개인정보처리방침

Solvplan.com (hereinafter referred to as “this Site”) establishes and discloses the following Privacy Policy in accordance with Article 30 of the Personal Information Protection Act to protect the personal information of data subjects and to handle related complaints promptly and smoothly.

Article 1 (Purpose of Processing Personal Information and Registration Status of Personal Information Files)

  1. This Site processes personal information for the following purposes. Personal information being processed will not be used for purposes other than the following, and if the purpose of use changes, we will take necessary measures, such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.

    1. Membership Registration and Management: Confirming the intent to register as a member, identifying and authenticating oneself for providing membership services, maintaining and managing membership status, preventing misuse of services, verifying inquiries related to website use, notifying results, gathering user opinions for website service improvement, and various notifications.
      • Note: Minors are not allowed to register as members.
  2. Registration Status of Personal Information Files:

    Name of Personal Information FileBasis/Processing PurposeItems of Personal Information Recorded in the FileRetention Period
    Member ListConsent of the data subject/Membership registration and provision of membership servicesRequired: Name, Mobile (Contact), E-Mail2 years
      Optional: Company Name, Title 

Article 2 (Processing and Retention Period of Personal Information)

  1. This Site processes and retains personal information within the personal information retention and use period consented by the data subject when collecting personal information or as prescribed by law.
  2. The respective personal information processing and retention periods are as follows:
    • Retention Basis: Terms of use and consent of the data subject.
    • Purpose of Retention: Membership registration and management.
    • Retention Period: 2 years* (However, personal information will not be retained upon member withdrawal.)
    • Note: After a period of 2 years, if the data subject consents again through a re-consent procedure, personal information will continue to be retained. Members who do not re-consent within 2 years from the last consent date will be converted to dormant members and their personal information will be stored in a separate table. If there is no re-consent within 180 days after conversion to dormant member status, the information will be destroyed.

Article 3 (Items of Personal Information Processed)

  1. This Site processes the following items of personal information:
    • Membership Registration and Provision of Membership Services:
      • Required items: Name, Mobile (Contact), E-Mail, Company Name
      • Optional items: Job Title, Company Address, Website, Field of Work

Article 4 (Provision of Personal Information to Third Parties)

  1. This Site does not currently provide personal information to third parties. However, personal information may be provided to third parties only in cases corresponding to Articles 17 and 18 of the Personal Information Protection Act, such as with the data subject’s consent or as stipulated by special provisions in the law.

Article 5 (Entrustment of Personal Information Processing)

  1. This Site currently manages personal information processing internally and does not entrust it to external parties. However, if entrustment becomes necessary in the future for smooth personal information processing, necessary measures will be taken in accordance with Article 26 of the Personal Information Protection Act.

Article 6 (Rights and Obligations of Data Subjects and Legal Representatives and How to Exercise Them)

  1. Data subjects may exercise the following rights related to personal information protection at any time with respect to this Site:

    1. Request to access personal information
    2. Request correction in case of errors
    3. Request deletion
    4. Request to stop processing and withdraw consent
    5. Reject automated decisions and request explanations
  2. Data subjects can request access to their personal information held by this Site in accordance with Article 35 (Access to Personal Information) of the Personal Information Protection Act. Access requests may be restricted as per Article 35(4) of the Personal Information Protection Act:

    1. When access is prohibited or restricted by law.
    2. When there is a risk of harming the life or body of others or infringing on the property and other interests of others unjustly.
    3. When access significantly interferes with the performance of certain public institutions’ duties:
      1. Related to taxation
      2. Evaluation or selection of students or academic functions in educational institutions
      3. Related to examinations and qualification assessments
      4. Related to ongoing evaluations or judgments of compensation or benefits
      5. Related to ongoing audits or investigations
  3. Data subjects can request correction or deletion of their personal information files held by this Site as per Article 36 of the Personal Information Protection Act. However, deletion requests may not be made if the information is specified as a collection target by other laws.

