Privacy Policy v1.0
※ The contents of this Privacy Policy are based on regulations in the Republic of Korea.
Article 1 (Consent to the Collection of Personal Information)
Baromark Co., Ltd. (hereinafter referred to as the “Company”) informs customers of the terms of service and the collection and use of personal information at the time of membership registration, clearly specifying these details. To obtain customer consent, the Company provides a procedure allowing customers to click the “Agree” button after having fully explained these terms. When a customer clicks the “Agree” button, it is deemed that they have been notified of all terms regarding the collection, use, and provision of personal information and have consented to them.
Baromark Co., Ltd. (hereinafter referred to as the “Company”) informs customers of the terms of service and the collection and use of personal information at the time of membership registration, clearly specifying these details. To obtain customer consent, the Company provides a procedure allowing customers to click the “Agree” button after having fully explained these terms. When a customer clicks the “Agree” button, it is deemed that they have been notified of all terms regarding the collection, use, and provision of personal information and have consented to them.
Article 2 (Items of Personal Information Collected and Purpose of Use)
“Personal information” refers to information regarding a living individual, such as name, resident registration number, etc., that can identify a specific person, as well as pseudonymized information that can identify a person when combined with other information. The Company collects and uses personal information of customers for the following purposes:
“Personal information” refers to information regarding a living individual, such as name, resident registration number, etc., that can identify a specific person, as well as pseudonymized information that can identify a person when combined with other information. The Company collects and uses personal information of customers for the following purposes:
General Member Information
Collection Time: Upon membership registration
Required Information: ID, password, email, name
Optional Information: Profile image, date of birth, phone number, address
Purpose of Use: Registration, customer support, announcements during service usage
Usage Period: During membership period
Retention Period: Deleted upon withdrawal of membership; retained for five years if the user is a paid member.
Collection Time: Upon membership registration
Required Information: ID, password, email, name
Optional Information: Profile image, date of birth, phone number, address
Purpose of Use: Registration, customer support, announcements during service usage
Usage Period: During membership period
Retention Period: Deleted upon withdrawal of membership; retained for five years if the user is a paid member.
Article 3 (Collection of Personal Information via Cookies)
The Company uses cookies, small text files sent to users’ computer browsers, to store and retrieve customer information.
The Company uses cookies, small text files sent to users’ computer browsers, to store and retrieve customer information.
1.
Purpose of Using Cookies
Cookies help provide personalized information according to individual interests, analyze access frequency or visit time, and gauge user preferences and interests to enable targeted marketing and service improvements.
Cookies help provide personalized information according to individual interests, analyze access frequency or visit time, and gauge user preferences and interests to enable targeted marketing and service improvements.
2.
Operation and Rejection of Cookies
Cookies are stored on the user’s computer hard drive. Although they identify users’ computers, they do not identify users individually. Customers can allow/deny cookies or set a confirmation prompt each time cookies are saved through browser settings.
- Note: Rejecting cookies may limit access to some login-required services.
Cookies are stored on the user’s computer hard drive. Although they identify users’ computers, they do not identify users individually. Customers can allow/deny cookies or set a confirmation prompt each time cookies are saved through browser settings.
- Note: Rejecting cookies may limit access to some login-required services.
3.
How to Set Cookie Preferences
- For Internet Explorer:
Go to Tools at the top of the web browser > Internet Options > Privacy tab > Adjust settings
- For Chrome:
Select Menu icon at the top-right of the browser > Settings > Advanced Settings > Privacy Section > Content Settings > Set cookies preferences.
- For Internet Explorer:
Go to Tools at the top of the web browser > Internet Options > Privacy tab > Adjust settings
- For Chrome:
Select Menu icon at the top-right of the browser > Settings > Advanced Settings > Privacy Section > Content Settings > Set cookies preferences.
Article 4 (Retention, Use Period, and Disposal of Personal Information)
1.
The customer’s personal information is destroyed without delay when membership is withdrawn, or the purpose of collection and use is achieved, or upon a request for withdrawal of consent. However, under certain circumstances outlined in relevant laws, the information may be retained for specific periods as follows:
•
Consumer Protection in Electronic Commerce Act
- Records on contracts or withdrawal of offers: 5 years
- Records on payments and supply of goods: 5 years
- Records on consumer complaints or dispute resolution: 3 years
- Records on contracts or withdrawal of offers: 5 years
- Records on payments and supply of goods: 5 years
- Records on consumer complaints or dispute resolution: 3 years
•
Protection of Communications Secrets Act
- Records on website visits (logs): 3 months
- Records on website visits (logs): 3 months
2.
The Company's methods for disposing of personal information are as follows:
•
Destruction Procedure: Information entered during registration is transferred to a separate database (in case of hardcopy, a separate document box) after achieving its purpose and stored for a certain period according to internal policies and other relevant laws before being destroyed. This information will not be used for any purpose other than retention under the law.
•
Destruction Method: Personal information printed on paper is shredded or incinerated. Electronically stored information is deleted using technical methods that make the records irrecoverable.
3.
In accordance with Article 29, Paragraph 2 of the Act on Promotion of Information and Communications Network Utilization and Information Protection, the Company will notify dormant members (members who have not used the service for 12 months) of the loss of membership and may revoke membership if no response is received within the specified period in the notification. In such cases, dormant members’ personal information is stored and managed separately from other members, and it is destroyed once the legally mandated retention period expires.
Article 5 (Provision to Third Parties)
1.
