Privacy Policy

To handle inquiries and brochure requests, the Company collects the following personal information.

• Required: name, email address, phone number, company/organization name, inquiry subject and message
• Collected automatically: IP address, cookies, service usage records, browser type and operating system (where a visitor-analytics tool is operated)

The Company uses the collected personal information only for the following purposes.

• Responding to inquiries and brochure requests
• Improving service quality and analyzing visitor statistics

If the purpose of processing changes, the Company will take necessary measures such as obtaining separate consent under Article 18 of PIPA.

The Company processes and retains personal information within the period required by law or consented to by the data subject.

• Inquiry / brochure response records: retained for 3 years after the purpose is fulfilled, then destroyed without delay

The Company processes personal information only within the scope of the purposes stated in Section 2, and provides it to third parties only where Articles 17 and 18 of PIPA apply (e.g., the data subject’s consent or a special provision of law). The Company does not currently provide personal information to any third party.

The Company consigns personal information processing tasks as below to provide its services. In each consignment contract, the Company specifies safe-processing requirements and supervises the consignee in accordance with Article 26 of PIPA.

• Amazon Web Services, Inc. (AWS) — task: cloud server (infrastructure) operation and data storage
• Daou Tech Inc. (Daou Office) — task: inquiry-notification email delivery
• Google LLC — task: website visitor analytics via Google Analytics 4

Note: during analytics (Google Analytics), automatically collected items such as access logs may be transferred to Google LLC (United States). AWS cloud may constitute an overseas transfer depending on the data storage region — 〔TBD: AWS region — domestic if Seoul〕.

Data subjects may, at any time, request access to, correction, deletion, or suspension of processing of their personal information. Such requests may be made to the data protection officer in Section 10 in writing, by phone, or by email, and the Company will act on them without delay.

When personal information becomes unnecessary — e.g., the retention period has elapsed or the processing purpose has been achieved — the Company destroys it without delay. Electronic files are permanently deleted by means that prevent recovery, and paper documents are shredded or incinerated.

The Company takes the following measures to ensure the security of personal information.

• Administrative: minimizing and training personnel who handle personal information
• Technical: access-control management, encryption in transit (HTTPS/TLS), retention of access logs
• Physical: access control to storage areas

The Company may use cookies to provide tailored services and to analyze visits. You may refuse the storage of cookies through your web browser settings (e.g., Browser Settings > Privacy/Security > Cookies). Note that refusing cookies may limit the use of some services.

The Company designates a data protection officer who is responsible for overseeing personal information processing and for handling data subjects’ inquiries, complaints, and remedies, as follows.

• Data protection officer: Hong Gil-dong 〔TBD〕
• Title: 〔TBD〕
• Contact: 〔TBD: phone〕, email 〔TBD: e.g., privacy@jinong.co.kr〕

To resolve disputes or seek consultation regarding personal information infringement, data subjects may contact the following organizations (Korea).

• Personal Information Dispute Mediation Committee: +82-1833-6972 (www.kopico.go.kr)
• Privacy Infringement Report Center (KISA): 118 (privacy.kisa.or.kr)
• Supreme Prosecutors’ Office Cybercrime Division: 1301 (www.spo.go.kr)
• National Police Agency Cyber Bureau: 182 (ecrm.cyber.go.kr)

This privacy policy is effective as of June 12, 2026. If there are additions, deletions, or amendments due to changes in law, policy, or security technology, the Company will announce them on the website at least 7 days before they take effect.