JEONBUK HYUNDAI MOTORS FOOTBALL CLUB

นโยบายความเป็นส่วนตัว

นโยบายความเป็นส่วนตัว

Personal Information Processing Policy of JEONBUK HYUNDAI MOTORS F.C. CO., LTD.

JEONBUK HYUNDAI MOTORS F.C. CO., LTD. (hereinafter referred to as "the company") establishes and discloses a personal information processing policy to protect the personal information of information subjects and to deal with difficulties related thereto in accordance with Article 30 of the Personal Information Protection Act, and the Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc., and related laws and regulations.

Article 1 (Purpose of processing personal information) The company processes personal information for the following purposes. The personal information being processed will not be used for any purpose other than the following, and if the purpose of use is changed, necessary measures will be taken, such as obtaining separate consent in accordance Article 18 of the Personal Information Protection Act.

1. Operation of the official homepage
- Homepage membership management and service provision: confirmation of membership subscription intention, member identification for service provision under membership system, membership retention and management, provision of services under the terms of use such as contents, prevention of fraudulent use of services, announcement and notification.
- Sending advertising information using electronic transmission media (including SMS, e-mail, etc.) such as club news and game information, event, public relations, promotion information, etc.

2. Provision of text messaging service
- Providing text messaging service (SMS/LMS) such as club news and game information, event information, etc.

3. Operation of Green School homepage and youth football classes
- Homepage membership management and service provision: confirmation of membership subscription intention, member identification for service provision under membership system, membership retention and management, provision of services under the terms of use such as contents, prevention of fraudulent use of services, operation of Green School youth football classes, payment and refund procedures of education fees, exemption of subscription fees for multiple child subscription, announcement and notification.
- Sending advertising information using electronic transmission media (including SMS, e-mail, etc.) such as club news and game information, event, public relations, promotion information, etc.

4. Operation of the season membership system
- On-site sales of season tickets and online sales, membership management, use of season tickets and allocation of members' seats, and provision of membership service such as game information.

5. Handling complaints and responding to disputes
- Identification of complainants, confirmation of complaints, contact and notice for fact-finding, notification of the results of handling, and response in the event of a dispute

Article 2 (Processing and retention period of personal information)
① The company processes and retains personal information within the personal information retention and use period provided for under laws and regulations or within the personal information retention and use period agreed on by information subjects, and will destroy the relevant information without delay once the purpose of processing personal information is achieved.
② The personal information processing and retention period for each processing purpose is as follows:
1. Operation of the official homepage: Until withdrawal from the homepage membership
2. Provision of text messaging service: Until withdrawal of the text message service application. (The text message service application can be withdrawn at any time at the bottom of the text message service application page and through contacts for receipt refusal, company's personal information protection department and staff, etc. stated in SMS, LMS, etc. sent by the company,)
3. Operation of Green School homepage and youth football classes
- Until withdrawal from membership
- However, if a child participates in a youth football class and the tuition has been fully paid, 5 years from the date the class is completed.
4. Operation of the season membership system: Until the end of the season
※ However, in cases falling under any of the following circumstances, until the termination of the relevant reason:
- If an investigation or inquiry is in progress due to violation of relevant statutes, until the completion of the investigation or inquiry
- If the bond and debt relationship remain due to the use of the service, such as the homepage, until the settlement of the relevant bond and debt relationship
- Records of transactions, such as labeling and advertising under the Act on the Protection of Consumers in E-commerce, Etc., details of contract, implementation, etc.
  • Labeling and advertising records: 6 months
  • Records of contract or subscription withdrawal, payment, supply of goods, etc.: 5 years
  • Records of consumer complaints or disputes: 3 years
- Keeping fact-checking data of communications under Article 41 of the 「Protection Communications Secrets Act」
  • Subscriber’s communication date, starting and ending time, the other subscriber’s number, number of usage, location tracking data of the originating station: 1 year
  • Computer communication, Internet log records, and access location tracking data: 3 months
- Until the purpose of processing is achieved, if there is an obligation to preserve under the provisions of related statutes, such as Commercial Act, or if the purpose of processing personal information is not achieved due to the handling of complaints and response to disputes, etc.,
※ According to the Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc., the personal information of information subjects who have not used the homepage service for 1 year shall be separately stored and managed. However, this will not apply to the personal information of Green School homepage members whose children are participating in youth football classes and the children.

