication and cloud services, complete security cannot be guaranteed.

Logs and Monitoring

  1. 1.The Company may collect minimal technical logs for service stability and fraud prevention.
  2. 2.Logs do not contain user text content.
  3. 3.Logs are retained only to the extent and for the period necessary for operation.

User Responsibility

Users shall use milc at their own responsibility and shall manage, at their own responsibility, the input of information that violates laws or regulations of their organization.

Users shall make appropriate judgments at their own responsibility regarding the handling of regulated information (such as medical or financial information).

Revisions

The Company may revise this Policy in response to changes in laws, external services, or service content.

Revised policies take effect when posted on the Company's website.