Personal information processing policy.

Arasoft Co., Ltd. (hereinafter referred to as "Company") establishes and discloses personal information processing guidelines as follows to protect the personal information of the data subject and to quickly and smoothly handle related grievances in accordance with Article 30 of the Personal Information Protection Act.

All personal information handled by the company is collected, retained, and processed based on relevant laws or with the consent of the data subject.The Personal Information Protection Act provides general norms for the handling of such personal information, and the company will legally and appropriately treat personal information collected, retained, and processed in accordance with these laws to properly perform public affairs and protect the rights and interests of the people.

In addition, the company respects your rights and interests, such as the right to request access to personal information held by our city and the right to request correction, and you can request an administrative trial as prescribed by the Administrative Appeals Act.

Personal information protection consists of three types: "Protection of personal information of users on various websites operated by the company," "Personal information protection processed by computers" and "Personal information protection by video processing devices" installed and operated for the public interest.

Personal information items you collect.

The company collects the following personal information for consultation/production requests.

• Collection items: Name of demand, name of department, name of person in charge, contact information, e-mail
• How to collect personal information: Homepage (consultation/production request)

Purpose of collecting and using personal information.

The company uses the collected personal information for the following purposes.

• Receipt of inquiries and reply to the results of processing.

The retention period of personal information.

After the purpose of collecting and using personal information is achieved as follows, the company will destroy the information without delay without exception.

Use until the business is terminated (provided, delete upon request)

Procedures and methods for destroying personal information.

In principle, the company will destroy the information without delay after the purpose of collecting and using personal information is achieved. The procedure and method of destruction are as follows.

• Destruction procedure.
  The information you entered will be destroyed after being stored for a certain period of time in accordance with internal policies and other reasons for information protection under related laws (see retention and usage period) after the purpose is achieved.
• How to do it.
  Personal information stored in electronic file format is deleted using a technical method that cannot play records.

Personal information.

In principle, the company does not provide users' personal information to the outside world. However, exceptions are made in the following cases.

• If the users have agreed in advance
• In a case where there is a request from an investigative agency in accordance with the provisions of the statutes or in accordance with the procedures and methods prescribed in the statutes for investigative

• Person in charge of personal information protection.
  Name: Kang Jung Hyun.
  Position: CEO.
  Contact: 02-581-4500
  E-Mail : arasoftceo@nate.com
  

• Person in charge of personal information protection.
  Department: Corporate Research Institute
  Name: Kim Min Gyu
  Contact : 070-4099-1018
  E-Mail : macgun0@nate.com
  

How to save personal information.

The data subject can inquire about the institution below about damage relief and counseling for personal information infringement. Personal information subjects may apply for dispute resolution or consultation with the Personal Information Dispute Mediation Committee and the Korea Internet & Security Agency's Personal Information Infringement Report Center to receive relief from personal information infringement.

In addition, please contact the institution below for reports and consultations of other personal information infringement.



• Personal Dispute Mediation Committee (www.1336.or.kr/1336)
• Information Protection Mark Certification Committee (www.eprivacy.or.kr/02-580-0533~4)
• Supreme Prosecutors' Office Internet Crime Investigation Center (http://icic.sppo.go.kr/02-3480-3600)
• National Police Agency Cyber Terror Response Center (www.ctrc.go.kr/02-392-0330)

Changes in the personal information processing polic

This personal information processing policy will take effect on September 23, 2016.