The Company will not use the customer’s personal information beyond the scope disclosed in "Article 2 Types of Personal Information Collected and Purpose of Use" or provide it to third parties, except in the following cases:
•
Exceptions:
- When requested by relevant authorities for investigative purposes under applicable laws
- When used in a form that cannot identify a specific individual, such as for statistics, academic research, or market research, provided to advertisers, affiliates, or research institutions
- When there are other requests pursuant to procedures stipulated in relevant laws
- When requested by relevant authorities for investigative purposes under applicable laws
- When used in a form that cannot identify a specific individual, such as for statistics, academic research, or market research, provided to advertisers, affiliates, or research institutions
- When there are other requests pursuant to procedures stipulated in relevant laws
Even in cases where personal information is provided according to the above exceptions, the Company will make efforts to ensure that information is not provided indiscriminately, against the original purpose of collection and use.
Article 6 (Delegation of Personal Information Processing and Overseas Transfer)
For enhancing management efficiency and service quality, the Company may delegate parts of its operations to external third-party specialists and allow them to collect, store, process, use, provide, manage, or delete customers' personal information. The contractors and the scope of their delegated work are as follows:
For enhancing management efficiency and service quality, the Company may delegate parts of its operations to external third-party specialists and allow them to collect, store, process, use, provide, manage, or delete customers' personal information. The contractors and the scope of their delegated work are as follows:
•
Storage and Management of Personal Information on Domestic and Overseas Cloud Services: Amazon Web Services Inc.
•
Payment and Escrow Services: PortOne, NICE Payments
•
Mobile Phone Authentication: KG Inicis (subject to change)
•
Kakao Notification Messages: NHN Cloud
•
Customer Support and Customer Service: ChannelTalk
•
Email Transmission: Amazon Web Services Inc., SendGrid
※ Information shared with contractors is limited to the minimum necessary to fulfill the purpose, and personal information is provided to relevant contractors selectively, depending on the service request.
※ The list of contractors may change based on service changes and contract periods, and such changes will be notified in advance through the announcements.
※ The list of contractors may change based on service changes and contract periods, and such changes will be notified in advance through the announcements.
Article 7 (Access and Correction of Personal Information)
1.
Customers may view or correct their registered personal information at any time. Personal information can be accessed or corrected directly by clicking "My Profile Account," or customers may contact the Personal Information Protection Officer or responsible personnel by letter, phone, or email for access or correction, and the Company will promptly take action.
2.
When a customer requests correction of an error in their personal information, the Company will not use or provide the concerned personal information until the correction is complete.
3.
If incorrect personal information has already been provided to a third party, the Company will promptly notify the third party of the correction results to ensure rectification.
Article 8 (Withdrawal of Consent for Collection, Use, and Provision of Personal Information)
1.
Customers may withdraw their consent to the collection, use, and provision of personal information granted at registration at any time. Withdrawal of consent can be made by clicking "Delete Account" on the "My Profile Account" page, or by contacting the Personal Information Protection Officer via letter, phone, or email, and the Company will immediately take the necessary steps for membership withdrawal. Upon withdrawal, the Company will promptly notify the customer of the cancellation and deletion of their personal information.
2.
The Company will ensure that the withdrawal of consent (membership withdrawal) for personal information collection is easier than the method for collection, taking appropriate measures to facilitate the process.
Article 9 (Measures for Ensuring Security of Personal Information)
In compliance with Article 29 of the Personal Information Protection Act, the Company implements technical, managerial, and physical measures as follows to secure the safety of personal information:
In compliance with Article 29 of the Personal Information Protection Act, the Company implements technical, managerial, and physical measures as follows to secure the safety of personal information:
•
Encryption of Personal Information: Customer information is stored and managed in an encrypted form, ensuring that only the individual can access it. Important data is also encrypted or secured by separate security features, such as file locking or deletion.
Article 10 (Protection of Personal Information of Children Under the Age of 14)
The Company recognizes the importance of protecting the personal information of children online and does not accept membership registrations from children under the age of 14, which would require consent from a legal guardian. If a child under 14 joins or provides personal information due to identity theft or misuse, the legal guardian has the right to exercise all rights.
The Company recognizes the importance of protecting the personal information of children online and does not accept membership registrations from children under the age of 14, which would require consent from a legal guardian. If a child under 14 joins or provides personal information due to identity theft or misuse, the legal guardian has the right to exercise all rights.
Article 11 (Personal Information Protection Officer)
The Company has designated a Personal Information Protection Officer responsible for overseeing personal information processing and handling customer complaints and remedy requests related to personal information.
The Company has designated a Personal Information Protection Officer responsible for overseeing personal information processing and handling customer complaints and remedy requests related to personal information.
•
Personal Information Protection Officer
Name: Taejin Kim
Position: CEO
Contact Information: +82 70-7174-2124
Name: Taejin Kim
Position: CEO
Contact Information: +82 70-7174-2124
For complaints or inquiries regarding personal information, you may contact the Korea Internet & Security Agency (KISA) Personal Information Infringement Report Center or, for financial or mental distress due to infringement, the Personal Information Dispute Mediation Committee:
•
Article 12 (Changes to the Privacy Policy)
This privacy policy takes effect from the effective date and any additions, deletions, or corrections due to changes in laws or policies will be announced seven days prior to enforcement through the announcements.
This privacy policy takes effect from the effective date and any additions, deletions, or corrections due to changes in laws or policies will be announced seven days prior to enforcement through the announcements.
•
Effective Date: December 10, 2024