Privacy Policy of RunningPet

“HealthOne Co., Ltd.” (referred to as "we" and "our" and "us") understands and respects your desire to maintain your privacy. It is our priority to maintain your privacy in all of your dealings with us, including through your use of the RunningPet Exercise-2-Earn running app (“App”).

We may in the course of providing our services to you be required to collect your personal information.

This Privacy Policy is intended to explain how we and our related entities will collect your personal information and protect your privacy.

We are headquartered in Republic of Korea and our services are provided to you by us. This policy was written in English. To the extent a translated version conflicts with the English version, the English version controls.

Unless indicated otherwise, this Privacy Policy does not apply to third party products or services or the practices of companies that we do not own or control, including other companies you might interact with on or through our services.

We will always act in accordance with the Personal information protection laws, such as the Personal Information Protection Act and the Information and Communications Network Act when dealing with your personal information. As a global business, we also comply with various jurisdiction-specific privacy provisions outlined in this Privacy Policy.

What information is covered under this policy?

This Privacy Policy covers your personal information. Personal information is information or an opinion, whether true or not, and whether recorded in a material form or not, about an identified individual, or an individual who is reasonably identifiable. All personal information received in connection with our business is subject to strict rules of confidentiality.

Common examples include your name, username, password, IP address, unique device identifiers, gender, signature, address, telephone number, email, date of birth, bank account and digital wallet details,photos and videos of you, other identification credentials and biographical details, and commentary or opinions about you.

We also collect information about your location and physical movements in order for the App to function properly and monitor and verify forms of eligible movement. You may turn location monitoring on and off from time to time using the settings of your operating system of your mobile device but, if you disable this functionality, we will not be able to collect information relating to your step-count and GPS location which will prevent tracking and/or conversion of your movement into PKBs.

Personal information that we may collect from you

We may collect some or all of the following types of personal information:

1. information that you give us through your dealings with us;

2. information that we may collect from you; and

3. information that we may receive from you from other third party sources.

By agreeing to this Privacy Policy, you consent to the fact that you are aware that we are collecting your personal information and disclosing it as required by us and in accordance with the Personal information protection laws and any applicable Korean Privacy Principles.

Personal Information Provided by You. The personal information that we collect depends on the context of your interactions with us and the Services, the choices you make, and the products and features you use. The personal information we collect may include the following:

• device identity

• location/background location

Sensitive Information. When necessary, with your consent or as otherwise permitted by applicable law, we process the following categories of sensitive information:

• health data

• location/background location

Application Data. If you use our application(s), we also may collect the following information if you choose to provide us with access or permission:

• Geolocation Information. We may request access or permission to track location-based information from your mobile device, either continuously or while you are using our mobile application(s), to provide certain location-based services. If you wish to change our access or permissions, you may do so in your device's settings.

• Mobile Device Access. We may request access or permission to certain features from your mobile device, including your mobile device's sensors,location,and other features. If you wish to change our access or permissions, you may do so in your device's settings.

• Mobile Device Data. We automatically collect device information (such as your mobile device ID, model, and manufacturer), operating system, version information and system configuration information, device and application identification numbers, browser type and version, hardware model Internet service provider and/or mobile carrier, and Internet Protocol (IP) address (or proxy server). If you are using our application(s), we may also collect information about the phone network associated with your mobile device, your mobile device’s operating system or platform, the type of mobile device you use, your mobile device’s unique device ID, and information about the features of our application(s) you accessed.

This information is primarily needed to maintain the security and operation of our application(s), for troubleshooting, and for our internal analytics and reporting purposes.

All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.

How personal information is collected

"Personal information" is data that identifies, relates to, describes, can be used to contact, or could reasonably be linked directly or indirectly to you. For the purposes of this Privacy Policy, there is no meaningful distinction between the terms "personal information" and "personal data".

You may choose not to provide some of the personal information described above. Please note, however, that some of our services require some personal information to operate, so if you choose not to provide the personal information necessary to operate and provide you with a particular service or feature of that service, you may not be able to use that service or feature.

Information that you give us

We may collect your personal information directly from our contact with you. This may include by you completing forms or parts of our website, Social Media, App and/or other software and/or mobile applications, or by you contacting us via the email, telephone, through Social Media and other similar functions either directly through our website or the App or through third party host websites, in person, through various marketing channels or competitions either directly through our website or the App or through third party host websites, and surveys.

You understand that any personal information that you provide to us must be accurate and up to date. We will assume this to be the case.

Information that we collect about you

In this Privacy Policy "Social Media" means social media networking sites of any kind or nature including but not limited to web or internet based or mobile telephonic devices or medium such as facebook, twitter, Instagram and LinkedIn which enable the creation and exchange of user generated content.

