② The Company manages and supervises the entrusted entity to ensure compliance with technical and administrative protection measures, as well as other relevant laws and regulations related to personal data, and prohibits them from processing the data for purposes beyond the scope specified.
③ In the event of a change in the content of the consigned processing or the entrusted company, the Company will promptly disclose such changes through this privacy policy.
④ The technical and administrative protection measures of cloud services shall comply with the policies of the cloud service provider. The cloud service provider shall solely manage the physical aspect of the outsourced personal data and shall not access it.
⑤ The data subject may choose to refuse the transfer of their personal data by contacting the Privacy Officer or the relevant department of the Company. However, please note that refusal to transfer personal data may result in limited access to the Company's relevant services.

​​​

Article 5. Personal Data Destruction Procedure and Method

① When personal data becomes obsolete, such as when the retention period expires or the processing purpose has been achieved, the Company shall dispose of the personal data promptly.
② In cases where personal data needs to be retained despite the expiration of the agreed-upon retention period or the achievement of the processing purpose due to other laws, it will be transferred to a separate database (DB) or stored in a different location.
③ The following outlines the procedure and method for the destruction of personal data

1) Procedure: Information entered by a data subject shall be transferred to a separate database (or a separate document if provided in hard copy) once the intended purpose has been achieved, and stored for a certain period in accordance with internal policies and other related laws. Otherwise, it will be immediately deleted. At this time, the personal information transferred to the database shall not be used for any other purpose, except as required by law.

2) Method: Any information in the form of electronic files shall be deleted through a technical method that makes the records unrecoverable. Personal information printed in hard copy shall be shredded or incinerated.

​

Article 6. Rights and Duties of Data Subjects and Exercise of Rights

① The data subject may exercise the following privacy-related rights directly or indirectly through their legal representative with the Company at any time

1) The right to receive information about the processing of personal data.
2) The right to determine the extent of consent for the processing of personal data.
3) The right to verify the processing of personal data and request access to (including obtaining copies of) and the transfer of personal data.
4) The right to request the suspension, correction, or deletion of personal data processing.
5) The right to seek compensation for damages caused by the processing of personal data through prompt and fair procedures.
6) The right to object to automated decisions based on personal data processing and request an explanation

② You can exercise your rights under Paragraph 1 and withdraw your consent by contacting the Company's privacy department via email (sales_ai@supremainc.com).
③ The data subject may exercise their rights either directly or indirectly through their legal representative or an authorized agent. In such cases, a letter of authorization is required.
④ Notwithstanding the provisions of Paragraph 1, access to personal data and the right to correction may be restricted when

1) It poses a serious threat to the life, body, property, or rights of the data subject or a third party;
2) It significantly disrupts the proper operation of the service provider; or
3) It violates other laws, etc.

⑤ The Company does not generally collect personal data from individuals under the age of 16. However, if it becomes necessary to collect personal data from individuals under the age of 16, the Company will comply with the consent requirements and other criteria mandated by applicable laws after obtaining the consent of their legal guardian

​

Article 7. Measures to Ensure the Safety of Personal Data

The Company takes the following administrative, technical, and physical measures to safeguard personal data.

1) Administrative measures: Establishment and implementation of information security regulations and privacy control policy, operation of a dedicated organization, and regular training for employees.
2) Technical measures: Access control and authentication for personal data processing systems, installation, and operation of access control systems and security programs, encryption of personal data, encrypted transmission, etc.
3) Physical measures: Access control for computer rooms, etc. 

​

Article 8. Installation, Operation, and Rejection of Automatic Personal Data Collection Devices

① The Company may use cookies, which have the following characteristics, to provide individualized customized services to users

1) Cookies are small pieces of information sent by the website's server to the user's computer browser.
2) Cookies are used to store and retrieve usage histories of website visitors.
3) Cookies may be stored on users' PC hard drives.

② The Company uses these cookies to recognize users on its website(s) and remember their previous choices for default settings, including language preferences and location. Both first-party and third-party cookies may be used in combination. For detailed information about cookie usage, please refer to our Cookie Policy.
③ Users have the option to configure their web browsers to allow all cookies, request permission before saving cookies, or refuse all cookies. However, it is important to note that rejecting cookies may lead to limitations and issues in the use of our services, and the Company does not assume responsibility for any resulting restrictions.
④ How to install, enable, or reject cookies

​

Windows 10 Internet Explorer 11

- ​Select the Tools button in Internet Explorer ▶ Select Internet Options ▶ Select the Privacy tab ▶ Advanced selection in settings

  ▶ Choose to block or allow cookies

​

Microsoft Edge 

- PC

Select Menu at the bottom right of the web browser [ ••• ] ▶ Settings [ ⚙️ ]

▶ Select [Personal Information, Search and Service] from the left menu 

    Select whether to prevent tracking and the level in the ‘Tracking Prevention’ section.

▶ In the ‘Tracking Protection’ section, select whether to always use “Strict” Tracking Protection when browsing InPrivate

▶ In the ‘Personal Information’ section, click “Do Not Track Request” Select whether or not to “Send”

※ Existing collected cookies can be deleted from [Select items to delete] in the ‘ Clear browsing data ’ section.

- Mobile 

Select Menu at the bottom right of the web browser [ ≡ ] ▶ Settings [ ⚙️ ]

▶ Select [Personal Information Protection and Security] from the left menu

▶ Select [ Site Settings ] in the ‘ Personal Information ’ section

▶ Go to [ Third -party cookies ] in the ‘ Content ’ section and select whether to allow third -party cookies.

▶ Go to [ Tracking Prevention ] in the ‘ Security ’ section and select whether to prevent tracking and the level.

※ Existing collected cookies can be deleted from [Clear Search Data] in the ‘ Personal Information ’ section.

​

Chrome

- PC /  Mobile 

Select [ ⁝ ] from the menu at the top right of the web browser ▶ Settings [ ⚙️ ]

▶ [Personal Select [ Information protection and security]

▶ Go to [ Third Party Cookies ] and select whether to allow cookies.

※ Existing collected cookies can be deleted in [Delete Internet Usage History].

 ​

Safari​

- Mac OS 

Select [Preferences] from [Safari] in the top left menu bar of MacOS

▶ In the [Preferences] window, go to [Privacy Protection] and select whether to allow cookies.

​- iOS

[Settings] ▶ Select [Safari] from the app list ▶ Select whether to allow cookies in [Privacy & Security]