Home > Privacy Policy > Privacy PolicyPrivacy Policy
AINA CO., LTD (hereinafter referred to as the 'Company') establishes and discloses the following Privacy Policy in accordance with the 「Personal Information Protection Act」 to protect the personal information and rights of users and to smoothly handle user grievances related to personal information. The Privacy Policy is disclosed on the first page at the bottom of the homepage and may be amended due to changes in laws, guidelines, or the Company's internal policies.
The Company's Privacy Policy contains the following:
- 1. Items of Personal Information Collected and Purpose of Processing
- 2. Retention and Use Period of Personal Information
- 3. Procedure and Method of Destroying Personal Information
- 4. Provision of Personal Information to Third Parties
- 5. Entrustment of Collected Personal Information
- 6. Rights and Obligations of Users and Their Legal Representatives, and Method of Exercising Them
- 7. Measures to Ensure the Security of Personal Information
- 8. Chief Privacy Officer and Civil Service for Personal Information
- 9. Remedy for Infringement of Rights and Interests
- 10. Changes to the Privacy Policy and Duty of Notification
1. Items of Personal Information Collected and Purpose of Processing
The Company will not use the collected personal information for any purpose other than those stated below. Should the purpose of use change, the Company will take necessary measures, such as obtaining separate consent. Content on our homepage can be freely accessed without a separate membership registration process. However, for the smooth provision of services—such as when a customer leaves an inquiry or for consultations, purchase and A/S inquiries, and branch/marketing inquiries—the Company collects only the minimum necessary information as follows..
| Category | Personal Information Collected | Purpose of Processing | |
|---|---|---|---|
| A/S Inquiry | Required | Name, Contact number, Address | Fact-finding for A/S processing, contact and notification, notification of processing results |
| Product/Goods Purchase | Required | Name, Contact number, Address | Responding to customer purchase inquiries, contact and notification, notification of processing results |
| Payment | Required | For credit card payment: Card company name, Card number, Cardholder name, Expiration date For cash receipt issuance: Mobile phone number or Business registration number For refund: Bank name, Account holder name, Account number |
Payment of A/S fees and costs associated with purchases |
| Homepage Online Consultation | Required | Name, Contact number, Email | Responding to customer consultation inquiries and providing answers |
| Product/Goods/Branch Inquiry | Required | Name, Contact number, Address | Contact and notification for responding to inquiries, notification of processing results |
| Marketing Inquiry | Required | Name, Contact number, Email, Address | Contact and notification for responding to inquiries, notification of processing results |
| Job Application | Required | Name, Contact number, Address, Age, Email, Personal introduction, Work experience, Work performance, Educational background, Awards history, Skills possessed, Military service status, Health information | Conducting the recruitment process, verifying work experience, managing recruitment |
※ During the use of the homepage and mobile services, information such as IP Address, cookies, service usage records, access logs, and device information may be automatically collected.
2. Retention and Use Period of Personal Information
1) The customer's personal information is retained and used in accordance with the purpose of collection and use notified to the customer by the Company, and the information is destroyed upon the expiration of the retention and use period. However, if there is a need for preservation under the provisions of relevant laws and regulations, it will be preserved in accordance with said laws and regulations.
2) Personal information that needs to be retained for a certain period for reasons such as confirming rights and obligations, as stipulated by relevant laws and regulations like the Commercial Act and the Act on Consumer Protection in Electronic Commerce, etc., will be retained for that period. Personal information retained accordingly will not be viewed or used for any purpose other than that stipulated by the relevant laws. The retention and use period for collected personal information is as follows.
| Category | Retention Period | Basis for Retention |
|---|---|---|
| Records on contracts or withdrawal of offers | 5 years | Act on Consumer Protection in Electronic Commerce, etc. |
| Records on payment and supply of goods, etc. | 5 years | |
| Records on consumer complaints or dispute resolution | 3 years | |
| Records on visits (logs) | 3 months | Protection of Communications Secrets Act |
| Records on recruitment | 6 months | Act on the Fairness of Recruitment Procedures |
3) The retention period for personal information held in accordance with the Company's internal policy is as follows.
| Category | Retention Period | Basis for Retention |
|---|---|---|
| When individual consent is obtained from the user | The period for which consent was obtained | Company's internal policy |
| In case of a dispute such as a civil complaint or lawsuit between the Company and the user, if the dispute is not resolved within the retention period | Until the end of the said dispute | |
| Personal information collected when using services like customer inquiries on the homepage and app | 3 years from the date of collection | |
| Voice information and consultation details collected during phone consultations | 3 years from the date of collection |
3. Procedure and Method of Destroying Personal Information
As a general rule, the Company destroys the corresponding information without delay after the purpose of collecting and using the personal information has been achieved.
