LEGAL
Privacy Policy
# PRIVACY POLICY ## KGH Privacy Policy KGH (hereinafter referred to as the "Company") values customers' personal information and complies with applicable laws and regulations, including the Personal Information Protection Act. Through this Privacy Policy, the Company informs users of how their personal information is collected, used, and protected. --- # ■ Personal Information Collected and Collection Methods ## A. Personal Information Collected The Company collects the following personal information for membership registration, consultation, and service applications. ### When Registering as a Member * Name * Date of Birth * Gender * Login ID * Password * Home Telephone Number * Mobile Phone Number * Email Address * Legal Guardian Information (for users under the age of 14) ### When Applying for Services * Address * Payment Information In addition, during the use of services or business processing, the following information may be automatically generated and collected: * Service Usage Records * Access Logs * Cookies * IP Address * Payment Records * Records of Improper Use --- ## B. Collection Methods The Company collects personal information through: * Website * Written Forms * Bulletin Boards * Email * Event Applications * Delivery Requests * Telephone * Fax * Collection Tools for Generated Information --- # ■ Purpose of Collection and Use of Personal Information The Company uses collected personal information for the following purposes: ## A. Fulfillment of Contracts and Service Provision * Provision of content * Purchase and payment processing * Delivery of goods and invoices * Identity verification for financial transactions and financial services ## B. Member Management * Identity verification for membership services * Personal identification * Prevention of fraudulent use and unauthorized access * Confirmation of membership intent * Age verification * Verification of legal guardian consent for users under 14 * Handling complaints and civil requests * Delivery of notices ## C. Marketing and Advertising * Delivery of promotional and event information * Analysis of access frequency and service usage statistics --- # ■ Retention and Use Period of Personal Information In principle, personal information is destroyed without delay once the purpose of collection and use has been achieved. However, the following information may be retained for specified periods for the following reasons: ## A. Retention According to Internal Policy Even after membership withdrawal, member information may be retained for a certain period to: * Prevent fraudulent use by bad members * Resolve disputes * Cooperate with investigative agencies upon request Retention Period: [OO years] from the date of termination of the service agreement. --- ## B. Retention According to Relevant Laws If preservation is required under relevant laws such as the Act on Consumer Protection in Electronic Commerce, the Company retains member information for the following periods: ### Records on Contracts or Withdrawal of Subscription * Reason for Retention: Act on Consumer Protection in Electronic Commerce * Retention Period: 5 years ### Records on Payment and Supply of Goods * Reason for Retention: Act on Consumer Protection in Electronic Commerce * Retention Period: 5 years ### Records on Consumer Complaints or Dispute Resolution * Reason for Retention: Act on Consumer Protection in Electronic Commerce * Retention Period: 3 years ### Log Records * Reason for Retention: Protection of Communications Secrets Act * Retention Period: 3 months --- # ■ Procedures and Methods for Destruction of Personal Information The Company destroys personal information without delay after the purpose of collection and use has been achieved. ## A. Destruction Procedure Information entered by users for membership registration or other purposes is transferred to a separate database (or separate document storage for paper documents) after the purpose is achieved and stored for a certain period according to internal policies and relevant laws before destruction. Personal information transferred to a separate database is not used for any purpose other than those required by law. ## B. Destruction Method Personal information stored electronically is deleted using technical methods that prevent record recovery. --- # ■ Provision of Personal Information The Company does not provide users' personal information to external parties in principle. Exceptions include: * Cases where users have given prior consent * Cases required by law or requested by investigative agencies according to legal procedures --- # ■ Outsourcing of Collected Personal Information The Company outsources certain tasks to specialized external companies for service implementation. ### Outsourced Parties and Services * Delivery Company: [Courier Company Name] * Task: Delivery Service Operations * Payment Gateway Provider: [PG Company Name] * Task: Payment Processing Services * Suppliers: View Supplier List * Task: [Outsourced Service Details] --- # ■ Rights of Users and Legal Representatives * Users may view or modify their registered personal information at any time and may request membership withdrawal. * Users may directly access, correct, or delete their information through "Edit Personal Information" or "Withdraw Membership" after identity verification. * Users may also contact the Privacy Officer via written request, phone, or email for assistance. * If users request correction of inaccurate information, such information will not be used or provided until correction is completed. * The Company processes deleted information according to the retention periods specified in this Privacy Policy and prevents access or use for other purposes. --- # ■ Installation, Operation, and Refusal of Automatic Collection Devices The Company uses cookies to store and retrieve user information from time to time. Cookies are small text files sent to the user's browser by the website server and stored on the user's computer hard drive. ## A. Purpose of Cookie Use 1. Analysis of access frequency and visit times 2. Identification of user preferences and interests 3. Tracking participation in events 4. Provision of targeted marketing and personalized services ## B. How to Refuse Cookie Settings Users may configure browser settings to: * Allow all cookies * Confirm whenever cookies are saved * Reject all cookies ### Example (Internet Explorer) Tools → Internet Options → Privacy ※ Refusing cookies may result in difficulty using some services. --- # ■ Civil Service Regarding Personal Information The Company designates the following departments and personnel to protect personal information and handle related complaints. ## Personal Information Manager * Name: [OOO] * Department: [OOO] * Tel: [OO-OOO-OOOO] * Email: [Insert Email] --- ## Chief Privacy Officer * Name: [OOO] * Department: [OOO] * Tel: [OO-OOO-OOOO] * Email: gihaesoo@kbesent.com --- Users may report all personal information protection complaints arising from the use of the Company's services to the Chief Privacy Officer or relevant department. The Company will respond promptly and sufficiently to all reports. For additional consultation or reporting regarding personal information infringement, users may contact the following organizations: * Personal Information Infringement Report Center * Website: privacy.kisa.or.kr * Tel: 118 * Personal Information Dispute Mediation Committee * Website: kopico.go.kr * Tel: 1833-6972 * Supreme Prosecutors' Office Cyber Investigation Division * Website: spo.go.kr * Tel: 1301 * National Police Agency Cyber Bureau * Website: cyberbureau.police.go.kr * Tel: 182