개인정보처리방침 2017.3.29.시행 1. 총칙 람정제주개발 주식회사(이하 “회사”라 합니다)는 회사가 수집하여 처리하는 고객 등(이하 “고객”)의 개인정보를 적극적으로 보호하며, 개인정보보호법, 정보통신망 이용촉진 및 정보보호 등에 관한 법률 등 모든 관련 법령을 준수하고 있습니다. 회사의 개인정보처리방침은 관련 법령, 지침 및 회사 내부 운영방침에 따라 변경될 수 있습니다. 2. 개인정보의 처리목적 및 처리하는 개인정보의 항목 회사는 고객과의 거래 과정 및 직원 채용과정 등에서 아래와 같은 개인정보의 전부 또는 일부를 수집합니다. [일반 개인정보] 구분 개인정보의 처리목적 처리하는 개인정보의 항목 필수적 사항 계약의 적법한 체결, 이행 및 그 사실에 대한 증빙, 계약 상대방, 계약 내용 등 계약 체결 사항에 대한 전산관리, 서비스 이용에 따른 고객 정보의 처리를 위한 본인 식별, 고객센터의 운영, 부정이용 방지, 고지사항의 전달, 본인 의사 확인, 불만처리, 멤버십 카드 및 선물제작, 로열티 매니지먼트 시스템 내 고객 프로파일 생성 및 시스템 운영 성명/사진/생년월일, 자택(직장)주소/전화번호/휴대폰번호/ 이메일/계약유형/계약방식/계약일시/ 목적물/계약대금/입금방법 및 관련 정보/등기 또는 등록에 관한 사항/제출 서류에 기재된 모든 정보/ 계약 체결 및 이행 과정에서 생성되는 모든 이력 채용전형 진행, 입사지원서 검토, 자격요건의 확인, 입사지원자의 신원 및 학력경력 확인, 평판조회, 입사지원 관련 행정 처리, 채용 관련 안내, 채용 여부의 검토결정 및 통지 성명(국문/영문), 성별, 주소 및 우편번호, 이메일 주소, 전화번호(자택, 직장, 휴대전화), 국적 및 지역, 학력사항(최종학력, 주요분야, 전공분야, 추가학력 등), 외국어 능력(구사가능 외국어의 종류, 수준 등), 경력사항(직장명, 최종 직무(직책), 현재 재직 여부, 경력 연수, 전문성 분야 등), 자격사항(자격의 종류, 식별번호, 인증기관, 인증일자, 만료일자 등), 병역사항(미필인 경우 미필 사유), 기타 채용을 위하여 회사에 제출하는 서류(이력서, 자격증, 증명서, 추천서, 성적증명서 등)에 기재된 개인정보 또는 면접 시 제공하는 개인정보 일체 선택적 사항 신상품, 이벤트 정보 등 최신 정보 안내, 개인 맞춤 서비스 제공 등 자택(직장)주소/전화번호/휴대폰번호/ 이메일/ 생년월일/직장명/직위 ' 국가유공자 등 예우 및 지원에 관한 법률' 에 따른 가점 등 조치, 입사지원 관련 행정 처리, 채용 여부의 검토결정 시 참고 사진, 국가보훈대상자 여부, 현재 연봉 및 기대 연봉, 입사가능일, 특기취미, 본인의 장단점
25
Embed
개인정보처리방침 2017.3.29.시행 · 람정제주개발 본사 서버실 내부 / 촬영 시부터 30 일 저장용량 초과시 파일 자동 삭제 회사는 원칙적으로
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
개인정보처리방침 2017.3.29.시행
1. 총칙
람정제주개발 주식회사(이하 “회사”라 합니다)는 회사가 수집하여 처리하는 고객 등(이하
“고객”)의 개인정보를 적극적으로 보호하며, 개인정보보호법, 정보통신망 이용촉진 및
정보보호 등에 관한 법률 등 모든 관련 법령을 준수하고 있습니다. 회사의
개인정보처리방침은 관련 법령, 지침 및 회사 내부 운영방침에 따라 변경될 수 있습니다.
