Privacy Policy
Article 1 (Consent to Collection of Personal Information) "Mai Passport" ('maipassport.com', hereinafter referred to as 'Mai Passport') has established a procedure that allows customers to click the "I Agree" button regarding the Terms of Service and the collection and use of personal information when registering as a member. By clicking the "I Agree" button, it is considered that the customer has consented to the collection and use of their personal information.
Article 2 (Items of Personal Information Collected and Purpose of Use) "Personal Information" refers to information about a living individual that can identify the specific individual by their name, resident registration number, etc., included in the information (including information that cannot identify a specific individual by itself but can be easily combined with other information to identify them).
The purposes for which the site collects and uses customers' personal information are as follows:
General Member Information
Time of Collection: Upon membership registration
Mandatory Items Collected: ID, password, email, name [Needs modification]
Optional Items Collected: Profile image, date of birth, phone number, address [Needs modification]
Purpose of Use: Membership registration, consultation during service use, delivery of notices
Retention Period: Deleted immediately upon membership withdrawal; retained for 5 years for purchasing members.
Order Information (Including Members and Non-members)
Time of Collection: Upon placing an order
Mandatory Items Collected: Orderer information (name, address, phone number, email), recipient information (name, address, phone number), payment approval information
Optional Items Collected: Delivery message
Purpose of Use: Payment and delivery of ordered goods
Retention Period: Retained for 5 years
Article 3 (Collection of Personal Information by Cookies) The site uses 'cookies' that store and frequently retrieve customer information. A cookie is a small text file sent by the website to the customer's computer browser (Internet Explorer, Chrome, etc.).
① Purpose of Using Cookies
To provide differentiated information according to individual interests.
To analyze access frequency or visit time, grasp user tastes and interests, and use them as a measure for targeted marketing and service improvement.
To provide personalized shopping services by tracking information on shopped items and viewed items.
② Operation and Rejection of Cookies Cookies are stored on the user's computer hard disk. They identify the user's computer but do not personally identify the user. Customers can allow/reject all cookies or require confirmation every time a cookie is saved by setting options in their web browser. However, if you refuse to store cookies, you will not be able to use some services that require logging in.
③ How to Reject Cookie Settings A. For Internet Explorer Tools menu at the top of the web browser > Internet Options > Privacy tab > Advanced settings B. For Chrome Menu icon at the top right of the web browser > Settings > Show advanced settings at the bottom > Content settings button in the Privacy section > Advanced settings in the Cookies section
Article 4 (Retention and Use Period of Personal Information and Destruction) ① Customers' personal information is destroyed without delay when the purpose of collection and use is achieved, such as upon membership withdrawal, or when there is a request to withdraw consent. However, if it is necessary to retain it for a certain period for reasons such as confirmation of rights and obligations related to transactions in accordance with the provisions of relevant laws such as the 「Act on the Consumer Protection in Electronic Commerce, etc.」, it will be retained for that period.
A. Article 6 of the 「Act on the Consumer Protection in Electronic Commerce, etc.」
Records on contracts or withdrawal of subscriptions, etc.: 5 years
Records on payment and supply of goods, etc.: 5 years
Records on consumer complaints or dispute resolution: 3 years
B. Article 15-2 of the 「Protection of Communications Secrets Act」
Records on visits (logs): 1 year
C. Other relevant laws, etc.
② The site's method of destroying personal information is as follows:
A. Destruction Procedure
Information entered for membership registration, etc., is transferred to a separate DB (a separate filing cabinet for paper) after the purpose is achieved, stored for a certain period according to internal policies and other relevant laws, and then destroyed.
This personal information will not be used for any purpose other than being retained unless required by law.
B. Destruction Method
Personal information printed on paper is destroyed by shredding or incineration.
Personal information stored in the form of electronic files is deleted using technical methods that make the records unrecoverable.
③ In accordance with Article 29, Paragraph 2 of the 「Act on Promotion of Information and Communications Network Utilization and Information Protection, etc.」, the site may notify dormant members (members who have not used the service for the last 12 months) of the loss of membership and may terminate their membership if there is no response within the period specified in the notice.
