CASTING n model (hereinafter referred to as the "Company") establishes this Privacy Policy (hereinafter referred to as the "Policy") to comply with the Personal Information Protection Act, the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc., and other relevant laws. The Company aims to protect the personal information (hereinafter referred to as "PI") of users (hereinafter referred to as "Users") who utilize the services (hereinafter referred to as the "Service") provided by the Company. The Company also aims to ensure the swift and smooth handling of complaints related to the protection of Users' personal information.

The Company may collect Users' personal information in accordance with applicable laws and this Policy, and such collected personal information may only be disclosed to third parties with the individuals' consent. However, in cases where it is legally required, such as by provisions of laws, the Company may disclose the collected personal information to third parties without obtaining prior consent from the individuals.

1. The Company discloses this Policy on the first screen of its website or through a linked screen from the first screen to enable Users to access and review it easily.

2. The Company ensures that Users can easily view this Policy by using appropriate font sizes, colors, etc. when disclosing it in accordance with paragraph 1.

1. This Policy may be revised as necessary to comply with changes in relevant laws, guidelines, public notices, or the government's policies and the Company's services related to personal information.

2. If this Policy is amended in accordance with paragraph 1, the Company will notify Users via the email provided during registration.

3. The Company will provide notice of the amendments in accordance with paragraph 2 at least 7 days prior to the effective date of the revised Policy. However, in the case of significant changes to Users' rights, the notice will be provided at least 30 days in advance.

The Company collects the following information for user registration in its services:

1. Individual Members

Required information: Email, password, name, phone number, nationality, current location

2. Corporate Members

Required information: Email, password, company category (category), company name, representative number, address, contact person's name, phone number

Optional information: Website address

The Company collects the following information for user authentication:

Required information: Email, mobile phone number

The Company collects the following information to provide its services to Users:

1. Individual Members

Required information: Profile photo, gender, date of birth, height, weight, category (occupation), short introduction, profile picture, experience, activity history, modeling fee, keywords

Optional information: Activity name (nickname), SNS account (Instagram, YouTube, TikTok, Facebook) address, profile video, self-introduction, race, hair color, eye color, activity area, agency.

2. Corporate Members

Required information: Profile photo, introduction, profile picture

Optional information: SNS account (Instagram, YouTube, TikTok, Facebook) address, profile video

The Company collects the following information for the purpose of verifying and analyzing Users' service usage and detecting unauthorized use:

Required information: Service usage records, cookies, connection location information, and device information.

The Company collects Users' personal information through the following methods:

1. Users entering their personal information on the Company's website.

The Company uses personal information in the following cases:

1. When necessary for the operation of the Company, such as delivering notices.

2. For responding to inquiries and addressing complaints to improve services for Users.

3. To provide the Company's services.

4. For forming relationships between users based on personal information and interests.

1. The Company retains and uses personal information for the period necessary to achieve the purpose of collecting and using personal information.

2. However, despite the previous paragraph, the Company retains records of service misuse internally for up to 1 year from the date of membership withdrawal to prevent fraudulent registration and use.

The Company retains and uses personal information in accordance with applicable laws and regulations as follows:

1. After withdrawal, personal information is retained for up to 1 year after the transition to dormancy.

The Company will dispose of personal information without delay when it is no longer necessary for the purpose of processing personal information, or when the retention and use period has expired.

1. For users who have not used the Company's services for one year, the Company will generally provide prior notice to the users and dispose of their personal information or store it separately.

2. The personal information of long-term non-users will be securely stored separately, and notification of the separation process will be sent to the user's email address at least 30 days prior to the process.

3. Long-term non-users who wish to continue using the service can log in to the service (website).

4. Long-term non-users can restore their accounts according to their consent if they log in to the website.

5. The Company promptly disposes of the separately stored personal information in accordance with Article 15 of the Privacy Policy.

1. The information provided by users during registration and other processes is transferred to a separate database (or a separate document box for paper) after the purpose of processing personal information is achieved, and is stored for a certain period in accordance with internal policies and other relevant laws (refer to the retention and use period) before being disposed of.

2. The Company disposes of personal information subject to disposal through the approval process of the Personal Information Protection Manager when the reasons for disposal occur.

The Company uses technical methods to delete electronically stored personal information, making it impossible to reproduce the records. For personal information printed on paper, the Company disposes of it by shredding or incineration.

1. When transmitting commercial advertising information for profit purposes through electronic transmission media, the Company obtains explicit prior consent from Users. However, the Company does not require prior consent in the following cases:

1.1 When the Company collects contact information directly from the recipient through a trade relationship and intends to transmit commercial advertising information for similar goods or services within 6 months from the date of the completed transaction.

1.2 When a telephone salesperson, according to the "Act on Door-to-Door Sales, Etc.," informs the recipient of the source of personal information collection and conducts telephone solicitation.

2. Despite the previous paragraph, the Company does not transmit commercial advertising information for profit purposes to recipients who have expressed their refusal to receive or withdrawn their prior consent. The Company informs the result of the refusal to receive or withdrawal of consent.

3. When transmitting commercial advertising information for profit purposes through electronic transmission media between 9 PM and 8 AM the next day, the Company obtains separate prior consent from the recipient, regardless of the provisions in paragraph 1.