Our website, Social Media, App and/or other software and/or mobile applications may automatically collect the following information about you each time you visit or otherwise use our website, Social Media, App and/or other software and/or mobile applications:

1. technical information including but not limited to the Internet Protocol Address used to connect your device to the internet, the internet browser and version that you are using when accessing our website, Social Media, App or other software and/or mobile applications, any additional plug-ins that you are using, and your device's operating system and platform; and

2. information about the time and date you accessed our website, Social Media, App or other software and/or mobile applications, and what you accessed on our website, Social Media, App or other software and/or mobile applications. This includes links that you clicked on, what content you accessed, how long you accessed that content for, whether you downloaded any content, whether supplied by us or downloaded from a third party host, and how you navigated to and from our website, Social Media, App or other software and/or mobile applications to other sites, apps or other pages hosted by us.

Sensitive information

Throughout the course of collecting your personal information, we may collect sensitive information about you. Sensitive information includes:

1.health information about an individual;or biometric information that is to be used for the purpose of automated biometric verification or biometric identification; or biometric template.

If we do collect any of your sensitive information, we will only collect it in accordance with Korean Privacy Principles. This means that we will only collect this information with your consent and for reasons that are reasonably necessary or otherwise related to the provision of our services.

Where you consent to our collection of your sensitive information, you also consent to us using that sensitive information for the purpose/s for which it was collected, including its disclosure to third parties.

How we use your personal information

You consent to the disclosure of your personal information to any of our related entities.

You consent to our collection of your personal information and disclosing it to third parties where necessary and for the purposes for which it was collected.

This may include:

1. providing our services;

2. verifying your physical movement and location and issuing RNP tokens on the basis of this verified data;

3. investigating and/or preventing suspected fraud or other criminal activities or misuse of our services, including the collection and disclosure of user location and movement data;

4. where we collect or disclose information that is or relates to the Internet Protocol Address used to connect your device to the internet, for the purpose of fraud detection and management of the integrity of the RunningPet game system and other services. This may include detecting when users are cheating the RunningPet game system, and for handling accounts we suspect are stolen or have otherwise been compromised. This information helps us verify whether the account or associated assets belong to a particular user;

5. where information is or relates to system version information of your device, or the make and model of your device, for the purpose of our compatibility assessments with our software versions and other aspects of our services;

6. operating the RunningPet Shop;

7. investigating disputes between players;

8. communicate with you, including to inform you of updates to the App, RunningPet website, our Terms of Use and/or this Privacy Policy;

9. authenticating your financial account information or processing the transfer of digital assets;

10. notifying you about any changes to our products, website, App and/or other software and/or mobile applications, brand or services offered;

11. seeking your opinion and feedback on any of our services, including for the purposes of product improvement and customization, website/software improvement and personalization and other general services;

12. for consumer engagement and/or customer service purposes, including but not limited to identifying the effectiveness of advertising, allowing you to participate on website viral features such as sharing website content and other community features (for example, blogs); analyzing the usage of, and improve our services;

13. for other general services such as website/software security, maintenance, identification of fraud or errors, internal accounting and administration, and for any other purpose that we are required or permitted to do by law; and

14. managing our relationships with you and our other customers.

Certain of your personal data may be shared with other players of the App as part of the normal operation of our services. Additionally, we may, from time to time, expand or withdraw our business which may involve the transfer of certain of our divisions or assets to other parties, and the data we store and use, where relevant, may be transferred to such third parties. From time to time we may also transfer the data we store and use to locations outside Republic of Korea, some of which may have different data protection laws to Republic of Korea.

In addition we may utilize overseas IT services (including software, platforms and infrastructure), such as data storage facilities or other IT infrastructure. In such cases, we may own or control such overseas infrastructure or we may have entered into contractual arrangements with third party service providers to assist us with providing our services to you.

As we utilize cross border IT services and platforms which can be accessed from various countries via an internet connection, it is not always practicable to know where your information may be held.

Legal obligations to disclose

We may be required to disclose your personal information for the purposes for which it was collected and also subject to our legal obligations:

1. as required by law;

2. to any person where necessary or desirable in connection with our provision of services; and

3. on a confidential basis to our external service providers and advisors.

To be clear, you consent to our disclosure of your personal information to any of our business partners, suppliers, subcontractors or the like, advertisers and other advertising networks, analytics and search engine providers and other third parties provided the disclosure of your personal information is for the purpose or ancillary to the services that we or these third parties offer you and for the purposes the information was originally collected.

You understand that we are authorized to disclose your personal information to third parties if we buy or sell any business or assets, including our business, if we are under a duty to disclose your information, or if the disclosure of your personal information is necessary for us to conduct an investigation into any unlawful activity that we know or suspect has or may be engaged in.

You consent to the disclosure of all information necessary for our company to comply with any relevant reporting obligations (if any) pursuant to the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth).

We will take all reasonable steps to ensure that any overseas recipient of your personal information does not willingly or knowingly breach the Korean Privacy Principles in relation to your personal information.

How we store your personal information

We maintain commercially reasonable technical, administrative, and physical security measures designed to protect your information from loss, misuse, unauthorized access, disclosure, alteration, and destruction.