2. 개인정보의 처리목적 및 처리하는 개인정보의 항목
회사는 고객과의 거래 과정 및 직원 채용과정 등에서 아래와 같은 개인정보의 전부 또는
일부를 수집합니다.
[일반 개인정보]
구분 개인정보의 처리목적 처리하는 개인정보의 항목
필수적 사항 계약의 적법한 체결, 이행 및 그
사실에 대한 증빙, 계약 상대방,
계약 내용 등 계약 체결 사항에
대한 전산관리, 서비스 이용에
따른 고객 정보의 처리를 위한
본인 식별, 고객센터의 운영,
부정이용 방지, 고지사항의 전달,
본인 의사 확인, 불만처리, 멤버십
카드 및 선물제작, 로열티
매니지먼트 시스템 내 고객
프로파일 생성 및 시스템 운영
성명/사진/생년월일,
자택(직장)주소/전화번호/휴대폰번호/
이메일/계약유형/계약방식/계약일시/
목적물/계약대금/입금방법 및 관련
정보/등기 또는 등록에 관한 사항/제출
서류에 기재된 모든 정보/ 계약 체결 및
이행 과정에서 생성되는 모든 이력
채용전형 진행, 입사지원서 검토,
자격요건의 확인, 입사지원자의
신원 및 학력경력 확인, 평판조회,
입사지원 관련 행정 처리, 채용
관련 안내, 채용 여부의 검토결정
및 통지
성명(국문/영문), 성별, 주소 및
우편번호, 이메일 주소,
전화번호(자택, 직장, 휴대전화), 국적
및 지역, 학력사항(최종학력,
주요분야, 전공분야, 추가학력 등),
외국어 능력(구사가능 외국어의 종류,
수준 등), 경력사항(직장명, 최종
직무(직책), 현재 재직 여부, 경력 연수,
전문성 분야 등), 자격사항(자격의
종류, 식별번호, 인증기관, 인증일자,
만료일자 등), 병역사항(미필인 경우
미필 사유), 기타 채용을 위하여
회사에 제출하는 서류(이력서, 자격증,
증명서, 추천서, 성적증명서 등)에
기재된 개인정보 또는 면접 시
제공하는 개인정보 일체
선택적 사항 신상품, 이벤트 정보 등 최신 정보
안내, 개인 맞춤 서비스 제공 등
자택(직장)주소/전화번호/휴대폰번호/
이메일/ 생년월일/직장명/직위
'국가유공자 등 예우 및 지원에
관한 법률'에 따른 가점 등 조치,
입사지원 관련 행정 처리, 채용
여부의 검토결정 시 참고
사진, 국가보훈대상자 여부, 현재 연봉
및 기대 연봉, 입사가능일, 특기취미,
본인의 장단점
[고유식별정보]
구분 개인정보의 처리목적 처리하는 개인정보의 항목
필수적
사항
거래내역 입증, 이용대금 정산, 거래
후 추가 요금 청구, 등기 또는 등록
절차 등 계약의 이행
주민등록번호(법령상 허용/요구되는
경우에 한함), 외국인등록번호,
여권번호
3. 수집방법
고객 정보는 의향서, 분양계약서, 시설이용약관, 이용 신청서(구비서류), 명의변경 신청서,
1. General Provisions Landing Jeju Development Co., Ltd. (the “Company”) endeavor to protect personal information of their customers (“Customers”) and comply with all applicable privacy related laws and regulations, including the Personal Information Protection Act and the Act on the Promotion of Information and Telecommunications Network Use and Information Protection, Etc. The Company’s privacy policy for Customers’ personal information (this “Privacy Policy”) may be amended pursuant to applicable laws and regulations, regulatory instructions and the Company’s internal policy.
