Privacy Policy
In order to protect the personal information in accordance with Article 30 of the Personal Information Protection Act and to handle related grievances promptly and smoothly, Korea Creative Content Agency(hereinafter referred to as “KOCCA”) establish personal information processing policies as follows.
Article 1 (Purpose of processing personal information, Item, retention period)
-
1. For more information on the purpose, item,
and retention period of the personal information file processed and held by KOCCA, please refer to each item below.
-
1) Membership list on the website
- • Purpose of Processing
- Identity verification according to the provision of membership service, member qualification maintenance, prevention of illegal use of services, various notices/notifications, grievance handling, etc.
- • Basis for retention
- Article 26 of the Enforcement Decree of the Data Subject Consent and Public Records Management Act
- • Personal information items
-
- [Korean member]Required items: company name, business number, representative, address, representative phone number, name, mobile phone number, e-mail, office phone Optional items: department and position, fax number
- [International Member]
Required items: company name, address, representative phone number, name, mobile phone number, e-mail, office phone
Optional items: department and position
- • Retention period
- Immediately after service termination or membership withdrawal
-
2) Inquiries and Online Application List
- • Purpose of Processing
- Personal information processing request, online application management, etc.
- • Basis for retention
- Article 26 of the Enforcement Decree of the Data Subject Consent and Public Records Management Act
- • Personal information items
-
- [Contact us]Required items: name, email, phone number [Inquiry/Online Meeting] Required items: company name,
address, representative phone number
Optional: position, phone number
- [Contact us]Required items: name, email, phone number [Inquiry/Online Meeting] Required items: company name,
address, representative phone number
- • Retention period
- Immediately after service termination or membership withdrawal
-
1) Membership list on the website
- 2. KOCCA processes and retains personal information files for the operational purpose announced on the personal information protection portal (www.privacy.go.kr), and does not use it for any purpose other than the operational purpose. If the purpose of operation is changed, necessary measures shall be implemented, such as obtaining separate consent pursuant to Article 18 of the Personal Information Protection Act.
-
3. Cookies that store users' information and call in from time to time can be automatically created
and collected in the process of using the Internet service.
-
1) Purpose of the company's use of cookies
It is used to provide an optimized service by identifying the visit history, usage type, and scale of the site visited by the user.
-
2) Opting out of automatic collection of cookies
Users can choose to collect cookies, and can simply refuse by setting the options on their web browser.
How to specify cookie collection
- • From the Tools menu, select Internet Options
- • Click on the Personal Information tab
- • You can set the Personal Information Handling Level
-
1) Purpose of the company's use of cookies
Article 2 (Provision of Personal Information to Third Parties)
- 1. KOCCA does not provide the personal information it collects and holds to third parties without the consent of the information subject. However, personal information may be provided to a third party without the consent of the information subject in unavoidable cases falling under Article 17 Paragraph 1 and Article 18 Paragraph 2 of the 「Personal Information Protection Act」.
- 2. KOCCA may process personal information for event information and promotion purposes.
Article 3 (Consignment of Personal Information Processing)
- 1. KOCCA entrusts the following personal information processing tasks for smooth personal information processing.
- 2. In accordance with Article 25 of the Personal Information Protection Act, KOCCA specifies matters related to responsibility, such as prohibition of personal information processing, technical and administrative protection measures, re-consignment restrictions, management, and compensation for damages, and supervises whether the trustee handles personal information safely.
Article 4 (the rights, obligations, and exercise method of the data subject)
-
1. The data subject may exercise the following personal information protection rights at any time against KOCCA.
- 1) Request for access to personal information
- 2) Request for correction in case of errors, etc.
- 3) Request for deletion
- 4) Request to stop processing
- 2. The exercise of the rights pursuant to Paragraph 1 may be done in writing, by phone, e-mail, fax, etc. to KOCCA, and KOCCA will take action without delay. [Attachment 8 of the Enforcement Rule of the Personal Information Protection Act] Request for access to personal information.
- 3. If the data subject requests correction or deletion of errors in personal information, etc., KOCCA will not use or provide the personal information until correction or deletion is completed.
- 4. The exercise of rights under paragraph (1) may be made through an agent such as a legal representative of the data subject or a person who has been delegated. In this case, you must submit a power of attorney in accordance with attached Form 11 of the Enforcement Rule of the Personal Information Protection Act. [Attachment 11 of the Enforcement Rule of the Personal Information Protection Act] Power of attorney.
- 5. The information subject must not infringe on the personal information and privacy of the information subject himself or others processed by KOCCA in violation of related laws such as the Personal Information Protection Act.
- 6. The rights of the information subject may be restricted in accordance with Article 35 (5) and Article 37 (2) of the Personal Information Protection Act to request access to and suspension of processing of personal information.
