Privacy Policy
Everspin Co., Ltd. (hereinafter referred to as the 'company') protects the personal information of the information subject in accordance with Article 30 of the 「Personal Information Protection Act」 and promptly and promptly resolves complaints related to it. In order to ensure smooth processing, we establish and disclose the following personal information processing policy. This privacy policy applies as of April 30, 2022.
Article 1 (Purpose of personal information processing)
The company processes personal information for the following purposes. Personal information being processed will not be used for purposes other than the following, and if the purpose of use is changed, necessary measures will be taken, such as obtaining separate consent in accordance with Article 18 of the 「Personal Information Protection Act」.
  1. Member signup and management
    Personal information for the purpose of confirmation of membership signup, identification/authentication of members by providing membership services, maintenance/management of membership, prevention of illegal use of services, and various notices/notifications
  2. Civil complaint handling
    Personal information is processed for the purpose of verifying the identity of the complainant, confirming the complaint, contacting and notifying for fact-finding, and notifying the processing result.
  3. Providing goods or services
    Personal information is processed for the purpose of providing services, sending contracts and invoices, providing contents, providing customized services, identity verification, age verification, and payment/settlement. .
  4. Utilization for marketing and advertising
    Development of new services (products) and provision of customized services, provision of event and advertising information and opportunities to participate, verification of service effectiveness, identification of access frequency Or, personal information is processed for the purpose of statistics on service use by members.
Article 2 (Processing and Retention Period of Personal Information)
  1. The company processes and retains personal information within the period of retention and use of personal information according to the law or within the period of retention and use of personal information agreed upon when collecting personal information from the information subject. .
  2. Personal information processing and retention period is retained and used for Article 1 (Purpose of processing personal information) for 3 years from the date of agreement on collection and use.
      Related laws:
    1. Records on collection/processing and use of credit information: 3 years
    2. Records on consumer complaints or dispute handling: 3 years
    3. Records on payment and supply of goods: 5 years
    4. Records on contracts or withdrawal of subscription: 5 years
    5. Records on display/advertising: 6 months
Article 3 (Provision of Personal Information to Third Parties)
  1. The company processes personal information only within the scope specified in Article 1 (Purpose of processing personal information), and the consent of the information subject, special provisions of the law, etc. Article 17 of the 「Personal Information Protection Act」 and provide personal information to a third party only if it falls under Article 18.
Article 4 (Consignment of personal information processing)
  1. In accordance with Article 26 of the 「Personal Information Protection Act」 when concluding a consignment contract, the company prohibits processing of personal information for purposes other than the purpose of entrusted business, takes technical and managerial protection measures, restricts re-entrustment, and protects the consignee. Matters related to responsibility, such as management, supervision, and compensation for damages, are specified in documents such as contracts, and we supervise whether the trustee handles personal information safely.
  2. If the consignee is changed, we will disclose it through this privacy policy without delay.
  3. privacy
Article 5 (Rights and obligations of information subjects and legal representatives and how to exercise them)
  1. The information subject may exercise the right to view, correct, delete, or suspend processing of personal information at any time against the company.
  2. The exercise of rights pursuant to Paragraph 1 can be done in writing, e-mail, fax, etc. in accordance with Article 41 (1) of the Enforcement Decree of the 「Personal Information Protection Act」, and the company will take action without delay. .
  3. The exercise of rights pursuant to Paragraph 1 can be done through an agent, such as a legal representative of the information subject or a person who has been delegated. In this case, the “personal information processing method Notice (No. 2020-7)”, you must submit a power of attorney in accordance with Attached Form No. 11.
  4. Requests for viewing and suspension of processing of personal information are subject to the 「Personal Information Protection Act」 The rights of the information subject may be restricted pursuant to Article 35 Paragraph 4 and Article 37 Paragraph 2.
  5. Requests for correction and deletion of personal information are subject to other laws and regulations. If personal information is specified as subject to collection, it cannot be requested to be deleted.