2. Purposes of Processing Personal Information and Items of Personal Information to be Processed The Company will/may collect some or all of the personal information listed below from Customers in the course of business with them and from job applicants in the course of recruiting: [General Personal Information]
Classification Purposes of Processing Personal Information
Items of Personal Information to be Processed
Mandatory As proofs supporting lawful execution or fulfillment of contract or relevant facts, computerized management of matters relating to execution of contract such as counterparty, contents of contract, identification of Customer for the purpose of processing personal information of Customers who use the service, operation of Customer care center, prevention of unlawful use, -notification of announcement, confirmation of Customer’s intent, complaint handling production of membership cards and gifts, creation of Customer profile within and operation of royalty management system..
Name /photo /birth date, home (office) address /telephone number /mobile phone number /email address /type of contract /contract method /execution date of contract /object /contract price /method of wire transfer and relevant information/ matters concerning registration and enrollment /all information provided in submission documents/all records created by execution of the contract or in the course of fulfilling the contract
Operation of recruitment procedures, review of job applications, verification of qualification requirements, identification and verification of academic profile and work experience of job applicants, reference check, administrative processing of job applications, introduction and information regarding recruitment, review, decision and notification of employment
Name (Korean/English), gender, address and postal code, email address, telephone number (home, office, mobile phone), nationality and region, academic background (final level of education, main area of study, major, additional academic abilities, etc.) foreign language ability (type, level, etc. of commanding language), job experience (name of employment place, final job duties (title), current status of employment, years of experience, expert area, etc.), certification (type of certification, identification number, certifying institution, date of certification,
expiration date, etc.), military service (if incomplete, reasons for incompletion of service), and any other personal information provided through documents submitted to the Company for employment (resume, licenses, certificates, letter of recommendation, GPA transcript, etc.) or interviews.
Optional Guidance of the latest information on new products and events, provision of individually customized service, etc.
Home (office) address /telephone number /mobile phone number /email address /birth date /name of workplace /position
Measures such as additional points, etc. pursuant to the Act on the Honorable Treatment and Support for Persons, Etc. of Distinguished Service to the State, administrative processing of job applications, reference for review and decision of employment
Photo, status regarding entitlement to veterans benefits, current salary and expecting salary, possible date for joining the Company, specialty, hobbies, positive and negative aspects of personality
[Unique Identification Information]
Classification Purposes of Processing Personal Information
Items of Personal Information to be Processed
Mandatory Verification of transaction details, settlement of service fees, claim for additional charges, fulfillment of contract such as registration and enrollment procedure
Resident registration number (only in cases where it is specifically required or permitted by laws and regulations to process resident registration number), Foreigner Registration Number, Passport Numbers
3. Method of Collection Customers’ personal information shall be created through personal information submitted such as the letter of intent, lot sales agreement terms and conditions for facility use, application for use (required documents), application for change of name, certified copy of resident registration, family register, etc. and the process of transaction. Personal information of job applicants shall be collected through application form, resume, licenses, and various certificates, etc. submitted or transmitted online (shinhwaworld.saramin.co.kr, [email protected]) and offline (Landing track, Landing class, job fairs, etc.)
4. Processing/Retention Period and Destruction of Personal Information (1) Processing/retention period of personal information
Customer’s Mandatory information (and optional information, if agreed) set forth above will be retained and used for five (5) additional years from the termination date of the contract and if necessary under applicable laws including the Framework Act on National Taxes, such personal information may also be retained for a period prescribed by law. The personal information of Customers enrolled for online membership will be retained for a month from the withdrawal of membership, unless applicable laws and regulations require the retention of such personal information. The personal information of job applicants will be retained for the desired time period as indicated in the Consent Form for Processing of Personal Information, unless applicable laws and regulations require the retention of such personal information.
(2) Destruction of personal information 1) When destroying personal information, the Company will take commercially reasonable
and technically possible measures to make the personal information irrecoverable or irreproducible as follows: o Electronic files which contain personal information will permanently be deleted using
a technical method which makes the files irrecoverable; and o Any other records, print-outs, documents or any other recording media will be
shredded or incinerated.
