Privacy Policy
Privacy Policy
KimHwalanMuseenef (hereinafter referred to as the'company') is implementing the following personal information handling policy to ensure freedom of communication in the information society by actively protecting the privacy and personal information of members. The company's personal information handling policy may be changed according to changes in related laws and government guidelines and changes in the company's internal policy, and please visit us frequently to check the contents.
1. Collection method and scope of personal information
In order to use the service, the company is required to fill in the member information when registering as a member. The basic essential information that you receive when signing up includes your name, email, and contact information. In addition, we may collect optional information for better service. Other service usage records, access logs, cookies, access IP information, payment records, etc., generated during the use and processing of other services may be collected, and additional information may be requested when using specific services that require additional information. Even in this case, the information entered will not be used for purposes other than the use of the service and the purpose stated in advance.
2. Purpose and use of personal information
The purpose of the company's collection of personal information is to provide quality services and provide customized services according to individual members' preferences and needs. The company can deliver advertising information with the consent of the member according to the provision of the service, and advertisements with more useful information are selectively delivered based on information about the member's individual. Even when advertisements are posted and sent to groups under certain conditions by gender, age, and other specific conditions, the personal information of members is not provided to the individual or organization that requested the advertisement.
3. Sharing and provision of personal information
In principle, the company does not provide members' personal information to the outside. However, exceptions are made when a member consents to disclosure and provision, or when legal action is required due to violations of the Company's User Agreement or an act that causes damage to others, and when there is a request from the relevant government agency through a legitimate procedure.
4. View, correct and delete your personal information
Members of the company may view or modify their personal information at any time, and may request deletion of personal information through membership termination. You can view, modify, and delete personal information from the personal information management page on the website.
5. Period of retention and use of personal information
While the company's service is provided, the member's personal information is retained by the company and used to provide the service. In principle, after the purpose of collecting and using personal information is achieved, the information is destroyed without delay. However, the following information is retained for the specified period for the following reasons.
(1) Reasons for information retention according to the company's internal policy
Even if a member withdraws, the company keeps member information as follows to provide smooth service and prevent the use of illegal services.
1) Name, email, contact information
n for retention: Prevention of confusion in service use, dispute resolution, and cooperation in response to requests from investigative agencies
-Retention period: 1 year
2) Records of fraudulent/bad use (including personal information of fraudulent/bad users)
-Reason for preservation: Prevention of fraudulent and improper use of service and prevention of re-registration of fraudulent/bad users
-Retention period: 1 year
(2) Reasons for information retention in accordance with relevant laws
If it is necessary to preserve it in accordance with the provisions of related laws, such as the Commercial Act, the Consumer Protection Act in Electronic Commerce, etc., the company keeps the member information for a certain period specified in the related laws. In this case, the company uses the stored information only for the purpose of storage, and the retention period is as follows.
1) Records on contract or subscription withdrawal
-Reason for retention: Act on Consumer Protection in Electronic Commerce Transactions, etc.
-Retention period: 5 years
2) Records on payment and supply of goods
-Reason for retention: Act on Consumer Protection in Electronic Commerce Transactions, etc.
-Retention period: 5 years
3) Records on consumer complaints and dispute settlement
-Reason for retention: Act on Consumer Protection in Electronic Commerce Transactions, etc.
-Retention period: 3 years
4) Log record
-Reason for retention: Protection of Communications Secrets Act
-Retention period: 3 months
6. Procedures for destruction of personal information
The information entered by the member for membership registration, etc. is stored for a certain period of time and then destroyed according to the reason for information protection according to internal policies and other related laws after the purpose is achieved. Personal information printed on paper is destroyed by shredding or incineration, and personal information stored in the form of electronic files is deleted using a technical method that cannot reproduce the record.
7. Matters concerning the installation, operation and rejection of automatic personal information collection devices
The company uses'cookies' to store and find member information from time to time in order to provide individualized customized services to members. Cookies are small text files that are sent to the user's browser by the server used to operate our website and are stored on the user's computer hard disk, which identifies the user's computer but does not personally identify the user.