In this case, the personal information of dormant members is stored and managed separately from the personal information of other members, and the separately stored personal information is destroyed after the legal retention period elapses. Among the personal information that has not been destroyed, customer information will be provided again when the service use resumes, upon the user's request.
Article 5 (Provision to Third Parties) ① The site does not use customers' personal information beyond the scope notified in "Article 2: Items of Personal Information Collected and Purpose of Use" or provide it to others or other companies/institutions. ② The following are exceptions: A. When there is a request from related agencies for investigative purposes according to related laws. B. When providing it to advertisers, partners, or research groups in a form that cannot identify a specific individual for statistical compilation, academic research, or market research. C. When there is a request in accordance with the procedures set forth in other relevant laws.
Even when providing personal information under the above circumstances, we will make every effort to ensure that information is not provided indiscriminately against the original purpose of collection and use.
Article 6 (Outsourcing of Personal Information Handling) For smooth business operations such as providing better services and customer convenience, the site entrusts the handling of personal information to external specialized companies as follows:
Delivery of ordered goods: OO Courier [Needs modification]
Construction and maintenance of IT systems: Hosting company [Needs modification]
Delivery tracking system service: Goodsflow Inc.
Payment and escrow services: PG company [Needs modification]
Identity verification, I-PIN service: DreamSecurity Inc.
※ Information shared with the entrusted parties is limited to the minimum necessary to achieve the purpose. Additionally, personal information is selectively provided to corresponding companies according to the customer's service request. ※ The list of entrusted companies may change depending on service changes and contract periods, and any changes will be announced in advance through notices. Short-term events will be notified individually upon participation.
Article 7 (Access and Correction of Personal Information) ① Customers can view or correct their registered personal information at any time. Personal information can be viewed or corrected directly by clicking 『Edit Member Info』, or if you request viewing or correction in writing, by phone, or by email to the Chief Privacy Officer or person in charge, we will take action immediately. ② If a customer requests correction of errors in personal information, the site will not use or provide the personal information until the correction is completed. ③ If incorrect personal information has already been provided to a third party, we will immediately notify the third party of the correction processing result so that the correction can be made.
Article 8 (Withdrawal of Consent to Collection, Use, and Provision of Personal Information) ① You can withdraw your consent to the collection, use, and provision of personal information through membership registration at any time. To withdraw consent, click "Withdraw Membership" in 『Member Info』 on the first screen of the homepage, and you can immediately withdraw your consent to the collection, use, and provision of personal information. If you contact the Chief Privacy Officer in writing, by phone, or by email, the site will immediately take necessary measures for membership withdrawal. When measures such as withdrawing consent and destroying personal information are taken, we will notify you without delay. ② The site will take necessary measures to make the withdrawal of consent (membership withdrawal) regarding the collection of personal information easier than the method of collecting personal information.
Article 9 (Measures to Ensure the Security of Personal Information) In accordance with Article 29 of the Personal Information Protection Act, the site takes the technical/administrative and physical measures necessary to ensure safety as follows:
Encryption of Personal Information The user's personal information and password are encrypted, stored, and managed so that only the user can know them. For important data, separate security functions such as encrypting files and transmitted data or using file lock functions are used.
Technical Measures against Hacking, etc. To prevent leakage and damage of personal information caused by hacking or computer viruses, the site installs security programs, periodically updates and inspects them, installs systems in areas where external access is controlled, and technically/physically monitors and blocks them.
Article 10 (Protection of Personal Information of Children under 14) The site also considers protecting the personal information of children in the online environment to be important, and the site does not accept membership registrations from children under 14 years of age who require the consent of a legal representative. If a child under 14 years of age joins the site or provides personal information due to identity theft or system abuse, the legal representative can exercise all rights.
Article 11 (Chief Privacy Officer) The site is generally responsible for the processing of personal information and has designated a Chief Privacy Officer as follows to handle user complaints and damage relief related to personal information processing.
▶ Chief Privacy Officer
Name: Cho Chan-hwi
Title: Representative
Position: CEO
Contact: 010-3023-4269
Article 12 (Changes to the Privacy Policy) This Privacy Policy applies from the effective date. If there are additions, deletions, or corrections of changes according to laws and policies, they will be notified through notices 7 days before the implementation of the changes.