Privacy Policy

 

iStay (hereinafter referred to as the 'Company') values your personal information and complies with the "Act on Promotion of Information and Communications Network Utilization and Information Protection."

The Company informs you through this Privacy Policy about the purposes and methods for which the personal information you provide is used, and what measures are being taken to protect your personal information.

If the Company revises this Privacy Policy, it will notify you through website announcements (or individual notices).

 

■ Personal Information Collected

The Company collects the following personal information for membership registration, consultation, and service application:

○ Collected items: Name, date of birth, gender, login ID, password, password question and answer, home phone number, home address, mobile phone number, email, occupation, company name, department, position, company phone number, hobbies, marital status, anniversary, legal representative information, resident registration number, service usage records, access logs, access IP information, payment records, personal customs clearance code

○ Personal information collection methods: Website (membership registration), written forms

 

■ Purposes of Collection and Use of Personal Information

The Company uses the collected personal information for the following purposes:

1. Site membership registration and management: Identity verification during membership registration, service use and consultation, notification delivery, providing simple login service by linking SNS and third-party accounts

2. Provision of goods or services: Product delivery, service provision, content provision, customized service provision, settlement and refunds

3. Marketing and advertising: Analysis of website access frequency or statistics on member service usage, delivery of advertising information such as events

4. Processing of all member information transfer when migrating hosting services

*During the use of the Company's services, information such as service usage records, visit records, improper usage records, IP addresses, cookies, and advertising identifiers may be automatically generated and collected.

*Collection items may vary depending on ongoing events, so separate consent is obtained during participation, and information is destroyed immediately upon achieving the purpose.

 

■ Retention and Use Period of Personal Information

The Company destroys the relevant information without delay after the purpose of personal information collection and use has been achieved, without exception.

 

■ Procedures and Methods for Destroying Personal Information

In principle, the Company destroys the relevant information without delay after the purpose of personal information collection and use has been achieved. The destruction procedures and methods are as follows:

○ Destruction Procedure

Information entered by members for membership registration, etc., is transferred to a separate database after the purpose is achieved (separate document box for paper documents) and stored for a certain period according to internal policies and information protection reasons under other related laws (refer to retention and use period) before being destroyed.

Personal information transferred to a separate database is not used for purposes other than retention unless required by law.

○ Destruction Method

- Personal information stored in electronic file format is deleted using technical methods that prevent record reproduction.

 

■ Provision of Personal Information

The Company does not provide users' personal information to external parties in principle. However, the following cases are exceptions:

- When users have given prior consent

- When there are requests from investigative agencies according to procedures and methods prescribed by law for investigative purposes or based on legal provisions

 

■ Third-Party Provision and Consignment of Collected Personal Information

• 1. The Company does not use customers' personal information beyond the scope notified in 'Purposes of Collection and Use of Personal Information' or provide it to individuals, other companies, or institutions.

  2. The following are exceptions:

  (a) When there are requests from related agencies for investigative purposes under relevant laws

  (b) When providing to advertisers, partners, or research organizations in a form that cannot identify specific individuals for statistics compilation, academic research, or market research

  (c) When there are requests according to procedures prescribed in other related laws

   

  Even when providing personal information under the above circumstances, we will make every effort to prevent indiscriminate provision of information contrary to the original collection and use purposes. For better service provision and customer convenience, we outsource personal information processing tasks to external specialized companies as follows:

  • Consignment details and consignees

    • Computer system construction and maintenance: SixShop Co., Ltd.

    • KakaoTalk notification/SMS sending: SixShop Co., Ltd.

    • Channel Talk marketing message sending: Joy Corporation Co., Ltd.

    • Identity verification: NHN KCP

    • Product delivery tracking: SixShop Co., Ltd.

    • Delivery of ordered products: CJ Korea Express

    • Payment and escrow services: TossPayments

 

※ Information shared with consignees is limited to the minimum necessary to achieve the relevant purpose. Additionally, personal information is selectively provided to corresponding companies according to customer service requests.

※ The list of consignment companies may change according to service changes and contract periods, and changes will be announced in advance through announcements. Short-term events will be individually announced when participating.

 

■ Protection of Personal Information of Children Under 14

The Company does not accept membership registration from children under 14 years of age who require legal guardian consent.

 

■ Installation, Operation, and Refusal of Automatic Personal Information Collection Devices

The Company operates 'cookies' that periodically store and retrieve your information. Cookies are very small text files sent by servers used to operate the Company's website to your browser and stored on your computer's hard disk. The Company uses cookies for the following purposes:

▶ Purpose of using cookies, etc.

- Analyzing access frequency and visit times of members and non-members, identifying users' tastes and interests, tracking behavior, identifying event participation levels and visit counts for targeted marketing and personalized service provision

You have the right to choose cookie installation. Therefore, you can allow all cookies, go through confirmation every time cookies are stored, or refuse storage of all cookies by setting options in your web browser.

▶ Method for refusing cookie settings

Example: To refuse cookie settings, you can select options in the web browser you use to allow all cookies, go through confirmation every time cookies are stored, or refuse storage of all cookies.

Setting method example (for Internet Explorer)

: Tools at the top of web browser > Internet Options > Privacy

However, if you refuse cookie installation, there may be difficulties in providing services.

 

■ Complaint Service Regarding Personal Information

The Company designates relevant departments and personal information management officers as follows to protect customers' personal information and handle complaints related to personal information:

 

■ Revision and Notification of Privacy Policy

When revising this Privacy Policy, we will announce changes and contents through the website or email at least 7 days in advance. However, when important changes occur to users' valuable rights or obligations, we will announce them at least 30 days before the effective date.

 

Personal Information Management Officer Name: Lee Sung Jun

Phone number: 010-4022-2824

Email: laolee010126@gmail.com

 

You may report all personal information protection-related complaints that occur while using the Company's services to the Personal Information Management Officer or the relevant department. The Company will promptly provide sufficient responses to users' reports.

If you need to report or consult about other personal information violations, please contact the following organizations:

 

1. Supreme Prosecutors' Office Cyber Investigation Department (cybercid.spo.go.kr)

2. National Police Agency Cyber Terror Response Center (www.ctrc.go.kr/02-392-0330)

3. Personal Information Violation Report Center (privacy.kisa.or.kr / 118 without area code)

4. Personal Information Dispute Mediation Committee (kopico.go.kr / 1833-6972)