  6. The company requests access, correction, deletion, and processing according to the rights of the information subject. When requesting suspension, check whether the person making the request, such as viewing, is the person or a legitimate agent.
Article 6 (Complete items of personal information to be processed)
  1. The company handles the following personal information items.
    • Required items: email, mobile phone number, password, date of birth, name, service use record, access Log, cookie, access IP information
    • Optional items: company name
Article 7 (Destruction of Personal Information)
  1. The company destroys the personal information without delay when the personal information becomes unnecessary, such as the expiration of the personal information retention period and the achievement of the purpose of processing.
  2. The procedure and method for destroying personal information are as follows.
    1. Destruction Procedure
      The company selects the personal information for which the reason for destruction occurred and destroys the personal information with the approval of the person in charge of personal information protection of the company.
    2. Destruction Method
      Information in the form of an electronic file uses a technical method that cannot reproduce the record. Personal information printed on paper is shredded with a shredder or destroyed by incineration
Article 8 (Measures to Ensure Safety of Personal Information)
  1. Minimization and training of staff handling personal information
    We are implementing measures to manage personal information by designating staff handling personal information and limiting them to those in charge.
  2. Establishment and execution of internal management plan
    We establish and implement internal management plan for safe handling of personal information.
  3. Technical measures against hacking, etc. Countermeasures
    The company installs a security program to prevent leakage and damage of personal information caused by hacking or computer viruses, periodically updates and inspects it, installs the system in an area where access from outside is controlled, and technically/physically monitors and
  4. Restrict access to personal information
    Control access to personal information by granting, changing, or canceling access rights to the database system that processes personal information. We are taking necessary measures to prevent unauthorized access from outside by using an intrusion prevention system.
Article 9 (Installation, operation and refusal of automatic personal information collection devices)
  1. The company uses 'cookies' that store and retrieve usage information from time to time to provide personalized services to users.
  2. Cookies operate the website. It is a small amount of information that the server (http) used to send to the user's computer browser and is also stored on the hard disk of the user's PC computer.
    • . Purpose of use of cookies: It is used to provide optimized information to users by identifying the types of visits and use of each service and website visited by the user, popular search keywords, secure access, etc.
    • me. Installation, operation and rejection of cookies: You can refuse to save cookies by setting the options in the Tools>Internet Options>Personal Information menu at the top of the web browser. all. If you refuse to save cookies, you may experience difficulties in using customized services.
Article 10 Other
  1. [Appendix of Privacy Policy<3>'Transfer of data overseas'Selection]
  2. [Appendix of Privacy Policy<4> 'Third Party Sites and Services'Choices'Choices]
  3. [Appendix to Privacy Policy<5>'Guide to California Residents'Choices]
Article 11 (Person in charge of personal information protection)
  1. The company is responsible for overall handling of personal information, and designates a person in charge of personal information protection as follows for the handling of complaints and damage relief of information subjects related to personal information processing
    ▶ Person in charge of personal information protection
    Name: Team leader Kabin Jeong
    Contact: 02-2135- 6239,koesead@everspin.co.kr
  2. The information subject can inquire about all personal information protection related inquiries, complaint handling, damage relief, etc. that occurred while using the company's service (or business) to the person in charge of personal information protection and the department in charge. Everspin will answer and process inquiries from information subjects without delay.
Article 12 (Remedy for Infringement of Rights and Interests)
In order to receive relief from personal information infringement, the information subject may apply for dispute resolution or consultation to the Personal Information Dispute Mediation Committee, Korea Internet & Security Agency Personal Information Infringement Reporting Center, etc. In addition, please contact the following organizations for reporting or consulting of other personal information infringement.
