Last updated: May 8, 2026
DYMSTEC Co., Ltd. (the “Company,” “we,” “us” or “our”) establishes and discloses this Privacy Policy to protect the rights and freedoms of data subjects, to comply with the Personal Information Protection Act of Korea and related laws, and to handle privacy-related inquiries and complaints promptly and appropriately.
Key Privacy Information
| Category | Summary |
| Items collected | Name, company/organization, department/title, email address, telephone number, inquiry details, product interests, access logs, cookies, IP address and related technical information |
| Purposes | Inquiry handling, product and solution consultation, quotation and proposal, marketing communications where consented, Website operation, security and improvement |
| Retention | Three years after completion of inquiry handling; until withdrawal of marketing consent or two years from the last contact; three months for access logs; statutory periods where retention is required by law |
| Third-party disclosure | No third-party disclosure in principle, except where required by law, based on consent, or otherwise permitted by applicable laws |
| Children | The Website is not directed to children under 14; legal representative consent will be obtained and verified when required |
| Contact | marketing@dymstec.com |
Article 1. Purposes of Processing Personal Information
The Company processes the minimum personal information necessary for the following purposes. If the purposes of processing change, the Company will take necessary measures under applicable laws, including obtaining separate consent where required.
- Operating the Website, managing access, maintaining security and improving the Service
- Receiving and responding to inquiries regarding products, solutions, technical materials, quotations, proposals and business cooperation
- Providing customer consultation, after-sales support, pre-contract and post-contract communications and business relationship management
- Providing marketing information such as exhibitions, seminars, events, newsletters and product introductions, only where the data subject has consented
- Complying with legal obligations, responding to disputes, preventing improper use and preserving records
Article 2. Categories of Personal Information Processed and Retention Periods
The Company collects and uses personal information by purpose as set forth below. The following categories are based on a B2B corporate website and inquiry operation. Required and optional fields should be indicated in the actual Website input forms.
| Purpose/Category | Personal information processed | Retention period |
| Website inquiries and consultation | Required: name, company/organization, email address, inquiry details Optional: department/title, telephone number, country/region, product interests, attachments and personal information included in attachments | Three years after completion of inquiry handling. If a dispute or follow-up consultation continues, until the relevant reason ceases to exist |
| Product and solution consultation, quotation, proposal and business cooperation | Name, company/organization, department/title, email address, telephone number, country/region, consultation, quotation and proposal details, project name, interested products/services and transaction or contract-related records | Five years after termination of the business relationship or for the statutory retention period required by applicable laws |
| Newsletters, event invitations and marketing communications | Name, company/organization, email address, telephone number, country/region, product interests, records of consent and withdrawal | Until withdrawal of consent or two years from the last contact, whichever comes first |
| Exhibition, seminar and event lead management | Name, company/organization, department/title, email address, telephone number, country/region, business card information, consultation details and interested products/services | Two years from collection or last consultation. If it leads to a transaction or contract, five years after termination of the business relationship |
| Website operation, security and statistical analysis | IP address, access date and time, access logs, pages visited, referrer, browser type and version, operating system, device information, language settings, cookie identifiers and error logs | Access logs: three months; cookies: as set forth in the Cookie section below. Where legitimate reasons exist, such as a security incident investigation, until such reason ceases to exist |
Article 3. Statutory Retention of Records
The Company destroys personal information without delay when the retention period expires or the purpose of processing has been achieved. However, where retention is required by other laws, the relevant personal information will be stored separately from other personal information.
| Records retained | Legal basis | Retention period |
| Records on contracts or withdrawal of offers | Act on the Consumer Protection in Electronic Commerce, Etc., where applicable | 5 years |
| Records on payment and supply of goods or services | Act on the Consumer Protection in Electronic Commerce, Etc., where applicable | 5 years |
| Records on consumer complaints or dispute resolution | Act on the Consumer Protection in Electronic Commerce, Etc., where applicable | 3 years |
| Transaction, tax and accounting evidence | Framework Act on National Taxes, Corporate Tax Act and related laws | 5 years or the period required by law |
| Website access logs and communications confirmation data | Protection of Communications Secrets Act, where applicable | 3 months |
Article 4. Disclosure of Personal Information to Third Parties
The Company does not disclose personal information to third parties in principle. However, the Company may disclose personal information in accordance with applicable laws in any of the following cases:
- Where the data subject has given prior express consent
- Where disclosure is specifically required by law or is unavoidable to comply with legal obligations
- Where a public authority such as an investigative agency, court or supervisory authority requests disclosure through lawful procedures
- Where necessary to protect life, body or property and it is difficult to obtain prior consent from the data subject
Article 5. Outsourcing of Personal Information Processing
The Company may outsource certain personal information processing activities to external service providers for stable Website operation and inquiry handling. Where outsourcing occurs, the Company will specify by contract or other written means the service provider, the outsourced work, restrictions on re-outsourcing, safeguards, supervision and liability for damages, and will manage and supervise the service provider. Actual service providers and outsourced work will be disclosed in this Policy or a separate notice according to the Company’s contract status.