Article 3 (Provision of personal information to a third party)
The company processes the personal information of information subjects only within the scope specified in Article 1(Purpose of processing personal information) and provides personal information to a third party only when it is permitted by relevant laws, such as consent of the information subject or special provisions in other laws.

Article 4 (Entrustment of personal information processing)
① For smooth processing of personal information, the company entrusts personal information protection duties as follows:
Entities entrusted Details of the duties entrusted
Sportal Korea Co., Ltd. Managing and maintaining the homepage and system
S.I.L. Seasonal ticket on-site sales and delivery agency

② In accordance with Article 26 of the Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc. and Article 256 of the Personal Information Protection Act, the company specifies prohibition on personal information processing, technical/managerial protection measures, re-entrustment restrictions, management/ supervision of the trustee, and responsibility such as damage compensation, etc. in the document such as a contract, and supervises whether the trustee handles the personal information safely.
③ If the details of the entrusted duties or the trustee changes, it will be disclosed without delay through this personal information processing policy.

Article 5 (Rights and obligations of information subjects and legal representatives, and methods of exercise)
① Information subjects may exercise the following rights related to personal information protection in any of the following to the company:
1. Request to view personal information
2. Request correction if there is an error, etc.
3. Request for deletion
4. Request for suspension of processing
② The rights under paragraph (1) can be exercised through paper, telephone, e-mail, FAX, etc., and the company will take action without delay.
③ If the information subject requests correction or deletion of errors in personal information, the company will not use or provide the personal information until correction or deletion is completed.
④ The rights under paragraph (1) may be exercised through the legal representative of the information subject or through a representative such as a delegated person. In such cases, a power of attorney shall be submitted pursuant to the attached Form 11 of the Enforcement Rules of the Personal Information Protection Act.
⑤ The information subject shall not violate the personal information and privacy of the information subject or other persons handled by the company in violation of the relevant laws, such as the Personal Information Protection Act.

Article 6 (Personal information items processed and collection method)
① The company processes the following personal information items:
1. Operation of the official homepage
- (Required) Member name, ID, password, contact information, mobile phone number, e-mail, date of birth, DI(Duplication Information)
2. Provision of text messaging service
- (Required) Name, mobile phone number
3. Operation of Green School homepage and youth football classes
- (Required) Name, ID, password, contact information, e-mail, name of the depositor of tuition, date of birth, DI(Duplication Information)
- (Optional) Child information (child name, contact number, date of birth, school, grade, age, height, weight, size)
4. Operation of the season membership system
- (Required) Name, date of birth, address, mobile number, gender
5. The following personal information items can be automatically generated and collected during the Internet service use process.
- IP address, cookies, MAC address, service use record, visit record, defective use record, etc.
② The method for collecting personal information by the company is as follows:
- Sign up for membership through paper/telephone/fax/Internet homepage, participation in events, and provision from affiliates

Article 7 (Destruction of personal information)
① When personal information becomes unnecessary, such as the elapse of the period of personal information retention and the achievement of the purpose of processing, the company destroys the personal information without delay.
② If personal information needs to be preserved in accordance with other statutes even though the period of personal information retention agreed by the information subject has elapsed or the purpose of processing has been achieved, the personal information shall be transferred to a separate database (DB) or stored at a different place.
③ Procedure and methods for destroying personal information are as follows.
1. Destruction procedure
The company selects personal information to which the grounds for destruction have occurred and destroys personal information with the approval of the company's personal information protection manager.
2. Destruction method
The company destroys personal information recorded and stored in electronic file form by using a method incapable of restoration, such as Low Level Format, etc., and destroys personal information recorded and stored in paper documents by shredding or incinerating it.

