KAC Media Group Co., Ltd. (hereinafter referred to as the "Company") protects the personal information of information subjects in accordance with the Personal Information Protection Act and the Act on Promotion of Information and Communications Network Utilization and Information Protection (hereinafter referred to as the "Information and Communications Network Act") and related matters The following personal information processing guidelines are established to facilitate and expedite processing of personal information. The company collects only a minimum amount of information to provide smooth service, and may additionally collect information necessary for payment, delivery, and refund according to service use.



1. Purpose of processing personal information

① Membership registration and management
Personal information is processed for the purpose of confirming the intention to join as a member, identifying and verifying identity according to the provision of membership services, maintaining and managing membership, preventing illegal use of services, checking whether children are under the age of 14, various notices and notifications, and handling grievances, etc. .
② Office processing
Personal information is processed for the purpose of verifying the identity of the member, confirming complaints, and notifying the processing result.
③ Provision of goods or services
Personal information is processed for the purpose of service provision, content provision, and payment/settlement.
④ Utilization for marketing and advertising
Development of new services (products) and provision of customized services, provision of event and advertisement information and participation opportunities, provision of services and advertisements according to demographic characteristics, verification of service validity, identification of access frequency, or statistics on member service use, etc. We process personal information for this purpose.



2. Items of personal information

Required items: email, password, name, contact information, login ID (or social login information) service use record, access log, cookie, access IP information, payment record, payment information
Optional items: The method of collecting encrypted user confirmation value (CI) and duplicate registration confirmation information (DI) is carried out through individual inquiries such as registration information and e-mail when registering as a member



3. Processing and retention period of personal information

① The company processes and retains personal information within the period of retention and use of personal information in accordance with laws and regulations or within the period of retention and use of personal information agreed upon when collecting personal information from the information subject.
② Each personal information processing and retention period is as follows.
(1) Service membership registration and management: Until service withdrawal
However, in the case of the following reasons, until the
- If an investigation or investigation is in progress due to a violation of the relevant laws and regulations, until the investigation or investigation is completed.
If the bond/debt relationship remains due to the use of the website, it is stored until the settlement of the relevant bond/debt relationship, or, if there is an individual consent of the member, until the period according to the individual consent.



4. Rights and obligations of data subjects and how to exercise them

① The information subject can exercise the following personal information protection rights against the company at any time.
(1) Request to read personal information
(2) Request for correction in case of errors, etc.
(3) Request for deletion
(4) Request to stop processing
② The exercise of the rights pursuant to Paragraph 1 can be made to the company in writing, by phone, or by e-mail, and the company will take action without delay.
③ If the information subject requests correction or deletion of personal information errors, the company will not use or provide the personal information until the correction or deletion is completed.
④ The exercise of the rights pursuant to Paragraph 1 may be done through an agent such as the legal representative of the information subject or a person who has been delegated. In this case, you must submit a power of attorney in accordance with Form 11 of the Enforcement Regulations of the Personal Information Protection Act.
⑤ The information subject must not infringe on the personal information and privacy of the information subject himself or others processed by the company in violation of related laws such as the Personal Information Protection Act.



5. Destruction of personal information

① The company destroys the personal information without delay when the personal information becomes unnecessary, such as the elapse of the personal information retention period or achievement of the purpose of processing.
② If the personal information retention period agreed by the information subject has elapsed or the personal information has to be kept in accordance with other laws despite the achievement of the purpose of processing, move the personal information to a separate database (DB) or change the storage location Conserve otherwise.
③ The procedure and method of personal information destruction are as follows.
(1) Destruction procedure: The company selects the personal information for which the reason for destruction has occurred, and destroys the personal information with the approval of the company's personal information protection officer.
(2) Destruction method: The company destroys personal information recorded and stored in electronic file form so that the record cannot be reproduced, and personal information recorded and stored in paper documents is destroyed by crushing or incineration with a shredder.



6. Measures to ensure the safety of personal information

① The company is taking the following measures to ensure the safety of personal information.
② Administrative measures: establishment and implementation of internal management plans, regular employee training, etc.
③ Technical measures: management of access rights of personal information processing system, etc., installation of access control system, encryption of unique identification information, installation of security program
④ Physical measures: Access control of computer rooms, data storage rooms, etc.



7. Matters concerning the installation, operation and rejection of the automatic personal information collection device

① The company uses 'cookies' to store and retrieve usage information from time to time to provide users with individually customized services.
② Cookies are a small amount of information that the server (http) used to operate the website sends to the user's computer browser and is also stored on the hard disk of the user's PC computer.
go. Purpose of use of cookies: They are used to provide optimized information to users by identifying the types of visits and usage of each service and website visited by the user, popular search terms, and whether or not secure access is available.
me. Installation, operation, and rejection of cookies: You can refuse to store cookies by setting options in the Tools>Internet Options>Personal Information menu at the top of the web browser.
All. If you refuse to store cookies, you may experience difficulties in using customized services.



8. Provision of personal information to third parties

The company does not use the member's personal information to a third party without the prior consent of the member or use it beyond this range.
The company uses members' personal information within the scope notified in the purpose of collection and use of personal information. Exceptions are as follows.
If the contents of the consignment work or the consignee is changed, we will disclose it through this personal information processing policy without delay.
① When members have agreed to disclose or provide to a third party in advance
② In accordance with the provisions of the Act, however, if there is a request from the investigation agency and the supervisory authority in accordance with the procedures and methods stipulated in the Act for the purpose of investigation and investigation
In addition, if it is necessary to provide personal information to a third party, personal information may be provided to a third party with the consent of the member through a reasonable procedure. Gifts may be refunded by the original purchaser (actual purchaser).



9. Remedies for Infringement of Rights

Information subjects can inquire about damage relief and counseling for personal information infringement to organizations such as the Personal Information Infringement Report Center, Personal Information Dispute Mediation Committee, Cyber ​​Crime Investigation Team of the Supreme Prosecutors' Office, and Cyber ​​Security Bureau of the National Police Agency.



10. Changes to the Privacy Policy

The personal information processing policy is effective from the effective date, and if there is any addition, deletion or correction of changes according to laws and policies, we will notify you through a notice 7 days before the implementation of the changes.



11. Privacy Officer

The company has designated a person in charge of personal information protection to handle inquiries and complaints related to users' personal information.




KAC MEDIA GROUP Corporation.
December 1, 2021