ASTEMS Privacy Policy ASTEMS protects the personal information of the information subject according to Article 30 of the Personal Information Protection Act, We establish / disclose personal information processing instructions as follows so that we can deal with these complaints quickly and smoothly. In addition, the company considers the privacy of information subjects very important, at the same time that the information entity uses the services of the company, we will do our best to protect the personal information provided by the information entity to the company. The Company shall make it easy to identify by using font size, color, location, etc. that can be easily identified by the information subject by using this Privacy Policy in the name of the ‘Personal Information Protection Policy’ separate from other notices (terms of use, copyright notices, etc.) Article 1 (Purpose of collection and processing of personal information) The Company processes personal information for the following purposes. Personal information being processed is not used for purposes other than the following purposes, If the purpose of use is changed we will implement necessary measures, including obtaining consent in accordance with Article 18 of the Personal Information Protection Act. ① Goods or services We handle personal information for the purpose of delivering goods, providing services, providing content, providing customized services, age verification, bill settlement / settlement, collection of debts. ② Grievance processing We process personal information for the purpose of confirming the identity of the complainant, checking the complaint, contacting / notifying for the investigation, and notifying the result of processing. ③ The purpose of the At POS Service Use Agreement, Personal Information Collection and Handling Consent Agreement We process personal information according to the purpose stated in the At POS Service Use Agreement such as merchant's personal information management, real name confirmation and identity verification, purchase and payment, event promotion, product delivery, and personal information collection and handling consignment agreement. Article 2 (Processing of Personal Information / Retention period) ① The Company shall process / retain personal information within the period of holding / using the personal information in accordance with statute, or during the period of using or using the personal information acquired from the information subject at the time of collection. ② The company keeps the personal information of the information subject continuously while using the offline service (At POS service use contract) service and uses it for service. ③ The Company retains the personal information of the member for 15 days after withdrawal from membership, and shall subsequently destroy it. ④ If it is necessary to preserve the information in accordance with the relevant laws and regulations, such as the Commercial Act, the Consumer Protection Act in Electronic Commerce, etc., the Company keeps the personal information of the information subject for a certain period determined by the relevant laws and regulations. In this case, the Company will use the information it keeps for its own purposes only and the period of retention is as follows. - Records on withdrawal of contract or subscription: 5 years - Record of payment and goods supply: 5 years - Records of consumer complaints or disputes: 3 years Article 3 (Provision of Third Party and Consignment of Personal Information) ① The Company shall process the personal information of the information subject within the scope specified in Article 1 (Purpose of Personal Information). ② The Company consigns personal information as follows. - Handling trustee: Sure M Co., Ltd., KFTC, CJ Korea Express - Contents and provision of commissioned work: CMS account, SMS sending agent, product delivery, purchase / payment and related work ③ The Company shall supervise whether the fiduciary shall securely process personal information in accordance with Article 26 of the Personal Information Protection Act when signing the contract. ④ If the contents of the consignment service or the consignee change, we will disclose it through this personal information processing policy without any delay. Article 4 (Rights / Duties of Information subject and Method of exercise) ① The information subject can exercise the right of privacy protection at any time with respect to the company. 1. Personal information view request 2. If there is an error, Correction Requirement 3. Delete request 4. Process stop request ② The exercise of rights under Paragraph 1 above may be made in writing, telephone, e-mail, fax (FAX), etc. for the company in case of offline (by the contract of using At POS service). ③ When a subject requests correction or deletion of personal information, the company will not use or provide the personal information until the correction or deletion is completed. ④ The exercise of rights under Paragraph 1 may be made through a legal representative of the information subject or an agent such as a person who has been delegated. In this case, you must submit a power of attorney according to Form 11 of the Enforcement Regulations of the Personal Information Protection Act. ⑤ The information subject should not infringe the personal information or privacy of the information subject or other person in violation of relevant laws such as the Personal Information Protection Act. ⑥ The information subject has the right to refuse consent to provide and use personal information (including essential items and optional items) such as Article 5 (Personal Information Items to be processed) below. If, however, you refuse to consent to the essential items set forth in Article 5, the required items are the minimum information necessary for joining the membership, so membership or maintenance may not be possible, If you refuse to consent to optional item, there may be some restrictions on the provision of related accommodations (events, new product information, and other related matters). Article 5 (Personal Information Items to be Processed) ① The company processes the following personal information items. 