-
Article 1. Purpose of Personal Information Processing
Korea Association for ICT Promotion website (hereinafter, the Association website) does not use personal information for any purposes other than the following purposes. The Association will seek prior consent of users when any changes to such purposes are made.
-
1. Membership Management
The Association collects personal information required to confirm intention to join, maintenance and management of membership
-
2. Registration and management of event participation
Personal information is collected for the purpose of identifying the status of event participants' registration, sending an event information SMS, determining whether participants are registered, and guiding similar events in the future
-
3. Recruitment management
Personal information is collected for the recruitment and management of progressive and creative talents
-
Article 2. Information to be collected and method of collection
① The Association website collects and retains personal information as follows
-
Website Registration and Management
- A. Required information
- 1) Business information: Korean and English company name, business registration number, representative director’s name, founding anniversary, phone/fax, homepage, address, major business contents, company size
- 2) Contact information: the department of the person in charge, name, position, e-mail, phone number, fax
- B. Optional information: additional person in charge, name, position, phone number, dedicated team
- C. Collection method: Written form (Membership application)
-
2. Event Registration and Management
- A. Required information: name, affiliation, title, mobile phone number, e-mail
- B. Collection method: online (homepage for event registration)
-
3. Recruitment management
- A. Required information: name, date of birth, e-mail, mobile phone number, password
- B. Optional information: application details
- C. Collection method: online through a hiring company (consent of information subjects)
-
Article 3. Collection and Retention of Personal Information
The Association website collects and retains personal information under relevant laws and regulations and with information subjects’ consent
No. |
Personal Information Items |
Processing Grounds & Purposes |
Retention Period
(until filling the purpose) |
1 |
Member Company Information |
Internal Regulations (Article 6 of the Association's Articles of Incorporation, Chapter 3, Article 9 of the Document Regulations) |
Until membership withdrawal |
2 |
Information on the Event Participants |
Internal Regulations (Chapter 3, Article 9 of the Document Regulations) |
one year |
3 |
Recruitment Information |
Consent of information subjects |
one year |
-
Article 4. Provision of Personal Information to Third Party
① Personal information retained by the Association website is, in principle, processed within the scope specified in Article 1 (Purpose of Personal Information Processing), and it is prohibited to process it in excess of the original purpose and provide it to a third party, except the following cases:
-
1. Event Applicants
- A. The Recipient: Planus Company
- B. Purpose of use: Event Information, Attendance Guidance, etc.
- C. Period of Recipient’s Personal Information Retention and Use: one year
-
Article 5. Entrustment of Personal Information Processing
- ① The Association website entrusts personal information processing as follows
-
1. Entrusted Party
- A. The name of the trustee company: EluonINS
- B. Address: Room 905, A-dong, U-Space 1, 660 Daewang Pangyo-ro, Bundang-gu, Seongnam-si, Gyeonggi-do, Republic of Korea
- C. Phone number: 070-4278-6571
- D. Entrusted Services: Website maintenance and repair
-
2. Entrusted Party
- A. The name of the trustee company: Planus Company
- B. Address: 17-gil, Saimdang-ro, Seocho-gu, Seoul, Republic of Korea
- D. Phone number: 02-2088-0407
- E. Entrusted Services: Event Information, Attendance Check, etc.
-
3. Entrusted Party
- A. The name of the trustee company: SaraminHR
- B. Address: Room 201, 43, Digital-ro 34-gil, Guro-gu, Seoul, Republic of Korea
- C. Phone number: 02-2025-4733
- D. Entrusted Services: Establishment and management of a recruitment system, and customer service related to the system
- ② When entrusting personal information processing, the Association website abides by Article 26 of the Personal Information Protection Act. Accordingly, the Association stipulates, in a written document, obligations and responsibilities, including the prohibition of personal information processing for purposes other than entrusted services, technical and managerial protection measures, restriction on re-entrustment, supervision of the entrusted party and compensation for damages, and supervises whether the entrusted party safely handles personal information
-
Article 6. Rights and Duties of Information Subjects and Methods to Exercise Them
- ① The information subjects (legal representatives in the case of under the age of 14) may request access to, correction, deletion, and suspension of personal Information retained by the Association and its website at any time
- ② The exercise of rights under paragraph 1 can be made on the website of the Association through mail, e-mail, and facsimile (FAX) in accordance with Article 41 (1) of the Enforcement Decree of the Personal Information Protection Act, and the Association will take action without delay
- ③ The exercise of rights under paragraph (1) can be made through an agent such as a legal representative of the information subject or a person who has been delegated
- ④ Requests for suspension of access and processing personal information may restrict the rights of the information subjects under Articles 35(4) and 37(2) of the Personal Information Protection Act
- ⑤ Requests for correction and deletion of personal information cannot be accepted if other laws and regulations stipulate that personal information is subject to collection
- ⑥ The Association website checks whether the person who made the request is himself or a legitimate agent when receiving a request for access, correction or deletion, and suspension of processing
-
Article 7. Disposal of Personal Information
When the personal information retention period has expired or processing purposes are achieved, the Association website destroys personal information without delay in principle. The process, timing, and methods of personal information disposal are as follows:
-
1. Disposal Process
- In accordance with internal guidelines and relevant laws, the Association website transfers information entered by users to a separate DB (separate document for paper) or disposes of it without delay when the processing purposes are fulfilled. At this time, the personal information transferred to the DB is not used for any other purpose except by law.
