주메뉴 바로가기 본문 바로가기

Privacy Policy

Privacy Policy

HANSU Co., Ltd. (hereinafter referred to as "Website") has the following policy to protect the personal information protection and rights & interests of government entity according to Article 30 of the Act on the Protection of Personal Information, and to process the users complaint related to the personal information quickly and smoothly:

Processing purpose of personal information, processing & holding period of personal information, and items of personal information processed

  1. The Website processes a minimum of personal information by necessity for online inquiry, and Q&A purposes.
  2. The personal information processed by the Website is processed and held to the extent specified for the collection and use purpose.
    • The Website holds the personal information for smooth online inquiry, and Q&A service. If the user requests the deletion of personal information, or deletes a post, the personal information will be immediately destroyed, and processed for no reason or method to be reproduced or made unavailable.
  3. The personal information items collected and held by the Website are as follows:
    • Name, contact, and email information
  4. You have the right to refuse to consent to the “collection of essential information,” and may also refuse to consent to the collection of information. If you do not consent to the collection of information, your use of services may be restricted. The following information may be automatically generated and collected in the course of your use of services.
    • IP address, cookies, date and time of visit, and records on the use of service

Provision of personal information to a third party

The Website will process the personal information of the information entity within the scope specified for collection and use purpose in principle, and will not process or provide it to a third party exceeding the scope of original purpose without the prior consent of the information entity except the following cases:

  1. If received a separate consent from the information entity.
  2. If there are special regulations in the law.
  3. If it is obviously recognized as necessary for the immediate benefit of life, body and property of information entity or third party under the situation where the information entity or its the legal representative is unable to state its opinion, or the prior consent cannot be obtained due to unknown address.
  4. If the personal information is provided in a form that cannot identify a particular individual as a case necessary for the purpose of statistical preparation and academic research.
  5. If the deliberation or a resolution of Personal Information Protection Committee has passed as the cases to perform the duties specified in other laws, unless the personal information is not used for the purposes other than purpose, or is provided to a third party.
  6. If it is necessary to provide for foreign information or international organizations to fulfill the Treaties or other international agreements.
  7. If it is necessary for the investigation, prosecution and maintenance of criminal offenses.
  8. If it is necessary for court proceedings, and
  9. If it is necessary for the execution of punishment, protection and protective disposition.

Consignment for the processing of personal information

If the Website consigns the processing work of personal information, it processes by the documents containing the following information:

  1. Matters on the processing prohibition of personal information other than the performance purpose of consigned work.
  2. Matters on the administrative and technical protection measures of personal information.
  3. Matters on the safety management of personal information.

The purpose and scope of consigned work, matters on restricted re-consignment, matters on the measures of personal information to ensure security, matters relating to the supervision such as the check on the management status of personal information held in connection with the consigned work, and matters on liability for damages in case of violation of the obligation to be complied by the consignee are also opened on the applicable homepage for those who accept the consignment ("consignee") to process the personal information.

Rights, duties and exercise method of information entity

The information entity can exercise the following rights, and we will make sure whether A person who requests a viewing is the person itself or a legitimate agent at the request of viewing, for correction or deletion, or for process stopping according to the rights of information entity. A legal representative of a child under the age of 14 may request for the viewing, correction or deletion, or process stopping for the childs personal information.

  • Request for viewing the personal information

    For the personal information file held by the Website, the viewing about self-personal information can be requested according to Article 35 (Viewing of personal information) of the "Act on the Protection of Personal Information". However, the request for viewing personal information can be restricted under Article 35 Paragraph 5 of the same Act as follows:

    1. If the viewing is prohibited or restricted by law.
    2. If it is concerned about the harming of someone elses life or body, or if there is a possibility to infringe unduly the property of another person and other benefits.
    3. Public institution.
  • Request for correction and deletion of personal information

    For the personal information held by the Website, the correction and deletion can be requested according to Article 36 (Correction and deletion of personal information) of the "Act on the Protection of Personal Information". However, if that personal information is specified as a collection target in other statutes, then the deletion of it cannot be requested.

  • Request for the stopping of personal information processing

    For the personal information held by the Website, the process stopping can be requested according to Article 37 (Stopping of personal information processing, etc.) of the "Act on the Protection of Personal Information". However, the request for process stopping may be rejected according to Article 37 Paragraph 2 of the same Act at the request for the stopping of personal information processing method:

    1. If there are special regulations in the law, or if it is inevitable to comply with the statutory obligations.
    2. If it is concerned about the harming of someone elses life or body, or if there is a possibility to infringe unduly the property of another person and other benefits.
    3. If the public institution cannot perform the duties specified by other laws, unless it process the personal information.
    4. If the information entity does not clearly stated its intention to terminate the contract as a case that the contract is difficult to be fulfilled such as the provision of service agreed with the information entity cannot be implemented if the personal information is not processed.