(1) Purpose of use such as cookies
The company uses cookies for the following purposes.
1) Analysis of access frequency and visit time of members and non-members
2) Providing targeted marketing and personalized services by identifying the company's tastes and interests, tracking traces, and understanding the degree of participation in various events and the number of visits
(2) How to reject cookie setting
Members have the option of installing cookies. Therefore, the member may allow all cookies by setting options in the web browser, check each time a cookie is saved, or refuse to save all cookies.
Example of setting method: (In the case of Internet Explorer) Tools at the top of the web browser> Internet Options> Personal Information
However, in order to access the company's homepage and use the service, cookies must be allowed, and if this is rejected, it may be difficult to use the company's services that require login.
8. Personal information manager
In order to protect the personal information of customers and to handle complaints related to personal information, the company appoints a person in charge of personal information management as follows.
Personal Information Manager [Hong Gil-dong]
Phone Number: 010-1234-5678
Email: email@domain.com
Members can report all personal information protection-related complaints arising from using the company's services to the person in charge of personal information management. The company will provide prompt and sufficient answers to the members' reports.
9. Rights of members and legal representatives and how to exercise them
Members and legal representatives can view or modify their registered personal information or the personal information of children under the age of 14 at any time, and may request termination of membership. Click'Change personal information' (or'modify member information') to view/edit personal information of members or children under the age of 14, and click'Withdrawal' to cancel membership (withdrawal of consent) to confirm identity. After deferment, you can view, correct or withdraw directly, or if you contact the person in charge of personal information management in writing, by phone or email, we will take action without delay. The Company handles personal information canceled or deleted at the request of a member or legal representative as specified in the'Period of Retention and Use of Personal Information Collected by the Company', and is processed so that it cannot be viewed or used for any other purpose.
10. Personal information protection related measures
When dealing with personal information by requesting a password from the member himself/herself, the company does its best to verify that he or she is the person in the best possible way and to ensure that the information is processed safely. The company restricts access to personal information to those who perform personal information management tasks such as the person in charge of personal information management, and those who are inevitable to handle personal information for other business purposes, and handle personal information through frequent training for employees handling personal information. There is always an emphasis on compliance with the policy. In addition to the efforts of the company as above, members must be careful not to expose personal information such as ID, password, and resident registration number on the Internet or to leak to others. If personal information such as ID and password is leaked due to the member's carelessness or negligence, the company is not responsible for this. Therefore, it is recommended to use only the member's ID and password, and to change the password frequently, and to use a number that is difficult for others to infer by mixing alphabetic characters and numbers for the password. In addition, it is recommended to always log out and close the web browser after using the service. In particular, when sharing a computer with other people or using it in a public place, such a procedure is more necessary for the security of personal information. It is important to keep in mind that personal information that you voluntarily provide through chat, bulletin board, e-mail, etc. may be used by other people differently from your intentions. Since you are responsible for maintaining the security of your login password, you should not leave your personal information in a space open to other people. In addition, in PC cafes or other public places where there are many other people in the vicinity, you should be careful not to expose personal information, keeping in mind that other people may view your computer screen while using the service.
11. Personal information related reporting and dispute settlement
If you need to report or consult about personal information infringement, please contact the Korea Information Security Agency (KISA) Personal Information Infringement Report Center. In addition, if you have suffered financial or mental damage through personal information infringement, you can apply for damage relief to the Personal Information Dispute Mediation Committee.
Personal Information Infringement Report Center (http://www.cyberprivacy.or.kr, phone 1336)
Personal Information Dispute Mediation Committee (http://www.kopico.or.kr, phone 1336)
Information Protection Mark Certification Committee (http://www.privacymark.or.kr, phone 02-580-0533)
Supreme Prosecutors' Office Internet Crime Investigation Center (http://www.spo.go.kr, phone 02-3480-3600)
National Police Agency Cyber Terror Response Center (http://www.ctrc.go.kr, phone 02-392-0330)
National Police Agency (http://www.police.go.kr)
Effective Date: January 22, 2021