개인정보 처리방침
General rules
'D1 Light (hereinafter referred to as the 'Company') attaches great importance to the protection of customers' personal information and complies with the requirements of the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc., and the Communications Secrets Protection Act.
D1 Light has a personal information handling policy in accordance with the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc.
We are doing our best to protect your personal information by disclosing it through our website.
D1 Light's personal information handling policy contains the following contents.
- 1. Protection of users’ personal information
- 2. Personal information items collected and methods of collection
- 3. Provision and sharing of personal information with third parties
- 4. Sharing and provision of personal information
- 5. Retention and use period of personal information
- 6. Personal information destruction procedures and methods
- 7. Rights and exercise methods of users and legal representatives
- 8. Matters related to installation/operation and refusal of automatic personal information collection devices
- 9. Technical and administrative protection measures to protect personal information
- 10. Person responsible for managing personal information
- 11. User rights and obligations
- 12. Duty to notify
1. Protection of users’ personal information
“Personal information” refers to information about a living individual that can identify the individual through name, phone number, etc., video, etc. (even if the information alone cannot identify a specific individual, it includes information that can be easily combined with other information to identify the individual) ).
D1 Light complies with relevant laws and government guidelines and informs you of the purpose and method for which the personal information you provide is being used and what measures are being taken to protect personal information.
2. Personal information items collected and methods of collection
(1) Personal information collection items
1. D1 Light is used for communication procedures such as membership registration, smooth customer consultation, identity verification, delivery and confirmation of notices, and confirmation of one's intention, and to provide services (products) and events of D1 Light or D1 Light affiliates. We collect the following personal information.
- Required collection items: Name, real name authentication value (i-PIN number for i-PIN members), date of birth, gender, member ID, password, address, home phone number, mobile phone number, email
- Optional collection items: occupation, marital status, wedding anniversary
2. The following information may be automatically generated and collected during the service use or processing process.
- IP address, cookies, service usage records, access log, visit date and time
3. The following payment information may be collected during the use of paid services.
- When paying by credit card: card company name, card number, expiration date
- When transferring to an account: financial company, account number
4. The following information is collected during product delivery and service use.
- Product recipient and service user name, mobile phone number, and other contact information
5. During the application process for additional services and events, additional information may be collected only from users of the relevant services.
- Additional personal information collected is specified through additional services and event application pages.
(2) Personal information collection method
D1 Light collects personal information in the following ways.
- Edit homepage and member information
(3) Consent to collection of personal information
D1 Light allows users to register as a member only if they are 19 years of age or older. When registering, click the “Agree” button or click on the “Agree” button to the terms of membership, D1 Light’s personal information handling policy, consent to provision and use of personal information, or Terms of Use. We have established a procedure where you can click the “Disagree” button, and if you click the “Agree” button, you will be deemed to have consented to the collection of personal information.
D1 Light may collect and use personal information without user consent in the following cases.
1. Personal information required to fulfill a contract for the provision of information and communication services, and where it is clearly difficult to obtain normal consent due to economic or technical reasons
2. When necessary for settlement of fees for the provision of information and communication services
3. In cases where there are special provisions in this Act or other laws
3. Provision and sharing of personal information with third parties
D1 Light collects the minimum amount of personal information to provide better quality services such as membership registration and customized services. The company uses the collected personal information for the following purposes.
(1) Membership management
Verification of identity, personal identification, prevention of fraudulent use by delinquent members and prevention of unauthorized use, prevention of theft of personal information by others through real name verification and verification of products used by rental, membership, lump sum customers, etc., confirmation of intent to join, Age verification, complaint handling, etc., delivery of notices
(2) Performance of contract for service provision and settlement of fees for service provision
Fulfillment of contract and fee settlement for service provision, content provision, delivery of ordered products, delivery of event prizes, purchase and payment, bill sending, financial transaction identity verification and financial services, fee collection
(3) Use for new service development, marketing and advertising
Developing new services and providing customized services, delivering advertising information such as events, identifying access frequency, or providing services and delivering advertisements based on statistical characteristics of members’ service use.
