StableNet: KRW Stablecoin Mainnet

Privacy Policy

2025.11.14

Introduction

Wemade Co., Ltd. (the "Company") values users’ personal information and handles it lawfully and securely in accordance with the Personal Information Protection Act and related laws.

This Privacy Policy explains how the Company collects, uses, provides, and disposes of personal information, the measures taken to protect it, and how users can exercise their rights.

Article 1 Collection of Personal Information

The Company collects the following categories of personal information:

Customer Inquiries: [Required] Email address, inquiry details (Depending on the type of inquiry, additional personal information or inquiry-related data may be collected.)
Automatically generated and collected information during service use: Service usage records, records of misuse, access logs, cookies

Article 2 Use of Personal Information

The Company processes personal information for the following purposes. Collected personal information will only be used for the purposes stated below. If the purpose of use changes, the Company will take necessary measures, such as obtaining separate consent.

Retention of records for dispute resolution, handling of inquiries and complaints, and other customer service matters, Improvement of user services
Provision of services and advertisements based on demographic characteristics, Analysis of access frequency and statistical analysis related to service usage

Article 3 Sharing of Personal Information

1. Provision to Third Parties
The Company processes personal information only within the scope specified in the purpose of collection and use. The Company does not provide users’ personal information to any third party, except where prior consent has been obtained or where there is a lawful basis under applicable laws.
2. Entrustment of Personal Information Processing
1. For efficient business operations, the Company entrusts certain personal information processing tasks to external service providers. If there are any changes to the details of entrusted tasks or the entrusted companies, the Company will disclose such changes promptly through this Privacy Policy.
  - Entrusted Company: Microsoft Azure(Seoul)
  - Entrusted Operations: Providing a service management platform
2. When entering into entrustment agreements, the Company stipulates, in accordance with applicable laws, that entrusted companies shall not process personal information for purposes other than performing the entrusted tasks. The Company also includes clauses on implementing technical and administrative safeguards, restricting sub-entrustment, supervising and auditing the entrusted party, and liability for damages. The Company continuously monitors entrusted parties to ensure that personal information is handled safely.
3. Overseas Transfer of Personal Information
For smooth service operation, the Company transfers and stores certain personal information overseas as follows. Users may refuse such overseas transfers by contacting the Personal Information Protection Officer or Customer Support Center. However, refusal may limit the use of services that require overseas data transfer.
Information Transferred: [Required] Email address, Inquiry details
- Storage Location: United States (California)
- Entrusted Company: Zendesk, Inc.(privacy@zendesk.com)
- Date of Entrustment & methods: Upon inquiry registration via the support center
- Purpose of Transfer: Customer support services
- Retention Period: 3 years

Article 4 Destruction of Personal Information

1. In principle, the Company destroys users’ personal information without delay once it is no longer needed for the purposes for which it was collected.
2. If retention is required by other laws and regulations, the personal information will be securely stored for the legally designated period:
Act on the Consumer Protection, in Electronic Commerce, Etc.
- Records on the contract or subscription withdrawal, etc.: Stored for 5 years
- Records on the payment and supply of goods, etc.: Stored for 5 years
- Records on the consumer complaints or dispute settlement: Stored for 3 years
Protection of Communications Secrets Act
- Login information: 3 months
3. Personal information stored in electronic form is securely deleted using technical methods to prevent recovery or restoration. Paper records containing personal information are destroyed by shredding or incineration.

Article 5 Rights of Users & Legal Representatives and Exercising Those Rights

1. In principle, the company does not collect personal information from children under the age of 14
2. Users may exercise the following rights with respect to their personal information at any time: access, rectification, erasure, or restriction of processing.
1. Users may exercise these rights by contacting the Personal Information Protection Officer via email at privacy@wemade.com, and the Company will take necessary measures without delay. necessary measures without delay.However, if there are legitimate grounds to refuse such requests (e.g., when disclosure or correction is restricted by law), the Company will notify the user of the reason for refusal.
2. Requests for correction or deletion may be restricted when the personal information in question is required to be retained by other applicable laws.

Article 6 Actions Taken to Protect Personal Information

1. The Company takes the following measures to ensure the security and protection of personal information.
1. Administrative Actions: Establishment and implementation of internal management plans, operation of a dedicated privacy management team, and regular employee training
2. Technical Actions: Access control to personal information processing systems, installation of access control systems, encryption of personal information, and installation and regular updates of security programs.
3. Physical Actions: Access control for computer rooms, data storage rooms, and other physical facilities.
2. The Company continuously strengthens privacy protection beyond legal requirements.
1. Personal information protection activities: operating a dedicated privacy organization, providing privacy training to employees who handle personal information
2. Domestic information security certifications: ISMS

Article 7 Use of Cookies and Other Automatic Collection Devices

1. The Company uses “cookies” to provide users with personalized services by storing and retrieving usage information from time to time.
2. Cookies are small units of information that are sent by the servers used to operate the website to the users’ computer browsers, and they may also be stored in the hard disks of the users’ PC.
1. Purpose of Cookies
  - Cookies are used to maintain login sessions and to calculate visitor, session, and campaign data for website analytics, thereby providing users with more convenient services.
2. How to Allow/Block Cookies in Web Browsers
  - Microsoft Edge: Browser settings > Cookies and site permissions > Manage and delete cookies and site data
  - Chrome: Browser settings > Privacy and security > Clear browsing data
3. If you refuse to storing cookies, there may be difficulties in your use of our personalized service.

Article 8 Chief Privacy Officer & Responsible Department

1. The company appoints Chief Privacy Officer and team responsible for the processing of submitted requests to view personal information to take responsibility for the general supervision of personal information processing tasks and for the processing of user complaints and damage relief. Users may make enquiries about matters related to enquiries regarding personal information protection, processing of complaints, damage relief, and others that have occurred during users' use of the company's services to personnel responsible for the protection of personal information. The company will answer and process users’ enquiries without delay.
- Chief Privacy Officer
- Name: Yong-Gu Park, Director (Information Security Department)
- Phone : 02-3709-2000
- Email :(privacy@wemade.com)
- Responsible Department: Information Security Team
2. If you need to report or consult on other privacy infringements, please contact the following institutions.
- Personal Information Dispute Mediation Committee: 1833-6972(www.kopico.go.kr)
- Privacy Infringement Report Center: 118(privacy.kisa.or.kr)
- Supreme Prosecutor’s Office: 1301(www.spo.go.kr)
- National Police Agency: 182(ecrm.police.go.kr)

Article 9 Amendments to the Privacy Policy

This Privacy Policy shall take effect on November 14, 2025.

Any updates or changes to this Policy will be announced in advance through the Company’s website or other appropriate channels.