WIPS Co.,
Ltd. (hereinafter referred to as the "Company") very seriously takes
into consideration of customers' personal information who use the WIPS
Global--the patent information search services operated by the Company
(hereinafter the "Homepage"), and do our best to safely use the
services provided to customers by the Company.
For these reasons, the Company has established personal information policies
pursuant to the "Act Relating to Promotion of Information Communications
Network and Personal Information Protection," and use the personal
information provided by customers to the extent prescribed under the laws and
the internal guidelines of the company. The security measures necessary
to protect personal information are notified on the first screen of the
homepage of the Company.
The Company's personal information treatment policies on the homepage, and
where there is a change in the laws or guidelines relating to personal
information or there is a change in the Company's policies, the relevant
content is notified on the first screen of the homepage. Therefore, users
must confirm the first screen of the homepage when they visit the homepage.
The personal information treatment policies of WIPS Co., Ltd. contain the
following content:
Items of Personal Information to be Collected and Collection Methods
Purpose of Collection and Use of Personal Information
Sharing and Provisions of Personal Information
Delegation of Treatment of Personal Information
Retention and Use Period for Personal Information
Destruction Procedures and Methods for Personal Information
Rights of Users and Legal Representatives, and the Exercise Methods
Matters on Installation, Operation, and Rejection of Automatic Collection Instruments of Personal Information
Technical-Managerial Measures for Personal Information
Contact Information of Personal Information Control Manager and Authorized Manager
Information on WIPS Customer Center
Duty to Notify
1. Items of
Personal Information to be Collected and Collection Methods
A) Items of Personal Information to be Collected
① Collections
for membership control, consultations for complaints, applications for
services, etc.
- Required: names, IDs, passwords, countries, trade
names, addresses, e-mails, contact information (choose one of wire telephones
or mobile phones), reasons for subscription
- Selective: fields, duties, new letter receptions
② Collections
by service use processes or business handling processes
- Kind of OS, service use records, defective use
records, cookies, contact IP, payment records
- For account remittances, names of banks, account
numbers, etc.
If a customer provides false personal information, its use of services may be restricted
or prohibited, and as the case requires, may be subject to disadvantages.
The Company allows only persons of not less than fourteen (14) years old to
subscribe to membership. The Company in principle shall not collect
personal information of children of not more than fourteen (14) years old who
are required to obtain the consent of a legal representative for collection and
use of personal information; provided, however, that if a user of not more than
fourteen (14) years old has obtained the consent of a legal representative, the
Company may collect or use personal information of the user of not more than
fourteen (14) years old.
B) Personal Information Collection Methods
The Company shall collect personal information in the following ways:
- Subscription to membership (on the homepage, in writing, by phone or
fax), Consultation bulletins, application for events, requests for delivery
2. Purpose of Collection and Use of Personal Information
The Company collects and uses personal information for the following purposes,
and shall not use it for other purposes. When there is a change in the
purposes of using personal information, the Company will seek written consents.
A) Payment
of costs incurred as a result of performing agreements on provisions of
services or providing services
Provisions of content, deliveries of goods or sending bills, purchases or cost
payments, collections of costs
B) Control
of Members
To verify identifications for uses of membership services, to identify
individuals, to prevent wrongful uses of bad members or unauthorized uses, to
verify intents for subscriptions, to verify ages, to verify the consent of a
legal representative for collecting personal information of children of not
more than fourteen (14) years old, to handle civil complaints including
handling grievances, to convey notifications
C)
Development and Marketing for New Services
To provide services or post advertisements for developments of new services or
products, to figure out contact frequencies, to convey advertising information
including statistics, events, etc. on service uses of members
3. Sharing and Provisions of Personal Information
The Company in principle shall not provide personal information of customers;
provided, however, that exceptions shall be made when it is authorized under
the laws, requested by investigative agencies, or when the prior consent of
customers has been obtained.
4. Delegation of Treatment of Personal Information
Without the consent of customers, the Company shall not delegate outside
companies to treat personal information of customers. If it becomes
necessary to do so in the future, the Company shall notify customers of the
delegated companies and delegated duties, and shall obtain prior consents if
necessary.
5. Matters on Installation, Operation, and Rejection of Automatic Collection
Instruments of Personal Information
The Company operates cookies, etc. to frequently save and find out information
of customers. Cookies are very small text files sent to browsers of
customers by the server used to operate the homepage, which are saved on the
computer hard disks of customers. If a customer gets connected to the
website, the computer can know of visitations of the customer and provide
services without entering additional information through connections, by
reading the content of cookies in the customer's compute browser and finds out
additional information of customers from the customer's computer.
