PRIVACY STATEMENT

1. Purpose of Personal Information Processing ('http://www.dermathod.com' hereafter) processes personal information for the following purposes and is not used for any other purpose than the following: - Confirmation of customer registration intent, identification and authentication by providing services to customers, and maintenance of membership.Management, settlement of the amount associated with the supply of goods or services, supply of goods or services, delivery, etc. 2. Processing and retention period of personal information 1) (hereinafter referred to as "DERMATHOD") processes and holds personal information during the retention and use period of personal information agreed upon when collecting personal information from an information entity or during the retention and use period of personal information in accordance with laws and regulations. (ii) Specific handling and retention periods of personal information are as follows: ☞ Using the following examples as reference, describe the retention period, related laws, and grounds for personal information processing work and personal information processing work. (Example) - Customer registration and management: until the cancellation of the service use contract or member registration, but until the settlement of the claim/debt relationship, if any. - Withdrawal of applications for contracts and contracts in electronic commerce, settlement of payments, supply of goods, etc. : 5 years 3. Items concerning the provision of personal information to third parties (i) (hereinafter referred to as "DERMATHOD") provides personal information to third parties only when it falls under Articles 17 and 18 of the Personal Information Protection Act, such as the consent of the information subject and special provisions of the law. ② Cosplan Co., Ltd. (http://www.dermathod.com) provides the following personal information to third parties: 1. Who receives personal information? Purpose of Use of the Recipient's Personal Information: Recipient's retention period: 4. Entrustment of Personal Information Processing 1) ("DERMATHOD") entrusts personal information processing work as follows for smooth personal information processing. 1. Entrusted Person (Entrusted Person): The details of the commissioned work: Term of commission: ② (hereinafter referred to as "DERMATHOD") clearly states matters related to the prohibition of the processing of personal information not for the purpose of performing the entrusted business, technical and administrative protection measures, restrictions on re-entrustment, management and supervision of the trustee, and liability for damages in writing in accordance with Article 25 of the Personal Information Protection Act at the time of the conclusion of the entrustment contract, and supervises whether the trustee handles personal information safely. 3) In the event of a change in the content of the entrusted business or the trustee, we will disclose this personal information processing policy without delay. 5. Users of the rights and obligations of the information subject and legal representative as well as the method of their use may exercise the following rights as the personal information subject. (i) The information entity may exercise the rights related to the protection of personal information listed in the following items at any time against Cost Plan Co., Ltd. (hereinafter referred to as "http://www.dermathod.com" and "DERMATHOD"). 1. Request to view personal information 2. Request correction if there are any errors, etc. 3. Request for deletion 4. Request for suspension of processing 6. Creation of personal information items to be processed ① ("DERMATHOD") processes the following personal information items: 1 Required: E-mail, mobile phone number, password, login ID, date of birth, name 7. Destruction of personal information ("DERMATHOD") will destroy the personal information concerned without delay when the purpose of processing personal information is achieved. The disposal procedures, deadlines and methods are as follows: - Disposal procedures The information entered by the user will be transferred to a separate DB after the purpose is achieved (in the case of paper, separate documents), and will be stored for a certain period of time in accordance with internal policies and other related laws or immediately destroyed. At this time, the personal information transferred to DB will not be used for any other purpose unless it is by law. - Discard period When the retention period of personal information has expired, the user's personal information will be destroyed within five days from the date of termination of the retention period, and when the personal information becomes unnecessary, such as the achievement of the purpose of processing the personal information, the abolition of the service, or the termination of the business, the user's personal information will be destroyed within five days from the date when it is deemed unnecessary to process the personal information. 8. Items concerning the installation, operation and rejection of automatic personal information collection devices 1) Cost Plan Co., Ltd. uses cookies to store usage information and read it at any time in order to provide individually customized services. ② Cookies are a small amount of information that the server (http) used to run the website sends to the user's computer browser, and may be stored on the user's computer's hard disk. A. Purpose of use of cookies: Each service and website visited by the user and its usage, popular search terms, presence of security connections, etc., and is used to provide optimized information to the user. B. Cookie installation, operation, and rejection: You can refuse to save cookies by using the tool at the top of your web browser > Internet Options > Personal Information Menu Options Settings. C. Refusing to save cookies can make it difficult to use a customized service. 9. Preparation of a person in charge of personal information protection (i) Cost Plan Co., Ltd. ("http://www.dermathod.com" hereafter referred to as "DERMATHOD") is responsible for supervising the operations related to the processing of personal information, and designates a person in charge of personal information protection as follows in order to process complaints by information entities related to the processing of personal information and to remedy damages. ▶ Personal Information Protection Manager Name: JAKE SUN Role: Representative Job class: Representative Inquiries: 02-6747-1103, jakesun@cosplan.net ※ I will contact the department in charge of personal information protection. ▶ Personal Information Protection Department Department Name: Marketing Inquiries: 02-6747-1103, md@cosplan.net (ii) For information entities, please contact the person in charge of personal information protection and the department in charge of personal information protection regarding all personal information protection inquiries, complaint processing, and damage relief that occurred during the use of the course plan (hereinafter referred to as "DERMATHOD") service (or business). Cost Plan Co., Ltd. (http://www.dermathod.com, hereinafter referred to as DERMATHOD) will respond and process information-oriented inquiries without delay. 10. Change of personal information processing policy (i) This personal information processing policy will be applied from the effective date, and if there is any addition, deletion or correction of the contents of the change based on the laws and policy, the change will be notified 7 days prior to the effective date. 11. Measures to ensure the safety of personal information ("DERMATHOD") takes necessary technical and physical measures to ensure the safety as follows in accordance with Article 29 of the Personal Information Protection Act. 1. Conduct regular self-audits In order to ensure the safety of the handling of personal information, we conduct independent audits periodically (once a quarter). 2. Minimization and education of personnel handling personal information We designate personnel who handle personal information, minimize the number of personnel in charge, and implement measures to manage personal information. 3. Establishment and Enforcement of Internal Control Plans We have established and implemented an internal control plan for the safe processing of personal information.
TOP