This Privacy Policy explains how your personal information collected through the website (the "Site") operated by the Company (the "Company") is collected, used, stored, and protected.
The company values the protection of your personal information in accordance with relevant laws and operates a transparent and responsible management system.


1. Personal Information Items Collected

Companies may collect the following personal information to provide services.

Classification: Collect items
Mandatory items: Name, email address, mobile phone number, destination address, payment information (card company name, some card number), order details
Automatic collection items: Access IP, browser type, device information, date and time of visit, cookie information, service usage record
Selections: Information voluntarily provided by the user, such as company name, memo, and consent to receive marketing

※ Information collection through payment modules (Paypal, Nice Pay, etc.) is also included.


2. How to collect personal information

- Collect directly through user input such as membership registration, order and payment, inquiry form, etc. on the website
- Automated collection with cookies and log analysis tools (such as Google Analytics)


3. Purpose of using personal information

The collected personal information is used for the following purposes.
- Performing services such as receiving orders, processing payments, delivering goods, etc
- Customer Response and A/S Support
- Maintain user authentication and security
- Marketing and promotion (with prior consent only)
- Statistical analysis and service improvement


4. Period of retention and use of personal information

After the purpose of collecting and using personal information is achieved, the company will destroy the information without delay. However, if it is necessary to preserve it for a certain period according to the relevant laws and regulations, it shall be stored safely during that period.

The basis for the holding period of the item
Contract and subscription withdrawal information 5-year e-commerce law
Details of Payment and Supply of Goods 5 Years Electronic Commerce Act
Consumer Complaints and Dispute Resolution Records 3 Years of Electronic Commerce Act
Website Access Record 3-month Communication Secret Protection Act


5. Providing Personal Information to a Third Party

In principle, the company does not provide the user's personal information to the outside world. However, it may be provided to a third party as an exception in the following cases.
- If the user agrees in advance
- Where it is necessary to provide it in accordance with laws and regulations or in accordance with legal procedures at the request of the investigative agency
- Provide minimum information for logistics/payment service providers for delivery and payment of goods


6. consignment of personal information processing

The company can entrust some tasks to external companies for smooth service provision, and the companies to be entrusted are as follows.

Details of consignment business of consignment company
Payment Agent (PG) Payment Processing and Approval
Delivery company's product delivery and return processing
Google / Meta website analysis and advertising execution (consent only)

※ When signing a consignment contract, the obligation to take safety measures related to personal information protection is specified in the contract.


7. Rights of data subjects

Users can exercise the following rights to their personal information at any time.
- Request to view, modify, or delete personal information
- withdrawal of consent to collection, use or provision
- Refuse to receive marketing information

Requests can be received through email or customer center, and the company will respond quickly and sincerely.


8. Technical and administrative measures for the protection of personal information

The company is taking the following steps to keep users' personal information safe:
- Save Personal Information Encryption
- Firewall and Security Server Operations
- Minimize access to personal information and conduct regular audits
- Establishing an automatic logout and access control system


9. A person in charge of personal information protection

The company oversees personal information processing and designates a personal information protection officer as follows for the handling of civil complaints and damage relief by the data subject.
- Name: Kang Il Jung
- Position: Personal Information Protection Officer (CPO)
- Email: q-min@xphere.com

10. Policy changes and notices

This personal information processing policy may be changed according to the relevant laws and internal policies, and if it is changed, it will be notified in advance through the website.