PTSK Co., Ltd. (referred to as “the Company” or “We”) complies with the regulations on personal information protection under the “Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc.” and has established a “Privacy Policy” to protect user rights. Our Privacy Policy is composed as follows.

(1) 'Personal information' includes data collected during membership registration, service applications, events, etc., such as name, ID number, phone number, and other identifying information.
(2) When registering online as members to access the Company's content, clicking the consent button for the Privacy Policy is considered as agreeing to the collection of personal information for utilizing the services provided by the Company.
(3) To ensure smooth customer consultation and provide various services, we collect the information listed in Article 3, Paragraph 1, 'Personal Information Items,' at the time of initial membership registration.
(4) We collect and utilize the personal information provided by members solely for the intended purposes, ensuring the prevention of information leakage. Any changes in the purpose and usage of members' personal information will require prior consent. However, exceptions may apply in cases necessary for service-related fee settlements.

We collect essential personal information relevant to user service usage.
(1) Personal Information Collection Items
① Membership Registration:
- Name, ID, password, email, address, phone number
② SNS Registration:
- Facebook: Email, profile (picture, name), friend list
- KakaoTalk: Profile (picture, nickname)
- Naver: Email
③ Non-member Service Reservation:
- User name, birthdate, gender, phone number, verification code, email
④ Customer Inquiry, Event Participation:
- Name, email, contact number
(2) Personal Information Collection Method
The company collects personal information through:
- Website, forms, fax, phone, online consultation, email, event participation, delivery requests
- Provision from partners

(1) We collect personal information for specific purposes and do not disclose it to others, except as required by regulations on sharing personal information (excluding purposes other than intended use) or providing it to third parties.
- Contract formation for service provision (identity verification and consent confirmation) and identity verification for handling service-related complaints, preparing for litigation or disputes (complaint reporting, etc.), and real-name verification through credit rating agencies.
- Service usage confirmation, notifications, user intent verification, complaint handling, latest information on new services, products, events, and other news, service updates, and product/event notifications.
- Payment of service fees, settlements, collection of overdue charges, customer consultation records, post-event measures, invoicing, securing accurate delivery addresses for product shipments, etc.
- Verification of identity may be necessary to protect the rights of members or resolve disputes between members and the company.
- In cases requiring consent or approval from a legal representative for legal actions by minors, proof of such consent or approval may be provided through a consent document.
- Monitoring web access frequency, cooperating with judicial authorities for communication record verification, preventing misuse, preserving records for dispute resolution, handling complaints and grievances.
- Analyzing personal information databases to enhance service planning and provision, utilizing data for personalized services.
(2) Personal information may be requested for surveys, statistics, event prizes, and other purposes. However, no sensitive personal information violating basic rights will be requested or used for other purposes.
(3) Consent for changes in purposes and items of personal information collection and use will be obtained via websites, documents, phone, or email.

- Cookies: They are small pieces of information sent by websites to a user's browser to store basic settings. When users access a website, the service provider's computer reads the cookies in their browser and provides services without requiring additional input, such as their name. Cookies can identify a user's computer but not the user personally.
- Users have the choice regarding cookies and can adjust the web browser options under [Tools] > [Internet Options] to either allow all cookies, receive confirmation when cookies are stored, or refuse the storage of all cookies. However, refusing all cookies may result in the inability to receive services from the company's websites.
- Besides the above, we may automatically collect and generate information like IP addresses, cookies, visit timestamps, and service usage records when members utilize our various services. The collected information helps determine user scale, including web usage frequency and total number of users, by assigning unique cookies to users' browsers, for both members and non-members. Furthermore, by utilizing cookies to understand your visit and usage patterns, we can create and provide more convenient and beneficial services.

(1) Members can access, modify, or withdraw their registered personal information at any time. To access or modify personal information, members can click on the corresponding menu (My Page after logging in) on the website for direct access, modification, or withdrawal.
(2) When a member requests corrections or deletions of their personal information, the company will confirm their identity and take necessary actions before notifying the results.
(3) For other inquiries related to personal information, please contact us at cs@datapang.com. We will respond via wireless or email after verifying the details.
(4) The scope of personal information that the company can provide to members is limited to the information provided during the membership application. Personal information not specified can be provided only after the member visits in person and verifies their identity.
(5) Access and modification of personal information of children under 14 years of age can be done based on the request and verification of either the child or the legal guardian. The legal guardian must provide evidence of their identity and proof of being the legal guardian to the company.

