Korea Payment Services Co., Ltd. (the “Company”) respects your personal information and strives to protect the personal data you provide.
    The Company endeavors to comply with the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc. and the Personal Information Protection Act.

    Through this Privacy Policy, the Company informs users about how personal information is collected, used, and protected.
    This Policy has been effective since February 2015.

    Contents

        1.General Provisions

        2.Items of Personal Information Collected and Method of Collection

        3.Purpose of Collection and Use of Personal Information

        4.Retention and Use Period of Personal Information

        5.Destruction Procedure and Method of Personal Information

        6.Provision of Personal Information to Third Parties

        7.Rights of Users and Legal Representatives and Methods of Exercising Rights

        8.Installation, Operation, and Refusal of Automatic Personal Information Collection Tools

        9.Other Matters Regarding Personal Information Handling

        10.Personal Information Protection Officer and Customer Support Information

    
1. General Provisions
    “Personal Information” refers to information that identifies an individual by name, resident registration number, etc., and also includes information that can be combined with other data to identify an individual.

    The Company complies with the relevant laws and guidelines related to personal information protection. This Privacy Policy applies to all personal information collected through the Company’s websites, applications, software, social media pages, and other online/offline services.

    The Company discloses this Policy on the Company website (https://mktgl.com/) for easy access at any time.

    
2. Items of Personal Information Collected and Method of Collection

    (1) Items Collected

    The Company may collect the following personal information when users participate in marketing activities or use services:
    

        
Information needed for identity verification and identification, such as name, position, company name, email address, mobile number, address
        
Login ID and password if login is required for particular pages, services, or content (You are responsible for keeping your credentials confidential.)
        
Service usage records, access logs, cookies, IP address generated in the course of service use or business processing (IP addresses are not linked to personal data unless you log in with a profile.)
        
The Company does not collect sensitive information that may significantly infringe on privacy (e.g., beliefs, political opinions, health, sexual life).
        
In principle, the Company does not target or collect personal information from children under 14. Where unavoidable, prior consent from a legal guardian will be obtained and the data will be destroyed without delay once the related work is completed.
    

    (2) Methods of Collection

    The Company may collect personal information through the following methods:
    

        
Via the website (e.g., content or information requests, email services, newsletter subscriptions, content downloads, event applications, inquiries, and service applications)
        
Through offline events and registrations, or via Company staff, phone, email, and fax
        
Through browsers, mobile devices, apps, and social services (including information generated via social media integrations)
        
Through consent forms where users choose “agree” or “disagree” to data collection and use
    

    
3. Purpose of Collection and Use of Personal Information
    The Company uses collected personal information for, including but not limited to, the following purposes.

    (1) Customer Management
    

        
Identity verification and prevention of unauthorized or improper use related to the Company’s business and services
        
Verification of membership intent for services provided by the Company
        
Handling complaints, delivering notices, and compiling statistics on service use and access frequency
    

    (2) Service Provision
    

        
Providing services, information, newsletters, and various contents; event entries and prize delivery for winners
    

    (3) Marketing and Advertising
    

        
Providing promotional information and targeted advertising based on demographics and interests (only for users who have given prior consent)
    
    The Company will notify users before collecting personal information and explain the purpose of collection. If the Company uses or shares personal information for purposes other than those stated, prior consent will be obtained.

    
4. Retention and Use Period of Personal Information
    In principle, personal information is destroyed without delay once the purpose of collection and use is achieved. However, when retention is required by applicable laws, the Company retains information for the statutory period and stores it in a separate database (DB) or storage location.
    

        
Records of contracts or withdrawal (5 years): Act on Consumer Protection in Electronic Commerce
        
Records of payment and supply of goods/services (5 years): Act on Consumer Protection in Electronic Commerce
        
Records of consumer complaints or dispute resolution (3 years): Act on Consumer Protection in Electronic Commerce
        
Records related to credit information collection/processing/use (3 years): Credit Information Use and Protection Act
        
Records related to labeling/advertising (6 months): Act on Consumer Protection in Electronic Commerce
        
Log records / IP tracking and other communications confirmation data (6 months): Protection of Communications Secrets Act
    

    
5. Destruction Procedure and Method
    The Company destroys personal information without delay after the purpose of use is achieved.

    (1) Procedure

    Personal information is transferred to a separate DB (or stored separately in the case of paper documents) after the purpose is achieved, kept for a certain period in accordance with internal policies and relevant laws, and then destroyed. Personal information stored in the separate DB will not be used for any purpose other than retention unless required by law.

