Privacy Policy

1. Items of Personal Information Collected and Collection Method

The Company collects the following personal information for membership registration and consultation:

2. Purpose of Collection and Use of Personal Information

The Company uses the collected personal information for the following purposes:

• Performance of contracts for service provision and settlement of fees for service provision
• Content provision, purchase and payment, financial transaction identity verification, and financial services
• Identity verification, personal identification, prevention of fraudulent use by bad members and unauthorized use, confirmation of intent to join, age verification, complaint handling, delivery of notices in accordance with the use of membership services

Note: When traveling on a premium basis, the single room charge may vary depending on the travel date and country. Please inquire for details.

3. Retention and Use Period of Personal Information

In principle, once the purpose of collecting and using personal information has been achieved, the information is destroyed without delay. However, in accordance with the Commercial Act and related laws such as the Act on Consumer Protection in E-commerce, the information will be retained for a certain period of time:

• Records of consumer complaints or dispute resolution: 3 years
• Records of collection/processing and use of credit information: 3 years
• Records of payment and supply of goods: 5 years
• Records of contracts or subscription cancellations: 5 years
• Records regarding display/advertising: 6 months
• If collected for temporary purposes such as surveys or events: At the end of the survey or event

4. Personal Information Destruction Procedures and Methods

In principle, the Company destroys personal information without delay after the purpose of collection and use of the information has been achieved. The destruction procedures and methods are as follows:

5. Provision of Personal Information to Third Parties

In principle, users' personal information will not be provided to external parties. However, exceptions may be made in the following cases:

• In cases where users have given prior consent: Before collecting or providing information, we will inform you of who the business partner is, what information is needed and why, and how and until when it will be protected/managed, and obtain your consent.
• Personal information will be provided to domestic/international airlines, cruise lines, rental companies, and hotels for boarding planes, ship boarding, car rentals, and hotel check-in.
• In cases where there is a request from an investigative agency in accordance with the provisions of the law or in accordance with the procedures and methods stipulated by the law for investigative purposes.

6. Entrustment of Handling of Personal Information

To ensure smooth business operations, if we entrust the processing of a user's personal information, we will notify the recipient (hereinafter referred to as the "trustee") and the details of the entrusted work in advance.

7. Rights of Users and Legal Representatives and Methods of Exercising Them

• The Company does not allow membership registration or collect personal information from children under the age of 14.
• Users can view or modify their registered personal information at any time and may also request withdrawal of consent (cancellation of membership).
• To view or edit your personal information, log in and go to My Page and select "Change Personal Information." To cancel your subscription (withdraw consent), go to My Page or contact us via email. We will take action without delay after verifying your identity.
• If you request correction of errors in your personal information, we will not use or provide the personal information until the correction is complete.
• The Company processes personal information that has been terminated or deleted at the request of the user in accordance with the provisions of "Retention and Use Period of Personal Information Collected by the Company."

8. Matters Concerning the Installation/Operation and Refusal of Automatic Personal Information Collection Devices

The Company uses "cookies" to periodically store and retrieve user information. Cookies are very small text files that the server used to operate the website sends to your browser and are stored on your computer's hard drive.

9. Contact Information for the Personal Information Manager

You may report any privacy-related complaints arising while using the Company's services to the personal information manager or the relevant department. The Company will provide a prompt and sufficient response to users' reports.

For other inquiries or reports regarding personal information infringements, please contact the following organizations:

• Personal Information Infringement Report Center (www.118.or.kr / 118)
• Information Protection Mark Certification Committee (www.eprivacy.or.kr / 02-580-0533~4)
• Supreme Prosecutors' Office, High-Tech Crime Investigation Division (www.spo.go.kr / 02-3480-2000)
• National Police Agency Cyber Terror Response Center (www.ctrc.go.kr / 02-392-0330)

10. Technical/Administrative Protection Measures for Personal Information

When handling users' personal information, the Company implements the following technical/administrative measures to ensure the security of personal information and prevent it from being lost, stolen, leaked, altered, or damaged:

• Password encryption: Member ID passwords are encrypted, stored, and managed, and only the member knows them. Confirmation and modification of personal information can only be done by the member who knows the password.
• Measures against hacking: The Company is doing its best to prevent personal information from being leaked or damaged by hacking or computer viruses. Data is regularly backed up, and the latest anti-virus programs are used. Encrypted communication (SSL) is used to ensure the safe transmission of personal information over the network.
• Minimization and training of handling staff: The Company limits the handling of personal information to only those in charge, who are given separate passwords that are regularly updated. Regular training emphasizes compliance with the Company's privacy policy.
• Dedicated personal information protection organization: We hold in-house personal information protection meetings to ensure compliance with the Company's privacy policy and promptly address any issues identified.

11. Duty to Notify

If there are any additions, deletions, or modifications to the current privacy policy, we will notify you through the "Notices" section of the website at least 7 days in advance. However, if there are any significant changes to user rights, such as the collection and use of personal information or provision to third parties, we will notify you at least 30 days in advance.