SNS Co., Ltd. (“the Company”) establishes the following Privacy Policy in accordance with the Personal Information Protection Act to safeguard users’ personal data and rights, and to ensure smooth handling of any related complaints. We recognize that your personal information is both a valuable personal asset and an essential resource for the operation of our business. Accordingly, the Company promises to make every effort to protect your personal information throughout all stages of our operations. When we amend this Privacy Policy, we will notify users via our website.

1. Consent Procedure for Collection of Personal Information

The Company provides a procedure where you can click “Agree” or “Disagree” to the contents of the Privacy Policy and Terms of Use. By clicking “Agree,” you are deemed to have consented to the collection of personal information.

2. Purpose of Collection and Use of Personal Information

The processed personal information will not be used for purposes other than the following purposes, and prior consent will be sought when the purpose of use is changed.

• Name, ID, Password: To confirm membership registration, prevent fraudulent use of services, analyze access frequency, and verify identity for membership-based services.
• Email address, Phone number (with opt-in status): To deliver notices, confirm user intent, handle complaints, secure communication channels, provide event/advertising information, offer participation opportunities, analyze access frequency, and generate service usage statistics.
• Address, Phone number: To ensure accurate delivery of prizes or goods.

3. Transmission of Advertising Information

1. The Company will not send commercial advertising information against your explicit opt-out request.

2. We may provide notices regarding changes to terms, service usage, new products, events, and other information via email, SMS, or other electronic means, in compliance with relevant laws.

3. For online marketing (e.g., product information), we ensure subject lines and content clearly indicate the promotional nature of the message.

4. Scope of Collected Personal Information

Most content can be accessed freely without membership registration. However, to use membership services, the following information is required:

• Collected Information: Name, email, date of birth, ID, password, gender, address, mobile number, email/SMS subscription status, service usage records, access logs, recipient information (name, phone number, address, email).
• Collection Method: Membership registration, bulletin board, etc.

5. Retention and Use Period of Personal Information

Personal information is destroyed without delay once the purpose of collection is achieved.
However, the following information is retained for the stated period:

• Retained items: Name, login ID, password, email, date of birth
• Retention basis: Prevention of repeated misuse by fraudulent members
• Retention period: 1 month

Additionally, as required by law, the Company retains information as follows:

• Records of consumer complaints/disputes: 3 years (under the Act on the Consumer Protection in Electronic Commerce, etc.)

6. Destruction of Personal Information

When the purpose of processing personal information is achieved, the Company promptly destroys the data.

• Procedure: Information entered for membership, etc., is moved to a separate DB (or paper documents to a separate file) after the purpose is achieved, then stored for a set period under Company policy or legal requirements, and later destroyed.
• Timeline: Data is destroyed within 5 days of expiration of retention period, service termination, or determination that the information is no longer required.
• Method: Electronic files are deleted using technical methods that prevent recovery.

7. Security Measures for Personal Information

In compliance with Article 29 of the Personal Information Protection Act, the Company implements the following measures:

• Minimization and training of staff handling data: Only authorized personnel may process personal data, and they receive regular training.
• Encryption of personal information: User passwords are encrypted. Important data is also encrypted or protected using file lock and other security features.

8. Personal Information Protection Officer

The Company has designated a Data Protection Officer to ensure safe handling of customer information and to respond promptly to inquiries.

▶ Data Protection Officer

Name: Seungchul Yang

Position: General Manager

Email: scyang@sns-at.co.kr

Tel: 031-885-9833

Users may contact the Data Protection Officer for any inquiries, complaints, or requests related to personal data protection.

9. Opinions and Complaints

We value our members’ opinions, and you are entitled to receive sincere responses to inquiries.

• Real-time and phone consultations are available during business hours.
• Email and postal inquiries will be answered within 24 hours (or the next business day if received after hours, weekends, or holidays).

If personal information is stolen or misused:

1. If we discover that a user has registered with another person’s information, we will promptly suspend or terminate the account.

2. If a user identifies their own information has been misused, we will immediately suspend or terminate the relevant account upon request.

You may also contact the following agencies for further assistance:

• Personal Information Infringement Report Center: http://www.118.or.kr
• Supreme Prosecutors’ Office Cyber Crime Investigation Center: http://icic.sppo.go.kr
• Korean National Police Agency Cyber Terror Response Center: http://www.police.go.kr/ctrc/ctrc_main.html