1. General Provisions
Widemobile Co., Ltd. (hereinafter, the “Company”) regards its
customers’ personal information as important and puts its best
efforts in protecting personal information of Customer. CY complies
with the ‘Act on Promotion of Information and Communication Network
Use’ and various other laws and regulations on privacy protection.
In addition, CY establishes and complies with privacy protection
policy which will be disclosed in its homepage enough to be easily
accessed by the customers.
1. Personal Information means, as an information of living
individuals, the information of signs, letters, voice, sound, sound
effect, video and bio-property with which such individuals can be
identified (including articles which may be combined with other
information to identify such individuals even when certain
individual cannot be identified only with such information)
2. CY regards its customers’ personal information as important and
complies with the ‘Act on Promotion of Information and Communication
Network Use’and various other laws and regulations on privacy
protection.
3. Company informs the users of what are the use and collection
method of privacy information provided by them and which measures
the Company takes for privacy protection through Company’s privacy
protection.
4. Company’s privacy protection policy may be from time to time
amended for the reason of changes in applicable laws and regulations
and Company’s internal policies and CY will give execution date
thereto and publicly inform the details thereof in the homepage
(https://www.wifidosirak.com) without delay .
5. This Privacy Protection Policy of CY contains the following
details :
Chapter 1. Items of Personal Information to be collected
Chapter 2. Purpose of Collection and Use of Personal Information
Chapter 3. Period of Retention and Use
Chapter 4. Provision of 3rd Party of Personal Information
Chapter 5. Consignment of Processing of Personal Information
Chapter 6. Process and Method of Destruction of Personal
Information
Chapter 7. Right and Method of Exercise of Right of User and Legal
Representative
Chapter 8. Matters of Establishment, Operation and Rejection of
Automatic Collection Device of Personal Information
Chapter 9. Technical/Managerial Measures for Personal Information
Protection
Chapter 10. Responsible Person of Personal Information and Dept. for
Receipt and Handling of Claim for Access to Personal Information
Chapter 11. Other Policy for Personal Information Processing
Chapter 12. Notice Obligations
Chapter 1. Items of Personal Information to be collected
CY collects Personal Information necessary for membership,
consultation and service provision as follows at minimum and does
not collect any Personal Information which may clearly infringe on
the right, benefits or privacy of Customer including thought,
belief, family and relatives, academic background, medical history
and other social activities: Provided that CY may collect these
information at minimum to the extent it is consented by Customer or
permissible by other laws.
1. Items of Personal Information to be collected
Type of information |
Items to be collected |
Purpose of use |
Required information |
① Regular member (in becoming a member)
- E-mail, name, birth date, gender, password,
confirmation of password, mobile phone, ID
number
While becoming SNS member, the following information
is provided by the person receiving services
- Facebook: E-mail address, profile information
(including profile photo and name) and user friends
lists
- Kakao Talk: profile information (including profile
photo and nick name) and user friends lists
- Naver: E-mail address
While making a reservation for non-member service
(domestic members)
- Name, birth date, gender, mobile phone, ID number,
and e-mail of user
③ While making a reservation for non-member service
(overseas members)
- Name, nationality, passport number, e-mail and
mobile phone number
④ While receiving customer inquiries
- Name, e-mail and contact information
⑤ While participating in an event
- Name, e-mail and mobile phone
|
- Provide member service, check or identify
member
- Maintain certification by internet session
- VOC processing for purchase and performance of
contract
- Utilize base materials for statistical processing
and analysis
- Gender: identify user him/her self while receiving
products
- Birth date: base for considering whether the user
is 14 years old or under
- Participation in and drawing a prize in event
|
Selective information |
① While becoming a member
- Recommender (e-mail of recommender), consent to
receive SMS/E-mail
② While making a reservation of product
- Address, Asiana Airline membership number and
L-point card number
③ When you report loss
- Country of residence, emergency contact
|
- Guide for marketing/promotion
- Issue and use the points
- Respond to the loss of product
- Send product by parcel delivery service
- Provide benefit to recommender |
Scope of Personal Information which may be collected
in the course of service use and business handling
|
- Record of service use and suspension, access log,
cookies, access IP information
- Departure date (time), entrance date (time),
departure place, place of entry, country of service
- Delivery information including address, name and
contact information of recipient
- (While using mobile devices) terminal
identification number, terminal OS information,
advertisement identifier, telecommunication company
and whether PUSH is received or not
|
2.CY collects Personal Information as follows:
A. CY obtains consent for and collects Personal Information in the
course of consultation, entry of giveaway event, and request of
shipment through preparation of various documents including
membership application form and application for changes in the name
under which membership is given, membership/service prescription
through internet homepage, telephone call (customer center
:1566-9070) and Fax.