(1) The company retains the member's personal information during service usage until the purposes for collection or provision are achieved, following these disposal guidelines:
- Membership registration information: Upon member withdrawal or expulsion.
- Payment information: Upon completion of payment for services.
- Delivery information of (event) products: Upon delivery or completion of the service and personal verification.
(2) For membership registration information, the re-registration and complete deletion of personal information are executed after a grace period of 14 days to prevent identity theft and related criminal activities. Withdrawal cancellation can be requested within 14 days on the website.
(3) However, certain records are retained based on relevant laws:
- Fraudulent use records (Retention reason: prevention, Retention period: 1 year)
- Contract or subscription withdrawal records: 5 years
- Payment and supply records: 5 years
- Consumer complaint or dispute resolution records: 3 years
- Advertising records: 6 months
- Identity verification records (Retention reason: law, Retention period: 6 months)
- Visitation records (telecommunication evidence) (Retention reason: law, Retention period: 3 months)
(4) With member consent, access to and verification of transaction information are facilitated upon request.

(1) The company generally does not disclose personal information to others or other entities. However, exceptions may apply if you have given consent for disclosure or if there is sufficient justification to disclose personal information for legal measures against individuals who have caused harm or violated social norms by breaching the terms of service.
(2) We use the member's personal information within the scope notified in the "Purpose of Collection and Use of Personal Information" and do not exceed or provide it to others or other companies/organizations. However, we may provide some of the member's personal information, collected in accordance with the privacy policy within the minimum necessary scope, to affiliated partners to provide real-name verification services and deliver services relevant to the members. In such cases, we follow the procedure to obtain consent for information collection or provision, and if the member does not consent, we do not collect additional information or share it with business partners.
(3) The company adheres to the specified scope in this privacy policy and does not provide members' personal information to others or companies, except in cases of member consent or under specific circumstances outlined in Article 8, Paragraph 1:
- When legal measures and requests from government agencies are necessary due to violations of the company's terms, policies, or rules.
- When requested by investigative agencies for legal investigations.
- When required for fee settlement related to service provision.
- When providing information to entrusted agencies for events and prizes, with clear notification to members.
- When sharing unidentifiable information with affiliated partners for statistical analysis and market research.
- When complying with requests from relevant laws and procedures, such as the Act on Real Name Financial Transactions, the Act on Use and Protection of Credit Information, and others.
(4) To provide improved services, if the company needs to share members' personal information with third parties, such as other companies, prior notification and consent will be obtained from the members. Information that members do not consent to will not be shared or provided to third parties. Notification and consent methods include posting notices on the homepage for at least 7 days in advance, as well as individual notifications through email or other channels, such as the homepage, written documents, telephone, or email.

To safeguard members' personal information from loss, theft, leakage, alteration, or damage, the company implements the following measures:
(1) Member’s personal information is safeguarded by passwords. Only the account holder has access to the password for verifying and modifying their personal information.
(2) We prioritize preventing the unauthorized disclosure or alteration of members' personal information due to hacking, computer viruses, and similar threats. We regularly back up data to protect against information loss, and we utilize up-to-date antivirus programs to ensure secure transmission of users' personal information. Our antivirus programs are regularly updated and maintained.
(3) To safeguard members' personal information due to hacking or other unauthorized access, the company utilizes intrusion prevention systems to block external attacks and intrusions. Each server is equipped with intrusion detection systems to control unauthorized access and backup systems and data to prepare for potential damage to members' personal information.
(4) We designate specific employees responsible for handling personal information and strictly limit the scope of employees who can access such information. We emphasize compliance with our privacy policy by providing security training to those handling personal information.
(5) Each member is responsible for appropriately managing their own account (ID) and password to protect their personal information.
(6) The company never directly asks members about their passwords through any means, so it is important to be cautious and prevent password leakage to others.
(7) The company is not liable for any damage to information or disputes caused by unforeseen incidents resulting from inherent network risks, without any intentional or negligent actions on the part of the company.

