Coreline Soft processes and retains personal information within the personal information retention and use period in accordance with the law or within the personal information retention and use period agreed upon when collecting personal information from the information subject.2.
The processing and retention periods for each personal information are as follows.
Coreline Soft processes the following personal information items.
Coreline Soft entrusts personal information processing tasks as follows to ensure smooth personal information processing.
|Consignment company name
|Contents of entrusted work
|Website management and maintenance
|Amazon Web Services, Inc.
When concluding a consignment contract, Coreline Soft prohibits processing of personal information for purposes other than the purpose of performing the consignment work in accordance with Article 26 of the Personal Information Protection Act, technical and managerial protection measures, restrictions on re-entrustment, management and supervision of the consignee, and responsibilities such as compensation for damages. We specify this in documents such as contracts and supervise whether the trustee handles personal information safely.3.
If the details of the entrusted work or the trustee changes, we will disclose it through this personal information processing policy without delay.
Coreline Soft destroys the personal information without delay when the personal information becomes unnecessary, such as when the personal information retention period has elapsed or the purpose of processing has been achieved.2.
In cases where personal information must continue to be preserved pursuant to other laws and regulations despite the expiration of the personal information retention period agreed upon by the information subject or the purpose of processing has been achieved, the personal information may be transferred to a separate database (DB) or stored in a different storage location. and preserve it.3.
The procedures and methods for destroying personal information are as follows.
The information subject may exercise his/her rights, such as requesting viewing, correction, deletion, or suspension of processing of personal information, at any time against Coreline Soft.2.
The exercise of rights under Paragraph 1 may be done in writing, e-mail, or facsimile to Coreline Soft in accordance with Article 41, Paragraph 1 of the Enforcement Decree of the Personal Information Protection Act (Telephone: 02-571-7321 / Fax: 02-571-7324 / Company Address) : 2nd - 5th floor, Seongmyeong Building, 49 Worldcupbuk-ro 6-gil, Mapo-gu, Seoul / Zip code 03991 / E-mail: IT@corelinesoft.com) and Coreline Soft will take action without delay.3.
The exercise of rights under Paragraph 1 may be done through an agent, such as the information subject's legal representative or a person authorized to do so. In this case, you must submit a power of attorney in the form of Annex No. 11 of the “Notice on Personal Information Processing Methods (No. 2020-7).”4.
Requests to view and suspend personal information processing may limit the information subject's rights pursuant to Article 35, Paragraph 4 and Article 37, Paragraph 2 of the Personal Information Protection Act.5.
Requests for correction or deletion of personal information cannot be requested if the personal information is specified as the subject of collection in other laws and regulations.6.
Coreline Soft verifies whether the person making the request, such as a request for viewing, a request for correction or deletion, or a request for suspension of processing, is the person or a legitimate agent in accordance with the information subject's rights.
Management measures: Establishment and implementation of internal management plan, regular employee training, etc.2.
Technical measures: Management of access rights to personal information processing system, installation of access control system, encryption of personal information, installation of security program
Coreline Soft is responsible for overall management of personal information processing, and has designated a personal information protection manager as follows to handle complaints and provide relief for damages from information subjects related to personal information processing.
|Personal information protection officer
|Personal Information Protection Manager
|Head of Department
2. Information subjects may inquire about all personal information protection-related inquiries, complaint handling, damage relief, etc. that arise while using Coreline Soft's services (or business) to the personal information protection manager and responsible department. Coreline Soft will respond and process inquiries from information subjects without delay.
Personal information access request reception and processing department
- Department Name: IT Team
- Person in charge: Beomjin Kim
- Phone number: 02-571-7321
- Email: IT@corelinesoft.com
Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr)2.
Personal Information Infringement Reporting Center: (without area code) 118 (privacy.kisa.or.kr)3.
Supreme Prosecutors' Office: (without area code) 1301 (www.spo.go.kr)4.
National Police Agency: (without area code) 182 (ecrm.cyber.go.kr)
Information We Collect
|A real name, alias, postal address, unique personal identifier, photos, online identifier, Internet Protocol address, email address, account name, or other similar identifiers.
|B. Personal Information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))
|A name, signature, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories.
|C. Protected classification characteristics under California or federal law
|Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).
|D. Commercial Information
|Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
|E. Biometric Information
|Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.
|F. Internet or other similar network activity
|Browsing history, search history, information on a consumer’s interaction with a Website, application, or advertisement.
|G. Geolocation Data
|Physical location or movements.
|H. Sensory Data
|Audio, electronic, visual, thermal, olfactory, or similar information.
|I. Professional or employment-related information
|Current or past job history or performance evaluations.
|J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99))
|Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.
|K. Inferences drawn from other personal information
|Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
Use of Personal Information
Sharing Personal Information
o In the preceding twelve (12) months, we have shared or disclosed the following categories of personal information for business purposes.
Your Rights and Choices
The CCPA provides California residents with specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights
1) Right to Access Specific Information and Data Portability Right
You have the right to request that we disclose certain information to you about our collection, sharing, disclosure, or use of your personal information over the past twelve (12) months from the time of your request. Once we receive and confirm your verifiable consumer request, we will disclose to you the following information:
Please note that we have not sold any personal information in the preceding twelve (12) months.
2) Right to Delete
You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request, we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.
We may deny your deletion request if retaining the information is necessary for use or our service providers to:
3) Opt-Out Rights
We have not sold and will not sell any personal information collected from Users.
We will not discriminate against California residents for exercising any of their rights under the CCPA. Moreover, unless permitted by the CCPA, we will not:
5) Exercising Access and Deletion Rights
- Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative (e.g. a copy of your passport, residence certificate, etc.); and
- Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond thereto.
If you reside in the EEA and your personal data is covered by the EU General Data Protection Regulation (“GDPR”), subject to the limitations and exceptions provided in the applicable law, you have the rights provided under the Articles 15, 16, 17, 18, 20, 21 of the GDPR.
International Transfers of Personal Data