Privacy Policy
Infobank (www.infobank.net, "company")complies with the relevant laws, such as the Act on Promotion of Information Network Utilization and Protection of Information, and the Privacy Act, and complies with the Privacy Policy. In addition, we are striving to protect user rights by setting personal information processing policies according to relevant laws.
Through our Privacy Policy, the company will inform you of the uses and methods of using your personal information and what actions are being taken to protect your personal information.
This Privacy Policy is a policy prepared by compiling the services operated by the company. For more information, please refer to the individual privacy policy posted on the website of each service.
1. Privacy collection items and collection methods
1) Privacy collection items
(1) BizPlus
- Required : Mobile (handheld) number, email address Bizplus Privacy Policy
(2) m&SMS
[Individual membership registration]
- Required :Accept name, ID, password, gender, email address, email receipt, mobile phone number, SMS receiving consent
- Selection: Visit path, Recommendation ID
[A corporate membership]
- Required : Name, ID, password, business license number, Corporate name, Corporate representative name, company type, business establishment address, representative number, contact name, Staff phone number, person's mobile number, person's email address, mail receiving consent, SMS receiving consent
- Selection: Recommendation ID, company homepage, company type, desired use m&SMS Privacy Policy
(3) Enterprise Messaging Service
- Required : Mobile Number, All text messages
2) Privacy collection methods
- Homepage, written form, fax, phone, email
- Delivered from Partners
- Collection through the generation information collection tool
2. Purpose of personal information collection and utilization
1) Member management
- Use of services with membership, identify individuals, prevent unauthorized use and use of defective members, check sign - up, limit sign - up and sign - up, preserve records for dispute settlement, and handle complaints. And Handling complaints and delivering notices.
- The company shall not provide any information about the members ' personal information other than information registered by the members publicly.
2) Contract performance and service delivery fee settlement
- Provide content, deliver specific customized services, send goods or pay bills, authenticate yourself, pay fees, and collect charges
3) Developing new services and utilizing them for marketing, advertising, and promotion
- Developing new services and providing custom services, publishing services according to statistical characteristics, validating services, providing events and advertising information and providing opportunities for participation, understanding access frequency, statistics on member service use
- The company does not use the members ' personal information for commercial marketing, advertising, or promotion. Exceptions apply, however, if the members agree to the members, express their intent to participate, or perform the functions of the selected service. In addition, the company may use the member's e-mail address, phone number, or personal information for non-advertising purposes or operational purposes without the member's additional consent
- The purpose of the company is to collect and analyze information on the members ' service preferences or usage patterns to improve the quality, UI and design of the " Infobank " service or to develop new functions of service
- Companies can use cookies and log files as information and save them for the following reasons :
To enable the member to access the service again without entering the information every time.
To provide information or content tailored to the users.
To check the number of visitors and pageviews of the service.
To check the extent of service use, number of text messages, transmission, visit count, and number of photosvideo uploads, etc.
3. Matters concerning the provision of personal information by third parties
The company shall use the members ' personal information within the scope notified in " 2. Purpose of collecting and using personal information. Without the members ' prior consent, the users shall not use the personal information processing policy beyond the scope of this Privacy Policy or provide their personal information to any third party in principle.
Exceptions apply, however :
1) Customer agrees to provide personal information for purposes other than purpose in advance
2) In case there is a special regulation in the statute or there is a request from the investigation agency in accordance with the procedures and methods set forth in the act of investigation
3) In case statistics are required for statistical production, academic research or market research. In case certain individuals are provided in a format that can not be recognized
4) In case the company provides personal information collected inevitably for compliance with its obligations under the law within its collection purpose
4. Matters concerning consignment of personal information processing
The company may entrust the customer's personal information to an external professional institution to improve its service. The company specifies, manages, and oversees the matters required for safe handling of personal information by outsourced professional institutions according to related statutes, such as the Information and Communications Network Act and the Privacy Act. For details, please refer to the individual privacy statement posted on the website of each service.
Bizplus Privacy Policy m&SMS Privacy Policy
5. Retention and use of personal information
In principle, the company shall discard the users ' personal information without delay when the purpose of collecting or using personal information is achieved. However, the following information shall be retained for the period specified for the reasons specified below :
1) Reasons for Information Retention by Internal Policy
(1) Fraudulent use records
- Reason for preservation : preventing fraudulent use
- Retention Period : 1 year
2) Reasons for Information Retention according to the Related Act
In the event that it is necessary to preserve it according to the provisions of relevant laws, such as laws on consumer protection in commercial laws and electronic. In this case, the company uses the information stored only for the purpose of storage and the period of preservation is as follows :
(1) Records of contract or subscription withdrawal, etc.
- Reason for preservation : Act on the Protection of Consumers in Electronic Commerce, etc.
- Retention Period : 5 year
(2) Records of payment and supply of goods
- Reason for preservation : Act on the Protection of Consumers in Electronic Commerce, etc
- Retention Period : 5 year
(3) Records of handling of complaints or disputes by consumers
- Reason for preservation : Act on the Protection of Consumers in Electronic Commerce, etc
- Retention Period : 3 year
(4) Records of website visits
- Reason for preservation : Communications Secret Protection Act
- Retention Period : 3 months
(5) Communication room confirmation
- Reason for preservation : Communications Secret Protection Act
- Retention Period : 6 months
(6) Records of electronic financial transactions
- Reason for preservation : Electronic Banking Law
- Retention Period : 5 year
6. Procedure and method of personal information destruction
In principle, the company shall disposal such information without delay after the purpose of personal information collection and utilization has been achieved. The disposal procedure and method are as follows.
