EXAIS Foundation | Metaverse blockchain for the Creators

The Company puts the utmost value on protecting the user’s personal information and does its best to protect the personal information provided to the Company online when users use the Company’s ZEMI platform service (hereinafter “Service”). As an information and communication service provider, the Company complies with the applicable laws pursuant to the Personal Information Protection Act. The Company uses personal information in specific use and methods per the Personal Information Protection Act and discloses what measures are being processed for personal information protection. The Company possesses the right to revise the policy at any time. Any policies changed by the Company in the future shall be apprised through the website, app, and announcement, and users may ask for their consent if required by the applicable law. Pursuant to the law of the Personal Information Protection Act, the ZEMI. (hereinafter “Company”) protects the personal information of the information subjects. The Company establishes and discloses privacy policy in the document to resolve related difficulties promptly and peacefully.Article 1 - Collection of Personal Information and its useThe Company, for following reasons, processes the personal information. The personal information processed shall not be used for following purposes and if such purposes may change, the Company shall execute necessary measures such as receiving separate consent etc. 1. Using the ZEMI Platform Service - For registration and login of linked social media account and use of service 2. Using information for marketing and advertising - For providing advertising information such as beneficial information, various event information, and newly launched services etc.Article 2 - Processing and Retention of Personal InformationThe Company processes and retains your personal information for no longer than the period of retention, processing in accordance with the applicable law or period approved by the information subject when collecting personal information. 1. The Company processes and retains your personal information for no longer than the period of retention, processing in accordance with the applicable law or period approved by the information subject when collecting personal information. 2. Periods of processing and retaining personal information are as follows. 3. Store and Use of Personal Information for Providing the Service - Member Management: Until Account Termination - The personal information collected from the information subject is disposed immediately when the purpose is achieved. Nevertheless, if the Company is obliged to the Republic of Korea in accordance with the applicable law of Republic of Korea, the personal information remains for its corresponding periods. 1) Act on the Consumer Protection in Electronic Commerce」 - Record of display, advertisement: six months - Record of supply such as contract, subscription withdraw, settle fees, currency etc.: 5 years - Records of handling consumer complaints or disputes: 3 years 2) Communication Secrets Protection Act - Computer communication, Internet log record data, access destination tracking data: 3 monthsArticle 3 - Provision of Personal Information to Third PartiesThe Company processes the personal information in the scope specified in the Article 1(Collection of Personal Information and its Use), and provides personal information to the third party only when the Company receives a consent from the information subject or falls under an express provision of applicable law. Nevertheless, the following fall into an exemption. 1. The Company may provide or share client’s personal information to provide better service. If the personal information shall not be provided nor shared unless the Company notify the clients in advance with the required categories in compliance to the relevant law and receive your consent. 2. When the personal information is required to fulfill Service provide contract but appreciably unable to receive a consent due to financial and technical issues. 3. When the fee is to be settled in accordance to provide the Service. 4. When an express provision applies in other applicable laws such as Protection of Communications Secrets Act, regulations regarding the Promotion of Information and Communication Network Use and Protection of Information, The Use and Protection of Credit Information Act etc. Nevertheless, the Company shall not provide clients’ personal information accordance to the demand of executive authorities or investigative agency in purpose of administration or investigation with express provision of applicable law but shall provide due process with applicable law specified such as receiving a warrant or document with official seal of the head of the organization.Article 4 - Consignment of processing of personal information and transfer of personal data abroadFor smooth processing of personal information, the Company consigns personal information processing as follows. 1. Consignment of personal information processing 1) Zendesk, Inc. - Customer Support Services 2. When signing a consignment agreement, the Company, in accordance with the relevant law, specifies in documents such as the contract about responsibilities such as the prohibition of processing of personal information other than for the purpose of performing consignment, technical and administrative protection measures, restrictions on re-entrustment, management and supervision of consignees, and compensation for damages and supervises whether the consignee handles the personal information safely. 3. The Company shall promptly notify through the Privacy Policy when there are changes in consignment tasks or the consignee. 