Realblox, Inc. recognizes the importance of personal information, complies with the Act on the Protection of Personal Information (the "Personal Information Protection Act"), and strives for its proper handling and protection in accordance with the following privacy policy (the "Privacy Policy"). In addition, unless otherwise specified in this Privacy Policy, the definitions of terms used in this Privacy Policy shall be as set forth in the Personal Information Protection Act.

1. Definition of Personal Information

In this Privacy Policy, personal information refers to personal information as defined by Article 2, Paragraph 1 of the Personal Information Protection Act(*).

2. Purpose of Use of Personal Information

The Company use personal information for the following purposes;

• To provide blockchain games, marketplace operations, and other services (hereinafter collectively referred to as "our services")

• To respond to guidance, inquiries, etc. regarding our services

• To inform you about our products, services, etc.

• To respond to acts that violate our terms, policies, etc. regarding our services (hereinafter referred to as "Terms, etc.")

• To notify you of changes to our Terms and Conditions, etc. regarding our Services

• To improve our Services, develop new services, etc.

• To develop and operate our services, etc.

• To compile statistical data in a form that does not identify individuals in connection with our services.

• For other purposes incidental to the above purposes of use.

3. Change in the Purpose of Using Personal Information

The Company may change the purpose of using personal information to the extent that it is reasonably recognized as relevant, and in the event of a change, the individual who is the subject of the personal information (hereinafter referred to as the "person") will be notified and disclosed.

4. Restrictions on the Use of Personal Information

The Company shall not handle personal information beyond the scope necessary to achieve the purpose of use without obtaining the consent of the individual, except in cases permitted by the Personal Information Protection Act or other laws and regulations. However, this shall not apply in the following cases;

• Based on laws and regulations

• When it is necessary to protect the life, body, or property of a person and it is difficult to obtain the person's consent; or

• It is particularly necessary for the improvement of public health or the healthy upbringing of children, and it is difficult to obtain their consent.

• When it is necessary to cooperate with a national organization or local government, or a person entrusted by them, in carrying out the duties prescribed by laws and regulations, and obtaining the consent of the individual may hinder the performance of those duties.

5. Lawful Acquisition of Personal Information

5.1 The Company shall acquire personal information legally and shall not acquire it by false or other fraudulent means.

5.2 The Company shall not acquire personal information that requires consideration (as defined in Article 2, Paragraph 3 of the Personal Information Protection Act) without obtaining the consent of the individual in advance, except in the following cases.

• In the case of any of the subparagraphs of Paragraph 4.

• The personal information requiring consideration has been disclosed by the person, a national organization, a local government, a person listed in each of the subparagraphs of Article 76, Paragraph 1 of the Personal Information Protection Act, or any other person prescribed by the Personal Information Protection Commissioner's rules.

• The person obtains personal information requiring consideration by witnessing or photographing the person himself/herself, which is obvious from its appearance.

• If you receive personal information requiring consideration from a third party, and such provision by the third party falls under any of the subparagraphs of Paragraph 7.1.

5.3 When the Company receives personal information from a third party, it shall confirm each of the following items as stipulated by the Personal Information Protection Commissioner's Regulations. However, except in cases where the provision of such personal information by such third party falls under any of the subparagraphs of Paragraph 4 or any of the subparagraphs of Paragraph 7.1, the Company shall ensure that;

• The name or name and address of such third party, or, in the case of a legal entity, its representative (or, in the case of an organization other than a legal entity, the name of its representative or custodian if a representative or custodian has been designated)

• How the personal information was acquired by such third party.

6. Safety Management of Personal Information

The Company shall exercise necessary and appropriate supervision over its employees to ensure that personal information is managed securely against risks such as loss, destruction, alteration, and leakage. In addition, if the Company outsources all or part of the handling of personal information, it shall exercise necessary and appropriate supervision to ensure that personal information is managed securely by the outsourced party.

7. Provision to Third Parties

7.1 The Company shall not provide personal information to a third party without obtaining the consent of the individual in advance, except in cases falling under any of the following subparagraphs of Paragraph 4. However, the provision of personal information to a third party shall not apply in the following cases.

• Providing personal information based on the consignment of all or part of the handling of personal information to the extent necessary to achieve the purpose of use.

• When personal information is provided pursuant to business succession due to merger or other reasons.

7.2 Notwithstanding the provisions of Paragraph 7.1, in addition to excluding cases falling under any of the subparagraphs of Paragraph 4, if the Company provides personal information to a third party in a foreign country (excluding countries designated by the Personal Information Protection Commissioner's Rules based on Article 24 of the Personal Information Protection Act), it shall obtain the consent of the individual in advance to the effect that he/she acknowledges the provision to the third party in the foreign country.

