AI-based CCTV video analysis and control solution

1. Purpose of collection and use of personal information

1.1 SWEMPIRE Co., Ltd. (hereinafter referred to as the “Company”) collects and uses personal information for the following purposes.

- Digital Badge Issuance and Management - Service provision and operation - Customer Support and Inquiry Response - Service improvement and marketing activities - Fulfillment of legal obligations

1.2 Types of personal information collected

- Applicant/user's personal information (name, contact information, email, etc.) - Information required for badge issuance (education, qualifications, completion status, etc.) - Service usage records, log information, cookies, etc.

---

2. Retention and use period of personal information

2.1 The company destroys personal information without delay after the purpose of collection and use of the information has been achieved or the legal obligations have been fulfilled.

2.2 However, personal information may be retained as an exception in cases stipulated by relevant laws or with separate consent from the user.

---

3. Provision and entrustment of personal information

3.1 The company does not provide users' personal information to third parties. However, personal information may be provided with the user's consent or when required to comply with legal requirements.

3.2 To ensure the smooth provision of services, the company may outsource personal information processing tasks to external parties if necessary. In such cases, the company will take necessary measures to ensure compliance with personal information protection laws and regulations, including through outsourcing agreements.

---

4. Protection and management of personal information

4.1 The company takes security measures required by relevant laws and regulations to safely protect users' personal information.

4.2 Access to personal information is limited to a minimum number of personnel, and employees who process personal information are trained in their obligations to protect personal information and maintain confidentiality.

---

5. Destruction of personal information

5.1 The company destroys personal information without delay after the purpose of collection and use of the information has been achieved.

5.2 The destruction method uses a method that safely deletes or destroys personal information such as records and electronic files.

---

6. Technical and administrative measures to protect personal information

6.1 The company implements the following measures to protect personal information:

- Operation and renewal of security systems - Emphasize regular security training and compliance - Access restrictions and monitoring related to personal information processing

---

7. Personal information protection obligations

7.1 The company complies with relevant laws and regulations, guidelines, and regulations regarding personal information protection, and does its best to appropriately protect users' rights related to the processing of personal information.

7.2 In the event of a personal information breach, we take immediate action, notify users, and cooperate with relevant authorities to resolve the issue.

---

8. Changes to the Privacy Policy

8.1 This Privacy Policy may be changed as necessary, and any changes will be announced on the company website, etc.

8.2 When the privacy policy is changed, users will be notified and asked to agree, and the changed policy will be applied from the effective date.

---

Matters concerning the Personal Information Protection Manager

We have appointed a Personal Information Protection Officer (as described below) to oversee all personal information processing and to handle complaints and provide remedies to data subjects regarding personal information processing. For inquiries regarding personal information, please contact the Personal Information Protection Officer or Personal Information Protection Manager below.

Personal information protection officer

If a customer's personal information is breached due to the Company's fault, the Company will assume liability in accordance with relevant laws and regulations. However, the Company is not responsible for damage to information caused by unexpected incidents due to basic network risks, such as hacking, despite technical security measures, or for any disputes arising from customer posts.

---

10. Supplementary provisions

This Privacy Policy may be subject to additions, deletions, or revisions due to changes in relevant laws and regulations, guidelines, or the Company's needs. In such cases, prior notice will be provided at least seven days in advance via the website or email. If prior notice is impractical, notice will be provided promptly. Unless otherwise notified, the changes will take effect after seven days. However, changes that significantly impact members' rights and obligations will be provided at least 30 days in advance, and unless otherwise notified, the changes will take effect after 30 days. Furthermore, the Company may obtain separate consent from customers if required by relevant laws and regulations.

---

Effective date

These Terms and Conditions are effective as of July 1, 2023.