Pyeongtaek International Exchange Foundation is committed to the following Privacy Policy to help protect the user's privacy and rights in compliance with the “Personal Information Protection Act" and to smoothly process complaints by users regarding their privacy and personal information. If changes are made to the Private Policy, we will announce the changes through the website notice (or an individual notice).
- 1. ollection & Use of Personal Information
- 2. Retention & Use Period of Personal Information
- 3. Disclosure to Third Parties
- 4. Consignment of Collected Personal Information
- 5. Rights/Obligations of Users & Method of Exercise
- 6. Personal Information Processed
- 7. Destruction of Personal Information
- 8. Responsibility for Safeguarding Information
- 9. Changes to Privacy Policy
- 10. Measures to Protect Personal Information
- 11. Installation and Operation of Automatic Personal Information Collection System & the Rejection Thereof
1. Collection & Use of Personal Information
Pyeongtaek International Exchange Foundation does not use personal information for purposes other than the following reasons. Also, users are asked for consent prior to collecting information if changes are made to the purpose of information collection.
A. Member Management
Information collected when signing up to use services and collection complies with the restrictive identification system (e.g., personal identification, unauthorized use prevention, intention to subscribe, personal information of children under the age of 14 is only collected when a legal representative consents, post to a bulletin board, etc.).
B. Development of New Services, and for Marketing and Advertising
Information is gathered to assist the development of new services and for the users to receive personalized services, provide services and publish advertisements based on statistically significant information gathered, validate services, provide users with opportunities to take part in events and participation opportunities, figure out how frequently the website is accessed, and analyze statistics based on users’ service usage.
2. Retention & Use Period of Personal Information
| Personal Information Filename | Purpose of Retention | Retained Information | Retention Period |
|---|---|---|---|
| Website Membership Management File | Managing Member Information | Name, ID (email), Password, Email, Consent to Receive Electronic Communications | Semi-Permanent |
3. Disclosure to Third Parties
Pyeongtaek International Exchange Foundation prohibits sharing any personal information collected to third parties unless the following reasons:
A. When information provided to a third party is within the range of the purpose of collection:
- received separate consent from the user
- there are special provisions in the law or unavoidable circumstances in order to comply with statutory obligations
- unavoidable due to the need of competency in performing tasks required by the legislation of public institutions
- user or their legal representative is not able to provide consent, or in the event that is very likely to harm the life, rights, or property of the user or a third party
B. When information provided to a third party is not within the range of the purpose of collection (※except when there is a possibility of unreasonably infringing the interest of the user or a third party):
-received separate consent from the user
- there are special provisions in other laws
- user or their legal representative is not able to provide consent, or in the event that is very likely to harm the life, rights, or property of the user or a third party
- disclose information anonymously to a third party for the purpose of statistical analysis and academic research
- Protection Committee deliberates and decides it is necessary to use personal information outside the range of the purpose of collection or when competent performance of tasks required by special provisions in the law is jeopardized
- in the case when it is necessary to provide foreign governments or international organizations the information in order to implement a treaty or other international agreements
- necessary for filing and maintaining a criminal investigation
- necessary the conduct of a trial
- necessary for punishment, taking into custody, and monitoring probationers
4. Consignment of Collected Personal Information
In case of consigning the task of processing personal information, Pyeongtaek International Exchange Foundation will do the following in compliance with Article 26 of the Personal Information Protection Act: prohibit the processing of personal information for purposes other than performing the consigned tasks; specify technicalities, managerial safeguards, reconsignment limitations, management of the consignee, supervision, compensation for damages, etc. in the consignment contract and other documents; and supervise whether or not the consignee’s personal information is processed safely.
5. Rights/Obligations of Users & Method of Exercise
Pyeongtaek International Exchange Foundation consigns tasks of processing personal information to a third party in compliance with Article 26 (Limitation to Processing Personal Information Subsequent to Consignment of Work) of the Personal Information Protection Act and will announce the following information through the website notice: purpose of consignment, consignment description, duration of consignment, name of consignee, consignee’s contact information, etc.
A. Access to Personal Information
In compliance with Article 35 (Access to Personal Information) of the Personal Information Protection Act, access to the personal information possessed by the Pyeongtaek International Exchange Foundation may be requested.
