Cornerstone Collegiate Academy of Seoul (hereafter referred to as ‘the Company’) values the personal information of its customers and complies with the laws on “promotion of information and communication network use and protection of information.”
Through this Privacy Policy, the Company informs customers about the purposes and methods of using the personal information provided by them, and the measures taken to protect such information. If the Company revises its Privacy Policy, it will be notified through the website notice (or individually).
Items of Personal Information Collected
The Company collects the following personal information for membership registration, counseling, service application, etc.:
• Items collected: Name, date of birth, gender, mobile phone number, email, service usage records, access logs, cookies, access IP information, payment records.
• Collection method: Homepage (membership registration).
Purpose of Collection and Use of Personal Information
The Company utilizes the collected personal information for the following purposes:
• Fulfillment of contracts related to service provision and fee settlement: Providing content, purchasing and payment, sending goods or invoices, verifying identity for financial transactions and services, fee collection.
• Member management: Verification of identity for member services, personal identification, confirmation of intent to join, age verification, handling complaints, and delivering notices.
Retention and Use Period of Personal Information
In principle, personal information is destroyed without delay once the purpose of its collection and use is achieved. However, the Company will retain member information for a certain period as required by relevant laws:
• Retained items: Name, date of birth, gender, payment records.
• Retention basis: Act on the Use and Protection of Credit Information. (Retention period: 5 years)
• Retained items: Mobile phone number, email, service usage records, access logs, cookies.
• Retention basis: Act on Consumer Protection in Electronic Commerce. (Retention period: 5 years)
• Records on payment and supply of goods: 5 years (Act on Consumer Protection in Electronic Commerce).
• Records on consumer complaints or dispute resolution: 3 years (Act on Consumer Protection in Electronic Commerce).
• Records on the collection, processing, and use of credit information: 3 years (Act on the Use and Protection of Credit Information).
Destruction Procedure and Method of Personal Information
In principle, the Company destroys personal information without delay once the purpose of its collection and use is achieved. The procedures and methods are as follows:
• Destruction Procedure: Information entered for membership registration is transferred to a separate database (or a separate document box in the case of paper) once its purpose is achieved, stored for a certain period according to internal policies and other relevant laws, and then destroyed. Personal information transferred to a separate database will not be used for any purposes other than those stipulated by law.
• Destruction Method: Personal information stored in electronic file format is deleted using technical methods that prevent the recovery of the records.
Provision of Personal Information
In principle, the Company does not provide users’ personal information to external parties. However, the following cases are exceptions:
• If users have given prior consent.
• If required by law, or if requested by an investigative agency in accordance with the procedures and methods prescribed by law for investigation purposes.
Entrustment of Collected Personal Information
The Company does not entrust customers’ information to external companies without their consent. If such a need arises in the future, the Company will notify customers of the entrusted parties and the entrusted work content, and obtain prior consent if necessary.
Rights and Exercise Methods of Users and Legal Representatives
The Company does not entrust customers’ information to external companies without their consent. If such a need arises in the future, the Company will notify customers of the entrusted parties and the entrusted work content, and obtain prior consent if necessary.
• Users and legal representatives can view or edit their personal information or request the termination of membership at any time.
• To view or edit personal information of users or children under 14, click ‘Change Personal Information’ (or ‘Edit Member Information’). To terminate membership (withdraw consent), click ‘Membership Withdrawal’ and follow the verification procedure to directly view, correct, or delete the information. Alternatively, contact the person in charge of personal information management by writing, phone, or email, and the request will be processed without delay.
• If you request a correction of errors in personal information, the information will not be used or provided until the correction is completed. If incorrect personal information has been provided to a third party, the Company will immediately notify the third party of the correction result to ensure the correction is made.
• Personal information that is terminated or deleted at the request of users or legal representatives is processed as specified in the “Retention and Use Period of Personal Information” section and is not viewed or used for other purposes.
Installation, Operation, and Refusal of Automatic Personal Information Collection Devices
The Company does not operate devices that automatically generate and collect personal information such as cookies during internet service use.
Customer Service Regarding Personal Information
To protect customers’ personal information and handle related complaints, the Company has designated the following department and person in charge of personal information management:
• Contact Person: Scott Song
• Phone Number: 010-4456-2627
Customers can report any personal information protection-related complaints arising from using the Company’s services to the person in charge of personal information management or the relevant department. The Company will promptly provide sufficient answers to users’ reports.
For further consultation on personal information infringement, please contact the following institutions:z
1. Personal Dispute Mediation Committee (www.1336.or.kr/1336)
2. Korea Internet & Security Agency (www.eprivacy.or.kr/02-580-0533~4)
3. Supreme Prosecutors’ Office Internet Crime Investigation Center (http://icic.sppo.go.kr/02-3480-3600)
4. Cyber Terror Response Center (www.ctrc.go.kr/02-392-0330)