B. Collect Personal Information through tools for collection of
generated information generated, provided or produced by or from a
3rd party including partners in the course of use or business
process of services
In collecting or modifying the details of those items to be
collected as described above, any Personal Information of users, the
CY inform to and seeks for obtaining consent from the users
: Provided that CY may collect Personal Information of users without
consent of them when: it is clearly difficult to obtain ordinary
consent for the reason of economic or technical causes for the
Personal Information necessary for performing Service requested by
the Users ; it is necessary for payment of fee for provision of
Service ; or it is specially provided by in the Information
Communications Network Act or other laws.
※ Any information for performing essential function of relevant
Service is to be collected as a required one and, if an User fails
to provide such information to the CY, the use of Service by such
User may be limited. However, for an information to be collected
additionally as selective one, the use of Service will not be
limited even when the User fails to enter it.
※ Member shall guarantee the correctness and legality of his or her
information and, otherwise, if the Member enters a false information
in various way including theft of other’s information, the CY may
make a report under applicable laws and regulations or force such
Member to be withdrawn.
Chapter 2. Purpose of Collection and Use of Personal Information
In order to provide more improved quality Service including
provision of membership, smooth customer consultation and various
Services for Users, the CY collects IP of Customers as
follows:
Item |
Purpose of Use |
Member management |
- Verify and identify the member using membership
Service
- Prevent wrongful and unauthorized use by bad
member
- Verify whether the user is minor or not
- Retain the record for customer consultation,
receipt and process of customer complaint and
dispute reconciliation
- Deliver a notice
|
Payment of fees for performance of contract for
Service provision and |
- Pay the fees for use of Service and additional
Service
- Provide contents, give a guides on the result of
winning a prize in event/giveaway and ship the
product
- Identify the User related to financial trade and
financial Service
- Send invoices, purchase and pay for fees and
refund
|
Development of new Service and
utilization of marketing
|
- Give a guide on information of new Service, new
product or event
- Provide optimized Service to Customer
- Utilize materials and marketing for providing
customized Service
- Identify the frequency of webpage access
- Compile statistical information of Service use
- Give a guide on new products or Service
- Make a plan for web service and event suitable to
the interests of Customer
- Deliver advertisement information including
giveaway event and events and operate a space for
member participation
- Conduct a customer survey
- Give a guides on Service and products
|
Chapter 3. Period of Retention and Use
In principle, the information at issue will be discarded without
delay after achieving collection of personal information and the
purpose of its use: Provided, however, that, if necessary to
maintain it required by applicable regulations, the Company will
maintain member information for certain period of time required by
applicable regulations as follow:
Type of record |
Reason for retention |
Retention period |
Record of wrongful use |
For prevention of wrongful use
|
1 year
|
Record of indication and advertisement |
E-commerce Act
|
6 months
|
Record of contract entered into and cancelled |
5 years
|
Record of payment and supply of goods |
Record of treatment of consumer complaint or
disputes |
3 years
|
Record of identification |
Information Communication Network Act
|
6 months
|
Record of visit (data to check the fact of
communication) |
Communication Secret Protection Act
|
3 months
|
2. Introduction of expiration system for Personal Information
A. CY separate, retain and manage the Personal Information of person
not using the Service for a long time (not less than 1 year) to
ensure that such Personal Information will be protected.
based on login, and date of contact with advisor and the Personal
Information of non-user of Service shall be separated, retained and
managed for the period as defined in the laws and regulations.
C. CY gives public notice of relevant details to relevant Users
through e-mail at least 1 month prior to the time of
separation/retention of the Personal Information of non-user of
Service.
