2022-2023 Shelter Inc. All right reserved.
‹Shelter Co., Ltd.› ('https://shelter.id' hereafter 'shelter') shall protect users' personal
information and rights and interests in accordance with the Personal Information Protection
Act and smoothly handle user's grievances related to personal information. To be able to do
so, we have the following policy.
‹Shelter Co., Ltd.› ('Shelter') will notify the company through website notice (or individual
notice) when revising the privacy policy.
○ This policy will take effect from December 16, 2019.
1. Purpose of processing personal information ‹Shelter Co., Ltd. ('https://shelter.id'
hereinafter 'shelter') processes personal information for the following purposes. The
processed personal information is not used for purposes other than the following purposes,
and prior consent will be sought when the purpose of use is changed.
end. Homepage membership registration and management
Confirmation of intention to sign up as a member, identification, and authentication according
to the provision of membership service, maintenance and management of member
qualifications, identification of the enforcement of the limited identification system, prevention
of illegal use of services, confirmation of consent from a legal representative when collecting
personal information of children under the age of 14, etc. We process personal information
for the purpose of.
I. Civil affairs processing
Personal information is processed for the purpose of verifying the identity of the complainant,
confirming the complaints, contacting, and notifying for fact-finding, and notifying the result of
processing.
All. Provision of goods or services
We process personal information for the purpose of providing services, sending invoices,
providing contents, providing customized services, personal authentication, age verification,
payment, and settlement of charges, etc.
la. Use in marketing and advertising.
Development of new services (products) and provision of customized services, provision of
event and advertisement information and opportunities for participation, provision of services
and advertisements according to demographic characteristics, validation of services,
identification of access frequency, or statistics on members' service use, etc. We process
personal information for the purpose of.
2. Personal information file status
1. Personal information file name: Shelter personal information
-Personal information items: email, mobile phone number, password, login ID, gender, date
of birth, name, credit card information, bank account information, service use record, access
log, cookie, access IP information, payment record, legal representative name, Mobile phone
number of legal representatives
-Collection method: Provided by the website and affiliates
-Basis for retention: Act on consumer protection in e-commerce, etc.
-Retention period: 5 years
-Related laws: Records on collection/processing and use of credit information: 3 years,
Records on consumer complaints or dispute settlement: 3 years, Records on payment and
supply of goods: 5 years, withdrawal of contract or subscription Records on etc.: 5 years,
Records on labeling/advertising: 6 months
3. Processing and retention period of personal information
① ‹Shelter Co., Ltd.› ('Shelter') processes and retains personal information agreed upon at
the time of collection from the information subject in accordance with the laws and
regulations within the period of use.
② Each personal information processing and retention period is as follows.
1.‹Providing goods or services›
Personal information related to ‹providing goods or services› will be retained and used for
the above purposes from the date of consent for collection and use until ‹5 years›.
-Retention basis: Act on consumer protection in e-commerce, etc.
-Relevant laws and regulations: 1) Records on collection/processing and use of credit
information: 3 years
2) Records on consumer complaints or dispute settlement: 3 years
3) Records on payment and supply of goods: 5 years
4) Records on contract or subscription withdrawal: 5 years
5) Records on display/advertisement: 6 months
-Exception reasons:
4. Matters concerning the provision of personal information to a third party
① ‹Shelter Co., Ltd. ('https://shelter.id' hereinafter 'shelter') is personal information only if it
falls under Articles 17 and 18 of the Personal Information Protection Act, such as the
consent of the information subject and special provisions of the law. To third parties.
② ‹Shelter, Inc. ('https://shelter.id') provides personal information to third parties as follows.
-Person who receives personal information: PG company
-Purpose of using personal information of the recipient: email, mobile phone number, login
ID, date of birth, name, credit card information, bank account information, service use
record, access log, cookie, access IP information
-Retention and use period of the recipient: 5 years
5. Consignment of personal information processing
① ‹Shelter, Inc. ('Shelter') entrusts the following personal information processing tasks for
smooth personal information processing.
1. ‹› (No present)
-Entrusted person (trustee):
-Contents of consigned work:
-Consignment period:
② ‹Shelter, Inc. ('https://shelter.id' hereinafter 'shelter') prohibits processing of personal
information other than the purpose of performing consignment business in accordance with
Article 25 of the Personal Information Protection Act when consignment contracts are
concluded, and technical and administrative protection measures , Re-consignment
restrictions, management and supervision of the consignee, and liability for damages are
specified in documents such as contracts, and supervised whether the consignee handles
personal information safely.
③ If the contents of the consignment business or the consignee change, we will disclose it
through this personal information processing policy without delay.
6. Rights and obligations of the information subject and legal representative and how to
exercise the user as a personal information subject, the user can exercise the following
rights.
① The information subject can exercise the right to access, correct, delete, and stop
processing personal information at any time with the Shelter Co., Ltd.
② The exercise of the rights pursuant to Paragraph 1 can be done in writing, e-mail, fax, etc.
in accordance with Article 41 (1) of the Enforcement Decree of the Personal Information
Protection Act for Shelter Co., Ltd. Shelter Co., Ltd. will take action without delay. I'll do it.
③ The exercise of rights pursuant to Paragraph 1 can be done through the legal
representative of the information subject or through an agent such as a person who has
been delegated. In this case, a power of attorney must be submitted in accordance with the
form of Attachment 11 of the Enforcement Regulations of the Personal Information
Protection Act.
④ The rights of the information subject may be restricted according to Article 35 (5) and
Article 37 (2) of the Personal Information Protection Act for requests to view and stop
processing personal information.