Article 8 (Measures to secure the safety of personal information)
The company takes the following measures to secure the safety of personal information:
1. Managerial measures
- Establishment of a personal information management system: The company establishes and operates a personal information management system internally to safely manage personal information.
- Management of personal information handlers: The company receives a personal information protection pledge from the personal information processors who process customers’ personal information and safely manages important customer information by providing personal information protection training at least twice a year The company also minimizes unnecessary access and exposure to customers’ personal information through managing the authority of personal information processors.
2. Technical measures
- Encryption of customer information: Valuable customer's personal information is encrypted and stored in the DB so that it cannot be utilized even if it is leaked by an external intrusion.
- Encryption of the telecommunication section: Customer information is safely transmitted over SSL for the section where the customer enters and transmits customer information when signing up and logging in through the homepage.
- Installation of security solutions: Vaccine programs are installed on the personal information processing system, updated periodically and inspected regularly to provide service and manage customer information safely, and DB encryption solutions and screen capture protection solutions are applied. In addition, intrusion prevention/detection systems are installed in preparation for hacking and other external intrusion, and continuous monitoring is carried out through the integrated security control center in preparation for hacking and external intrusion.
3. Physical measures
- Computer rooms, data storage rooms, etc. where customers' personal information is held and managed are controlled for access only by those with legitimate access authorities.

Article 9 (Installation, operation and rejection of an automatic personal information collection device)
The company operates 'cookies', etc. that store and locate information of information subjects from time to time. Cookies are tiny text files sent to your browser by the server used to run the company's website and are stored on your computer's hard disk. The company uses cookies for the following purposes:
1. Purpose of using cookies, etc.
- When logging in to the homepage, cookies are used for re-login.
- The information subject has the option of installing the cookies. Therefore, the information subject can allow all cookies, verify each time the cookies are saved, or refuse to save all cookies by setting options in the Web browser.
2. How to refuse cookie settings
By choosing an option in your web browser, you can allow all cookies, verify each time the cookies are saved, or refuse to save all cookies.
※ Example of how to set (for Internet Explorer)
Choose Tools > Internet Options > Personal Information > Advanced > Setup Method at the top of your Web browser
However, if you refuse to install cookies, it may be difficult to provide customized services.

Article 10 (Personal information protection officer)
① The company designates persons in charge of the processing of personal information as follows in order to take responsibility for the processing of personal information in general, and for the handling of complaints and damage relief of information subjects.

▶ Person in charge of personal information protection
Name: Kim Dong-tak
Position: Deputy Head
Contact: 063-273-1763

▶ Department in charge of personal information protection
Department name: Management Support Team
Person in charge: Deputy Manager Jang Eun-seo
Contact: 063-210-5810

② Information subjects may contact the person in charge and department in charge of personal information protection for any inquiries, complaints handling, damage relief, etc. related to personal information protection that have occurred in the course of using the company's service (or business). The company will respond and handle the inquiries of information subjects without delay.

Article 11 (Request for access, correction, deletion, suspension of processing, etc. of personal information)
Information subjects may request the following department, such as access, correction, deletion, suspension of processing, etc. of personal information under Article 35 of the Personal Information Protection Act and other statutes. The company will endeavor to expedite the access request for personal information by information subjects.
▶ Department accepting and processing personal information requests, such as access, correction, deletion, suspension of processing, etc.
Department name: Management Support Team
Person in charge: Deputy Manager Jang Eun-seo
Contact: 063-210-5810


Article 12 (Remedy for Infringement of Rights)
Information subjects may contact the following institutions for damage relief and counseling, etc. regarding personal information infringement:

Information subjects may contact the following institutions for damage relief and counseling regarding personal information infringement.

▶ Personal Information Infringement Reporting Center (operated by the Korea Internet & Security Agency)
- Business under the jurisdiction: Report of personal information infringement and request for counseling
- Homepage: privacy.kisa.or.kr
- Telephone: (without area code) 118
- Address: (58324) Personal Information Infringement Reporting Center, 3rd floor, Jinheung-gil 9 (Bitgaram-dong 301-2), Naju-si, Jeollanam-do

▶ Personal Information Dispute Mediation Committee
- Business under the jurisdiction: Personal information dispute mediation application, collective dispute mediation (civil resolution)
- Homepage: www.kopico.go.kr
- Telephone: (without area code) 1833-6972
- Address: (03171) 4th floor, Government Complex, 209, Sejong-daero, Jongno-gu, Seoul

▶ Supreme Prosecutors' Office Cybercrime Investigation Team: 02-3480-3573 (www.spo.go.kr)

▶ National Police Agency Cyber Safety Bureau 182 (http://cyberbureau.police.go.kr)

Article 13 (Change of personal information processing policy)
① This personal information processing policy will be applied from April 21, 2018.
② The previous personal information processing policy will be found below.