  1. Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr)
  2. Personal information infringement reporting center: (without area code) 118 (privacy.kisa.or.kr )
  3. Supreme Prosecutor’s Office: (without area code) 1301 (www.spo.go.kr)
  4. National Police Agency: (without area code) 182 (ecrm.cyber.go.kr)
In response to requests under the provisions of Article 35 (Access to Personal Information), Article 36 (Correction/Deletion of Personal Information), and Article 37 (Suspension of Processing of Personal Information, etc.) of the 「Personal Information Protection Act」 A person whose rights or interests have been infringed upon due to a disposition or omission of the head of a public institution may request an administrative appeal in accordance with the Administrative Appeals Act.
Article 13 (Changes to Privacy Policy)
  1. This privacy policy is effective as of April 30, 2022.
  2. The previous privacy policy can be found below. Example) - 20XX. X. X to 20XX. X. Apply X (Click)

Addendum to Privacy Policy
Lawful processing of personal information in accordance with the application of GDPR
The company legally handles users' personal information only in any of the following cases.
  1. When the user consents to the processing of his/her personal information
  2. Processing for the performance of the contract to which the user is a party or to take action at the request of the user prior to the conclusion of the contract
    • membership management, identity verification, etc.
    • execution of contracts related to the provision of services requested by users, payment and settlement of fees, etc.
  3. Processing is necessary for compliance with legal obligations to which the company is subject. Compliance
  4. Processing is necessary to protect the vital interests of users or other natural persons
    • would cause harm to users or other natural persons detect, prevent and respond to possible fraud, abuse, security risks and technical problems
  5. when processing is necessary for the performance of duties in the public interest, or When processing is necessary for the exercise of public authority
  6. When processing is necessary for the purpose of legitimate interests pursued by the company or a third party (However, in particular, users who require personal information protection, such as when the user is a child)
'Your Rights under the GDPR'
As the subject of information, the user or legal representative may exercise the following rights in relation to the company's collection, use, and sharing of personal information.
  1. Access Rights to Personal Information
    Users or legal guardians may access their information and request confirmation of the collection, use, and sharing of the information in accordance with relevant laws.
  2. Correction Rights to Personal Information
    Users or legal guardians may request correction of inaccurate or incomplete information.
  3. Deletion Rights to Personal Information
    Users or legal guardians may request deletion of information based on the purpose of the information's collection, withdrawal of consent, etc.
  4. Processing Restriction Rights to Personal Information
    Users or legal guardians may request processing restrictions if there are disputes about the accuracy of the information, appropriateness of information processing, or if information retention is necessary.
  5. Data Portability Rights to Personal Information
    Users or legal guardians may request the provision or transfer of information.
  6. Objection Rights
    Users or legal guardians may request the cessation of processing for direct marketing, legitimate interests or public duties, research, and statistical purposes.
  7. Objection Rights to Automated Individual Decision-Making, including Profiling
    Users or legal guardians may request the cessation of automated information processing, including profiling, which may have a significant impact or legal effect on the user.
International Transfer of Data
Because we operate globally, we may provide your personal information to companies located in other countries or to third parties for the purposes set out in this Privacy Policy. Where personal information is transmitted, held or processed, the company takes reasonable measures to protect personal information.
(Can be added if using US) In addition, when using or disclosing personal information obtained from the European Union or Switzerland, the company complies with the EU-US Privacy Shield Agreement, Switzerland-US To comply with the Swiss-US Privacy Shield agreement, use standard contractual clauses approved by the European Commission, or seek other measures within the EU regulations to ensure adequate safeguards, or seek the user's consent.
Third Party Sites and Services
The company's websites, products and services may contain links to third-party websites, products and services. The privacy policy of the linked third party site may be subject to the company's policy. Therefore, users should additionally review the privacy policies of linked third-party sites.
5. Information for California Residents
If you live in California, certain rights may be added. The Company takes necessary precautions to protect Members' personal information in order to comply with the California Online Privacy Protection Act. Users may request confirmation of information leakage if personal information is leaked. In addition, all users of the company website can change their information at any time by accessing their personal account and using the information edit menu. Also, the company does not track website visitors. We also do not use the 'do not track'signal. The company does not collect personally identifiable information through advertising services and provide it to third parties without the user's consent.