D.A robot mall (hereinafter referred to as the "Company") establishes and discloses the following privacy policy in order to protect the personal information of users in accordance with Article 30 of the Personal Information Protection Act and to promptly and smoothly handle grievances related thereto.
The Privacy Policy covers the following topics
1. purposes of processing personal data
2. processing and retention period of personal information
3. what personal data we process and how we collect it
4. regarding the processing of personal information of children under the age of 14
5. Disclosure of Personal Information to Third Parties
6. Matters concerning the outsourcing of personal information processing
7. Procedures and methods of destruction of personal information
8. Matters concerning the rights and obligations of the information subject and legal representative and how to exercise them
9. Measures to ensure the safety of personal information
10. installation and operation of devices that automatically collect personal information and rejection thereof
11. About the Privacy Officer
12. Remedies for infringement of the rights and interests of the information subject
13. Change your privacy policy
1. purposes of processing personal data
The Company processes personal information for the following purposes. The personal information processed will not be used for any purpose other than the following purposes, and if the purpose of use changes, the Company will take necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.
(1) Sign up and manage your homepage
Personal information is processed for the purpose of confirming the intention to join the membership, identifying and authenticating the person in accordance with the provision of membership services, maintaining and managing membership, preventing unauthorized use of the service, confirming the consent of the legal representative when processing personal information of children under the age of 14, various notices and notifications, and handling grievances.
(2) Provide goods or services
We process personal information for the purpose of providing content, making purchases and payments, sending goods or invoices, providing services, and providing customized services.
(3) Utilization in marketing and advertising
We process personal information for the purpose of providing event and advertising information and participation opportunities, identifying access frequency or statistics on members' use of the service.
2. processing and retention period of personal information
(1) The Company shall process and retain personal information within the period of personal information retention and use agreed upon when collecting personal information from the information subject. If the purpose of personal information processing is achieved or if the information subject requests to terminate the service, the personal information shall be destroyed without delay. The processing and retention period of each personal information is as follows.
Homepage membership and management: until withdrawal
Provision of goods or services: until completion of goods and services and payment and settlement of fees
(2) However, if it is necessary to preserve it in accordance with the provisions of the relevant laws and regulations, the Company shall keep the member information for a certain period of time as prescribed by the relevant laws and regulations as follows.
Records relating to contracts or subscription withdrawals, etc.
-Reason for retention: Act on Consumer Protection in Electronic Commerce, etc.
-Shelf life: 5 years
Records of payments and supply of goods, etc.
-Reason for retention: Act on Consumer Protection in Electronic Commerce, etc.
-Shelf life: 5 years
Records of consumer complaints or dispute handling
-Reason for retention: Act on Consumer Protection in Electronic Commerce, etc.
-Shelf life: 3 years
④ Records about display and advertising
-Reason for retention: Act on Consumer Protection in Electronic Commerce, etc.
-Shelf life: 6 months
⑤ Record service visits
-Rationale for retention: Communications Privacy Act
-Shelf life: 3 months
3. what personal data we process and how we collect it
(1) Items of personal data we process
The Company collects the following personal information for membership, consultation, service application, etc.
- For general registration
Required fields: username, password, name, email, mobile phone, date of birth, legal guardian information (for subscribers under 14 years old)
Optional: Gender
- When you order a product
Required: Order information (name, email, mobile phone), shipping information (name, address, mobile phone), and (for non-member orders) order tracking password
Optional: Landline
- With Kakao Simple Login
Required: Name
- When logging into Naver Simple Login
Required: Username, Name, Email
Optional: Nickname, Birthday
The following information may be generated and collected in the course of service use or business processing.
- Service usage records, access logs, cookies, access IP information, payment records, suspension records, abusive usage records
(2) Collection method
- Website, written forms, bulletin boards, email, event entries, shipping requests, phone, fax, from affiliates, and through generative data collection tools
4. regarding the processing of personal information of children under the age of 14
(1) When collecting personal information about children under the age of 14, the Company obtains the consent of their legal representative and collects the minimum personal information necessary to perform the service.
