We Protect Your Personal Information

The Company processes personal information for the following purposes. Personal information processed shall not be used for purposes other than those stated below. If the purpose of use changes, necessary measures will be taken, such as obtaining separate consent in accordance with the law.

The Company collects the minimum amount of personal information necessary for service usage.

• The Company processes and retains personal information within the retention and usage period prescribed by law or the period consented to by the data subject when collecting personal information.
• The processing and retention period of personal information is as follows: Retained during the service subscription period (license maintenance period) and destroyed without delay upon membership withdrawal. However, if an investigation or inquiry into violations of related laws is in progress, it will be retained until the conclusion of such investigation or inquiry.
• Grounds for information retention under related laws (Act on Consumer Protection in Electronic Commerce, etc.): Records related to contracts or withdrawal of offers: 5 years, Records related to payment and supply of goods: 5 years, Records related to consumer complaints or dispute resolution: 3 years

The Company does not, in principle, provide users' personal information to external parties. However, the following cases are exceptions:

• When users have given prior consent
• When required by investigative agencies in accordance with procedures and methods prescribed by law for investigation purposes

The Company consigns personal information processing tasks as follows to provide smooth services and fulfill contracts.

When concluding consignment contracts, the Company specifies in writing matters such as prohibition of personal information processing beyond the purpose of consigned tasks, technical and administrative protection measures, restrictions on re-consignment, management and supervision of consignees, and liability for damages in accordance with Article 26 of the Personal Information Protection Act, and supervises whether consignees safely process personal information.

• Users may exercise rights such as viewing, correcting, deleting, and requesting suspension of processing of personal information at any time with respect to the Company.
• Rights may be exercised through written documents, email, etc. to the Company, and the Company will take action without delay.
• If a user requests correction or deletion of errors in personal information, the Company will not use or provide the personal information until processing is completed.

The Company destroys personal information without delay when it becomes unnecessary, such as when the retention period expires or the processing purpose is achieved.

The Company takes the following measures to ensure the safety of personal information:

• The Company uses 'cookies' that store and frequently retrieve usage information to provide users with individualized customized services when using the website. (This is unrelated to software operation)
• Users have the option to set cookie installation and can allow, confirm, or reject cookies in web browser settings.

The Company designates a personal information protection officer as follows to oversee matters related to personal information processing and to handle complaints and remedy damages related to personal information processing by data subjects.

Users may apply for dispute resolution or consultation with the Personal Information Dispute Mediation Committee, Korea Internet & Security Agency Personal Information Infringement Report Center, etc. to receive remedies for personal information infringement.

• Personal Information Dispute Mediation Committee: 1833-6972 (www.kopico.go.kr)
• Personal Information Infringement Report Center: 118 (privacy.kisa.or.kr)

This Privacy Policy is effective from November 25, 2025.