Customers have the options to install cookies. Therefore, by establishing
options on the web browser, customers may allow all cookies, pass through
confirmations whenever cookies are saved, or otherwise refuse the savings of
all cookies.
* How to refuse the establishment of cookies
As to how to
refuse the establishment of cookies, by selecting an option of the web browser
used by customers, customers may allow all cookies, pass through confirmations
whenever cookies are saved, or otherwise refuse the savings of all cookies.
How to set an allowance of cookie installation (in case of the Internet
Explorer)
① To select
the [Internet Options] on the menu of [Tools].
② To click on the [Personal
Information Tap].
③ To set the [Personal Information
Treatment Level].
Provided, however, that if a customer has refused the establishment of cookies,
the Company may have difficulties in providing services.
6. Withdrawals of Consent as to Collections, Uses, or Provisions of Personal
Information (Membership Withdrawals)
Customers may at all times withdraw the consented content on the collections,
uses, or provisions of personal information by subscribing to membership,
etc. For the purpose of withdrawals of consent, if your contact the WIPS
customer center or the personal information control manager by phone, e-mail,
or fax, the Company will verify the identifications and then without delay take
necessary measures including destroying your personal information. Where
the Company has taken measures personal information after your withdrawal of
consent, it will, without delay, notify you thereof.
Provided, however, that customers have not made payments in full or relevant
credits have not been extinguished with respect to service uses of customers,
it is impossible to withdraw their consents (withdraw from membership) with
respect to uses of personal information of customers until the time of
satisfaction (completion of handling).
7. Retention and Use Period for Personal Information
In principle, after the purposes of collecting and using personal information
have been fulfilled, the Company shall, without delay, destroy relevant
information; provided, however, that the following information shall be
preserved during the specified period for the following reasons:
A) Reasons for Information Retention under Relevant Laws or the Company's
Policies
Where it is required to be preserved under the provisions of relevant laws,
during certain periods prescribed under the laws, the Company shall retain
personal information of users. In this case, the Company shall use the retained
information only for the purpose of retention, and the retention periods shall
be as follows:
① Records on
agreements or withdrawals of offers: five (5) years (the Act Relating to
Protection of Consumers in Electronic Commercial Transactions, etc.)
② Records on payments and supplies of
goods: five (5) years (the Act Relating to Protection of Consumers in
Electronic Commercial Transactions, etc.)
③ Records on
connections: five (5) years (Articles 15, 17, and 18 of the Service Use
Agreement-Retention by the Company's policies including payments, dispute
resolutions, etc.)
④ Records on
complaints of consumers or dispute resolutions: five (5) years (the Act
Relating to Protection of Consumers in Electronic Commercial Transactions,
etc.)
⑤ Records on wrongful uses: one (1)
year (Arties of 17, 19, and 22 of the Service Use Agreement-Retention by the
Company's policies including exclusion of wrongful uses)
⑥ Records on
verification of identification: six (6) months (the Act Relating to Promotion
of Information Communications Network and Personal Information Protection)
B) Even upon the termination of the service use agreement (including
applications for withdrawals, compulsory withdrawals), the Company may retain
customers' membership subscriptions and service use information (IDs, names,
contact information, addresses, e-mails, trade names, service use records,
etc.) for a certain period of time according to the above specified information
retention reasons, and shall without delay destroy relevant information after
the purposes of use have been fulfilled.
C) Where the Company has given a prior notice of the retention period but the
retention period has not lapsed, or where the Company has obtained respective
consents of users, the Company shall preserve personal information during the
agreed period of time.
8. Destruction Procedures and Methods for Personal Information
The Company in principle shall without delay destroy relevant information after
the purposes of collecting or using personal information has been fulfilled.
The destruction procedures and methods shall be as follows:
A) Destruction Procedures
The information entered by customers is moved to a separate database, after the
purposes have been fulfilled (a separate document in the case of a sheet), and
destroyed after the information has been saved for a certain period of time
according to the information protection reasons under the internal policies or
other relevant laws (see the retention and use period for reference).
The personal information separately moved to a database is not used for
purposes other than the purpose of being preserved unless it is so required by
laws.