D. The Personal Information of non-user of Service separated and
retained will be retained for certain period under applicable laws
and regulations and be discarded after the end of relevant period.
Any Personal Information not discarded will be provided at the time
when the use of Service starts upon request of relevant User.
However, any Personal Information provided shall be immediately
discarded when the use (contract) of Service does not occur within 1
year after provision of Personal Information for making any
inquiries on Service.
Chapter 4. Provision of 3rd Party of Personal Information
1. CY uses Personal Information of Customers within the scope which
is expressly set forth in “Service Users Agreement” or “Privacy
Protection Policy” and does not share with or provide to a 3rd party
beyond such scope.
However, this shall not apply to the cases where : Customer gives
prior consent ; Personal Information is provided under the provision
and procedure as prescribed in the laws and regulations.
2. If the case falls under any of the followings, Personal
Information may be disclosed or provided under the provisions and
procedure of applicable laws and regulations :
A. when such disclosure or provision of Personal Information is
necessary for paying fees for service provision;
B. when Personal Information is necessary for compiling
statistics/conducting academic research or market survey and is
processed and provided in a form that certain individual cannot be
identified; or
C. when Personal Information is disclosed as specially prescribed in
the laws including the ‘Act on Real Name Financial Transaction and
Secret Protection’, ‘Act on Use and Protection of Credit
Information’, ‘Framework Act on Electric Communication’, ‘Electronic
Communication Service Act’, ‘Local Tax Act’, ‘Consumer Protection
Act’, ‘Korea Bank Act’ and ‘Criminal Procedure Act.’
3. Even the Customer rejects to consent to provision of Personal
Information to a 3rd party, Customer may use basic Service.
Chapter 5. Consignment of Processing of Personal Information
If the CY consigns the processing of Personal Information for
improving convenience of Users, the CY either give a notice thereof,
disclose to the provider or obtain prior consent thereto from such
provider.
In order to improve Service, the CY consigns the processing of
Personal Information as follows, set forth the matters to ensure
that the Personal Information of Customer will be safely managed
while making such consignment under applicable laws, manages and
supervises to ensure that such matters will be complied with.
Consignee |
Details of consigned duties |
Period of retention and use of Personal Information
|
LG CNS |
Send notice talk and text messages |
Up to the end of consignment contract
|
Infobank |
Send SMS text messages |
LG U+ |
Processing of payment |
KICC |
(주)PayGate |
Daesung Global |
Customer consultation |
Trans Cosmos Korea |
Send messages through Kakao Advise Service for and
on behalf of CY |
Chapter 6. Process and Method of Destruction of Personal
Information
1. CY retains and uses the Personal Information of Customer only
when the CY provides Customer with the Service: Provided that such
Personal Information will be maintained for certain period of time
for the reason of causes in accordance with internal policy and
other applicable regulations.
2. After achieving the purpose, the Personal Information of Member
information and discarded thereafter without delay and any Personal
Information collected for temporary purpose will be deleted without
delay when the purpose of use thereof is achieved.
3. Upon withdrawal of consent to provision of Personal Information,
CY immediately discards the Personal Information collected and
cannot use for any other purposes than the exceptions.
4. Any and all the documents proving that the Member is a member of
CY will be immediately discarded after verifying such Member.
5. Procedure of destruction
A. Upon collection of Personal Information of Customer and
achievement of purpose of use, such Personal Information will be
moved to a separate DB (in case of printed copy, this means a
separate file box), retained for certain period depending on
internal policy and other applicable laws and regulations (please
refer to the retention and use period) and discarded thereafter.
B. Unless required by the law, personal information placed in a
separate DB will not be used for the other purposes than the one for
retention.
6. Method of destruction
A. Hard copies of personal information :Company destructs it by
shredding with a pulverizer or incinerating it.
B. Personal information stored in the form of electric file :
Company deletes by using technological method that makes that
information not to be regenerated.
