Go to the main text

DONGA

Language

Go

Home Privacy and information Processing Policy, etc.
open Privacy and information Processing Policy, etc.
Enlarge text Reduce text

Privacy Policy

Dong-A Publishing Co., Ltd. (hereafter referred to as the "Company") complies with the relevant statutory provisions regarding the protection of personal information, including the Personal Information Protection Act and the Act on the Promotion of Telecommunication Network Utilization and Information Protection. The Company is committed to safeguarding the rights and interests of data subjects, such as its customers, employees and website users, and has established its own Privacy Policy in accordance with the relevant legislation.

The Company, through its Privacy Policy, informs you of the purposes and procedures of collecting personal information as well as protection measures to be taken. In case of any update or revision to the Privacy Policy, the Company will announce such change either on its website’s Notices or by means of individual communication.

The Company’s Privacy Policy is composed of three parts pertaining to: the “Personal Information Treatment Policy” for the protection of the personal information of all data subjects with whom the Company deals; the “Personal Information Handling Policy” regarding the information of users of the homepage operated by the Company; and the “Management Policy on Visual Data Processing Equipment” pertaining to the protection of personal information on video.

However, affiliated websites of the Company may have different policies on personal information treatment.

  • 1. Personal Information Treatment Policy
  • 2. Personal Information Handling Policy
  • 3. Management Policy on Visual Data Processing Equipment

1. Personal Information Treatment Policy

01. General Provisions

  1. - “Personal Information" refers to the personally identifiable information of a living person, that is, information that can be used on its own or with other information to identify an individual, such as a name, resident registration number and image or picture, (including any information by which alone a certain individual may not be identifiable but which can be used to identify an individual easily in combination with other information).
  2. - “Data Subject" refers to the identifiable person that the data in question relates to. It is an individual who is the subject of personal information.
  3. - The Company discloses the Personal Information Treatment Policy on the first screen of the website (printing.dong-a.com) to facilitate verification of the policy at any time and will announce any changes or revisions to this policy via a notice posted on its website or by individual communication.

02. Purpose for Treating Personal Information and Items Treated

Without legal provisions or consent of the data subject, the Company does not treat any sensitive information that may significantly compromise the privacy of its provider or any unique identifiable information assigned to distinguish a specific individual from others.

A. Data items processed

  1. - Name, e-mail address, country of residence, company name, and access log

B. Purposes of treatment

  1. - To respond to and handle user inquiries and complaints

03. Treatment and Retention Periods of Personal Information

In principle, collected personal information will be destroyed immediately after the purpose for which it is collected has been achieved. However, the following information will be retained for the duration of the designated period for the reasons set forth below:

  1. - Items retained: name, e-mail address, country of residence, and company name
  2. - Retention period: One year
  3. - Reasons: To manage user inquires and requests, identify users, etc.
  1. - Items retained: Records of service usage, access log, cookies, and connecting IP address data
  2. - Retention period: Three years
  3. - Reasons: To enhance service quality through the analysis of usage patterns

04. Procedures and Methods of Destroying Personal Information

A. Destruction procedures

The Company destroys personal information without delay once it has achieved the purpose of its collection or the retention period has expired, except in cases where its retention is required due to the data subject's consent, the Terms of Use, or relevant laws and regulations.

B. Methods of destruction

  1. - Personal information stored in electronic file formats shall be deleted using technical methods that prevent the recovery of its records.
  2. - Personal information in paper form shall be shredded or incinerated.

05. Provision of Personal Information to a Third Party

The Company uses personal information only within the scope laid out in "02. Purpose for Treating Personal Information and Items Treated” and does not abuse it in excess of the established scope nor disclose it to a third party. However, the following cases shall be exceptions:

  1. - Consent of the data subject has been received separately;
  2. - There are special provisions in other relevant laws;
  3. - It is impossible to obtain prior consent of the data subject or its legal representative because the data subject is not in a state that he/she can express his or her intention or because his or her address is not known, but it is clearly deemed necessary for imminent life, health or property interests of the data subject or a third party;
  4. - Or personal information is to be provided for statistical or research purposes in a format in which a particular individual is not identifiable.

