Article 1 (Collection of Personal Information)

The personal information items collected by the Company are as follows:

1. Personal information collected when registering as a member or using the service:

   1. Mobile phone number authentication: Mobile phone number

   2. Identity verification: Name, mobile phone number, mobile carrier, identity verification information (CI, DI) (Separate consent procedures by identity verification agencies will be conducted during identity verification.)

   3. Advertising/marketing (optional): Mobile phone number, email address (You can choose whether to agree to receive advertising/marketing information.)

2. Information automatically collected during service use: Information may be automatically generated or collected during the process of using the service for the purpose of ensuring service stability, providing a secure service, restricting acts violating laws and service terms, etc.

   1. Service usage records, access logs, transaction records, access IP information, cookies, records of fraudulent or improper use, mobile device information (model name, mobile carrier information, OS information, screen size, language and country information, advertising ID, device identification information, etc.)

   2. Records of illegal/improper access to services and related records, records of attempted access to services or service applications, information necessary to verify the safe operation environment of services and service applications

3. Additional information collected for customer consultation:

   1. Common: Mobile phone number, Google account, Apple account
   2. Mobile phone number change: Proof of mobile carrier

4. Methods of collecting personal information:

   1. Collection through mobile apps, websites, email, customer center, phone, etc.
   2. Collection through consent provided by third parties through other services
   3. Collection through automatic collection devices

Article 2 (Purpose of Collection and Use of Personal Information)

The Company collects and processes user's personal information for the following purposes. The processed personal information will not be used for any purpose other than the following, and if the purpose of use is changed, the Company will take necessary measures, such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.

1. Member management:

   1. Verification of identity and personal identification based on the use of the membership service
   2. Prevention of misuse and unauthorized use by malicious members
   3. Confirmation of intent to join, registration, and limitation on the number of registrations
   4. Verification of minors
   5. Customer consultation, receipt and processing of customer complaints, record keeping for dispute resolution
   6. Notice and information delivery

2. Performance of service provision contracts and billing settlement:

   1. Matters related to the overall management of wallet services provided by the Company, such as cryptocurrency deposit and withdrawal processing
   2. Service provision, content provision, and customized service provision
   3. Payment and settlement of fees
   4. Notification of event/prize winners and product delivery

3. Utilization for marketing and advertising:

   1. Provision of optimized services to customers
   2. Development and specialization of new services (products)
   3. Provision of services and advertisement according to demographic characteristics
   4. Understanding of website access frequency
   5. Statistical analysis of service usage
   6. Sending regular publications, informing about new products or services
   7. Planning web services and events that match customer interests
   8. Delivery of advertising information such as prize events, events, company news, or operation of member participation spaces
   9. Customer surveys

Article 3 (Retention and Use Period of Personal Information)

The Company processes personal information within the period agreed upon by the user or as stipulated by relevant laws and regulations. The retention and use periods for each type of personal information are as follows:

1. Retention and Use Period of Personal Information

   1. Records related to member management, user consultation, and complaint handling: Retention period: Upon withdrawal
   2. Records related to member withdrawal processing and mobile phone number changes: Retention period: 5 years after withdrawal
   3. Records related to cryptocurrency deposit and withdrawal: Retention period: 5 years after withdrawal
      Records related to cryptocurrency deposit and withdrawal: Retention period: 5 years after withdrawal

2. Retention required by law for service provision

   1. Personal information of users is generally destroyed without delay once the purpose of collecting and using the personal information is achieved. However, records of illegal service usage may be retained for up to 1 year to prevent service abuse according to internal policies.
   2. The Company separately stores/controls or destroys the personal information of long- term non-users who have not used the service for 1 year, following the "Personal Information Effective Period System" and relevant laws. The separately stored personal information is destroyed after 4 years. However, if the law requires the retention of information for a certain period, the personal information will be safely retained for that period.
      1. Records related to contracts or subscription withdrawals: 5 years (Act on Consumer Protection in Electronic Commerce, etc.)
      2. Records related to consumer complaints or dispute resolution: 3 years
      3. Records related to display and advertisements: 6 months
      4. Records related to identity verification: 6 months (Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc.)
      5. Login records: 3 months (Telecommunications Business Act)

Article 4 (Outsourcing of Personal Information Processing)

The Company entrusts some of the necessary tasks for service provision to external companies to perform personal information processing. The Company manages and supervises the entrusted companies to ensure that they do not violate relevant laws and regulations. The companies to which the Company has entrusted the processing of personal information are as follows:

Outsourced company:

Purpose:

Duration:

Article 5 (Rights and Obligations of Users and Legal Representatives and How to Exercise Them)

