Block Pet Co., Ltd. (hereinafter referred to as "Company") places great importance on the protection of members' personal information in the Pet Company service (hereinafter referred to as "Service") provided by the Company, and the 『Act on Promotion of Information and Communication Network Utilization and Information Protection, etc.』 And other personal information related laws and regulations.
The company specifies the personal information handling policy as follows to inform you of the purpose and method of using the personal information provided by the member to the company, and what measures are taken to protect personal information.
Personal information collection method and items
The company collects the following minimum personal information for membership registration, smooth service provision, and consultation.
Items collected at the time of membership registration
Email address/Facebook user ID/KakaoTalk user ID (choice 1), service ID, nickname, pet information, address
Range of personal information that can be collected in the process of using the service
Information entered by the user in the process of using the service and the work created
User name, shipping address, mobile phone number, etc. when sending promotional event prizes, etc.
How to collect personal information
Mobile application, web page, fax, written form, telephone through customer center, online consultation, event application, etc.
Collection through generated information collection tool
Purpose of collecting and using personal information
Smooth provision and operation of services
Member management: Membership service use, personal identification, prevention of illegal use and unauthorized use of bad members, confirmation of intention to join, limit the number of subscriptions and subscriptions, record preservation for dispute settlement, complaint handling such as complaint handling, delivery of notices, etc.
Utilization for marketing and advertisement: Provision of customized services for each customer, provision of services and advertisements according to statistical characteristics, dispatch of periodicals, service validation, events and coupons, provision of advertising information and participation opportunities, identification of access frequency, members Statistics on service use, etc.
Consent to collection, use, and provision of personal information
Use and consignment of personal information other than the purpose
The company uses the user's personal information in “2. The purpose of collecting and using personal information” is used within the range notified, and in principle, it is not used beyond the scope or provided to a third party in principle.
However, in the following cases, personal information may be provided or used with the consent of the member through reasonable procedures.
Partnership relationship: In order to provide better service, we may provide personal information of members to affiliates. In this case, a procedure for individually seeking consent for the affiliated company, the items of personal information provided to the member, the purpose of providing the personal information, the period of provision, and the personal information protection plan, etc., is carried out to the member in advance. We do not do this, and we will notify you of any change or termination of the partnership. In addition, when the partnership is terminated, the personal information provided will be destroyed without delay if there is no consent from the member, and the consent can be withdrawn at any time, even if you consent to the provision of personal information.
Consignment processing: For smooth business processing and better service provision to members, the member's personal information can be entrusted and processed. Notice in detail.
The following are exceptions:
-When necessary for settlement of fees for service provision
-When a transaction is concluded through a service provided by the company, when relevant information is provided to the transaction party within the necessary range for smooth communication between the transaction parties
-When users agree in advance
-In case personal information is processed and provided in a form that cannot identify a specific individual for statistical purposes
-In the case of a request from an investigative agency in accordance with the provisions of the law or in accordance with the procedure and method prescribed by the law for the purpose of investigation
Retention period and destruction of personal information
When the company collects personal information of members, the retention period is, in principle, retained and used until the end of the use contract pursuant to Article 7 of the terms and conditions after signing up as a member. Therefore, in principle, personal information held by the company is deleted when withdrawing a member. However, the following information is retained for the specified period for the following reasons.
-Member's email address, (to prevent re-registration after membership withdrawal): 30 days
-History of actions taken against illegal use by members (for the purpose of preventing recurrence of malicious use by members): 6 months
If there is a need to preserve in accordance with the relevant laws and regulations, the company may store the user's personal information for longer than the period stipulated by the relevant laws and regulations. In this case, the company only uses the information it keeps for the purpose of keeping it. However, information that must be kept according to other laws or company internal policies as follows is safely stored in a separate DB for the period stipulated by the laws and then destroyed. Personal information transferred to a separate DB is not used for any other purpose other than to be retained unless required by law.
Information of users who do not have a record of service use for more than one year will be converted into dormant accounts in accordance with the Act on Promotion of Information and Communication Network Use and Information Protection, etc.
-At least 30 days before the dormant account switchover, we will inform you of the scheduled conversion date through the registered e-mail. If you do not want to switch to the dormant account, you can check the message and log in to use the service normally.
-The information of users who have been converted to dormant accounts is separately stored in a separate DB and managed safely, and even if they have been converted to dormant accounts in this way, you can use the service normally at any time through a simple dormant release procedure after logging in.
Rights of users and legal representatives and how to exercise them
Users and legal representatives can view or modify their registered personal information at any time, or request termination of subscription.
You can directly view, correct, or request withdrawal after going through the identity verification process through the customer center to view or modify personal information of the user or agent, or through the customer center to cancel subscription (withdrawal of consent).
You can contact the person in charge of personal information management in writing, by phone, or by e-mail to request inquiries, corrections, and termination of subscription of personal information.
