Privacy Policy
Last updated
Last updated
SELTASQUARE Inc. (here in after referred to as the "Company") establishes and discloses its Privacy Policy as follows to protect the personal information of data subjects in accordance with relevant laws and regulations and to ensure prompt and smooth handling of related grievances.
This Privacy Policy is effective as of September 1, 2024.
The Company processes personal information for the following purposes. The processed personal information will not be used for purposes other than those listed below, and if the purpose of use changes, necessary measures will be taken, such as obtaining separate consent in accordance with relevant laws and regulations.
Creation and management of user accounts Comment
Provision of services Comment
Customer support regarding services
① The Company processes and retains personal information within the retention and use period stipulated by relevant laws and regulations or within the retention and use period agreed upon when collecting personal information from the data subject.
② The processing and retention periods for each type of personal information are as follows:
Purpose of Personal Information Processing | Personal Information Retention and Storage Period |
---|---|
① Data subjects may exercise their rights at any time against the Company, including rights to request access to, correction of, deletion of, and suspension of processing of personal information.
② The exercise of rights under Paragraph 1 of this Article may be made to the Company in writing, by email, or by fax in accordance with personal information protection laws, and the Company shall take action without delay.
③ The rights under Paragraph 1 of this Article may also be exercised through a legal representative of the data subject or an authorized representative. In this case, a power of attorney must be submitted in accordance with Form No. 11 of the "Notice on Personal Information Processing Methods."
④ When a data subject requests access to or suspension of processing of personal information, their rights may be restricted in accordance with relevant laws and regulations.
⑤ Even if a data subject requests correction or deletion of personal information, the Company may not accept such requests if the personal information is specified as information to be collected under other laws.
⑥ When responding to requests for access, correction/deletion, or suspension of processing according to data subject rights, the Company verifies whether the person making the request is the data subject themselves or their legitimate representative.
① The personal information that the Company may collect from data subjects when creating user accounts is as follows:
Required information: Email (Personal work email or Corporate shared email)"
② The Company may collect additional personal information from data subjects during individual service use as follows. When collecting additional personal information, the Company will inform the data subject about 'Consent for Personal Information Collection and Use, Personal Information Retention Period' at the time of collection and obtain consent.
Additional personal information collection items within SELTA SQUARE services:
Institution name, Institution phone number, Institution address, Representative name, Representative contact number, Representative email, Representative department, Representative position
③ The Company may collect additional personal information from data subjects after obtaining consent while providing the following services:
SELTA-LITUS
SELTA-WAVE
SELTA-OCTO
SELTA-TUBE
PV and QA services provided by SELTASQUARE
SELTASQUARE website (https://www.seltaglobal.com/)
① The Company outsources personal information processing tasks as follows to ensure smooth handling of personal information:
② When concluding outsourcing contracts, the Company specifies in documents such as contracts matters concerning the prohibition of personal information processing outside the purpose of performing outsourced tasks, technical and administrative protection measures, restrictions on re-outsourcing, management and supervision of the outsourced party, and liability for damages in accordance with relevant laws. The Company supervises to ensure that the outsourced party processes personal information safely.
③ If there are any changes in the content of outsourced tasks or the outsourced party, the Company will disclose such changes without delay through this Privacy Policy.
① The Company shall destroy personal information without delay when it becomes unnecessary, such as when the retention period has expired or the purpose of processing has been achieved.
② If personal information must continue to be preserved under other laws despite the expiration of the personal information retention period agreed upon by the data subject or the achievement of the processing purpose, such personal information shall be transferred to a separate database (DB) or preserved in a different storage location.
Legal basis: Personal Information Protection Act
Personal information items being preserved: Currently none
③ The procedures and methods for destroying personal information are as follows:
Destruction procedure
The Company selects personal information for which cause for destruction has occurred and destroys it with the approval of the Company's personal information protection officer.
Destruction methods
For information in electronic file format, technical methods that prevent reproduction of records are used.
Personal information printed on paper is destroyed by shredding or incineration.
