1. Items of personal information processed

1) Items collected when registering for membership
A. Required items: ID, name, contact information (phone number, mobile phone, etc.), gender, e-mail
B. Optional items: Whether to receive e-mail and SMS
C. The following information is automatically generated in the process of using online services or in the process of providing services (service usage records, access logs, cookies, access IP information)
2) Collection Methods
A. Collected through the personal information collection consent process through the company's homepage, written form, telephone/fax, e-mail, etc.
B. Collection of information automatically collected and generated in the normal course of providing services, such as consultation history and history, payment records, usage records, etc.

2. Purpose of Processing Personal Information

The Company utilizes the collected personal information for the following purposes. All information provided by the customer will not be used for purposes other than those described below, and prior consent will be obtained if the purpose of use is changed.
1) ID, name, mobile phone number and landline phone number, e-mail, and password are used for the purpose of verifying your identity when using the membership service.
2) E-mail, home or work address, mobile phone number, and landline phone number are for the purpose of delivering announcements, information on services and products, and accurate delivery of prizes and products (for events, etc.).
3) Other optional items are for the purpose of providing personalized services to members.
4) It is also utilized for the purpose of statistics and marketing analysis of the Company and its affiliates.

3. Retention and use period of personal information

When the purpose of collecting personal information or the purpose for which it was provided is fulfilled, we will destroy your personal information without delay. However, the following information shall be retained for the period specified for the following reasons (however, if the customer has given prior consent, it shall be retained in accordance with the relevant laws and regulations if there are special provisions in other laws and regulations)
1) Retention and use period of provided information
A. Period of use: From the date of service subscription to the date of termination or the date of termination of the provision contract, whichever comes first
B. Retention period: Destruction after the end of the use period (however, use for service promotion and marketing: 2 years)
2) Retention of personal information when withdrawing from membership
A. Retained items: ID
B. Grounds for retention: Preventing bad customers from rejoining the service, infringement disputes such as defamation, and cooperation in investigations
C. Retention period: 3 years after membership withdrawal
3) Retained personal information related to commercial transactions
A. Retained items: Commercial transaction history
B. Basis of retention: Commercial law, laws on consumer protection in e-commerce, etc.
C. Retention period
- Records relating to evidence in connection with litigation or legal disputes: 10 years
- Records on contract or withdrawal of subscription: 5 years
- Records on payment and supply of goods: 5 years
- Records on consumer complaints or dispute handling: 3 years (Act on Consumer Protection in Electronic Commerce, etc.)
- Records on collection/processing and use of credit information: 3 years (Act on the Utilization and Protection of Credit Information)
- In the event of overpayment or non-payment of fees, and in the event of a dispute, it will be retained until resolution.

4. Consent to the collection of personal information

When collecting customer personal information, the Company shall, in principle, obtain the consent of the member through due process, and shall go through the process of signing up for membership on the company's site or agreeing to the Terms of Use and Privacy Policy on the Internet. The customer shall be deemed to have consented to the collection of personal information by checking the phrase (Yes, I agree).

5. Use of Personal Information for Other Purposes and Information Sharing with Third Parties

Customer's personal information shall be used within the scope notified in [Personal Information Processing Items] and [Purpose of Personal Information Processing] without the prior consent of the user, and shall not be used beyond the scope or provided to other companies or organizations, except in the following cases with the consent of the customer.
1) When necessary for settlement of charges for the provision of the Service
2) If the personal information is necessary for the fulfillment of the contract for the provision of the service and it is significantly difficult to obtain general consent for economic or technical reasons
3) If required by relevant organizations for legal or investigative purposes, or if special provisions are made in the relevant laws and regulations, it is provided in accordance with due process as prescribed by law.

6. Procedures and Methods for Destruction of Personal Information

1) Destruction Procedures
A. After the purpose of personal information processing is achieved or the processing and retention period has elapsed, the Company will destroy the personal information after it is stored for a certain period of time in accordance with the reasons for information protection under the internal policy and other relevant laws and regulations (see Retention and Use Period).
B. Destroyed: Customer information whose retention and use periods have ended, and whose retention period has ended in accordance with relevant laws and regulations.

2) Method of destruction
A. Personal information stored in the form of electronic files shall be destroyed using technical methods that cannot reproduce the records.
B. Personal information printed on paper shall be destroyed by shredding or incineration.