    Deletion request email: eddykim@mktgl.com (processed within one week)

    (2) Method
    

        
Electronic files: permanently deleted using technical methods so that records cannot be restored
        
Paper documents: shredded or incinerated
    

    
6. Provision of Personal Information to Third Parties
    The Company does not provide personal information to external parties except in the following cases:
    

        
Where required by law or a lawful request by investigative agencies
        
Where necessary for fee settlement related to paid services
        
Where provided in an unidentifiable (anonymized) form for statistics, academic research, or market research
        
Where the user has given prior consent
    

    
7. Rights of Users and Legal Representatives and Methods of Exercising Rights
    Users and legal guardians may request access, correction, deletion, suspension of processing, and withdrawal of consent at any time. The Company may refuse a request only in the following cases:
    

        
Where access is prohibited or restricted by law
        
Where there is a risk of harming another person’s life, body, property, or other interests
    
    If a correction is requested for an error in personal information, the information will not be used or provided to third parties until the correction is completed. If incorrect personal information has already been provided to a third party, the Company will promptly notify the third party of the correction results.

    Users are responsible for keeping their information accurate and up to date and for protecting their personal information (e.g., passwords). Entering false or others’ information may result in loss of membership qualifications and legal liability.

    
8. Installation, Operation, and Refusal of Automatic Personal Information Collection Tools
    Like many websites, the Company uses cookies to provide customized services and improve convenience when users revisit the website. Cookies may store and retrieve user information as needed.

    (1) Cookies

    Cookies are generally classified as “session” cookies and “persistent” cookies. Session cookies do not remain on your computer after you close your browser, while persistent cookies remain until deleted or expired.

    (2) Purpose of Using Cookies

    Implementing auto-login, analyzing access frequency and visit times, identifying user preferences and interests, tracking participation in events, and providing targeted marketing and personalized services.

    (3) Refusing Cookies

    Users can choose to accept all cookies, confirm each time a cookie is saved, or refuse all cookies by adjusting browser settings. However, refusal may limit certain services.

    
9. Other Matters Regarding Personal Information Handling
    To ensure the safety of personal information against loss, theft, leakage, alteration, or damage, the Company implements the following technical and administrative measures.
    

        
Establishment and implementation of internal management plans and periodic compliance checks
        
Operation of access control systems and intrusion prevention systems
        
Retention and protection of access logs to prevent forgery or tampering
        
Encryption and secure storage/transfer of personal information and important data
        
Minimization of staff with access rights and regular security/Privacy training
        
Security pledges by all employees and strict procedures for onboarding/offboarding and handover
        
Controlled access to server rooms and document storage as special protection zones
    

    (1) Links and External Services

    The Company may provide links to other websites or allow use of third-party products and services through the Company’s services. The Company does not control and is not responsible for third-party sites, materials, products, or services. When you move to an external site by clicking a link, please review that site’s privacy policy.

    (2) Posting Policy

    The Company values users’ posts and protects them from alteration, damage, and deletion, except in the following cases.
    

        
Spam posts
        
Posts defaming others by spreading false information
        
Posts disclosing personal information of others without consent
        
Posts infringing intellectual property rights of the Company or third parties
        
Posts unrelated to the subject of the bulletin board
    
    To foster a sound community, the Company may delete or mask personal information in posts and indicate the move path when relocating posts to the appropriate board.

    (3) Ban on Unauthorized Email Collection

    The Company prohibits the unauthorized collection of email addresses using email collection programs or other technical devices.

    (4) Transmission of Advertising Information

    The Company does not send for-profit advertising information against the user’s explicit refusal. Advertising emails will include the sender’s name, email address, and phone number, and provide a clear opt-out method.


    
10. Personal Information Protection Officer and Customer Support
    (1) Personal Information Protection Officer
    

        
Name: Kwangjin Cha
        
Position: Team Leader, RM Team
        
Contact: +82-10-9084-4600
    

    (2) Related Institutions

    If you need to report or consult on personal information infringement, please contact the institutions below.
    

        
Privacy Infringement Center (www.118.or.kr / 118)
        
Supreme Prosecutors’ Office Cyber Bureau (www.spo.go.kr / 02-3480-2000)
        
National Police Agency Cyber Bureau (www.netan.go.kr / 1566-0112)