본문 영역

같은 서브페이지 항목 경로

내부 컨텐츠 영역

Privacy Policy (Personal Information Handling Policy)

"   ‘‘kt NexR' (hereinafter referred to as the ‘Company’) has established the following Personal Information   "

Handling Policy to protect the personal information of its users and to handle user complaints and requests in a smooth manner in accordance with the Act on the Protection of Personal Information.

The Company will announce any revisions of the Personal Information Handling Policy (or individual notices) on the Bulletin Board of its official website (or via individual notification).

This Privacy Policy shall become effective as of September 8, 2017.

  • Purposes of Collection and Use of Personal Information

  • The Company will collect and use the personal information for the following purposes. The personal information we collect will not be used for any purposes other than the following unless otherwise agreed upon in advance. We will seek your prior agreement in the event of any revisions made on this Policy.
    ① Handling complaints We collect and use the personal information for the purpose of identifying the petitioner, description of complaint or demand, communications and notifications for investigation of facts, and delivery of results.

    ② Provision of goods or services We collect and use the personal information to provide free version products and to respond to customer inquiries.

    ③ Marketing and advertising We collect and use the personal information to provide information on new service (product) development, customized services, promotional and advertising information, participation opportunities, customized services based on demographic characteristics, advertising, confirmation of the validity of service, and to identify the frequency of accesses and/or statistics on usage of services by members.

  • Personal Information Retention Period

  • ① The Company retains and uses the personal information of members during the period agreed upon at the time of collecting such information in accordance with the relevant laws and regulations. ② The personal information use and retention period stipulated in Article 1, ① and ② shall be one (1) year. ③ The personal information use and retention period stipulated in Article 1, ③ shall be six (6) months.

  • Rights and Obligations of Information Owners and Methods of Exercising Them

  • Users may exercise the followings rights as the owners of personal information. ① Information owners may exercise the followings rights related to personal information protection at any time. A. Inquiry of personal information
    B. Correction of any errors
    C. Deletion
    D. Suspension of information handling

    ② You can exercise the rights under paragraph 1 through document, electronic mail and facsimile (Fax) according to the form provided in Annex No. 8 of the Enforcement Rules of the Personal Information Protection Act. The Company will take immediate action.
    ③ When an information owner requests correction of errors or deletion of personal information, the Company will not use or provide such information until correction or deletion has been completed.
    ④ You may exercise the rights under paragraph 1 through a legal representative or entrusted agent. In this case, you must submit a letter of attorney according to the form provided in Annex No. 11 of the Enforcement Rules of the Personal Information Protection Act.

  • Items of Personal Information to be Collected and Used

  • The Company collects and uses the following personal information items.
    A) Download free version software, response to inquiries and application for consulting services
    - required items: Name / Contact Info. / Email / Company / Department / Title

    B) Handling complaints
    - required items: Name / Contact Info. / Email / Company / Department / Title

    C) Use for marketing and advertising purpose
    - required items: Name / Contact Info. / Email / Company / Department / Title

  • Destruction of Personal Information

  • The Company, in principle, destroys the concerned personal information immediately upon accomplishment of the intended purpose of collecting and using the personal information. The procedure, due date and method of destruction will be as follows.
    ① Destruction procedure Upon accomplishment of the intended purpose of collecting and using the personal information, the Company transfers personal information to a separate database (or personal information file in the event of paper-based information) and destroys such information either immediately or within a certain period of time in accordance with the relevant laws and regulations. The personal information kept in a separate database shall not be used for purposes other than originally intended unless otherwise stipulated in the relevant laws.

    ② Due date for destruction If the personal information possession period expires, the Company destroys the concerned personal information within five (5) days from the date of expiry. If personal information becomes unnecessary due to accomplishment of the purpose, discontinuance of concerned services and/or termination of business the Company will destroy the concerned personal information within five (5) days from the date of acknowledging that it is no longer necessary to retain such personal information.

    ③ Destruction method The Company destroys personal information recorded and stored in the form of electronic file so that it cannot be restored. Personal information recorded or stored on paper is destroyed by shredding or incinerating.

  • Securing Safety of Personal Information

  • The Company takes the following technical, managerial and/or physical measures to secure the safety of personal information in accordance with Article 29 of the Act on the Protection of Personal Information. ① Regular in-house audit The company conducts in-house auditing to ensure security in the handling of personal information on a regular basis (on a quarterly basis)

    ② Limiting access to the personal information to the minimum and education The Company appoints a Personal Information Protection Manager and limits the number of staff handling the personal information to the minimum and takes protective measures regarding personal information.

