Privacy

"ITVAI" (hereinafter referred to as "the Company") values customers' personal information and complies with the "Act on Promotion of Information and Communications Network Utilization and Information Protection."

Through this Privacy Policy, the Company informs customers of the purposes and methods of utilizing the personal information they provide, as well as the measures taken to protect such information.

The Company will notify users of any revisions to the Privacy Policy through website announcements (or individual notifications).

ο Privacy Policy Announcement Date: December 1, 2022
ο Effective Date: December 1, 2022

Consent to the Collection of Personal Information

The Company provides a procedure where users can click either the "Agree" or "Disagree" button regarding the Privacy Policy or Terms of Use. By clicking the "Agree" button, users are deemed to have consented to the collection of personal information.

Protection of Children's Personal Information

ο If the Company collects personal information of children under the age of 14, it obtains the consent of a legal guardian.
ο The legal guardian of a child under 14 may request access to, correction of, or withdrawal of consent for the child's personal information. Upon such a request, the Company will take immediate action.

Categories of Collected Personal Information

The Company collects the following personal information for membership registration, consultations, and service applications.

ο Collected Items: Name, date of birth, gender, login ID, password, home phone number, home address, mobile phone number, email, occupation, marital status, resident registration number, service usage records, access logs, cookies, access IP information, and payment records.
ο Collection Methods: Website (membership registration, bulletin boards, etc.), delivery requests.

Purpose of Collecting and Using Personal Information

The Company utilizes collected personal information for the following purposes:

ο Fulfillment of service agreements and billing

  • Content provision, purchases, fee payments, product delivery, or invoice dispatch.

ο Membership management

  • Identity verification, personal identification, prevention of unauthorized use, confirmation of membership intent, age verification, guardian consent for collecting personal information of children under 14, complaint handling, and notifications.

ο Marketing and advertising

  • Delivery of promotional information and event notifications, analysis of access frequency, and statistics on service usage.

The Company does not collect sensitive personal information (e.g., race, ethnicity, beliefs, origin, political views, criminal records, health status, or sexual life) that could infringe upon users' basic rights.

Retention and Use Period of Personal Information

ο Personal information is destroyed once the collection purpose is fulfilled, except where legally required to be retained.

  • Membership information: When membership is withdrawn or the user is removed.
  • Payment information: When payment is completed or the statutory period expires.
  • Delivery information: When goods or services are provided.

If retention beyond these periods is necessary, the Company will obtain user consent.

Procedure and Method of Destroying Personal Information

Once the purpose of collection and use is achieved, the Company promptly destroys personal information through the following procedures and methods.

ο Destruction procedure

  • Information entered by users is transferred to a separate database (or stored in paper form) after fulfilling its purpose and retained for a period as required by internal policies and relevant laws before being destroyed.
  • Personal information transferred to a separate database is not used for any purpose other than as required by law.

ο Destruction method

  • Electronically stored personal information is permanently deleted using a technical method that prevents data recovery.

Provision of Personal Information

The Company does not provide users' personal information to external parties except in the following cases:

  • When prior consent has been obtained from the user.
  • When required by law or requested by investigative agencies in accordance with legal procedures.

Delegation of Personal Information Processing

For service improvement, the Company may entrust the processing of personal information to external parties.

ο If personal information is outsourced, prior notice will be provided to users.
ο The Company ensures that the entrusted entity complies with privacy protection obligations through written or electronic agreements.

  • Entrusted Entity: [Courier Company Name]
  • Task: [Courier Service Details]
  • Entrusted Entity: [Payment Gateway Provider Name]
  • Task: [Payment Processing Details]

Rights of Users and Legal Guardians and How to Exercise Them

Users can view or modify their registered personal information at any time and may request membership termination.

To view or modify personal information, users can access "Modify Personal Information" (or "Edit Member Information"), and to withdraw consent, users can click "Withdraw Membership" after identity verification.

Alternatively, users may contact the Personal Information Manager in writing, by phone, or via email, and immediate action will be taken.

If a user requests correction of erroneous information, the personal information will not be used or provided until the correction is completed. If incorrect information has already been provided to a third party, the corrected details will be promptly notified.

Deleted or withdrawn personal information will be handled per the Company's retention policy and will not be accessed or used for other purposes.

Technical Measures for Personal Information Protection

The Company implements the following security measures to prevent loss, theft, leakage, alteration, or damage of personal information:

ο Personal information is protected by passwords, and important data is encrypted or locked using security features.
ο Antivirus programs are used to prevent damage from computer viruses, with regular updates and immediate responses to new threats.
ο Encryption algorithms secure data transmission over the network (SSL or SET).
ο External intrusion prevention systems and intrusion detection systems monitor unauthorized access 24/7.

Use of Cookies and Refusal Options

The Company uses cookies to store and retrieve user information periodically.

▶ Purpose of Cookies

  • Analysis of access frequency, user preferences, participation in promotions, and personalized service provision.

▶ How to Disable Cookies
Users can configure their browser settings to accept all cookies, receive a notification when cookies are stored, or refuse all cookies.

Example (for Internet Explorer):

  • Tools > Internet Options > Privacy

Disabling cookies may affect service availability.

Customer Service for Privacy Inquiries

The Company designates the following department and manager for personal information management and complaint handling.

Personal Information Manager: Dong wook Jeon Phone: 031-5174-9890
Email: support@itivai.com

For further complaints regarding personal information violations, users can contact the following organizations:

  1. Personal Dispute Mediation Committee (www.1336.or.kr / 1336)
  2. Information Protection Mark Certification Committee (www.eprivacy.or.kr / 02-580-0533~4)
  3. Supreme Prosecutors’ Office Cyber Crime Investigation Center (http://icic.sppo.go.kr / 02-3480-3600)
  4. National Police Agency Cyber Terror Response Center (www.ctrc.go.kr / 02-392-0330)