Privacy Policy
CRYPTED Co., Ltd. (hereinafter 'Company' or ‘We’) takes the protection of Users’ personal information very seriously and strives to comply with the personal information protection regulations of the [Personal Information Protection Act] do. In order to quickly and smoothly handle complaints related to the processing of personal information, we establish and disclose the following privacy policy.
Purpose of Processing Personal Information
The Company processes personal information for the following purposes. Personal information processed is not used for any purpose other than the following purposes, and if the purpose of use is changed, necessary measures will be implemented, such as obtaining separate consent under Article 18 of the Personal Information Protection Act.
1. Handling inquiries
Processing of personal information for the purpose of confirming the identity of inquiries, confirming the details of inquiries, contacting and notifying for fact-finding, and notifying the results of handling.
2. Development and marketing of new services, and advertisement
Development of new services and provision of customized services, provision of the service as per statistical characteristics, advertisement publication, confirmation of the service validity, provision of information about events and promotions, and engagement with users for participation in events, visibility into the frequency of the access, statistics about User’s use of service, and check and utilization of personal information for sending gifts.
Information to be collected and Retention Period of Personal Information
The Company processes and retains personal information within the period of possession or use of personal information or the period of use of personal information agreed upon when collecting personal information from the information subject in accordance with the statutes. When the purpose of collection and use of personal information is accomplished, the User’s personal information is destroyed without further delay in principle. However, the following information is retained for reasons as set forth below during a specified period.
1. Reasons for information retention in accordance with the policies of the Company
Division: Contact us
Items to be collected(Retained information): name, email address, company name, company divisions(option)
Reasons for retention: Processing the User’s requests
Retention period: 1 years
2. Reason for information retention in accordance with related laws
When separate consent is obtained for the retention period of personal information, or for a certain period of time in accordance with laws such as dispute resolution and civil complaint handling, it is stored and managed separately from other information subjects.
Records of contracts or withdrawals from subscription: Act on the Consumer Protection in Electronic Commerce, etc. / 5 years
Records of payments and supply of goods, etc.: Act on the Consumer Protection in Electronic Commerce, etc. / 5 years
Records of consumer’s complaints or mediation of disputes: Act on the Consumer Protection in Electronic Commerce, etc. / 3 years
Records of labelling/advertisements: Act on the Consumer Protection in Electronic Commerce, etc. / 6 months
Books and evidential papers about all transactions regulated by the tax law: Framework Act on National Taxes and Corporate Tax Act / 5 years
Records of electronic financial transaction: Electronic Financial Transactions Act / 5 years
Service visit history: Protection of Communications Secrets Act / 3 months
Provision of personal information to third parties
The Company uses Users’ personal information within the scope specified in “Purpose of Personal Information Processing” and provides personal information to third parties only if it falls under Articles 17 and 18 of the Personal Information Protection Act. In the event that personal information is provided after prior consent from the User.
Consignment of personal information processing
The company plans to disclose the contents of the consignment agency and consignment task when consigning personal information processing tasks for smooth personal information processing. We will make it public.
Destruction of personal information
When personal information becomes unnecessary due to the elapsed retention period of personal information, or the achievement of the processing purpose, the company shall promptly destroy such personal information. The user's personal information is stored separately in the database after the purpose is achieved. Company uses the following procedure and method to destroy personal information.
1. Destruction procedure
The company selects personal information for destruction when the reasons for disposal arise, and obtains approval from the company's personal information protection manager before destroying the personal information.
2. Expiration date
The papers on which the personal information is printed are shredded by a shredder or burned to be destroyed. The personal information stored in an electric file format is deleted by a technique which permanently destroys the records.
Rights, Obligations and Methods of Exercise of Users and Information subjects
We actively guarantee the rights of information subjects (right to self-determination of personal information). The personal information held by the company is as follows, and can be requested to the person in charge of personal information protection.
Items and contents of personal information
Purpose of collection and use of personal information
Retention and use period of personal information
Status of provision of personal information to third parties
Facts and contents of consent to personal information processing
The information subject who has read his or her personal information may request correction or deletion of personal information that is different from the facts or cannot be verified. However, if the personal information is specified as subject to collection in other laws, the deletion cannot be requested.
When requesting access to and suspension of processing of personal information falls under any of the subparagraphs, the rights of the User may be restricted pursuant to Articles 35 and 37 of the Personal Information Protection Act. In this case we can notify the User of the reason and reject the request for suspension of processing.
1. When viewing is prohibited or restricted by law
2. If there is a risk of harming the life or body of another person or of unreasonably infringing on the property or interests of another person
3. In the case where it is difficult to fulfill the contract, such as failure to provide services agreed upon with the User if personal information is not processed, and the User has not clearly stated their intention to terminate the contract
Measures to Ensure Safety of Personal Information
In accordance with Article 29 of the 「Personal Information Protection Act」, the company will comply with and implement the following technical, managerial, and physical measures necessary to secure safety, and strive to protect personal information safely.
Establishment and implementation of internal management plan for safe handling of personal information
Restriction and management of access control and access rights to personal information
Storage of access records and prevention of forgery/falsification
Encrypted communication, encrypted storage and management of personal information
Establishment of technical countermeasures against hacking and operational measures such as intrusion prevention system
Installation and renewal of security programs
Destruction and management of personal information
Employee training related to personal information protection
Matters necessary for the protection of other personal information, such as safety measures in preparation for disasters
Installation, Operation and Refusal of Collecting Personal Information Automatically
The company website operates 'cookies' that frequently store and find Users’ information. Users’’ personal information collected through cookies is limited to page view status, and no other information is collected. Users have a choice about cookies, and Users can accept all cookies in their web browser, check each time a cookie is saved, or refuse to save all cookies.
1. For Internet Explorer: Tools menu at the top of the web browser> Internet Options> Privacy> Settings
2. In case of Chrome: Settings menu on the right side of the web browser> Show advanced settings at the bottom of the screen> Content settings button for personal information> Cookies
Contact Details of the Personnel in Charge of Privacy Protection
In order to protect the personal information of the User and handle complaints related to personal information, the company appoints the relevant department and personal information manager as follows.
Information Protection Chief Officer: Andrew Park
Email: support@crypted.co.kr
Phone number: +82-566-2301
If necessary for reporting and counseling related to other personal information infringement, please contact the institution below.
Personal Information Infringement Report Center (https://privacy.kisa.or.kr / 118 without a telephone exchange number)
Personal Information Dispute Mediation Committee (www.kopico.go.kr / 1833-6972 without a telephone exchange number)
Supreme Prosecutor's Office Cyber Investigation Division (http://www.spo.go.kr / 1301 without a telephone exchange number)
National Police Agency Cyber Investigation Bureau (http://cyberbureau.police.go.kr / 182 without a telephone exchange number)
Matters Regarding Changes to Personal Information Handling Policy
1. This policy will be effective from April 24, 2023.
2. The company's personal information processing policy applies from the effective date. If there is an addition, deletion, or correction of changes in accordance with laws and policies, we will notify you 7 days prior to implementation of the possible changes.