The Company takes the following measures to ensure the security of personal information:
Minimization and Training of Personnel Handling Personal Information: We implement measures to manage personal information by designating and limiting the number of employees who handle personal information to only those in charge.
Establishment and Implementation of Internal Management Plan: We establish and implement an internal management plan for the safe processing of personal information.
Technical Measures Against Hacking: SELTASQUARE inc. installs security programs and conducts regular updates and checks to prevent personal information leakage and damage caused by hacking or computer viruses. We install systems in areas with controlled external access and monitor and block them technically/physically.
Encryption of Personal Information: Users' personal information and passwords are encrypted for storage and management, which can only be known by the user themselves. Important data is protected using separate security features such as encrypting files and transmission data or using file locking functions.
Storage and Prevention of Falsification of Access Records: We maintain and manage access records to personal information processing systems for at least 1 year. However, in cases where personal information is added for more than 50,000 data subjects, or when processing unique identification information or sensitive information, records are maintained and managed for more than 2 years. Additionally, security features are used to prevent access records from being falsified, stolen, or lost.
Access Restriction to Personal Information: We implement necessary measures for access control to personal information by granting, modifying, and revoking access rights to database systems that process personal information, and control unauthorized external access using intrusion prevention systems.
Access Control for Unauthorized Persons: SELTASQUARE inc. establishes and operates access control procedures for access to personal information handled by the company.
The company does not use 'cookies' that srore and periodically retrieve users' usage information.
① The company designates a personal information protection officer as follows to oversee all matters concerning personal information processing and to handle complaints and remedies related to personal information processing from data subjects.
▶ Personal Information Protection Officer
Name: Yongsung Lim
Position: CTO
Title: Director
Contact: 070-4032-7015, yslim205@seltasquare.com
※ You will be connected to the department in charge of personal information protection.
▶ Department in Charge of Personal Information Protection
Department: DT Team
Manager: DT Team Leader
Contact: 070-4032-7015, hkan303@seltasquare.com
② Data subjects may inquire about all matters related to personal information protection, complaint handling, and damage relief that occurred while using the company's services (or business) to the personal information protection officer and the department in charge. The company will respond to and handle inquiries from data subjects without delay.
In accordance with relevant laws, data subjects can request access to personal information from the department below. The company will strive to process data subjects' requests for access to personal information promptly.
▶ Department Receiving and Processing Personal Information Access Requests
Department: DT Team
Manager: DT Team Leader
Contact: 070-4032-7015, hkan303@seltasquare.com
Data subjects can apply for dispute resolution or consultation with the Personal Information Dispute Mediation Committee, KISA Personal Information Infringement Report Center, etc., to receive remedy for personal information infringement. For other reports and consultations regarding personal information infringement, please contact the following institutions:
Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr)
Personal Information Infringement Report Center: (without area code) 118 (privacy.kisa.or.kr)
Supreme Prosecutors' Office: (without area code) 1301 (Supreme Prosecutors' Office)
National Police Agency: (without area code) 182 (Cyber Crime Report System (ECRM))
According to the provisions of Article 35 (Access to Personal Information), Article 36 (Correction and Deletion of Personal Information), and Article 37 (Suspension of Processing of Personal Information, etc.) of the "Personal Information Protection Act," those whose rights or interests have been infringed upon due to disposition or inaction by the head of a public institution may file an administrative appeal in accordance with the Administrative Appeals Act.
※ For more details about administrative appeals, please refer to the Central Administrative Appeals Commission (Online Administrative Appeals) website.
① This personal information processing policy will be effective from September 1, 2024.
Outsourced Party | Outsourced Tasks | Personal Information Retention and Storage Period |
---|---|---|
Creation and Management of User Account
During Service Provision Period
Service Provision
During Service Provision Period
Customer Support Regarding Services
During Service Provision Period
Stibee
Email Distribution
Until member withdrawal or termination of outsourcing contract
AWS
Cloud Infrastructure Management
During service provision period or until termination of outsourcing contract