< InHAVEN > ('https://inhaven-games.blogspot.com/') protects the personal information of information subjects in accordance with Article 30 of the Personal Information Protection Act and ensures that complaints related thereto are handled quickly and smoothly. For this purpose, we establish and disclose the personal information processing policy as follows.
○ This personal information processing policy is effective from January 1, 2025.
Article 1 (Purpose of processing personal information) <InHAVEN>('https://inhaven-games.blogspot.com/') processes personal information for the following purposes. Personal information being processed will not be used for purposes other than the following, and if the purpose of use changes, necessary measures will be taken, such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.
1. Personal information is processed for the purpose of providing goods or service contents.
Article 2 (Retention and use period of personal information)
In principle, the user's personal information is stored after the user signs up for membership until withdrawal, and the information is destroyed without delay after the user withdraws or the purpose of collecting and using personal information has been achieved. However, the information below Depending on the Company's policy, backup copies may be retained for the periods listed below.
1. Personal information preserved upon membership withdrawal
- Grounds for retention: Prevention of illegal use (internal company policy)
- Retention period: 1 year after membership withdrawal
2. Preservation of personal information related to identity verification
- Basis for retention: Act on Promotion of Information and Communications Network Utilization and Information Protection, etc.
- Preservation period: 6 months
3. Service access records
- Basis for retention: Communication Secrets Protection Act
- Preservation period: 3 months
4. Records of consumer complaints or dispute resolution
- Basis for retention: Act on Consumer Protection in Electronic Commerce, etc.
- Retention period: 3 years
5. Records regarding contract or subscription withdrawal, etc.
- Basis for retention: Commercial Act, Act on Consumer Protection in Electronic Commerce, etc.
- Retention period: 5 years
6. Records of payment and supply of goods, etc.
- Basis for retention: Commercial Act, Act on Consumer Protection in Electronic Commerce, etc.
- Retention period: 5 years
Article 3 (Purpose of collection and use of personal information)
1. When registering as a member, unique identification information related to the device type and device identification number (device ID or IMEI) can be collected and stored and used as information for personal identification.
Article 4 (Matters regarding provision of personal information to third parties) 1. <InHAVEN> processes personal information only within the scope specified in Article 1 (Purpose of processing personal information), upon consent of the information subject, Personal information is provided to third parties only in cases that fall under Articles 17 and 18 of the Personal Information Protection Act, including special provisions of the law.
2. <InHAVEN> provides personal information to third parties only in the following cases.
- When prior consent is obtained
- When necessary for settlement of fees for service provision, etc.
- When there is a request from an agency in accordance with relevant laws or procedures and methods prescribed by law for investigative purposes.
Article 5 (Personal information destruction procedures and methods)
The procedures and methods for destroying personal information are as follows.
1. The information entered by members for membership registration and service use is transferred to a separate DB (in the case of paper, a separate document box) after the purpose is achieved and is subject to information protection reasons in internal policies and other relevant laws (retention and use period) (Reference) It is stored for a certain period of time and then destroyed.
2. Personal information will not be used/provided for any purpose other than that for which it is retained, unless required by law.
3. Personal information printed on paper is destroyed by shredding or incineration.
4. Personal information stored in the form of electronic files is deleted using technical methods that render the records unrecoverable.
5. If you delete the app without canceling your membership, your personal information may remain with the service provider. At this time, the member must request a separate withdrawal application from the service provider.
Article 6 (Matters regarding the rights and obligations of the information subject and legal representative and how to exercise them) 1. The information subject may exercise his/her rights to ‘InHAVEN’ at any time, such as requesting viewing, correction, deletion, or suspension of processing of personal information. .
2. The exercise of rights under Paragraph 1 may be done in writing, e-mail, facsimile (FAX), etc. in accordance with Article 41 (1) of the Enforcement Decree of the Personal Information Protection Act against 'InHAVEN', and 'InHAVEN' ) We will take action on this without delay.
3. The exercise of rights under Paragraph 1 can be done through an agent, such as the information subject's legal representative or a person authorized to do so. In this case, “Notice on Personal Information Processing Methods (No. 2020-7)” Annex No. 11 You must submit a power of attorney according to the format.
