World Knowledge Forum takes personal information protection very seriously and abides by ¡°Information Network & Data Protection Act¡± and ¡°Personal Information Protection Law (Communications Privacy Act).¡±
Via personal information protection policy, World Knowledge Forum gives guidance on how and for what purpose the personal information you provide is used and what measures are taken to protect personal information.
From herein, ¡°the company¡± refers to the World Knowledge Forum. Please read the company (World Knowledge Forum)¡¯s policy on personal information protection below and be duly noted on how your personal information is handled while you are using the company¡¯s service. The company¡¯s personal information protection policy can change according to the company policy change and the local law and policy change. Users of the company¡¯s service should frequently check when visiting the site.
Personal information protection policy is explained following the order below:
1. Personal information collection categories and methods
2. The purpose of collecting and using personal information
3. Using the information for other purpose and providing to and sharing with a third party
4. Personal information collection agreement
5. Personal information display and correction
6. Agreement cancellation (member resignation)
7. Personal information retention and usage period
8. Personal information disposal procedure and methods
9. Technical and managerial protection policy on personal information
10. Security policy to prevent the loss, misuse, theft, and alteration of personal information
11. Personal information infringement related consultation and reporting
12. Notification obligation
1. Personal information collection categories and methods
World Knowledge Forum collects personal information below to provide basic services such as membership registration, customer consultation, and other diverse services.
[Online member]
¡Ü General members and children members: name, identification accreditation value, I-PIN number for I-PIN members, birth date, gender, ID, password, address, email, legal agent¡¯s information in case of underage (14) members, registration accreditation info (optional: cell phone number)
¡Ü Foreign members: nationality, residing nation, name, ID, password, address, email (optional: cell phone number)
¡Ü Company members: ID, password, company name, CEO name, business registration number, business type, name of the person in charge, ID accreditation number of the person in charge, email, cell phone number, company address (optional: company registration number)
¡Ü Other optional items:
- Data needed to provide customized service individually or as a group
- Data needed to provide preferred information (including advertising), after the analysis on the user preference
¡Ü When using paid service: Credit card info for payment, bank account info, cell phone number, payment records, etc.
¡Ü When using delivery service: Names of the sender and recipient, address, phone numbers, etc. Information below can also be automatically collected in the process of using the service.
¡Ü IP Address, cookie, visit date, service usage records, default usage records
Other than member registration or payment, the company may request personal information from you. For example, information can be collected if you enter a contest or a promotional event organized by the company or the company¡¯s affiliates or when you report problems about the service.
In case you contact the company, the communication can be recorded. Also, at times a survey can be conducted for research purposes. If you deem providing your information is inappropriate, you don¡¯t have to participate in the event.
Personal information collection methods are as follows:
¡Ü Collection via homepage member registration, service usage, event participation and generative information collection, member information correction, inquiry on fax, phone, and customer center, delivery request, and provision from affiliates
[Offline members]
¡Ü Newspaper subscription members: name, address, birth date, contact info (landline and cell phone numbers), payment info
2. The purpose of collecting and using personal information
World Knowledge Forum uses personal information for the following purposes. Any user-provided information will not be used for other purposes, and if the purpose were to change, we would request the user¡¯s permission.
¡Ü Contract fulfillment and payment for service provision: content provision, purchase and fee payment, product delivery or bill mailing, financial transaction identification accreditation, financial service, and fee collection, etc.
¡Ü Member management: membership service provision, individual identification, prevention of delinquent member¡¯s misuse and non-accredited usage prevention, registration and registration frequency limitation, confirmation of legal agents in case of underage (under 14) member¡¯s personal information collection, record preservation for conflict mediation, civil complaint handling such as consumer complaint, announcement notification, and member resignation intention confirmation
¡Ü Marketing and advertising purpose: new service development and customized service provision, service provision and ad placement according to demographics, service effectiveness confirmation, provision of event/ ad type information and event participation, log-in frequency assessment, statistics on members¡¯ service usage
3. Using the information for other purpose and providing to and sharing with a third party
Barring your agreement or the stipulation of the relevant law, World Knowledge Forum in no case will use or provide to other companies or institutions your personal information beyond the realm of what was specified in ¡°The purpose of collecting and using personal information.¡±
In case personal information was to be shared or provided to other parties, the company will in advance, inform you of these - who the recipient or the sharer is, what their main business is, which personal information will be shared, and the purpose of the sharing. Also, you will be given a chance to agree or deny under the personal information collection agreement procedure, or the company will notify you about the matter individually by email or by written message and ask for permission.