- Required field: [List the personal information collected through the legal representative consent form].
(2) When we collect personal information from children under the age of 14, we may require the child to provide minimal information, such as the name and contact information of a legal representative, and we will verify that the legal representative has given consent in one of the following ways
- Requiring the legal representative to indicate whether he or she consents on the internet site where the consent is posted and notifying the legal representative by text message on his or her cell phone that the controller has received the indication of consent.
- How to have your legal representative indicate consent on the internet site where the consent form is posted and obtain your legal representative's card information, including credit and debit cards.
- Have the legal representative indicate whether he or she consents on the internet site where the consent is posted, and verify the legal representative's identity, such as through mobile phone verification.
- Issue, mail, or fax a written document containing the consent to the legal representative, and have the legal representative sign and return it.
- How to get an email from a legal representative to indicate consent by sending an email with the consent language
- Informing the legal representative of the consent over the phone and providing information on how to obtain consent or verify the consent, such as an internet address, and making a second phone call to obtain consent.
- Otherwise, inform the legal representative of the consent in a manner consistent with the above and confirm the expression of consent.
5. Disclosure of Personal Information to Third Parties
(1) The Company processes personal information only within the scope specified in Article 1 (Purpose of Processing Personal Information) and provides personal information to third parties only in cases falling under Articles 17 and 18 of the Personal Information Protection Act, such as the consent of the data subject or special provisions of the law.
(2) The Company provides personal information to third parties as follows.
| Name of the third party provided | Purpose | What personal information you provide | Recipient's retention and use period |
| [name of third party provided]. | [Provided for]. | [the personal information you provide]. | [Recipient's retention and use period]. |
(3) The Company may provide personal information to related organizations without the consent of the information subject in the event of an emergency, such as a disaster, infectious disease, an event or accident that poses an imminent danger to life or body, or an imminent loss of property, in accordance with the "Guidelines for Handling and Protecting Personal Information in Emergency Situations" jointly announced by the relevant government departments.
For more information, see the here*.to confirm.
6. Matters concerning the outsourcing of personal information processing
(1) The Company entrusts the processing of personal information as follows for the smooth processing of personal information.
| Custodians | Outsourcing |
| (주)어잉티연구소 | System provision and maintenance of hosting services |
| [Courier name]. | [Courier consignment contents]. |
| [PG Company Name]. | [Entrusted to PG]. |
(2) When entering into an outsourcing contract, the Company specifies in documents such as contracts the prohibition of processing personal information other than for the purpose of performing outsourced tasks, technical and administrative protection measures, restrictions on re-consignment, management and supervision of the outsourcer, and liability for damages in accordance with Article 26 of the Personal Information Protection Act, and supervises whether the outsourcer handles personal information safely.
(3) If the contents of the entrusted work or the trustee change, we will disclose it through this privacy policy without delay.
7. Procedures and methods of destruction of personal information
The Company shall destroy personal information without delay when it becomes unnecessary, such as the expiration of the personal information retention period or the achievement of the purpose of processing.
(1) Destruction procedures
① If the retention period of personal information agreed to by the information subject has expired or the purpose of processing has been achieved, but the personal information must continue to be retained in accordance with other laws and regulations, the personal information shall be transferred to a separate database (DB) or preserved in a different storage location.
Personal information transferred to a separate DB will not be used for any other purpose except as required by law.
(2) Destruction method
Information in the form of electronic files uses technical methods that make it impossible to play back the record.
Personal information printed on paper will be destroyed by shredding or incineration.
8. Matters concerning the rights and obligations of the information subject and legal representative and how to exercise them
(1) The information subject may exercise the right to access, correct, delete, or suspend the processing of personal information at any time against the Company.
