"Woojin Industries" (hereinafter referred to as "the Company") values your personal information and complies with the "Act on Promotion of Information and Communications Network Utilization and Information Protection."
ο This policy will be effective from : January 1, 2022
Consent for Personal Information Collection
Protection of Children's Personal Information
ο If the Company collects personal information of children under the age of 14, it will obtain the consent of the legal guardian.
ο Legal guardians of children under 14 may request to view, correct, or withdraw consent for their child's personal information. In such cases, the Company will take necessary measures without delay.
Types of Personal Information Collected
The Company collects the following personal information for purposes such as membership registration, consultation, and service applications:
ο Collection Items : Name, date of birth, gender, login ID, password, home phone number, home address, mobile phone number, e-mail, occupation, marital status, resident registration number, service usage records, access logs, cookies, IP information, payment records.
ο Method of Personal Information Collection : Website (membership registration, bulletin boards), delivery requests.
Purposes of Personal Information Collection and Use
The Company utilizes the collected personal information for the following purposes:
ο Fulfillment of contracts related to service provision and settlement of fees for service provision.
Content delivery, purchases, fee payment, delivery of goods or invoices, etc.
ο Member management
Including identity verification, personal identification, prevention of improper use of bad members, confirmation of intentions to join, age verification, confirmation of legal guardian's consent when collecting personal information of children under 14, complaints handling, and notification of important matters.
ο Utilization for marketing and advertising purposes
Such as sending advertising information, identifying access frequency, and statistics on service usage by members.
However, sensitive personal information that may infringe upon basic human rights (race and nationality, beliefs and religion, birthplace, political inclinations and criminal records, health status, and sexual life) is not collected.
Retention and Use Period for Personal Information
ο Your personal information will be discarded when the purpose of collecting and providing information is achieved, as described below:
- For member registration information, when you withdraw from membership or are expelled from membership.
- In the case of payment information, when the payment is completed or the statute of limitations for claims expires.
- For delivery information, when the goods or services are delivered. (However, an exception may be made in accordance with the provisions of laws, such as the Commercial Act, that require retention.)
Even during the retention period, we will ask for your consent if there is a need to retain the information.
Procedure and Method for Discarding Personal Information
In principle, once the purpose of collecting and using personal information has been achieved, the Company will dispose of the information without delay. The procedures and methods for disposal are as follows:
ο Procedure for Disposal
Personal information you enter for membership registration will be moved to a separate database (or paper documents, if in paper form) after achieving its purpose. This information will be stored for a certain period according to internal policies and other relevant laws (see the retention and use period), and then it will be deleted.
ο Method of Disposal
- Personal information stored electronically is deleted using technical methods that make the data irrecoverable.
Provision of Personal Information
The Company will not provide users' personal information to third parties as a general rule. However, exceptions may be made under the following circumstances:
- When users have given prior consent.
- When required by law, or when there is a request from an investigative agency according to legal procedures and methods for investigations.
Outsourcing Personal Information Processing
ο The Company may outsource the processing of personal information to improve services. When processing personal information is outsourced, users will be notified in advance.
ο In such cases, the Company will clearly stipulate compliance with personal information protection regulations, confidentiality, prohibition of third-party provision, and accident liability in the outsourcing contract.
- Outsourced Entity : [Name of delivery company]
- Outsourced Task : [Details of tasks outsourced to delivery company], e.g., product delivery
- Outsourced Entity : [Name of payment gateway company]
- Outsourced Task : [Details of tasks outsourced to payment gateway company], e.g., purchase and fee payment
Rights of Users and Legal Guardians and Methods for Exercising Rights
Users can access, correct, or request deletion of their personal information at any time. To access or correct your personal information, use the "Change Personal Information" (or "Edit Member Information") option. To request withdrawal, use "Membership Withdrawal" after going through identity verification. You may also contact us in writing, by phone, or by email, and we will take action without delay.
If you request correction of errors in your personal information, we will not use or provide the information until correction is completed. If we have already provided incorrect personal information to a third party, we will notify the third party without delay to ensure the correction is made.
Personal Information Protection Measures
The Company takes the following technical measures to secure the personal information you handle and prevent it from being lost, stolen, leaked, altered, or damaged:
ο Your personal information is protected by passwords, and important data is secured by using technology that encrypts files and transmission data or by using file locking functions (Lock) to provide additional protection.
ο The Company uses antivirus software to prevent damage caused by computer viruses. The antivirus software is updated regularly, and in the event of the sudden appearance of a virus, the Company provides it as soon as possible to prevent the infringement of personal information.
ο The Company uses security devices, such as SSL or SET, which allow secure transmission of personal information on the network.
ο To prevent personal information from being leaked due to hacking, the Company uses devices that block external intrusion and installs intrusion detection systems on each server to monitor intrusion 24 hours a day.
Installation, Operation, and Rejection of Personal Information Automatic Collection Devices
The Company operates 'cookies' that frequently save and retrieve information about you. Cookies are very small text files sent to your computer's hard disk by the server operating the Company's website.
- To analyze the frequency of visits and visiting times of members and non-members, track user preferences and interests, and use the information to target marketing and provide personalized services.
You have the option to allow or deny the installation of cookies. Therefore, you can set options in your web browser to allow all cookies, to be prompted every time a cookie is saved, or to block all cookies.
▶ Cookie Setting Rejection Method
For example, in the case of Internet Explorer): Go to Tools on the top of your web browser > Internet Options > Privacy
However, refusing the installation of cookies may result in difficulties in providing services.
Complaint Service for Personal Information
To protect customer's personal information and address any complaints related to personal information, the company has designated the following department and personal information management officer:
Personal Information Management Officer: Security Manager
Phone Number: 031-491-3636
Customers can report any complaints related to personal information protection to the personal information management officer or the relevant department while using the company's services. The company will promptly provide adequate responses to customer inquiries.
For other complaints or consultations related to personal information infringements, please contact the following organizations:
1. Personal Information Dispute Mediation Committee (www.1336.or.kr/1336)
2. Information Protection Mark Certification Committee (www.eprivacy.or.kr/02-580-0533~4)
3. Supreme Prosecutor's Office Cyber Crime Investigation Center (http://icic.sppo.go.kr/02-3480-3600)
4. National Police Agency Cyber Terror Response Center (www.ctrc.go.kr/02-392-0330)