<Korean Institute of Communications and Information Sciences official website>(‘kics.or.kr,’ hereafter referred to as ‘KICS website’) processes personal information for the following purposes and does not use this information for any other purposes besides the following:
- Confirmation of intent to join as a member, certifying user identification in accordance with the institute’s service provisions, membership maintenance, payment for the supply of goods and services, and the supply, delivery, etc. of goods and services.
① When KICS collects personal information from its members, it is processed and stored for some time in accordance with the internal policy on personal information retention/use and other related statutes.
② Specific personal information processing and retention periods are as follows:
- Membership subscription and management information: Until the termination of a service contract or membership
- Service-related supply records, such as e-commerce contracts, withdrawal of subscriptions, payments, usage details, etc.: 5 years
At any time, an individual may exercise the following protections concerning their personal data on the ‘KICS’ website.
① The right to request access to personal data
② The right to rectification of personal data if there is an error, etc.
③ The right to deletion of personal data
④ The right to request to stop the processing of your data
The ‘KICS website’ processes the following personal data items:
① Providing education-related services
- Required items: e-mail, mobile phone number, home address, login ID, gender, date of birth, name, position, department, company name
② Handling of civil complaints
- Required items: e-mail, mobile phone number, home address, login ID, gender, date of birth, name, position, department, company name, access log, IP access information
In principle, the ‘KICS website’ destroys the corresponding personal data without delay when the purpose of data processing is achieved. The procedure, deadline, and methods of data destruction are as follows:
① Demolition
After serving its purpose, information entered by the user is transferred to a separate DB (in the case of paper, separate documents) and destroyed immediately after being stored for some time in accordance with the internal policy and other related statutes. At that time, personal data transferred to DB is not used for anything other than legal purposes.
② Destruction
In the case that a user’s personal data has expired, the data shall be destroyed either within five days date it is deemed unnecessary to process. This occurs within five days from the end of the retention period when the purpose of data processing has been achieved, the relevant service is abolished, the relevant project is terminated,
① In order to provide you with personalized services, KICS uses what are commonly called ‘cookies’ to store and retrieve information.
② Cookies are small amounts of information sent by the server(http) used to run the website to the user’s computer browser. They are stored by your browser on your computer’s home drive.
A. Purpose of cookies: they are used to provide optimized information to users by identifying their visit and usage patterns, popular search terms, security access, etc. for each service or website they use.
B. Installation, operation, and rejection of cookies: You can refuse to save cookies by using tools>internet options>personal information menu options on the top of your web browser.
C. Refusing to save cookies may cause difficulties when using customized services.
① The ‘KICS website’ is responsible for handling personal data, and the persons in charge of handling complaints and compensation on subjects related to personal data protection are designated as follows:
▶ Personal data privacy officer
Name: Kim Soo-jung | Position: Assistant Manager | Contact: TEL : 02-3453-5555 (Ext. 2), E-mail information@kics.or.kr
▶ Department of personal data protection
Department Name: Medsoft
Person in charge: Son Soo-dong I Contact: TEL 1600-4605, E-mail sdson@medsoft.co.kr
② You may use the service (or business) provided by the KICS website to contact the personal data privacy officer or the department of personal data protection with inquiries, complaints, and requests for compensation as they relate to personal data protection.
This privacy policy is effective from the enforcement date. If there is any addition, deletion, or correction to the policy in accordance with relevant statutes or policies, you will be notified seven days prior to the implementation of the changes.
According to Article 29 of the Personal Information Protection Act, the KICS website takes the following technical, administrative, physical measures necessary to secure safety:
① Conduct a regular self-audit
To secure stability in the processing of personal data, regular (quarterly) self-audits are carried out.
② Minimizing and training staff handling personal data
We are implementing measures to secure personal data by minimizing the number of employees who handle personal data and designating the task only to those in charge.
③ Encryption of personal information
Passwords are stored and managed by encryption, so only you know them. For important data, we utilize important security features such as encryption of file and transfer data or file locking.
④ Storage of access records and prevention of forgery and alteration
Personal data processing system access records are kept and managed for at least six months. We are using security features to prevent forgery, theft, or loss of access to records
⑤ Restricting access to personal data
We take the necessary measures to control access to personal data through granting, changing, and revoking access to the database system that processes personal data. The intrusion prevention system is used to control unauthorized access from outside.
⑥ Regulating access of unauthorized persons
We have a separate physical archive where we keep personal data, and access control procedures are established and operated for this purpose.
