Handibox privacy policy

 Handibox Privacy Policy

Handibox developers (hereafter referred to as the 'Company') establish and disclose this privacy policy in accordance with Article 30 of the Personal Information Protection Law to protect the personal information of the information subject and to handle related grievances promptly and smoothly.

Article 1 (Purpose of Processing Personal Information) The Company processes personal information for the following purposes. The personal information being processed will not be used for purposes other than the following, and if the purpose of use changes, we plan to take necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Law.

1. Consent for marketing use: Users using the service provide information collected by Google Admob for advertising.

Article 2 (Processing and Retention Period of Personal Information)

1. The Company processes and retains personal information within the personal information retention and use period agreed upon when collecting personal information from the information subject or within the period prescribed by law.

2. Each personal information processing and retention period is as follows.

   • Website membership registration and management: No information collected
   • Provision of goods or services: All services are free

Article 3 (Provision of Personal Information to Third Parties)

1. The Company processes personal information within the range specified in Article 1 (Purpose of Processing Personal Information) and provides personal information to third parties only in cases where there is consent from the information subject, special provisions in the law, or in cases corresponding to Article 17 of the Personal Information Protection Law.

2. The Company provides personal information to third parties as follows.

   • Personal information recipient: Google LLC
   • Purpose of use of personal information by the recipient: Collects personal information of users to provide customized advertisements.
   • Items of personal information provided: Application usage information
   • Retention and use period of the recipient: Non-identifiable information

Article 4 (Consignment of Personal Information Processing)

1. The Company does not consign personal information processing tasks for smooth personal information business processing.

2. When concluding a consignment contract, the Company specifies matters related to the responsibility for damages, management, and supervision of the trustee, restriction on re-consignment, technical and administrative protection measures, and prohibition of processing personal information for purposes other than performing consigned tasks in documents such as contracts in accordance with Article 25 of the Personal Information Protection Law, and supervises whether the trustee processes personal information safely.

3. If the content of the consigned business or the trustee changes, we will disclose it through this personal information processing policy without delay.

Article 5 (Rights and Obligations of the Information Subject and How to Exercise Them)

1. The information subject can exercise the following personal information protection-related rights against the Company at any time.

   • Request to access personal information
   • Request for correction if there are errors
   • Request for deletion
   • Request for processing stop

2. The rights in paragraph 1 can be exercised against the Company in writing, by phone, by email, by fax, etc., and the Company will take action without delay.

3. If the information subject requests correction or deletion of personal information due to errors, etc., the Company will not use or provide the personal information until correction or deletion is completed.

4. The rights in paragraph 1 can be exercised through a legal representative or an agent such as a person who has been delegated. In this case, you must submit a power of attorney according to the form in Appendix No. 11 of the Enforcement Rules of the Personal Information Protection Law.

5. The information subject should not infringe on the personal information and privacy of the information subject or others that the Company processes in violation of related laws such as the Personal Information Protection Law.

Article 6 (Items of Personal Information Processed) The Company processes the following personal information items.

• Website membership registration and management: No mandatory items
• Provision of goods or services: No mandatory items

Article 7 (Destruction of Personal Information)

1. When personal information becomes unnecessary, such as the expiration of the personal information retention period or the achievement of the processing purpose, the Company destroys the personal information without delay.

2. If, despite the expiration of the personal information retention period agreed upon with the information subject or the achievement of the processing purpose, personal information must be preserved continuously according to other laws, the Company moves the personal information to a separate database (DB) or changes the storage place to preserve it.

3. The procedure and method of destroying personal information are as follows.

   • Destruction procedure: The Company selects personal information for which a reason for destruction has occurred and destroys the personal information with the approval of the Company's personal information protection officer.
   • Destruction method: The Company destroys personal information recorded and stored in electronic file format so that the record cannot be reproduced using methods such as Low-Level Format, and destroys personal information recorded and stored on paper documents by shredding or incinerating.

Article 8 (Measures to Ensure the Safety of Personal Information) The Company takes the following measures to ensure the safety of personal information.

• Administrative measures: Establishment and implementation of internal management plans, regular employee training, etc.
• Technical measures: Management of access rights to personal information processing systems, installation of access control systems, encryption of unique identification information, installation of security programs
• Physical measures: Access control to computer rooms, data storage rooms, etc.

Article 9 (Personal Information Protection Officer)

1. The Company is responsible for the overall personal information processing tasks and has designated a personal information protection officer as follows to handle complaints and damage relief related to personal information processing.

   • Personal Information Protection Officer: Kim Mingyu

2. The information subject can inquire about all personal information protection-related inquiries, complaint handling, and damage relief that occur while using the Company's service (or business) to the personal information protection officer and the person in charge. The Company will answer and process the inquiries of the information subject without delay.

Article 10 (Request for Access to Personal Information) The information subject can request access to personal information according to Article 35 of the Personal Information Protection Law to the department below. The Company will strive to ensure that requests for access to personal information are processed quickly.

• Department receiving and processing requests for access to personal information: Kim Mingyu

Article 11 (Remedy for Infringement of Rights) The information subject can inquire about damage relief and counseling for personal information infringement to the following institutions.

• Personal Information Infringement Report Center (operated by Korea Internet & Security Agency)

  • Jurisdiction: Reporting of personal information infringement facts, counseling application
  • Homepage: privacy.kisa.or.kr
  • Phone: 118 (without area code)
  • Address: (138-950) 135 Jungdae-ro, Songpa-gu, Seoul, Korea Internet & Security Agency Personal Information Infringement Report Center

• Personal Information Dispute Mediation Committee (operated by Korea Internet & Security Agency)

  • Jurisdiction: Application for personal information dispute mediation, group dispute mediation (civil resolution)
  • Homepage: privacy.kisa.or.kr
  • Phone: 118 (without area code)
  • Address: (138-950) 135 Jungdae-ro, Songpa-gu, Seoul, Korea Internet & Security Agency Personal Information Infringement Report Center

• Cyber Crime Investigation Division of the Supreme Prosecutors' Office: 02-3480-3573