PHOTOHAUS LEGAL · U.S. OPERATOR

Privacy Policy

Effective date: 2026-06-12 · Version 2.0 · Operator: SAMCHEONGHAUS Inc., a Delaware corporation

PHOTOHAUS is operated by a United States company. This policy is written primarily for U.S. operation, including Delaware corporate operation, U.S. marketplace activity, copyright notices, rights-dispute records, U.S. commercial email rules, and U.S. state privacy requirements where applicable. Section 11 addresses users outside the United States.

1. U.S. Operator

PHOTOHAUS is operated by SAMCHEONGHAUS Inc., a Delaware corporation ("PHOTOHAUS," "we," "us," or "our"). Our website is photohausworld.com. For users in regions where data-protection law uses these terms, SAMCHEONGHAUS Inc. is the data controller of personal information processed through PHOTOHAUS.

Address: [Registered Agent / Business Street Address], Delaware, USA
Privacy contact: photohausworld@gmail.com.

2. Information We Collect

Category	Examples	Business Purpose
Account information	Name, email, password hash, account role, account status, login/session data, the date, time, IP address, and Terms/Privacy version recorded when you accept our legal terms.	Registration, login, password reset, access control, security, evidence of agreement.
Age / eligibility information	Confirmation that you are 18 or older when enabling selling, purchasing, or payout features; identity or age verification records where required.	Eligibility under our Terms, legal compliance, fraud prevention.
Creator / seller information	Profile name, uploaded photos, titles, categories, review status, sales records, payout information, model/property releases you provide.	Marketplace operation, attribution, approval review, payouts, rights documentation, dispute handling.
Buyer / inquiry information	Name, email, inquiry message, requested photo, purchase or invoice details.	Responding to inquiries, order support, invoicing, customer service.
Payment, payout, and tax information	Bank country, bank name, account holder, account number, SWIFT/IBAN, Wise/PayPal notes, transaction references, and tax documentation such as IRS Form W-9 or W-8BEN / W-8BEN-E (which may include taxpayer identification numbers). Card information, if online payment is enabled, is handled by payment processors and not stored by PHOTOHAUS.	Settlement, accounting, withholding and information reporting where required, fraud prevention, chargeback/dispute support, sanctions screening, compliance.
Technical and security information	IP address, device/browser data, cookies, timestamps, security logs.	Security, troubleshooting, analytics, fraud prevention, service improvement.
Communications and legal records	Support emails, DMCA/copyright notices and counter-notices, repeat-infringer records, account deletion requests, privacy-rights requests, arbitration opt-out notices, legal correspondence.	Support, legal compliance, rights protection, record keeping, defense of claims.

We collect this information directly from you, automatically through your use of the service, and in limited cases from service providers (for example, payment processors confirming a transaction). We do not collect sensitive personal information beyond what is listed above, and we do not use personal information for automated decision-making that produces legal or similarly significant effects.

3. How We Use Information

To provide, secure, maintain, and improve PHOTOHAUS.
To authenticate users, reset passwords, manage accounts, verify eligibility and age for transactional features, and prevent abuse.
To review, display, approve, sell, license, remove, or manage photos and related metadata.
To process purchase inquiries, invoices, payments, refunds, chargebacks, and seller payouts, including required tax documentation, withholding, and information reporting.
To send service messages, security notices, legal notices, and, where permitted, marketing communications.
To detect and prevent fraud, spam, infringement, unauthorized access, and prohibited conduct, including operating our DMCA and repeat-infringer processes.
To comply with law, tax/accounting rules, copyright notices, subpoenas, court orders, sanctions screening, and lawful government requests, and to establish, exercise, or defend legal claims.

4. Cookies, Similar Technologies, and Browser Signals

We may use cookies or similar technologies for login sessions, security, preferences, analytics, and service improvement. You can control cookies through your browser, but disabling essential cookies may prevent login or core service functions.

