Article 2 (Matters concerning processing items, etc.)
1. The Company shall only process the minimum amount of personal information necessary for the personal information retention and use period or the purpose of personal information processing agreed upon when collecting personal information from the information subject in accordance with the Personal Information Protection Act, and shall, in principle, immediately destroy the personal information when the purpose of personal information processing is achieved. However, if it is necessary to preserve the user's personal information in accordance with the Company's policies or guidelines or other relevant laws, the Company shall follow the provisions of such laws. (Article 15 (1) of the Personal Information Protection Act)
2. the processing and retention period of each personal information processed by the Company is as follows
Personal information
Customer information
Processing items
Full name, contact email
Collection Methods
Online collection, email
Processing departments
Web Development Team
Retention Rationale
Business, transactional, and sales purposes
Retention period
Semi-Persistent
Section 3 (Third Party Provision)
1. The Company shall, in principle, process the User's personal information within the scope specified in Article 1 (Purpose of Processing Personal Information) and shall not exceed the original scope or provide it to a third party without the prior consent of the User.
2. The Company may provide the personal information of the information subject to a third party in any of the following cases. In this case, the Company shall disclose the information through the Company's homepage.
- If you have data subject consent
- You processed the personal information within the scope of the purposes for which it was collected.
3. The Company shall notify the information subject of each item when consent is obtained pursuant to Paragraph 2, Item 1 or when the consent obtained is changed.
- To whom we provide personal information
- The purpose of the recipient's use of the personal information
- Items of personal information you provide
- How long the recipient of your personal information will retain and use it for
- That you have the right to refuse consent, and what, if any, penalties will result from refusing consent.
4. When providing personal information to a third party outside of Korea, the Company shall inform the information subject of the matters pursuant to each of the subparagraphs of Paragraph 3 and obtain consent, and shall not enter into a contract for the transfer of personal information overseas in violation of the Personal Information Protection Act.
Article 4 (Entrustment)
1. The Company shall post information on the Company's website when entrusting personal information processing for smooth personal information processing.
2. When entering into an entrustment contract, the Company shall specify in documents such as contracts the prohibition of processing personal information other than for the purpose of performing entrusted tasks, technical and administrative protection measures, restrictions on re-consignment, management and supervision of the entrustee, and responsibilities such as damages in accordance with Article 26 of the Personal Information Protection Act, and supervise whether the entrustee processes personal information safely.
3. The company shall revise the information on the company's website without delay if the contents of the entrusted work or the trustee change.
Article 5 (Rights and Obligations)
1. The information subject may exercise the right to access, correct, delete, or suspend the processing of personal information at any time against the Company.
2. The exercise of the rights under Paragraph 1 may be made in writing, by e-mail, etc. to the Company in accordance with Article 41 (1) of the Enforcement Decree of the Personal Information Protection Act, and the Company shall take action without delay.'
3. The exercise of the rights pursuant to Paragraph 1 may be made through an agent, such as the legal representative of the information subject or a person who has been delegated, and in this case, the right holder must submit a power of attorney in the form of Appendix No. 11 to the Enforcement Decree of the Personal Information Protection Act to the Company.
4. The rights of the information subject may be limited by Article 35 (4) and Article 37 (2) of the Personal Information Protection Act.
5. a request for correction or deletion of personal information cannot be made if the personal information is specified as the subject of collection under another law.
6. The Company shall verify whether the person making the request for access, correction, deletion, or suspension of processing in accordance with the rights of the information subject is the person or his/her authorized representative.
Article 6 (Destruction)
1. The Company shall destroy the personal information without delay when the personal information becomes unnecessary, such as the expiration of the personal information retention period or the achievement of the purpose of processing. However, this shall not apply if personal information is required to be retained in accordance with other laws and regulations.
2. the process and methods for destroying personal information are as follows
- Destruction Procedures The Company shall delete the personal information in the relevant personal information processing department as soon as the reason for destruction occurs.
- Destruction methods
The Company shall destroy personal information recorded and stored in the form of electronic files so that the records cannot be reproduced, and shall destroy personal information recorded and stored in paper documents by shredding or incineration.
Artical 7 (Safety Measures)
1. The Company shall take the following measures to ensure the safety of personal information in accordance with Article 29 of the Personal Information Protection Act and Article 30 of the Enforcement Decree.
- Regular staff training The Company provides training to employees who handle personal information at least once a year.
- Installing security programs
The Company shall install and periodically check security programs on all PCs in the company as well as personal information handlers' PCs to prevent leakage and damage of personal information due to hacking or computer viruses.
- Restrict access to personal information
The Company shall grant only minimal authorization to each handler to access only the necessary information for the systems that handle personal information.
Article 8 (Privacy Officer)
In principle, IU Solution will destroy personal information without delay when the purpose of processing personal information has been fulfilled. The procedure, deadline, and method of destruction are as follows.
1. The Company shall designate a person in charge of personal information protection as follows to take overall responsibility for the processing of personal information, and to handle complaints and remedy damages of information subjects related to the processing of personal information.
- Privacy Office
Department Name : Web Development
Tel : 010-8222-8045
Email : sales@iusolution.co.kr
2. The information subject may inquire about personal information protection related inquiries, complaints, damage control, etc. to the personal information protection officer and the department in charge, and the Company shall answer and process the inquiries of the information subject without delay.
- Who to contact for privacy questions
Article 9 (Remedies for Infringement)
1. the information subject may firstly inquire about the management of personal information to the following organizations about the Company's management of personal information, damage relief for personal information infringement, top, etc.
2. the following organizations are separate from the Company and may be contacted if you are not satisfied with the results of the Company's own privacy complaint handling, damage redress, or if you need further assistance.
- Personal Information Infringement Report Center (operated by the Korea Internet & Security Agency)
Responsibilities : Report a privacy breach, request counseling
Homepage : privacy.kis.or.kr
Phone number: 118 (without area code)
Address: Personal Information Infringement Center, 3F, 9, Jinheung-gil, Naju-si, Jeollanam-do (301-2, Light Garam-dong), (58324), South Korea
- Privacy Dispute Resolution Board
Responsibilities : Privacy Dispute Resolution, Class Action Arbitration (civil resolution)
Homepage : www.kopico.go.kr
Phone: 1833-6972 (without area code)
Address: 12th floor, Government Complex, 209 Sejong-daero, Jongno-gu, Seoul, Korea (03171)
- Public Prosecutor's Office Cyber Safety Bureau
Homepage
cyberbureau.police.go.kr
Tel
(without area code) 182
Address
(03739) 97 Tongil-ro, Seodaemun-gu, Seoul, Korea
www.spo.go.kr
02-3480-3573
By-laws
This Privacy Policy is effective as of September 6, 2024.