⑤ Request for correction and deletion of personal information cannot be requested if the
personal information is specified as the object of collection in other laws.
⑥ Shelter Co., Ltd. confirms whether the person who made the request for access according
to the rights of the information subject, request for correction or deletion, and for access
when requesting suspension of processing is the person who made the request or is a
legitimate agent.
7. Create items of personal information to be processed
① ‹Shelter, Inc. ('https://shelter.id' hereinafter 'shelter') handles the following personal
information items.
1‹Homepage Membership Registration and Management›
-Required items: email, mobile phone number, password, login ID, gender, date of birth,
name, credit card information, bank account information, service use record, access log,
cookie, access IP information, payment record
-Optional items: legal representative's name, legal representative's mobile phone number
8. Destruction of personal information ‹Shelter Co., Ltd. ('Shelter') in principle destroys the
personal information without delay when the purpose of processing personal information is
achieved. The procedure, deadline, and method of destruction are as follows.
-Destruction procedure
The information entered by the user is transferred to a separate DB (separate documents in
the case of paper) after the purpose is achieved and is stored for a certain period of time or
immediately destroyed in accordance with internal policies and other related laws. At this
time, the personal information transferred to the DB will not be used for other purposes
unless it is required by law.
-Destruction period
The personal information of the user shall be within 5 days from the end of the retention
period, if the retention period of personal information has elapsed, when the personal
information becomes unnecessary, such as achieving the purpose of processing personal
information, abolition of the service, or the end of the business the personal information will
be destroyed within 5 days from the date it is recognized as unnecessary to process.
-How to destroy
Information in the form of electronic files uses a technical method that cannot reproduce the
record.
Personal information printed on paper is destroyed by shredding or incineration.
9. Matters concerning the installation, operation, and rejection of automatic personal
information collection devices
① Shelter Co., Ltd. uses’ cookies' that store and retrieve usage information from time to time
in order to provide individual customized services. ② Cookies are a small amount of
information sent to the user's computer browser by the server (http) used to operate the
website, and may be stored on the hard disk of the user's PC computer. end. Purpose of use
of cookies: It is used to provide optimized information to users by identifying the types of
visits and usage, popular search terms, secure access, etc. for each service and website
visited by the user. I. Installation, operation, and rejection of cookies: You can refuse to store
cookies by setting options in the Tools›Internet Options›Personal Information menu at the
top of the web browser. All. If you refuse to store cookies, you may experience difficulties in
using customized services.
10. Personal information protection manager
① Shelter Co., Ltd. ('https://shelter.id' hereinafter 'shelter') is responsible for the handling of
personal information, and for the handling of complaints and damage relief of the data
subject related to the processing of personal information, Together, a person in charge of
personal information protection is designated.
▶ Personal Information Protection Officer
Name: Yeong-cheon Kim
Position: Developer
Position: Team Leader
Contact: (+82) 031-973-5350, dev@shelter.id
※ It is connected to the department in charge of personal information protection.
▶ Department in charge of personal information protection
Department Name: Development Team
Person in charge: Yeong-cheon Kim
Contact: (+82) 031-973-5350, dev@shelter.id
② The information subject shall contact the person in charge of personal information
protection regarding all personal information protection related inquiries, complaints, damage
relief, etc. that occurred while using the service (or business) of Shelter Co., Ltd.
('https://shelter.id' hereinafter 'shelter'). And you can inquire at the department in
charge. Shelter Co., Ltd. ('https://shelter.id' hereinafter 'shelter') will respond and handle
inquiries from the information subject without delay.
11. Changes to the privacy policy
① This personal information processing policy is applied from the effective date, and if there
is addition, deletion, or correction of changes in accordance with laws and policies, it will be
notified through the notice from 7 days before the enforcement of the changes.
12. Measures to ensure the safety of personal information ‹Shelter Co., Ltd. ('Shelter') takes
the following technical/administrative and physical measures necessary to ensure safety in
accordance with Article 29 of the Personal Information Protection Act.
1. Conduct regular self-audit
We conduct our own audits on a regular basis (quarterly) to ensure the safety of handling
personal information.
2. Minimization and training of personnel handling personal information
We are implementing measures to manage personal information by designating employees
who handle personal information and minimizing them by limiting them to the person in
charge.
3. Establishment and implementation of an internal management plan
We have established and implemented an internal management plan for the safe processing
of personal information.
4. Technical measures against hacking, etc.
‹Shelter Co., Ltd.› ('Shelter') installs a security program to prevent leakage and damage of
personal information due to hacking or computer viruses, performs periodic updates and
inspections, installs a system in an area where access from outside is controlled, and We
are monitoring and blocking both physically and physically.
5. Encryption of personal information
The user's personal information is encrypted and stored and managed, so only the person
can know it, and for important data, separate security functions such as encrypting files and
transmission data or using a file lock function are used.
6. Storage of access records and prevention of forgery
We store and manage records of access to the personal information processing system for
at least 6 months, and use security functions to prevent forgery, alteration, theft, and loss of
access records.
7. Restriction of access to personal information
We take necessary measures to control access to personal information by granting,
changing, and canceling access rights to the database system that processes personal
information, and we use an intrusion prevention system to control unauthorized access from
outside.
8. Use of locking device for document security
Documents containing personal information, auxiliary storage media, etc. are stored in a
safe place with a locking device.
9. Access control for unauthorized persons
A separate physical storage place where personal information is stored is set up and access
control procedures are established and operated.