Privacy Policy
< ARTC Validator >
< ARTC Validator > establishes and discloses the following privacy policy in order to protect the personal information of the information subject in accordance with Article 30 of the 「Personal Information Protection Act」 and to promptly and smoothly handle any grievances related thereto.
This privacy policy will be applied from August 1, 2023.
Article 1 (Purpose of Processing Personal Information)
< ARTC Validator > processes personal information for the following purposes. The personal information processed will not be used for any purpose other than the following purposes, and if the purpose of use changes, we will take necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.
1. Homepage membership and management
Personal information is processed for the purpose of confirming the intention to join the membership, identifying and authenticating the person in accordance with the provision of membership services, preventing unauthorized use of the service, confirming the consent of the legal representative when processing personal information of children under the age of 14, and various notices and notifications.
2. Provision of goods or services
We process personal information for the purpose of delivery of goods, service provision, content provision, customized service provision, identity authentication, and payment and settlement.
3. Utilization for marketing and advertising
We process personal information for the purpose of developing new services (products), providing customized services, providing event and advertising information, and providing participation opportunities.
Article 2 (Processing and Retention Period of Personal Information)
① < ARTC Validator > shall process and retain personal information within the period of retention and use of personal information in accordance with the laws and regulations or the period of retention and use of personal information agreed upon when collecting personal information from the information subject.
② The period for processing and retaining personal information is as follows.
1.
Basis of retention: in accordance with relevant laws and regulations
Related laws: 1) Records on display/advertising: 6 months
2) Records on contract or subscription withdrawal: 5 years
3) Records on payment and supply of goods: 5 years
Reason for exception
2.
Grounds for retention: in accordance with relevant laws and regulations
Related laws: 1) Records on display/advertising: 6 months
2) Records on contract or subscription withdrawal: 5 years
3) Records on payment and supply of goods: 5 years
1) Records on contract or subscription withdrawal: 5 years
2) Records on payment and supply of goods: 5 years
3) Records on consumer complaints or dispute handling: 3 years
4) Records on collection/processing and utilization of credit information: 3 years
Article 3 (Items of personal information to be processed)
① < ARTC Validator > processes the following personal information items.
1. < Homepage registration and management >
Required items: Name, date of birth, login ID, password, password question and answer, home address, mobile phone number
Optional items: Gender, home phone number, email
Article 4 (Handling of Personal Information of Children Under the Age of 14)
① When collecting personal information about children under the age of 14,
- Required items: Name, relationship, contact information of legal representative
② In addition, when collecting personal information of children for publicity related to the
③ When collecting personal information of children under the age of 14,
- By requiring the legal representative to indicate whether he or she consents on the internet site where the consent is posted and by sending a text message to the legal representative's cell phone confirming that the controller has received the indication of consent.
- Have the legal representative indicate their consent on the internet site where the consent is posted and obtain the legal representative's card information, such as a credit or debit card.
- Have the legal representative indicate whether or not he or she agrees to the consent on the internet site where the consent is posted, and verify the legal representative's identity through mobile phone identification, etc.
- Issue a written document containing the consent directly to the legal representative, or deliver it by mail or fax, and have the legal representative sign and date the consent.
- Send an e-mail containing the consent and receive an e-mail from the legal representative indicating the consent.
- Informing the legal representative of the contents of the consent by telephone, obtaining the consent, providing information on how to check the contents of the consent, such as the Internet address, and obtaining the consent through a second telephone call.
- Other methods similar to the above to inform the legal representative of the contents of the consent and confirm the expression of consent.
Article 5 (Provision of Personal Information to Third Parties)
Article 6 (Consignment of Personal Information Processing)
①
The Company will disclose any changes in the content of the entrusted services or the entrustee through this Privacy Policy without delay.
Article 7 (Overseas Transfer of Personal Information)
① We will disclose the transfer of personal information to overseas entities through this Privacy Policy.
Article 8 (Procedure and Method of Destruction of Personal Information)
① < ARTC Validator > shall destroy the personal information without delay when the personal information becomes unnecessary, such as the expiration of the personal information retention period or the achievement of the purpose of processing.
② If the retention period of personal information agreed to by the information subject has elapsed or the purpose of processing has been achieved, but the personal information must continue to be preserved in accordance with other laws and regulations, the personal information shall be transferred to a separate database (DB) or preserved in a different storage location.
③ The procedures and methods for destroying personal information are as follows.
1. Destruction Procedure
< ARTC Validator > selects the personal information for which the reason for destruction has occurred and destroys the personal information with the approval of the personal information protection officer of < ARTC Validator >.
2. destruction method
Personal information printed on paper shall be destroyed by shredding or incineration.
Information in the form of electronic files shall be destroyed using technical methods that do not allow the records to be reproduced.
Article 9 (Rights and Obligations of Information Subjects and Legal Representatives and How to Exercise Them)
① The information subject may exercise the right to view, correct, delete, or suspend the processing of personal information at any time against ARTC Validator.
