1. The processing of personal information (ASSA ') processes personal information for the purpose of introduction, and does not use it for purposes other than the purpose of introduction.

- Confirmation of customer's intention to sign up, identification, authentication, maintenance and management of membership, payment of money for supply of goods or services, supply of services, etc.

2. Processing and Retention Period of Personal Information

① (ASSA ') processes and retains personal information within the period of possession and use of personal information agreed to when collecting personal information from the information subject, or within the period of retention and use of personal information according to the law.
② Specific personal information processing and retention period is as follows.
☞ Refer to the example below and enter the retention period and related laws and grounds for personal information processing and personal information processing.
(Example)-Customer registration and management: Until the service use contract or termination of membership, but in the case of remaining bond and debt relationship, until settlement of relevant bond and debt relationship -Records of contract, subscription withdrawal, payment, goods, etc. in e-commerce: 5 years

3. Rights and duties of information subjects and legal representatives and how to exercise them As a personal information subject, users can exercise the following rights.

① The information subject can exercise the following rights related to personal information protection at any time for ASSA (ASSA).
1. Request for access to personal information
2. Request for correction in case of error
3. Delete request
4. Processing stop request

4. Create items of personal information to be processed

① (hereinafter 'ASSA') processes the following personal information items. - Required items: mobile phone number, password question and answer, password, login ID, gender, date of birth, name
- Optional items: e-mail, service usage record, access log, access IP information, payment record

5. Destruction of personal information ('ASSA'), in principle, will destroy the personal information without delay when the purpose of processing personal information is achieved. The procedures, deadlines and methods of destruction are as follows:

-Destruction procedure
The information entered by the user is transferred to a separate DB (separate documents in the case of paper) after accomplishing the purpose, and stored or destroyed immediately for a period of time according to internal policies and other relevant laws. At this time, the personal information transferred to the DB will not be used for other purposes unless required by law.

-Destroyed
If the personal information of the user becomes unnecessary within 5 days of the end of the retention period when the retention period of the personal information has elapsed, the personal information becomes unnecessary, such as achieving the purpose of processing the personal information, abolishing the service, or terminating the business. The personal information will be destroyed within 5 days from the date when the processing is deemed unnecessary.

6. Matters concerning installation, operation and rejection of automatic collection of personal information

ASSA does not use 'cookies' that store and retrieve the data subject's usage information from time to time.

7. Write a personal information officer

① ASSA (ASSA) is responsible for the handling of personal information, and appoints the person in charge of personal information protection in order to deal with complaints and damages of information subjects related to the processing of personal information.

▶ Personal Information Protection Officer
Name: Yoo, Kyeong Mi
Position: Representative
Position: CEO
Contact: houseinseoul@gmail.com
 

▶ Personal Information Protection Department
Person in charge: Yoo, Kyeong Mi
Contact: houseinseoul@gmail.com
 

② The information subject can inquire the personal information protection officer and the department in charge about all personal information protection related inquiries, complaints, and damage relief that occurred while using the service (or business) of ASSA (ASSA). ASSA (ASSA) will respond promptly to the data subject's inquiries.

 

8. Changes to the Privacy Policy

①This personal information processing policy will be applied from the effective date, and if there are additions, deletions, and corrections according to the laws and policies, we will notify you through the notice seven days before the effective date of the changes.

 

9. Measures to ensure the safety of personal information ('ASSA') takes the technical, administrative and physical measures necessary to secure safety in accordance with Article 29 of the Personal Information Protection Act.

1. Regular self-audit
In order to secure the safety of handling personal information, we conduct self-audit on a regular basis (once a quarter).

2. Minimization and training of personal information handling staff
We designate employees who handle personal information, minimize it to the person in charge, and take measures to manage personal information. 3. Encryption of personal information
User's personal information is encrypted and stored and managed, so only the user can know and important data uses separate security functions such as encrypting file and transmission data or using file lock function. 4. Restricting Access to Personal Information
We take necessary measures to control access to personal information by granting, modifying and erasing the access right to the database system that processes personal information, and use intrusion prevention system to control unauthorized access from outside.