ENKI Whitehat establishes and discloses the following privacy policy to protect the personal information of data subjects (customers) in accordance with the Personal Information Protection Act, and to handle any related grievances promptly and smoothly.

1. Purpose of Processing Personal Information

   Enki Whitehat processes personal information for the following purposes and does not use it for any other purposes:

   • Identification/authentication of customers for simulated hacking, penetration testing, cyber security consulting, cyber security training, and online counselling related to Enki Whitehat's product solutions.

   • Maintenance and management of consultation contents.
     
     

2. Processing and Retention Period of Personal Information

   Enki Whitehat retains and uses personal information for the duration necessary to achieve the processing purpose, unless there is an obligation to preserve it according to the relevant laws and regulations. Once the purpose is achieved, the personal information will be destroyed without delay.
   
   

3. Provision of Personal Information to Third Parties

   Enki Whitehat does not provide personal information to third parties without the separate consent of the data subject or unless it is in accordance with the provisions of the Personal Information Protection Act and other relevant laws.
   
   

4. Entrustment of Personal Information Processing

   Enki Whitehat does not provide personal information to external parties without the prior consent of the user.

   In cases where the provision of personal information is mandatory under relevant laws, we strictly interpret the laws to minimize the invasion of privacy.

   Enki Whitehat outsources some of the tasks necessary for service provision to external companies, and regulates and supervises the entrusted companies to ensure they handle personal information securely.
   
   

5. Rights and Obligations of Data Subjects and Their Exercise Methods

   Data subjects have the following rights regarding personal information protection, which they can exercise at any time against Enki Whitehat:

   • Request to view personal information

   • Request for correction if there is an error in personal information

   • Request for deletion

   • Request to stop processing personal information

6. Personal Information Items Being Processed

   Enki Whitehat processes the following personal information items:

   • Name, phone number, mobile phone number, email address
     
     

7. Destruction of Personal Information

   Enki Whitehat destroys personal information without delay when it becomes unnecessary, such as after the retention period has expired or the processing purpose has been achieved.

   The methods of destruction are as follows:

   • Electronic files: Delete files and format storage media such as disks

   • Paper documents: Shred or incinerate
     
     

8. Measures to Ensure the Safety of Personal Information

   Enki Whitehat takes the following measures to ensure the safety of personal information:

   • Administrative measures: Establish and implement internal management plans, provide regular education to employees

   • Technical measures: Manage access rights by setting passwords for personal information processing systems (or computers where personal information is stored), install security programs such as antivirus software, encrypt files containing personal information

   • Physical measures: Lock and control access to locations where personal information is stored
     
     

9. Personal Information Protection Officer

   Enki Whitehat has designated the following personal information protection officer to take overall responsibility for personal information processing and to handle complaints and relief of data subjects related to personal information processing.

   • Personal Information Protection Officer: Seong-Kwon Lee

   • Contact Person: Jung-Min Lee / Contact: 02-402-1337
     
     

10. Changes to the Privacy Policy

    This privacy policy is effective from June 27, 2024.
    
    

<End>