[Privacy Policy] The Korea Women's Football Federation (hereinafter "Federation") values the personal information of its users and complies with the Personal Information Protection Act and other relevant laws. The Federation provides the following Privacy Policy regarding the use of its website. 1. Purpose of Processing Personal Information The Federation provides most services to non-members as well; however, for the smooth operation of certain features (event applications, inquiries, fan communications, etc.), the Federation obtains consent for the collection and use of personal information during the membership registration process. Members have the right to refuse consent, in which case the use of member services may be restricted. 2. Items of Personal Information Collected and Used a. Purpose of collection: Identity verification, member identification, and service provision b. Items collected: Name, date of birth, email address, password, gender, mobile phone number c. Collection method: Website membership registration, event applications, and inquiry submissions 3. Retention and Use Period of Personal Information a. Retention period: Until membership withdrawal b. Exception: If preservation is required by applicable laws, the relevant laws shall apply 4. Provision of Personal Information to Third Parties In principle, the Federation does not provide personal information to external parties, and may only do so exceptionally in the following cases: a. When user consent has been obtained b. When required by law ※ If necessary, details of third-party provision for entrusted or affiliated service provision will be separately notified on the Federation's website. 5. Entrustment of Personal Information Processing The Federation entrusts personal information processing as follows for smooth service provision: - Entrusted company: [Company Name] - Entrusted tasks: Website and system maintenance - Retention and use period: Until termination of the entrustment contract 6. Measures to Ensure the Security of Personal Information The Federation implements the following measures for the safe processing of personal information: a. Establishment and implementation of internal management plans b. Minimization of personal information access rights and training c. Retention of access records and prevention of falsification/alteration d. Application of encryption technology e. Security measures against external intrusions such as hacking f. Physical access control 7. Personal Information Protection Officer The Federation designates a Personal Information Protection Officer and personnel responsible for overseeing personal information-related tasks. - Privacy Officer: [Han Jae-woong / 02-730-3037] - Privacy Manager: [Jo Yun-na / same as above] 8. Destruction of Personal Information a. Reason for destruction: Upon expiration of the retention period or achievement of the processing purpose b. Destruction method: - Electronic files: Deleted using technically irrecoverable methods - Printed materials: Shredded or incinerated 9. Rights and Obligations of Data Subjects and How to Exercise Them ① Data subjects (or legal representatives if under 14 years of age) may exercise the following rights against the Federation at any time: - Request to access personal information - Request to correct personal information - Request to delete personal information - Request to suspend processing of personal information ② Rights under Paragraph 1 may be exercised by submitting a written request in accordance with Annex Form No. 8 of the Enforcement Rules of the Personal Information Protection Act via written correspondence, email, fax, or the Federation's inquiry page. The Federation will take action without delay. ③ If a data subject requests correction or deletion of errors in personal information, the Federation will not use or provide that personal information to third parties until the processing is complete. ④ Rights under Paragraph 1 may also be exercised through a legal representative or an authorized agent of the data subject. In such cases, a power of attorney in accordance with Annex Form No. 11 of the Enforcement Rules of the Personal Information Protection Act must be submitted. ⑤ Requests to access personal information or suspend processing may be restricted pursuant to Article 35(5) and Article 37(2) of the Personal Information Protection Act. ⑥ Requests to correct or delete personal information may be restricted if such information is designated as a collection target under other laws. ⑦ When a right is requested as above, the Federation verifies that the requester is the data subject or a duly authorized representative. 10. Methods for Remedying Infringement of Rights If you need relief or consultation due to personal information infringement, you may contact the following agencies: - Personal Information Infringement Report Center (Korea Internet & Security Agency) ☎ 118 / privacy.kisa.or.kr - Personal Information Dispute Mediation Committee ☎ 1833-6972 / www.kopico.go.kr - Supreme Prosecutors' Office Cyber Crime Investigation Unit ☎ 02-3480-3571 / www.spo.go.kr - National Police Agency Cyber Crime Reporting System ☎ 182 / ecrm.police.go.kr 11. Changes to the Privacy Policy This policy shall take effect from ○ ○, 2026, and any changes will be announced through the website. ※ Previous privacy policies can be found in [the relevant bulletin board or archive on the Federation's website].