PRIVACY POLICY

Last Updated: July 6, 2026

1. PRIVACY ARCHITECTURE & DISCRETION STANDARD

Royal Korea Medical ("we," "our," or "us") operates under an uncompromised privacy and security architecture specifically engineered for sovereign families, heads of state, family offices, and ultra-high-net-worth (UHNW) international individuals. This Privacy Policy governs the collection, processing, isolated segregation, and ultimate cryptographic destruction of any medical, personal, and operational feedback data provisioned to us for premium non-medical wellness curation and luxury digital concierge facilitation within the Republic of Korea.

2. DATA MINIMIZATION & ENCRYPTED INTAKE PROTOCOLS

We strictly enforce data minimization principles. We only collect the absolute minimum necessary information required to facilitate elite medical links, advanced longevity treatments, premium transport security logistics, and flagship private concierge arrangements. Authorized data collection is strictly limited to:

Clinical Records: Clinically relevant medical histories, diagnostic imaging (MRI, CT, PET scans), and laboratory reports transmitted exclusively via encrypted point-to-point networks to certified hospital partners. We do not maintain post-service copies of sensitive clinical records.

Identity & Fleet Logistics: Encrypted identity verification parameters (including government-issued passports for official entry coordination), detailed passenger manifests, exact family/party composition metrics (including age indicators explicitly required for statutory child safety car seat compliance), secure operational logistics communication logs, and cumulative baggage volume metrics. This data is processed solely to determine safe and legally compliant fleet allocation boundaries.

Smart Concierge Transactional Footprint: To facilitate our corporate advance protocol and B2B post-settlement, we temporarily process local mobility logs, delivery requests, and app-based lifestyle reservations generated through the provided Smart Concierge Device. This data is utilized strictly for the generation of the final English invoice and is subject to the absolute 14-day destruction mandate (as per Section 4).

3. CONCIERGE FEEDBACK & HISTORICAL SATISFACTION METRICS

To continually elevate the standard of elite care, we process post-service satisfaction metrics and service feedback parameters provided voluntarily by the client.

Purpose of Retention: Such data is processed exclusively to optimize, refine, and customize the luxury hospitality environment for the client's subsequent entries into South Korea, avoiding repetitive administrative friction.

Client Sovereignty Dashboard: The client retains absolute sovereignty over their historical feedback parameters. Upon request, we provide a secure, encrypted Data Management Dashboard allowing the client or their authorized family office to audit, export, or instantly execute permanent cryptographic erasure of their satisfaction metrics at any given time.

4. STRATEGIC 14-DAY DATA PURGING POLICY & STATUTORY EXCEPTIONS

To completely eliminate cross-border data vulnerability and mitigate zero-day digital exposure, we enforce a strict institutional data destruction mandate:

Automated Purging: All client pathways, intake parameters, operational transcripts, passenger manifests, multi-vehicle dispatch records, car seat verification logs, and communication histories (including digital concierge records generated via our provided smart devices) are systematically, permanently, and irreversibly purged from our active primary encrypted databases exactly fourteen (14) days following the client's official departure from the Republic of Korea.

Mandatory Statutory Isolation: Pursuant to the Act on Support for Overseas Medical Expansion and Attraction of International Patients, the Personal Information Protection Act (PIPA), and applicable financial/tax compliance regulations of the Republic of Korea, core administrative metadata required for mandatory official government reporting will be extracted, isolated from general access, and archived strictly for the duration legally enforced by South Korean statutory law. Upon the expiration of these statutory retention windows, the archived metadata is immediately destroyed via secure cryptographic erasure.

5. VOLUNTARY TESTIMONIALS & EXPRESS EXPOSURE LEVELS

Any publication of client feedback, testimonials, or experiential reviews (whether text, audio, or cinematic video formats) on our public infrastructure is strictly prohibited unless explicit, separate written consent is obtained. Clients choosing to provide a public review must explicitly designate an authorized privacy exposure tier:

Level 1 (Full Disclosure): Authorized publication of verified facial assets, organizational titles, and full names.

Level 2 (Anonymized Digital Profile): Publication of experiential text/media with facial assets blurred/obscured and identity reduced to initials and country of origin.

Level 3 (Acoustic & Subtitle Matrix): Publication limited to voice transcripts, translated subtitles, and abstract environmental silhouettes with complete elimination of biological or facial markers.

Level 4 (Strict Text Anonymization): Publication strictly restricted to text-only testimonials under generalized professional categories (e.g., "Sovereign Family Member," "UHNW Family Office, Europe").

6. LEGAL, COMPLIANCE, AND DATA CONTROLLER ENQUIRIES

Compliance Directorate: [email protected]

Corporate Communications: [email protected]

Corporate Headquarters: Rm 14, B1, 14, Bongeunsa-ro 16-gil, Gangnam-gu, Seoul, Republic of Korea (역삼동, 나우빌딩)