4. Cross Border Transfer 1) Google LLC - Items to be transferred: Participation time, inflow path, and occurrence event - Previous country: California, United States - Date and method of transfer: Automatically collect for statistical analysis when accessing the site - Purpose of relocation: Advertising and user analysis - Period of use and retention: Retention until the purpose is achieved 2) Amazon Web Service - Item to be transferred: User data (including email and wallet ID) - Previous country: Seoul, South Korea - Date and method of relocation: collecting user information when signing up for membership and using services - Purpose of Transfer: Cloud Services - Period of use and retention: until the withdrawal of membership 3) Zendesk Inc. - Items to be transferred: Email address, inquiry type, Wallet id, Wallet address - Previous country: California, United States - Date and method of relocation: Collect through the support center when registering user inquiries - Purpose of Transfer: Customer Support Service - Period of use and retention: 3 yearsArticle 5 - Rights and Obligations of Information Subject and Legal Representative and Exercise Method1. The information subject may exercise the following rights related to personal information protection against the company at any time. 1) Request for access to personal information 2) Request correction if there is an error, etc 3) Request for deletion 4) Request for suspension of processing 2. The exercise of rights under paragraph (1) can be made in writing or by e-mail with the contact information provided in Article 11 (Personal Information Protection Officer), and the company will take action without delay. 3. If the information subject requests correction or deletion of personal information errors, etc., the company will not use or provide the personal information until the correction or deletion is completed. 4. The exercise of rights under paragraph (1) may be conducted through an agent, such as a legal representative of the information subject or a person entrusted. In this case, you must submit a power of attorney to confirm that you are the appropriate representative. 5. Requests for suspension, correction, and deletion of personal information may be restricted in accordance with the Personal Information Protection Act. 6. Zemi checks whether the person who made the request for perusal, correction or deletion, or suspension of processing, etc. according to the right of the information subject is himself or a legitimate agent.Article 6 - Items of Personal Information Collected and ProcessedThe company is processing the following personal information items. Personal information items provided (collected) by users are 1. ZEMI WALLET - Collected Items: Membership registration and login email address, wallet address, and one-way encrypted password for service use (The password is not stored separately by the company and is encrypted; therefore: it is impossible to find the password.) 2. ZEMI Market - Collection items : Id information for service use (ZEMI Wallet id / Wallet address) 3. ZEMI Support Center (Customer Support) - (Optional) Customer Support / Inquiry: E-mail address, inquiry type, wallet ID, wallet address, and other personal information directly received by customers to resolve customer inquiries 4. Selections for each service - Participation information for winning an event when participating in an event, additional information requested when winning an event, etc. 5. Collected information automatically generated by users in the process of using and processing services 1) Log information - Collection items: service usage records, access logs, cookies, access IP information, log data 2) Device information - Collection items: Device identifier, operating system, hardware version, etc. 6. The collected information shall be held based on the "Preservation and Use Period of Personal Information under Article 2Article 7 - Disposal of Personal Information1. The company shall dispose of personal information without delay when private information becomes unnecessary, such as the lapse of the individual information retention period and the achievement of the purpose of processing. 2. If the personal information retention period agreed upon by the data subject has elapsed or the purpose of processing has been achieved, the personal information shall be transferred to a separate database (DB) or stored in a different storage place. 3. The method of destroying personal information is as follows. 1) Personal information destruction method is to destroy personal information recorded and stored in the form of an electronic file using methods such as low level format, so the record cannot be reproduced, and personal information recorded and stored in paper documents is shredded with a shredder or destroyed by incineration. 2) For separate storage of personal information, if the service is not used for 1 year, the user is notified of the transition to dormancy by e-mail, 30 days before the expiration of the period, and it is converted to dormant status at the end of 1 year. Personal information in a dormant state is stored separately in a separate storage space, and is safely managed by restricting access and applying security. Information converted to a dormant state is destroyed after 5 years. 3) Personal information entered by the user for service subscription is immediately destroyed after the purpose of use, such as service termination, is achieved. In general, if there is no remaining bond-debt relationship, personal information collected at the time of membership registration and managed in the form of an electronic file is immediately deleted at the time of membership withdrawal. 4) Time to destroy personal information when withdrawing from the service - If there is no asset transaction details: Discarded upon withdrawal - If asset transaction details exist: 5 years after withdrawalArticle 8 - Safety Measurement of Personal InformationThe company takes the following measures to ensure safety so that personal information is not lost, stolen, leaked, altered, or damaged handling users' personal information. 1. Encryption of personal information - Important personal information of users is stored/managed by encryption, and personal data can be safely transmitted on the network through encrypted communication, etc. 2. Countermeasures against hacking, etc - The company is installing a system in an area where access is controlled from the outside to prevent leakage or damage to users' personal information due to hacking or malicious code. - Using the latest vaccine program, we prevent users' personal information or data from being leaked or damaged. We also use intrusion prevention systems to control unauthorized access from the outside and strive to have all possible technical devices for system security. 