06. Outsourcing of Personal Information Processing

The Company does not outsource the processing of personal information to an external firm without prior consent of the relevant data subject.

07. Rights and Obligations of Data Subjects and Methods of Exercising the Rights

Every data subject may demand access to, as well as correction, deletion and suspension of, his or her personal information that the Company holds. However, the Company may refuse or limit the above-mentioned demand under the following conditions:.

  1. - There are special provisions in the law or it is inevitable to comply with statutory obligations;
  2. - There is concern that harm may be caused to the lives or bodies of others, or the property or other interests of other people may be unduly infringed upon;
  3. - Or it is difficult to fulfill a contract, including agreed services, with the data subject without processing the personal information, while the data subject has not shown clearly the intention to terminate the contract.

<Methods and procedures of exercising rights>

  1. - The data subject who wants to view his or her personal information may submit a View/Correction/Deletion/Suspension Request in writing, by e-mail or by fax to the department in charge. (See "09. Complaints Handling Service Regarding Personal Information" for details on the department in charge.)
  2. - The Company will take action to respond to the request within 10 days unless there is a justifiable reason. If there is any reason for rejecting or limiting such a request, the Company shall inform the requestor of the reason as well as a process for filing an objection within five days.
  3. - The Company may verify the identity of the data subject or his or her representative who requests access to his/her personal information by checking his or her identification card, such as resident registration card, a certified electronic signature, or other equivalents.

08. Technical, Administrative and Physical measures to Protect Personal Information

The Company takes the following safety measures to prevent personal information from being lost, stolen, leaked, altered, or damaged:

<Technical measures>

  1. - The Company complies with the standards required by law for the secure storage and transmission of personal information.
  2. - Using antivirus software, the Company takes steps to prevent any damage that may be caused by computer viruses. The Company updates the antivirus program periodically and prevents the violation of privacy in case of the sudden outbreak of a new virus by providing its new version as soon as it is available.
  3. - To guard against external attacks such as hacking, the Company does everything it can to ensure security by utilizing an intrusion prevention system and a vulnerability assessment system for each server.

<Administrative measures>

  1. - The company restricts access to personal information to those whose job involves sales and marketing activities directly dealing with data subjects, those in charge of maintaining personal information, and those who inevitably need to handle personal information to do their job.
  2. - Employees who handle personal information are regularly provided with in-house and outsourced education and training on the protection of personal information. They are managed and supervised thoroughly to comply strictly with the laws and regulations related to the protection of personal information after joining the Company for work and even after retiring from the Company.

<Physical measures>

  1. - For the secure storage of personal information and systems processing such information, protection measures are taken to prevent physical access, such as physical locking devices.
  2. - The computer room and data storage room are designated as special protection areas and put under strict access control.

09. Complaints Handling Service Regarding Personal Information

The Company has assigned the following department and officer in charge to protect personal information and respond to complaints regarding personal information:

A. Department in charge

  1. - Department: System Development Team, PI Team
  2. - Phone: 02-3670-5414
  3. - Fax: 02-3670-5008
  4. - E-mail : doosanDong-A_service@doosan.com
  5. - Working hours: 09:00 – 18:00 on Monday – Friday, closed on Saturday – Sunday

B. Chief Privacy Officer

  1. - Name: Lee, In
  2. - Phone: 02-3670-5414
  3. - E-mail: doosanDong-A_service@doosan.com

If you want to report an infraction on personal information or need advice in this regard, please contact the following organizations:

  1. - Personal Information Dispute Mediation Committee (www.kopico.or.kr) at 02-405-5150, or dial 118 (privacy.kisa.or.kr)
  2. - Privacy Complaint Center (privacy.kisa.or.kr): (no station number) 118
  3. - Internet Criminal Investigation Center of the Supreme Prosecutor's Office (cybercid@spo.go.kr) at 82 2 02-3480-3571
  4. - Cyber Terror Response Center of the National Police Agency (www.netan.go.kr) at 1566-0112

10. Obligation of Notification

Any addition, deletion and modification of the current Personal Information Treatment Policy will be publicly announced through a notice on the website at least 10 days prior to the revision.