② The exercise of the rights under Paragraph 1 may be made to ARTC Validator in writing, e-mail, facsimile transmission (FAX), etc. in accordance with Article 41 (1) of the Enforcement Decree of the 「Personal Information Protection Act」, and ARTC Validator will take action without delay.
③ The rights under Paragraph 1 may be exercised through an agent, such as the legal representative of the information subject or a person who has been delegated, in which case a power of attorney in the form of Attachment No. 11 to the “Notification on the Method of Processing Personal Information (No. 2020-7)” must be submitted.
④ The rights of the information subject may be restricted in accordance with Article 35 (4) and Article 37 (2) of the Personal Information Protection Act when requesting to view and suspend the processing of personal information.
⑤ Requests for correction and deletion of personal information cannot be made if the personal information is specified as the subject of collection in other laws.
⑥ ARTC Validator shall verify whether the person making a request for access, correction, deletion, or suspension of processing in accordance with the rights of the information subject is the person or a legitimate representative.
Article 10 (Measures to secure the safety of personal information)
< ARTC Validator > takes the following measures to ensure the safety of personal information.
1. Establishment and implementation of internal management plan
An internal management plan is established and implemented for the safe handling of personal information.
2. Minimization and training of employees handling personal information
We take measures to manage personal information by designating employees who handle personal information and minimizing them by limiting them to those in charge.
3. Conducting regular self-audits
We conduct self-audits on a regular basis (once a quarter) to ensure the stability of personal information handling.
4. Restriction of access to personal information
The Company takes necessary measures to control access to personal information through granting, changing, and canceling access rights to the database system that processes personal information, and controls unauthorized access from the outside using an intrusion prevention system.
5. Retention of access records and prevention of falsification
We keep and manage records of access to the personal information processing system for at least one year, but if we add personal information about 50,000 or more information subjects, or process unique identification information or sensitive information, we keep and manage it for at least two years.
In addition, we use security functions to prevent access records from being falsified, stolen, or lost.
6. Encryption of personal information
Users' personal information is stored and managed with encrypted passwords so that only the user can know it, and for important data, we use separate security functions such as encrypting files and transmission data or using the file lock function.
7. Technical measures against hacking, etc.
< ARTC Validator > installs security programs and periodically updates and inspects them to prevent personal information leakage and damage caused by hacking or computer viruses, and installs systems in areas with controlled access from the outside, and monitors and blocks them technically and physically.
8. Access control for unauthorized persons
We have a separate physical storage location for personal information and have established and operated access control procedures for it.
9. Use of locks for document security
Documents containing personal information, secondary storage media, etc. are stored in a safe place with a lock.
Article 11 (Installation, Operation, and Rejection of Devices that Automatically Collect Personal Information)
ARTC Validator uses 'cookies' to store and retrieve usage information from time to time in order to provide individualized customized services to users.
Cookies are small amounts of information sent to the user's computer browser by the server (http) used to operate the website and are stored on the hard disk of the user's PC computer.
A. Purpose of use of cookies: Cookies are used to provide optimized information to users by identifying the type of visit and use of each service and website visited by users, popular search terms, secure connection, etc.
B. Installation, operation and rejection of cookies: You can reject the storage of cookies through the option settings in the Tools>Internet Options>Privacy menu at the top of your web browser.
C. If you refuse to save cookies, you may experience difficulties in using customized services.
Article 12 (Collection, Use, Provision, and Rejection of Behavioral Information)
① The
② The
- Items of behavioral information collected: visit, search, purchase history
- Method of collecting behavioral information: When visiting, searching, or making purchases
- Purpose of collecting behavioral information: to provide personalized product recommendation service
- Retention and use period and subsequent information processing method: Destroyed after 1 year from the date of collection
- Method of collecting behavioral information: Automatic collection and transmission when you visit our website or run our app
- Behavioral information items collected and processed: user's web/app visit history, search history, purchase history
- Retention and utilization period: 1 year
④ The
⑤ The
⑥ The
‣ Blocking/allowing ad identifiers on smartphones
(1) (Android) ① Settings → ② Privacy → ③ Ads → ③ Reset Ad ID or Delete Ad ID
(2) (iPhone) ① Settings → ② Privacy → ③ Tracking → ④ Allow apps to request tracking Off
Menu and methods may differ slightly depending on the mobile OS version.
⑦ The information subject can block or allow online personalized advertising in bulk by changing the cookie settings of the web browser. However, changing the cookie settings may affect the use of some services such as automatic login to the website.
‣ Blocking/Allowing Personalized Ads via Web Browser
(1) Internet Explorer (Internet Explorer 11 for Windows 10)
- In Internet Explorer, select the Tools button and then select Internet Options
- Select the Privacy tab, select Advanced under Settings, and then select Block or accept cookies
(2) Microsoft Edge
- In Edge, click the “...” sign in the top right corner, then click Settings.
- Click “Privacy, search, and services” on the left side of the Settings page, then select whether and at what level you want to “Do Not Track” in the “Do Not Track” section.
- Select “Always use ‘strict’ ‘Do Not Track’ when searching InPrivate.
- In the “Privacy” section below, select whether or not to “Send Do Not Track requests.
