WIPS Co., Ltd. (hereinafter referred to as the "Company") very seriously takes into consideration of customers' personal information who use the WIPS Global--the patent information search services operated by the Company (hereinafter the "Homepage"), and do our best to safely use the services provided to customers by the Company.
For these reasons, the Company has established personal information policies pursuant to the "Act Relating to Promotion of Information Communications Network and Personal Information Protection," and use the personal information provided by customers to the extent prescribed under the laws and the internal guidelines of the company. The security measures necessary to protect personal information are notified on the first screen of the homepage of the Company.
The Company's personal information treatment policies on the homepage, and where there is a change in the laws or guidelines relating to personal information or there is a change in the Company's policies, the relevant content is notified on the first screen of the homepage. Therefore, users must confirm the first screen of the homepage when they visit the homepage.
The personal information treatment policies of WIPS Co., Ltd. contain the following content:
Items of Personal Information to be Collected and Collection Methods
Purpose of Collection and Use of Personal Information
Sharing and Provisions of Personal Information
Delegation of Treatment of Personal Information
Retention and Use Period for Personal Information
Destruction Procedures and Methods for Personal Information
Rights of Users and Legal Representatives, and the Exercise Methods
Matters on Installation, Operation, and Rejection of Automatic Collection Instruments of Personal Information
Technical-Managerial Measures for Personal Information
Contact Information of Personal Information Control Manager and Authorized Manager
Information on WIPS Customer Center
Duty to Notify
1. Items of Personal Information to be Collected and Collection Methods
A) Items of Personal Information to be Collected
① Collections for membership control, consultations for complaints, applications for services, etc.
- Required: names, IDs, passwords, countries, trade names, addresses, e-mails, contact information (choose one of wire telephones or mobile phones), reasons for subscription
- Selective: fields, duties, new letter receptions
② Collections by service use processes or business handling processes
- Kind of OS, service use records, defective use records, cookies, contact IP, payment records
- For account remittances, names of banks, account numbers, etc.
If a customer provides false personal information, its use of services may be restricted or prohibited, and as the case requires, may be subject to disadvantages.
The Company allows only persons of not less than fourteen (14) years old to subscribe to membership. The Company in principle shall not collect personal information of children of not more than fourteen (14) years old who are required to obtain the consent of a legal representative for collection and use of personal information; provided, however, that if a user of not more than fourteen (14) years old has obtained the consent of a legal representative, the Company may collect or use personal information of the user of not more than fourteen (14) years old.
B) Personal Information Collection Methods
The Company shall collect personal information in the following ways:
- Subscription to membership (on the homepage, in writing, by phone or fax), Consultation bulletins, application for events, requests for delivery
2. Purpose of Collection and Use of Personal Information
The Company collects and uses personal information for the following purposes, and shall not use it for other purposes. When there is a change in the purposes of using personal information, the Company will seek written consents.
A) Payment of costs incurred as a result of performing agreements on provisions of services or providing services
Provisions of content, deliveries of goods or sending bills, purchases or cost payments, collections of costs
B) Control of Members
To verify identifications for uses of membership services, to identify individuals, to prevent wrongful uses of bad members or unauthorized uses, to verify intents for subscriptions, to verify ages, to verify the consent of a legal representative for collecting personal information of children of not more than fourteen (14) years old, to handle civil complaints including handling grievances, to convey notifications
C) Development and Marketing for New Services
To provide services or post advertisements for developments of new services or products, to figure out contact frequencies, to convey advertising information including statistics, events, etc. on service uses of members
3. Sharing and Provisions of Personal Information
The Company in principle shall not provide personal information of customers; provided, however, that exceptions shall be made when it is authorized under the laws, requested by investigative agencies, or when the prior consent of customers has been obtained.
4. Delegation of Treatment of Personal Information
Without the consent of customers, the Company shall not delegate outside companies to treat personal information of customers. If it becomes necessary to do so in the future, the Company shall notify customers of the delegated companies and delegated duties, and shall obtain prior consents if necessary.
