Enactment Date 2020.12.18

 

Article 1 (Items of personal information to be collected and methods of collection)

The company collects the minimum personal information necessary to provide the service as follows.

 

① Personal information collection items

1. When registering as a member

Required: mobile phone number, email address

2. When using and processing services

Required: service usage records, access logs, cookies, access IP information, MAC address, operating system type and version information, device information, member account information (bank name, account number, account holder name), user location information, identity verification value (CI , DI), address (for card receipt), mobile phone number

3. In the process of charging, payment, and refund

Required: merchant name, terminal information, card information (card number, CVC number, expiration date, recent transaction details, balance), account information (bank name, account number, account holder name)

 

② How to collect personal information

1. Presented by users through applications, homepages, documents, e-mails, faxes, and telephones

2. Collection through automatic collection devices of mobile devices such as computers and mobile phones

3. Provision from partner companies

 

The company may receive online user activity information (behavioral information) that cannot be identified by a partner company or directly collect it through a tool for collecting generated information, and when processing in combination with personal (identification) information held by the company The purpose of use and retention period set forth in these terms and conditions of agreement are followed.

In addition, the company may collect additional personal information while using the service, and in this case, separate personal information collection and use consent is obtained.

 

 

Article 2 (Purpose of collecting and using personal information)

The company uses the collected personal information for the following purposes.

① Service user management and service provision

1. User identification for signing, fulfilling, and terminating contracts for service provision

2. Issue, charge, pay, and refund your own card

3. Preservation of records for service use-related consultation and dispute settlement

4. Delivery of notices such as service change

5. Prevention of illegal use or unauthorized use of services by users

6. Record retention for dispute resolution

7. Online mall product delivery

8. Outbound call for card receipt confirmation, card registration and usage guidance

9. Application for income deduction

 

② Use for new service development and marketing/advertising

1. Develop new services and provide customized services by collecting statistics on service use

2. Provision of advertising information such as events and opportunities to participate

 

 

Article 3 (consignment of handling personal information to a third party)

The company handles and entrusts part of the user's personal information and business necessary for service provision to an external partner company (hereinafter referred to as "consignee"). You can check it in the posted privacy policy.

  

 

Article 4 (period of retention and use of personal information)

In principle, the company destroys the information without delay after the purpose of collecting and using personal information agreed to by the user is achieved. However, if it is necessary to preserve it according to the internal policy or the provisions of related laws, the company keeps the user's personal information for a certain period as follows.

 

① Reasons for information retention according to internal policy

1. Record of illegal use

-Reason for retention: Prevention of unlawful and unlawful receipt of economic benefits through repeated voluntary termination and prevention of illegal use through re-registration of blocked accounts-Retention period: 1 year

2. E-mail address, ID, phone number

-Reason for retention: Purpose of preparation for other necessary cases such as handling complaints of deleted members and settlement of transactions with affiliated organizations-Retention period: 1 year

 

② Reasons for information retention in accordance with relevant laws

1. Records on contract or subscription withdrawal, etc.

-Preservation basis: Act on consumer protection in e-commerce, etc.- Retention period: 5 years

2. Records on payment and supply of goods, etc.

-Preservation basis: Act on consumer protection in e-commerce, etc.- Retention period: 5 years

3. Records on handling consumer complaints or disputes

-Preservation basis: Act on consumer protection in e-commerce, etc.- Retention period: 3 years

4. Records on electronic financial transactions in which the transaction amount per transaction exceeds KRW 10,000

-Retention basis: Enforcement Decree of the Electronic Financial Transactions Act-Retention period: 5 years

5. Records on electronic financial transactions in which the transaction amount per transaction is less than 10,000 won

-Preservation basis: Enforcement Decree of the Electronic Financial Transactions Act-Retention period: 1 year

6. Homepage visit record

-Preservation grounds: Protection of Communications Secrets Act-Retention period: 3 months

7. Records on identification

-Preservation basis: Act on Promotion of Information and Communication Network Utilization and Information Protection, etc.-Retention period: 6 months

 

Article 5 (User's right to refuse collection and use of personal information, disadvantages due to rejection, etc.)

① Users may disagree with the collection and use of personal information as above. However, the above personal information is essential for providing my own card service, and if the user does not agree, it is impossible to sign up for my own card member and use the service.

 

② The company collects and uses personal information with the user's separate consent in the case of personal information that is not essential for providing personal card services such as marketing and event events.

 

③ Users can check other contents related to personal information in the company's privacy policy posted on the application screen or homepage.

 

Supplementary provision

Article 1 (effective date)

These terms will be effective from December 18, 2020.

Consent to collection/use of personal information