privacy policy
Now Busking Co., Ltd. (hereinafter referred to as the “Company”), as an information and communication service provider, has established the following personal information processing policy in relation to the Now Waiting service (hereinafter referred to as the “Service”) in accordance with the Act on Promotion of Information and Communications Network Utilization and Information Protection (hereinafter referred to as the “Information and Communications Network Act”), the Personal Information Protection Act, and other relevant laws and regulations to protect users’ rights and to promptly and smoothly process related complaints.
1. Collection and use of personal information
The company processes personal information only for the following purposes. It will not be used for any other purposes. If the purpose of collection and use changes, the company will take necessary measures, including obtaining separate consent in accordance with the Personal Information Protection Act.
classification
Purpose of collection and use consent
item
Retention and use period
Member Management
join the membership
Required information: name, gender, password, mobile phone number, email address, residence, date of birth, CI
Destroy without delay after achieving the purpose (except for information stored separately in accordance with relevant laws and company policies)
Business membership registration, service fee collection, tax invoice issuance, and settlement payment deposit
Business registration number, business name, representative name, contact person name, email address, bank account information, credit card information
Destroy without delay after achieving the purpose (except for information stored separately in accordance with relevant laws and company policies)
Optional information
Inquiries (membership consultation, partnership consultation, etc.)
Email address, mobile phone number, name
3 years (Act on Consumer Protection in E-commerce, etc.)
Service Use
Waiting, point accumulation/use, ordering, reservation processing
Name, gender, password, mobile phone number, email address, residence, date of birth, CI
Destroy without delay after achieving the purpose (except for information stored separately in accordance with relevant laws and company policies)
New service development, customized service provision and marketing, service usage statistics and surveys
Mobile phone number, gender, email address, date of birth
Destroy without delay after achieving the purpose
Creation information
Member management, service use and fraudulent transaction record verification, statistics and analysis of service use records and inquiry information
All personal information items collected: service usage records, service usage records (menu, payment amount, transaction date and time, etc., receipt information), credit card number (some), card company name, visit records, UUID, mobile phone device ID, affiliates
Destroy without delay after achieving the purpose
2. Processing and retention period of personal information
In principle, the company retains and uses users' personal information for the period notified and agreed upon. Personal information is destroyed without delay when the purpose of collection and use has been achieved or upon the user's request for destruction. However, the following information is retained for the stated period for the reasons outlined below.
A. Reasons for retaining information based on internal company policy
Basis for preservation
purpose
Collection items
Retention period
Retention according to internal company policy
Checking and preventing membership registration abuse and service misuse
Email address, mobile phone number, device unique number, and personal identification value generated upon registration
3 years after membership withdrawal
B. Reasons for retaining information according to relevant laws
보존 근거
purpose
Collection items
Retention period
Act on Consumer Protection in E-commerce, etc.
Records of contract or subscription cancellation, etc.
User identification information, contract/subscription cancellation records
5 years
Records of payment and supply of goods, etc.
User identification information, contract/subscription cancellation records
5 years
소비자의 불만 또는 분쟁처리에 관한 기록
이용자식별정보, 분쟁처리 기록
3년
전자금융거래법
전자금융거래기록 확인
전자금융거래에 관한 기록, 상대방에 관한 기록
5년
통신비밀보호법
법원의 영장을 받아 수사기관이 요청시 제공
로그기록, 접속지 정보 등
3개월
3. Provision of personal information to third parties
The company uses users' personal information within the scope notified in the collection and use of personal information. In principle, it does not use personal information beyond this scope or provide or share it with third parties without the user's prior consent. However, if personal information needs to be shared with a partner company for smooth service provision, the company will notify the member of the recipient, purpose of provision, information items provided, and retention period, and obtain consent. Exceptions may be made if required by relevant laws and regulations. Personal information may be provided to third parties in the following cases.
Person receiving personal information
Purpose of use of personal information provided by the recipient
Personal information items provided
Retention and use period
Now Waiting and related service providers
Managing the store's waiting list
Check point accumulation
Confirm order information
Name, address, gender, mobile phone number, email address, waiting registration information (number of people in the group, name, age, residence, etc.), order information
Until the purpose of use is achieved
Providing and introducing customized services to users
phone number
Until the purpose of use is achieved
4. Entrustment of personal information processing
To improve its services, the company notifies users of necessary information in accordance with relevant laws such as the Information and Communications Network Act and the Personal Information Protection Act, and entrusts personal information only after obtaining prior consent. In accordance with the Personal Information Protection Act, when entering into an entrustment contract, the company specifies in the contract or other documents matters related to responsibilities, such as prohibition of processing personal information for purposes other than those entrusted, technical and administrative protection measures, and supervises whether the trustee safely processes personal information. The company's personal information entrustment processing agency and details of the entrusted work are as follows. In the event of a change in the details of the entrusted work or the trustee, the information will be disclosed without delay through this personal information processing policy.
Consignment work
Trustee
Message sending related services
Kakao, Sweet Tracker, Facebook, Colgate
Electronic payment service
KG Inicis Co., Ltd., Korea Information & Communication Co., Ltd., KS Net Co., Ltd., Hyosung FMS Co., Ltd.
Customer Service
The White Communication Co., Ltd.