    ③ In-house administrative measures The company establishes and enforces in-house administrative measures to ensure the safe and secure handling of all personal information.

    ④ Technical measures against unauthorized access attempts The Company installs and uses an anti-virus program to prevent the personal information from being damaged or leaked by computer viruses. The anti-virus program is updated on a regular basis and the relevant system is built in an area of limited access and is technically and physically monitored, controlled and protected.

    ⑤ Encryption of personal information The user password among the personal information items is encrypted before it is stored and is known to its owner only. Any critical data are also protected by using additional security functions, such as file and transmission encryption or file locking.

    ⑥ Storage of access records and prevention of forgery and falsification The Company keeps records of access to the personal information handling system for at least six (6) months and takes security measures to prevent the access records from being lost, stolen, leaked, falsified or damaged.

    ⑦ Access control to personal information The company enforces strict access controls, including issuing, changing and nullifying access rights on the database system that handles the personal information to prevent such information from being leaked or accessed by unauthorized personnel. In addition, an intruder detection system is set up to prevent any unauthorized access from the outside.

    ⑧ Use of a lock device to ensure document security All documents and storage devices that contain the personal information are kept in a safe and secure place equipped with the lock system.

    ⑨ Access control against unauthorized personnel The physical storage that contains the personal information system is physically located in an area where outside access is restricted. The Company also establishes and enforces the access control procedure.

  • Personal Information Protection Manager

  • ① The Company appoints the following Personal Information Protection Manager who is in charge of protecting and handling personal information to handle complaints and relieve damage regarding protection of personal information. ▶ Personal Information Protection Manager
    - Name: Kim Sang Jin
    - Title: Team leader
    - Team: management Support Team
    - Contact Info: 02-583-7788, privacy@nexr.com
    ※ Your call will be forwarded to the team in charge of protecting personal information.

    ② The owner of the personal information can make any requests or report any complaints with respect to personal information protection, which may occur while using our products and services, to the Personal Information Protection Manager or the relevant team in charge. The Company will promptly respond to such requests and/or complaints.

  • Request for showing personal information

  • The Company will make reasonable effort to allow the owner of personal information to view his or her personal information immediately upon request.
    ① The owner of personal information may request the following team to show his or her personal information according to Article 35 of the Personal Information Protection Act.
    ▶ Team in charge of handling personal information requests
    - Team: management Support Team
    - Name: Kim Sang Jin
    - Contact Info: 02-583-7788, privacy@nexr.com

    ② The owners of personal information may also request personal information through the 'Privacy Portal' website of the Ministry of Public Administration and Security (www.privacy.go.kr)in addition to the team in charge of handling personal information requests under paragraph ▶ Privacy Portal of the Ministry of Public Administration and Security → Privacy Complaint → Request Personal Information (I-PIN is required for verification of ID)

  • Rectification of Infringement on Rights and Interests

  • The following institutions are not related to the Company, and personal information owners may contact the following institutions for damage relief and counseling on personal information infringements if they feel unsatisfied with the way the Company handles their personal information or need additional help. ▶ Personal Information Infringement Report Center (operated by Korea Internet & Security Agency)
    - services: Reporting of and counseling on personal information infringements
    - Website: privacy.kisa.or.kr
    - Telephone: (Without prefix) 118
    - Address: (58324) Personal Information Infringement Report Center, Jinheung-gil 9 (Bitgaram-dong 301-), Naju-si, Jeollanam-do, Republic of Korea

    ▶ Personal Information Dispute Mediation Committee (Operation of Privacy Protection Committee)
    - services: Mediation of personal information dispute and collective dispute (settlement by civil means)
    - Website: www.kopico.go.kr
    - Telephone: (Without prefix) 1833-6972
    - Address: (03171) 4F, Government Seoul Building, 209 Sejong-daero Jongno-gu, Seoul, Korea

    ▶ Cybercrime Investigation Department of Supreme Prosecutors' Office: 02-3480-3573 (www.spo.go.kr)
    ▶ Cyber Terror Response Center of National Police Agency: 182 (cyberbureau.police.go.kr)(cyberbureau.police.go.kr)

  • Revision in Personal Information Handling Policy

  • This Privacy Policy shall be in full force as of the enforcement date, and any addition, deletion and revision of the Privacy Policy in accordance with relevant laws and regulations and government policy will be announced on the bulletin board of our website at least seven (7) days prior to the effective date thereof. ▶ Date of Notification: September 1, 2017
    ▶ Date of Enforcement: September 8, 2017