|
|
|
|
|
Privacy Policy
Evermade (refer to as "company") adheres to the following laws related to information network system encouragement of use and information protection, such as「Personal information protection act」, 「Protections of communications secrets act」, 「Telecommunications business act」, laws in which service provider has to follow, and is striving for the protection of user interest by deciding the privacy policy following the relevant laws. This privacy policy could change frequently due to changes in relevant laws and regulations or company regulations, and the content and the reason for change is notified through connected screen in case of the company making changes.
This privacy policy is applied to service provided by the company and the contents are as follows.
1. Items and the method of collecting personal information
2. Collection and purpose of personal information
3. Sharing and providing of personal information
4. Commission of information processing
5. Retaining and using period of personal information
6. Discarding process and method of personal information
7. Rights and exercising methods of users and legal representatives
8. Installing of automated collection device of personal information/information about management and refusal
9. Technical/managerial/physical protection policies of personal information
10. Contact information of personal information protection supervisor
11. Obligation to notification
12. Others
1. Items and the method of collecting personal information
A. Items of collecting personal information
(1) For customer consultation, and providing of various services, information equivalent to the following items are collected.
- Membership account, name, email, OS, device identification number, service use record, cookie, payment record, fare information, promotion/event participation record and product delivery information, IP address
(2) The following information could be collected when using external platform based service.
- Google: Member identifier information, name, email
(3) In case where identity verification is required for age confirming or following relevant laws, CI is processed through verified institution.
B. Method of collecting personal information
(1) Collected by logging in to the app service
(2) Collected through separate agreement procedure for promotions or events
(3) Automatically collected through platform in an alliance relationship with the company in terms of service providing
(4) Collected after voluntary providing from the user or after request when responding to customers during service registration and use
C. Refusal to collecting-using personal information.
Users could refuse to collecting and using personal information above. However, by doing so utilizing some parts or the whole service would be difficult.
2. Collection and purpose of personal information
The company does not reveal collected personal information without the user's consent, and the collected personal information are not used in any purpose excluding the following content below.
A. Executing agreement of service providing and calculating service providing fees
Providing contents, notifying event prize winning, product delivery or delivery of claim, payment of purchase and fees, collecting fees (in case where membership registration and agreement procedure is processed through mobile platform, some parts of the items above belongs to the roles executed in the mobile platform above)
B. Protecting membership
Identity verification following membership service use, identity distinguishing, bad member (members that experienced cancellation of agreement, or in restricted use due to violation of terms of use)
C. Application to new service development and marketing
Providing of new service development and customized service, service providing and advertisement following demographic characteristics, verification of service effectiveness, providing of event or advertisement information and opportunities for participation, statistics on service use of members, providing of promotions/events service
3. Sharing and providing of personal information
The company uses personal information of users within the range notified in the 2."collection of personal information and purpose of use", and as a principle does not use exceeding the range or expose personal information outside without the consent of users.
(1) In case of user agreeing to exposure or providing earlier
(2) In case of special law regulations such as 「Act on real name financial transactions and guarantee of secrecy」, 「Use and protection of credit information act」, 「Electronic communication fundamental law」, 「Telecommunication business act」, 「Local tax law」, 「Consumer protection law」, 「Bank of korea act」, 「Criminal procedure law」, or in case of requests from court, investigation institutions or other administrative institutions following the legal procedure and methods with the purpose of investigation
(3) In case of providing by processing information for the purpose of statistics, academic researches or market investigation, in a way in which a specific individual cannot be identified despite integration with other information
4. Commission of information processing
The company, in order for professional customer support and improving service, is managing by commissioning personal information seen below, and is regulating the required items for commissioned personal information to be securely protecting following relevant laws. The content for processing personal information, institutions for commission, and the content for commission is equivalent to the information below.
Commission company : Smart Finder By Evermade app service development and maintenance agency
Content of commission : Program development and management of service
Period of retainment and use of personal information : until membership withdrawal/agreement withdrawal or termination of commission contract
Commission duty that is processed overseas out of personal information commission process is as follows.
Commission company : GOOGLE, LLC.
Information management supervisor and address : https://www.google.com/contact/
Purpose of transfer : Service management and advertising
Items of personal information that is being transferred : Email, name
Transferred country : United States of America
Method and date for transfer : Delivery through network during the point of service use
Period of use of personal information : When using the service or until termination of commission contract
Retainment and period of use of personal information : until the request of data deletion from members or termination of commission contract
5. Retaining and period of use of personal information
"The company" following the 「Act of promotion of information and communications network utilization and information protection, etc, could take measures of discarding personal information and separating storage after cancelling agreement, in order to protect personal information of members who have not accessed to service for one consecutive year (refer to as "dormant account"). In this case, it notifies to the "members" about the expiration date of personal information retainment and measures of personal information within 30 days of execution.
Collected personal information with the user's consent is retained and used during the course of maintenance of member qualification, and is immediately discarded after the objective of collection and usage is satisfied.
Furthermore, the following information is preserved during the notified period by the reasons below, and is not used for any other purposes.