4. Requests to view and suspend personal information processing may limit the information subject's rights pursuant to Article 35, Paragraph 4 and Article 37, Paragraph 2 of the Personal Information Protection Act.
5. Requests for correction or deletion of personal information cannot be requested if the personal information is specified as the subject of collection in other laws and regulations.
6. ‘InHAVEN’ confirms whether the person making the request, such as a request for viewing, a request for correction or deletion, or a request for suspension of processing, is the person or a legitimate agent in accordance with the information subject rights.
Article 7 (Matters regarding measures to ensure the safety of personal information) <'InHAVEN'> is taking the following measures to ensure the safety of personal information.
1. Conducting regular self-audits To ensure stability in the handling of personal information, we conduct self-audits on a regular basis (once a quarter).
2. Restriction of access to personal information Necessary measures are being taken to control access to personal information by granting, changing, and deleting access rights to the database system that processes personal information, and using an intrusion prevention system to prevent unauthorized access from outside. Access is controlled.
3. Storage of access records and prevention of forgery and falsification Records of access to the personal information processing system are stored and managed for at least one year. However, personal information of more than 50,000 information subjects is added, or unique identification information or sensitive information is not added. In case of processing, it is stored and managed for more than 2 years.
In addition, we use security features to prevent access records from being forged, altered, stolen, or lost.
4. Technical measures against hacking, etc. <'InHAVEN'> installs a security program to prevent leakage and damage of personal information due to hacking or computer viruses, conducts periodic updates and inspections, and installs the system in an area where access from the outside is controlled. It is installed and technically/physically monitored and blocked.
Article 8 (Matters regarding the installation, operation and rejection of devices that automatically collect personal information) 'InHAVEN' does not use 'cookies' to store and frequently retrieve the information subject's usage information. .
Article 9 (Matters regarding personal information protection manager)
① ‘InHAVEN’ is responsible for overall work related to personal information processing, and has designated a personal information protection manager as follows to handle complaints and provide relief for damage from information subjects related to personal information processing.
▶ Personal information protection officer
Name: Jaehyun Choi
Contact: cs.inhaven@gmail.com
② Information subjects may inquire about all personal information protection-related inquiries, complaint handling, damage relief, etc. that arise while using the services (or business) of ‘InHAVEN’ to the personal information protection manager and responsible department. ‘InHAVEN’ will respond and process inquiries from information subjects without delay.
Article 10 (Department that receives and processes requests to view personal information)
The information subject may request access to personal information pursuant to Article 35 of the Personal Information Protection Act to the department below.
< 'InHAVEN' > will endeavor to promptly process the information subject's request to view personal information.
▶ Personal information access request reception and processing department
Name: Jaehyun Choi
Contact: cs.inhaven@gmail.com
Article 11 (Methods of relief for infringement of rights and interests of information subjects)
In order to receive relief from personal information infringement, the information subject may apply for dispute resolution or consultation to the Personal Information Dispute Mediation Committee, the Korea Internet & Security Agency's Personal Information Infringement Reporting Center, etc. For other personal information infringement reports and consultations, please contact the organizations below.
1. Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr)
2. Personal Information Infringement Reporting Center: (without area code) 118 (privacy.kisa.or.kr)
3. Supreme Prosecutors' Office: (without area code) 1301 (www.spo.go.kr)
4. National Police Agency: (without area code) 182 (ecrm.cyber.go.kr)
The head of a public institution may respond to requests pursuant to the provisions of Article 35 (view of personal information), Article 36 (correction/deletion of personal information), and Article 37 (suspension of processing of personal information, etc.) of the Personal Information Protection Act. A person whose rights or interests have been infringed due to a disposition or omission may request an administrative trial in accordance with the provisions of the Administrative Appeals Act.
※ For more information about administrative trials, please refer to the website of the Central Administrative Appeals Commission (www.simpan.go.kr).
Article 12 (Changes to personal information processing policy)
① This personal information processing policy is effective from January 1, 2025.
댓글
댓글 쓰기