Indication of Major Personal Information (Labeling)
General Information Collected
Name, Gender, Date of birth,
Email address, telephone number, postal address etc.
Purpose of collected personal information
Gaining membership, Customer management and provide information and services regarding inquiry
Period of retention of collected personal information
Until membership is terminated or purpose of collection has been served (In cases where related laws in internal policies, it is retained for 3yrs or more)
Recipient of collected personal information
Hanwha General Insurance
(in case of accident)
Subcontractor receiving collected personal information
Hanhwa Systems, Infinity Consulting, NICE Information Service Co.,Ltd. and 7 others
Department in Charge
82.2.771.2200
※ For more information, please check the full statement of Privacy Policy below.
1. Items of personal information collected, as well as purpose of collection and use, and period of retention and use |
|
|||||||||||||||||||||||||||||||||||||||||||||
The Company collects and uses the following items of personal information. Information collected may differ according to type of guest. When relevant laws mandate the retention of personal information, the Company will retain the information stipulated in said law(s) for the prescribed period of time.
|
||||||||||||||||||||||||||||||||||||||||||||||
2. Retention of personal information for which the period of use has expired |
|
|||||||||||||||||||||||||||||||||||||||||||||
The Company deletes personal information without delay once the purpose for which it is used has been achieved. However, in cases where related laws in internal policies necessitate the retention of personal information for the following purposes, such as verifying relationships of obligation vis-a-vis rights of commerce, such information will be retained for the minimum legally stipulated time. ⑴Consumer protection laws regarding electronic commerce -Records of withdrawal from contracts of agreements: 5 years -Records of payments and supply of goods: 5 years -Records of consumer complaints or dispute settlement: 3 years ⑵Protection of Communications Secrets Act -Records of website visits: 3 months ⑶Commercial law -Statements or similar documents: 5 years |
||||||||||||||||||||||||||||||||||||||||||||||
3. Procedures and methods of deleting personal information |
|
|||||||||||||||||||||||||||||||||||||||||||||
After the purpose for which personal information was collected and used has been achieved, this information is deleted without delay, according to retention and use periods. Deletion methods are as follows. ⑴ Personal information printed on paper: Shredded using a shredder ⑵ Personal information stored in the form of electronic files: Permanently deleted using technology that prevents data recovery ⑶ Information stored on a storage device such as HDD or USB: Completely physically destroyed |
||||||||||||||||||||||||||||||||||||||||||||||
4. Provision of personal information to third parties |
|
|||||||||||||||||||||||||||||||||||||||||||||
In principle, the Company hands personal information within the bounds of the purposes for which it is collected and used, and does not exceed these bounds or pass on information to third parties.
However, personal information may be handled outside these bounds in the following exception circumstances. ⑴With the advance permission of the owner of the information ⑵When specific legal requirements make this inevitable ⑶When the owner of the information or her/his legally designated proxy is unable to express her/his opinion, or when advance permission cannot be obtained for reasons such as unknown postal address and it is deemed that measures must be taken in order to protect the life, physical wellbeing or assets of the owner of the information or a third party The Company shares personal information with the following parties, for purposes such as providing better service and customer convenience. However, advance permission is obtained from customers before their personal information is shared with these parties.
|
||||||||||||||||||||||||||||||||||||||||||||||
5. Subcontracting the management of personal information |
|
|||||||||||||||||||||||||||||||||||||||||||||
In order to improve efficiency and provide optimized service, we outsource the handling of personal information to the following professional subcontractors.
When outsourcing the handling of personal information, the Company uses documents containing the following ⑴Prohibition of the use of personal information for any purpose than that of the outsourcing ⑵Technical and administrative measures for protecting personal information ⑶Safe management of personal information, as well as purpose and scope of outsourced work ⑷Restrictions on re-subcontracting work ⑸Measures for ensuring the safety of personal information ⑹Supervision, including inspections on the state of management of personal information retained as part of outsourced work ⑺Responsibility to provide compensation for damages incurred when the subcontractor fails to observe its responsibilities |
||||||||||||||||||||||||||||||||||||||||||||||
6. Collection and Use of Behavioral Information |
|
|||||||||||||||||||||||||||||||||||||||||||||
The company collects and uses behavioral information in order to provide optimized and customized services and benefits to customers based on behavioral information such as website visit records.
|
||||||||||||||||||||||||||||||||||||||||||||||
7. Collection of Personal Information of Children Under the Age of 14 |
|
|||||||||||||||||||||||||||||||||||||||||||||
When collecting personal information of children under the age of 14, we obtain the consent of the legal representative. In order to obtain such consent, we may collect from the child the name and contact information of the legal representative. However, the legal representative’s personal information collected is used only for the purpose of obtaining consent to the collection of the child’s personal information, and if consent is not given within 5 days, the former is automatically destroyed. | ||||||||||||||||||||||||||||||||||||||||||||||
8. Rights and responsibilities of the owners of personal information, and how rights may be exercised |
|
|||||||||||||||||||||||||||||||||||||||||||||
Customers may view or correct their own personal information as held on records, at any time. This can be done directly on-line by clicking on “Change personal information” and “Amend member information” and confirming identity, or by a member of Company staff if requested by telephone. However, the Company may request that the customer fill out a personal information request form at such times.
|
||||||||||||||||||||||||||||||||||||||||||||||
9. Measures to ensure the security of personal information |
|
|||||||||||||||||||||||||||||||||||||||||||||
The Company takes the following technical, administrative and physical measures to ensure the safety of customers in order to prevent personal information from being lost, stolen, leaked, altered or damaged.
⑴Devising and implementing of internal plans for safe processing of personal information ⑵Controlling access to personal information and restricting access rights ⑶Applying encryption technology, or taking equivalent measures, for the secure storage and transmission of personal information ⑷Taking measures to prevent the storage of access logs, in order to prevent violation of personal information or tampering ⑸Installing and regularly updating of personal information security programs ⑹Taking measures to provide physical protection, including the building of facilities for secure storage of personal information and installation of locking devices |
||||||||||||||||||||||||||||||||||||||||||||||
10. Gathering of opinion and handling of complaints |
|
|||||||||||||||||||||||||||||||||||||||||||||
In order to promote clear communication with customers, the Company operates a personal information advice point. If you have an inquiry, please contact us at the number below. We will endeavor to respond as soon as possible.
Customers requiring advice regarding other violations of personal information, you may contact the Korea National Internet Development Agency's Personal Information Violation Notification Center or the National Police Agency's Cyber Terrorism Response Center.
|
||||||||||||||||||||||||||||||||||||||||||||||
11. Persons responsible for the protection of personal information |
|
|||||||||||||||||||||||||||||||||||||||||||||
In order to protect the personal information of customers and to handle complaints related to personal information, the Company places the following individuals in charge of personal information.
|
||||||||||||||||||||||||||||||||||||||||||||||
12. Changes to privacy policy |
|
|||||||||||||||||||||||||||||||||||||||||||||
This privacy policy was amended on February 2, 2024. When and if further changes (amendments, additions or deletions) are made in accordance with related laws or changes in hotel policy, these will be announced on website news pages or in pop-up windows.
Date of announcement: January 26, 2024 Date of implementation: February 2, 2024 |