cocogn (hereinafter referred to as the ‘Company’) complies with the personal information protection regulations in relevant laws and regulations that information and communication service providers must observe, such as the Protection of Communications Secrets Act, the Telecommunications Business Act, and the Act on Promotion of Information and Communications Network Utilization and Information Protection, and is doing its best to protect the rights and interests of users by establishing a privacy policy based on relevant laws and regulations.
This privacy policy may change in accordance with changes in laws or guidelines related to personal information protection and changes in Company policies, so users are requested to check it frequently when visiting our site.
The Company's privacy policy is as follows:
- "Personal Information" refers to information about a living individual, including symbols, letters, voice, sound, and video by which a specific individual can be identified by name, resident registration number, etc. (including information that cannot identify a specific individual by itself but can be easily combined with other information to identify the individual).
- "User" refers to a person who accesses the website ({SITE_URL}) of cocogn and receives services provided by the Company in accordance with these Terms and Conditions.
The Company has prepared a procedure where users can click the "Agree" button or "Disagree" button regarding the contents of the Company's privacy policy or terms of use.
Accordingly, if the user expresses an intention to agree, it is considered that they have consented to the collection of personal information.
- The items of personal information collected are as follows to ensure smooth customer consultation and the provision of various services. [Items collected for online inquiries and newsletters]
- Online inquiries, answers, and customer consultations: Name, Email, Mobile phone number
- Newsletter subscription and sending: Name, Email
- IP address: Cookies, Date and time of visit, Service use records
- Method of collecting personal information
The Company collects personal information in the following ways:- Website consultation bulletin board, Telephone, Email
- The Company obtains the consent of a legal guardian when collecting personal information of children under the age of 14.
- The legal guardian of a child under the age of 14 may request access to, correction of, or withdrawal of consent for the child's personal information, and upon receiving such a request, the Company will take the necessary measures without delay.
- Provision of services
- Use of various contents provided to users and consultation inquiries
- Handling civil complaints such as complaint processing, and delivery of notices
- Utilization for new service development and marketing/advertising
- Delivery of promotional information such as events, and delivery of goods when winning an event
- New service development and specialization, provision of services and placement of advertisements based on demographic characteristics
- Identification of access frequency or statistics on users' service utilization
The Company retains and uses users' personal information only during the period when the user is provided with the services.
When consent to the collection and use of personal information is withdrawn, when the purpose of collection and use is achieved, when the retention and use period expires, or when grounds such as business closure occur, the relevant personal information is destroyed without delay.
However, the following information is preserved for the period specified for the reasons below:
- Act on the Consumer Protection in Electronic Commerce
- Personal information and consultation details entered at the time of inquiry: Retained for 3 years
- Records on consumer complaints or dispute resolution: Retained for 3 years
In principle, once the purpose of collecting personal information is achieved, the Company destroys the relevant information without delay according to the retention and use period.
The Company's procedures and methods for destroying personal information are as follows:
- Destruction procedure
- Information entered for site use is stored for a certain period and then deleted or destroyed after the purpose of use is achieved, in accordance with internal policies and other information protection grounds under relevant laws and regulations (refer to the period of retention and use).
- Destruction method
- Personal information stored in electronic file format is deleted using technical methods that cannot reproduce the records.
Personal information printed on paper is destroyed by shredding with a shredder or by incineration.
- Personal information stored in electronic file format is deleted using technical methods that cannot reproduce the records.
The Company uses the user's personal information within the scope notified in Article 4, and does not use it beyond that scope without the user's prior consent, nor does it provide the user's personal information to third parties in principle.
[Provision to Third Parties]To provide better services, your personal information may be provided to or shared with third parties. When providing or sharing personal information, a procedure will be conducted in advance to inform and seek consent through individual emails or in writing regarding who the recipient or sharer is, what items of personal information are provided or shared, why such information must be provided or shared, and how and until when it will be protected and managed. Consent may also be sought through the terms and conditions at the time of inquiry. If you do not consent, it will not be provided to or shared with third parties. When there is a change in the third-party provision and sharing relationship or when the relationship is terminated, notification or consent will be sought through the same procedure.
However, exceptions are made in the following cases:
- When the user consents to the disclosure of personal information in advance
- When requested by an investigative agency in accordance with the provisions of laws and regulations, or according to the procedures and methods prescribed by laws and regulations for investigative purposes
The Company entrusts personal information as follows to improve services, and regulates it so that personal information can be safely managed during entrustment contracts in accordance with relevant laws and regulations.
| Entrusted Company | Details of Entrusted Business |
|---|---|
| Website Production Specialist | Website Management and Operation |
When concluding an entrustment contract, matters concerning responsibilities such as prohibition of processing personal information outside the purpose of performing entrusted business, technical and administrative protective measures, restriction on re-entrustment, management and supervision of the trustee, and compensation for damages are specified in documents such as contracts in accordance with Article 26 of the Personal Information Protection Act, and we supervise whether the trustee processes personal information safely.
