inquiry 글쓰기

Senong Tech (hereinafter referred to as "the Company") has established the following Personal Information Processing Policy in accordance with relevant laws and regulations to protect the personal information and rights of customers using the internet site operated by the Company (hereinafter referred to as "the Site") and to handle related concerns smoothly. The Company will announce any revisions to this Personal Information Processing Policy by making a notice on the website (or individual notice).

Article 1. Purpose of Collection and Use of Personal Information

The Company collects personal information for the following purposes. The collected personal information will not be used for purposes other than those stated, and if the purpose of use changes, prior consent will be sought.

Handling Complaints

The purpose of confirming a complainant’s identity, checking complaint details, contacting for fact-finding, notifying the result of handling, etc.

Service Offering

The purpose of offering services, content, customized services, identity verification, age verification, and other inputs

Marketing and Advertising

The purpose of developing new services and providing customized services, offering information on events and advertisements and participation opportunities, providing services and advertisements based on demographic characteristics, verifying service effectiveness, understanding access frequency, or compiling statistics on members’ service use, etc.

Article 2. Items of the Personal Information to Collect and Collection Methods Items

Items of the Personal Information to Collect

① Form Mail Inquiry

[Required Items] Name, Email, Mobile Phone Number

② Information Automatically Generated and Collected During Service Use or Business Processing

[Required Items] Access IP Address, Cookies, Service Usage Records, Access Logs
[Optional Items] Responses to each item in customer satisfaction survey

③ Others

• When additionally collecting the personal information not collected during the membership registration for the use of additional or customized services or in event application process, the Company will notify users of these items and obtain separate consent before processing.

Personal Information Collection Methods

• Collection through online means such as the subscription at the website or through inquiry boards, offline collection through telephone, written forms in the Company, etc., collection through emails, event applications, collection through the tools to collect the generated information provided by verification institutions or partners.

Article 3. Retention and Use Period of Personal Information

• 1.The Company retains and uses personal information within the agreed period upon collection from users. However, if retention is required by relevant laws, it will be retained according to those laws.
• 2.For members, the retention and use period of personal information is from the conclusion of the service agreement (membership registration) to the termination of the service agreement (including withdrawal requests or automatic withdrawal). Except as specified by other laws or upon customer request, the Company will destroy the personal information of members who do not reuse it for the period defined by law (1 year). However, members will be notified by email, phone, or similar methods about the destruction of their personal information 30 days before the expiry of the period.
• 3.The periods of personal information retention according to relevant laws are as follows
  • <Retention information/Retention period>
    Records related to labels and advertising: 6 months
    Computer communication or internet access data: 3 months
• 4.Even if not required by relevant laws, the Company may retain personal information for preventing significant loss or for criminal investigations and litigation, according to company policy. Only the minimum period and items necessary for achieving this purpose will be retained.
  • <Retention information/Retention period>
    Information of members who are disqualified according to the terms of use: 5 years

Article 4. Provision of Personal Information to Third Parties

• 1.. In principle, the Company does not provide personal information to external parties. Exceptions are made in cases of special legal provisions or when it is unavoidable to comply with legal obligations. When providing personal information to third parties for purposes other than those stated, the Company requests that the recipient handle the personal information securely, including imposing certain restrictions on its use and ensuring necessary measures for security.
  • ①If users have consented in advance
  • ②If there are provisions based on laws such as Act on Promotion of Information and Communications Network Utilization and Information Protection, etc., Telecommunications Business Act, and Credit Information Use and Protection Act
  • ③If personal information is offered for statistical purposes, academic research, market research, information provision purpose, and notification emails in a form that does not identify specific individuals
  • ④If information subjects or their legal representatives are unable to express their will, or if prior consent cannot be obtained due to unknown address, and if necessary for the urgent protection of the life, body, or property of an information subject or a third party
  • ⑤If required for criminal investigations, prosecution, court proceedings, or law enforcement, following proper legal procedures
• 2.In cases where personal information is provided to third parties, it will be done with separate consent.
• 3.It is possible to request the Company to withdraw consent on third-party provision. Personal information will be immediately destroyed upon withdrawal of consent.

Article 5. Procedures and Methods for Personal Information Destruction

The Company will destroy personal information once the purpose of collection and use is achieved or the retention period expires. The procedures and methods for destruction are as follows. However, exceptions apply if retention is required by other laws.

Destruction Procedure

Information entered by users is moved to a separate database (or separate documents for paper) after achieving its purpose, and will be destroyed after being stored for a certain period or immediately according to internal policies and relevant laws. In this case, the personal information moved to the database is not used for purposes other than those specified by law.

Destruction Deadline

Personal information will be destroyed within 5 business days after the end of the retention period or from the date it is deemed unnecessary, such as after achievement of the purpose of processing, discontinuation of the service, or business termination. For information on children under 14, if the legal representative refuses or consent is not confirmed, the personal information will be destroyed within 5 business days from the collection date

Destruction Method

Electronic files are destroyed in technical methods that make the data unrecoverable. Paper documents containing personal information are shredded or incinerated.

