In this Privacy Policy, "personal information" refers to "personal information" as defined under the Act on the Protection of Personal Information (hereinafter the "APPI"). This includes names, addresses, phone numbers, email addresses, dates of birth, employers, departments, job titles, and any other information that can identify a specific individual or corporate representative—including information that can be easily matched with other data to identify a person.

We collect personal information through lawful and fair means, as described below. We always clarify the purpose of use and, in principle, obtain consent from the individual before collection.

• Various forms on our website (inquiries, document requests, partner applications, etc.)
• Direct provision via email, phone, or business card exchange
• Collection through business partnerships, joint projects, or other business relationships
• Recruitment activities including job applications, internship applications, and information sessions
• Other methods of collection based on the individual's consent

We use collected personal information within the scope of the following purposes. If we use it for any other purpose, we will obtain prior consent from the individual.

• Responding to inquiries and document requests, and managing records of such responses
• Providing our services, support, contract procedures, and after-sales service
• Communications and procedures related to business partnerships, joint research, and business alliances
• Recruitment activities including screening, scheduling interviews, issuing job offers, and onboarding procedures
• Implementing marketing initiatives and analyzing data to improve service quality
• Responding to legal requirements or fulfilling reporting obligations to government agencies

When collecting personal information from minors under the age of 16 (hereinafter "minors"), we in principle obtain the consent of their parent or legal guardian (hereinafter "guardians") beforehand.

When minors use our services, we advise that they do so with the consent of a guardian. When personal information is provided by a minor, we may implement procedures to confirm guardian consent as necessary.

If we discover that personal information has been provided without guardian consent, we will promptly delete the information or take other appropriate action.

To handle minors' personal information appropriately, we take the following measures:

• Establishing clear age restrictions and consent mechanisms for services and content targeting minors
• Responding sincerely and promptly to requests for correction, deletion, or suspension by guardians
• Maximally respecting minors' privacy and rights, and continuously working on staff education and improvement

We do not disclose collected personal information to third parties except in the following cases:

• With the consent of the individual
• As required by law
• When necessary to protect a person's life, body, or property, and it is difficult to obtain consent
• When cooperation is needed for a government agency or local government performing tasks based on law

The following cases are not considered third-party disclosures, and we may share or outsource personal information after implementing necessary measures:

• Sharing information among Synfortech group companies for business operations
• Outsourcing part of our operations to contractors (cloud vendors, payment processors, delivery companies, system developers, etc.)
• Providing services in collaboration with business partners or joint project partners
• Partially outsourcing recruitment screening (to recruitment agencies, aptitude testing organizations, etc.)

Even in these cases, we enter into appropriate agreements and exercise management and supervision to ensure the security of personal information.

We may outsource certain operations involving personal information to external contractors (cloud vendors, call centers, system developers, delivery companies, etc.). In such cases, we ensure the protection of personal information based on the following standards and management framework:

• We select contractors only after confirming they have sufficient security management systems for handling personal information.
• Our outsourcing agreements require the following clauses, documented in writing or electronically:
  • Prohibition of use beyond the stated purpose
  • Prohibition of third-party disclosure and restrictions on sub-contracting
  • Security management measures to prevent leakage, damage, or loss
  • Obligation to return or appropriately dispose of information upon contract termination
  • Legal compliance and obligation to cooperate with audits
• We conduct regular or as-needed audits, inspections, and interviews based on the scope of outsourced work and handling of personal information.
• If a contractor is located in a third country, we verify the data protection framework in that country and implement additional security measures as necessary.
• Contractor evaluation, selection, and renewal are conducted based on our internal risk assessment criteria.

Through these measures, we work to prevent leakage, loss, damage, or unauthorized use of personal information by contractors, and to ensure information security.

To prevent unauthorized access, leakage, loss, or damage to personal information and to ensure accuracy and security, we implement the following necessary and appropriate security management measures:

• Technical measures: Firewalls, access controls, communication encryption, antivirus software, etc.
• Physical measures: Entry and exit management, locked storage, server room restrictions, etc.
• Organizational measures: Internal policy development, employee training, appointment of a personal information manager, etc.
• Human measures: Confidentiality agreements with employees, post-employment information retention obligations

We regularly review and improve these measures, and work toward continuous enhancement of information security.

We retain collected personal information only for the period necessary to fulfill the purpose of use. After the retention period ends or the purpose is fulfilled, we promptly delete, anonymize, or otherwise safely process the information.

For personal information subject to statutory retention requirements, we retain and manage it in accordance with the period specified by the relevant law.

After the retention period, we apply technical and physical security measures before disposing of or deleting the information to prevent leakage, unauthorized use, or external disclosure.

Due to the use of cloud services or partial outsourcing of operations, we may store or process personal information on servers or with service providers located outside your country.

