PNH Tech Co., Ltd. (hereinafter, the “Company”) values your personal information and complies with the Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc.

This Privacy Policy explains what personal information you provide is used for and how, and what measures we take to protect it.

If we revise this Privacy Policy, we will announce the changes on the website notice board (or by individual notice).

This policy is effective from March 27, 2026.

1. Personal information we collect

For inquiries and similar purposes, we collect the following personal information.

Online inquiry
- Items collected: name, contact details, email, message content, etc.

2. Purpose of collection and use

We use collected personal information for the following purposes.
To perform contracts related to our services and to respond to inquiries

3. Retention and use period

In principle, once the purpose of collection and use is achieved, we destroy the information without delay. However, if applicable laws require retention, we may keep member information for the periods prescribed by those laws, as summarized below.

Retention items and legal basis

• - Records concerning contracts or withdrawal of offers, etc.: retention period 3 years
• - Records concerning contracts or withdrawal of offers, etc.: 5 years (Act on the Consumer Protection in Electronic Commerce, Etc.)
• - Records on payment and supply of goods, etc.: 5 years (Act on the Consumer Protection in Electronic Commerce, Etc.)
• - Records on consumer complaints or dispute handling: 3 years (Act on the Consumer Protection in Electronic Commerce, Etc.)

4. Destruction procedure and method

In principle, after the purpose of collection and use is achieved, we destroy the information without delay. The procedure and methods are as follows.

Destruction procedure
Information you enter for membership registration or similar is transferred to a separate database after the purpose is achieved (or placed in a separate filing cabinet if on paper), stored for a period required by our internal policy and applicable laws (see retention periods above), and then destroyed.
Personal information transferred to a separate database is not used for any purpose other than retention required by law.

Destruction method
Personal information stored in electronic file form is deleted using technical methods that make records irreproducible.

5. Provision of personal information to third parties

In principle, we do not provide users’ personal information to external parties. Exceptions apply only in the following cases.
Where users have given prior consent, or where required by law, or where investigative agencies request data in accordance with procedures and methods prescribed by law for investigative purposes.

6. Hosting and maintenance

To provide our services, we entrust operations to external specialists as follows.

• - Processor: Three Any I&C Co., Ltd.
• - Scope of processing: website and systems management (hosting / maintenance)

7. Rights of users and legal representatives

Users may at any time view or correct their registered personal information, or request withdrawal of membership.
To view or correct personal information, use “Privacy settings” or “Edit profile” (or similar). To withdraw consent or membership, click “Withdraw membership,” complete identity verification, and you may directly view, correct, or withdraw.
You may also contact the data protection officer in writing, by phone, or by email, and we will take action without undue delay.
If you request correction of inaccurate personal information, we will not use or provide that information until the correction is completed.
If incorrect information was already provided to a third party, we will notify that third party of the correction without undue delay so that the correction can be made.
Personal information deleted or destroyed at your request is handled as described under “Retention and use period” and is not viewed or used for other purposes.
For children under 14, the legal representative may view or correct the child’s personal information and may withdraw consent to collection.

8. Cookies and how to refuse them

We may use cookies and similar technologies that store and retrieve information. A cookie is a small text file sent by the website server to your browser and stored on your computer’s hard disk.

We use cookies for the following purposes.

Purposes of using cookies
To analyze visit frequency and time for members and non-members, to understand preferences and interests, to support targeted marketing and personalized services based on event participation and visit counts, etc. You may choose whether to accept cookies.
Therefore, you may allow all cookies, be prompted each time a cookie is stored, or refuse all cookies through your browser options.

How to refuse cookies
Through your web browser options, you may allow all cookies, confirm each time a cookie is stored, or refuse all cookies.

How to change settings
Example: open your browser’s Settings (or Preferences), then Privacy, Security, or Site settings, and adjust cookie options.
If you refuse cookies, some services may be difficult to provide.

9. Complaints regarding personal information

To protect customers’ personal information and handle related complaints, we designate the relevant department and data protection officer as follows.

If you need to report a privacy violation or seek advice, you may contact the following organizations.

• - Personal Information Infringement Report Center (privacy.kisa.or.kr / dial 118 in Korea, no area code)
• - Cyber Investigation Department, Supreme Prosecutors’ Office (www.spo.go.kr / dial 1301 in Korea, no area code)
• - Korean National Police Agency Cyber Bureau (police.go.kr / dial 182 in Korea, no area code)