Duclean Co., Ltd. (the "Company Website") has established the following processing policy to protect users' personal information and rights and to smoothly handle users' grievances related to personal information in accordance with the Personal Information Protection Act.
If the company revises its privacy policy, it will be notified through website announcements (or individual notifications).
○ This policy is effective from Oct 14, 2024.
1. Purpose of Processing Personal Information
The company processes personal information for the following purposes. The processed personal information will not be used for purposes other than the following, and if the purpose of use is changed, prior consent will be sought.
a. Processing product inquiry consultations
Personal information is processed for the purposes of verifying the applicant's identity, notifying the processing results, etc.
b. Provision of goods or services
Personal information is processed for the purpose of providing services, etc.
2. Items of Personal Information Processed
The company processes the following personal information items.
a.
- Required items: Company name, name, phone number, email
3. Rights and Duties of Information Subjects and Methods of Exercise
Users can exercise the following rights as personal information subjects.
a. Information subjects can exercise the following personal information protection-related rights at any time with respect to the company.
① Request to access personal information
② Request to correct errors, etc.
③ Request to delete
④ Request to stop processing
b. The exercise of rights under 'a' can be done through written documents, e-mails, fax, etc. in accordance with the form prescribed in the Personal Information Protection Act Enforcement Rules, and the company will take action without delay.
c. If the information subject requests correction or deletion of personal information errors, etc., the company will not use or provide the relevant personal information until the correction or deletion is completed.
d. The exercise of rights under 'a' can be done through the legal representative of the information subject or a delegated person. In this case, a power of attorney in accordance with the form prescribed in the Personal Information Protection Act Enforcement Rules must be submitted.
4. Destruction of Personal Information
In principle, when the purpose of processing personal information is achieved, the company will destroy the relevant personal information without delay. The procedures, deadlines, and methods of destruction are as follows.
- Destruction procedure
Information entered by the user is transferred to a separate DB (in the case of paper, a separate document) after the purpose is achieved and stored for a certain period according to internal policies and other relevant laws (3 years for technical support applications) or destroyed immediately (in the case of educational applications, online consultations). Personal information transferred to the DB is not used for any other purpose except in cases required by law.
- Destruction deadline
Personal information of users will be destroyed within 5 days from the end of the retention period, or within 5 days from the date when personal information is recognized as unnecessary, such as the achievement of the processing purpose, service discontinuation, or business termination.
- Destruction method
Information in the form of electronic files is destroyed using technical methods that make the records irrecoverable.
5. Measures to Ensure the Safety of Personal Information
In accordance with Article 29 of the Personal Information Protection Act, the company is taking the following technical, administrative, and physical measures necessary to ensure safety.
a. Conducting regular self-audits
We conduct regular self-audits (once a year) to ensure stability related to the handling of personal information.
b. Minimization and training of personal information handling staff
We are implementing measures to manage personal information by designating and limiting staff who handle personal information to a minimum.
c. Technical measures against hacking, etc.
The company installs security programs to prevent personal information leakage and damage caused by hacking or computer viruses, regularly updates and inspects them, installs systems in areas with restricted access from outside, and technically/physically monitors and blocks access.
d. Access control to unauthorized persons
We have established and are operating access control procedures for physical storage locations containing personal information.
6. Contact Information of Personal
Information Management Officer and Department
Users can report all personal information protection-related complaints arising from the use of the company's services to the personal information management officer or the responsible department. The company will promptly provide sufficient answers to users' reports.
Personal Information Management Officer
Phone: +82-1577-6182
If you need to report or consult on other personal information violations, please contact the following agencies.
- Personal Dispute Mediation Committee (www.1336.or.kr / 1336)
- Information Protection Mark Certification Committee (www.eprivacy.or.kr / 02-580-0533~4)
- Supreme Prosecutors' Office High-Tech Crime Investigation Division (http://www.spo.go.kr / 02-3480-2000)
- Cyber Terror Response Center of the Korean National Police Agency (www.ctrc.go.kr / 02-392-0330)
7. Protection of Personal Information of Children Under 14
Children under the age of 14 must obtain the consent of their legal representative before joining as a member. The legal representative can request the company to view, correct, delete, or withdraw consent to the child's personal information at any time, and the company must take immediate action upon such requests.
8. Others
Please note that the company's "Privacy Policy" does not apply to the personal information collection activities of websites linked to this site.
9. Duty of Notice
In case of any addition, deletion, or modification of the contents of the current privacy policy, it will be notified through the 'Notice' section of the website at least 7 days before the revision.
- Notice Date: Sep 24, 2024
- Effective Date: Sep 24, 2024
