Privacy Policy
Effective starting: 2022/02/01
<wcdw3> establishes and discloses the following personal information processing policy in order to protect the personal information of the information subject in accordance with Article 30 of the 「Personal Information Protection Act」 and to handle related complaints quickly and smoothly
1. Purpose of processing personal information
<wcdw3> processes personal information for the following purposes. The personal information being processed will not be used for any purpose other than the following, and if the purpose of use is changed, necessary measures such as obtaining separate consent in accordance with Article 18 of the 「Personal Information Protection Act」 will be implemented.
1. Website membership registration and management
Personal information is processed for the purpose of confirming the intention to join as a member, identifying and verifying the identity according to the provision of membership service, maintaining and managing membership qualifications, preventing illegal use of services, various notices and notices, and handling grievances.
2. Civil complaint handling
Personal information is processed for the purpose of verifying the identity of the complainant, confirming the complaint, contacting and notifying for fact-finding, and notifying the processing result.
3. Provision of goods or services
Personal information is processed for the purpose of service provision, contract/invoice sending, content provision, customized service provision, identity verification, and billing/settlement.
4. Use in Marketing and Advertising
Personal information is processed for the purpose of developing new services (products) and providing customized services, providing event and advertising information and providing opportunities to participate, verifying service validity, identifying access frequency, or statistics on member service use.
2. Processing and retention period of personal information
1. <wcdw3> processes and retains personal information within the period of retention and use of personal information in accordance with laws and regulations or within the period of retention and use of personal information agreed upon when collecting personal information from the information subject.
2. Each personal information processing and retention period is as follows.
a. Records on contract or subscription withdrawal
- Basis for retention: Act on Consumer Protection in Electronic Commerce, Etc.
- Relevant laws: Records on contract or subscription withdrawal, etc. (5 years)
b. Records on payment and supply of goods
- Basis for retention: Act on Consumer Protection in Electronic Commerce, Etc.
- Relevant laws: Records on payment and supply of goods (5 years)
c. Records on consumer complaints or dispute resolution
- Basis for retention: Act on Consumer Protection in Electronic Commerce, Etc.
- Relevant laws: Records on consumer complaints or dispute handling (3 years)
d. Records on display/advertisement
- Basis for retention: Act on Consumer Protection in Electronic Commerce, Etc.
- Relevant laws: Records on display/advertisement (6 months)
e. Service visit history
- Basis for retention: Communication Secret Protection Act
- Relevant laws: service visit records (3 months)
3. Consignment of personal information processing
1. <wcdw3> entrusts the following personal information processing tasks for smooth personal information processing.
a. Paddle
- Trustee: Paddle.com Inc
- Contents of consigned work: Purchasing and billing information
- Consignment period: When membership is withdrawn or when the consignment contract is terminated
2. <wcdw3> is concerned with responsibilities such as prohibition of processing of personal information other than for the purpose of performing entrusted tasks, technical and administrative protection measures, restrictions on re-entrustment, management and supervision of the trustee, and compensation for damages in accordance with Article 26 of the 「Personal Information Protection Act」 when concluding a consignment contract. Matters are specified in documents such as contracts and supervise whether the trustee handles personal information safely.
3. If the contents of the consignment work or the consignee is changed, we will disclose it through this personal information processing policy without delay.
4. Rights and obligations of information subjects and legal representatives and how to exercise them
1. The information subject can exercise the right to view, correct, delete, and suspend processing of personal information at any time for <wcdw3>. can exercise.
2. The exercise of rights pursuant to Paragraph 1 may be done in writing, e-mail, or fax (FAX) in accordance with Article 41 (1) of the Enforcement Decree of the 「Personal Information Protection Act」 for <wcdw3>, and <wcdw3> shall respond to this without delay. I will take action.
3. The exercise of rights pursuant to Paragraph 1 may be done through an agent such as a legal representative of the information subject or a person who has been delegated. You must submit a power of attorney.
4. The rights of the information subject may be restricted in accordance with Articles 35 (4) and 37 (2) of the 「Personal Information Protection Act」 for requests to view and stop processing of personal information.
5. The request for correction and deletion of personal information cannot be requested if the personal information is specified as a collection target in other laws.
6. <wcdw3> checks whether the person who made the request, such as a request for access, a request for correction or deletion, or a request for suspension of processing, is the person or a legitimate agent according to the rights of the information subject.
5. Create items of personal information to be processed
1. <wcdw3> handles the following personal information items.
