Creative – Terms of Service

Last Updated: 2025-12-05

Jurisdiction: Republic of Korea

These Terms of Service (“Terms”) govern access to and use of the ShinHQ platform (the “Service”), a multi-tenant social media creative management, AI-assisted content generation, publishing, and analytics platform.

By accessing or using the Service, you agree to these Terms.

1. DEFINITIONS

  • “Customer” means the legal entity entering into this agreement.
  • “Authorized Users” means individuals permitted by Customer.
  • “End Users” means social media audiences.
  • “User Content” means content uploaded or created by Customer.
  • “AI Output” means content generated by the Service’s AI tools.
  • “Tenant” means a logically segregated customer environment within the Service.
  • “Third-Party Platforms” means Meta, TikTok, Google, LinkedIn, X, YouTube, etc.
  • “Personal Data” has the meaning under GDPR, PIPA, and applicable laws.

2. SERVICE DESCRIPTION

The Service provides:

  • Multi-tenant account environments
  • Social media scheduling & publishing
  • AI-assisted creative generation
  • Performance analytics
  • Media storage & asset management
  • White-label deployment options
  • API access
  • Role-based access control
  • Client-level credential isolation

We may update, modify, or enhance the Service.

3. ENTERPRISE SaaS STRUCTURE

3.1 Multi-Tenant Architecture

The Service operates on a multi-tenant model with:

  • Logical data segregation per tenant
  • Isolated credential storage
  • Access control enforcement
  • Role-based permissions

Customer data is not commingled at the database level beyond necessary shared infrastructure.

3.2 Enterprise Customers

Enterprise customers may execute a separate Master Services Agreement (MSA). In case of conflict, the MSA controls.

Enterprise clients may receive:

  • Dedicated support tiers
  • Custom SLAs
  • Custom data retention periods
  • Private hosting (where applicable)

4. ACCOUNT REGISTRATION

Customer must:

  • Provide accurate information
  • Maintain credential security
  • Limit access to authorized users
  • Promptly notify of security incidents

Customer is responsible for all activity under its tenant.

5. AI CONTENT CLAUSE

5.1 AI Tools

The Service may provide generative AI features to create text, captions, images, or campaign suggestions.

5.2 Nature of AI Output

Customer acknowledges:

  • AI Output may not be unique.
  • AI Output may be inaccurate.
  • AI Output may require human review.
  • AI models may rely on probabilistic systems.

5.3 Responsibility

Customer is solely responsible for:

  • Reviewing AI Output before publication
  • Legal compliance (advertising, medical claims, etc.)
  • Avoiding defamatory, misleading, or unlawful content

We do not guarantee originality or non-infringement of AI Output.

5.4 AI Training

Unless otherwise agreed:

  • Customer Content is not used to train public foundation models.
  • AI processing may involve third-party sub-processors under contractual safeguards.

6. THIRD-PARTY PLATFORM INTEGRATIONS

Customer authorizes the Service to:

  • Access platform APIs
  • Publish content
  • Retrieve metrics
  • Manage comments (if enabled)

Customer must comply with:

  • Platform terms
  • Advertising rules
  • API usage limits
  • Brand policies

We are not responsible for:

  • Account bans
  • Content removals
  • API outages
  • Policy changes

7. WHITE-LABEL USE

7.1 License

Enterprise customers may resell or white-label the Service under a separate agreement.

7.2 Restrictions

White-label customers may not:

  • Reverse engineer the platform
  • Remove core compliance notices
  • Misrepresent ownership of underlying technology
  • Sub-license without authorization

7.3 Branding

Company retains ownership of the underlying software and intellectual property.

8. API USAGE LIMITS

8.1 API Access

Customers may access APIs subject to:

  • Rate limits
  • Usage caps
  • Authentication requirements

8.2 Restrictions

Customer shall not:

  • Circumvent rate limits
  • Perform automated scraping
  • Use APIs for abusive activity
  • Exceed documented quotas

We reserve the right to throttle or suspend API access.

9. DATA & PRIVACY

Use of the Service is subject to the Privacy Policy and Data Processing Addendum (below).

Customer is responsible for:

  • Obtaining user consent
  • Lawful marketing communications
  • Compliance with GDPR, PIPA, CCPA, and applicable laws

10. SECURITY

We implement:

  • Encryption in transit (TLS)
  • Encryption at rest (where applicable)
  • Access logging
  • Role-based access
  • Credential isolation
  • Incident response processes

We do not guarantee absolute security.

11. PAYMENTS

  • Subscriptions billed in advance
  • Non-refundable unless required by law
  • Auto-renewing unless canceled
  • Taxes excluded unless specified

Failure to pay may result in suspension.

12. INTELLECTUAL PROPERTY

All software, architecture, code, and platform IP remain Company property.

Customer retains ownership of User Content.

13. DISCLAIMER

Service provided “AS IS.”

We disclaim warranties including:

  • Merchantability
  • Fitness for purpose
  • Non-infringement
  • Marketing outcomes
  • Platform uptime

14. LIMITATION OF LIABILITY

To maximum extent permitted:

We are not liable for:

  • Lost profits
  • Platform bans
  • Indirect damages
  • AI inaccuracies
  • Regulatory fines caused by Customer content

Total liability capped at fees paid in prior 12 months.

15. GOVERNING LAW

Primary governing law: Republic of Korea.

For EU customers: local mandatory consumer protections apply.

For US customers: state law of [Insert State].

16. COMPLIANCE WITH KOREA / US / EU LAW

Customer agrees to comply with:

Korea

  • Personal Information Protection Act (PIPA)
  • Information Communications Network Act

EU

  • GDPR
  • ePrivacy Directive
  • Digital Services Act (where applicable)

US

  • CCPA/CPRA (California)
  • CAN-SPAM
  • FTC advertising rules

17. TERMINATION

We may suspend for:

  • Breach
  • Non-payment
  • Security risk
  • Legal obligation

Upon termination:

  • Access ends
  • Data deletion per retention schedule

18. INDEMNIFICATION

Customer agrees to indemnify Company for claims arising from:

  • Content
  • AI misuse
  • Platform violations
  • Advertising claims
  • Data protection violations

DATA PROCESSING ADDENDUM (GDPR)

1. ROLES

Customer = Data Controller

Company = Data Processor

2. SUBJECT MATTER

Processing of Personal Data for:

  • Social publishing
  • Analytics
  • Storage
  • AI-assisted generation
  • API integrations

3. TYPES OF DATA

May include:

  • Names
  • Emails
  • Social media IDs
  • IP addresses
  • Engagement metrics

4. PURPOSE

Provision of the Service.

5. SUBPROCESSORS

We may engage subprocessors under written contracts with:

  • Confidentiality obligations
  • Security standards
  • GDPR safeguards

A current subprocessor list will be available upon request.

6. SECURITY MEASURES

  • Encryption
  • Access controls
  • Monitoring
  • Data minimization

7. INTERNATIONAL TRANSFERS

Transfers outside EU/EEA may rely on:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions
  • Equivalent safeguards

8. DATA SUBJECT RIGHTS

We assist Customer in:

  • Access
  • Rectification
  • Deletion
  • Portability
  • Objection handling

9. DATA BREACH

We notify Customer without undue delay upon confirmed breach.

10. DATA RETENTION

Data retained only as necessary to provide the Service.

Upon termination, data deleted or returned upon request.