Collection and Use of Personal Information
1. To check and manage registration information
2. To perform identification and authentication with regards to delivery of service
3. To maintain and manage the register`s qualifications
4. To conduct identification in accordance with the real-name system
5. To provide customized service
6. To prevent fraudulent use of services Article 2 (Retention Period and Processing of Personal Information) ① Secretariat uses and retains personal information for the period specified by law or for a period previously agreed upon by the user at the time of their personal information collection.
② Personal information is used and retained as follows:
▶ Article 1 Paragraph 1- 6: The secretariat will use and store the users’ personal data until the user deletes his/her user account on the website. Article 3 (Provision of Personal Information to a Third Party) ① Secretariat uses the user’s personal information only within the bounds specified in Article 1 (Purpose of Using Personal Information) and it provides such personal information to a third party only in accordance with Article 17 and 18 of the PIPA, including with the user’s consent and under special circumstances required by law.
② Secretariat provides information to a third party.
▶ Ezpmp Co.,Ltd. (Agency)
- Company which is provided information: Ezpmp Co.,Ltd
- Purpose of the use of personal information: Managing the event
- Provided personal information fields
[Member information] E-mail(ID), Password, Full Name, Gender, Age, Affiliation, Job Title, phone no., etc.
[Items for customized service] Information given upon membership sign up including the areas of interest
- Duration of the data processing: The secretariat will use and store the users’ personal data until the user deletes his/her user account on the website. Article 4 (Outsourcing of Personal Information Management) ① To ensure efficient management of personal information, Secretariat has hired outside entities as follows:
▶ Website maintenance
Agency: Micehub Co.,Ltd.
Delegated services: website maintenance and server management and overall event operation
② When hiring an outside entity, Secretariat ensures that the agreement with the entity specifies the ban on using personal information for purposes other than performing their consigned services, technical and managerial protection measures, the ban on sub-delegating such services, the supervision and oversight of the entity, and contractual obligations such as compensation for losses and that the entity uses personal information in a secure manner, in accordance with Article 26 of the PIPA.
② The user can exercise their rights set forth in Paragraph 1 through a letter, phone call, email, etc., under the Enforcement Rules of the PIPA Article 41 Paragraph 1, in which case Secretariat will take necessary measures immediately.
③ The user can exercise their rights stipulated in Paragraph 1 through an agent such as their legal representative or attorney-in-fact, in which case the user is required to submit a power of attorney according to Form 11 set forth in the attachment of the Notice of Processing of Personal Information Processing Method (No. 2020-7).
④ The request for viewing and suspending the use of personal information may be restricted pursuant to Article 35 Paragraph 4 and Article 37 Paragraph 2 of the PIPA
⑤ The request for amendment and deleting the use of personal information shall not be requested if the personal information is specified in other Acts`s collection abject.
⑥ Secretariat should check whether the person who made the request for viewing, amendment, deleting and suspending the use of personal information, according to the right of the information subject, is himself or herself or a legitimate deputy. Article 6 (Personal Information Used) Secretariat uses the following personal information:
1. Article 1 Paragraph 1-6
- Member information: E-mail (ID), Password, Full Name, Gender, Age, Affiliation, Job Title, Phone no., etc.
- Items for customized service: Information given upon membership sign up including the areas of interest
2. The following personal information fields can be automatically created and collected for content and exhibitor/buyer recommendation, during the Internet service use process: IP address, cookie, MAC address, service use record, visit record Article 7 (Destruction of Personal Information) ① Secretariat destroys relevant personal information immediately if such information is no longer needed, including when the retention period has expired or the purpose of the information use has been achieved.
② In case other laws require this information be retained even after the term of retention agreed upon by the user has expired or the purpose of information use has been achieved, Secretariat transfers relevant personal information to a separate database or stores this information in another space.
③ The procedure for, and the method of, destroying personal information are as follows:
Secretariat identifies personal information to be destroyed for predetermined reasons and then destroys this information after obtaining approval from the privacy officer of Secretariat in charge of managing personal information.
Secretariat destroys personal information recorded and stored in the form of electronic data by using such methods as low-level format to render the destroyed data irrecoverable, and it destroys personal information recorded and stored in paper document by burning or shredding the files. Article 8 (Personal Information Security) Secretariat takes the following measures to ensure the security of personal information:
▶ Managerial measures: develop and implement internal management plans and educate employees on a regular basis
▶ Technical measures: manage access to the personal information system, etc., install the access control system, encrypt unique identifiers, etc., and install security programs
▶ Physical measures: control access to IT and storage rooms Article 9 (Automatic Personal Information Collection and Refusal of Such Automatic Collection) ① Secretariat uses “cookies” that store and retrieve user data to provide the user with personalized services. ② Cookies refer to small bits of data that the HTTP server used to operate the website sends to the user’s computer browser and they may be stored on the hard disk of the user’s computer.
a. Purpose of using cookies: Cookies are used to identify services and websites accessed by the user and analyze the type of access and use, popular search keywords, use or lack of use of secure access, etc., to offer services optimized for the user
c. Refusal to store cookies may prevent the user from using personalized services. Article 10 (Privacy Manager) ① Secretariat has appointed the following privacy manager in charge of managing personal information, addressing user complaints about the use of their personal information, and handling remedies for losses.
▶ Privacy manager
Agency: Korea Land and Housing Corporation
Name: Park June-hyup
※ Above contact point is of the department responsible for privacy protection.
▶ In charge of privacy protection
Agency: Ezpmp Co.,Ltd.
Person in charge: Lee Jung-hee
② The user may contact the privacy manager and the department responsible for privacy protection for all inquiries, complaints, and remedies concerning privacy protection issues that may arise during the course of using Secretariat’s services (or business). Secretariat will immediately answer questions from the user and conduct necessary actions. Article 11 (Request for Viewing Personal Information) The user can make a request to the following department to access their personal information retained in accordance with Article 35 of the PIPA. Secretariat will strive to ensure that the user can promptly access their retained personal information.
▶ In charge of receiving and handling requests for accessing retained personal information
Agency: Ezpmp Co.,Ltd.
Person in charge: Lee Jung-hee
Article 12 (Remedies in Case of Violation of Rights, etc.) The user can contact the following organizations for consultation and make inquiries to them about remedies in case of violation of rights, etc:
<The following organizations are independent organizations not affiliated with Secretariat. Users may contact them for inquiries if they are not satisfied with Secretariat’s handling of their complaints or the results of remedies or if they need additional assistance.>
▶ Personal Information Infringement Report Center (operated by the Korea Internet and Security Agency)
Business area: reports of privacy breaches and requests for consultation
Phone: (no area code) 118
Address: (postal code: 58324) 3rd floor, 9, Jinheung-gil, Naju-si, Jeollanam-do
▶ Personal Information Dispute Mediation Committee
Business area: dispute mediation concerning privacy breaches and group dispute mediation (civil resolutions)
Phone: (no area code) 1833-6972
Address: (postal code: 03171) 4th floor, 209, Sejong-daero, Jongno-gu, Seoul
▶ Cybercrime Investigation Department of the Supreme Prosecutors Office
▶ Cyber Bureau of the National Police Agency
Phone: (no area code) 182