5. Matters on Installation, Operation, and Rejection of Automatic Collection Instruments of Personal Information
The Company operates cookies, etc. to frequently save and find out information of customers. Cookies are very small text files sent to browsers of customers by the server used to operate the homepage, which are saved on the computer hard disks of customers. If a customer gets connected to the website, the computer can know of visitations of the customer and provide services without entering additional information through connections, by reading the content of cookies in the customer's compute browser and finds out additional information of customers from the customer's computer. Customers have the options to install cookies. Therefore, by establishing options on the web browser, customers may allow all cookies, pass through confirmations whenever cookies are saved, or otherwise refuse the savings of all cookies.
* How to refuse the establishment of cookies
As to how to refuse the establishment of cookies, by selecting an option of the web browser used by customers, customers may allow all cookies, pass through confirmations whenever cookies are saved, or otherwise refuse the savings of all cookies.
How to set an allowance of cookie installation (in case of the Internet Explorer)
① To select the [Internet Options] on the menu of [Tools].
② To click on the [Personal Information Tap].
③ To set the [Personal Information Treatment Level].
Provided, however, that if a customer has refused the establishment of cookies, the Company may have difficulties in providing services.
6. Withdrawals of Consent as to Collections, Uses, or Provisions of Personal Information (Membership Withdrawals)
Customers may at all times withdraw the consented content on the collections, uses, or provisions of personal information by subscribing to membership, etc. For the purpose of withdrawals of consent, if your contact the WIPS customer center or the personal information control manager by phone, e-mail, or fax, the Company will verify the identifications and then without delay take necessary measures including destroying your personal information. Where the Company has taken measures personal information after your withdrawal of consent, it will, without delay, notify you thereof.
Provided, however, that customers have not made payments in full or relevant credits have not been extinguished with respect to service uses of customers, it is impossible to withdraw their consents (withdraw from membership) with respect to uses of personal information of customers until the time of satisfaction (completion of handling).
7. Retention and Use Period for Personal Information
In principle, after the purposes of collecting and using personal information have been fulfilled, the Company shall, without delay, destroy relevant information; provided, however, that the following information shall be preserved during the specified period for the following reasons:
A) Reasons for Information Retention under Relevant Laws or the Company's Policies
Where it is required to be preserved under the provisions of relevant laws, during certain periods prescribed under the laws, the Company shall retain personal information of users. In this case, the Company shall use the retained information only for the purpose of retention, and the retention periods shall be as follows:
① Records on agreements or withdrawals of offers: five (5) years (the Act Relating to Protection of Consumers in Electronic Commercial Transactions, etc.)
② Records on payments and supplies of goods: five (5) years (the Act Relating to Protection of Consumers in Electronic Commercial Transactions, etc.)
③ Records on connections: five (5) years (Articles 15, 17, and 18 of the Service Use Agreement-Retention by the Company's policies including payments, dispute resolutions, etc.)
④ Records on complaints of consumers or dispute resolutions: five (5) years (the Act Relating to Protection of Consumers in Electronic Commercial Transactions, etc.)
⑤ Records on wrongful uses: one (1) year (Arties of 17, 19, and 22 of the Service Use Agreement-Retention by the Company's policies including exclusion of wrongful uses)
⑥ Records on verification of identification: six (6) months (the Act Relating to Promotion of Information Communications Network and Personal Information Protection)
B) Even upon the termination of the service use agreement (including applications for withdrawals, compulsory withdrawals), the Company may retain customers' membership subscriptions and service use information (IDs, names, contact information, addresses, e-mails, trade names, service use records, etc.) for a certain period of time according to the above specified information retention reasons, and shall without delay destroy relevant information after the purposes of use have been fulfilled.
C) Where the Company has given a prior notice of the retention period but the retention period has not lapsed, or where the Company has obtained respective consents of users, the Company shall preserve personal information during the agreed period of time.
8. Destruction Procedures and Methods for Personal Information
The Company in principle shall without delay destroy relevant information after the purposes of collecting or using personal information has been fulfilled.
The destruction procedures and methods shall be as follows:
A) Destruction Procedures
The information entered by customers is moved to a separate database, after the purposes have been fulfilled (a separate document in the case of a sheet), and destroyed after the information has been saved for a certain period of time according to the information protection reasons under the internal policies or other relevant laws (see the retention and use period for reference).
The personal information separately moved to a database is not used for purposes other than the purpose of being preserved unless it is so required by laws.