1. Users may exercise their rights to access, correct, delete, or suspend the processing of personal information from the Company at any time. However, according to Article 35(4), Article 36(1), Article 37(2), and other related laws and regulations, the exercise of users' rights to access, correct, delete, or suspend the processing of personal information may be restricted.
2. Users can exercise their rights by submitting a request in writing, via email, fax, etc., in accordance with Article 41(1) of the Enforcement Decree of the Personal Information Protection Act, and the Company will promptly respond to such requests.
3. The exercise of rights under Paragraph 1 may be done through a legal representative of the user or a person delegated by the user. In this case, a power of attorney according to Form 11 of the Enforcement Regulations of the Personal Information Protection Act must be submitted.
4. If personal information cannot be deleted due to other laws specifying that the personal information is subject to collection, the request for deletion cannot be accepted.
5. When a request is made for access, correction, deletion, or suspension of processing according to the user's right to use, the Company verifies whether the requester is the user or a legitimate representative.

Article 6 (Destruction of Personal Information)

1. The Company shall promptly destroy personal information when it becomes unnecessary due to the expiration of the retention period of personal information, achievement of the processing purposes, etc.
2. If the personal information needs to be retained under other laws despite the expiration of the retention period agreed upon by the user or the achievement of the processing purposes, the Company shall move the relevant personal information to a separate database (DB) or store it in a different location.
3. The method of destroying personal information is as follows:
   1. Personal information stored in electronic file format shall be permanently deleted to ensure that the records cannot be reproduced.
   2. Personal information recorded or stored on paper documents shall be shredded or incinerated.

Article 7 (Technical and Managerial Measures for the Protection of Personal Information)

The Company has established and implemented the following technical and managerial measures to ensure the safety of personal information and prevent its loss, theft, leakage, alteration, or damage while processing users' personal information:

1. Establishment of Internal Management Plan:

   The Company has established and implemented an internal management plan to ensure the secure management of the personal information it processes.

2. Encryption of User's Personal Information:

   The Company securely encrypts and manages users' personal information such as passwords and bank account numbers using secure encryption algorithms.

3. Measures against Hacking and Other Threats:

   The Company is making every effort to prevent users' personal information from being leaked or damaged by hacking, computer viruses, and other threats. It regularly backs up data to prepare for personal information damage, utilizes the latest antivirus programs to prevent leakage or damage to users' personal information and data, and ensures the safe transmission of personal information over networks through encrypted communication.

4. Minimization and Education of Personal Information Handlers:

   The Company restricts the number of individuals handling personal information to the minimum necessary for performing their duties and educates them on the importance of personal information protection through administrative measures.

Article 8 (Installation, Operation, and Refusal of Automatic Collection Devices for Personal Information)

The Company uses cookies to provide users with convenience in using the service by storing and retrieving usage information. Cookies are small pieces of information that a website sends to a user's computer browser (e.g., Internet Explorer).

1. Purpose of Using Cookies:

   Cookies are used to store user preferences and other information to provide users with a faster web environment and improve service convenience. Through this, users can easily use the service more conveniently.

2. Installation, Operation, and Refusal of Cookies:

   Users have the option to allow or refuse the installation of cookies, and they can also delete cookies at any time.

Article 9 (Personal Information Protection Manager and Department in Charge)

1. The Company designates the following department and Personal Information Protection Officer to protect users' personal information and handle complaints related to personal information.

   (Personal Information Protection Officer)

   Officer in Charge: Personal Information Protection Manager

   Email: bitmaster2025@gmail.com

2. Users may contact the Personal Information Protection Officer and the designated department regarding any privacy-related inquiries that arise while using the Company’s services. The Company will respond to and address users' inquiries.

Article 10 (Restrictions for Minors)

1. The Company does not provide services to minors under the age of 18.
2. If a minor misrepresents themselves (e.g., false identity) or registers through a method not recognized by the Company, and their personal information is processed, a request to delete the minor’s personal information can be made using the contact information specified in Article 9. In such cases, the Company may request supporting documents or additional information to verify the identity of the minor or their legal representative.

Article 11 (Inquiries and Contact Information)

1. If you have any requests or comments, you may contact us via the email specified in Article 9. This email is the only valid and official means of communication with the Company. The Company is not responsible for any errors, actions, or omissions resulting from the failure to use a valid communication method.
2. The Company posts announcements and information through valid contact information on this website or directly publishes notices on the website. The Company is not responsible for any losses resulting from reliance on information obtained through methods other than those specified above.
3. For any additional questions regarding the Privacy Policy, you may contact us at any time.