If you request correction of errors in personal information, the personal information will not be used or provided until the correction is completed. In addition, if incorrect personal information has already been provided to a third party, the result of correction processing will be notified to the third party.
The Company handles personal information that has been canceled or deleted at the request of a user or legal representative as specified in Article 5, “Retention Period and Destruction of Personal Information”, and is processed so that it cannot be viewed or used for any other purpose.
Matters concerning the installation/operation and rejection of automatic personal information collection devices
1) In the process of using the service, IP address, cookie, service use record, device information, location information, ADID and IDFA may be created and collected. Specifically
(1) When the information and communication service provider creates and stores (collects) information about users in an automated way in the process of using the service
(2) This refers to the case of collecting the unique information of the user's device after it is safely converted so that the original value cannot be verified.
The company uses'cookies' that store and retrieve user information from time to time in order to provide personalized and customized services.
Cookies are very small text files that the server used to operate the website sends to the user's browser and are stored on the user's computer's hard disk. When the user visits the website afterwards, the website server reads the contents of the cookie stored on the user's hard disk, and is used to maintain the user's preferences and provide customized services.
Cookies do not automatically or actively collect personally identifiable information, and you can refuse to store or delete these cookies at any time.
Users have the option of installing cookies, and by setting options in their web browser, they can allow all cookies, check each time a cookie is saved, or refuse to save all cookies.
Cookies are used to provide personalized services such as targeted marketing through analysis of members' access frequency and visit time, identification of usage patterns and interests, trace tracking, participation in various events, and identification of the number of visits.
Provision of third-party information
The company does not use the user's personal information for purposes other than those related to the use of the service provided by the company, or provide it to others or to other companies or other organizations. However, if it is necessary to share the user's personal information with partner companies in order to provide better services, the user is notified of the recipient, purpose of provision, items of information provided, and period of use and retention to obtain consent.
Information related to collection and use
Only the information of the member who has consented to this agreement will be provided, and the provided information will not be used outside the scope of the purpose of use specified in this agreement.
In accordance with the laws related to personal information protection, our members' information is managed safely, and we are striving to provide more thorough security to prevent accidents such as leakage of personal information.
The affiliates to which personal information is provided, the information provided, and the purpose of use of the provided information are as follows.
Users may disagree with the provision of personal information to a third party, and may withdraw their consent to the provision of personal information to a third party at any time. If you refuse to consent, you can still use the membership service, but the use and provision of related services based on the provision of a third party may be restricted.
Technical/administrative protection measures for personal information
The company takes the following technical/administrative protection measures to ensure safety so that personal information is not lost, stolen, leaked, altered or damaged in processing users' personal information.
-User's password is stored and managed by one-way encryption, and personal information can be checked and changed only by the person who knows the password.
Countermeasures against hacking, etc.
-The company is doing its best to prevent the leakage or damage of members' personal information by hacking or computer viruses.
-In preparation for damage to personal information, data are backed up from time to time, and the latest vaccine programs are used to prevent leakage or damage of users' personal information or data.
-In the process of exchanging sensitive personal information through the information and communication network, encrypted communication is applied so that personal information can be transmitted safely.
-In addition, we are constantly striving to secure security by introducing a security system and expanding professional manpower.
Minimization of personal information handlers and periodic training
-The company's personal information-related handlers are limited to the person in charge, minimizing the person in charge of personal information processing, and in the event of personnel movement such as retirement or job change, the authority is changed or canceled without delay to control access to personal information.
-We are doing our best to ensure that the importance of personal information protection is recognized and safely managed by conducting periodic training on personal information handlers.
Personal information manager and person in charge
We have designated a person in charge of personal information protection as follows in order to take full responsibility for the handling of personal information and to handle user complaints related to personal information processing and to relieve damage.
Despite the technical supplementary measures, we are not responsible for damage or loss of information due to unexpected accidents caused by basic network risks such as hacking, and various disputes caused by postings created by users.
If you need to report infringement of other personal information or need consultation, please contact the following organizations.
▶ Personal Information Infringement Report Center (operated by Korea Internet & Security Agency): (without area code) 118 / privacy.kisa.or.kr
▶ Supreme Prosecutors' Office Cyber Crime Investigation Team: (without area code) 1301 / www.spo.go.kr
▶ National Police Agency Cyber Security Bureau: (without area code) 182 / www.cyber.go.kr
▶ Electronic Transaction Dispute Mediation Committee (https://www.ecmc.or.kr / 1661-5714)
Policy on changes to the personal information processing policy
This personal information processing policy is applied from the effective date, and if there are any additions, deletions, or corrections of changes in accordance with laws and policies, we will notify you through the notice from 7 days before the enforcement of the changes. In addition, if you inevitably need to change the processing policy due to changes in related laws or company policies, please note that we are notifying you quickly through notices on the website and mobile applications.
-Effective date: April 01, 2020