B) Destruction Methods
The personal information saved in an electronic file format shall be deleted
with the use of technical methods in which records cannot be regenerated.
The personal information printed out in sheets shall be shredded by paper
shredders or destroyed by way of incineration.
9. Rights of Users and Legal Representatives, and the Exercise Methods
A) Reading
or correction of personal information
Customers may apply for reading or correction of personal information treated
by the Company. The Company takes measures to ensure that customers may
at any time request reading or correction of their registered personal
information through the homepage.
B)
Withdrawals of consents to collections, uses, or provisions
Customers may at any time withdraw, through the Company's homepage or customer
support center, the consents to collection, use, or provide personal
information by subscription to membership, etc.
C)
Protection of personal Information for children of not more than fourteen (14)
years old, and the rights of legal representatives
Where the Company collects personal information of children of not more than
fourteen (14) years old, it shall obtain the consents of legal
representatives. Legal representatives of children of not more than
fourteen (14) years old may request reading, correction, withdrawals of
consents of personal information of children, and if there is such a request,
the Company shall verify the identities and without delay, take necessary
measures.
D) Obtaining
correctness and updates of personal information
The Company has the following procedures in order to obtain the correctness and
updates of customers' personal information. In order to correctly manage
personal information, customers shall pass through procedures to previously
verify the entries in entering their personal information. When the
Company finds erroneous information, it has procedures to correct or delete
such information. When customers request reading or corrections of
personal information, the Company has the procedures or methods to enter
correct information.
10. Measures to Obtain Security of Personal Information
The Company takes the following technical and managerial measures for personal
information in treating personal information of users, in order to ensure that
personal information is not lost, stolen, leaked, altered, or damaged, and to
obtain security:
A)
Management of encoding of passwords
Only the members can know their passwords for member IDs on the Company's
homepage as they are encoded, saved, and managed and personal information may
be verified or changed only by the members who know of their passwords.
B) Measures
in preparation of hacking or viruses
The Company makes efforts to prevent members' personal information being
disclosed or damaged by hackings, computer viruses, etc. The Company
frequently backs up materials in preparation of damages of personal information
and prevents personal information or materials of users from being leaked or
harmed by using the latest vaccine programs, and enables personal information
to be safely transmitted on the networks through encoded communications, etc.
And the Company controls unauthorized access from the outside by using firewall
systems, and makes efforts to have all possible technical equipment to obtain
security systematically.
C)
Management and education of treating employees
The Company allows only authorized persons to treat personal information of
users and for this purpose grants and regularly renews separate passwords, and
at all times stresses out compliance with personal information treatment
measures by frequently providing education to authorized persons.
And the Company verifies performances of personal information treatment
measures and compliance therewith by authorized persons, and if it a problem is
found out, the Company makes efforts to immediately solve and correct the
problem(s).
Provided, however, that the Company shall not take any liabilities for problems
that occur as personal information has been disclosed due to the members' own
carelessness or problems on the Internet.
11. Personal information control manager, and consultations and reporting of
infringements of personal information
You may report to the personal information control manger or the relevant
department any complaints relating to all personal information protection
incurred in using services of the Company. The Company will promptly give
sufficient replies as to reports of users. The Company has appointed the
following personal information control manger in order to protect personal
information of customers and treat complaints relating to personal information.
- Personal Information Control Manager
- Affiliation: Global Marketing Department
- Name: Department Head, Kitae Kim
- Phone: +82-2-726-1038
- E-mail: global@wips.co.kr
If you need
reports or consultations related to personal information infringements, please
ask questions to the following institutions:
1. Personal Information Infringement Reporting Center
(privacy.kisa.or.kr/)
2. Information Protection Mark Certification Committee
(www.eprivacy.or.kr/)
3. Internet Crime Investigation Center of Supreme
Prosecutors' Office (http://www.spo.go.kr/)
4. Cyber Crime Investigative Service of National
Police Agency (cyberbureau.police.go.kr/)
12. Information on Changes in Personal Information Treatment Policies
When certain content of the personal information treatment policies are added,
deleted, or modified as a result of changes in the laws, internal policies, or
security technologies, the Company will give a notice thereof through the
homepage at least within seven (7) days before the amendment.
- Version No. of Personal Information Treatment
Policies: 1.0
- Notification Date of Personal Information Treatment
Policies: January 2, 2012
- Implementation Date of Personal Information
Treatment Policies: January 2, 2011