The Secretariat of Smart & Green Energy Maritime Korea 2024 (Hereinafter referred to as "the Secretariat") actively protects subscribers' privacy and has established and complies with the Privacy Policy in order to comply with the personal information protection laws related to the homepage service (Hereinafter referred to as "Service") provided by the Secretariat, such as “Personal Information Protection Act” and “the law regarding the promotion of information and communication network use and protection of information”. The secretariat's personal information handling policy may be changed according to changes in related laws, guidelines, and our internal management plan, and changes are notified in accordance with the method prescribed by relevant laws and regulations.
This personal information handling policy contains the following information.
The Secretariat collects personal information for the following purposes. All information provided by the information subject will not be used for any purpose other than necessary for the purpose below, and prior consent will be sought when the purpose of use is changed.
The Secretariat, pursuant to each subparagraph of Article 15, Paragraph 1 of the 'Personal Information Protection Act' collects the minimum amount of personal information necessary to provide services as follows in the event that the consent of the subscriber is obtained and there are special provisions in the law or it is unavoidable to comply with the statutory obligations.
② If the secretariat has obtained separate consent from the information subject, except as required or permitted by law, the Secretariat does not collect information on ideology/belief, membership/withdrawal from labor unions/political parties, political opinions, health and sex life, and other personal information that may significantly infringe on the privacy of information subjects
③ When the Secretariat collects personal information with the consent of the information subject, the information subject is notified of the following information and consent is obtained so that the information subject can clearly recognize it by classifying consent matters.
④ In accordance with Article 22 of the 'Framework Act on Electronic Commerce', it is stored for 10 years from the date the validity of the accredited certificate of the information subject expires.
① Personal information held by the Secretariat is destroyed without delay when the purpose of collection or provision of personal information is achieved.
② Notwithstanding the above provisions, if there is a need to retain personal information for a certain period of time in accordance with the provisions of the relevant laws and regulations, personal information may be retained for up to 5 years in accordance with the relevant laws and regulations
① In case the Secretariat has obtained the consent of the information subject pursuant to Article 17 Paragraphs 1 and 2 of ' Personal Information Protection Act', if there are special regulations in the law or it is unavoidable to comply with legal obligations, the subscriber's personal information may be provided to a third party (Including sharing. Same as below.).
② When the Secretariat provides personal information to a third party with the consent of the information subject, the information subject is notified of the following and consent is obtained.
③ The Secretariat does not use personal information beyond the scope of Article 3 of this policy or provide it to a third party beyond the scope of Article 5 of this policy.
④ The Secretariat may provide personal information. However, the Secretariat requests those who receive personal information to place restrictions on the purpose of use, method of use, and other necessary matters, or to prepare necessary measures to ensure the safety of personal information.
⑤ When the Secretariat receives the consent of the preceding paragraph, it notifies the information subject of the following.
① Information subjects may request the Secretariat to view, correct, delete, or suspend processing of their personal information processed by the Secretariat.
② The Secretariat allows access to the personal information when requested to view it in the preceding paragraph. However, if there is a legitimate reason for not being able to browse within the applicable period, the information subject can be notified of the reason and the reading can be postponed, and if the reason expires, the information will be read without delay.
③ In the case of falling under any of the subparagraphs of Article 35, Paragraph 4 of the 'Personal Information Protection Act', where access is prohibited by law, the Secretariat may notify the information subject of the reason and limit or refuse access.
④ An information subject who has viewed personal information may request the Secretariat to correct or delete the personal information. However, if the personal information is specified as subject to collection in other laws, the information subject cannot request deletion.
⑤ In the case of the preceding paragraph, the Secretariat investigates the personal information without delay and takes necessary measures, such as correcting or deleting it so that it cannot be restored, according to the request of the information subject, unless special procedures are stipulated in other laws and regulations.
⑥ The information subject may request the Secretariat to suspend the processing of their personal information, and the Secretariat shall suspend all or part of the processing of personal information according to the request of the information subject without delay. However, in the case of falling under any of the subparagraphs of Article 37, Paragraph 2 of the 'Personal Information Protection Act', which has special provisions in the law, the Secretariat may notify the information subject of the reason and reject the information subject's request to stop processing.
⑦ The information subject can make the request (Hereinafter, it is referred to as "request for viewing, etc.") of Article 7 Paragraphs 2, 4 and 6 of this policy to the agent in accordance with Articles 45 and 46 of ' Enforcement Decree of the Personal Information Protection Act'. The legal representative of a child under the age of 14 may request the Secretariat to view the child's personal information.
⑧ The Secretariat may charge fees and postage (Limited to requests for mailing of copies) to those who request access to personal information in accordance with Article 47 of the Enforcement Decree of the Personal Information Protection Act.
① The Secretariat is taking technical and managerial measures in accordance with paragraphs 2 to 6 below to ensure safety so that personal information is not lost, stolen, leaked, falsified or damaged in handling personal information of subscribers. However, in spite of the following technical measures, in case of loss, theft, leakage, alteration or damage of personal information caused by force majeure reasons that cannot be prevented or taken measures at the time of the accident, such as hacker intrusion and new virus infiltration, the Secretariat does not seek any liability from subscribers.
② The personal information of the information subject is protected by a password, and important data is protected through separate security functions such as encryption.
③ The Secretariat is taking measures to prevent damage caused by computer viruses by using a vaccine program. Vaccine programs are regularly updated, and in the event of a sudden virus outbreak, vaccines are provided as soon as they become available to prevent infringement of personal information.
④ The Secretariat adopts security devices (SSL, etc.) which can safely transmit personal information on the network using encryption algorithms.
⑤ The secretariat uses a device that blocks intrusion from the outside and installs an intrusion prevention system to monitor intrusion 24 hours a day in order to prevent leakage of personal information of subscribers by hacking.
⑥ The Secretariat minimizes leakage of personal information, such as assigning a separate password to the person in charge to manage access to personal information, and conducts regular training on acquisition of new security technologies and obligations to protect personal information.
⑦ In principle, only the information subject can use the ID and password used by the information subject. The Secretariat is not responsible for problems caused by the leakage of personal information such as ID, password, and resident registration number due to personal negligence of the information subject, and for events caused by the basic dangers of the Internet. The information subject must be aware of the security of the password, change the password frequently, and pay special attention to prevent leakage of personal information when logging in from a public PC.
The Secretariat operates 'Cookie', which frequently stores and finds the information of the information subject in order to keep the basic setting information of the information subject using the homepage. A cookie is a very small text file sent to the user's browser by the server used to run the website and is sometimes stored on the hard disk of the subscriber's computer.
* The information subject has the option to install cookies. Therefore, the information subject may allow all cookies by setting options in the web browser, go through confirmation whenever a cookie is saved, or refuse to save all cookies.
The Secretariat designates the person in charge of personal information management as follows to protect the personal information of information subjects and to handle complaints related to personal information. The information subject can report all personal information protection-related complaints that occur while using the service of the Secretariat to the person in charge of personal information protection.
Personal Information Protection Responsibility | Personal Information Protection Manager |
---|---|
Name : Hyo-kyu Kim | Name : Yi-jin Jeong |
Tel : 055-273-2520 | Tel : 070-4343-9707 |
Email : qkim@gmea.or.kr | Email : j_2jin@gmea.or.kr |
This personal information handling policy is effective as of June 30, 2023 and if there is any addition/deletion r modification of the content due to changes in laws/policies or security technology, it will be notified through the notice on the homepage 15 days prior to the effective date of the change.
Version number of personal information handling policy: 2.0
Enforcement date of personal information handling policy: June 23, 2023
Change notification date of personal information handling policy: June 23, 2023