Personal Information Processing Policy
[Table of Contents]
1. General Provisions
2. Consent to the Collection of Personal Information
3. Purpose of Collection and Use of Personal Information
4. Personal Information Items Collected
5. Matters Concerning the Installation, Operation, and Refusal of Automatic Personal Information Collection Devices
6. Use for Other Purposes and Provision to Third Parties
7. Access and Correction of Personal Information
8. Withdrawal of Consent to the Collection, Use, and Provision of Personal Information
9. Retention and Use Period of Personal Information
10. Procedures and Methods for Deleting Personal Information
11. Protection of Children's Personal Information
12. Technical Measures for the Protection of Personal Information
13. Entrustment of Personal Information
14. Consent Collection and Complaint Handling
15. Supplementary Provisions (Effective Date)
1. General Provisions
This Crossput site values the protection of personal information of its members and always does its best to protect the personal information of its members. 1) The company complies with all laws and regulations related to personal information protection, including the Act on Promotion of Information and Communications Network Utilization and Information Protection, and does its best to protect user rights by establishing a personal information processing policy based on related laws and regulations.
2) The company has established a “Personal Information Processing Policy” and is complying with it, and has made it available for users to easily view at any time by disclosing it on its website and mobile application.
3) Through the “Personal Information Processing Policy,” the company informs you of how your personal information provided is used and what measures are being taken to protect your personal information.
4) The company has made the “Personal Information Processing Policy” available at the bottom of the homepage’s home page so that you can easily view it at any time.
5) If the company revises the “Personal Information Processing Policy,” it will notify you through a website notice (or individual notice).
2. Consent to the collection of personal information
We have established a procedure where you can click the "Agree" or "Disagree" button regarding the contents of the privacy policy or terms of use of this site. If you click the "Agree" button, you are deemed to have consented to the collection of personal information.
3. Purpose of collection and use of personal information
This site collects personal information for the following purposes.
Establishment of a contract for service provision: Self-identification and confirmation of intent, etc.
Service performance: Product delivery and payment
Member management: Self-identification, personal identification, age verification, complaint handling, etc. for the use of membership services
Other new service, new product or event information
However, we do not collect sensitive personal information (race and ethnicity, ideology and beliefs, place of origin and domicile, political inclination and criminal record, health status, etc.) that may infringe on the basic human rights of users.
4. Personal information items collected
This site collects the following personal information for membership registration, consultation, service application, etc. 1) Personal information collection method: Website (membership registration)
2) Collection items: Name, date of birth, gender, login ID, password, phone number, address, mobile phone number, email, resident registration number, access log, access IP information, payment history
5. Matters regarding the installation, operation, and refusal of automatic personal information collection devices
This site uses 'cookies' to store information about you and retrieve it from time to time. Cookies are small pieces of information that a website sends to your computer browser (Netscape, Internet Explorer, etc.). When you access the website, the computer of this site reads the contents of the cookies in your browser, finds additional information about you from your computer, and provides services without requiring you to enter additional information such as your name.
1) Cookies identify your computer, but do not personally identify you. You also have a choice regarding cookies. By adjusting the options of your web browser, you can choose to accept all cookies, receive notification when a cookie is installed, or reject all cookies. 2) Purpose of using cookies, etc.: Target marketing and provision of personalized services through analysis of user access frequency and visit time, etc., understanding user preferences and areas of interest, tracking traces, understanding the extent of participation in various events and number of visits, etc.
3) Method of refusing cookie settings: To refuse cookie settings, you can select the option of the web browser you use to allow all cookies, confirm each time a cookie is saved, or refuse to save all cookies. Example of setting method: In the case of Internet Explorer → Tools at the top of the web browser > Internet Options > Personal Information
However, if you refuse to install cookies, there may be difficulties in providing services.
6 Use for purposes other than the intended purpose and provision to third parties
This site uses your personal information within the scope notified in "Purpose of collection and use of personal information" and does not use it beyond the scope or provide it to other persons or companies/organizations.
However, in order to provide better services, your personal information may be provided to Crossput's subsidiaries or affiliates, or shared with Crossput's subsidiaries or affiliates. When providing or sharing personal information, we will notify you individually via e-mail and in writing in advance about who Crossput’s subsidiaries and affiliates are, what personal information items are being provided or shared, why such personal information must be provided or shared, and how and until when it will be protected and managed, and obtain your consent. If you do not consent, we will not provide or share your personal information with Crossput’s subsidiaries and affiliates. In addition, users’ personal information will not be provided to external parties in principle, but there are exceptions in the following cases.
1) When users have given prior consent
2) When there is a request from an investigative agency in accordance with the procedures and methods stipulated by law or for investigative purposes
7. Access and Correction of Personal Information
You may access or correct your registered personal information at any time. If you wish to access or correct your personal information, click “Modify Member Information” to access or correct it directly, or contact the Personal Information Chief Manager by e-mail and we will take action.
If you request correction of errors in your personal information, we will not use the relevant personal information until the correction is completed.
8. Withdrawal of consent to collection, use, and provision of personal information
You may withdraw your consent to the collection, use, and provision of personal information through membership registration, etc. at any time. To withdraw consent, click "Withdrawal of membership (withdrawal of consent)" on "My Page" or contact the personal information manager by e-mail, etc., and we will immediately take necessary measures, such as deleting personal information.
This site will take necessary measures to enable withdrawal of membership (withdrawal of consent) for the collection of personal information in the same manner and procedure as when the personal information was collected.