2) In the event that the processing/retention period has expired, but personal information is required to be retained continuously for reasons including those described in Section 4.A above, the relevant personal information and personal information files will be stored/maintained separately from other personal information, to the extent technically possible.
5. Provision of Personal Information to a Third Party
The Company will request Customers to consent in case of transferring some or all of Customers’ personal information to a third party in the course of business with Customers:
6. Delegation of the Processing of Personal Information The Company will/may delegate the processing of personal information of Customers as described below, and the delegatees may process personal information according to the purposes of the delegation. If there is any change in the details and service provider of the delegated services, the Company will announce the changes through this Privacy Policy in a timely manner. (1) Status of delegation of the processing of personal information
Delegatee Descriptions of Delegated Services
Hi-Young Property Management
Customer acquisition and real estate promotion, agency business for lotting-out of real property, managing condominiums
Fusionex PLC Creation of Customer profiles for the production of Shinhwa rewards membership card and structuring of a royalty system
Landing Entertainment Korea
Storing CCTV video information and security business
Saramin Receiving job applications when recruiting
(2) Management and supervision of the delegatee
When entering into the relevant services agreement with a delegatee, the Company will make commercially reasonable efforts to require the delegatees to comply with applicable privacy related laws and regulations in relevant documents.
7. Rights and Obligations of Customers and the Method of Exercising thereof
A Customer may make the following requests as an information principal: (i) access to his/her personal information, (ii) correction or deletion of his/her personal information, or (iii) suspension of processing of his/her personal information. The legal representative of a child under 14 may make the foregoing request on behalf of such child. When requested as above, the Company will check whether the requesting party is the information principal or an authorized representative. The Company may reject such request if there exists a justifiable reason for rejection under applicable laws or a reason equivalent thereto.
8. Measures to Ensure the Security of Personal Information (1) Managerial measures for the protection of personal information
1) The Company will designate a Chief Privacy Officer (“CPO”) to ensure that Customers’ personal information is processed according to the law, and will establish and implement an internal management plan for doing so.
2) The Company will establish and implement personal information protection education plans for its employees, delegatees and others who are directly in charge of processing personal information.
3) The Company will periodically conduct an internal audit to verify personal information protection, in accordance with the internal management plan.
(2) Technical measures for the protection of personal information 1) The Company will control access to personal information, and will restrict and manage
the access right. 2) The Company will record the details of the management of access right to personal
information, and will retain such records for a certain period of time. 3) The Company will install and operate an intrusion blocking/prevention system to
prevent any unauthorized access to personal information. In addition, a safe access measures, including a virtual private network, will be applied to control the access from the outside.
4) The Company will establish and apply password generation rules to enable Customers to set up and use a secure password. Upon designating a password to access a certain area of this website, Customers are obligated to keep the password confidential and must not disclose it to a third party.
5) At the time of transmitting, receiving and saving personal information, including sensitive information and unique ID information, the Company will take encryption measures required under applicable laws and regulations.
6) The Company will install and periodically update programs to fix security defects in software, including operating systems.
7) The Company will keep the records of access to the personal information processing system in a safe manner for a certain period of time.
(3) Physical measures for the protection of personal information The Company will take physical access prevention measures, including restrictions on access and placing locks, to store personal information kept by way of hard copy in a safe manner.
9. Link to Other Websites The Company may provide a link of another website which is not controlled by the Company. The Company will not be held liable for such linked websites. In the event that Customers move away from this website, the Company will not be liable for protection and privacy of the information provided by Customers. Customers should carefully review the rules on protection of personal information which applies to the relevant websites. When providing a link, the Company will make commercially reasonable efforts to inform that Customers are transferred from this website to other sites.