7. Outsourcing of Personal Information

The Company may outsource the collection, processing, management, etc. of your personal information for service improvement.
1) When entrusting the processing of personal information, the Company shall notify in advance in writing, by telephone, e-mail, or through the website of the relationship and scope of responsibility between the entrustor and the entrustee.
2) When entrusting the processing of personal information, the Company shall clearly stipulate the observance of matters related to personal information protection and the confidentiality of personal information.
3) The Company entrusts the processing of your personal information to an external specialized company as follows (collection, storage, processing, use, provision, management, disposal, etc.) to facilitate the performance of its business, including the provision of better services and customer convenience. The Company stipulates compliance with relevant laws and guidelines, prohibition of provision to third parties, liability in case of accidents, and obligation to return/destroy personal information immediately upon the end of the entrustment period.
4) Personal information of members is collected and analyzed by the outsourcing company to improve the service, and the Company stipulates the necessary matters to ensure that personal information is managed safely in the outsourcing contract in accordance with relevant laws and regulations.
A. We post matters regarding the trustee, scope of trust, scope of shared information, etc. via e-mail, telephone, or website
B. Stipulate the service provider's compliance with instructions related to personal information protection, confidentiality of personal information, and prohibition of providing personal information to third parties in the outsourcing contract, and electronically store the contract contents.
C. The current personal information processing trustees and the contents of their work are as follows.

- Nine Communications
- Items to be provided: Name, contact information (phone number, mobile phone, etc.), e-mail
- Purpose of use: Personal information processing system
- Consignment period: From the start date of the contract to the end date of the contract

8. Matters concerning the installation and operation of automatic personal

information collection devices and their rejection The Company installs and operates 'cookies' that store and retrieve customer information from time to time. Cookies are small text files sent to the customer's browser by the server used to operate the Company's website and are stored on the customer's computer hard disk. The Company uses cookies for the following purposes.
1) Purpose of using cookies, etc. A. Providing targeted marketing and personalized services by analyzing the access frequency and visiting time of members and non-members of the website, identifying the tastes and interests of customers and tracking their traces, and identifying the degree of participation in various events and the number of visits
B. You have the right to choose whether to install cookies. Therefore, you can accept all cookies, confirm each time a cookie is saved, or refuse to save all cookies by setting options in your web browser.
2) How to refuse cookie settings
A. To refuse the setting of cookies, you can accept all cookies, confirm each time a cookie is saved, or refuse to save all cookies by selecting the option of the web browser you use.
B. Example settings (for Internet Explorer): Tools > Internet Options > Privacy at the top of the web browser3) However, if the customer refuses to install cookies, there may be difficulties in providing the service.

9. Matters concerning the rights and obligations of the information subject and how to exercise them

1) Customers may withdraw their consent to the collection, use and provision of personal information at any time. You can request to view, correct, suspend, or delete your personal information through the website registration, and if you contact the person in charge of personal information protection in writing, by phone, FAX, or e-mail, we will take necessary measures such as destroying it without delay. However, the exercise of the right may be restricted if there are obligations stipulated by law.
2) The user is responsible for any accidents that occur due to inaccurate information entered by the user, and if the user enters false information such as theft of other people's information, the membership may be lost. In addition, all legal responsibilities will be the responsibility of the person who enters theft or false information.
3) Along with the right to privacy, customers also have the obligation to protect themselves and not infringe on others' information. Please be careful not to disclose your personal information, including passwords, and be careful not to damage the personal information of others, including posts. If you fail to fulfill these responsibilities and damage the information and dignity of others, you may be punished under the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc.
4) When collecting personal information of children under the age of 14 (hereinafter referred to as “children”), the Company must obtain the consent of their legal representative. In order to obtain the consent of the legal representative, the Company may require minimum information from the child, such as the name and contact information of the legal representative, and the legal representative of the child may request access, correction, and deletion of the child's personal information through writing, telephone, E-mail, FAX, etc.

10. Collection of Customer's Opinions and Personal Information Protection Officer

1) The Company provides a window for customers to submit opinions and complaints at any time regarding the protection of personal information, and will promptly process and inform the results through the Company's website and contact with the person in charge of the customer management department.
2) The Company has the following person in charge of personal information protection to protect customers' personal information and handle complaints related to personal information.

11. Changes to the Privacy Policy

This Privacy Policy was established on June 5, 2025, and if there are any additions, deletions, or modifications to the contents in accordance with changes in laws, policies, or security technology, the Company will notify the reason and content of the changes through the Company's website.