  1. - Date of Announcement: February 28, 2014
  2. - Date of Enforcement: February 28, 2014

2. Personal Information Handling Policy

Dong-A Publishing Co., Ltd. (“Dong-A Publishing”) recognizes the importance of your personal information and complies with the Act on Promotion of Information and Communication Network Utilization and Information Protection. Dong-A Publishing hereby informs you of the purposes for which, and methods in which, we may use your personal information and of the actions taken to protect your privacy. If the privacy policy is modified or updated, Dong-A Publishing will inform you of the details by providing a notice on its website or through individual notification. The following privacy policy shall be applied to this website (printing.dong-a.com, “this Site”):
This policy will take effect on February 28, 2014.

01. Matters of Installation, Operation and Rejection of Automatic Personal Data Collection Mechanism

The Company operates cookies that frequently store and access your personal information. A cookie is a small piece of text sent to your web browser by a web server that is used to run the website. It is also stored on the hard disk of your computer. The Company uses cookies for the following purposes:

  1. - To analyze the frequency of access or visiting hours of members or non-members, store information about user preferences, or track user’s web browsing habits;
  2. - And to provide target marketing and personalized services through analysis of user participation in events and number of visits.

You have a choice on whether you install cookies.
You may allow all cookies, give confirmation every time a cookie is saved, or reject storage of all cookies by setting an option in your web browser.

How to make the settings to allow or block cookies (taking Internet Explorer as an example):
Tools (at the top of the web browser) > Internet Options > Privacy

But, if you block cookies, you may have difficulty using certain services.

02. Purposes of Collection

Dong-A Publishing may collect your personal information for the following purposes:

  1. - To provide customer services, such as membership management and complaints handling;
  2. - To provide users with better services and improve the level of this Site by conducting online market research or opinion polls in which users may give their ideas;
  3. - For marketing or advertising purposes, in cases where prior consent has been granted;
  4. - And to implement provisions of service contracts, if any, and to provide billing content for services provided.

03. Items of Personal Information Collected

Dong-A Publishing collects the following personal information to provide counseling or process service requests:

  1. - Items collected: Name, e-mail, company name, country of residence, service access log, cookies, and connecting IP address
  2. - Method of collection: Website (Contact Us, Online Reporting Center)

04. Disclosure of Personal Information

Personal information collected through this Site is not disclosed to a third party, except in cases where you give prior consent, or where your personal information is required by law to be disclosed to a third party, such as an investigative agency, judicial authorities or other government organizations.
Exceptions shall be made in the following cases:

  1. - In cases where prior consent is given;- or
  2. - Under the provision of law or upon the request of an investigative agency for investigative purposes in accordance with the procedures and methods stipulated by law.

Dong-A Publishing does not provide your personal information to a third-party outside of the Company without your prior consent. If it is necessary to disclose your personal information to an outside company to provide the service you have requested, Dong-A Publishing will inform you of the identity of the company as well as details of requested services and obtain your prior consent.

05. Rights of Users and Legal Representatives and How to Exercise the Rights

You and your legal representative, at any time, may request to view or modify your registered personal information as well as to withdraw your agreement. Please contact our personal information department in writing, by telephone or e-mail, and we will respond promptly. If you request to correct an error in your personal information, your personal information will not be used or provided before the correction is completed. If the incorrect piece of your personal information has been provided to a third party, that third party will be promptly notified of the result of the correction. Dong-A Publishing handles the personal information that has been canceled or deleted at the request of you or your legal representative in the manner provided under Period of Retention and Use and ensures that it cannot be viewed or used for other purposes.