The procedure and method of destruction are as follows.
1) Destruction Procedure
The user's information, after the purpose has been achieved, is transferred to a separate DB (or a separate file in the case of paper) and is stored for a certain period before being destroyed, in accordance with reasons for information protection under internal policies and other relevant laws and regulations (refer to '2. Retention and Use Period of Personal Information'). At this time, the personal information transferred to the DB is not used for any purpose other than those stipulated by law.
2) Destruction Method
Personal information stored in electronic file format is deleted using a technical method that makes the records irreproducible. Personal information printed on paper is destroyed by shredding with a shredder or through incineration.
4. Provision of Personal Information to Third Parties
As a general rule, the Company does not provide users' personal information to external parties. However, the following cases are exceptions.
1) When the user has consented to the provision of personal information to a third party.
2) When it is based on relevant laws and regulations, or when there is a request from an investigative agency according to the procedures and methods prescribed by law.
5. Entrustment of Collected Personal Information
The Company does not entrust users' personal information to external companies without the user's consent.
Should such a need arise in the future, we will notify the user of the trustee and the details of the entrusted work and obtain prior consent if necessary.
6. Rights and Obligations of Users and Their Legal Representatives, and Method of Exercising Them
1) The user and their legal representative may view and modify the user's stored personal information at any time.
2) To view, modify, or withdraw consent for personal information, the user may request to view, correct, or withdraw consent after undergoing a verification process through the Company (refer to '8. Chief Privacy Officer and Civil Service for Personal Information').
3) If a user requests to withdraw consent, the Company will take necessary measures without delay, such as destroying the collected personal information so that it cannot be recovered or reproduced. If requested by the user to view or provide personal information, the Company will take the necessary measures without delay.
4) If requested to correct an error in personal information, the Company must take necessary measures without delay, such as correcting the error or notifying the user of the reason for not being able to correct it. Until the necessary measures are taken, the Company will not use or provide the said personal information. However, if requested to provide the personal information in accordance with relevant laws, the personal information may be provided or used.
7. Measures to Ensure the Security of Personal Information
The Company takes the following measures to ensure the security of personal information.
1) Minimization and Training of Staff Handling Personal Information
We designate and limit staff handling personal information to a minimum number of responsible persons, and we implement measures to manage personal information with an awareness of the importance of its management through regular training for all employees.
2) Designation of Departmental Privacy Officers
We designate a privacy officer of manager level or higher for each business area to check the implementation of the privacy policy and the compliance of the person in charge, and strive to immediately correct and rectify any problems found. However, the Company is not responsible for any problems arising from the leakage of personal information such as ID and password due to the user's own negligence.
8. Chief Privacy Officer and Civil Service for Personal Information
The Company designates a Chief Privacy Officer as follows to protect users' personal information and handle complaints related to personal information.
| Category | Position | Name | Contact | ||
|---|---|---|---|---|---|
| Chief Privacy Officer | Director | Jang Suk-jung | +82-53-324-9824 | aina@aina.co.kr | |
| Departmental Officer | Domestic Sales | Managing Director | Yang Tae-gyu | ||
| Online Sales | Managing Director | Park June-hyoung | |||
9. Remedy for Infringement of Rights and Interests
Users may inquire with the following institutions for damage relief, consultation, etc., regarding personal information infringement.
1) Personal Information Dispute Mediation Committee: (toll-free) 1833-6972 (www.kopico.go.kr)
2) KISA (Korea Internet & Security Agency) Privacy Invasion Report Center: (toll-free) 118 (privacy.kisa.or.kr)
3) Supreme Prosecutors' Office: (toll-free) 1301 (www.spo.go.kr)
4) National Police Agency: (toll-free) 182 (ecrm.cyber.go.kr)
10. Changes to the Privacy Policy and Duty of Notification
This Privacy Policy is effective from the enforcement date below, and in the event of any changes to its content, we will provide notification through the homepage at least 7 days prior to the revision.
This Privacy Policy is effective from November 1, 2023.
