CreaTech (hereinafter referred to as the 'the company') establishes and discloses guidelines for personal information processing in order to protect the personal information of the main body of information and to handle the difficulties swiftly and smoothly.
① Civil Service Handling
The medical institution processes personal information for the purpose of verifying the identity of the petitioner, verifying the complaint, contacting for the fact investigation, and notifying the outcome of the transaction.
1. The purpose of processing personal information files registered and disclosed by this company pursuant to Article 32 of the Privacy Act is as follows. The personal information files collected and held on the basis of the provisions of the Act are as follows.
| Operation base | Regulations for Operation of the Company |
|---|---|
| Processing purpose |
- intervention in a crisis situation and in-depth consultation of an in-person - Link and apply this company's operating program - References made to requests for consultation |
| Personal information items recorded in personal information file | Email, mobile phone number, home phone number, home phone number, password, sex, date of birth, name, academic background, legal representative's home phone number, legal representative's home number, and legal representative |
| Retention period | Regulations for Operation of the Company |
① This company processes and retains personal information within the retention and use period of personal information pursuant to the Act or the period of personal information collected by the information subject.
② Each personal information processing and retention period is as follows.
1. Civil Service Handling : If personal information becomes unnecessary, such as the expiration of the period of personal information retention and the achievement of processing purpose, the personal information is destroyed without delay.
The company processes the personal information of the information subject within the scope specified in Article 1 (for the purposes of processing personal information) and provides the personal information to third parties only when it falls under Article 17 of the Privacy Act, including the consent of the parties and special provisions of the Act.
① The information subject may exercise his or her right to personal information protection at any time to the Company.
1. Personal information access demand
2. Correct errors, etc.
3. Deletion request
4. Processing settlement
② The rights under paragraph 1 may be exercised through the company's written form, telephone, e-mail, or transmission of the copy (FAX), and the support center will take proper action.
③ If the information subject requires correction or deletion of personal information errors, the company shall not use or provide such personal information until the correction or deletion is completed.
④ The exercise of rights under paragraph 1 may be through a representative, such as a legal representative of the information body or a person who has been delegated. In this case, you must submit a letter of attorney according to the form No. 11 of the Enforcement Rules of the Privacy Act.
⑤ he information subject shall not violate the privacy and privacy of the information subject to this company's handling by violating relevant laws such as the Privacy Act.
① Civil Service Handling
Mandatory : Email, mobile phone number, home phone number, home phone number, password, sex, date of birth, name, academic background, legal representative's home phone number, legal representative's home number, and legal representative
① This company destroys personal information without delay when it becomes unnecessary, such as the expiration of the period of personal information retention and the achievement of processing purpose.
② In case the personal information is kept under other laws even though the personal information retention period agreed by the information subject has expired or the processing purpose has been achieved,
Transfer personal information (or personal information file) to a separate database (DB) or archive location.
③ Procedure and procedure for personal information destruction are as follows.
1. Disposal procedure
The company selects the personal information (or personal information file) that caused the destruction, and the company destroys the personal information (or personal information files) with approval from the personal information protection manager.
2. Destruction method
The company destroys personal information recorded and stored in electronic file format by using low level format, etc,
Personal information recorded and stored in a paper document is shredded or incinerated with shredder.
The company takes the following actions to secure personal information safety.
1. Conducting regular self-audit
In order to ensure stability in handling personal information, we conduct our own tests on a regular basis (once a year).
2. Minimizing and educating personal information handling staff
We implement measures to manage personal information by appointing employees who handle personal information, limiting them to those in charge.
3. Establishing and implementing an internal management plan
The internal management plan is established and executed for the safe handling of personal information.
4. Restrict access to personal information
We take necessary measures for controlling access to personal information through granting, changing, and terminating access to the database system that handles personal information.
① The information subject may use the company's service (or business) for all inquiries concerning personal information security, complaints, and damages, and personal information access request under Article 35 of the Privacy Act
You can contact the person in charge of protection and the department in charge.
The company will promptly respond to and process inquiries from the information subjects.
-Tel : 051-780-8100
② In addition to the application/processing department under paragraph 1, the information subject can also request personal information through the Ministry of Public Administration and Security's website
The Ministry of Public Administration and Security's Comprehensive Support Portal for Privacy → personal information complaints → Personal information access lamp demand
For the information, you can inquire about the following agencies for personal information infringement and counseling.
[The agency below is a separate entity from this company, so please contact us if you are not satisfied with the company's own personal information complaints, or if you need further assistance.]
Comprehensive support portal for personal information protection (Operation by Ministry of Public Administration and Security)
- Subordinate Duties : Report of personal information violation, request for consultation, and provide data
- Homepage : www.privacy.go.kr
- Tel : 02-2100-3394
Personal Information Infringement Notification Center (operated by Korea Internet & Security Agency)
- Subordinate Dutie : Report of personal information violation and request consultation
- Homepage : privacy.kisa.or.kr
- Tel : (without national interest) 118
- Adress : (138-950) 135 Korea Internet Service Privacy Report Center
Personal Information Infringement Notification Center (operated by Korea Internet & Security Agency)
- Subordinate Dutie : Personal information conflict adjustment application, collective conflict adjustment (private resolution)
- Homepage : privacy.kisa.or.kr
- Tel : (without national interest) 118
- Adress : (138-950) 135 Korea Internet Service Privacy Report Center
Cyber Terror Response Center
- Subordinate Dutie : Inquiries and reports on criminal cases related to personal information infringement
- Homepage : www.netan.go.kr