We do not currently use third-party advertising cookies or cross-context behavioral advertising. If a recognized opt-out preference signal such as Global Privacy Control (GPC) applies to our practices under your state's law, we will honor it as required. Because browsers implement "Do Not Track" inconsistently, we do not respond to DNT signals as such.

5. Payment, Seller Payout, and Tax Data

PHOTOHAUS may initially support purchase inquiries and offline payment methods such as bank transfer, Wise, PayPal, or invoice-based settlement. If Stripe or another online processor is enabled, that processor handles payment data under its own terms and privacy policy.

Sellers are responsible for providing accurate payout information. Before payouts, we may require tax documentation (such as Form W-9 or W-8BEN / W-8BEN-E) and may apply withholding or file information returns where required by U.S. law. We retain payout, tax, and transaction records as needed for settlement, tax, accounting, fraud prevention, chargebacks, disputes, and legal compliance. Tax documentation is stored with restricted access and used only for the purposes described in this section.

6. Sharing of Information

We do not sell personal information for money, and we do not share personal information for cross-context behavioral advertising. We may disclose information to:

Service providers acting on our behalf: hosting, database, email, security, analytics, payment/payout processing, identity or sanctions screening, under contracts limiting their use of the data.
Professional advisers such as accountants, auditors, and lawyers.
Tax authorities and regulators where information reporting or withholding is required.
Rights holders, complainants, or their agents in connection with DMCA notices, counter-notices, and rights disputes, where legally appropriate (for example, forwarding a counter-notice as the DMCA requires).
Law enforcement or other authorities where required by law, subpoena, or court order, or where reasonably necessary to protect PHOTOHAUS, users, or the public.
A successor entity in a merger, acquisition, reorganization, financing, or asset transfer, subject to this policy or equivalent protections.

7. U.S. State Privacy Rights

Depending on your state of residence, you may have the right to request: (a) confirmation of whether we process your personal information and access to it; (b) correction of inaccuracies; (c) deletion; (d) a portable copy; and (e) opt-out of targeted advertising, sale, or certain profiling (practices we do not currently engage in).

How to submit a request: email photohausworld@gmail.com from your account email, or include enough information for us to verify your identity. An authorized agent may submit a request on your behalf with proof of authorization; we may still verify your identity directly.
Verification: we verify requests by matching information you provide against our records (for example, your account email and recent account activity). We may ask for additional information where reasonably necessary.
Timing: we will respond within the period required by your state's law (generally 45 days, extendable once where permitted).
Appeals: if we decline your request, you may appeal by replying to our decision with the subject line "Privacy Appeal." We will respond to appeals within the period required by applicable law, and we will provide information about contacting your state attorney general where the law requires.
No discrimination: we will not discriminate against you for exercising privacy rights, though some requests (such as deletion of account data) may prevent continued use of the service.
Limits: we may retain information that we are legally required or permitted to keep, including transaction, tax, payout, security, DMCA, and dispute records, even after a deletion request.

8. California Privacy Notice

If the California Consumer Privacy Act, as amended by the California Privacy Rights Act (CCPA/CPRA), applies to PHOTOHAUS, this section supplements the rest of this policy for California residents.

The categories of personal information we collect, the sources, the business purposes, and the categories of recipients are described in Sections 2, 3, and 6. In CCPA terms, these include identifiers, customer records, commercial information, internet/network activity, and professional information (for sellers). Taxpayer identification numbers collected on tax forms are sensitive personal information used only for the compliance purposes permitted by the CPRA, so a "Limit the Use of My Sensitive Personal Information" link is not required.
We do not sell personal information and do not share it for cross-context behavioral advertising, and we have not done so in the preceding 12 months. We have no actual knowledge of selling or sharing the personal information of consumers under 16.
California residents may exercise the rights to know, access, correct, delete, and to opt out of sale/sharing (not applicable to our current practices) as described in Section 7. We honor Global Privacy Control signals where they apply.
If we later adopt advertising or analytics practices that legally qualify as "selling" or "sharing," we will update this policy and provide the required notices, links, and choices first.