7.3 When the Company provides personal information to a third party, it shall create and preserve records in accordance with Article 25 of the Personal Information Protection Act.

7.4 When the Company receives personal information from a third party, it shall conduct the necessary verification in accordance with Article 26 of the Personal Information Protection Act, and create and preserve records regarding such verification.

8. Disclosure of Personal Information

If the Company receives a request from you to disclose your personal information in accordance with the provisions of the Personal Information Protection Act, it shall disclose it to you without delay after confirming that it is your request (if the personal information does not exist, it shall notify you to that effect). (If such personal information does not exist, we will notify you to that effect). However, this is not the case if the Company is not obligated to disclose under the Personal Information Protection Act and other laws and regulations.

9. Correction of Personal Information

If the Company receives a request from an individual for the correction, addition, or deletion of personal information (hereinafter referred to as "correction, etc.") in accordance with the provisions of the Personal Information Protection Act on the grounds that the personal information is not true, it shall, after confirming that it is the request of the individual, conduct the necessary investigation without delay to the extent necessary to achieve the purpose of use, and shall, based on the results, correct the contents of the personal information and notify the individual of the purpose (if the Company decides not to correct, etc., it shall notify the individual of the purpose). However, this shall not apply if the Company is not obligated to make corrections, etc. under the Personal Information Protection Act or other laws and regulations.

10. Suspension of Use of Personal Information

If the Company is requested by the individual to suspend or delete the use of personal information in accordance with the provisions of the Personal Information Protection Act on the grounds that the personal information is being handled beyond the scope of the purpose of use disclosed in advance or was obtained by fraud or other unauthorized means (hereinafter referred to as "suspension of use, etc."), or, if the Company is requested to suspend the provision of personal information (hereinafter referred to as "suspension of provision, etc.") in accordance with the provisions of the Personal Information Protection Act on the grounds that the personal information is being provided to a third party without the consent of the person, if it is found that there is a reason for the request, after confirming that it is the person's request, the Company will suspend the use or provision of personal information without delay and notify the person of the fact. However, this shall not apply if the Company is not obligated to suspend the use or provision of personal information under the Personal Information Protection Act or other laws.

11. Handling of Pseudonymously Processed Information

11.1 When the Company creates pseudonymously processed information (meaning as stipulated in Article 2, Paragraph 9 of the Personal Information Protection Act, and limited to constituting an pseudonymously processed information database as stipulated in Article 2, Paragraph 10 of the same Act), it processes personal information in accordance with the standards set forth in the Personal Information Protection Commissioner's Rules.

11.2 When the Company creates anonymous processed information, it shall take measures for safety management in accordance with the standards set forth in the Personal Information Protection Commissioner's Rules.

11.3 When the Company creates pseudonymously processed information, it shall disclose the items of information about individuals contained in the pseudonymously processed information as prescribed by the Personal Information Protection Commissioner's Regulations.

11.4 When the Company provides pseudonymously processed information (including those created by the Company and those provided by a third party, unless otherwise specified hereinafter) to a third party, it shall disclose the items of information about individuals included in the pseudonymously processed information provided to the third party in advance and the method of providing the information, as prescribed by the Personal Information Protection Commissioner's Rules, and shall specify to the third party that the information provided is pseudonymously processed information.

11.5 In handling pseudonymously processed information, the Company shall not (1) compare the pseudonymously processed information with other information in order to identify individuals regarding the personal information used to create the pseudonymously processed information, and (2) obtain information regarding the processing method used in accordance with the provisions of Article 36 (1) of the Personal Information Protection Act, such as the description or personal identification code deleted from such personal information (in the case of (2), only for such pseudonymously processed information provided by a third party).

11.6 The Company shall take necessary and appropriate measures for the safe management of pseudonymously processed information, the handling of complaints regarding the creation and other handling of pseudonymously processed information, and other measures necessary to ensure the proper handling of pseudonymously processed information, and shall endeavor to publicize the contents of such measures.

12. Use of Cookies and Other Technologies

Our Services may use cookies and similar technologies. These technologies help us understand how our Services are used and improve them, and if you wish to disable cookies, you can do so by changing the settings on your web browser. However, if you disable cookies, you may not be able to use some features of our Services.

13. Inquiry

For applications for disclosure, opinions, questions, complaints, and other inquiries regarding the handling of personal information, please contact us at the following address.

〒11111

201, 2-4, Jangam-gil, Idong-myeon, Pocheon-si, Gyeonggi-do, Republic of Korea

E-mail ： help@dimetime.io (Reception hours are from 10:00 to 18:00 on weekdays)

14. Continuous Improvement

The Company shall review its operations regarding the handling of personal information from time to time and may revise this Privacy Policy for any reason at any time without prior notice to users.

Enacted as of October 5, 2023