The above information includes information changed at the time of registration as well as information changed by information modification.
4. Sharing and provision of personal information
In principle, the company does not use users' personal information or provide it to other people, companies, or organizations beyond the scope notified in "3. Purpose of collection and use of personal information." However, the following cases are exceptions.
(1) When the user consents to the provision of personal information to a third party
(2) When there are special provisions in other laws
5. Retention and use period of personal information
(1) In principle, the user's personal information is destroyed without delay once the purpose of collection and use of personal information is achieved. However, the following information will be preserved for the specified period for the reasons below.
(2) If preservation is necessary in accordance with the provisions of related laws such as the Commercial Act and the Act on Consumer Protection in Electronic Commerce, etc., the company stores member information for a certain period of time specified in the relevant laws. In this case, the company uses the stored information only for the purpose of storage, and the retention period is as follows.
1. Records regarding contract or subscription withdrawal, etc.: 5 years
2. Records of payment and supply of goods, etc.: 5 years
3. Records of consumer complaints or dispute resolution: 3 years
(3) If you do not use information and communication services for one year after August 18, 2015, the company will take necessary measures such as destroying personal information in accordance with the Information and Communications Network Act. However, if a separate period is specified in other laws or a different period is determined at the request of the user, necessary measures such as destruction will be taken after the period has elapsed.
6. Personal information destruction procedures and methods
In principle, D1 Light destroys personal information without delay after the purpose of collecting and using personal information has been achieved. Destruction procedures and methods are as follows:
(1) Destruction procedures
1. The information entered for membership registration, etc. is transferred to a separate DB (in the case of paper, a separate filing cabinet) after the purpose is achieved and stored for a certain period of time (see retention and use period) according to information protection reasons according to internal policy and other related laws and regulations. It will be destroyed after being saved.
2. This personal information will not be used for any purpose other than that for which it is retained, unless required by law.
(2) Method of destruction
1. Personal information printed on paper is destroyed by shredding or incineration.
2. Personal information stored in the form of electronic files is deleted using technical methods that render the records unrecoverable.
7. Rights and exercise methods of users and legal representatives
(1) Users and their legal representatives can view or modify their registered personal information or that of their legal representative at any time, and may also request cancellation of membership.
(2) To view or modify personal information, click ‘Change personal information’ (or ‘Edit member information’, etc.). To cancel membership (withdraw consent), click “Withdraw membership” and go through the identity verification process to directly view and correct information. Alternatively, you can withdraw.
(3) If you contact the personal information manager in writing, by phone or email, we will confirm and take action.
(4) If a user requests correction of an error in personal information, the personal information will not be used or provided until the correction is completed. Additionally, if incorrect personal information has already been provided to a third party, we will notify the third party of the result of the correction without delay so that the correction can be made.
(5) The company reserves the right to cancel or delete personal information at the request of the user or legal representative in accordance with “6. Personal information is processed as specified in the “Retention and Use Period” and is processed so that it cannot be viewed or used for any other purpose.
8. Matters related to installation/operation and refusal of automatic personal information collection devices
In order to provide customized services specialized for users, the company uses cookies to store and retrieve user information from time to time. Cookies are a small amount of information that the server (HTTP) used to run the website sends to the user's computer browser and are sometimes stored on the hard disk of the user's PC computer. The company uses cookies for the following purposes.
(1) Purpose of using cookies
It is used to provide target marketing and personalized services by analyzing the access frequency and visit time of members and non-members, identifying users' tastes and areas of interest, tracking traces, and determining the degree of participation in various events and number of visits.
(2) Installation/operation and refusal of cookies
Users have the option to install cookies. Therefore, users can allow all cookies by setting options in their web browser, confirm each time a cookie is saved, or refuse to save all cookies.
However, if you refuse to store cookies, you will not be able to use some services that require login.