  4. Data subjects can request the suspension of processing or withdraw consent for personal information held by this Site under Article 37 of the Personal Information Protection Act. However, the request for suspension or withdrawal may be rejected in cases:

    1. When special provisions exist in the law or compliance with legal obligations makes it unavoidable.
    2. When there is a risk of harming the life or body of others or infringing on the property and other interests of others unjustly.
    3. When a public institution cannot perform its legal duties without processing the information.
    4. When it is difficult to fulfill a contract with the data subject without processing the information, and the data subject has not clearly expressed their intention to terminate the contract.
  5. When automated decisions are involved, data subjects may not reject these decisions if they have provided prior consent or have been notified through a contract, or if explicitly stipulated by law. Only explanation and review requests are accepted.

    • Note: Automated decision rejection or explanation requests may be denied if they unjustly infringe on the life, body, property, or other interests of others.
  6. Requests to access personal information can be made to this Site using Form No. 8 of the Personal Information Processing Methods Notice by mail, fax, or electronic mail. The Site will take action within 10 days from the date of the request.

  7. When requesting correction or deletion of personal information errors, this Site will not use or provide the information until the correction or deletion is completed.

  8. The rights stipulated in Paragraph 1 may be exercised by the legal representative or an authorized agent of the data subject. In such cases, a power of attorney in Form No. 11 of the Personal Information Processing Methods Notice must be submitted.

Article 7 (Destruction of Personal Information)

  1. This Site will destroy personal information without delay when it becomes unnecessary, such as when the retention period has expired or the processing purpose has been achieved.
  2. Even if the consented retention period has expired or the processing purpose has been achieved, personal information must still be preserved under other laws. In this case, the personal information (or personal information file) will be transferred to a separate database (DB) or stored in a different location.
  3. The procedure and method for destroying personal information are as follows:
    1. Destruction Procedure: The Site selects personal information (or personal information files) that need to be destroyed and obtains approval from the personal information protection officer before destruction.
    2. Destruction Method: Personal information recorded and stored in electronic file format is deleted using technical methods that prevent recovery. Personal information recorded and stored in paper documents is shredded or incinerated.

Article 8 (Matters Concerning the Installation, Operation, and Rejection of Automatic Personal Information Collection Devices)

  1. This Site uses ‘cookies’ to store and retrieve user information to provide personalized services.
  2. Cookies are small amounts of information sent by the server (http) used to operate the website to the user’s computer browser and stored on the hard disk of the user’s PC.
    • Purpose of using cookies: To analyze the usage patterns of the services and websites visited by users, the scale of usage, and to provide optimized information to users.
    • Installation, operation, and rejection of cookies: Cookies can be refused by setting options in the web browser’s ‘Tools > Internet Options > Privacy’ menu.
    • Note: If you refuse to save cookies, there may be difficulties in using customized services.

Article 9 (Measures to Ensure the Safety of Personal Information)

This Site takes the following technical, managerial, and physical measures to ensure safety as required by Article 29 of the Personal Information Protection Act.

  1. Managerial Measures:

    1. Establishment and implementation of internal management plans: To ensure the safe handling of personal information, an internal management plan is established and implemented, and the plan is checked at least once a year.
    2. Minimization and training of personal information handling staff: To safely manage personal information, the number of personal information handlers is minimized, and regular training is conducted for these staff members.
  2. Technical Measures:

    1. Access control for personal information: Access to personal information processing systems is controlled by granting, changing, and deleting access rights, and unauthorized access from outside is controlled using intrusion prevention and detection systems.
    2. Storage and prevention of forgery or alteration of access records: Records of access to the personal information processing system are stored and managed for at least one year, and security features are used to prevent tampering or alteration of these records.
    3. Encryption of personal information: Users’ personal information is encrypted and stored and managed, and important data is encrypted when stored and transmitted.
    4. Installation and periodic inspection and renewal of security programs: To prevent personal information leakage and damage caused by hacking or computer viruses, security programs are installed and periodically updated and inspected.