1-1. When At POS service using contract Personal information items: name, address, phone number, mobile phone number, email address, date of birth, account number Purpose of collection: Contract processing for use of the At POS system, handling of CMS account, delivery of notices, complaint handling, etc. 1-2. Q & A notice board Personal information items: name, phone number, mobile phone number, email address Purpose of collection: Answers to product and quotation inquiries 1-3. User education application bulletin board Personal information items: name, phone number, mobile phone number Purpose of collection: Purpose of user training ※ [At the time of the At-Force service use contract] mentioned above: At the time of joining the at POS service contract by the company. ② The company uses the cookie method to certify members of online members. If you are using a public place or a computer that can be used by another person, please logout when you are finished using the service after login. because it is not automatically saved to the computer when logout. - How to set cookies rejected : To decline cookies, you can either accept all cookies, check each time you save cookies, or refuse to store all cookies by selecting the option for your web browser. However, if the information subject refuses to install cookies, it may be difficult to provide the service. Example of setting method (for Internet explorer) : Tools> Internet Options> Privacy at the top of your web browser Article 6 (Destruction of personal information) ① When the personal information becomes unnecessary, such as the elapse of the personal information retention period and the achievement of the processing purpose, the company discards the personal information without delay. However, if there is a need for preservation in accordance with the Company's policies and related laws and regulations, including the prevention of re-entry of bad members, etc, the information may be retained for a certain period of time only after your withdrawal within the scope of achieving the above purpose. ② Procedures and methods of personal information destruction are as follows. 1. Destruction procedure The Company shall select the personal information that caused the reason for destruction, and destroy the personal information with the approval of the company's personal information protection officer. 2. Destruction method The Company shall destroy personal information recorded / stored in the form of an electronic file by means of a deletion program or the like to prevent the record from being played, personal information recorded / stored in paper documents is crushed or incinerated by a crusher. Article 7 (Measures to Ensure the Safety of Personal Information) The Company takes the following measures to ensure the safety of personal information. 1. Administrative measures: establishment / implementation of internal management plan, regular staff training, etc. 2. Technical measures: management of access rights such as personal information processing system, installation of access control system, encryption of unique identification information, installation of security program 3. Physical measures: access control of computer room, data storage room, etc. Article 8 (Person in Charge of Personal Information Management) ① The Company shall be responsible for the handling of personal information and shall designate the person responsible for the protection of personal information as follows for the complaint handling and damage relief of information subject related to personal information processing. 1-1. Privacy protection manager : SI business department Director Chulsoo Park 1-2. Privacy protection charged person : SI business department Manager Jinwoo Park 1-3. Call : Representative number < +82-2-453-5200> / Fax < +82-2-453-5201 > ② The information subject can apply for request inspection of personal information to Privacy protection manager, privacy protection charged person, responsible department, customer Service center by using our company services. The company will respond promptly and promptly to the inquiry of the information subject. ③ Customer service center 1. E-mail < info@astems.co.kr > / Call < +82-1588-5231 > 2. Telephone counseling is available only on weekdays, 9:00am to 10:00PM. (In case of an exception, notice to the ASTEMS online homepage) 3. After working hours or on Saturdays, Sundays and holidays, It is customary to process it in the next day(Business day). ④ The information subject can apply for request inspection of personal information to Privacy protection manager, privacy protection charged person, responsible department, customer Service center. Article 9. Rights Infringement relief method ① The information subject can inquire of damage relief, counseling for personal information infringement by the following agencies ② The following institutions are independent of the company, If you are not satisfied with the company’s personal data privacy treatment, results of damage relief or need further assistance, please contact the agencies. 1. Personal Information Reporting Center (Korea Internet Development Agency Operation) - Business assigned : Personal information violation report, Application for consultation - Homepage : privacy.kisa.or.kr - Call : (Without telephone exchange) 118 - Address : (138-950) 135, Joongdae-ro, Songpa-gu, Seoul, Korea Korea Internet Development Agency Personal Information Reporting Center 2. Personal Information Dispute Mediation Committee (Korea Internet Development Agency Operation) - Business assigned : Application for personal information dispute settlement, Collective dispute settlement(civil settlement) - Homepage : privacy.kisa.or.kr - Call : (Without telephone exchange) 118 - Address : (138-950) 135, Joongdae-ro, Songpa-gu, Seoul, Korea Korea Internet Development Agency Personal Information Reporting Center 3. Supreme Public Prosecutors ' Office Cyber Crime Team : +82-2-3480-3573 (www.spo.go.kr) 4. National Police Agency Cyber Terror Response Center : +82-1566-0112 (www.netan.go.kr) Article 10. Video information processing equipment installation, operation The company doesn’t install and operate the video information processing equipment. Article 11. Duty of notice The company will notify you via the homepage if policy have any further additions, deletions, and corrections of the current Privacy Policy according to the change of laws, government policies or security technologies.