7. Deadline of destruction
Any Personal Information of User is discarded within 5 days from the
end of retention period when the retention period thereof lapses
and, if such Personal Information becomes unnecessary including the
cases when no contract is entered into within 1 year after provision
of such Personal Information for an inquiries on the Service or a
contract terminates, or the User rejects to receive the newsletter
after application thereof, such Personal Information will be
destructed within 5 days from the date when the processing of such
Personal Information is considered as unnecessary.
8. Destruction of Personal Information of Long-term Non-User
For the Customer who has not used Service (or contract) for not less
than 12 months after provision of Personal Information online or
telephone call under the Information Communication Network Act or
when the receipt of newsletter is rejected, the Personal Information
of non-User separated and retained will be retained for certain
period under applicable laws and regulations and discarded
thereafter.
In such event, the CY inform the User of the fact that the Personal
Information of User will be discarded within at least 30 days prior
to the lapse of such 12 months, expiration date and relevant items
of such Personal Information through e-mail, written documents, fax,
telephone call or other similar ways.
Chapter 7. Right and Method of Exercise of Right of User and Legal
Representative
Members (including legal representative for the children under 14)
may request for access and corrections in Personal Information at
any time request for withdrawal of membership, its consent to
collection, use, consignment or provision of Personal Information.
In order to make an access and correction in Personal Information or
withdrawal of membership, Members may prepare and submit to the CY
the ‘termination application form’ and click the “Changes in
Personal Information” (or “Change in Members information”) for such
inquiry or correction and click the “Membership withdrawal” for
going through the process of security questions. Thereafter, Members
are able to make such inquiry, correction and withdrawal in person.
1.Certification and correction of access to Personal Information
A. Customer (legal representative) may request for access to
Personal Information through direct visit, telephone call and e-mail
to the CY.
B. Upon request of Customers for certification of access to their
own Personal Information, CY identifies them with ID certificates
including resident registration card, passport and drivers’ license
which can prove identification of Customers.
C. Upon request of Customers’ representative, CY identifies them
with certificates proving representativeness including power of
attorney, certificate of registered seal of Customers and ID card of
representative including resident registration card, passport and
drivers’ license which can prove identification of Customers.
D. Upon Customers’ request of corrections on errors in Personal
Information, CY will not use or provide such Personal Information
until such corrections are made.
In addition, if such Personal Information with error has been
already provided to a 3rd party, the CY will inform to such 3rd
party the result of correction without delay to ensure that the
error of such Personal Information will be corrected.
2. Withdrawal of consent to use or provision of personal
information
A. Customer may either consent or selectively withdraw consent to
collection, use, consignment or provision of Personal Information by
visiting CY and brining the ID card as set forth in Paragraph B
above.
B. Should Customer makes a telephone call or inquiries in
https://www.wifidosirak.com > customer center > customer bulletin
board or in e-mail inquiries, CY will take measures without
delay.
C. Legal representative may withdraw a consent to collection, use or
provision of Personal Information of children under 14 (this is
available when a party of both parents requests) and request for
access to Personal Information provided by such children or
correction of error.
D. CY handles any Personal Information terminated or deleted as
requested by Customer as set forth in the “Period of retention and
use of Personal Information collected by CY” and takes measures to
ensure that such Personal Information will not be accessed or used
for other purposes.
Chapter 8. Matters of Establishment, Operation and Rejection of
Automatic Collection Device of Personal Information
The Company operate “Cookie” and “Session” which frequently store
and detect the information of User.
Cookie is a tiny text file which the server used for operation of
website of the Company sends to the browser of Users.
Company identifies the computer of Users in terms of operation of
Cookie but does not identify the users personally.
“Session” means that the server used for operation of website stores
the information of Users during the time of Users’ login.
CY uses the Cookies and Session for the following purposes.
A. Purpose of use of Cookies and Sessions
In order to provide special customized services to its users,
Company uses the Session which saves and retrieve Users’ information
frequently.
The users may have option for allowing the use of cookie: by setting
up options in web browser, they can allow all the cookies; they may
require a confirmation whenever a cookie is saved; and they can
reject save of any cookie.
B. Method of reject to setting-up of Cookie
Example: the following is an example of rejection to setting-up of
Cookie
In case of Internet Explorer – Go to and adjust in the tap of ‘Tool’
on the top of web browser > ‘Internet Option’> ‘Personal
Information’ > ‘Set-up’
However, in case of rejection to setting-up of Cookie, Users may
have difficulties in being provided the Service.
