PRIVACY POLICY

Details on data collection, retention, and your rights.

Woogong Co., Ltd. Privacy Policy

Woogong Co., Ltd. (the “Company”) complies with the Personal Information Protection Act of Korea and other applicable laws and regulations. To protect users’ personal information and their rights and interests, the Company establishes and discloses this Privacy Policy as follows.

1. Purpose of Processing Personal Information

The Company processes personal information for the following purposes and does not use it for any other purpose:

  • Handling inquiries related to quotations, development, and business matters
  • Handling recruitment-related inquiries
  • Handling other general inquiries
  • Responding to inquiries, verifying facts, handling complaints, and responding to disputes

2. Items of Personal Information Processed

For receiving and responding to inquiries, the Company collects and uses the following items:

  • Required: Inquiry Category, Name, Email, Phone Number, Title, Details (Inquiry Content)
  • Optional: Company, Attachment

※ Attachments are collected only when users voluntarily upload files. Please ensure that uploaded files do not contain personal information.
※ In principle, the Company does not collect unique identification information (e.g., resident registration numbers) or sensitive information. If a user includes such information in the inquiry content or attachment, the Company may process it only to the minimum extent necessary and may request deletion and take measures to delete it without delay.

3. Retention and Use Period of Personal Information

  • ① The Company retains and uses personal information within the period agreed upon at the time of collection or the period required by applicable laws.

  • ② The retention and use period for inquiry-related personal information is as follows:

    • Recipient: Woogong Co., Ltd.
    • Purpose of Use: Handling inquiries related to quotations/development/business, recruitment inquiries, and other inquiries
    • Retention and Use Period:6 months

  • ③ When the retention period expires or the purpose of processing is achieved, the Company will destroy the relevant personal information without delay.

  • ④ Upon expiration of the retention period, the Company destroys personal information through an automatic deletion process (however, if retention is required by applicable law, the Company will retain it for the period prescribed by such law).

4. Provision of Personal Information to Third Parties

  • In principle, the Company does not provide users’ personal information to any third party. However, the Company may provide personal information when (i) the data subject gives separate consent, or (ii) such provision is required by applicable laws and regulations.

5. Outsourcing of Personal Information Processing

  • ① The Company may outsource certain personal information processing tasks (e.g., server hosting) for smooth service operation.

    • Recipient: Woogong Co., Ltd.
    • Purpose of Use: Handling inquiries related to quotations/development/business, recruitment inquiries, and other inquiries
    • Retention and Use Period: 6 months

  • ② When entering into an outsourcing agreement, the Company specifies in writing (or equivalent documents), in accordance with Article 26 of the Personal Information Protection Act, matters such as: prohibition of processing beyond the purpose of outsourcing, technical/administrative safeguards, restrictions on re-outsourcing, supervision of the service provider, and liability including compensation for damages. The Company supervises whether the service provider processes personal information safely.

    ③ If the outsourced tasks or the service provider changes, the Company will disclose such changes without delay through this Privacy Policy.

6. Cross-Border Transfer of Personal Information

  • The Company does not transfer users’ personal information outside of Korea. The Company’s service infrastructure is operated on servers located in the AWS Lightsail Korea (domestic) region, and personal information is stored and processed within Korea.

    ※ If cross-border transfer occurs in the future, the Company will provide prior notice and complete necessary procedures (including obtaining consent) in accordance with applicable laws.

7. Procedures and Methods for Destruction of Personal Information

  • ① The Company destroys personal information without delay when it becomes unnecessary due to expiration of the retention period or achievement of the processing purpose.

  • ② Destruction Procedure: The Company selects personal information subject to destruction and destroys it in accordance with internal management standards.

  • ③ Destruction Methods:

    • Electronic files: Permanent deletion using a method that prevents recovery and reproduction
    • Printed materials: Shredding or incineration

8. Rights and Obligations of Data Subjects and How to Exercise Them

  • ① Data subjects may exercise their rights at any time, including requesting access to, correction of, deletion of, or suspension of processing of their personal information.

  • ② Requests may be made in writing or by email, and the Company will take action without delay.

  • ③ If a data subject requests correction or deletion due to errors, the Company will not use or provide the relevant personal information until the correction or deletion is completed.

  • ④ Access may be restricted or deletion may be limited in accordance with applicable laws.

9. Measures to Ensure the Security of Personal Information

The Company takes the following measures to ensure the security of personal information:

  • Administrative measures: Establishment and implementation of internal management plans, minimization of authorized personnel, regular training and inspections
  • Technical measures: Access control, storage and tamper-prevention of access logs, encryption where applicable, operation of security programs, vulnerability inspections
  • Physical measures: Access control for server rooms/data storage areas (if applicable)

10. Cookies (Automatic Data Collection Devices) and Refusal Options

  • ① The Company may use cookies to provide services and improve the user environment.

  • ② Users can refuse cookie storage through their web browser settings.
         - Example (Chrome): Settings > Privacy and security > Cookies and other site data

  • ③ Refusing cookies may limit the use of certain services.

11. Personal Information Protection Officer and Contact

The Company designates a person in charge to oversee personal information processing and handle complaints and remedies as follows:

  • [Personal Information Protection Officer]

    - Name:
    - Title/Position:
    - Contact: (Phone) / (email)

  • [Department in Charge of Personal Information Protection]

    - Department:
    - Contact Person:
    - Contact: (Phone) / (email)

  • ※ Please fill in the above items with the actual operational information before publishing.

12. Remedies for Infringement of Rights and Interests

Data subjects may contact the following organizations for dispute resolution or consultation regarding personal information infringements:

  • Personal Information Dispute Mediation Committee: 1833-6972 (without area code)
  • Personal Information Infringement Report Center (KISA): 118 (without area code)
  • Supreme Prosecutors’ Office: 1301 (without area code)
  • National Police Agency: 182 (without area code)

13. Changes to This Privacy Policy

  • If this Privacy Policy is amended, added to, deleted, or otherwise revised, the Company will provide prior notice at least 7 days before the effective date via website notices, etc. However, if there is a material change affecting users’ rights, the Company may provide notice at least 30 days in advance.

Addendum

  • Effective Date: february 00, 2026