Article 6. Rights of Users and Legal Representatives and How to Exercise Them

• 1.Users can withdraw consent for the collection, use, or provision of personal information at any time. Upon withdrawal of consent, the Company will promptly destroy the collected personal information and take necessary measures.
• 2.Users may request access to, provision of, or correction of the following items regarding their personal information:
  • ①The personal information held by the Company
  • ②The status of use and provision of personal information to third parties
  • ③The status of consent for collection, use, and provision of personal information
• 3.If users request correction or deletion of personal information due to errors, the Company will not use or provide that personal information until the correction or deletion is completed.
• 4.Users can request access to personal information through the department listed below. The Company will make efforts to handle such requests promptly.
• <Contact for Personal Information Access>

  Table of Inquiries of Personal Information Access

  Email	jsyang20@hanmail.net

Article 7. Installation and Operation of Automatic Collection Devices and Refusal

• 1.The Company uses cookies of storing and loading user information frequently in order to identify users, maintain login status, and provide personalized services. Cookies are small pieces of information sent by the web server to the user's web browser and are stored on the user's computer hard drive.
• 2.Users have the option to accept or refuse cookies. Users can adjust their web browser settings to accept all cookies, refuse all cookies, or receive a notification whenever cookies are stored. However, refusing to store cookies may limit access to some personalized services provided by the Company.
  • The method of refusing cookies is as follows. (Internet Explorer)
    Select [Tools] menu > [Internet Options] > [Privacy] tab > Choose the desired option under [Advanced].

Article 8. Measures to Ensure the Security of Personal Information

The Company implements the following technical, administrative, and physical measures to ensure the security of personal information, in accordance with the Article 29 of the Personal Information Protection Act and the Article 28 of the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc.

Personal Information Handling

The Company minimizes, designates, and limits the staff handling personal information in order to implement measures to manage personal information.

Regular Internal Audits

The Company conducts regular (quarterly) internal audits for security of personal information processing.

Establishment and Implementation of Internal Management Plans

The Company establishes and implements internal management plans for the secure processing of personal information.

Encryption of Personal Information

The Company encrypts passwords to store and manage personal information so that only the individual can access it. Regarding important data, files and transmission data are encrypted or locked using separate security functions.

Technical Measures Against Hacking, etc.

The Company installs and regularly updates security programs to prevent personal information leakage and damage from hacking or viruses, installs systems in areas with restricted access, and conducts technical and physical monitoring and blocking.

Access Restrictions to Personal Information

The Company implements measures to control access to personal information processing database systems through permissions, changes, and deletions, and uses intrusion prevention systems to block unauthorized external access.

Access Record Retention and Prevention of Tampering

The Company retains access records for at least 6 months and uses security features to prevent tampering, theft, or loss.

Use of Locking Devices for Document Security

The Company stores documents and backup storage media containing personal information in secure locations with locking devices.

Control of Unauthorized Access

The Company establishes and operates procedures for controlling access to physical storage locations of personal information.

Personal Information Validity Period System

The Company will destroy personal information of users who do not use services for an extended period (1 year) from August 18, 2015, in accordance with Act on Promotion of Information and Communications Network Utilization and Information Protection, etc. and relevant laws, and will notify users of related content 30 days before membership withdrawal.

Article 9. Personal Information Protection Officer

Users can contact the Personal Information Protection Manager and the relevant department for inquiries, complaints, or remedy regarding the personal information protection issues arising during the use of the Company’s service. The Company will respond to and address such inquiries.

[Personal Information Protection Manager]

Name: Park Seong-ryul

Email jsyang20@hanmail.net

Article 10. Remedies for Rights Infringement

Users can seek remedies, consultations, or report infringements to the following institutions (if dissatisfied with the Company’s handling of personal information or if further assistance is needed):

Personal Information Protection Comprehensive Support Portal (operated by the Ministry of the Interior and Safety)

• Website: http://www.privacy.go.kr
• Phone: 02-403-0073

Personal Information Infringement Reporting Center (operated by Korea Internet & Security Agency)

• Website: http://privacy.kisa.or.kr
• Phone: 118 (without a regional code)

Personal Information Dispute Mediation Committee (operated by Korea Internet & Security Agency)

• Website: http://www.kopico.go.kr
• Phone: 1833-6972

Cyber Bureau of the National Police Agency

• Website: http://cyberbureau.police.go.kr
• Phone: 182 (without a regional code)

Article 11. Notice of Changes to the Personal Information Processing Policy

This Personal Information Processing Policy may be revised due to government policies, laws, or company needs. Changes, additions, deletions, and corrections will be announced on the website or via email at least 7 days before the implementation of the changes. If it is difficult to make notice in advance, the notice should be announced as fast as possible. For additions, deletions and corrections of significant matters, such as the purpose of personal information collection and third-party provision, notice will be given at least 30 days in advance.