Privacy Policy

Article 1: General Provisions

DIDI CO., LTD. (hereinafter "Company") values the personal information of "OTAHub" (hereinafter "Service") users and strives to manage and protect users' personal information in compliance with the laws of the Republic of Korea, including the [Act on Promotion of Information and Communications Network Utilization and Information Protection, etc.]. The Company aims to safeguard users' rights and interests through this Privacy Policy, which is publicly accessible for transparency.

Article 2: Collection of Personal Information and Purpose

1. The Company collects the minimum personal information required for subscription, service provision, and inquiries.

2. For users under the age of 14, the Company may collect information about their legal representatives.

3. The following personal information may be collected by the Company, along with its purposes:

• Personal Information Items:
  • Username (ID), country, language, email address, password
  • Birthday
  • Purchase history and withdrawal records
  • User token (Token)
  • Service usage information (date, location, access logs, IP, device info, cookies, and records of illegal usage)
• Purpose of Collection/Use:
  • Subscription, change, withdrawal processing, user identification, and contract execution
  • Provision of customized services and marketing
  • Sending notifications
  • Analysis of demographics (age, gender, region) and usage patterns for service improvement

4. The Company may collect and use personal information without user consent in the following cases:

• If it is difficult to obtain consent due to economic or technical reasons and the information is necessary to fulfill a contract with the user.
• If required by law.

5. Consent for device access does not mean that all information will be collected immediately. Information will only be collected after notifying the user and obtaining approval within the scope of consent.

Article 3: Collection Method of Personal Information

The Company collects personal information through the following methods:

• Through membership registration
• Through information collection tools while using the service

Article 4: Retention and Usage Period of Personal Information

1. The Company will retain personal information as required by law, such as for consumer protection, communications secrecy, and tax laws. Personal information will be destroyed once the purpose for its use is fulfilled.

2. The personal information will be retained during the period of service provision or dispute resolution.

• Service subscription period (from subscription date to withdrawal date)
• If a dispute remains unresolved, personal information will be retained until the dispute is settled (unless otherwise required by law).

Article 5: User Rights

1. Users (or legal representatives if under 14) have the right to inquire, modify, or withdraw consent regarding their personal information through the service. Requests can also be made to the Chief Privacy Officer via the Customer Center.

2. The Company will process personal information withdrawal or deletion requests as outlined in Article 4 and ensure it is no longer used or viewed for any other purposes.

Article 6: Personal Information Protection for Children

If a child under 14 years of age wishes to use the service, the Company will verify the consent of their legal representative before collecting any personal information. If no consent is obtained, the child will be restricted from using the service.

Article 7: Youth Protection Policy

The Company has implemented youth protection measures to ensure that minors can grow in a safe online environment. These measures include:

• Preventing minors from accessing harmful content
• Educating staff on youth protection laws and procedures
• Providing counseling services for issues related to harmful content exposure

Article 8: Technical and Administrative Protection of Personal Information

The Company has established technical and administrative measures to prevent personal information from being lost, stolen, leaked, or altered.

• Technical Measures: Access control systems, encryption of sensitive information, and security programs
• Administrative Measures: Internal management plans and employee training on personal information protection

Article 9: Personal Information and Youth Protection Officer

The Company has designated the following individuals to manage personal information processing and address user complaints:

• Personal Information Protection Manager: Head of New Business Division, Email: cddchingudeul@gmail.com
• Personal Information Protection Officer: Service Development Team Leader, Email: cddchingudeul@gmail.com
• Youth Protection Manager: Personal Information Protection Manager, Email: cddchingudeul@gmail.com

If you wish to report any personal information violations, please contact the following agencies:

• Personal Information Infringement Report Center: http://privacy.kisa.or.kr / 118
• Supreme Prosecutors’ Office Cyber Investigation: http://www.spo.go.kr / 02-3480-3571
• National Police Agency Cyber Bureau: http://www.netan.go.kr / 1566-0112

Article 10: Notification of Privacy Policy

The Privacy Policy may be amended in the future due to changes in relevant laws or internal operational policies. Any changes will be communicated to users through announcements on the service and updated accordingly.

Date of Notice: 12 April 2021

Date Implemented: 12 April 2021