본문 바로가기

Privacy Policy

Privacy Policy

'WELKO GLOBAL Co., Ltd.' (hereinafter "the Company") has established the following Privacy Policy in accordance with relevant laws and regulations to protect the personal information and rights of customers who use the website operated by the Company (hereinafter "the Site"), and to handle related grievances smoothly. If the Company revises this Privacy Policy, it will announce the changes through a notice on the website (or individual notice).

Article 1. Purpose of Collection and Use of Personal Information

The Company collects personal information for the following purposes. The collected personal information will not be used for purposes other than those listed below, and prior consent will be obtained if the purpose of use changes.

Handling Civil Complaints
For the purpose of verifying the identity of complainants, confirming the details of complaints, contact and notification for fact-finding, and notification of processing results.
Service Provision
For the purpose of providing services, content, customized services, identity verification, age verification, and other inputs.
Marketing and Advertising
For the purpose of developing new services and providing customized services, providing events and advertising information and participation opportunities, providing services and placing advertisements according to demographic characteristics, confirming the validity of services, identifying access frequency, or statistics on members' use of services.

Article 2. Items of Personal Information Collected and Collection Methods

Items of Personal Information Collected
① Form Mail Inquiry
[Required] Name, Email, Mobile Phone Number

② Information automatically generated and collected during service use or business processing
[Required] Access IP information, Cookies, Service usage records, Access logs
[Optional] Item-by-item response records from customer satisfaction surveys
③ Other
  • When additional personal information not collected at membership registration is collected during the use of additional or customized services or during event entry, the Company will notify users of the relevant items and obtain separate consent to process the matter.
Methods of Personal Information Collection
  • Online collection through website membership registration and consultation boards, offline collection through telephone and written application forms within the company, and collection through email and event entries.
  • Provision from identity verification agencies or affiliated companies.
  • Collection through generated information collection tools.

Article 3. Retention and Use Period of Personal Information

  • 1.The Company retains and uses personal information within the period consented to at the time of collection. However, if preservation is necessary pursuant to relevant laws and regulations, it will be retained in accordance with those laws.
  • 2.For members, the retention and use period of personal information is from the time of service agreement (membership registration) until termination of the service agreement (including withdrawal requests and forced withdrawal). Unless otherwise stipulated by other laws or requested by the customer, the Company will destroy the personal information of members who have not re-used the service for the period defined by law (1 year). However, the Company will notify the member at least 30 days before the expiration of the period that the personal information will be destroyed, the expiration date, and the relevant items via email, phone, or a similar method.
  • 3.The personal information retention periods pursuant to relevant laws are as follows:
    • <Retained Information / Retention Period>
      Records related to display/advertising: 6 months
      Computer communication or internet access records: 3 months
  • 4.Even without a basis in relevant laws, personal information may be retained in accordance with Company policy if it is necessary to prevent significant losses to the Company or for crime investigation and litigation. However, only the minimum period and items necessary to achieve that purpose will be retained.
    • <Retained Information / Retention Period>
      Member information whose eligibility has been revoked under the Terms of Service: 5 years

Article 4. Provision of Personal Information to Third Parties

  • 1.In principle, the Company does not provide users' personal information to external parties. However, exceptions are made in the following cases where there are special provisions in the law or where it is unavoidable to comply with legal obligations. When providing personal information to a third party for purposes other than those intended, the Company requests that the recipient impose certain restrictions on the purpose and method of use, or take necessary measures to ensure security.
    • When users have given prior consent.
    • When there is a basis in other laws such as the Act on Promotion of Information and Communications Network Utilization and Information Protection, the Telecommunications Business Act, and the Act on the Use and Protection of Credit Information.
    • When provided in a form that cannot identify specific individuals for the purpose of statistical compilation, academic research, market research, information provision, and notice mail delivery.
    • When the information subject or their legal representative is unable to express their intention or prior consent cannot be obtained due to unknown address, and it is necessary for the urgent protection of life, body, or property of the information subject or a third party.
    • When necessary for criminal investigation, prosecution and maintenance, court proceedings, and execution of sentences, and legitimate procedures have been followed.
  • 2.If third-party provision occurs, it will be carried out through separate consent.
  • 3.Withdrawal of consent for third-party provision can be requested, and upon withdrawal of consent, the information will be immediately destroyed.

Article 5. Procedures and Methods for Destruction of Personal Information

The Company destroys personal information when the purpose of collection and use has been achieved or the retention period has expired. The destruction procedures and methods are as follows. However, exceptions are made if the personal information must be retained pursuant to other laws.

Destruction Procedure
Information entered by users is transferred to a separate database after the purpose is achieved (or to separate documents in the case of paper records) and stored for a certain period according to internal policies and other relevant laws, or destroyed immediately. Personal information transferred to the database is not used for other purposes except as required by law.
Destruction Deadline
When the relevant retention period has elapsed, personal information will be destroyed within 5 business days from the end of the retention period. When personal information becomes unnecessary due to the achievement of the processing purpose, discontinuation of the relevant service, or termination of business, it will be destroyed within 5 business days from the date it is recognized as unnecessary. If a legal representative of a child under 14 refuses or consent cannot be confirmed, the personal information will be destroyed within 5 business days of collection.
Destruction Method
Information in electronic file format is destroyed using technical methods that prevent record reproduction. Personal information printed on paper is destroyed by shredding or incineration.