(1) Personal information of non-users who have not used the service for a long period (over 1 year) is stored separately for protection.
(2) Non-use period is calculated based on login and contact dates with customer support staff, and their information is kept separate, stored, and managed for the duration defined by applicable laws.
(3) Notice of Personal Information Separation/Storage to Non-Users is sent via email or other means, prior to the deadline of 1 month.
(4) The separated and stored personal information of non-users is retained for a certain period in accordance with relevant laws and is destroyed after the expiration of that period. Undestroyed personal information will be provided again to the user upon resumption of service at their request. However, if there is no service usage (contract) within 1 year after providing personal information for service inquiries, the provided personal information will be immediately destroyed.

The company may outsource the processing of members' personal information to external parties for the purpose of improving services.
(1) When outsourcing the processing of personal information, the company will inform the members in advance.
(2) When outsourcing the processing of personal information, the company establishes clear contractual provisions, including obligations for technical and administrative protection, compliance with privacy instructions, confidentiality of personal information, prohibition of third-party disclosure, and responsibility in case of incidents, to ensure the protection of members' rights.

(1) When collecting personal information of children under 14 years old, we obtain consent from their legal guardian. During this process, we may request the legal guardian's name, contact information, and resident registration number. The collected information will not be used or disclosed to third parties for purposes other than verifying the legal guardian's consent.
(2) The consent form from the legal guardian (parents) is used for dispute resolution purposes in the event of issues related to contracts, cancellations, and payment for services or content provided by the company, involving minors.
(3) The legal guardian (parents) of children under 14 years old may request access, correction, or withdrawal of consent regarding the child's personal information, and the company will take necessary measures in response to such requests.

(1) We have established a channel where members can express their opinions and complaints regarding privacy protection. If you have any concerns related to personal information, please provide your feedback to our Privacy Manager, and we will promptly address and inform you of the results.
(2) We value members' opinions and believe that they have the right to receive sincere responses to their inquiries.
(3) We will diligently respond to consultations via email, fax, or phone within 24 hours of receiving them, excluding working hours after business hours or holidays as a general principle. The current operating status and contact information for customer support are as follows:
- Working Hours: Weekdays 10:00 AM to 6:00 PM (Closed on Saturdays, Sundays, and holidays)
- Phone: 1566-1812 (South Korea)
- Fax: 02-564-6800
- Other inquiries: Website > Customer Support > 1:1 consultation for sending inquiries.
If you need assistance regarding personal information, you can also file complaints and inquiries through the following organizations operated under the Korea Internet & Security Agency (KISA), a subsidiary of the Ministry of Science and ICT.
- Personal Information Infringement Report Center: http://privacy.kisa.or.kr / (dial 118 without area code)
- Personal Information Dispute Resolution Committee: http://www.kopico.or.kr/ / 1833-6972
- Cyber Investigation Department, Supreme Prosecutors' Office: http://www.spo.go.kr / (dial 1301 without area code)
- Cyber Safety Bureau, National Police Agency: http://cyberbureau.police.go.kr / (dial 182 without area code)

The company strives to ensure the safe use of members' personal information. The personal information management officer assumes full responsibility for incidents or issues that violate the mentioned matters in managing and protecting personal information. The company has designated personnel to handle opinions and complaints about personal information. The contact details are as follows:
Privacy Protection Officer and Contact Person:
Name: Chang Han Lee
Department/Position: Marketing / Director
E-Mail: andyhan@ptsk.co.kr
Phone Number: 1566-1812

(1) We will make every effort to protect minors from various harmful materials in accordance with the Youth Protection Act.
(2) We strictly enforce sanctions against unethical and antisocial behaviors, including harmful information that hinders the healthy development of youth.
(3) Children under the age of 14 must not send their personal information to others without permission, and they must obtain parental consent before sending it.
(4) We do not share information of children under 14 with others or companies, and we do not send them any promotional emails.
(5) The legal guardian of a child under 14 can request to access, correct, or withdraw consent for the child's personal information, and the company will promptly address such requests.

This Privacy Policy was enacted on May 1, 2023. Changes to the policy, including additions, deletions, or modifications, will be announced at least 7 days prior to implementation through the homepage notice section.
Privacy Policy Announcement Date: 2023.05.01
Privacy Policy Effective Date: 2023.05.01