9. Children's Privacy / COPPA

PHOTOHAUS is not directed to children under 13 and does not knowingly collect personal information from children under 13. Under our Terms, users must be at least 13 to browse and at least 18 to sell, purchase, or receive payouts, and we do not knowingly collect bank, tax, or payout information from anyone under 18. If we learn that we collected personal information from a child under 13 without legally required parental consent, we will delete it and disable the account, except where retention is required by law.

10. U.S. Commercial Email

Service emails, such as password reset, security, order, payout, legal-notice, and policy-change emails, are transactional and necessary to operate your account. If we send promotional emails, each one will identify us, include our postal address, and provide a working unsubscribe mechanism, consistent with the CAN-SPAM Act. Opting out of promotional email does not stop transactional or legal-notice email.

11. International Users

PHOTOHAUS is operated from the United States. If you access the service from outside the United States, your information will be transferred to, stored, and processed in the United States and other locations where we or our service providers operate, and may be subject to lawful access requests there. Where mandatory local privacy laws apply, we will honor non-waivable rights required by those laws.

EEA / United Kingdom: if and to the extent the GDPR or UK GDPR applies, our legal bases are performance of a contract (operating your account and transactions), legitimate interests (security, fraud prevention, service improvement, defense of claims), legal obligation (tax, accounting, sanctions, copyright procedures), and consent where we ask for it. You may have rights of access, rectification, erasure, restriction, portability, and objection, and the right to lodge a complaint with your supervisory authority. For transfers to the United States we rely on appropriate safeguards where required, such as standard contractual clauses with service providers.
Republic of Korea: if and to the extent the Personal Information Protection Act (PIPA) applies, you may have rights to access, correct, delete, and suspend processing of your personal information, and the cross-border transfer described above occurs when you use this U.S.-operated service. Requests may be sent to the privacy contact below.

Rights disputes, copyright notices, DMCA records, uploader identity records, transaction records, and moderation records may be processed, preserved, and disclosed where legally appropriate to protect PHOTOHAUS, users, buyers, sellers, rights holders, and the platform. The related Terms of Service specify Delaware governing law, an arbitration agreement, and U.S. forum provisions for disputes to the maximum extent permitted by law.

12. Retention

Account records: while the account is active and for a reasonable period afterward.
Terms/Privacy acceptance records (date, IP, version): for as long as needed to evidence the agreement, typically the life of the account plus the applicable limitations period.
Transaction, invoice, tax, withholding, and payout records: as required for accounting, tax, fraud, and legal obligations (often 7 years or longer where required).
Copyright, DMCA, counter-notice, repeat-infringer, dispute, and moderation records: as needed for rights protection and legal defense.
Security logs: for a limited period unless needed for investigation or compliance.

When retention periods end, we delete, de-identify, or securely archive the information.

13. Security and Breach Notification

We use reasonable safeguards such as password hashing, access controls, HTTPS where available, limited administrative access, restricted storage of tax and payout data, and security review practices. No system is completely secure, and users are responsible for protecting their credentials.

If a security incident affects your personal information in a way that triggers notification duties under applicable law, we will notify you and the relevant authorities without unreasonable delay and within the timelines the law requires.

14. Changes and Contact

We may update this Privacy Policy. If we make material changes, we will provide reasonable advance notice — for example, by email to your registered address and/or a prominent notice on PHOTOHAUS — before the changes take effect, and we will update the effective date and version number above. Changes do not apply retroactively to information collected under a prior version, except as permitted by law or with your consent.

SAMCHEONGHAUS Inc.
[Registered Agent / Business Street Address], Delaware, USA
Privacy / legal contact: photohausworld@gmail.com

This policy is a practical beta operating draft for a U.S.-operated service and should be reviewed by qualified U.S. counsel before full commercial launch, including a determination of whether the CCPA/CPRA thresholds, GDPR, or other regimes actually apply at the company's scale.