4. When the Company transmits commercial advertising information for profit purposes through electronic transmission media, the following details are clearly indicated in the advertising information:

4.1 Company name and contact information

4.2 Indication of the recipient's right to refuse or withdraw consent

5. The Company does not take the following actions when transmitting commercial advertising information for profit purposes through electronic transmission media:

5.1 Measures to evade or hinder the recipient's refusal to receive or withdrawal of consent.

5.2 Measures to automatically generate contact information of the recipient, such as telephone numbers or email addresses, by combining numbers, symbols, or characters.

5.3 Measures to automatically register telephone numbers or email addresses for the purpose of transmitting commercial advertising information.

5.4 Various measures to hide the identity of the sender or the source of advertising transmission.

5.5 Various measures to deceive the recipient of the commercial advertising information for profit purposes and induce a response.

1. Users and legal guardians have the right to access and modify their registered personal information at any time and can request the withdrawal of their consent for the collection of personal information.

2. To withdraw consent or request modifications to personal information collection, Users and legal guardians can contact the Personal Information Protection Manager or the responsible person in writing, by telephone, or by email, and the Company will take immediate action.

1. Users can request the correction of their personal information by contacting the Company through the methods specified in the preceding paragraph.

2. Until the correction of personal information is completed, the Company will refrain from using or providing the incorrect personal information. If the incorrect personal information has already been provided to a third party, the Company will promptly inform the third party of the correction results to ensure that the correction is implemented.

1. Users are responsible for maintaining their personal information accurately and up to date, and the Company is not responsible for any issues caused by incorrect information provided by Users.

2. In the event of fraudulent use of another person's personal information for membership registration, Users may lose their membership status or be subject to penalties under relevant laws on personal information protection.

3. Users are responsible for maintaining the security of their email addresses, passwords, etc., and are prohibited from transferring or lending them to third parties.

To ensure the security of personal information and prevent its loss, theft, leakage, alteration, or damage, the Company implements appropriate technical and managerial measures, including:

Personal information that has been terminated or deleted at the request of Users or their legal guardians is handled in accordance with the "Retention and Use Period of Personal Information" specified by the Company. It is processed to ensure that it cannot be accessed or used for any other purposes.

User passwords are stored and managed in a one-way encrypted form. Only the individual who knows the password can verify and modify their personal information.

1. The Company takes necessary measures to prevent the leakage, damage, or unauthorized access of Users' personal information through hacking, computer viruses, or other information and communication network intrusions

2. The Company utilizes up-to-date antivirus programs to prevent the leakage or damage of personal information and dat.

3. The Company employs intrusion prevention systems to enhance security and be prepared for unforeseen circumstances.

4. If the Company collects and retains sensitive personal information, it ensures the secure transmission of such information over the network through encryption communication and other means.

The Company restricts the number of personnel responsible for handling personal information to a minimum and emphasizes compliance with relevant laws, internal policies, and other regulations through training and other administrative measures.

In the event of a loss, theft, or leakage ("leakage, etc.") of personal information, the Company promptly notifies the affected Users and reports the incident to the Korea Communications Commission or the Korea Internet & Security Agency. The Company provides the following information to the affected Users:

1. Personal information items subject to leakage, etc.

2. Timing of the leakage, etc.

3. Actions that Users can take in response to the incident.

4. Measures taken by the information and communication service providers, etc., to address the situation.

5. Departments and contact information where Users can seek consultations or assistance regarding the incident.

Notwithstanding the provisions of the previous article, if the Company is unable to contact the Users due to valid reasons, it may take alternative measures by posting a notice on its website for a duration of 30 days or more, instead of providing individual notifications.

1. The Company does not enter into international agreements that violate relevant laws and regulations regarding Users' personal information.

2. The company obtains the consent of the user to provide the user's personal information abroad (including cases where it is inquired), entrust the processing, and store it (hereinafter referred to as "transfer"). However, if all matters referred to in paragraph 3 of this Article are disclosed in accordance with related laws such as the Personal Information Protection Act or notified to users by Presidential Decree, such as e-mail, consent procedures may not be performed.

3. To obtain consent as mentioned in the previous paragraph, the Company notifies Users in advance of all of the following:

A. Personal information items to be transferred

B. Country, date, and method of transfer

C. Name of the recipient of the personal information (including the name and contact information of the information management officer for corporate entities)

D. Purpose of use, retention, and duration of the personal information by the recipient

4. When obtaining consent as mentioned in the preceding paragraph for the transfer of personal information overseas, the Company implements protective measures in accordance with the Personal Information Protection Act, Presidential Decree, and other relevant regulations.

1. Users have the choice to enable or disable the installation of cookies. They can adjust their web browser settings to accept all cookies, receive a notification for each cookie being stored, or reject all cookies.

2. However, if Users refuse to store cookies, some services on the Company's website that require login may be difficult to use.

The method for specifying the permission for cookie installation (specifically for Internet Explorer) is as follows:

1. Select "Internet Options" from the "Tools" menu.

2. Click on the "Privacy" tab.

3. Adjust the settings under the "Advanced" options to manage cookie installation permissions.

1. The Company designates the following department and personal information protection manager to protect Users' personal information and handle complaints related to personal information:

a. Name: [Name of the Personal Information Protection Manager]

Sally Kang

b. Phone Number: [Phone number of the Personal Information Protection Manager]

+82 70-8871-6744

c. Email: [Email address of the Personal Information Protection Manager]  castingandmodelglobal@gmail.com