Product delivery, product installation, returns, and refunds
Bigsolon Co., Ltd., OnDemand Solutions, eFurniture Woodworker Co., Ltd., My Warehouse Co., Ltd., Sungwon Adpia Co., Ltd., Jooeun Information System Co., Ltd., Chrysler Co., Ltd., BGF Post Co., Ltd.
Service introduction consultation and installation
SA Information & Communication, Pospia, KT Telecom, KBiz Market, Sun & Moon, Into System, Culture & Mobility
Issuing tax invoices
LinkHub Co., Ltd.
5. Rights of users and legal representatives and methods of exercising them
-
A. Users and their legal representatives may view or modify their own registered personal information or that of children under the age of 14 at any time, and may request suspension of processing or cancellation of membership.
-
B. To inquire about or correct personal information of users and their legal representatives, please contact the Personal Information Manager or person in charge by letter, phone, facsimile, or email, and we will take action without delay.
-
If a user requests correction of errors in their personal information, the personal information will not be used or provided until the correction is complete. Furthermore, if incorrect personal information has already been provided to a third party, we will promptly notify the third party of the correction process to ensure the correction is made.
-
A. Users may exercise their rights to view, correct, delete, etc. through a proxy, such as the user's legal representative or authorized person holding a power of attorney.
6. Procedures and methods for destroying personal information
In principle, users' personal information is destroyed without delay once the purpose of collection and use is achieved. The company's personal information destruction procedures and methods are as follows.
A. Destruction procedure
The information users enter for membership registration and other purposes is transferred to a separate database after the purpose has been achieved. It is stored for a specified period of time in accordance with internal policies and other relevant laws and regulations for information protection purposes, and then destroyed. This personal information will not be used for any purpose other than that for which it is retained, except as required by law.
B. Destruction method
Personal information stored in electronic file format is destroyed using technical or physical methods that render the records unrecoverable, and personal information printed on paper is destroyed by shredding or incineration.
7. Measures to ensure the security of personal information
When processing users' personal information, the company implements the following technical/administrative measures to ensure the security of personal information and prevent it from being lost, stolen, leaked, altered, or damaged.
A. Measures against hacking, etc.
The company is committed to protecting its members' personal information from being leaked or damaged by hacking, computer viruses, and other threats. To protect against such threats, the company regularly backs up data, utilizes the latest antivirus software, and prevents personal information and data from being leaked or damaged. Furthermore, the company utilizes encrypted communication to ensure the safe transmission of personal information over the network. Furthermore, the company utilizes an intrusion prevention system to control unauthorized access, and strives to implement all possible technical measures to ensure systemic security.
B. Minimization and training of handling staff
The company limits the handling of personal information to those in charge, and constantly emphasizes compliance with laws and internal policies through management measures such as training for those in charge.
D. Operation of a dedicated personal information protection organization
We are working to verify the implementation of the personal information processing policy and compliance of the person in charge through the personal information protection department, and to immediately correct and rectify any issues that are discovered.
8. Matters concerning the installation/operation and refusal of automatic personal information collection devices.
A. The company uses 'cookies' to store and periodically retrieve usage information in order to provide personalized services to users.
Cookies are small pieces of information that the server (http) used to operate the website sends to the user's computer browser and are also stored on the hard disk of the user's PC computer.
B. Purpose of cookie use
It is used to provide optimized information to users by identifying visit and usage patterns, popular search terms, and whether or not the user has accessed each service and website.
D. Cookie installation/operation and rejection
You can refuse cookie storage by selecting Tools > Internet Options > Privacy from the menu at the top of your web browser. If you refuse cookie storage, you may experience difficulties using customized services.
9. Contact information for the personal information manager and staff member
You may report any privacy-related complaints arising while using the company's services to the Personal Information Manager or the relevant department. The company will provide a prompt and sufficient response to users' reports.
Personal Information Protection Manager
Name: Kim Kang-min
Phone: 02-6049-2611
Email: privacy@nowbusking.com
Personal Information Protection Department
Name: Yeom Ki-dong
Phone: 02-6049-2611
Email: privacy@nowbusking.com
10. Remedies for Personal Information Infringement
If you believe the company is not complying with its privacy policy, please notify the Personal Information Manager or Personal Information Manager. We will promptly review the issue you have raised and, if necessary, take action as quickly as possible. The company is actively seeking feedback from users regarding their personal information and has established all necessary procedures and methods to address complaints.
Users may contact the following organizations to report or inquire about personal information infringements.
-
-
Personal Information Infringement Report Center: 118 (without area code) (http://privacy.kisa.or.kr)
-
Personal Information Dispute Mediation Committee: 1833-6972 (http://kopico.go.kr)
-
Supreme Prosecutors' Office Cyber Investigation Division: 1301 (without area code), cid@spo.go.kr (http://spo.go.kr)
-
National Police Agency Cyber Security Bureau: (without area code) 182 (http://cyberbureau.police.go.kr)
-
11. Effective Date
-
-
These Terms are effective as of November 18, 2019.
-
The previous terms and conditions that were in effect from April 27, 2017 are replaced by these terms and conditions.
-
If the Company changes its personal information processing policy, it will notify users without delay through the notice section on the home page or a separate window, and will take steps to ensure that users can easily identify any changes at any time.