※ Refer to the Personal Information (access/correction or deletion/suspension) Request Application (DOC file format) Download Application
However, access may be restricted for the following reasons in compliance with Article 35(5) of the Personal Information Protection Act:
- Access denied or restricted by the law
- Cause harm to the life or body of another person, which might unduly infringe the property and other interests of others
- Cases when public authorities may be in serious trouble while performing the following tasks: examining the academics and functionality of a recruit, and performing work related to judging someone’s eligibility
- Performing inspections and investigations in compliance with other laws
B. Correction or Deletion of Personal Information
※ Refer to the Personal Information (access/correction or deletion/suspension) Request Application (DOC file format) Download Application - Process of Requesting Correction or Deletion
C. Suspension of Processing Personal Information D. Member may deny agreeing to the registering Terms of Use and Privacy Policy. However, posting to certain bulletin boards and additional services may be limited E. No penalty for omitting personal information when registering (i.e., services will not be limited due to omission) For information on the personal information that is processed, please refer to second section of this policy: “Retention & Use Period of Personal Information.” The foundation will destroy any personal information when the retention period expires or when the purpose of collection has been fulfilled without delay in compliance with the law. However, personal information will not be destroyed in cases where preservation is necessary in compliance with other laws. The destruction process, duration, and methods are as follows: A. Destruction Process B. Destruction Duration C. Destruction Method Changes to the Privacy Policy will be announced through the website notice in compliance with Article 30 (Establishment and Disclosure of Privacy Policy) of the Personal Information Privacy Act. Pyeongtaek International Exchange Foundation ensures the following technical, managerial, and physical safety measures in compliance with Article 29 (Duty of Safeguards) of the Personal Information Privacy Act: A. Restrict Access to Personal Information B. Storage of Access Records & Forgery Prevention C. Technical Measures Against Hacking D. Restrict Access to Unauthorized Parties A. Purpose of Using “Cookies” B. Installation/Operation of Cookies & the Rejection Thereof If reporting personal information violations or counseling is needed, please contact the following organizations:
In compliance with Article 36 (Correction or Deletion of Personal Information) of the Personal Information Protection Act, correction or deletion of personal information may be requested. However, deletion cannot be requested if the information is required by other legal authorities.
- Correction or deletion of information within the range of the information requested by other legal authorities
- Correction of false or misleading information
- Deletion of the fact that there is no information on a particular topic
In compliance with Article 37 (Suspension of Processing of Personal Information) of the Personal Information Protection Act, suspension of processing the user’s personal information may be requested.
※ Refer to the Personal Information (access/correction or deletion/suspension) Request Application (DOC file format) Download Application
However, suspension may be restricted for the following reasons in compliance with Article 37(2) of the Personal Information Protection Act:
- there are special provisions in the law or unavoidable circumstances in order to comply with statutory obligations
- cause harm to the life or body of another person, which might unduly infringe the property and other interests of others
- may interfere with competency in performing tasks required by the legislation of public institutions
- in case of when the user has not clearly stated their desire to terminate the contract yet complications such as the user may be denied to the services, difficulties implementing the agreement, etc. arise due to the user’s personal information not being processed.
6. Personal Information Processed
7. Destruction of Personal Information
Personal information provided by the user will be destroyed when either the retention period expires or the purpose of collection has been fulfilled in compliance with internal policies and relevant laws and regulations.
User’s personal information is destroyed within 5 days following the retention period’s expiration date or within 5 days following the day it has been decided the processing of personal information is unnecessary.
The foundation’s destruction methods are as follows:
A. Electronic File: permanently delete the file in a way that it is impossible to restore
B. Non-electronic Files/Hard Copies (e.g., records, prints, writings, other recording methods, etc.): shredding or incineration
8. Responsibility for Safeguarding Information
Chief Privacy Officer
Privacy Officer
Name
Hee Choon Lee (Team Leader)
Name
Bong Jin Chung (Assistant Manager)
Email
hclee@naver.com
Email
bjchung.pief@gmail.com
Phone
031)692-4301~3
Phone
031)692-4301~3
9. Changes to Privacy Policy
10. Measures to Protect Personal Information
In order to restrict access to personal information, authority to access processing, changing, and cancelling personal information has been granted to the database system that processes personal information itself (i.e., internal management). Also, the firewall and detection system has been put in place to prevent unauthorized access from outside sources.
Website access records (e.g., logins, summary information, etc.) are preserved and managed for at least 6 months in order to prevent information from being lost, stolen, leaked, altered, or damaged,
The foundation has installed a security program to prevent personal information leakage and damage caused by hacking or computer viruses. Also through periodic system inspections and renewals, technical and physical surveillance and block is able to be installed in unauthorized access areas.
The physical storage location of users’ personal information itself is keep separate from the database system that processes personal information, and measures have been established and is currently in place to restrict unauthorized parties from accessing users’ personal information.
11. Installation and Operation of Automatic Personal Information Collection System & the Rejection Thereof
Cookies are used to understand its users’ preferences and interests (by figuring out how the foundation’s website is used and the number of users) in order to provide its users better service.
- The user has the option to install cookies. Accordingly, users may allow all cookies, require confirmation before cookies are stored each time, or reject all cookies by setting an option in their Web browser.
- However, some services that require being logged in may be difficult to use if the user refuses to save cookies.
- Steps to allowing/rejecting cookies installation (for Internet Explorer) are as follows:
① Select Internet Options from the Tools menu
② Click Privacy Tab
③ Choose preferred settings by moving the slider
- Privacy Complaint Center (privacy.kisa.or.kr / phone: 118 [without an area code])
- Prosecutors’ Office’s Cyber Crime Division (www.spo.go.kr / phone: 02-3480-3571)
- Korean National Police Agency Cyber Bureau (www.ctrc.go.kr / phone: 182 [without an area code])