3. Minimize and educate personal information handlers - We minimize employees who process personal information and reduce the risk of personal information leakage. In addition, we have established systematic standards for creating, modifying, and accessing passwords for database systems that store personal information and systems that process personal information. In addition, we provide regular education and campaigns on personal information protection obligations and security for all executives and employees who process personal data.Article 9 - Installation, Operation, and Rejection of an Automatic Personal Information Collection Device1. To provide individually customized services to users, the company uses a 'cookie' that stores user information and invokes it from time to time. 2. Cookies are a small amount of information sent by the server (HTTP) to run the website to the user's computer browser and are sometimes stored on the hard disk in the user's computer. 1) Purpose of use of cookies: It provides optimized information to users by identifying the type of visit and use, popular search terms, security access, etc., for each service and website. 2) Installation of cookies • Operation and rejection: You can refuse to save cookies by setting options in the Tools > Internet Options > Personal Information menu at the top of the web browser. 3) If you refuse to save cookies, it may be challenging to use customized services. 3. The items of cookies collected by the company and the purpose of the collection are as follows. 1) Essential Cookies - This cookie is essential for users to use the company's website functionality. If you do not allow this cookie, services such as login will not be available. This cookie does not collect information used for marketing or users to remember sites they visit on the Internet. - Check if you are logged in to the website - When the company changes the way the website works, make sure that the user is connected to the correct service on the company's website - Connect users to specific applications or servers in a service 2) Action cookies - This cookie collects information about how users use the company's website, such as page information that users visit most frequently. This data optimizes the company's website and helps users search the website more easily. This cookie does not collect information about who you are. All the information this cookie collects is processed comprehensively, ensuring anonymity. - Web Analysis: Provides statistics on how to use a website - Advertising response fee: Check the effect of the company's advertisement - Tracking Affiliates: One of the company's visitors gives anonymous feedback to affiliates about their visits to their websites - Error management: Helps improve websites by measuring errors that occur - Design test: Test other designs of the company's website 3) Functional cookies - This cookie is used to remember settings to serve or improve visits. The information collected by this cookie does not identify you individually. - Remember the settings applied, such as layout, text size, preferences, colors, etc. - Remember when customers respond to a company survey 4) Destination cookies - This cookie is associated with services provided by third parties, such as the 'Like' button and the 'Share' button. A third party provides such services by recognizing that the user has visited the company's website. - Connect to a social network and use the user's visit information to promote it to users on other websites later. - Provide user visit information to the advertising agency so that users can present advertisements they may be interested in. 4. Users have the option of installing cookies and can refuse to save or delete them at any time. - Internet Explorer: Select Tools Menu > Select Internet Options > Click the Privacy tab > Advanced Privacy Settings > Cookie Level Settings - Chrome: Select Settings Menu > Display Advanced Settings > Personal Information and Security > Select Content Settings > Cookie Level Settings - Safari: Select Configuration Menu > Select Privacy Tab > Set Cookies and Web Site Data LevelsArticle 10 - Personal Information Protection for MinorIn principle, the company does not collect information from minors under the age of 19 or of a corresponding minimum age under its jurisdiction. The company's website, apps, products, and services are for the public in principle. The company's website or application is not available to minors through consent to the age limit, and personal information is not intentionally collected from minors.Article 11 - Data Protection Officer1. The company designates a Data Protection Officer (DPO) as follows to protect users' personal information and handle complaints related to personal information. 1) Data Protection Officer (DPO) - Name : Soo - E-mail : Soo@exais.io 2. The information subject can contact the Data Protection Officer (DPO) and the department in charge for all personal information protection inquiries, complaints, and damage relief that have occurred while using the company's service (or business). The company will answer and process the inquiries related to information subject without delay. In addition, the information subject may request access to personal information pursuant to the Applicable law of Personal Information Protection Act. The company will do the best to expedite the personal information access request of the information subject. 1) Inquiry submittance and personal information access request department - Company : EXAIS Foundation - Address : 8th and 5th floors of Gangnam-daero 53-gil, Seocho-gu, Seoul - E-mail : Help@exais.ioArticle 12 - Infringement of rights and interestsTo relieve personal information infringement, information entities can apply for dispute resolution or counseling to the Personal Information Dispute Mediation Committee and the Korea Internet & Security Agency's Personal Information Infringement Reporting Center. In addition, please get in touch with the institution below for other reports and consultations on personal information infringement. - Personal Information Dispute Mediation Committee: (without national number) 1833-6972 (www.kopico.go.kr) - Personal Information Infringement Reporting Center: 118 (without national number) (privacy.kisa.or.kr) - Supreme Prosecutors' Office: 1301 (without national number) (www.spo.go.kr) - National Police Agency: 182 (without national number) (cyberbureau.police.go.kr)Article 13 - Privacy Policy ChangesThis Privacy policy will be enforced from 2022, December 1st.