Article 6. Destruction of Personal Information
- Procedure: When personal information becomes unnecessary due to expiration of the retention period, achievement of the processing purpose, withdrawal of consent or other reasons, the Company selects the personal information to be destroyed under internal procedures and destroys it without delay.
- Electronic files: permanently deleted by technical methods that make restoration impossible.
- Paper documents and other media: shredded, incinerated or destroyed by other methods that make restoration difficult.
- Personal information that must be retained by law is stored and managed separately from other personal information.
Article 7. Rights of Data Subjects and Legal Representatives
A data subject may at any time exercise rights under applicable laws, including the right to request access to, correction of, deletion of, suspension of processing of, withdrawal of consent to, and transfer of personal information. Such rights may be exercised by email or in writing. After verifying the identity of the requester, the Company will take action without delay in accordance with applicable laws. Where the data subject is a child under the age of 14, the legal representative may exercise these rights.
Article 8. Processing of Personal Information of Children Under 14
The Website is not directed to children under the age of 14, and the Company does not knowingly collect personal information from children under the age of 14. Where consent is required to process personal information of a child under the age of 14, the Company will obtain and verify the consent of the child’s legal representative. If the Company becomes aware that personal information of a child under the age of 14 has been collected without legal representative consent, the Company will delete the information without delay or take other measures required by applicable laws.
Article 9. Safeguards for Personal Information
The Company takes administrative, technical and physical measures to ensure the security of personal information, including the following:
- Establishing internal management plans and managing access rights
- Minimizing personnel who handle personal information and providing employee training
- Applying access controls, password management, security programs and log management
- Encrypting or restricting access to files and documents containing personal information
- Imposing security requirements on outsourced service providers and managing and supervising them
- Restricting physical access to locations and media where personal information is stored
Article 10. Cookies and Similar Technologies
The Company may use cookies and similar technologies to operate the Website reliably, maintain security, provide user convenience and improve the Service. A cookie is a small data file stored by a website in the User’s browser.
| Cookie type | Purpose | Retention/Control |
| Essential cookies | Website access, security, session maintenance, proper operation of inquiry forms, prevention of improper use and other functions necessary to provide the Website | Until browser closure or for the minimum period necessary |
| Functional cookies | Remembering user-selected settings such as language preferences and cookie choices | Up to one year or until deleted by the User |
| Analytics cookies | Analyzing visited pages, usage flows and access statistics to improve Website quality and content. If analytics cookies are used, they will be subject to prior notice or consent procedures | Up to 13 months or the retention period configured in the relevant analytics tool |
| Marketing cookies | Providing interest-based content or analyzing advertising performance. If used by the Company, marketing cookies will be used only with separate consent or within the scope permitted by applicable laws | Until withdrawal of consent or for the period configured in the relevant tool |
Users may refuse or delete cookies through their browser settings. However, if essential cookies are restricted, some Website functions may not operate properly. Cookie settings are generally available under the following browser menus: Chrome: Settings > Privacy and security > Third-party cookies; Edge: Settings > Cookies and site permissions; Safari: Settings > Privacy.
Article 11. Cross-Border Transfer of Personal Information
The Company does not transfer personal information overseas in principle. If the Company uses overseas cloud, email, analytics or similar tools that involve cross-border transfer, the Company will notify the data subject of the transferred items, receiving country, recipient, date and method of transfer, purpose of use, retention period, method of refusal and consequences of refusal, and will obtain consent or implement safeguards required by applicable laws.
Article 12. Remedies for Infringement of Rights
A data subject may contact relevant authorities, including the Privacy Infringement Report Center, the Personal Information Dispute Mediation Committee, the Supreme Prosecutors’ Office or the Korean National Police Agency, for consultation or remedies concerning personal information infringement.
Article 13. Department Responsible for Privacy Inquiries and Complaints
The Company operates the following contact point for inquiries, complaints, remedies and rights requests concerning personal information processing:
- Responsible department: Marketing Department
- Email: marketing@dymstec.com
- Address: Kranz Techno #1308, 388 Dunchon-daero, Jungwon-gu, Seongnam-si, Gyeonggi-do 13403, Republic of Korea
Article 14. Changes to this Privacy Policy
The Company may amend this Privacy Policy to reflect changes in laws, the Service or personal information processing practices. Any changes will be posted on the Website, and material changes will be notified by reasonable means before they take effect.