- 7. The request for correction and deletion of personal information cannot be requested if the personal information is specified as a collection target in other laws.
- 8. KOCCA confirms whether the person who made the request, such as a request for reading, correction or deletion, or request for suspension of processing, is the person or a legitimate agent according to the right of the information subject.
Article 5 (Destruction of personal information)
- 1. When the personal information becomes unnecessary, such as the expiration of the personal information retention period or achievement of the purpose of processing, KOCCA destroys the personal information without delay.
- 2. In the event that the personal information retention period agreed upon by the information subject has elapsed or the personal information must be kept according to other laws despite the achievement of the purpose of processing, the relevant personal information (or personal information file) is transferred to a separate database (DB). It is stored by moving it or changing the storage location.
-
3. The procedure and method of personal information destruction are as follows.
-
1) Destruction procedure
The information entered by the data subject will be transferred to a separate DB after achieving its purpose (separate documents in the case of paper) and stored for a certain period of time according to internal policies and other relevant laws or regulations.At this time, the personal information transferred to the DB is not used for any other purpose except by law.
-
2) Expiration date
The personal information of the data subject is destroyed within five days from the end of the retention period, and within five days from the date when personal information is deemed unnecessary, such as achieving the purpose of processing personal information, abolishing the service, or termination of the project.
-
3) Destruction method
Printed out personal information is crushed or incinerated. Personal information stored in the form of an electronic file uses a technical method that cannot reproduce the record.
-
1) Destruction procedure
Article 6 (Measures to ensure the safety of personal information)
-
1. KOCCA takes the following measures to ensure the safety of personal information.
- 1) Minimization of Personal Information Handling Employees: We are implementing measures to manage personal information by designating and limiting personnel handling personal information to the person in charge.
- 2) The person in charge of personal information protection checks the implementation status of the internal management plan once a year.
- 3) Establishment and implementation of internal management plan: We establish and implement an internal management plan for safe processing of personal information.
- 4) Encryption of personal information: The password of the data subject is encrypted, stored, and managed, so only you can know, and important data uses separate security functions such as encrypting files and transport data or using file lock function.
- 5) Technical measures against hacking: KOCCA installs security programs, periodically renews and inspects personal information leakage and damage caused by hacking or computer viruses, installs systems in areas where access is restricted from the outside, monitors and blocks technically and physically.
- 6) Restrictions on access to personal information: The government is taking necessary measures to control access to personal information through granting, changing, or canceling access to database systems that process personal information, and controls unauthorized access from outside.
- 7) The use of locks for document security: documents containing personal information, auxiliary storage media, etc. are stored in a safe place with locks.
- 8) Control of access to unauthorized persons: A separate physical storage place for personal information is established and operated for access control procedures are established.
Article 7 (Method of remedy for infringement of rights and interests)
-
1. The data subject can inquire about the institution below for damage relief and counseling for personal information infringement.
(The institution below is separate from KOCCA, and if you are not satisfied with the results of the personal information complaint or damage relief,
please contact us using the details below.)
Article 8 (Personal Information Protection Officer and Person in Charge)
-
1. KOCCA is responsible for handling personal information, and has designated the person in charge of personal information protection
and person in charge as follows to handle complaints and damage relief from information subjects related to personal information processing.
List Responsible Department, Consignee, Scope of Consigned Work, Period of Retention and Use
Category Affiliation Name Contact Information Privacy Officer Head, Industry Division Hyeon-seok Yoo 061-900-6028
jackone@kocca.krPersonal Information Protection Website Manager Global Business Division Byung-ho Park - 2. The information subject may inquire about all personal information protection related inquiries, complaint handling, damage relief, etc. that occurred while using KOCCA's service (or business) to the person in charge of personal information protection and the department in charge. KOCCA will respond and handle inquiries from information subjects without delay.
Article 9 (Request for viewing personal information)
-
1. The information subject may file a request for access to personal information in accordance with
Article 35 of the Personal Information Protection Act to the following departments. KOCCA will make every effort to promptly process the personal information
access request of the information subject.
-
Department of receiving and processing requests for access to personal information
Byung-ho Park (Global Business Division, Website Manager) Tel: 061-900-6028, E-mail: jackone@kocca.kr
-
Department of receiving and processing requests for access to personal information
- 2. In addition to the department for receiving and processing requests for inspection in Paragraph 1, The data subject can also request access to personal information through the website of the Ministry of Public Administration and Security’s ‘Comprehensive Support Portal for Personal Information Protection’ (www.privacy.go.kr).
Article 10 (Change of Privacy Policy)
- 1. This privacy policy will be announced on January 1, 2023.