Privacy Policy

1. Privacy Policy Somuna (hereinafter referred to as the 'Company') complies with the personal information protection regulations of relevant laws and regulations, such as the Act on Promotion of Information and Communications Network Utilization and Information Protection, and the Personal Information Protection Act, and protects user rights and interests by establishing a privacy policy in accordance with relevant laws and regulations. This Privacy Policy applies to the use of services provided by the Company.
2. Items and Purpose of Personal Information Processing
A. The Company processes personal information for the following purposes in accordance with the items below. The Company collects member personal information as follows. The personal information processed will not be used for any purpose other than the following purposes, and if the purpose of use is changed, we will take necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.The purpose of the Company's collection of personal information is to provide quality and customized services provided by the 'Service' by screening out quality users who are not Internet users whose identity is uncertain and who engage in disrespectful behavior through personal identification by ID and password.


Classification
Item
Purpose
Registration
(Required) Email (ID), password
(Optional) Name, cell phone number, gender, date of birth, etc.
User registration and member management
Customer inquiries
Email (ID), name, contact information, etc.
Personally identifiable information when processing information
Information automatically generated when using the service
Service usage history, access logs, cookies, access IP, UUID, mobile carrier, etc.
Statistics and analysis of information


B. The Company discloses the Privacy Policy on the first screen of the site and in the 'Privacy Policy' section of the customer center so that users can easily view it at all times.
C. The Company establishes the procedures necessary to revise the Privacy Policy for continuous improvement of the Privacy Policy, and when the Privacy Policy is revised, the Company assigns a version number so that you can easily recognize the revision.


3. Processing and retention period of personal information
A. Personal information of users is processed and retained within the personal information retention and use period in accordance with the Personal Information Protection Act or the personal information retention and use period agreed upon when collecting personal information from the information subject.
B. Each personal information processing and retention period is as follows: - Records on contract or subscription withdrawal: 5 years - Records on consumer complaints or dispute handling: 3 years
C. If the service is not used for a period of one year, the user's personal information shall be destroyed immediately after the expiration of the period or stored and managed separately from other users' personal information.
D. The Company shall notify the user of the following matters, including the fact that personal information will be destroyed, the expiration date of the period, and the items of personal information to be destroyed, by e-mail or other methods, 30 days before the expiration of the above period.


4. Provision of Personal Information to Third Parties


A. The Company uses users' personal information within the scope notified in "Items and Purposes of Personal Information Processing" and does not use it beyond the scope or disclose users' personal information externally in principle without the prior consent of users. However, the Company may provide (including sharing) users' personal information to third parties in the following cases: - When a transaction is concluded through the services provided by the Company, relevant information is provided to the extent necessary for communication between the parties to the transaction - When it is processed and provided in a form that does not identify specific individuals, such as statistics, research, and investigation - When requested by an investigative agency in accordance with the provisions of laws and regulations or for investigation purposes.
B. The Company shall inform the user in advance of the name and contact information of the person to whom the personal information is provided, the purpose of using the personal information, the items of personal information to be provided, the period of retention and use of personal information by the person to whom the personal information is provided, the fact that the right to refuse consent exists, and the disadvantages of refusing consent.


5. Procedures and methods for destroying personal information Personal information of users shall be destroyed without delay when the personal information becomes unnecessary, such as the expiration of the retention period or the achievement of the purpose of collecting and using personal information. The Company's personal information destruction procedures and methods are as follows.

A. Destruction procedure - The Company records and manages matters related to the destruction of personal information, and the destruction is performed under the responsibility of the person in charge of personal information protection, and the person in charge of personal information protection confirms the results of the destruction - The Company may exceptionally not destroy the user's personal information if it is required to be preserved under other laws and regulations.

B. Destruction method -For personal information stored on paper or other recording media, shredding or incineration -For personal information stored in the form of electronic files, permanent deletion by a method that cannot be restored (or a technical method that cannot reproduce the record)

C. How to preserve undestroyed informationWhen the Company preserves personal information without destroying it in accordance with laws and regulations, the Company stores and manages such personal information or personal information files separately from other personal information. The Company does not use personal information transferred to a separate DB for any purpose other than retention unless required by law.


6. Rights and obligations of personal information subjects and how to exercise them

A. Users may exercise their rights to view, correct, delete, or suspend the processing of their personal information owned by the Company at any time.
B. To view or modify the user's personal information, click "Change Personal Information" (or "Modify User Information"), and to cancel subscription (withdraw consent), click "Withdraw Membership" to view, modify, or withdraw directly after going through the identification procedure.
C. A user's right to view personal information and request for suspension of processing may be restricted pursuant to Article 35, Paragraph 4, and Article 37, Paragraph 2 of the Personal Information Protection Act.
D. A user's request for correction and deletion cannot be made if the personal information is specified as the subject of collection in another law.
E. The Company shall verify that the person making the request, such as a request for access in accordance with the rights of the information subject, a request for correction or deletion, or a request for suspension of processing, is the person or a legitimate representative.


7. Matters concerning the installation/operation and rejection of automatic personal information collection devices The Company uses 'cookies' that store and retrieve users' information from time to time in order to provide specialized and customized services to users.

A. Purpose of use of cookies: The Company uses cookies to provide optimized information to users by identifying whether users access each service of "App" they visit, the type of use, whether they check the information they want to receive, search terms, user scale, etc.
B. Installation/operation and rejection of cookies
1) Users have the option to install cookies. Therefore, users can allow all cookies, check each time a cookie is saved, or refuse to save all cookies by setting options in the web browser.
2) To refuse the setting of cookies, you can allow all cookies, confirm each time a cookie is saved, or refuse to save all cookies by selecting the option of the web browser you use.
3) However, if you refuse to save cookies, you may have difficulty using some services that require a login.


8. Measures to ensure the safety of personal information

A. The Company takes the following technical measures to ensure the safety of personal information so that it is not lost, stolen, leaked, altered, or damaged when handling users' personal information: - Establishment and implementation of an internal management plan - Minimization and training of personal information handlers - Restriction of access to personal information - Storage of access records and prevention of falsification - Encryption and decryption of personal information - Technical measures against hacking - Access control for unauthorized persons


9. Collecting opinions on personal information and handling infringement and complaints Users may contact the following organizations for damage relief and consultation on personal information infringement. - Personal Information Infringement Reporting Center (privacy.kisa.or.kr/118) - Personal Information Dispute Mediation Committee (www.kopico.go.kr/1833-6972) - Supreme Prosecutors' Office Cyber Investigation Division (www.spo.go.kr / 1301) - National Police Agency Cyber Safety Bureau (cyberbureau.police.go.kr / 182)



10. Privacy Officer and Person in Charge The Company is committed to ensuring that users can safely use good information. The person in charge of personal information protection is responsible for any incidents contrary to the matters notified to you in protecting personal information. However, despite technical complementary measures, the Company is not responsible for damage to personal information due to unexpected accidents caused by basic network risks such as hacking, and various disputes caused by posts made by visitors. The person in charge and person in charge of handling your personal information are as follows, and we will promptly and sincerely respond to your personal information-related inquiries.Personal Information Protection Officer- Name: Song Jong-won- Affiliation/Position: General Manager/Representative- Email: biz@somuna.co.kr



11. Changes to the Privacy Policy If the Company changes the privacy policy, it will be continuously posted through the privacy policy in the service settings so that users of the service can easily check it.- Notice date: December 1, 2023 - Effective date: December 14, 2023