1) Disposal procedure
The information entered by the members for membership registration is transferred to a separate DB after the purpose is achieved. (Separate basket for paper) It is also destroyed after being stored for a certain period according to the reasons for information protection according to internal policies and other related statutes. (See Retention and Utilization Period)
The personal information transferred to a separate DB is not used for any other purpose than the one held by law.
However, if it is necessary to keep it for a certain period due to the provisions of relevant laws, such as commercial law, for the purpose of identifying trade-related rights obligations, it shall be retained for a certain period.
2) Method of disposal
- Personal information stored in electronic file types is deleted using a technical method that prevents the recording from being played back.
- Personal information printed on paper may be crushed or destroyed by cremator
7. Rights of users and legal representatives and methods of exercise
1) You and your legal representative may inquire or modify the personal information of a registered person or child under the age of 14 at any time. If you do not agree with the processing of the company's personal information, you can reject the agreement or request withdrawal of the membership. However, in such cases, it may be difficult to use some or all of the services.
2) To inquire or modify personal information of users or children under the age of 14, the user must go through the identification procedure by clicking ' Personal Information Change ' (or ' Member Information Amendment '). Or, you can access or modify the information protection plan by contacting the person in writing, by phone or by e-mail.
3) The users shall not use or provide personal information until the correction is completed after requesting correction of personal information. In addition, if incorrect personal information has already been provided to a third party, the result of correction shall be notified to the third party without delay.
4) The company may process or use personal information that has been revoked or deleted at the request of the user or legal representative as specified in " 5. Retention and use of personal information " for no other purpose.
8. Reject the personal information Automated Collection Device and Installation/Operation
The company uses cookies to store and recall members ' information to provide individual or customized services. Cookies are stored on your computer's hard disk as tiny text files from the server used to run the website to your browser.
1) Cookie information (visit history information)
When a member visits or uses the service, the company sends cookies to the member's computer only to check the member's browser. There are two temporary and permanent cookies, and permanent cookies will remain after the member closes the browser. And permanent cookies are used through the member's browser when the member visits the service next time. Persistent cookies will be removed as indicated in the help file. The member can reset the web browser if he refuses to install all cookies or if he wants to override the time when the cookies are sent. However, if cookies are not enabled, the functionality of the service may not work.
2) Log File Information
If a member uses the service, the server automatically records the specific information sent to the member's web browser whenever he or she visits the service. When a member uses the service, the server automatically records the specific information sent by the company's program whenever the member updates or requests the post. Server logs include the following : Requests on the web, Internet protocol, browser type, browser language, URL, platform type, number of clicks, domain name, page specific information, time required by the member, time of call, cookies to recognize the member's browser, The phone number that the member is requesting confirmation.
9. Technical protection of personal information
The company takes the following technical and management measures to ensure safety (No personal information is lost, stolen, leaked, modified, or corrupted) in handling users ' personal information.
1) Technical measures
a. Encrypt your privacy
Important information such as the user's password and mobile phone number is encrypted, stored, and managed.
b. Countermeasures Against Hacking
The company does its best to prevent members ' personal information from being leaked or damaged by hacking or computer viruses. We frequently back up data to prevent damage to personal information and use up-to-date vaccination programs to prevent personal information or data leakage. In addition, the company securely transmits personal information on the network through encryption communication.
c. Restrict access to personal information
The medical institution controls access to personal information through granting, modifying, and deleting personal information processing data systems. It also uses intrusion prevention and intrusion prevention systems to control unauthorized access from outside.
2) Administrative measures
a. Minimize and train personnel
The company's personal information handling staff is limited to those in charge and is regularly updated with a separate password. We always emphasize compliance with the company's privacy policies through frequent training of staff.
b. Operation of a personal information protection agency
Compliance with the company's personal information handling policy is verified through the organization dedicated to the company's internal privacy protection. So if we find a problem, we're trying to fix it immediately. However, the company shall not be held liable for any problems caused by the leakage of personal information, such as ID and password, due to negligence of the users or Internet problems.
10. Personal Information Protection Manager and Contact Us
You can report all personal information protection complaints to the person or department in charge of personal information protection using the company's services. The company will respond promptly to your complaint.
1) Chief Privacy Officer
- Hong,jongcheol (iAccel Representative) / T: 1588-2460 / E: privacy1@infobank.net
2) Department for personal information protection
- Information security team / Shin,hadong / T: 1588-2460 / E: privacy2@infobank.net
3) If you need to report or consult other privacy violations, you can contact the following organizations :
> Personal Information Violations Report Center (privacy.kisa.or.kr / 118)
> Cyber investigation department of the Supreme Public Prosecutors ' Office (www.spo.go.kr / 1301)
> National Police Agency Cyber Security (cyberbureau.police.go.kr / 182)
11. Duty of notice
Any additions, deletions or modifications to the current Privacy Policy will be notified via the website at least seven days before the amendment date.
1) Announcement date : 29 September 2020
2) Date of Enforcement : 6 October 2020