K-nTech Co., Ltd. (hereinafter "the Company") complies with the Korean Personal Information Protection Act (PIPA) and related laws and regulations to protect the freedom and rights of data subjects, processing personal information lawfully and managing it securely. The Company hereby informs you of the following processing policy under which it handles personal information.


Article 1 (Purpose of Processing Personal Information)

The Company processes personal information for the following purposes. The personal information being processed will not be used for purposes other than those listed below, and if the purpose of use is changed, the Company will take necessary measures such as obtaining separate consent in accordance with Article 18 of the PIPA.

Article 2 (Categories of Personal Information Processed)

The Company processes the following categories of personal information:

  1. Items collected through the inquiry form
    • Required: name, contact (phone number), inquiry content
    • Optional: email, inquiry type
  2. Items automatically generated and collected during service use
    • IP address, cookies, access time, browser type, service usage records

Article 3 (Processing and Retention Period)

  1. The Company processes and retains personal information within the retention and use period prescribed by law or agreed upon by the data subject at the time of collection.
  2. The retention and use periods for each category of personal information are as follows:
    • Inquiry-related personal information: Retained for 3 years after completion of the inquiry response and then destroyed (applying the record retention period for consumer complaints or disputes under the Act on the Consumer Protection in Electronic Commerce).
    • Website access logs: 3 months under the Communications Secret Protection Act.
  3. When a data subject requests deletion of his or her personal information, the Company will destroy it without delay, regardless of the above retention period.

Article 4 (Provision of Personal Information to Third Parties)

The Company processes the personal information of data subjects only within the scope of purposes set forth in Article 1 of this policy, and provides such information to third parties only when the data subject's consent or special provisions of the law apply, in accordance with Articles 17 and 18 of the PIPA. The Company does not currently provide personal information of data subjects to any third party.

Article 5 (Entrustment of Personal Information Processing)

The Company entrusts personal information processing tasks as follows for the smooth provision of services:

Entrusted Party Entrusted Work Retention / Use Period
Formspree, Inc. (United States) Website inquiry form delivery and relay (email forwarding service) Until termination of the entrustment contract or withdrawal of the data subject
Kakao Corp. (Republic of Korea) Processing and relay of 1:1 inquiry messages through the KakaoTalk Channel Until termination of channel operation or the data subject's blocking of the channel
Google LLC (United States) Google Analytics 4 — website visit statistics and usage analysis (anonymized data) Per Google Analytics data retention policy (default 14 months)
Microsoft Corporation (United States) Microsoft Clarity — website usability analysis (heatmaps, session recordings — anonymized data) Per Microsoft Clarity data retention policy (default 13 months)

※ Any change or addition of entrusted parties will be announced through this Privacy Policy.

Article 6 (Rights and Obligations of Data Subjects and Legal Representatives, and How to Exercise Them)

  1. Data subjects may exercise the following rights related to personal information protection against the Company at any time:
    • Request access to personal information
    • Request correction in the event of errors
    • Request deletion of personal information
    • Request suspension of processing
  2. The exercise of rights under Paragraph 1 may be made to the Company in writing, by email, by telephone, or by other means, and the Company will respond without delay.
  3. When a data subject requests correction or deletion due to errors in personal information, the Company will not use or provide the relevant personal information until the correction or deletion is completed.
  4. The exercise of rights under Paragraph 1 may be conducted through a legal representative or an authorized agent of the data subject. In such case, a power of attorney pursuant to Annex Form No. 11 of the Enforcement Rules of the PIPA must be submitted.

Article 7 (Destruction of Personal Information)

  1. When the retention period of personal information has expired or the purpose of processing has been achieved, the Company destroys the relevant personal information without delay.
  2. The methods of destruction are as follows:
    • Electronic files: permanent deletion in a manner that prevents recovery
    • Paper documents: shredding or incineration

Article 8 (Measures to Ensure the Security of Personal Information)

The Company takes the following measures to ensure the security of personal information:

Article 9 (Installation, Operation, and Refusal of Automatic Personal Information Collection Devices)

  1. The Company may use "cookies" that store and frequently retrieve usage information to provide personalized services to users.
  2. The Company uses the following analytics tools for website traffic statistics and usability analysis:
    • Google Analytics 4 (Google LLC): Collection of anonymized visit statistics including page views, traffic sources, and device information.
    • Microsoft Clarity (Microsoft Corporation): Anonymized user behavior analysis (heatmaps, session recordings — no personally identifiable information).
  3. Users may opt out of analytics data collection in the following ways:
    • Refuse cookie storage through web browser settings.
    • Block Google Analytics: Install the opt-out browser add-on at tools.google.com/dlpage/gaoptout.
    • Block Microsoft Clarity: Enable the "Do Not Track" setting in your browser.
  4. If cookie storage is refused, some services may not function properly.

Article 10 (Data Protection Officer)

The Company designates a Data Protection Officer as set forth below to take overall responsibility for personal information processing and to handle complaints and provide remedies related to personal information processing on behalf of data subjects:

Data Protection Officer

Name: Kim Deok-hyun (CEO)

Phone: +82-70-4408-2113

Email: trade004@naver.com

Article 11 (Remedies for Infringement of Rights)

Data subjects may apply for dispute resolution or counseling to the following institutions to seek remedy for personal information infringements. These are Korean government bodies handling personal information disputes:

Article 12 (Changes to the Privacy Policy)

This Privacy Policy applies from its effective date. In the case of any addition, deletion, or revision under laws or internal policy, the Company will announce such changes through the website at least 7 days prior to the effective date.

Effective Date: June 13, 2026