A. Reason for retaining information following relevant rules
(1) Records on agreement or claim withdrawal
Reason for preservation: Act on the consumer protection in electronic commerce, etc
Period of preservation: 5 years
(2) Records on price payment and supply of goods
Reason for preservation: Act on the consumer protection in electronic commerce, etc
Period of preservation: 5 years
(3) Records on consumer claim or conflict
Reason for preservation: Act on the consumer protection in electronic commerce, etc
Period of preservation: 3 years
(4) Records on identity verification
Reason for preservation: Act on promotion of information and communications network utilization and information protection, etc
Period of preservation: 6 months
(5) Records on access to service
Reason for preservation: Protection of communications secretes act
Period of preservation: 3 months
B. In case of individually receiving member consent
6. Procedure and method of discarding personal information
Personal information of users is immediately discarded after the objective of collection and usage is satisfied. The procedure and method of discarding personal information is as follows.
A. Procedure of discarding
Entered information for membership registration is transferred into a separate DB (separate filling cabinet in case of paper), and discarded after being stored for a certain period following the internal regulations and relevant laws related to reasons for information protection.
B. Method of discarding
Personal information printed on paper is discarded by a disintegrator or incineration. Personal information saved in electronic file format is deleted by using technical methods which makes record restoration impossible.
7. Rights and method of exercising for users and legal representatives
A. Items for personal information protection of users
Members could always check or modify registered personal information, and could refuse agreement or request deletion of the member information. By contacting the supervisor for personal information protection through letter, telephone or email measures would be immediately taken. Deleted personal information as a request from users or legal representatives are processed following "retainment and period of use of personal information' in article 5, and prohibiting the reading or usage of other purpose.
8. Installing of automated collection device of personal information/information about management and refusal
The company uses cookies, which frequently saves and opens user information in order to provide customized services. Cookie refers to a minuscule text file sent from the server for managing service to user PC or mobile device, and is saved in user PC or mobile device. The company creates and provides more convenient service by analyzing the visiting of users and non users, form of use, scale of users with using cookies. Users have a right to select in terms of cookie installation. Verifying when cookie is saved, or refusing every cookie saving is possible. However, in case of refusing cookie saving, using part or the whole service requiring log in process becomes difficult. The method of setting the permission of cookie installation can be set in "tools > internet option", located in the web browser menu.
9. Technical/managerial/physical protection policies of personal information
The company is looking for solutions to maximize security in order to prevent loss, theft, modification, or damage of personal information in terms of processing personal information.
A. Provisions to hacking
"The company" is striving to prevent leakage or damage of personal information caused by hacking or computer virus. It is routinely backing up data to prevent damage of personal information, protecting leakage and damage of personal information or data through new vaccine programs, and taking measures to safely deliver personal information in networks via encoded communication. Also it is restricting external unauthorized access by using intrusion prevention system, and striving to secure every means of technical mechanism for security system-wise. However, the company is not responsible for leakage problem of personal information caused by faults of user themselves or internet problems.
B. Minimization of processing target
"The company" is limiting the number of accessing target to a minimum (supervisor who could process personal information) in terms of user information and is constantly emphasizing adherence to company privacy policy through supervisor education.
C. Management of personal information protection committee
“The company" is striving for immediate adjustment of problems by verifying implementations of company privacy policy and adherence of supervisor through internal committee of personal information protection. However, the company is not responsible for problems caused by leakage of private information due to user fault or internet problems.
D. Restriction of entrance and storage
"The company" defines area that processes and stores personal information as security area, and restricts unauthorized individuals or outsiders, Documents containing personal information, records of written printed material, or external storage device are secured in a secure area with a securing device, in a way that verifying content or information is not permitted without unlocking the device.
10. Contacting supervisor of personal information protection
The company is designating the department and the supervisor for personal information protection below in order to protect personal information of users and processing complaints regarding the matter. All complaints about personal information protection arising during the course of utilizing company service could be reported to the supervisor or the department. The company would rapidly respond to the report items of the users.
Supervisor of personal information protection
Name : Kim Myung Hoon
Affiliation/position: CEO
Email: sfinder4u@gmail.com
Telephone number : +82-10-5797-2693
Please contact the following institutions below when other reports or consultations regarding personal information infringement are needed.
E-commerce Mediation Committee (http://www.ecmc.or.kr / 1661-5714)
Korea Internet and Security Agency (http://privacy.kisa.or.kr / Without station number 118)
Supreme Prosecutor's Office Cyber Crime Investigation Unit (www.spo.go.kr / Without station number 1301)
National Police Agency Cyber Security Bureau (http://cyberbureau.police.go.kr / Without station number 182)
11. Obligation to notification
The company would notify addendum, deletion, or modification of privacy policy content within 7 days before the actual change date through service starting screen.
12. Others
This privacy policy is not applied to the act of collecting personal information from websites from other companies which are linked to service provided by the company. Please check the privacy policy on the following website regarding the collection of personal information that is newly being visited.
Date of notification: May 12th, 2021
Date of execution: May 12th, 2021
This document is an English translation of the original version for reference purposes only. The original version is written in the Korean language. You can check the Korean version by changing the language setting of the mobile phone to Korean. In the case of any discrepancy between the original Korean version and this English translation, the original Korean version shall prevail.
|
|
|
|
|
|
|
|