****** Personal Information Handling Policy ******* This policy is effective as of August 1, 2009. ■ Personal Information Collected The company collects the following personal information for membership registration, consultations, service applications, etc. Items Collected: Name, date of birth, login ID, password, home phone number, home address, mobile phone number, email, occupation, service usage history, access log, payment history, registration path Methods of Personal Information Collection: Website (membership registration, consultation request form registration), membership registration via phone/fax, sweepstakes application, provision from affiliates ■ Purpose of Collection and Use of Personal Information The company uses the collected personal information for the following purposes: ο Contract performance regarding service provision and billing for service provision, including content provision, purchase and payment, product delivery, and billing. ο Membership management Identity verification for membership services, complaint handling, and notifications. ο Marketing and advertising use. Development and specialization of new services (products), delivery of promotional information such as events, and compilation of access frequency and statistics on member service use. ■ Personal information retention and use period In principle, personal information is destroyed without delay after the purpose of collection and use has been achieved. However, if retention is required by applicable laws and regulations, the Company retains member information for a specified period of time as stipulated by applicable laws and regulations. Retention Items: Name, date of birth, login ID, home phone number, home address, mobile phone number, email, occupation, service usage history, access log, payment history, subscription path Retention Basis: Act on Consumer Protection in Electronic Commerce, etc. Retention Period: 5 years ■ Personal Information Destruction Procedures and Methods In principle, the Company destroys personal information without delay after the purpose of collection and use has been achieved. The destruction procedures and methods are as follows: ο Destruction Procedures The information you enter for membership registration and other purposes is transferred to a separate database (or a separate file cabinet for paper documents) after the purpose has been achieved. It is stored for a certain period of time in accordance with internal policies and other relevant laws and regulations for information protection (see Retention and Use Period) and then destroyed. Personal information transferred to a separate database will not be used for any purpose other than retention, unless required by law. ο Destruction Methods - Personal information stored in electronic files is deleted using a technical method that renders the records unrecoverable. - Personal information printed on paper will be destroyed by shredding or incineration. ■ Entrustment of Collected Personal Information The company will not entrust your information to an external company without your consent. If such a need arises in the future, we will notify you of the entrusted party and the details of the entrusted work and, if necessary, obtain your prior consent. ■ Rights of Users and Legal Representatives and How to Exercise Them Users and their legal representatives may view or edit their registered personal information or that of children under 14 at any time, and may also request cancellation of their membership. To view or edit the personal information of users or children under 14, click "Change Personal Information" (or "Edit Member Information"). To cancel membership (withdraw consent), click "Cancel Membership." After completing the identity verification process, you can directly view, edit, or cancel your membership. Alternatively, you may contact the Personal Information Manager in writing, by phone, or by email, and we will take action without delay. If you request correction of errors in your personal information, we will not use or provide the relevant personal information until the correction is completed. Additionally, if incorrect personal information has already been provided to a third party, we will promptly notify the third party of the results of the correction process to ensure the correction is made. The Company processes personal information terminated or deleted at the request of the user or legal representative in accordance with the "Retention and Use Period of Personal Information Collected by the Company" and ensures that such information cannot be accessed or used for any other purpose. ■ Matters Concerning the Installation, Operation, and Refusal of Automatic Personal Information Collection Devices The Company uses "cookies" and other technologies to periodically store and retrieve your information. Cookies are very small text files sent to your browser by the server used to operate the Boram Immigration Corporation website and are stored on your computer's hard drive. The Company uses cookies for the following purposes: ▶ Purpose of Cookie Use - Analyze access frequency and visit time of members and non-members, identify user preferences and interests, track user activity, and track participation in various events and number of visits to provide targeted marketing and personalized services. You have the option to choose whether to install cookies. Therefore, you can configure your web browser to allow all cookies, request confirmation each time a cookie is saved, or reject all cookies. ▶ How to Reject Cookie Settings Example: To reject cookie settings, you can select options on your web browser to allow all cookies, request confirmation each time a cookie is saved, or reject all cookies. Example of Setting Method (Internet Explorer) : Tools > Internet Options > Privacy at the top of your web browser However, if you reject cookie installation, you may experience difficulties in providing services. ■ Personal Information Complaint Service To protect customer personal information and handle complaints related to personal information, the company has designated the following departments and a Personal Information Manager. Customer Service Department: MS-TECH Phone: 031-366-1678 Email: msprober@gmail.com Personal Information Manager: Park Ga-young You may report any personal information protection-related complaints arising while using the company's services to the Personal Information Manager or the relevant department. The company will provide a prompt and sufficient response to your reports. For other inquiries or inquiries regarding personal information infringement, please contact the following organizations. 1. Personal Dispute Mediation Committee (www.1336.or.kr/1336) 2. Information Protection Mark Certification Committee (www.eprivacy.or.kr/02-580-0533~4) 3. Supreme Prosecutors' Office Internet Crime Investigation Center (http://icic.sppo.go.kr/02-3480-3600) 4. National Police Agency Cyber ​​Terror Response Center (www.ctrc.go.kr/02-392-0330)