Privacy Policy
Article 1 Purpose of Personal Information Processing
The company shall process personal information for the purposes described below. The personal information being processed will not be used for purposes other than the purposes described below. If the purpose of use changes, the company will take the necessary measures such as receiving separate consent in accordance with Article 18 of the Personal Information Protection Act.
1. Website Membership Registration and Management
Personal information is processed for the purpose of confirmation of intent to sign up for membership, personal identification and authentication according to the provision of membership services, maintenance and management of membership qualification, personal identification according to the implementation of a limited real-name verification system, prevention of service misuse, confirmation of legal guardian’s consent when processing the personal information of children under 14 years of age, various notices and notifications, and handling of grievances.
2. Provision of Goods or Services
Personal information is processed for the purpose of delivery of goods, provision of services, sending of contracts and bills, provision of contents, provision of customized services, self-verification, age certification, bill payment and settlement, and debt collection.
3. Grievance Handling
Personal information is processed for the purpose of identity confirmation of the civil petitioner, confirmation of complaints, contacting and notification for fact-finding, and notification of processed results.
Article 2 Processing of Personal Information & Retention Period
① The company retains personal information according to the law and processes and possesses personal information within the period of retaining and using personal information for which consent has been received during the use period or when collecting personal information from the information subject.
② The period of processing and retaining each personal information is as follows:
1. Website Membership Registration and Management: Until the withdrawal of membership from business/group websites. In case of any of the following reasons, however, the aforesaid period is until the end of the relevant reason:
1) In case investigation or inquiry due to the violation of the relevant laws and regulations is in progress: Until the end of the investigation or inquiry
2) When bonds and debt relations due to use of the website remain: Until the settlement of the relevant bond and debt relations
2 Provision of Goods or Services
1) Records on transactions such as marks, advertisements, and contents of the contracts and execution according to the Act on Consumer Protection in Electronic Commerce
- Records on marks and advertisement: June
- Records of cancellation of contract or order, payment, supply of goods, etc.: 5 years
- Records on consumer complaints or resolution of disputes: 3 years
2) Storage of communication confirmation data in accordance with Article 41 of the Protection of Communications Secrets Act
- Date of telecommunications by subscribers, time when the telecommunications commence and end, subscriber number of the other party, frequency of use, and data on tracing the location of transmitter station: 1 year
- Computer communications, Internet log record data, data on tracing the location of connectors: 3 months Article 3 Provision of Personal Information to a Third Party
Article 3 Provision of Personal Information to a Third Party
① The company processes the personal information of the information subject only within the scope specified in Article 1 (Purpose of Personal Information Processing) and provides the personal information to a third party only in cases relevant to Article 17 of the Personal Information Protection Act such as consent by the information subject, special regulation of the law, etc
② The company is providing the following personal information to a third party:
- Party to which personal information is provided:
- Purpose of using the personal information of the party being provided with the information:
- Provided personal information items:
- Period of retention and use by the party provided with the personal information:
Article 4 Entrustment of Personal Information Processing
① The company is entrusting the handling of personal information as follows to process personal information smoothly:
1. Operation of phone consulting center
- Entrusted party (contractor): OOO CS Center
- Details of entrusted tasks: Answering phone consulting inquiries, information on department and staff, etc
2 Operation of after-sales services
- Entrusted party contractor: OOO Electronics
- Details of entrusted work provision of after-sales services regarding products for customers
② When signing an entrustment agreement, the company specifies the details of responsibilities such as prevention of personal information processing for purposes other than performing the entrusted work, technical and managerial safeguards, limitation of re-entrustment, management and supervision of the entrusted person, and compensation for damages in accordance with Article 26 of the Personal Information Protection Act on the agreement and supervises whether the entrusted person is safely processing personal information.
③ In case the details of the entrusted work or entrusted person change, the company discloses this through this privacy policy without delay.
제5조(이용자 및 법정대리인의 권리와 그 행사 방법)
Article 5 Rights of the User and Legal Representative and Method of Exercising the Rights Thereof
1. Request to access personal information
2. Request for correction of error if any
3. Request for erasure
4. Request for suspension of processing
② Rights can be exercised under paragraph 1 in writing, via phone, e-mail, or fax, and the company will take measures regarding this without delay.
③ In case the information subject requests the correction of an error in personal information or erasure thereof, the company neither uses nor provides the relevant personal information until the correction or erasure is completed.
④ Rights can be exercised under paragraph 1 through a legal representative of the information subject or a representative including a delegated person. In this case, the power of attorney in attached form 11 of the Enforcement Regulations of the Personal Information Protection Act must be submitted.