However, in the following cases, it is possible to share your personal information without your permission, as stipulated by the relevant law.
- When the user agreed to share the information in advance
- When an investigative institution requests the information under the stipulated law or following the legal procedure and method for the investigative purpose
- When the user or legal agent cannot express themselves or due to the reasons such as default address, advance permission cannot be obtained and when it¡¯s deemed necessary because there is obvious risk regarding the user or the third party¡¯s life, physical and property endangerment
- When providing personal information in such ways that individuals cannot be identified, for statistical and academic purpose,
To provide better service to the users, the company is affiliated with content providers and shares the minimum amount of personal information to third parties safely.
4. Personal information collection agreement
World Knowledge Forum asks for your permission to collect your personal information.
Regarding personal information collection, World Knowledge Forum provides a procedure where you can click on the ¡°agree¡± or ¡°cancel¡± button regarding the company¡¯s personal information protection policy and usage clause. If you click ¡°agree,¡± the company will accept it as you agreeing to share your personal information.
5. Personal information display and correction
You can at any time display or correct your personal information that has been registered.
If you want to display or correct your personal information, log in and go to www.wkforum.org to display or correct it yourself, or write, call or email to the personal information handler. Then, the company will take action without hesitation.
6. Agreement cancellation (member resignation)
You can at any time recant your permission regarding personal information collection, usage, and sharing that you gave at the time of member registration. To recant your permission (member resignation), you can do it yourself at www.wkforum.org or write, call or email to the personal information handler. Then, the company will take necessary actions without hesitation.
7. Personal information retention and usage period
After World Knowledge Forum membership registration, the company retains members¡¯ personal information to provide service. In principle, at the membership resignation request or when the purpose of personal information collection and usage is met, the relevant information is disposed of immediately.
However, in the following cases, member information is kept for a certain period.
1) Internal company policy
¡Ü Keeping items: ID usage records
¡Ü Reasons: to prevent indiscriminate re-registration/resignation due to a certain ID ownership dispute
¡Ü Period: Until the service expires
2) Relevant law stipulation
According to the relevant law stipulation, if necessary, the company keeps member information for a time specified by the relevant law.
¡Ü Contract or application withdrawal-related records: 5 years (Consumer Protection in E-commerce Act)
¡Ü Payment and product provision-related records: 5 years (Consumer Protection in E-commerce Act)
¡Ü Consumer complaint or dispute handling-related records: 3 years (Consumer Protection in E-commerce Act)
¡Ü Web site visit records: 3 months (Communications Privacy Act)
3) If one signs up for the service after Aug. 18, 2012, and does not use the company¡¯s site for three years, the non-service user¡¯s personal information gets disposed of or kept separately, under ¡°Information Network Promotion and Information Protection Act 29.¡± However, if there is a need to preserve personal information under the relevant law, it will be kept for a specified time.
8. Personal information disposal procedure and methods
In principle, after the purpose of personal information collection and usage is met, the relevant information gets disposed of immediately.
The disposing procedures and methods are as follows:
1) Information Disposal Procedures
¡Ü The information that the member inputs for member registration, etc. after the purpose of the information is met, will be sent to a separate DB (in case of paper, it will be sent to a separate paper file) and will be kept for a certain period of time before it gets disposed of, according to the company internal policy and other relevant act, for information protection reasons.
¡Ü Barring legal reasons, personal information that has been sent to a separate DB is not used for other purposes.
2) Disposal methods
¡Ü Electronically saved personal information gets disposed of via a method that makes record regeneration impossible.
¡Ü Paper-based personal information gets disposed of via a shredder or incinerator.
