Privacy Policy
HOME Member Privacy Policy
Koscom Corporation Datamall Private and Personal Information Policy (Effective from June 11th, 2015)
Koscom Corporation Datamall ('datamall.koscom.co.kr', "Datamall") establishes and discloses the following guidelines in order to protect personal information in accordance with Personal Information Protection Act, and to cope with any difficulties related to the personal information promptly.
Article 1. Purpose of Collecting Personal Information
Datamall shall collect personal information for following purposes. The collected personal information shall be solely used for the purposes, and in the event of changes in such purposes, the necessary actions, such as additional consent, will be implemented in accordance with the Personal Information Protection Act.
a. Registration and Management of Membership
Personal information is collected to confirm the Member's intention to sign up, to authenticate personal identification as the Service is provided based on membership status, and to maintain and manage the membership.
b. Provision of Services
Personal information is collected to provide Datamall Services as followings:
. Notification in relation to the use of Datamall
. Registration for the use of Datamall
. Checking of inquiries or reports, and notifying the result in relation to the use of Datamall
c. Utilization in Marketing
Personal information is collected to guide the Datamall products.
Article 2. Personal Information Collected and Collection Method
Datamall collects personal information to provide the Service. Collected information and method of collection are as following.
a. Personal Information Collected
Required: Member Name, E-mail Address
Optional: Telephone Number, Mobile Number
b. Collection Method
Personal information is collected upon Member's consent in the Datamall website.
Article 3. Use of Personal Information and Period of Retention
Datamall collects personal information upon the consent by the Members and retains such information for agreed period within the Service organization only in accordance with applicable laws.
Article 4. Disclosure of Personal Information to a Third Party
Datamall collects personal information from Members within the scope specified in the Article 1 only (Purpose of Collecting Personal Information), and discloses such information to a third party in accordance with the Article 17and 18 of the Privacy Act stating that consent required by the information subject.
However, in event that the Member agrees or not violating any relevant laws, personal information shall be disclosed to the followings with the specified purposes and scopes.
a. Recipients of Personal Information : KRX, KOFIA
b. Purposes of Personal Information Use by the Recipients : Operational purposes for the market and Notices related with the use of Datamall
c. Personal Information Disclosed : Member Name, Contact Number, E-mail address
d. Period of Retention and Use of Personal Information by Recipients : Period of Partnership between Koscom Corporation and Recipients
Article 5. Member's Rights, Obligation and Exercise Method of such Rights
As the subject of personal information, the Member shall exercise the following rights.
a. The subject of personal information shall exercise the following protection-related rights at anytime in relation to Datamall.
Right to request accessing personal information
Right to request correcting wrong information
Right to request deleting information
Right to request stopping processing information
b. The exercise of rights stated in the Paragraph 1 shall be carried out in writing, e-mail and facsimile (FAX) in accordance with the Annex No.8 of the Enforcement Regulations of the Personal Information Protection Act.
c. In case where subject of personal information request correction or deletion of error in such information, Datamall shall not process or disclose information until the correction or deletion is completed.
d. The exercise of the rights in accordance with the Paragraph 1 shall be carried out by legal representative of information subject or a delegated party. In this case, a power of attorney is required according to the Annex No.11 of the Enforcement Regulations of the Personal Information Protection Act.
Article 6. Destruction of Personal Information
Datamall shall immediately destroy personal information when the purpose of use of personal information is achieved or the retention period is expired. The procedure, method and time of destruction shall be as following:
Procedure of Destruction
Datamall identifies personal information that needs to be destructed and destroys such information upon the approval of the personal information officer.
Time of Destruction
Personal information shall be destroyed within 5 days prior to retention period of such information is expired. Also, in case the information becomes unnecessary due to completion of purpose, abolition of the relevant service, and the termination of the business, such information shall be destroyed within 5 days from the date when it is deemed to be unnecessary.
Method of Destruction
Personal information stored in electronic file format shall be destroyed with the necessary technique to prevent reproduction, and if such information stored in paper document shall be incinerated by shredder machine.
Article 7. Measures to Secure Personal Information
In accordance with the Article 29 of the Privacy Act, Datamall shall take the following actions to secure the security of personal information.
a. Administrative Measurement
Minimizing personal information related staff: Koscom implements measures to manage personal information by appointing employees who process such information and limits the access only to those who are in charge.
Regular information checkups: Koscom conducts internal regular checkups (twice every year) to secure the security related processing personal information.
Establishing and implementing internal management plans: Koscom establishes and implements internal plans to process personal information safely
b. Technical Measurement
Encrypting personal information: Password of information subject shall be encrypted, stored and managed. Only the subject knows the password and information data shall be separately managed by encrypting files or transmitted data, and using locking function.
Technical measures against hacking attempts: To prevent personal information leakage and damage from hacking or computer viruses, security programs are installed, regular updates and checkups are conducted, and such monitoring system is installed where access from outside is blocked.
Restricting access to personal information: Koscom takes necessary measures for controlling access to personal information by granting, changing, and terminating authority to database system where such information is being processed. Also, intrusion prevention system monitors the unauthorized access from outside.
Use locking function for document security: Documents and auxiliary storage devices containing personal information are stored in secured places with a lock.
c. Physical Measurements
Controlling access to unauthorized person: Access control procedures are established and operated separately for the storage area where personal information is stored.
Article 8. Personal Information Protection Officer
Datamall appoints the personal information officers, as followings, who are in charge of processing personal formation in general, and handling complaints and compensation for information subject.
a. Officer for Personal Information Protection
Minimizing personal information related staff: Koscom implements measures to manage personal information by appointing employees who process such information and limits the access only to those who are in charge.
Se-Chang Park, Department Manager of Capital Market IT Strategy Department, Koscom Corporation
Telephone: 02-767-8640
E-mail : sechang@koscom.co.kr
b. Department and Manager of Personal Information Protection
Sang-yong Kim, Team Manager of Platform business TF, Koscom Corporation
Telephone: 02-767-8727
E-mail :sykim7@koscom.co.kr
c. Subject of personal information shall contact officers and staff members who are in charge of protection for such information anytime for inquiries, complaints and compensation caused by using Datamall. Koscom Corporation shall respond promptly to those inquiries to information subject.
d. Subject of personal information shall apply for dispute resolution or consultation to the following institutions to receive related relief due to violation of personal information.
Personal Information Violation Report Center: 118 (http://privacy.kisa.or.kr)
Personal Information Distribution Control Committee: 118 (http://privacy.kisa.or.kr)
Supreme Prosecutors’ Office, Cyber Crime Investigation Team: 02-3480-3573 (http://spo.go.kr)
Korean National Policy Agency, Cyber Terror Center: 1566-0112 (http://netan.go.kr)
Article 9. Changes in Privacy Policy
Datamall privacy policy shall be applied from the effective date and any changes in the policy, such as addition, deletion or correct in accordance with the statutes and policies, shall be informed 7 days prior to enforcement of such changes via notices.
Notification Date: June 3rd, 2015
Effective Date: June 11th, 2015
