Privacy Statement
General provisions
NPORTVERSE Co., Ltd. (hereinafter referred to as the “Company”) is doing its best to provide smooth and convenient services. In addition, the company takes measures to protect the personal information of users and members by complying with the ‘Act on Promotion of Information and Communications Network Utilization and Information Protection, etc.’ (hereinafter referred to as the ‘Information and Communications Network Act’), the Personal Information Protection Act, and the personal information protection regulations of related laws. there is.
'Personal information' refers to information about a living individual, including information such as codes, text, voice, sound, and video that can identify the individual by name, resident registration number, etc. (even if the information alone cannot identify a specific individual, other information refers to information that can be easily combined and recognized).
The company collects users’ personal information in ‘1. Items and collection methods of personal information collected’, ‘3. Personal information is used within the scope notified in the ‘Purpose of collection and use of personal information’, and if the scope is exceeded or changed, the user’s consent is obtained in advance. Changes in the retention and use period of personal information and changes in content when providing or entrusting handling to a third party are also the same, and all major changes are notified to users and consent is obtained through methods such as the Internet site, in writing, by phone, or e-mail. I receive it. However, exceptions are made under the law, such as 'when it is necessary to provide services under a contract with the user and it is difficult to obtain consent', 'when it is necessary for fee settlement', and 'when there are special provisions in other laws'. 3 or more In some cases, this can be replaced by notifying the user without separate consent.
This personal information handling policy may be changed due to changes in related laws and guidelines or changes in the company's internal policies, and in the event of a change, the company will immediately notify the reason and contents of the change through the website.
1. Items of personal information collected and methods of collection
When a user signs up for membership, the company collects the user's personal information as follows. In order to use the membership service, the required collection items must be entered.
① Collection method: website, application, written form, phone, fax, etc.
② Required collection items: E-mail address, personal identification information if necessary (IMEI, Mac Address, IMSI, Device ID, etc)
③ Items collected when using game services: access information, IP address, service use records, etc.
2. Purpose of collection and use of personal information
The purpose of collection and use of personal information collected by the company is as follows.
1) Membership Management
① Personal identification based on service use: Email address
② Handling civil complaints, such as complaint handling: name, email address, phone number
③ Securing a smooth communication path, including delivery of notices: E-mail, phone number
④ Record preservation for dispute mediation/resolution: E-mail address, access information, service use records, phone number
⑤ Prevention of fraudulent use by delinquent members and prevention of unauthorized use: Service use records
⑥ Confirmation of duplicate subscription: E-mail
2) Performance of contract for service provision and settlement of fees for service provision
① Content provision: E-mail address, phone number, service use record, access information
② Delivery of goods or sending invoices, etc.: name, email, phone number, address
3) Use for new services and marketing
① Information on new services, new products, or event information: phone number, email
② Securing the correct delivery address for delivery of prizes, etc.: name, email, phone number, address
3. Retention and use period of personal information
1) In principle, the company destroys personal information without delay after the purpose of collecting and using personal information has been achieved. However, the following information is preserved for the ‘retention period’ according to the grounds specified in ‘basis for preservation’.
① Preservation items: E-mail address, access information, service use records
② Basis for retention: Purpose of resolving consumer complaints and disputes upon withdrawal of membership
③ Retention period: 30 days
2) If there is a need to preserve the user's personal information in accordance with the provisions of related laws, such as the Commercial Act and the Act on Consumer Protection in Electronic Commerce, etc., the company may keep the user's personal information for longer than a certain period of time specified in the relevant laws. In this case, the company uses the stored information only for the purpose of storage, and preserves it for the ‘retention period’ in accordance with the grounds specified in the ‘basis for preservation’.
① Records of contracts or subscription withdrawals, etc.
- Basis for preservation: Act on Consumer Protection in Electronic Commerce, etc.
- Retention period: 5 years
② Records of payment and supply of goods, etc.
- Basis for preservation: Act on Consumer Protection in Electronic Commerce, etc.
- Retention period: 5 years
③ Records of consumer complaints or dispute resolution
- Basis for preservation: Act on Consumer Protection in Electronic Commerce, etc.
- Retention period: 3 years
④ Records of identity verification
- Basis for preservation: Act on Promotion of Information and Communications Network Utilization and Information Protection, etc.
- Retention period: 6 months
4. Procedures and methods for destroying personal information
In principle, the company destroys personal information without delay after the purpose of collecting and using personal information has been achieved. Destruction procedures and methods are as follows:
1) Destruction Procedure
If a user does not use the service for a certain period of time or applies for membership withdrawal, the company stores personal information for 30 days for the purpose of resolving consumer complaints and disputes, and then destroys it in a non-recoverable manner.
2) Destruction method
① Personal information stored in electronic file format is deleted using technical methods that render the records unrecoverable.
② Personal information printed on paper is destroyed by shredding it with a shredder.
5. Provision of personal information
A. In principle, the company does not provide users' personal information to outside parties. However, exceptions are made in the following cases.
① When users consent in advance
② When there is a request from an investigative agency in accordance with the provisions of the law or in accordance with the procedures and methods set forth in the law for the purpose of investigation.
B. In addition, if it is necessary to provide personal information to a third party, personal information may be provided to a third party through legal procedures, such as obtaining the user's consent. The company may provide personal information as follows through legal procedures, such as obtaining the user's consent.
- Purpose of use by recipient: Purpose of using marketing advertisements, such as creating analysis data based on demographic characteristics, providing services and posting advertisements, and statistics on members’ use of services.
- Items provided: Email (account), IP address, advertising identifier (IDFA/GAID), billing information, game usage information, and terminal information (advertising parameters) used by the user in the company's services or in the platform operator's services.