(3) Chrome browser
- In Chrome, click the top right '⋮' sign (chrome customize and control), then click Show settings.
- At the bottom of the settings page, click “Show advanced settings” and in the “Privacy” section, click Content settings.
- In the Cookies section, check the box for “Block third-party cookies and site data.
52 | Guidelines for writing a privacy policy General
Article 13 (Criteria for judgment of additional use and provision)
Pursuant to Articles 15(3) and 17(4) of the Personal Information Protection Act, < ARTC Validator > may additionally use and provide personal information without the consent of the information subject in consideration of matters pursuant to Article 14(2) of the Enforcement Decree of the Personal Information Protection Act. Accordingly, < ARTC Validator > has considered the following points in order to make additional use and provision without the consent of the information subject.
Whether the purpose of further use and provision of personal information is related to the original purpose of collection
Whether the additional use or provision of the personal information is foreseeable in light of the circumstances under which the personal information was collected or the processing practices.
Whether the additional use or provision of personal information will unreasonably infringe on the interests of the data subject.
Whether necessary measures have been taken to ensure safety, such as pseudonymization or encryption
Judgment criteria for considerations for additional use and provision are autonomously determined by the business/organization itself, and created and disclosed.
Article 14 (Handling of Pseudonymized Information when Pseudonymized Information is Processed)
< ARTC Validator > processes pseudonymized information for the following purposes.
Purpose of processing pseudonymized information
- You can create your own.
Processing and retention period of pseudonymized information
- You can create it yourself.
Provision of pseudonymized data to third parties (only if applicable)
- Can be filled in directly.
Outsourcing of the processing of pseudonymized data (only if applicable)
- You can fill it in yourself.
Items of personal data to be pseudonymized
- Can be filled in directly.
Matters concerning measures to secure the safety of pseudonymized information pursuant to Article 28(4) of the Act (Obligation to take safety measures for pseudonymized information, etc.)
- Can be filled in directly.
Article 15 (Personal Information Protection Officer)
ARTC Validator shall be responsible for the overall handling of personal information, and shall designate a person in charge of personal information protection as follows to handle complaints and remedy damages of information subjects related to the handling of personal information.
Personal Information Protection Officer
Name :Yong Chan Geum
Position :CEO
Position :CEO
Contact information :01082267470, bipasori@gmail.com,
This will connect you to the department in charge of personal information protection.
② The information subject may inquire about all personal information protection-related inquiries, complaints, damage relief, etc. arising from the use of ARTC Validator's services (or business) to the person in charge of personal information protection and the department in charge. ARTC Validator will respond to and handle the inquiries of the information subject without delay.
Article 16 (Designation of Domestic Agent)
The information subject may contact the domestic agent of < ARTC Validator > designated pursuant to Article 39(11) of the Personal Information Protection Act to handle grievances related to personal information. < ARTC Validator > will endeavor to promptly handle the tasks of the personal information protection officer, such as handling grievances related to personal information of the information subject.
▶ < ARTC Validator > has designated a domestic agent in accordance with Article 39(11) of the Personal Information Protection Act.
- Name of domestic agent: [Name of agent_Direct input] (In case of corporation, name of corporation, name of representative)
- Address of the domestic agent: [Address of the agent_Direct input] (In the case of a corporation, the location of the business office)
- Telephone number of the domestic agent: [Telephone number of the agent_Direct input] (for corporations)
- E-mail address of the domestic agent: [Agent's e-mail address_Direct input] (for corporations)
Article 17 (Department to receive and process requests for access to personal information)
The information subject may request access to personal information pursuant to Article 35 of the Personal Information Protection Act.
< ARTC Validator > will endeavor to promptly process the information subject's request for access to personal information.
Article 18 (Remedies for infringement of rights and interests of information subjects)
The information subject may apply to the Personal Information Dispute Mediation Committee, the Personal Information Infringement Report Center of the Korea Internet & Security Agency, etc. for dispute resolution or consultation in order to receive relief due to personal information infringement. In addition, please contact the following organizations for other personal information infringement reports and consultations.
1. Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr)
2. Personal Information Infringement Report Center: (without area code) 118 (privacy.kisa.or.kr)
3. Supreme Prosecutors' Office: (without area code) 1301 (www.spo.go.kr)
4. National Police Agency: (without area code) 182 (ecrm.cyber.go.kr)
“Any person whose rights or interests have been infringed upon by the actions or omissions of the head of a public institution in response to a request pursuant to the provisions of Article 35 (Access to Personal Information), Article 36 (Correction and Deletion of Personal Information), and Article 37 (Suspension of Processing of Personal Information) of the Personal Information Protection Act may file an administrative appeal as prescribed by the Administrative Appeals Act.
For more information on administrative appeals, please refer to the website of the Central Administrative Appeals Commission (www.simpan.go.kr).
Article 19 (Changes to the Privacy Policy)
① This Privacy Policy is effective as of August 1, 2023.
Contact
Person in Charge : Keum, Yongchan
Contact Number : 82-2-2203-6832
Email : artcoin64@gmail.com