Privacy Policy
Enforcement Date June, 12, 2023
Amended on Sep, 01, 2023
Article 1 (Personal Information Collection Items and Purpose) (Amended on Sep, 01, 2023)
The company collects the following personal information for the purpose of business support for inquiries and information exchange related to marketing, events, etc.
|
Category |
Collection Method |
Collection Items |
Collection Purpose |
|
Inquiries |
Website |
Name, Company Name, Email, Contact number |
Support for inquiries |
|
Newsletter (Marketing) |
Name, Company Name, Email |
Marketing, Events, Information sharing, etc. |
Article 2 (Consent for Collection and Use of Personal Information)
The company has established a procedure for users to provide consent for the collection and use of personal information. By giving consent, the user acknowledges that the personal information provided will be stored in the company's database and agrees to the company using the information for the purposes specified in the consent form. Users have the right to refuse consent for the collection and use of personal information, but in such cases, the provision of services may be limited.
Article 3 (Provision and Outsourcing of Personal Information to Third Parties)
The company uses the user's personal information within the scope notified for the purpose of collection and use, and does not exceed the notified scope or provide (including sharing) it to third parties, except for the following reasons:
1. When obtaining the user's consent.
2. When requested by relevant authorities for investigation purposes under applicable laws.
3. When necessary for statistical or academic research purposes, provided that the personal information is provided in a form that cannot identify specific individuals.
4. When there is a request in accordance with the procedures prescribed by other relevant laws.
Furthermore, in order to provide seamless services, we entrust the processing of personal information as follows. In accordance with relevant laws and regulations, we stipulate necessary matters in outsourcing contracts to ensure the secure management of personal information. (Amended on Sep, 01, 2023)
|
Service providers |
Scope of outsourcing or purpose of entrusted tasks |
|
A Cafe24 Corp. |
System security and operation, Marketing event planning and operation, Newsletter distribution tasks, subscriber management tasks, etc. |
|
B Stibee |
Article 4 (Retention and Destruction of Personal Information)
The user's personal information will be retained and destroyed according to the following guidelines. Unless required by relevant laws, the company follows the principle of promptly destroying the information once the purpose of collection and use has been achieved.
1. Retained Items: User information for inquiries and newsletter subscription.
2. Retention Period: Until the purpose of collection and use has been achieved.
3. Upon expiration of the retention period: The information will be promptly destroyed.
Even after the retention period mentioned above, if there is a need to continue retaining the information, we will obtain the user's consent. However, the company may retain personal information in accordance with the provisions of applicable laws if there is a need to do so under such laws.
Article 5 (Destruction Procedure and Method)
1. Personal information provided by users to the company is transferred to a separate database (or a separate filing cabinet in the case of paper-based information) after the purpose of collection and use has been achieved. It is then stored for a certain period according to internal policies and other relevant laws and regulations (refer to the retention and use period), and subsequently destroyed.
2. Personal information transferred to a separate database will not be used for purposes other than those for which it is retained, except as required by relevant laws.
3. Personal information stored in electronic file format will be permanently deleted to ensure that it cannot be recovered.
4. Personal information printed on paper will be destroyed by shredding or incineration.
Article 6 (Withdrawal of Consent for Collection, Use, and Provision of Personal Information)
All users have the right to withdraw their consent for the collection, use, and provision of personal information at any time.
Article 7 (Correction of Information)
Users have the right to request the company to access and correct their personal information if there are any errors or inaccuracies.
Article 8 (Security Measures for Personal Information)
The company implements technical, managerial, and physical measures to ensure the security of user's personal information and prevent loss, theft, leakage, alteration, or damage.
1. Technical Measures
The company complies with the standards set forth by applicable laws to securely store and transmit personal information. The company utilizes antivirus programs to prevent damage caused by computer viruses. Additionally, the antivirus programs are regularly updated, and in the event of the emergence of new viruses, the company promptly provides the necessary vaccines to prevent personal information breaches.
2. Managerial Measures
The company restricts access to personal information to a minimum number of personnel. The personnel with access are as follows:
· Individuals responsible for personal information protection and management tasks
· Other personnel who require access to personal information for business purposes.
3. Physical Measures
The company implements physical security measures, such as physical access controls like locks, to ensure the secure storage of personal information and personal information processing systems.
4. Minimization and Training of Personal Information Handling Personnel
The company conducts regular in-house training and outsourced training on personal information protection for employees who handle personal information.
Article 9 (Personal Information Protection Manager and Complaint Handling)
The company designates a person in charge to protect user's personal information and handle complaints related to personal information. In order to ensure prompt handling of opinions or complaints regarding the company's privacy policy, we will make efforts to address them promptly.
|
Categories |
Privacy Officer |
Personal Information Department |
|
Name |
In-Jae Seong |
Jinyoung Chae |
|
Division |
CMO Division |
CMO Division |
|
|
ijseong@innosim.com |
jychae@innosim.com |
Article 10 (Reporting and Counseling for Privacy Violations)
If you need to report or seek advice regarding other privacy breaches, please contact the following organizations:
(1) Personal Information Infringement Reporting Center (http://privacy.kisa.or.kr / 118)
(2) Prosecution Service (http://cybercid.spo.go.kr /1301)
(3) Cyber Safety Bureau, Korean National Police Agency (http://www.police.go.kr/www/security/cyber.jsp / 182)
Article 11 (Effective Date of the Terms)
These terms and conditions will take effect from June 12, 2023.