- Required items: email, password
6. Destruction of personal information
1. <wcdw3> destroys the personal information without delay when the personal information becomes unnecessary, such as when the personal information retention period has elapsed or the purpose of processing has been achieved.
2. If the personal information retention period agreed by the information subject has elapsed or the personal information needs to be kept according to other laws despite the achievement of the purpose of processing, move the personal information to a separate database (DB) or change the storage location to preserve it.
3. The procedure and method of personal information destruction are as follows.
a. Destruction procedure
<wcdw3> selects the personal information for which the reason for destruction has occurred, and destroys the personal information with the approval of the personal information protection officer of <wcdw3>.
b. Destruction method
Information in the form of electronic files uses a technical method that cannot reproduce records. Personal information printed on paper is shredded with a shredder or destroyed through incineration.
7. Measures to ensure the safety of personal information
<wcdw3> takes the following measures to ensure the safety of personal information.
1. Minimization and training of personnel handling personal information
We are implementing measures to manage personal information by designating employees who handle personal information and limiting them to the person in charge.
2. Establishment and implementation of internal management plan
We have established and implemented an internal management plan for safe handling of personal information.
3. Technical measures against hacking, etc.
<wcdw3> installs security programs to prevent leakage and damage of personal information caused by hacking or computer viruses, periodically updates and checks, installs systems in areas where access is controlled from outside, monitors and blocks technically and physically, and there is.
4. Encryption of personal information
The user's personal information is stored and managed with an encrypted password, so only the user can know it. For important data, a separate security function is used, such as encrypting files and transmission data or using a file lock function.
5. Storage of access records and prevention of forgery
The records of access to the personal information processing system are kept and managed for at least one year, however, if personal information is added or unique identification information or sensitive information is processed for more than 50,000 information subjects, it is kept for more than two years; In addition, a security function is used to prevent forgery, theft, or loss of access records.
6. Restricting access to personal information
We take necessary measures to control access to personal information by granting, changing, and canceling access rights to the database system that processes personal information, and use an intrusion prevention system to control unauthorized access from outside.
7. Access control for unauthorized persons
A separate physical storage location for personal information is established and access control procedures are established and operated.
8. Matters concerning the installation, operation and rejection of automatic personal information collection devices
1. <wcdw3> uses 'cookies' that store and retrieve usage information from time to time to provide users with individually customized services.
2. A cookie is a small amount of information that the server (http) used to operate the website sends to the user's computer browser and is also stored on the hard disk of the user's PC computer.
a. Purpose of use of cookies: These are used to provide optimized information to users by identifying the types of visits and usage, popular search terms, secure access, etc. to each service and website visited by the user.
b. Installation, operation, and rejection of cookies: You can refuse to save cookies by setting options in Tools > Internet Options > Privacy menu at the top of the web browser.
c. If you refuse to store cookies, you may experience difficulties in using customized services.
9. Comply with the European Union GDPR(General Data Protection Regulation) and the laws of each Member State
When providing services to users in the European Union, the following may apply.
1. <wcdw3> uses the collected personal information only for the purposes described in "1. Purpose of processing personal information", and informs users of the fact in advance and seeks consent. And in accordance with applicable laws such as GDPR, <wcdw3> may process users' personal information in one of the following cases.
- Consent of the data subject
- For the conclusion and performance of a contract with the data subject
- For compliance with legal obligations
- When processing is necessary for the material interests of the data subject
- For the pursuit of the company's legitimate interests (except when the interests, rights or freedoms of information subjects are more important than those interests)
2. In accordance with applicable laws, such as GDPR, users may request that their personal information be transferred to another manager and may request refusal to process their information. And you have the right to file a complaint with the data protection authority.
3. <wcdw3> may use personal information to provide marketing such as events and advertisements, and seeks user's consent in advance. Users can withdraw their consent at any time if they do not wish. Requests related to the above will be dealt with without delay if you contact us in writing, by phone or e-mail through the customer center.
4. If you request correction of errors in personal information, the personal information will not be used or provided until the correction is completed.
10. Personal Information Protection Officer
1. <wcdw3> is responsible for handling personal information, and has designated a person in charge of personal information protection as follows to handle complaints and damage relief from information subjects related to personal information processing.
Personal Information Protection Officer
- Name: Lee Gi Hyeon
- Position: CEO
- Title: CEO
- Contact: 0502-1914-0036, [email protected]
2. The information subject may inquire to the person in charge of personal information protection for all personal information protection-related inquiries, complaint handling, and damage relief that occurred while using <wcdw3> services (or business). <wcdw3> will answer and handle inquiries from the information subject without delay.