10. Cookies The Company may use cookies, including but not limited to session/persistent cookies and web beacons, for a certain website of the Company. A cookie is a file which saves the history of Customers’ having visited this website from their computer and informs the Company of the history. A cookie may help the Company identify Customers’ website preferences, adjust this website according to their preferences and measure the degree of usage of this website. Once Customers access this website, the Company may use cookies to provide targeted marketing services or personalized services, etc. by analyzing frequency of access, visit time, etc., tracing Customers, and obtaining information on event participation and frequency of visit, etc. Customers have an option to install cookies. Customers may accept all cookies, or instruct the web browser to send notice at the time of installation of cookies, or refuse to accept all cookies by adjusting the relevant function in the web browser of their own computer. However, if refusing the installation of cookies, there may be a problem in providing services. An example of the installation method (in the case of Internet Explorer): The tool button on the upper part of the web browser > Internet Option > Personal Information
11. Operation and Management of Video Information Processing Devices
(1) Grounds and Purposes of Installing Video Information Processing Devices On the basis of Personal Information Protection Act, the Company installs and operates video information processing devices (“CCTVs”) in order to deter crimes, ensure safety of facilities and prevent fires.
(2) Location of Installed CCTVs, Scope and Time of Taking Footages, Number of Installed CCTVs
Place Location of Installed CCTVs Scope and Time of Taking Footages
Number of Installed
CCTVs
District-R Whole of 1st block, 1st residential building
Basement floors, hall, and elevator / 24hrs
58
Whole of 2nd block, main electrical room
Basement floors, hall, and elevator / 24hrs
64
Whole of 3rd block, 3rd residential building
Basement floors, hall, and elevator / 24hrs
48
Whole of 5th block, 2nd residential building
Basement floors, hall, and elevator / 24hrs
48
Whole of 7th block, whole of 8th block, 4th residential building
Basement floors, hall, and elevator / 24hrs
25
Head Office of Landing Jeju Development
Main building Offices, entrances and exits, parking lots, etc. /
8
24hours
On-site building Offices, entrances and exits, parking lots, etc. / 24hours
8
Model House Offices, entrances and exits, parking lots, etc. / 24hours
8
(3) Persons-in-Charge, Department-in-charge, and Persons Authorized to Access Video
Information Place Department-in
Charge Person in Charge Person with Access
District-R Security Team Head of Security Department
Operation Manger of Security Devices
Head Office of Landing Jeju Development
Security Team Head of Security Department
Operation Manger of Security Devices
(4) Period of Storing Video Information, Place for Storage and Processing Methods
Place Place for Storing Video Information and Period of Storage
Method of Destroying Video Information
District-R Equipment room in the Central Operation Room / 30 days from filming
Automatic file deletion when it exceeds storage limit
Head Office of Landing Jeju Development
Inside the server room / 30 days from filming
Automatic file deletion when it exceeds storage limit
As a general rule, the Company does not use personal video information for any purpose other than the purpose of collection and does not provide such information to any third party without the consent of Customers.
(5) Method of Verifying Video Information and Place of Verification
Place Method of Verifying Video Information and Place of Verification
District-R Verify at the central operation room after contacting the manager in advance
Head Office of Landing Jeju Development
Verify at the information desk after contacting the manager in advance
(6) Measures Regarding Customers’ Request for Access of Video Information, Etc.
1) Customers may request access or confirmation of existence (hereinafter the “Access”) of personal video information processed by the Company, and may also request Access through a representative, provided that, request for the Access of video information should be made in writing by setting forth the location of the installed CCTV that took the footage, footage time of the video information and the purpose of and reasons for such request. The party requesting for Access may be asked by the Company to provide identification certificates such as residential registration cards, driver’s licenses, or passports, in order to confirm that the requesting party is indeed the Customer him/herself or his or her lawful representative.
2) The Access of the video information of a third party is permissible only when it is explicitly necessary for the Customer’s immediate life, body and interests of property. If
person(s) other than the principal of the video information (“Principal”) can explicitly be identified or if the privacy of person(s) other than the Principal is at the risk of being infringed upon in the course of the Access, the Company may take appropriate measures, such as masking, to ensure that the personal video information of such person(s) cannot be identified.