Chapter 9. Technical/Managerial Measures for Personal Information
Protection
In handling its Users’ personal information, Company takes the
following technical/managerial protection of personal information to
secure safety so that such personal information will not lost,
stolen, leaked, altered or damaged.
A. Encryption of Personal Information
Personal Information of Users (including the credit card
information) are encoded, stored/managed to ensure that such
Personal Information will be safely transmitted in the network
through cryptographic communication (SSL).
Company save and manage members’ passwords to ensure that they are
encrypted in one-way direction not to be decoded.
B. Countermeasures against hacking
In order to prevent any damage on personal information by hacking
and computer virus, the Company install a system in restrict areas
to which external access is limited.
In addition, the CY prevents the leakage and damage of personal
information of Users by using the latest vaccine programs and ensure
that the Personal Information will be safely transmitted in the
network through SSL.
In addition, the Company restricts unauthorized access from the
outside by using firewalls and access control system and, in order
to secure stability of system, the Company makes its best efforts in
being equipped with all available technical devices.
C. Minimization the number of employees handling personal
information and education for them
The Company minimizes the number of employees handling personal
information and blocks business PC to ensure that some external
internet services cannot be used and the risk of leakage of Personal
Information will be reduced.
In addition, the CY prepare a systematic standard and continuous
inspection of authority to generation, modification and access to
the password of database system and system processing Personal
Information storing Personal Information.
Moreover, the CY conducts regular education and campaign of
obligations and security of privacy protection for all the officers
and employees processing Personal Information.
Chapter 10. Responsible Person of Personal Information and Dept. for
Receipt and Handling of Claim for Access to Personal Information
In order to protect and make prompt dealing with complaints related
to personal information of Customer, the Company designates the
person responsible for personal information management and the
person in charge of privacy protection as follow. In addition, the
CY regards the opinions of Customers as very important. If
Customers’ inquiries are made through visit of branches of CY or
contact to call center or Dept. in charge of Personal Information,
CY will give prompt and correct response thereto :
1. Person responsible for personal information protection:
A. Name: Chungdeok Lee
B. Dept.: Strategic Planning Team
C. Position: General manager
D. Telephone number: 1566-9070
E. E-mail:
[email protected]
1. Person in charge of personal information protection:
A. Name: Sungsu Yoon
B. Dept.: Strategic Planning Team
C. Position: Section chief
D. Telephone number: 1566-9070
E. E-mail:
[email protected]
3. For more report and consultation regarding personal information
infringement, please contact the following agencies:
A. Report Center of Personal Data Infringement
(http://privacy.kisa.or.kr / 118 without local code)
B. Personal Information Dispute Medication Committee
(http://kopico.go.kr 1833-6972 )
C. Cyber Crime Investigation Team of the Supreme Prosecutor’s Office
(http://www.spo.go.kr / 1301 without local code))
D. Cyber Terror Response Center of the National Police Agency
(http://cyberbureau.police.go.kr 182 without local code)
Chapter 11. Other Policy for Personal Information Processing
A. Management of Personal ID and Password
ID and password used by Members must be used by Members themselves,
in principle.
CY is not responsible for any problem arising out of the theft of or
use of such ID and password by others without willful misconduct or
negligence of CY.
In any case, please don’t let others know your password and make
special care not to make your Personal Information to be divulged to
others surrounding you in log-on state.
In cases where it is discovered that any membership or purchase has
been made through the theft of others’ Personal Information, the use
of relevant sites may be limited unilaterally and imprisonment with
forced labor or penalty may be imposed.
Chapter 12. Notice Obligation
Upon addition, repeal or amendment of any provision hereof, the CY
will give a prior notice through ‘Notice’ at least 7 days prior to
revision: Provided that, if any substantial change in the right of
Users occurs including modification of purpose of use, the CY will
give 30 day notice and, if necessary, may obtain consent from Users
if necessary.
- Public notice date of this Policy: 15/10/2018
- Enforcement date of this Policy: 15/10/2018