If the contents of the entrusted business or the trustee change, we will disclose it through this privacy policy without delay.
- Users can view or modify their registered personal information at any time and may request deletion.
- For viewing and modifying user's personal information, processing is possible through "Modify Information," and for cancellation of membership (withdrawal of consent), processing is possible by writing, calling, or emailing the person in charge of personal information management.
- If a user requests the correction of errors in personal information, the correction will be made as quickly as possible.
In addition, if incorrect personal information has already been provided to a third party, the result of the correction will be notified to the third party without delay so that the correction can be made. - The Company processes personal information that has been terminated or deleted at the request of the user as specified in "5. Period of Retention and Use of Personal Information" and handles it so that it cannot be viewed or used for any other purpose.
A cookie is a small amount of information sent to the user's computer by a website server, which contains information about the visited website and personal information of the user required for verification when providing services. Users can refuse to receive cookies or change the settings of their computer's web browser to warn them about receiving cookies. The Company may transmit cookies to the user's computer when deemed necessary for using web services as follows:
- Purpose of using cookies: It can be collected and used by providing differentiated information according to individual fields of interest, analyzing the user's access frequency or usage time to understand the user's tastes and fields of interest to use for target marketing, tracking traces of information viewed with interest to provide personalized services, acting as a metric for considering service reorganization by analyzing users' habits, and registering bulletin board posts.
- Installation/operation and refusal of cookies
- Users have the option to install cookies, and by setting options in the web browser, they can allow all cookies, go through verification every time a cookie is stored, or refuse to store all cookies.
- However, if you refuse to store cookies, you may experience difficulties in using some of the Company's services.
- How to set cookies
Firefox: https://support.mozilla.com/ko/kb/disable-third-party-cookies
Chrome: https://support.google.com/chrome/answer/95647?hl=ko&topic=14666&ctx=topic
Internet Explorer: https://support.microsoft.com/ko-kr/help/17442
Safari: https://support.apple.com/ko-kr/guide/safari/sfri11471/mac
In processing users' personal information, the Company devises the following technical and administrative measures to ensure safety so that personal information is not lost, stolen, leaked, falsified, or damaged.
- Technical measures
- Users' personal information is thoroughly protected. Users must not disclose personal information to anyone.
To this end, the Company fundamentally recommends closing the web browser online after finishing use on a PC. In particular, when sharing a PC with others or using it in public places (companies, schools, libraries, internet cafes, etc.), the above procedures will be more necessary to prevent personal information from becoming known to others. - The Company takes measures to prevent damage from leakage or corruption of users' personal information by hacking or computer viruses using vaccine programs.
Data is backed up frequently to prepare for the destruction of personal information, and the latest vaccine programs are used to prevent leakage or damage to users' personal information or materials, and personal information can be safely transmitted over networks through encrypted communications. In addition, an intrusion prevention system is used to control unauthorized access from the outside, and efforts are made to equip all possible technical devices to secure security systematically.
- Users' personal information is thoroughly protected. Users must not disclose personal information to anyone.
- Administrative measures
- For the safe protection of users' personal information, the Company limits employees handling personal information to those in charge and assigns separate passwords for this purpose to renew them regularly, and always emphasizes compliance with the Company's privacy policy through occasional training for those in charge on learning new security techniques and obligations to protect personal information.
- However, the Company shall not bear any responsibility for problems caused by the leakage of personal information due to the user's own negligence or problems on the Internet.
Users can report all complaints related to personal information protection arising from using the Company's services to the Chief Privacy Officer or the department in charge.
The officer and person in charge of processing personal information will respond quickly and faithfully to inquiries related to personal information.
Name: Administrator
Department: Security Business Division
Position: Director
Contact: privacy@abc.com
If you need to report or consult about personal information infringement, please contact the Personal Information Infringement Report Center of the Korea Internet & Security Agency (KISA). In addition, if you have suffered financial or mental damage through personal information infringement, you can apply for dispute resolution to the Personal Information Dispute Mediation Committee of the Korea Internet & Security Agency (KISA).
Personal Information Infringement Report Center (http://www.cyberprivacy.or.kr, Tel: 1336)
Personal Information Dispute Mediation Committee (http://www.kopico.or.kr, Tel: 1336)
Information Protection Mark Certification Committee (http://www.privacymark.or.kr, Tel: 02-580-0533)
Supreme Prosecutors' Office Cyber Crime Investigation Center (http://www.spo.go.kr, Tel: 02-3480-3600)
National Police Agency Cyber Terror Response Center (http://www.ctrc.go.kr, Tel: 02-392-0330)
National Police Agency (http://www.police.go.kr)
If there are additions, deletions, or modifications to the contents of this privacy policy, prior notice will be made through 'Announcements' at least 7 days before the revision. However, when significant changes occur to the rights of data subjects, such as changes in the items of personal information collected or the purpose of use, it will be announced at least 30 days in advance, and consent from the data subject may be obtained again if necessary.
Announcement Date: July 1, 2021
Effective Date: July 1, 2021
