The Company processes personal information for the following purposes. The personal information processed will not be used for any purpose other than the following purposes, and if the purpose of use changes, the Company will take necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.

• Handling customer inquiries and consultations: We process personal information for the purpose of identifying you, confirming your inquiries, contacting and notifying you for fact-finding, and notifying you of the results of processing.

The Company collects the following personal information for smooth customer consultation and service provision.

• Required to collect: Name, company name, contact (phone number or cell phone), email
• Automatically collected items: Service usage history, visit history, access logs, cookies, access IP information, bad usage history

The Company shall process and retain personal information within the period of retention and use of personal information in accordance with laws and regulations or within the period of retention and use of personal information agreed upon when collecting personal information from the information subject.

• Management of customer inquiries and counseling: 3 years after the completion of the inquiry (or until the information subject requests deletion), but if an investigation or investigation is underway due to violation of relevant laws and regulations, until the end of such investigation or investigation.

The Company consigns personal information processing tasks as follows to ensure smooth personal information processing.

• Custodians: ChasmLabs
• What we do: website maintenance and system administration
• Custody period: Until the end of the custody agreement

In accordance with Article 26 of the Personal Information Protection Act, when entering into an outsourcing contract, the Company specifies in documents such as contracts the prohibition of processing personal information other than for the purpose of performing outsourced tasks, technical and administrative protection measures, restrictions on re-consignment, management and supervision of the outsourcer, and liability for damages, and supervises whether the outsourcer handles personal information safely.

The Company shall destroy personal information without delay when it becomes unnecessary, such as the expiration of the personal information retention period or the fulfillment of the purpose of processing.

• Destruction procedure: The information entered by the information subject is transferred to a separate DB (separate filing cabinet in case of paper) after the purpose is fulfilled, stored for a certain period of time in accordance with internal policies and other relevant laws, and then destroyed.
• Destruction method: Information in electronic file form is destroyed using technical methods that make the records unrecoverable, while personal information recorded on paper is destroyed by shredding or incineration.

The information subject may exercise rights such as requesting to view, correct, delete, or suspend the processing of personal information at any time against the Company. The exercise of rights can be made in writing, e-mail, facsimile transmission (FAX), etc. to the Company, and the Company will take action without delay.

We use "cookies" to store and retrieve usage information from time to time to provide you with personalized services. We also use the following external tools to analyze the usability of our website and to prevent spam.

• Use of Cookies: A cookie is a small amount of information sent to your browser by the server used to operate a website and may be stored on your computer's hard disk. You can set your web browser's options to accept or block cookies.
• Google Analytics (GA) and MS Clarity: We use Google Analytics from Google and Clarity from Microsoft to improve the quality of our services by analyzing the history of your visits to our website, your usage, etc. In doing so, anonymized usage information may be collected.
• Google reCAPTCHA: We use Google's reCAPTCHA feature to block malicious access to our website, such as spam and bots.

The Company has designated a person in charge of personal information protection as follows to take overall responsibility for the processing of personal information and to handle complaints and remedy damages of information subjects related to the processing of personal information.

• Full Name: Juhyung Yoo
• Job Title: Assistant Director
• Contact: 070-8672-5936
• Email: 4u@emcg.co.kr

The information subject may contact the person in charge of personal information protection for all personal information protection-related inquiries, complaints, damage remedies, etc. arising from the use of the Company's services (or business). The Company will respond to and handle inquiries from the information subject without delay.

The information subject may apply for dispute resolution or consultation to the Personal Information Dispute Mediation Committee or the Korea Internet & Security Agency's Personal Information Infringement Report Center to obtain relief from personal information infringement.

• Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr)
• Personal Information Infringement Report Center: (without area code) 118 (privacy.kisa.or.kr)
• General Prosecutor's Office: 1301 (without area code) (www.spo.go.kr)
• National Police Agency: 182 (without area code) (ecrm.cyber.go.kr)

This Privacy Policy will be applied from the effective date, and any additions, deletions, and corrections to the contents in accordance with laws and policies will be notified through a notice 7 days prior to the effective date of the changes.