- Retention and use period: Until membership withdrawal or termination of information provision contract
6. Entrustment of personal information
The company does not entrust your information to an external company without your consent. If such a need arises in the future, we will notify the customer of the entrusted person and the details of the entrusted work and, if necessary, obtain prior consent.
7. Rights of users and legal representatives and methods of exercising them
1) Personal information protection of children under 14 years of age
① If the company requires consent for the collection/use/provision of personal information of a child under the age of 14 (hereinafter referred to as “child”), the company obtains the consent of the legal representative separately from the child’s consent.
② In order to obtain consent in Paragraph 1, the company may request the minimum necessary information, such as the legal representative's name and contact information, and the personal information of the legal representative collected in this way may be used for purposes other than confirming the consent of the legal representative, or may be used for purposes other than confirming the consent of the legal representative. It is not provided to third parties.
③ The legal representative's consent form is used to resolve consumer complaints and disputes in the event of a contract between the child and the company, withdrawal of subscription, payment, or supply of goods.
④ The legal representative consent form of a child who has withdrawn, consent withdrawn, or the legal representative consent form has expired will be destroyed in a non-renewable manner 30 days after the purpose of use expires. However, if there is a need to preserve the personal information of the legal representative for the period specified in the relevant laws and regulations, such as the Commercial Act or the Act on Consumer Protection in Electronic Commerce, etc., the company retains the personal information of the legal representative.
⑤ The child's legal representative may request to view or correct the child's personal information, or withdraw consent to the collection, use, and provision of personal information. If such a request is made, the company will take the necessary measures without delay.
2) Matters pertaining to the management of the user’s own personal information
① Users may withdraw their consent to the collection of personal information by writing, calling, or e-mailing the person in charge of personal information management. In that case, the company will verify the person's identity and, unless otherwise provided by law, contact the individual. We take necessary measures, including destroying information. However, if personal information is destroyed due to membership withdrawal, related information created and accumulated by the user while using the company's services may also be destroyed.
② When a user's representative visits to request viewing or correction, the company will check whether the user's representative is the true representative. In this case, the company may require the user to present proof of the agency relationship.
③ If there is a justifiable reason to refuse a user's request to view or correct all or part of the relevant personal information, the company will notify the member without delay and explain the reason.
④ Since changes to required input items provided by the user when registering as a member, such as e-mail address, may cause errors in the services provided by the company, the company does not allow changes to the member's required input items in order to provide smooth and stable services. You may request separate procedures from the relevant member.
8. Technical / administrative protection measures for personal information
When handling users' personal information, the company prepares technical and managerial measures to ensure the safety of personal information so that it is not lost, stolen, leaked, altered, or damaged.
1) technical measures
① The company ensures that personal information can be transmitted safely over the network through encrypted communication.
② The company is doing its best to prevent members' personal information from being leaked or damaged by hacking or computer viruses.
③ The company regularly backs up personal information in preparation for emergencies and takes measures to prevent damage caused by computer viruses by using anti-virus programs.
④ The company is continuously working to strengthen security through measures such as system access control, authority management, and vulnerability checking.
2) Administrative measures
① The company limits access to users' personal information to a minimum number of people, and the minimum number of people is as follows.
- Persons who perform marketing, customer support, game operation, and delivery tasks directly to users (including employees of consignment and partner companies)
- A person who performs personal information management tasks, such as a personal information manager
- Other people who inevitably have to handle personal information for work purposes
② The company provides regular training on personal information protection obligations to those handling personal information.
③ The company strives to ensure that the department in charge of personal information protection complies with the personal information handling policy and internal regulations and immediately corrects any problems that are discovered.
④ The company is not responsible for any problems caused by leakage of personal information due to the user's negligence or Internet problems.
9. Civil service regarding personal information
1) In order to protect users' personal information and handle complaints related to personal information, the company designates a personal information manager as follows.
① Personal information manager
- Name/Position : Chang-seon Lee/Director
- E-mail : astrofix.help@gmail.com
2) You can report all personal information protection-related complaints that arise while using the company's services, including withdrawal of consent to provision of personal information to a third party and entrustment of personal information handling to the person in charge of personal information management, as agreed upon when registering as a member. The company will respond quickly to user reports.
3) Users may contact the personal information protection manager or department in charge for any complaints related to personal information protection that arise while using the company's services. If you need to report or consult about other personal information infringements, please contact the organizations below.
• Personal Information Dispute Mediation Committee http://www.kopico.go.kr(Without area code 1833-6972)
• Supreme Prosecutors' Office Cyber Safety Investigation Team http://www.spo.go.kr (1301)
• Personal Information Infringement Reporting Center http://privacy.kisa.or.kr (Without area code 118)
• National Police Agency Cyber Security Department http://cyberbureau.police.go.kr/ (Without area code 182)
The above organization is separate from the company. If you are dissatisfied with the company's own personal information complaint handling and damage relief results, or if you need further assistance, please contact us.
10. link site
The Company may provide users with links to other companies' websites or materials. In this case, since the company has no control over external sites and materials, it cannot be held responsible for or guarantee the usefulness of the services or materials provided from them. If you move to a page on another site through a link included by the company, the personal information handling policy of that site is unrelated to the company, so please check the policy of the newly visited site.
11. Etc
If there are additions, deletions, or modifications to this personal information handling policy due to changes in laws, policies, or security technologies, the reason for the change and its contents will be announced at least 7 days prior to the implementation of the changed personal information handling policy through the website or other means. We will notify you.
12. Supplementary provisions
This privacy policy is effective from October 30, 2023.
Personal information processing policy announcement date: October 30, 2023
Personal information processing policy enforcement date: October 30, 2023
|
|