1. Purpose of processing personal information processes personal information for the following purposes, and does not use it for purposes other than the following purposes.
– Confirmation of customer’s intention to join, identification/authentication according to the provision of services to customers, maintenance and management of membership, etc.
2. Processing and retention period of personal information
① ‘SongulSongul’ retains personal information agreed upon when collecting personal information from the information subject or handles and retains personal information within the period of use or retention of personal information according to laws and regulations.
② Specific personal information processing and retention periods are as follows.
☞ With reference to the examples below, the retention period for personal information handling tasks and personal information handling tasks, related laws and regulations, and grounds are
described.
(Example)- Customer registration and management: Until the service use contract or membership subscription is canceled
– Contract, subscription withdrawal, payment, goods supply record in e-commerce: 5 years
3. Provision of personal information to third parties
‘SongulSongul’ does not provide personal information to third parties except in cases falling under Article 17 of the Personal Information Protection Act, such as the separate consent of the information subject and special provisions of the law.
4. Rights and obligations of information subjects and how to exercise them , users can exercise the following rights as personal information subjects.
① The information subject can exercise the following personal information protection rights at any time with respect to ('SongulSongul').
- Request to read personal information
- Request for correction in case of errors, etc.
- Request for deletion
- Request to stop processing
- Create items of personal information to be processed
② ‘SongulSongul’ handles the following personal information items.
– Required items: password, email
– Optional items: None
5. Destruction of personal information(‘SongulSongul’), in principle, destroys the personal information without delay when the purpose of processing personal information is achieved. The procedures, deadlines and methods of destruction are as follows.
- Destruction procedure
The information entered by the user is transferred to a separate DB (separate document in the case of paper) after the purpose is achieved and stored for a certain period in accordance with internal policies and other related laws or immediately destroyed. At this time, the personal information transferred to the DB will not
be used for any other purpose unless it is in accordance with the law.
- Deadline
If the retention period of the personal information has elapsed, theuser's personal information shall be stored within 5 days from the end of the retention period, when the personal information becomes unnecessary, such as achieving the purpose of processing personal information, abolishing the service, or terminating the business. The personal information is destroyed within 5 days from the date the processing is deemed unnecessary.
6. Measures to ensure the safety of personal information (‘SongulSongul’)is taking the following technical/administrative and physical measures necessary to ensure safety in accordance with Article 29 of the Personal Information Protection Act.
7. Minimization and training of personnel handling personal information
We are implementing measures to manage personal information by designating employees who handle personal information and limiting them to the person in charge.
8. Conduct regular self-audits
To ensure the stability of personal information handling, we conduct regular (quarterly) self-audits.
9. Establishment and implementation of internal management plan
We have established and implemented an internal management plan for safe handling of personal information.
10. Encryption of personal information
The user's personal information is stored and managed with an encrypted password, so only the user can know it. For important data, a separate security function is used, such as encrypting files and transmission data or using a file lock function.
11. Technical measures against hacking
'SongulSongul' installs a security program to prevent leakage and damage of personal information caused by hacking or computer viruses, periodically updates and inspects, installs a system in an area where access is controlled from outside, monitors and blocks technically/physically, and there is.
12. Restricting access to personal information
We take necessary measures to control access to personal information by granting, changing, and canceling access rights to the database system that processes personal information, and use an intrusion prevention system to control unauthorized access from outside.
13. Storage of access records and prevention of forgery
The records of access to the personal information processing system are kept and managed for at least six months, and security functions are used to prevent forgery, theft, or loss of access records.
15. Changes to the Privacy Policy
① This personal information processing policy is effective from the effective date, and if there are additions, deletions, or corrections of changes in accordance with laws and policies, we will notify you through a notice 7 days before the enforcement of the changes.
Addendum 1
1. (Effective Date) These Terms and Conditions are effective from
May 1, 2020.