9. Retention and use period of personal information
In principle, after the purpose of collecting and using personal information is achieved, the relevant information is destroyed without delay. However, the following information is retained for the period specified below for the reasons stated below. 1) Preservation items: Membership registration information (login ID, name, nickname)
2) Preservation basis: To prevent other members from re-registering with the existing membership ID and engaging in activities when membership is withdrawn
3) Preservation period: Permanent
In addition, in cases where preservation is necessary in accordance with the provisions of the Commercial Act and other related laws, the company will store transaction and membership information for a certain period of time as stipulated in the related laws as follows.
⚪Preservation items: Contract or subscription withdrawal records, payment and goods supply records, complaint or dispute resolution records
⚪Preservation basis: Article 6 of the Act on Consumer Protection in E-Commerce, etc. Preservation of transaction records
⚪Preservation period: Contract or subscription withdrawal records (5 years), payment and goods supply records (5 years), complaint or dispute resolution records (3 years), If it is necessary to continue to retain the information despite the above retention period, we will obtain your consent. ⚪If a member does not use the service for 1 year, we will notify the member in advance and store it separately in accordance with Article 29 of the ‘Personal Information Validity Period’ of the [Act on Promotion of Information and Communications Network Utilization and Information Protection, etc.].
4) Information on overseas storage of personal information
The company stores personal information acquired or created from users in a database (physical storage location: Korea) held by Miri Nae. Miri Nae only physically manages the relevant server and, in principle, does not access the member’s personal information.
⚪Transfer items: Service usage records or collected personal information
⚪Transfer country: Korea
⚪Transfer date and method: Transmission via network at the time of service use after the computer server consignment contract
⚪Personal information retention and use period: Until membership withdrawal or termination of consignment contract
10. Procedures and methods for destroying personal information
In principle, this site destroys the relevant information without delay after the purpose of collecting and using personal information has been achieved. The procedures and methods for destruction are as follows. Destruction Procedure: The information you entered for membership registration, etc. will be transferred to a separate DB (separate file in the case of paper) after the purpose has been achieved and stored for a certain period of time according to internal policies and other relevant laws and regulations for information protection (see retention and use period) and then destroyed. Personal information transferred to a separate DB will not be used for any other purpose than that for which it is stored, unless required by law.
Destruction Method: Personal information stored in electronic file format will be deleted using a technical method that makes it impossible to reproduce the record.
11. Protection of Personal Information of Children
This site obtains the consent of the legal representative when collecting personal information of children under the age of 14.
The legal representative of a child under the age of 14 may request to view, correct, or withdraw consent for the child's personal information, and if such a request is made, this site will take necessary measures without delay.
12. Technical Measures for Personal Information Protection
This site implements the following technical measures to ensure the safety of personal information so that it is not lost, stolen, leaked, altered, or damaged when handling your personal information. Your personal information is protected by a password, and important data is protected by separate security features such as encryption of files and transfer data or use of the file lock function. This site uses an antivirus program.
We are taking measures to prevent damage caused by computer viruses. Antivirus programs are updated periodically, and in the event of a sudden virus outbreak, we provide the vaccine as soon as it is available, thereby preventing personal information from being infringed.
In order to prevent your personal information from being leaked due to hacking, etc., we are using a device that blocks external intrusions.
13. Entrustment of personal information
This site may entrust your personal information to an external party for processing in order to improve its services.
In the event that we entrust the processing of personal information, we will notify you in advance.
In the event that we entrust the processing of personal information, we will clearly stipulate the service provider's strict compliance with personal information protection-related instructions, confidentiality of personal information, prohibition of third-party provision, and liability in the event of an accident, etc. through an entrustment contract, etc., and keep the contents of the contract in writing or electronically.
14. Opinion collection and complaint handling
This site has established a window where you can raise your opinions and complaints regarding personal information protection. If you have any complaints regarding personal information, please contact the Chief Personal Information Manager of this site. We will take action immediately upon receipt and notify you of the results. 1) The Chief Personal Information Manager is directly responsible for the company's CEO, who emphasizes personal information. As the person responsible for protecting personal information and preventing leakage, he/she helps users use the services provided by the company with peace of mind, and is responsible for any accidents that occur in violation of the information notified to users regarding personal information protection.
2) The company of this site is not responsible for damage or loss of information due to unexpected accidents caused by basic network risks such as malicious hacking despite taking technical supplementary measures, or for various disputes caused by posts written by users.
3) The company designates the following person as the Chief Personal Information Manager as stipulated in the Act on Promotion of Information and Communications Network Utilization and Information Protection.
Name of Chief Personal Information Manager: Park Chung-yeol
Phone number: 02-2155-2166
E-mail: crossputt@naver.com
Or, if you need to report or consult about a personal information infringement, please contact the following organization.
Personal Dispute Mediation Committee (www.1336.or.kr / 1336)
Information Protection Mark Certification Committee (www.eprivacy.or.kr / 02-580-0533~4)
Supreme Prosecutors' Office Internet Crime Investigation Center (icic.sppo.go.kr / 02-3480-3600)
National Police Agency Cyber Terror Response Center (www.ctrc.go.kr / 02-392-0330)
15. Supplementary Provisions (Enforcement Date)
The current personal information processing policy was established on September 22, 2017, and if there are additions, deletions, or modifications to the content due to changes in government or company policies or security technologies, notice will be given through the 'Notices' section at least 7 days prior to the revision, and this policy will be enforced on the enforcement date.
1) Announcement Date: May 1, 2018
2) Effective Date: May 1, 2018