(2) To view or modify the personal information of the information subject, click "Change Personal Information" (or "Modify Member Information", etc.), and to cancel membership (withdraw consent), click "Withdraw Membership" after going through the identity verification procedure.
(3) Alternatively, you can contact our Privacy Officer in writing, by phone, or by email, and we will take action without delay.
(4) The exercise of the rights under Paragraph (1) may be made through an agent, such as the legal representative of the information subject or a person authorized by him/her, in which case a power of attorney in the form of Appendix No. 11 to the "Notification on the Method of Processing Personal Information (No. 2020-7)" must be submitted.
(5) The rights of the information subject may be restricted in accordance with Article 35 (4) and Article 37 (2) of the Personal Information Protection Act, and the request for correction and deletion of personal information may not be requested if the personal information is specified as the subject of collection in other laws.
(6) The Company shall verify whether the person making the request for access, correction, deletion, or suspension of processing in accordance with the rights of the information subject is the person or his/her authorized representative.
9. Measures to ensure the safety of personal information
The Company takes the following measures to ensure the safety of personal information.
(1) Administrative measures: establishment and implementation of internal management plans, operation of dedicated organizations, and regular employee training
(2) Technical measures: management of access rights to personal information processing systems, installation of access control systems, encryption of personal information, installation and renewal of security programs
(3) Physical measures: Access control to computer rooms, archives, etc.
10. installation and operation of devices that automatically collect personal information and rejection thereof
The Company uses 'cookies' to store and retrieve usage information from time to time to provide individualized services to users. Cookies are small amounts of information sent to the user's computer browser by the server used to operate the website and may be stored on the hard disk of the user's PC computer.
(1) What we use cookies for
It is used to provide you with optimized information by identifying the types of services and websites you visit and use, popular search terms, and secure connections.
(2) Installation, operation and rejection of cookies
You can refuse to store cookies by setting the options in the Tools>Internet Options>Privacy menu at the top of your web browser.
However, if you refuse to save cookies, you may experience difficulties in using our personalized services.
11. About the Privacy Officer
(1) The Company shall be responsible for the overall handling of personal information and shall designate a person in charge of personal information protection as follows to handle complaints and damage relief of information subjects related to the handling of personal information.
o Privacy Officer
Full name : Plateau Stone
Affiliation: Planning
Tel: 070-8887-1471
Email : farm@snsolutions.co.kr
o Privacy Officer
Full name : Jungmin Hong
Affiliation: Planning
Tel: 010-9954-3399
Email : hjm1011@naver.com
(2) The information subject may inquire about all personal information protection-related inquiries, complaints, damage relief, etc. arising from the use of the Company's services to the person in charge of personal information protection and the person in charge. The Company will respond to and process the information subject's inquiries without delay.
12. Remedies for infringement of the rights and interests of the information subject
(1) In order to obtain relief from personal information infringement, you can apply for dispute resolution or consultation to the Personal Information Dispute Mediation Committee, Korea Internet & Security Agency, etc. For other personal information infringement reports and consultations, please contact the following organizations.
Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (privacy.go.kr)
Personal Information Infringement Report Center: (without area code) 118 (privacy.kisa.or.kr)
General Prosecutor's Office: 1301 (without area code) (www.spo.go.kr)
National Police Agency: 182 (without area code) (ecrm.cyber.go.kr)
(2) A person whose rights or interests have been infringed by an action or omission taken by the head of a public institution in response to a request pursuant to the provisions of Article 35 (Access to Personal Information), Article 36 (Correction and Deletion of Personal Information), or Article 37 (Suspension of Processing of Personal Information) of the Personal Information Protection Act may file an administrative appeal as prescribed by the Administrative Appeals Act.
For more information about administrative appeals, please visit the website of the Central Administrative Appeals Commission (www.simpan.go.kr).
13. Change your privacy policy
This Privacy Policy is effective as of April 1, 2024.