3) The Company may refuse Customers’ request for Access when ① the video information has been destroyed due to the expiration of the duration for storing such information; or ② there is any other justifiable reason to refuse the request of the Principal for Access of video information.
4) In the event that the Company has permitted or refused the Access, the Company records and manages the followings: ① the name and contact information of the Customer who requested the Access; ② name and content of the personal video information file of which the Customer requested the Access; ③ purposes of the Access of the personal video information; ④ detailed reasons for refusing the request for the Access of the personal video information in the event that the Company has refused such request; and ⑤ the content of the personal video information and reasons for providing such information in the event that the Company has provided the Principal with a copy of the personal video information.
5) Due to technical characteristics, a request for correction of video information is not permissible. A request for deletion of video information can be permitted only when there are no difficulties in accomplishing the original purpose of collecting video information, even if the Company does delete such video information. In the event that the Company has destroyed personal information pursuant to the request of the Customer, the Company will record and manage the contents of the destroyed information.
(7) Delegation of Installment, Management, Etc. of CCTVs 1) The Company delegates certain work relating to CCTV installation and management as
below.
Delegatee Descriptions of Delegated Business Person-in-Charge at the Delegatee
S-Tec System Co., Ltd.
Installment, operation and management of CCTVs installed in District-R
Security Team Manager
ADT CAPS Co., Ltd.
Installment, operation and management of CCTVs installed in the Head Office of Landing Jeju Development Co., Ltd.
Head of Management
2) The Company stipulates in documents such as contracts, the provisions regarding prohibition of processing personal information for any purpose other than the performance of delegated business, the technical and managerial protection measures of personal information, the purpose and scope of delegated business, the prohibition of re-delegation of business, management and supervision upon delegatees, liabilities of damage compensation, etc. and also supervises on the delegatees’ safe processing of personal information.
(8) Technical, Managerial and Physical Measures for Protection of Video Information The Company implements technical, managerial and physical measures as set forth in above Paragraph 8, for personal video information.
(9) Other Matters
1) The Company does not operate CCTVs in public places for purposes not permitted by law. Furthermore, the Company does not install or operate CCTVs within places that may significantly infringe upon an individual’s privacy, such as bathrooms, restrooms, sweating rooms and fitting rooms.
2) The Company’s CCTVs are not arbitrarily manipulated for any purpose other than installing such CCTVs, and the sound recording function is not used. Furthermore, the Company exerts efforts to prevent infringement of personal video information such as conducting internal inspections, etc.
3) The Company installs signs so that it is easy to notice that CCTVs are installed and operated. However, in the event that multiple CCTVs are installed within a building, the Company may install, at easily visible places such as entrance, signs indicating that CCTVs are installed in the facility or the place at hand.
12. Remedy for Infringement on Rights Customers may file an application for resolution of disputes, consultation, etc. with the Personal Information Dispute Mediation Committee, the Korea Information Security Agency and other agencies as a remedy for personal information infringement. To report on any other personal information infringement and consultation, Customers may contact the Personal Information Dispute Mediation Committee, E-Privacy, High-Tech Crime Investigation Division, Supreme Prosecutors’ Office and/or Cyber Terrorism Response Center, National Police Agency.
13. Department in charge of Protecting Personal Information and Handling Complaints of Customers Each department of the Company will be in charge of protecting Customers’ personal information and handling complaints related to their personal information. Managers of each department are designated as the Personal Information Managers (“PIMs”) for purposes of Customers’ personal information. Customers may file any complaints related to protection of their personal information which may arise in the course of using the Company’s services to the Chief Privacy Officer (“CPO”) or the PIM of each Department at the following contact. [Chief Privacy Officer] Department:LEGAL Department Name:Kevin Song
14. Amendments to this Privacy Policy If the Company makes any amendment to this Privacy Policy, the Company will inform the contents and effective date of such amendments on this website in a timely manner.