(i) Information which a customer filled in on relevant application forms, etc. and other information regarding a customer which is provided to us (including but not limited to, name, age, birthday, address, telephone number, E-mail address and other contact information, place of employment, family, residence status, code numbers and expiration date of the identification documents, nationality, period of stay, status of residence, etc. and if any amendment to such information is reported, those information after such amendment);

(ii) A customer’s name, age, date of birth, address, phone number, email address and other contact information, place of employment, occupation, assets, debts, income and other relevant information provided to us by our business partner or other entity in accordance with the customer’s consent to such provision;

(iii) Information about the state of use of our services and details of any contract with us, including but not limited to, application date, contract date, product names, contract amount, number of payments and information on transactions with merchants;

(iv) Outstanding amount and status of monthly repayments after the commencement of payments; 

(v)  A customer’s assets, debts, income and expenditure declared by the customer and information collected by us about the customer’s credit transaction history and the status of the customer’s past payments;

(vi) Information on current and past validity (availability) of the phone number provided by a customer and other relevant information;

(vii) Information set forth in materials such the identification documents, etc. which are required to be verified pursuant to the Act on Prevention of Transfer of Criminal Proceeds and guidelines, etc. related to such law, and information set forth in an income certificate, etc. which was submitted to us by a customer, etc.;

(viii) New address, place of employment, phone number and other types of contact information collected by us or our outsourcing contractor, the resident record, a certified copy of the family register or the abridged
family register or other relevant information about a member or other similar party that is lawfully provided to us;

(ix) Official gazette, telephone directories and other publicly available information; 

(x) Information regarding a customer’s online application activities, IP address, Internet service provider, Cookies, Application ID and any other information relating to the customer’s behavior when filing an online application, including devices and software (including, but not limited to, operating system and application software) used for the online application, the communication environment and status during the application
process, such as time spent filing-out an application;

(xi) The image of customer's face, image of customer’s identity verification documents, and customer’s location information provided to us by our service provider in accordance with the customer’s consent; and

(xii) Other information collected by us as a result of a customer’s declaration or inquiry (including audio information obtained from the recording of our conversation with the customer).

To perform the following activities in connection with our credit card-related business and such other businesses:

-  Delivery of sales and marketing messages relating to our businesses or those of any of our affiliates, merchants or business partners via post, telephone, email or other methods;

-  Sales and solicitation of our financial products and services and other similar products and services as well as those of our affiliates, merchants or business partners; and

- Market research, compilation of statistics and product development.

(i) Items of personal information listed in items (i),(ii), (iii), (iv), (v), (vi), (ix) and (xii) of Section (1) above; and

(ii) Information on referred persons provided by a customer in our member referral program.

To provide non-life, life and mutual insurance from insurance companies and mutual insurance cooperatives that engage us as their agency, services incidental or related to such insurance and other services in our insurance agency business.

The following items of personal information provided to us by a policyholder and the insured through the designated procedures:

(i) Customer’s name, age, date of birth, gender, relationship with the policyholder or the insured, assets, debts, income and other relevant information stated by the customer in an application form or other document when making the application or described in a submitted document or other document, the purpose of the transaction and information provided by the customer pursuant to the terms and conditions of membership and such other
rules;

(ii) Matters to be declared, whether the insured lives with the policyholder or separately and other relevant information;

(iii) Name of the place of employment, occupation, phone number of the place of employment and other relevant information of a customer;

(iv) Address, home phone number, email address, insurance period, policy number, insured amount and other relevant information of a policyholder;

(v) A customer’s name, age, date of birth, address, phone number, email address, place of employment, occupation, assets, debts, income and other relevant information provided to us by our business partner or other
entity in accordance with the customer’s consent to such provision;

(vi) Information on current and past validity (availability) of the phone number provided by a customer and other relevant information;

(vii) Information collected by or made known to us as a result of an action taken by a customer, including but not limited to, an inquiry made through the customer’s visit to our office, phone call, email, inquiry form or other method (including video and records of phone calls); and

(viii) Official gazette, telephone directories and other publicly available information.

- To provide information to the relevant transportation, accommodation and other similar service providers and travel agents (if required) for the purpose of arranging a trip at the request of a customer or otherwise taking necessary actions in our travel business; and
- To provide information to the relevant service providers for the purpose of providing services incidental to our credit card (such as making reservation at a restaurant or other similar facility and use of points) at the request of a customer.

The following items of personal information for which we have obtained consent for the provision:
(i) Items of personal information listed in item (i) of Section (1) above;
(ii) Date when a member joined our membership, category, membership number and expiry date of the credit card issued and any changes to the membership number and expiry date;
(iii) Details of a member’s card number being invalid (excluding the reason therefor);
(iv) Details of a member losing membership qualification (excluding the reason therefor);
(v) Results of the screening of the application for a credit card (excluding the reason therefor); and
(vi) Detailed information about card transactions of a cardmember, including dates and amount of transactions, names of the stores where the card was used and products purchased, information about the terms and conditions of the contract and information about incidental services.

(i) Items of personal information listed in item (i) of Section (1) above;
(ii) Application date, contract date, product name, contract amount, number of payments and information about transactions with merchants relating to the agreement between the cardmember and us; and
(iii) Other information collected by us as a result of declaration or inquiry by a member or other similar party (including audio information obtained from the recording of our conversation with the member or other similar party).

If a cardmember or other similar party is the representative of a merchant or a merchant:

- To ensure that the cardmember or other similar party performs their obligations stipulated in the terms of use of the credit card and to take necessary measures pursuant to the said terms of use; and

- To ensure that the merchant performs its obligations stipulated in the merchant agreement and to take necessary measures pursuant to the said merchant agreement. (We may use a combination of items of personal information listed in the right column of this section for the abovementioned purposes).