Privacy Policy > SHINMYUNG MEDIYES CO., LTD.

Shinmyung Mediyes
Health Promotion & Prevention

Privacy Policy

Privacy Policy

 

Shin Myung Mediyes Co., Ltd. (hereinafter referred to as 'Shin Myung') will protect the privacy and interests of users according to the Privacy Policy Act. The following policy is in place to help user’s grievances related to personal information.

Shin Myung will notify revised Privacy Policy through the website notice (or individual notice) when revising the Privacy Policy.

This policy was lastly revised on December 10, 2018.

 

1. Purpose of processing personal information.

 

Shin Myung handles personal information for the following purposes: The processed personal information will not be used for any purpose other than the following. If the purpose of use will be changed, we will obtain prior consent.

A.    Civil affairs processing

Personal information is processed for the purpose of contacting or notifying for fact-finding, notification of processing results, etc.

 B. Use in marketing and advertising

We process personal information for the purpose of developing new services (products), providing customized services, events, advertising information, and providing participation opportunities.

 

C.    Others

 

We process personal information for the purpose of customer inquiry.

 

2. Status of Personal Information File

 

The purpose of processing personal information files which are registered and disclosed in accordance with Article 32 of Personal Information Protection Act is as follows.

 

3. Processing and Retention Period of Personal Information

 

     Shin Myung shall process and retain personal information within the period of possession and use of personal information pursuant to the law or within the period of possession and use of personal information which has been agreed upon when collecting personal information from the information subject.

     Each personal information processing and retention period is until the member withdraws from the organization.

  

4. With the relation to the data subject's rights, obligations and the exercise method, user can exercise the following rights as the personal information subject.

 

     The information subject may exercise his/her right to protect personal information of the following subparagraphs at any time.

 

1.    Request for access to personal information

2.    Request for correction in case of error

3.    Delete request

4.    Processing stop request 

     Exercising the rights under Paragraph 1 may be made in writing, by e-mail, or by FAX in accordance with Form 8 of the Enforcement Regulations of the Personal Information Protection Act. Upon request, Shin Myung will act without delay.

     If the information subject requests correction or deletion of personal information errors, Shin Myung will not use or provide the personal information until the correction or deletion is completed.

     The exercise of rights under Paragraph 1 can be done through the legal representative of the data subject or the representative. In this case, a power of attorney must be submitted pursuant to Form 11 of the Enforcement Rules of the Personal Information Protection Act.

 

5. Items of personal information processed

 

    Shin Myung processes personal information as follows.

 

<Use for Marketing and Advertising>

 

-Required items: the purpose of processing personal information, the period of processing and retention of personal information, the matters concerning the provision of third parties for personal information, the rights and obligations of the data subject and the method of exercise thereof, the items of personal information to be processed, Matters concerning the destruction of personal information and matters concerning the person in charge of personal information protection-

Optional items: Departments that receive and process requests for access to personal information and remedies for infringement

 

6. In connection with the destruction of personal information, in principle, personal information will be destroyed without delay when the purpose of processing personal information is achieved.

 

The procedures, deadlines and methods of destruction are as follows:

 

-Destruction Procedure: The information entered by the user is transferred to a separate DB (separate documents in the case of paper) after the achievement of the purpose, and it is destroyed immediately after being stored for a certain period according to internal policies and other relevant laws. At this time, the personal information transferred to the DB will not be used for other purposes unless required by law.

 

Destruction Period: The personal information of the user shall be destroyed within 5 days of the end of the retention period when the retention period of the personal information has elapsed. The personal information will be destroyed within 5 days also from the date when the processing of the personal information is deemed unnecessary.

 

-Destruction Method: Information in the form of electronic files uses a technical method that cannot reproduce the record. Personal information printed on paper is destroyed by shredding or incineration.

 

7. As the Measures to ensure the safety of personal information Shin Myung takes the technical, managerial and physical measures necessary to secure safety as follows in accordance with Article 29 of the Personal Information Protection Act.

     Minimize the handling of personal information and designate employees who handle personal information. In addition, related tasks are limited to those who are minimized to manage personal information.

     Self-audit is conducted on a regular basis (once a quarter) to ensure the stability of handling personal information.

     We have established and implemented an internal management plan for the safe handling of personal information.

     Shin Myung installs security programs and periodically updates and inspects them to prevent leakage or damage of personal information caused by hacking or computer viruses. The system is installed in areas where access is controlled from the outside and technically and physically monitored and blocked.

     To restrict access to personal information, it is taking necessary measures to control access to personal information by granting, modifying and erasing the access right to the database system that processes personal information. Intrusion prevention system is used to control unauthorized access from the outside.

     In order to store access records and prevent forgery and alteration of personal information, we maintain and manage the records of access to the system for at least 6 months and use the security function to prevent the access records from being forged, stolen or lost.

     To control unauthorized person’s access, we have a separate physical storage location for personal information and establish and operate access control procedures.

 

8. Personal Information Protection Officer

 

     In order to deal with complaints and damages of data subjects related to the processing of personal information, Shin Myung has designated the person in charge of protecting personal information as follows.

 

Personal Information Protection Department: General Affairs

Contact Person: Chang-gu Kim

Contact: 070-4278-2201

Email: bigkim@smmediyes.com

 

     The user can contact the personal information protection officer or the department in charge for all personal information related inquiries, complaints, and damage relief that occurred while using the new service (or business). Shin Myung will respond promptly to the information subject's inquiries

9. Changes to the Privacy Policy

 

     This Privacy Policy will be applied from the effective date. If there is any addition, deletion or correction according to the law and policy, we will notify you through the notice 7 days before the effective date of the change