⑤ The information subject must not infringe upon the personal information or privacy of another person that the company is processing due to a violation of the relevant Act and subordinate statute such as the Personal Information Protection Act.
Article 6 Personal Information Items Processed
The company is processing the following personal information items:
1. Website Membership Registration and Management
Required items
Optional items
2. Provision of Goods or Services
Required items
Optional items
3. The following personal information items can be automatically generated and collected during the use of Internet services:
IP address, cookies, MAC address, service usage record, visit history, bad user record, etc
Article 7 Destruction of Personal Information
① When personal information becomes unnecessary due to the expiration of the personal information retention period and because the purpose of processing has been achieved, the company destroys the relevant personal information.
② In case the personal information must be continuously preserved in accordance with other laws and regulations despite the expiration of the period of personal information retention for which consent is obtained from the information subject or even though the purpose of personal information processing has been achieved, the company moves the relevant personal information to a separate DB or preserves the information in a different storage location.
③ The procedure and method for destroying personal information are as follows:
1. Destruction Procedure
The company selects the personal information for which the reason for destruction has occurred and destroys the personal information with the approval of the company’s personal information protection officer.
2. Destruction Method
The company destroys personal information recorded and stored in electronic file format by using low-level format and destroys personal information recorded and stored on paper documents by shredding or incineration.
Article 8 Measures for Ensuring the Safety of Personal Information
The company takes the following measures to ensure the safety of personal information:
1. Managerial measures: Establishment and implementation of internal management plan, periodic employee training, etc.
2. Technical measures: Management of rights for accessing the personal information processing system, installation of access control system, encryption of unique identification information, installation of security program
3. Physical measures: Control of access to data processing room, data storage room, etc.
Article 9 Installation, Operation, and Rejection of Automatic Personal Information Collection Device
① The company uses cookies that store and frequently retrieve usage information to provide personalized services to users.
② Cookies are a small amount of information sent by the server used in operating a website (http) to the user’s computer browser and also stored in the hard disk in the user’s computer.
A. Purpose of using cookies: They are used to provide optimized information to the user by identifying visitation and usage patterns for each service and websites visited by the user, popular search words, secure access status, etc.
B. Installation, operation, and rejection of cookies: Storage of cookies can be rejected through the option setting of Tools > Internet Options > Personal Information menu on top of the web browser.
C. If storage of cookies is rejected, however, there may be difficulty in using customized services.
Article 10 Personal Information Protection Officer
① The company assumes responsibility for general work regarding personal information processing and designates a personal information protection officer as follows to process complaints of information subjects and relief of damages related to the processing of personal information:
▶ Personal Information Protection Officer
Name OOO
Title OOO
Contact
※ It connects to the department in charge of personal information protection.
▶ Department in charge of personal information protection
Department name OOO team
Person in charge OOO
Contact
② The information subject can contact the personal information protection officer and department in charge regarding inquiries related to personal information protection that arise while using the company’s services or business, complaint processing, relief of damages, etc. The company will reply to and process the information subject’s inquiries without delay.
Article 11 Request for Access to Personal Information
The information subject can request access to personal information in accordance with Article 35 of the Personal Information Protection Act. The company will make efforts to process promptly the information subject’s request for access to personal information.
▶ Department for receiving and processing requests for access to personal information
Department name OOO
Person in charge OOO
Contact
Article 12 Measures for Remedying Rights Violation
The information subject can make an inquiry about relief of damage and consulting regarding the infringement of personal information to the following organizations:
▶ Personal Information Infringement Reporting Center operated by the Korea Internet & Security Agency
- Related duties Reporting of personal information infringement, request for consultation
- Website privacy.kisa.or.kr
- Phone 118 without area code
- Address Personal Information Infringement Reporting Center, 3rd floor, Jinheung-gil 9, Bitgaram-dong Naju City, Jeonnam Province, Republic of Korea 58324
▶ Personal Information Dispute Mediation Committee
- Related duties Request for mediation of personal information disputes, mediation of collective disputes, civil settlement
- Website www.kopico.go.kr
- Phone 1833-6972 without area code
- Address 4th floor, Government Complex, Seoul 209 Sejongdae-ro, Jongno-gu, Seoul, Republic of Korea 03171
▶ Supreme Prosecutors’ Office Cybercrime Investigation Division +82 2-3480-3573 www.spo.go.kr
▶ Korean National Police Agency Cyber Bureau 182 http://cyberbureau.police.go.kr
Article 13 Implementation and Change of Personal Information Processing Policy ;
This personal information processing policy applies from month date 20XX.