-
2. Disposal Timing
- Users’ personal information is destroyed within 5 days after the expiration of the retention or within 5 days of the date when the processing of personal information is deemed unnecessary due to the fulfillment of processing purposes, abolition of the service, and termination of the business.
-
3. Disposal Methods
- Information in electronic form shall be destroyed permanently in a way that it cannot be restored.
-
Article 8. Measures to Secure Safety of Personal Information
Under Article 29 of the Personal Information Protection Act, the Association takes technical, managerial, and physical measures for the safety of personal information as follows:
-
1. Establishment and implementation of an internal management plan
- For the safe processing of personal information, an internal management plan is established and implemented, and the Association's personal information protection management guidelines are followed.
-
2. Number minimization and training of persons in charge of handling personal information
- The Association implements measures to manage personal information by designating and training persons in charge of handling personal information and minimizing the number of the handlers.
-
3. Restriction on Access to Personal Information
- The Association controls access to personal information by granting, changing, and cancelling access rights to database system for personal information processing, and blocks unauthorized access by using firewall and detection systems.
-
4. Retention and Anti-Tampering of Access Records
- The Association stores records of access to its website for at least one year, and makes sure such records are not tampered, stolen, or lost.
-
5. Encryption of personal information
- Users' personal information is encrypted, stored, and managed. Separate security system encrypts important data when stored and transmitted.
-
6. Technical Measures against Hacking
- To prevent personal information leakage and damage by hacking or computer virus, the Association installs, renews, and checks safety programs on a regular basis, installs system in an access-restricted area, and conducts technical and physical surveillance and blocking. The Association also detects attempts to illegally change information as well as monitoring network traffic.
-
7. Physical Access Control on Unauthorized Personnel
- The Association has set up personal information system in a separate physical area, and controls physical access to the system based on its own access control procedures.
-
Article 9. Installation, Operation and Refusal of Automatic Data Collection Tool
- ① The Association website uses “cookie,” which stores and calls usage information out to provide the service.
- ② Cookies are a small amount of information sent by the server used to run the website to the user's computer browser, and are also stored on the user's PC computer's hard disk.
-
1. Purpose of Using Cookies
- The Association uses cookies to offer better services to users by identifying website use pattern, searchword, and secure connection status.
-
2. Installation, Operation, and Refusal of Cookies
- Users have the right to refuse to save cookies, which can be made with the following methods:
-
Article 10. Remedy for Infringement on Rights and Interests
- ① Information subjects may contact the following organizations for counseling or dispute settlement regarding any infringement on personal information-related rights and interests.
-
1. Personal Information Infringement Report Center (operated by the Korea Internet & Security Agency)
- A. Responsible affairs: reporting personal information infringement and applying for counseling
- B. Homepage: privacy.kisa.or.kr
- C. Phone number: : (without area code) 118
- D. Address: : 9 Jinheung-gil, Naju-si, Jeollanam-do, Korea Internet & Security Agency
-
2. Personal Information Dispute Mediation Committee
- A. Responsible affairs: Application for personal information dispute mediation, collective dispute mediation (civil resolution)
- B. Homepage: www.kopico.go.kr
- C. Phone number: : 1833-6972
- D. Address: 12th floor of the Seoul Government Complex, 209 Sejong-daero, Jongno-gu, Seoul, Republic of Korea
-
3. High-Tech Crime Investigation Department, Supreme Prosecutors’ Office
- Contacts: (without area code) 1301, privacy@spo.go.kr (www.spo.go.kr)
-
4. Cyber Terror Response Center, Korean National Police Agency
- Contacts: (without area code) 182, (cyberbureau.police.go.kr)
- ① In addition, a person who has been infringed on rights or interests due to disposition or omission made by the head of the agency in response to the request of the information subjects for access, correction, deletion, and suspension of processing of personal information may request an administrative trial as prescribed by the Administrative Appeals Act. ※ Refer to www.simpan.go.kr's phone number
-
Article 11. Request for Access to Personal Information
Information subjects may request the following department to access to personal information pursuant to Article 35 of the Personal Information Protection Act. The Association will try to expedite Information subjects’ request for personal information access.
-
1. The department that receives and processes requests for access to personal information
- A. Department name: External Cooperation Team
- B. Person in charge: Shin Wonseop
- C. Contacts: ,
-
Article 12. Contacts of the persons in charge of personal information protection “by field”
The Association website designates persons in charge of personal information protection and working-level persons as follows to protect personal information and handle complaints related to personal information.
-
1. Manager for Personal Information Protection
- A. Name: Kwon Byung Wook
- B. Affiliated Department: Bureau of Korea Association for ICT Promotion
- C. Position: Director General
- D. Phone number: 02-580-0540 (to be connected to the personal information protection department)
-
2. Manager for Personal Information Protection by field
- A. Name: Lee Hwabok
- B. Affiliated Department: External Cooperation Team of the Association Bureau
- C. Position: Team leader
- D. Phone number: 02-580-0540 (to be connected to the personal information protection department)
-
3. Staff Member for Personal Information Protection by field
- A. Name: Shin Wonseop
- B. Affiliated Department: External Cooperation Team of the Association Bureau
- C. E-mail: wonsep@kait.or.kr
- D. Phone number: 02-580-0544
- ※ Inquiries about recruitment: 02-580-0592 (Management Support Team)
-
Article 13. Changes to Privacy Policy
- ① This Privacy Policy will take effect on May 11, 2021.
- ② The previous Privacy Policy is below.
- Applicable from February 1, 2014 to May 11, 2021