Collected Personal Information Items

The Company collects the following personal data for SMS consultations, brochure requests, online startup inquiries, and similar purposes:

• - Items collected: Name, contact number, mobile phone number, cookies
• - Collection method: Website (online customer inquiry form)

Purpose of Collection and Use of Personal Information

The Company uses collected personal data for the following purposes:

To fulfill contracts for service provision; to provide information and content related to the Service; to handle complaints and customer inquiries; to deliver notices; to conduct marketing and advertising, including event promotions; and to analyze access frequency or compile usage statistics.

Retention and Use Period of Personal Information

In principle, once the purpose of collection and use has been fulfilled, personal data will be destroyed without delay. However, when retention is required by law, the Company will retain the data for the periods specified below:

• - Data retained: Payment records
• - Legal basis: Records of contracts or withdrawal of subscription
• - Retention period: 3 years
• - Records of contracts or withdrawal of subscription: 5 years (per the Act on Consumer Protection in Electronic Commerce)
• - Records of payment and supply of goods: 5 years (per the Act on Consumer Protection in Electronic Commerce)
• - Records of consumer complaints or dispute resolution: 3 years (per the Act on Consumer Protection in Electronic Commerce)

Procedure and Method for Destroying Personal Information

Once the purpose of collection and use is achieved, user data will be destroyed without delay. The destruction procedure and method are as follows:

Destruction Procedure

• Information entered by Members for consultation is moved to a separate database (or to a separate file cabinet for paper documents) once its purpose is fulfilled.
• In accordance with internal policy and legal retention requirements, the data is stored for the statutory period and then destroyed. Data moved to the separate database will not be used for any purpose other than legal obligations.

Destruction Method

Electronic files are deleted using technical methods that prevent their recovery.

Provision of Personal Information to Third Parties

The Company does not provide users’ personal data to third parties, except in the following cases:

When Users Have Given Prior Consent

Or when required by law, or when requested by law enforcement under legally prescribed procedures and methods for investigation purposes.

User and Legal Representative Rights and How to Exercise Them

Users may review or correct their personal data after verification. To do so, contact the Data Protection Officer in writing, by phone, or by email, and the Company will take prompt action.

• If you request correction of erroneous data, we will not use or provide the data until correction is complete.
• If incorrect data has been provided to third parties, we will notify those parties of the correction without delay.

Personal data deleted or removed at the user’s request will be handled according to the retention periods outlined above and will not be accessible for other purposes.

Installation and Operation of Automatic Data Collection Devices (Cookies) and Choices

The Company operates cookies to store and retrieve user information.

Cookies are small text files sent by a web server to your browser and stored on your hard drive. The Company uses cookies for the following purposes:

Purpose of Cookie Use

To analyze visit frequency and duration, track user preferences and interests, measure event participation and repeat visits, enable targeted marketing, and provide personalized services. You may choose whether to accept cookies.

You can configure your browser to allow all cookies, prompt you before saving each cookie, or reject all cookies.

How to Refuse Cookies

To refuse cookies, adjust your browser settings to allow all cookies, prompt on each cookie save, or block all cookies. Example (Internet Explorer): Tools > Internet Options > Privacy. Note: Refusing cookies may affect your ability to use certain services.

Privacy-Related Customer Service

To protect customers’ personal data and address related complaints, the Company has designated the following department and Data Protection Officer:

• - Customer Service Manager: Hyo Kim
• - Phone: +82-2-6951-1512
• - Email: first_barista@naver.com

You may report any privacy-related complaints arising from the use of our services to the Data Protection Officer or the relevant department. The Company will respond promptly and thoroughly to all inquiries.

For additional reports or consultations regarding privacy violations, please contact one of the following organizations:

• - Korea Personal Information Dispute Mediation Committee (www.1336.or.kr / 1336)
• - Korea Privacy Certification Committee (www.eprivacy.or.kr / +82-2-580-0533~4)
• - Supreme Prosecutors’ Office Internet Crime Investigation Center (http://icic.sppo.go.kr / +82-2-3480-3600)
• - National Police Agency Cyber Terror Response Center (www.ctrc.go.kr / +82-2-392-0330)