- Example of cookie setting method (for Internet Explorer): Tools at the top of the web browser > Internet Options > Personal Information
9. Technical and administrative protection measures to protect personal information
D1 Light Co., Ltd., when handling users' personal information, is taking the following technical/administrative measures to ensure stability and prevent personal information from being lost, stolen, leaked, altered or damaged.
(1) Password encryption
The password of the member ID (ID) is encrypted, stored and managed, so only the user knows it (the password is encrypted in one way), and personal information can only be checked and changed by the person who knows the password.
(2) Measures against hacking, etc.
The company is doing its best to prevent members' personal information from being leaked or damaged by hacking or computer viruses. In preparation for damage to personal information, we regularly back up data, use the latest anti-virus programs to prevent users' personal information or data from being leaked or damaged, and ensure that personal information can be transmitted safely over the network through encrypted communication, etc. I'm doing it. We control unauthorized access from the outside using an intrusion prevention system, and take all possible technical and managerial protection measures to systematically ensure security.
(3) Minimization and training of handling staff
The company's staff handling personal information is limited to the person in charge, and a separate password is provided for this purpose and updated regularly. Compliance with the personal information handling policy is always emphasized through regular training for the person in charge.
(4) Operation of an organization dedicated to personal information protection
Through an in-house personal information protection organization, we check the implementation of the personal information handling policy and whether the person in charge is complying with it, and if any problems are discovered, we strive to immediately correct them. However, the company is not responsible for any problems arising from leakage of personal information such as ID, password, and real name authentication value due to the user's carelessness or Internet problems.
(5) Encryption of personally identifiable information
Personally identifiable real name authentication values, subscription authentication information, phone number, account number, and address (street address, building, number) are encrypted, stored and managed, so confirmation and change of personal information is only possible for the individual.
(6) Prevention of forgery and alteration of access records
When a personal information handler accesses the personal information processing system and processes personal information, the connection date and processing details are saved and access records are kept separately.
10. Person responsible for managing personal information
D1 Light values the opinions of its customers, and you can report any personal information-related complaints that arise while using the service to the personal information protection organization.
Responsibility | Name | Belong To | |
---|---|---|---|
Personal information protection officer | Minjoong Kim | D1 Light | joongrroo@gmail.com |
Customers can receive dispute resolution or consultation regarding personal information infringement through the organizations below.
- Personal information protection comprehensive support portal: www.privacy.go.kr
- Personal Information Infringement Report Center and Dispute Mediation Committee: http://privacy.kisa.or.kr / (without area code) 118
- Internet Crime Investigation Center: www.spo.go.kr / 02-3480-3600
- Cyber Terror Response Center: www.ctrc.go.kr / 02-392-0330
11. User rights and obligations
Please enter your personal information accurately and up-to-date to prevent unexpected accidents.
The user is responsible for any accidents that occur due to inaccurate information entered. If false information is entered, such as theft of another person's information, D1 Light membership may be lost or use of the D1 Light website may be suspended. The user is responsible for maintaining the security of the ID and password related to the user's personal information.
In addition to the right to have your personal information protected, you also have the obligation to protect yourself and not to infringe on the information of others. D1 Light does not directly ask users about their passwords in any way, so please be especially careful to prevent your password from being leaked to others. Please be careful not to damage other people's personal information, including posts. If you fail to fulfill this responsibility and damage other people's information, you may be punished under relevant laws and regulations. You must be especially careful when accessing the Internet in a public place.
D1 Light designates a personal information manager and person in charge of collecting opinions and handling complaints regarding personal information.
12. Duty to notify
If there are any additions, deletions or modifications to the current personal information handling policy, we will notify you through 'Notice' on the website at least 7 days prior to the revision. However, if there are significant changes to user rights, such as collection and use of personal information, provision to third parties, etc., notification will be provided at least 30 days in advance.
Announcement date: August 22, 2024
Effective date: August 22, 2024