When making such cross-border transfers, we investigate and confirm the level of personal data protection law in the destination country or region, and implement appropriate protective measures—such as contractual obligations or technical security measures—before proceeding.

We also continuously supervise and manage contractors to ensure appropriate handling of personal information at the destination, and proactively prevent risks of leakage, loss, damage, or unauthorized use.

We may create pseudonymized or anonymized information by appropriately processing collected personal information so that specific individuals cannot be identified, and use it for statistical analysis, service improvement, marketing planning and verification, and similar purposes.

In creating and using pseudonymized or anonymized information, we implement security management measures in accordance with relevant laws and guidelines to prevent leakage or re-identification.

When providing anonymized information to third parties, we comply with applicable law by disclosing the types of data included and the method of provision, and follow required procedures.

If we receive a request (hereinafter "disclosure request") from an individual or their authorized representative—for disclosure, correction, addition, deletion, suspension of use, erasure, or cessation of third-party provision of personal information we hold—we will respond appropriately and in good faith in accordance with the APPI and other applicable laws.

However, we may be unable to fulfill a request in any of the following cases:

• When we cannot confirm that the requester is the individual themselves or an authorized representative
• When compliance could harm the rights or interests of a third party
• When compliance would significantly interfere with our legitimate business operations
• When compliance would violate applicable law

To submit a disclosure request, please follow our prescribed procedure, which may require submission of identity verification documents.

For details on the procedure, please contact our inquiry desk (Section 17).

We may use cookies and similar technologies on this website to improve user convenience, understand browsing history, and improve service quality.

Cookies are small data files temporarily stored on a user's device when visiting a website. They are used to improve convenience during repeat visits and for access analysis. The cookies we use do not contain information that can identify individual users.

We also use cookies in connection with Google Analytics for access analysis and security features such as Cloudflare Turnstile. These are used solely for legitimate purposes and not to identify or track individual users.

Users may configure their browser to refuse cookies, but please note that some features of this website may not function correctly as a result.

We may review and revise this Privacy Policy at any time in response to changes in applicable law, social conditions, or our services.

When revisions are made, we will publish the updated content and its effective date on our website. For significant changes, we will endeavor to provide advance notice within a reasonable period.

The revised Privacy Policy takes effect from the time it is published on our website.

This website uses Google Analytics, an access analysis tool provided by Google that uses cookies and similar technologies. Through this tool, we collect browsing history, traffic sources, and device information (device type, OS version, etc.) to analyze user behavior. The collected information does not include personally identifiable data.

Data obtained through this analysis is used for service improvement, marketing analysis, and personalized advertising. If you wish to opt out of data collection by Google Analytics, please refer to the opt-out page below.

• Google Privacy Policy
• Google Analytics Opt-out

This site uses Google's "reCAPTCHA" to prevent spam and malicious submissions via forms. This feature automatically sends information such as IP addresses and browser data to Google to verify that the interaction is performed by a human.

Information collected is handled in accordance with Google's Privacy Policy. While reCAPTCHA does not directly identify individuals, use of this site implies acceptance of Google's data management.

• Google Terms of Service
• Google Privacy Policy

We use Cloudflare's "Turnstile" as a security measure for form submissions. Turnstile collects browser information and IP addresses to verify requests and prevent bot-based unauthorized access.

Collected information is handled in accordance with Cloudflare's Privacy Policy. Using this site implies acceptance of Cloudflare's data processing.

• Cloudflare Privacy Policy

While we take care to ensure that information on this website and related services is accurate, current, complete, useful, and safe, we do not guarantee these qualities. We are not liable for any actions taken by users based on information from this website, or their results.

We are not liable for any damages suffered by users or third parties due to service interruptions, delays, misdirected transmissions, or data loss caused by communication line failures, maintenance, unauthorized third-party access, computer viruses, or other force majeure events.

We may change the content or structure of this website, or discontinue its operation, without notice. We are not liable for any damages resulting from such changes.

This website may contain links to external sites operated by other companies or third parties. We are not liable for the accuracy, legality, or safety of the content or services of linked sites. Links are provided for convenience only and do not constitute endorsement or recommendation of the linked site.

Use of this website is entirely at the user's own risk. We accept no liability for any direct or indirect damages arising from use of this site.

All copyright, trademark rights, and other intellectual property rights in the text, images, logos, videos, programs, and all other content (hereinafter "content") published on this website belong to Synfortech Inc. or third parties who hold legitimate rights.

Reproduction, adaptation, modification, distribution, or publication of content from this website without permission is prohibited under copyright law and other applicable laws.

Except as permitted by law, use of any content without our prior permission is strictly prohibited.

For inquiries regarding this Privacy Policy, please contact us at the following:

For questions or concerns about how we handle personal information, please use the contact form on this website.

• Effective date: August 1, 2024
• Last revised: July 2, 2025