9. Technical and managerial protection policy on personal information
The company uses the following technical and managerial protection measures to secure safety to prevent loss, theft, leakage, and alteration of personal information.
1) Password Codification
The member ID¡¯s password is codified to be kept and managed, so only the person himself or herself knows it, and confirmation or change of the personal information is only possible by the person who knows the password.
2) Measures to prevent hacking
The company does its best to prevent the loss or damage of the members¡¯ personal information due to hacking or computer virus.
The data is backed up frequently to ensure against personal information damage, and by using the latest vaccine program, leakage or damage of personal information or data is prevented. Via codifying communication, personal information is safely transmitted on the network.
Moreover, via a firewall, unauthorized external access is controlled. The company exerts utmost effort to be equipped with all technical devices available to secure other systematic security.
3) Training handlers and minimizing the staff
Personal information handling is limited to the person in charge of the task, and a separate password is endowed and updated regularly. By giving frequent training to the person in charge, the company always focuses on keeping the company¡¯s personal information handling policy and guidance.
4) Personal information protection task force operation
Via the company¡¯s personal information protection task force, the company confirms personal information handling policy execution and handlers¡¯ compliance, and if a problem arises, immediate action will be taken to correct it. However, the company is not held responsible for personal information leakage problems such as ID or password leaks, arising from the user¡¯s negligence or Internet problems.
10. Security policy to prevent the loss, misuse, theft, and alteration of personal information
A password protects the user¡¯s World Knowledge Forum member information, and only the user himself or herself can access such personal information.
Through World Knowledge Forum ID and password, you can edit your member information. In no circumstances should you give your password to others.
World Knowledge Forum never asks your password by unnecessary phone call or email.
Also, when you are done, please make sure to log out of your account and close the web browser window. This is to prevent other people from viewing your personal information or communication log in case you share the computer with others or use the computer at public places such as Internet cafes of libraries. The company does its best to protect your personal information, but Internet data transmission cannot be guaranteed to be 100 percent safe. Therefore, please be extremely cautious regarding personal information protection and comply with the user¡¯s guidance for personal information protection.
Please be noted that personal information that you provide voluntarily online - for example, on the message board, email or chatting room - can be collected by others.
To reiterate, if you post your personal information online that can be accessed publicly, you can receive an unwanted reply message.
Members are responsible for the security of their membership account password. Thus, please take extra care when logged on.
User¡¯s guideline for personal information protection
¨ç Provide personal information only when necessary.
¨è When providing personal information, always check the personal information protection policy.
¨é Always choose ¡°closed¡± when you can choose ¡°open¡± or ¡°closed¡± for personal information
¨ê Do not post your or other¡¯s personal information on blogs or message boards.
¨ë Check personal information leakage by regularly searching your name, resident number and, cell phone number via search portals.
¨ì When you find out there has been personal information leakage, take an active measure such as calling on search portal sites to delete the leaked information.
11. Personal information infringement related consultation and reporting
Please direct your inquiry to the centers below if you would like to report or consult on personal information infringement.
¡Ü Personal Information Infringement Center
* Phone: 118 (no area code)
* E-mail: 118@kisa.or.kr
* URL: http://www.118.or.kr
¡Ü Supreme Prosecutor¡¯s Office Cyber Crime Investigation Team
* Phone: 02-3480-3571
* URL: http://www.spo.go.kr
¡Ü National Police Agency Counter-Cyber Terror Center
* Phone: 182 (no area code)
* URL: http://www.ctrc.go.kr
12. Notification obligation
1) In case of changing the above personal information handling policy, the company notifies on the service screen the reasons for the change and effective date together with the current personal information handling policy, from 10 days before till the date of the application.
However, should there be important changes in users¡¯ rights and duties, the notification will be up at least 30 days before the application.
2) When the company notifies the change as stipulated above, it informs the user that unless he or she expresses objection, the change will be taken as accepted by the user. Therefore the company views the user¡¯s non-expression as agreeing with the change.
3) On top of the aforementioned policy, the company asks for a separate consent from the user in case of collecting additional personal information or sharing it with a third party.
