Article 1 (Purpose)

Ansbrick Korea Co., Ltd. (hereinafter “Company”) complies with the Personal Information Protection Act, the Act on Promotion of Information and Communications Network Utilization and Information Protection, and the EU GDPR (General Data Protection Regulation), and establishes and discloses this Privacy Policy to safely protect and transparently manage users' personal information

Article 2 (Items of Personal Information Collected)

The Company may collect the following personal information for service provision and customer response
  1. When inquiring through the website or Ansbrick's official channels:
     ① Mandatory information: Name, Email, Contact number
     ② Optional information: Company name, Position, Project information
  2. When signing up for membership:
    ① Mandatory information: Name, ID, Password, Email, Contact number
    ② Optional information: Address, Company name
  3. Information automatically collected during service use:
     Access IP address, cookies, access browser, access logs, service usage records

Article 3 (Purpose of Collection and Use of Personal Information)

  1. Member management and customer response – Identity verification, inquiry response, complaint handling
  2. Service provision – Block toy development consultation, quotation, order and delivery management
  3. Marketing and service improvement – Provision of new product information, quality improvement, survey analysis
  4. Fulfillment of legal obligations – Tax calculation, contract management, accounting

Article 4 (Retention and Use Period of Personal Information)

  1. The Company retains personal information until the purpose of use is achieved, and destroys it without delay thereafter
  2. However, if retention is required by laws and regulations, it is retained as follows: ① Records on contracts or cancellation of subscriptions: 5 years
    ② Records on payment and supply of goods: 5 years
    ③ Records on consumer complaints and dispute resolution: 3 years

Article 5 (Provision of Personal Information to Third Parties)

  1. In principle, the Company does not provide users' personal information to the outside
  2. However, exceptions may be made in the following cases:
    ① When the user has agreed in advance
    ② When required by laws and regulations
    ③ Tasks necessary for service performance (e.g., delivery, payment, tax calculation)

Article 6 (Entrustment of Personal Information Processing)

The Company may entrust necessary tasks for service operation to specialized external institutions, and when entrusting, signs a personal information protection contract and supervises the management
 • Entrusted company: Website hosting and security management company (detailed company names to be announced)

Article 7 (Rights of Users and Legal Representatives)

  1. Users can request to view, correct, delete, or suspend the processing of their personal information at any time
  2. Subjects to GDPR have the following additional rights:
   ① Data Portability
   ② Right to request restriction of processing
   ③ Right to object to automated decision-making
  3. Requests are received via email ([email protected]), and the Company takes action within the legal deadline

Article 8 (Procedure and Method of Destroying Personal Information)

  1. Personal information whose retention period has expired or whose processing purpose has been achieved is destroyed without delay
  2. Information in the form of electronic files is deleted using an irretrievable method, and paper documents are shredded or incinerated

Article 9 (Use of Cookies)

  1. The Company may use cookies for user convenience
  2. Users can refuse to store cookies through browser settings

Article 10 (Measures to Ensure the Safety of Personal Information)
The Company implements the following measures to ensure the safety of personal information:

  1. Administrative measures: Establishment of internal management plans, employee training
  2. Technical measures: Management of access logs, encrypted transmission, installation of security programs
  3. Physical measures: Control of access to the data room

Article 11 (Processing of Information Transferred Overseas)

Currently, the Company does not use overseas servers. In case of transferring to overseas servers in the future, prior notice will be given and consent will be obtained in accordance with GDPR and related laws

Article 12 (Chief Privacy Officer)
 
 • Name: Chanho Kim
 • Position: Head / Chief Privacy Officer
 • Email: [email protected]
 • Address: Room 505, Building A, 46 Dallaenae-ro, Sujeong-gu, Seongnam-si

Article 13 (Methods of Relief for Infringement of Rights) Users may apply to the following organizations for damage relief due to personal information infringement:

 • Personal Information Infringement Report Center (privacy.kisa.or.kr / 118)
 • Personal Information Dispute Mediation Committee (www.kopico.go.kr / 1833-6972)
 • Supreme Prosecutors' Office Cyber Investigation Division (www.spo.go.kr)
 • National Police Agency Cyber Investigation Bureau (cyberbureau.police.go.kr)

Article 14 (Changes to the Privacy Policy)

The Company may revise this policy due to changes in laws or service policies, and changes will be notified in advance through site announcements at least 7 days prior

Effective Date: November 1, 2025
Company Name: Ansbrick Korea Co., Ltd.