Destruction of personal information

The Website destroys the personal information without delay if the processing purpose of personal information is achieved in principle. The procedure, deadline and method of destruction are as follows:

  1. Destruction procedure: By the website, the personal information is kept in accordance with relevant laws and regulations, and it shall be destroyed immediately when the holding is over.
  2. Destruction period: By the Website, the personal information shall be destroyed within five days from the end date of holding period if the holding period of personal information has passed, and within five days from the day when the processing of personal information is recognized as unnecessary if the personal information becomes unnecessary due to the achievement of processing purpose of personal information, the abolition of applicable service, or the termination of business.
  3. Destruction method: For the information in the form of electronic file, a technical method by which the record cannot be reproduced shall be applied. For the personal information printed on paper, it shall be destroyed by the shredding with a paper shredder or through an incineration.

Measures to ensure the security of personal information

The Website takes technical, managerial and physical measures required to ensure the security according to Article 29 of the Act on the Protection of Personal Information as follows:

  1. The measure to manage the personal information is implemented by specifying the staffs who handle the personal information, and by minimizing through the limitation to the staffs charged.
  2. The self-inspection is performed regularly (once a year) to ensure the security related to the handling of personal information.
  3. An internal management plan for the safe handling of personal information is established, and enforced.
  4. As the users personal information is encrypted, and then stored and managed, so only the person itself can know about it, and for the important data, a separate security functions such as transmission after encryption or use of file locking are used.
  5. A security program is installed to prevent the leakage and damage of personal information by hacking or computer virus, the periodical update & inspection are made, and the technical and physical monitoring and blocking are performed by installing the system in an area where the access from outside is controlled.
  6. The necessary measures such as an access control to the personal information are made through the granting, modifying and terminating the access to database system processing the personal information, and an unauthorized access from the outside is controlled by using the firewall system.
  7. The record accessed to the personal information processing system is kept and managed for at least 6 months, and the security functions are used to prevent the forgery, theft, and loss of access record.
  8. The documents and auxiliary storage medium containing personal information are kept it in a safe place with a locking device.
  9. By the preparation of separated physical storage place keeping the personal information we have established the access control procedures for this, and operate it.

Matters Concerning the Installation and Operation of the Automatic Collection Device of Personal Information and the Refusal Thereto

The Website is operating cookies, etc., which save and finds the user’s information frequently. Cookies are a very small text file which is sent by the server used to operate the company’s Website to your browser, which is saved on the user’s computer hard disk. The Website uses cookies for the following purposes.

  1. Purpose of Use of Cookies, Etc.
    • They are used to identify the frequency of access, hours of visit and frequency of visit, etc. The user has the right to choose in regards to the installation of cookies. Therefore, the user may allow for all cookies by setting options at the web browser, undergo verification every time cookies are saved, or refuse to save all cookies.
  2. How to Refuse to Set Cookies
    • Example) As for refusing to set cookies, the user can allow for all cookies by choosing options of the web browser used by the user, undergo verification every time cookies are saved, or refuse to save all cookies.
    • Example of "How to Set" (in the case of Explorer) : Tool > Internet Options > Personal Information at the top
  3. If the user refuses to install cookies, he or she might experience difficulties in using the services provided.

Appointment of privacy officer

  1. The Website has designated a privacy officer who is collectively responsible for the work of personal information processing and for the complaint processing and damage relief of information entity related to the personal information processing as shown below:
    • General privacy officer
      • Name : KYEHYUN LEE
      • Contact : 02-3473-6491
    • General Department for Personal Information Protection
      • Department : HR Affairs & General Affairs Dept. in Management Support Division
      • Charged staff : KYEHYUN LEE
      • Contact : 02-3473-6491
  2. The information entity can contact the general privacy officer and responsible department for all the inquiries, complaint handling, and damage relief related to the personal information of Website. The Website will reply about the inquiries of information entity and process without delay.

Remedy for infringement on rights and interests

For the agencies below, you contact them if you are not satisfied with the complaint processing for personal information, or results of damage remedy by the Website, or if you need more help.

  • Report Center for Privacy Infringement (operated by Korea Internet & Security Agency)
    • Allocated tasks: Report on the infringement of personal information, or application for the consultation
    • Homepage : privacy.kisa.or.kr
    • Phone : (without area code) 118
    • Address : Report Center for Privacy Infringement in the Korea Internet & Security Agency, 135, Jungdae-ro, Songpa-gu, Seoul, Republic of Korea
  • Personal Information Dispute Mediation Committee (operated by Korea Internet & Security Agency)
    • Allocated tasks : Application for the personal information dispute mediation, collective dispute mediation (for civil resolution)
    • Homepage : privacy.kisa.or.kr
    • Phone : (without area code) 118
    • Address : Report Center for Privacy Infringement in the Korea Internet & Security Agency, 135, Jungdae-ro, Songpa-gu, Seoul, Republic of Korea
  • Supreme Prosecutors’ Cybercrime Investigation Department
    • Homepage : www.spo.go.kr
    • Phone : 02-3480-3573
  • National Police Agency’s Cyber Terror Response Center (CTRC)
    • Homepage : www.netan.go.kr
    • Phone : 1566-0112

Enforcement of personal information processing policy

This policy will be enforced from December 1, 2018.