Article 6. Rights of Users and Legal Representatives and How to Exercise Them

  • 1.Users may withdraw their consent to the collection, use, and provision of personal information at any time. Upon withdrawal of consent, the Company will take necessary measures such as destroying the collected personal information without delay.
  • 2.Users may request access, provision, and correction of the following matters related to themselves:
    • The user's personal information held by the Company.
    • The status of use and third-party provision of the user's personal information.
    • The status of consent given to the Company for collection, use, and provision of personal information.
  • 3.If a user requests correction or deletion of errors in personal information, the Company will not use or provide that personal information until the correction or deletion is completed.
  • 4.Users may request access to personal information at the department below. We will endeavor to process users' requests for access to personal information promptly.
  • <Inquiries Regarding Access to Personal Information>
    Personal Information Access Inquiry Details
    Department WELKO GLOBAL Co., Ltd. Customer Support
    Phone WELKO GLOBAL Co., Ltd. (+82-51-311-4720)
    Email andrea@welko.co.kr

Article 7. Installation and Operation of Automatic Personal Information Collection Devices and Their Refusal

  • 1.The Company uses cookies, which store and retrieve user information, to identify users, maintain members' login status, and provide personalized services to individual users. Cookies are small pieces of information sent by the website server to the user's web browser and stored on the user's computer hard disk.
  • 2.Users have the right to choose whether to allow cookie installation. Users can allow or refuse all cookies through their web browser settings, or require confirmation each time a cookie is stored. However, if you refuse to store cookies, you may have difficulty using some services provided by the Company, such as personalized services.
    • How to refuse cookie settings (based on Internet Explorer):
      Web browser [Tools] menu → [Internet Options] → [Privacy] tab → Select desired option under [Advanced]

Article 8. Measures to Ensure the Safety of Personal Information

The Company takes the following technical, administrative, and physical measures necessary to ensure safety in accordance with Article 29 of the Personal Information Protection Act and Article 28 of the Act on Promotion of Information and Communications Network Utilization and Information Protection.

Minimization and Training of Personal Information Processing Staff
The Company designates employees who process personal information and limits them to those in charge, implementing measures to minimize the number of personnel managing personal information.
Regular Internal Audits
Regular internal audits are conducted (once per quarter) to ensure the safety of personal information processing.
Establishment and Implementation of Internal Management Plans
Internal management plans are established and implemented for the safe processing of personal information.
Encryption of Personal Information
Users' personal information and passwords are encrypted for storage and management, so only the user can access them. Important data uses additional security functions such as encryption of files and transmitted data or file locking.
Technical Measures Against Hacking
The Company installs security programs and conducts periodic updates and inspections to prevent personal information leakage and damage from hacking or computer viruses. Systems are installed in areas with controlled external access and monitored and blocked both technically and physically.
Access Restrictions on Personal Information
Necessary measures are taken to control access to personal information through granting, changing, and revoking access rights to database systems that process personal information. Intrusion prevention systems are used to control unauthorized external access.
Preservation and Prevention of Forgery/Alteration of Access Records
Access records to personal information processing systems are retained and managed for at least 6 months, and security functions are used to prevent access records from being forged, altered, stolen, or lost.
Use of Locking Devices for Document Security
Documents, auxiliary storage media, and other materials containing personal information are stored in safe locations with locking devices.
Access Control for Unauthorized Personnel
Separate physical storage locations are designated for personal information, and access control procedures are established and operated.
Personal Information Validity Period System
In accordance with relevant laws such as the Act on Promotion of Information and Communications Network Utilization and Information Protection, the Company destroys the personal information of long-term (1 year) non-users to protect their personal information. The Company notifies the relevant user 30 days before membership withdrawal processing via email or other means.

Article 9. Personal Information Protection Officer

Users can direct all inquiries, complaints, and requests for remedy related to personal information protection arising from the use of the Company's services to the Personal Information Protection Officer and relevant department. The Company will respond to and handle users' inquiries.

[Personal Information Protection Officer]
Name: Wook Baek
Department: WELKO GLOBAL Co., Ltd. Customer Support
Position: Representative
Contact: +82-51-311-4720, andrea@welko.co.kr

Article 10. Methods for Remedy of Rights Infringement

Users can inquire about remedies and consultations for personal information infringement at the following agencies. (Please use these if you are not satisfied with the Company's own personal information complaint processing and remedy results, or if you need more detailed assistance.)

Personal Information Protection Portal (operated by the Ministry of the Interior and Safety)
  • Website: http://www.privacy.go.kr
  • Phone: 02-403-0073
Personal Information Infringement Report Center (operated by Korea Internet & Security Agency)
  • Website: http://privacy.kisa.or.kr
  • Phone: 118 (no area code)
Personal Information Dispute Mediation Committee (operated by Korea Internet & Security Agency)
  • Website: http://www.kopico.go.kr
  • Phone: 1833-6972
National Police Agency Cyber Safety Bureau
  • Website: http://cyberbureau.police.go.kr
  • Phone: 182 (no area code)

Article 11. Notification of Changes to the Privacy Policy

This Privacy Policy may be changed due to government policy, laws, or the needs of the Company. In the event of additions, deletions, or corrections, the changes will be announced through the website or email at least 7 days before they take effect. If advance notice is difficult, the notice will be provided as soon as possible. However, if important matters such as the purpose of collection and use of personal information or the subject of third-party provision are added, deleted, or corrected, notice will be provided at least 30 days in advance.

Announcement Date: October 01, 2019
Effective Date: October 01, 2019

Addendum (Effective Date)
These terms are effective from October 01, 2019.