B) Destruction Methods
The personal information saved in an electronic file format shall be deleted with the use of technical methods in which records cannot be regenerated.
The personal information printed out in sheets shall be shredded by paper shredders or destroyed by way of incineration.
9. Rights of Users and Legal Representatives, and the Exercise Methods
A) Reading or correction of personal information
Customers may apply for reading or correction of personal information treated by the Company. The Company takes measures to ensure that customers may at any time request reading or correction of their registered personal information through the homepage.
B) Withdrawals of consents to collections, uses, or provisions
Customers may at any time withdraw, through the Company's homepage or customer support center, the consents to collection, use, or provide personal information by subscription to membership, etc.
C) Protection of personal Information for children of not more than fourteen (14) years old, and the rights of legal representatives
Where the Company collects personal information of children of not more than fourteen (14) years old, it shall obtain the consents of legal representatives. Legal representatives of children of not more than fourteen (14) years old may request reading, correction, withdrawals of consents of personal information of children, and if there is such a request, the Company shall verify the identities and without delay, take necessary measures.
D) Obtaining correctness and updates of personal information
The Company has the following procedures in order to obtain the correctness and updates of customers' personal information. In order to correctly manage personal information, customers shall pass through procedures to previously verify the entries in entering their personal information. When the Company finds erroneous information, it has procedures to correct or delete such information. When customers request reading or corrections of personal information, the Company has the procedures or methods to enter correct information.
10. Measures to Obtain Security of Personal Information
The Company takes the following technical and managerial measures for personal information in treating personal information of users, in order to ensure that personal information is not lost, stolen, leaked, altered, or damaged, and to obtain security:
A) Management of encoding of passwords
Only the members can know their passwords for member IDs on the Company's homepage as they are encoded, saved, and managed and personal information may be verified or changed only by the members who know of their passwords.
B) Measures in preparation of hacking or viruses
The Company makes efforts to prevent members' personal information being disclosed or damaged by hackings, computer viruses, etc. The Company frequently backs up materials in preparation of damages of personal information and prevents personal information or materials of users from being leaked or harmed by using the latest vaccine programs, and enables personal information to be safely transmitted on the networks through encoded communications, etc. And the Company controls unauthorized access from the outside by using firewall systems, and makes efforts to have all possible technical equipment to obtain security systematically.
C) Management and education of treating employees
The Company allows only authorized persons to treat personal information of users and for this purpose grants and regularly renews separate passwords, and at all times stresses out compliance with personal information treatment measures by frequently providing education to authorized persons.
And the Company verifies performances of personal information treatment measures and compliance therewith by authorized persons, and if it a problem is found out, the Company makes efforts to immediately solve and correct the problem(s).
Provided, however, that the Company shall not take any liabilities for problems that occur as personal information has been disclosed due to the members' own carelessness or problems on the Internet.
11. Personal information control manager, and consultations and reporting of infringements of personal information
You may report to the personal information control manger or the relevant department any complaints relating to all personal information protection incurred in using services of the Company. The Company will promptly give sufficient replies as to reports of users. The Company has appointed the following personal information control manger in order to protect personal information of customers and treat complaints relating to personal information.
- Personal Information Control Manager
- Affiliation: Global Marketing Department
- Name: Department Head, Kitae Kim
- Phone: +82-2-726-1038
- E-mail: firstname.lastname@example.org
If you need reports or consultations related to personal information infringements, please ask questions to the following institutions:
1. Personal Information Infringement Reporting Center (privacy.kisa.or.kr/)
2. Information Protection Mark Certification Committee (www.eprivacy.or.kr/)
3. Internet Crime Investigation Center of Supreme Prosecutors' Office (http://www.spo.go.kr/)
4. Cyber Crime Investigative Service of National Police Agency (cyberbureau.police.go.kr/)
12. Information on Changes in Personal Information Treatment Policies
When certain content of the personal information treatment policies are added, deleted, or modified as a result of changes in the laws, internal policies, or security technologies, the Company will give a notice thereof through the homepage at least within seven (7) days before the amendment.
- Version No. of Personal Information Treatment Policies: 1.0
- Notification Date of Personal Information Treatment Policies: January 2, 2012
- Implementation Date of Personal Information Treatment Policies: January 2, 2011