Privacy Policy

New Global Certification & Testing, Inc. (the "Company") collects the following personal information to provide quote inquiry and consultation services.

· Required items: company name, contact name, email address, inquiry details

· Optional items: phone number, certification country/product information, attachments

· Automatically collected items: access IP, cookies, access logs, and the like may be generated and collected in the course of service use.

The Company uses the personal information it collects solely for the following purposes.

· Responding to and replying to quote inquiries and certification consultations

· Providing certification agency services and related guidance

· Service improvement and inquiry history management

In principle, the Company destroys personal information without delay once the purpose of its collection and use has been achieved.

· Inquiry/consultation records (name, email, phone, inquiry details): retained for 3 years after the purpose is achieved, then destroyed

· Attachments: automatically deleted 90 days from the upload date

· However, where retention is required under relevant laws, the information is retained for the applicable period.

In principle, the Company does not provide users' personal information to outside parties. The following cases, however, are exceptions.

· Where the user has given prior consent

· Where required under the provisions of law, or where an investigative agency makes a request for investigative purposes in accordance with the procedures and methods prescribed by law

To provide services smoothly, the Company outsources personal information processing tasks to external specialist providers as follows, and stipulates the necessary matters so that personal information is managed securely in accordance with relevant laws when outsourcing.

· Vercel, Inc. — website hosting and operation

· Resend, Inc. — sending inquiry reply emails

· Cloudflare, Inc. — attachment storage

· Upstash, Inc. — temporary processing of access information to prevent abuse (spam/excessive requests)

If the content of the outsourced work or the outsourcee changes, the Company will disclose it without delay through this policy.

To provide services, the Company outsources (stores) personal information processing tasks to overseas operators as follows. Users may refuse the overseas transfer by not submitting an inquiry, in which case use of the inquiry receipt and reply services may be restricted.

· Recipients: Vercel, Inc. / Resend, Inc. / Cloudflare, Inc. / Upstash, Inc.

· Items transferred: name, email, phone, inquiry details, attachments, access IP

· Countries of transfer: the United States and others (Upstash uses a Japan region)

· Timing and method of transfer: transmission via the information and communications network upon inquiry submission

· Purpose of use: hosting, email delivery, attachment storage, abuse prevention

· Retention/use period: per the "Retention and Use Period" above (attachments 90 days, otherwise 3 years)

Users may at any time request to access, correct, delete, or suspend the processing of their personal information.

These rights may be exercised through the contact below, and the Company will act without delay.

The Company destroys personal information whose retention period has elapsed or whose processing purpose has been achieved as follows.

· Electronic files: permanently deleted by technical methods that make recovery impossible

· Paper documents: destroyed by shredding or incineration

The Company takes the following measures to ensure the security of personal information.

· Administrative measures: minimizing the number of personnel handling personal information and managing access privileges

· Technical measures: encryption of data transmission sections (HTTPS/TLS), access control and retention of access logs, abuse prevention measures

· Securing safety measures in accordance with relevant laws when outsourcing or transferring overseas

The Company uses cookies and analytics tools to analyze service use and improve quality.

· Cookies: small pieces of information stored in the user's browser, used to analyze service usage status.

· Analytics tools in use: Google Analytics (GA4), Vercel Analytics

· How to opt out: Users may refuse cookie storage in their web browser settings. Google Analytics can be opted out of by installing the "Google Analytics Opt-out Browser Add-on." However, refusing cookie storage may cause inconvenience in using some services.

The Company designates a Personal Information Protection Officer as follows to oversee personal information processing tasks and to handle user complaints and remedy harm.

· Company: New Global Certification & Testing, Inc.

· Officer: Gyewook Lee

· Address: J-805, Building C, 4 Gyeongin-ro 54-gil, Guro-gu, Seoul (Guro-dong, Guro Distribution Complex)

· Email: ngct.lab@gmail.com

Data subjects may apply to the following agencies for dispute resolution, consultation, and the like in order to obtain remedy for personal information infringement.

· Personal Information Dispute Mediation Committee: 1833-6972 (no area code) / www.kopico.go.kr

· Personal Information Infringement Report Center (KISA): 118 (no area code) / privacy.kisa.or.kr

· Supreme Prosecutors' Office Cyber Investigation Division: 1301 (no area code) / www.spo.go.kr

· National Police Agency Cyber Investigation Bureau: 182 (no area code) / ecrm.police.go.kr

This Privacy Policy may have content added, deleted, or amended in accordance with changes in laws, policies, or security technology, and any changes will be announced through the website.