When your financial account or digital wallet information is being transmitted to our services or through our services, it will be protected by cryptographic protocols. We may use third party payment processors that are the controllers of your information. Our contracts with third parties that receive your information require them to keep it secure and confidential.

However, we cannot guarantee that transmissions of your information will always be secure or that unauthorized third parties will never be able to defeat the security measures taken by us or our third party service providers. Except to the extent that liability cannot be excluded or limited due to applicable law, we assume no liability or responsibility for disclosure of your information due to errors in transmission, unauthorized third party access, or other causes beyond our control.

We will only keep your information for as long as reasonably necessary to fulfill the purposes for which your personal information was originally collected.

We will delete your information after a reasonable time. You may be required to re-enter your personal information if it has been deleted.

You agree and acknowledge that your personal information may be stored at or transferred within Korea or a destination outside of Korea. This will allow staff operating outside of Australia (whether employed by us or by a third party engaged by us or otherwise authorized under this Privacy Policy to access your personal information) to process your information for the purposes of providing you with our services.

We will take all reasonable steps and precautions to ensure that any transmission of your personal information via the internet is secure. However, we cannot guarantee the security of any data transmitted to our website and you agree and acknowledge that any such transmissions are at your own risk.

Once we receive your information, we take reasonable steps to protect your personal information. This may include storing any information on a secure server and employing strict procedures and security features to protect your personal information from any unauthorized recipients and to prevent unauthorized access to the same. We may also store your personal information in physical form.

All our employees with access to your information will be held to the confidentiality obligations as set out in this Privacy Policy.

Your rights

We have designated the following persons as the Chief Privacy Officer and Personal Information Manager to remain responsible for responding to user inquiries regarding personal information and resolving any related complaints.

Chief Privacy Officer Name : Anger Jung Affiliation : Data Protection&Privacy Position : CPO Email : privacy@runningpet.io

If you need to report or consult on other privacy infringements, please contact the following institutions.

• Privacy Infringement Report Center (privacy.kisa.or.kr / Phone no. 118)

• Cyber Crime Investigation Unit, Supreme Prosecutor’s Office (www.spo.go.kr / Phone no. 1301)

• Cyber Bureau of Investigation, National Police Agency (police.go.kr / Phone no. 182)

If we cannot provide you with access, we will write to you and provide you with the reasons why we are unable to provide you with access.

You have the right to request that we do not disclose your personal information (for example, for marketing purposes). You can exercise your rights by unchecking the relevant check boxes on our website and/or App and/or other mobile applications when you provide us with your personal information, or by writing to us at the above address.

You may choose to opt out of receiving any further correspondence from us by emailing us at the above email address.

Jurisdiction-specific provisions

Through our website, Social Media, App and/or other software and/or mobile applications, we provide services to users throughout the world. We are primarily bound by the Personal information protection laws, such as the Personal Information Protection Act and the Information and Communications Network Act and we will manage your personal information pursuant to these laws.

The purpose of the following data protection information is to provide you with an understandable, transparent and concise explanation of how we intend to process your personal data. However, should you require further explanations relating to our data protection or wish to exercise any of your rights, please do not hesitate to contact our Privacy Officer at privacy@runningpet.io .

We recognize the below rights which you enjoy under the applicable data protection law with respect to your personal data:

1. Right to be informed: You have the right to be informed about the collection and use of your personal data. This information is set out in the terms of our Privacy Policy.

2. Right of access: You may request information from us at any time as to whether we have stored your personal data and which personal data it has stored. We are required to provide this information to you free of charge.

3. Right to rectification: If your personal data stored by us is inaccurate or incomplete, you have the right to demand at any time that we correct the information.

4. Right to erasure: You have the right to demand that we erase your personal data if and to the extent that the data is no longer needed for the purposes for which it was collected or if the data is processed on the basis of your consent and you have opted to revoke your consent. In such cases, we must cease processing your personal data and remove that data from our IT systems and databases.

You do not have a right to erasure if:

• The data may not be deleted due to a statutory obligation or must be processed due to a statutory obligation.

• The processing of data is necessary for the establishment, exercise or defence of legal claims.

1. Right to restriction of processing: You have the right to demand that we restrict the processing of your personal data.

2. Right to object to processing: If your data is processed by us, you may object at any time to processing by us. You may assert any and all of the rights of data subjects described above against us by addressing your specific requests by contacting our Privacy Officer via privacy@runningpet.io .

Complaints

If you are concerned about a possible interference with your privacy or about the potential misuse of your personal information, please contact us at the above email address.

We take all complaints very seriously. It is our policy to handle complaints in a timely, effective, fair and consistent manner.

Privacy Policy updates

This Privacy Policy was last updated in July 2022.

We reserve the right to make changes to this Privacy Policy at any time. We encourage you to regularly review this Privacy Policy to make sure you are aware of any changes and how your information may be used.