06. Retention and Destruction of Personal Information

Any information that you have provided will be banned from use for purposes other than record-keeping or complying with relevant laws and regulations. Such information will also be destroyed without delay, without exception, upon achievement of the purposes of its collection and use. However, if you wish to remove your personal information from our records, the information for which such a request is received will be destroyed in its entirety, immediately upon your request, and no information shall be retained in our archives unless the retention period of such information required by relevant laws and regulations expires later than the requested timing of destruction. Procedures and methods of data destruction shall be as follows:

A. Period of Retention and Use

  1. - Data retained: Name, e-mail address, country of residence and company name.
  2. - Retention period: One year
  3. - Reason for retention: To handle user inquiries/requests, identify users, etc.
  4. - Data retained: Service usage data, access information, cookie, and IP address
  5. - Retention period: Three years
  6. - Reason for retention: To collect statistical data regarding service usage

B. Destruction Procedures

The information that you have entered is transferred to a separate database (a separate file folder if in paper form) after its purposes have been achieved, to be saved for internal policy and other information protection reasons pursuant to relevant laws and regulations (see the “Period of Retention and Use”) for a specified period of time, and will then be destroyed. The data transferred into the separate database, unless permitted by law, shall not be used for purposes other than retention.

C. Method of destruction

Personal information stored in an electronic file format shall be deleted using a technical method that ensures that the information will be irretrievable.

07. Links to Sites Outside of this Site

This Site may contain links to external websites, and Dong-A Publishing shall not be liable for the content of the linked websites or their use. You agree that use of the linked websites is subject to the privacy policy of those websites.

08. Protection of Personal Information

Dong-A Publishing maintains strict safety devices to prevent unauthorized or inappropriate access to personal information by restricting its employees from accessing or using personal information.

09. Customer Support Service for Personal Information

The Company has assigned the following department and officer to protect personal information and respond to complaints regarding personal information:

A. Chief Privacy Officer

  1. - Name: Lee, In
  2. - Phone: 02-3670-5414
  3. - Fax: 02-3670-5008
  4. - E-mail: doosanDong-A_service@doosan.com

B. Personal Information Department

  1. - Department: System Development Team, PI Team
  2. - Phone: 02-3670-5414
  3. - Fax: 02-3670-5008
  4. - E-mail: doosanDong-A_service@doosan.com
  5. - Working hours: 09:00 – 18:00 on Monday – Friday, closed on Saturday – Sunday

To report an infringement of the Personal Information Handling Policy or make an inquiry regarding the Personal Information Handling Policy, please contact the following organizations:

  1. - Personal Information Dispute Mediation Committee (www.kopico.or.kr) at 02-405-5150, or dial 118 (privacy.kisa.or.kr)
  2. - Privacy Complaint Center (privacy.kisa.or.kr): (no station number) 118
  3. - Internet Criminal Investigation Center, Supreme Prosecutor's Office (cybercid@spo.go.kr) at 82 2 02-3480-3571
  4. - Cyber Terror Response Center, National Police Agency (www.netan.go.kr) at 1566-0112

Date of Announcement: February 28, 2014
Date of Enforcement: February 28, 2014

3. Management Policy on Visual Data Processing Equipment

01. Basis and Purposes of Installing Visual Data Processing Equipment

The purposes of the Management Policy on Visual Data Processing Equipment (hereinafter as "the Policy") are to promote the proper execution of business activities and contribute to ensuring the interests of data subjects by establishing the provisions with which Dong-A Publishing Co., Ltd. (hereinafter “the Company”) shall comply regarding the installation and operation of visual data processing equipment and the protection of personal information on video, in accordance with Article 25 of the Personal Information Protection Act.

02. Principles of Protection of Personal Information on Video

The Company collects personal information on video by limiting it to the minimum necessary to meet the purpose of installing visual data processing equipment; ensures that this purpose will be recognized clearly by data subjects; and does not use the data for any other purposes. The Company is committed to managing personal visual data safely, disclosing details on the processing of personal visual data and guaranteeing the rights of data subjects of personal visual data.

03. Designation of an Administrator

The Company manages the installation and operation of data processing equipment dealing with personal information on video at an individual business unit level. The following details are disclosed at the individual websites run by each of the business units:

  1. - Officer in charge, responsible departments, and administrators
  2. - Number, location, and scope of recording of visual data processing equipment installed
  3. - Information about the outsourcing of installation and operation of visual data processing equipment

04. Installation of Signs

The Company takes necessary measures so that data subjects can easily recognize the installation and operation of visual data processing equipment, including installation of a sign that states the following information:

  1. - Purpose and place of the installation, scope and time of recording, the administrator's name, job title and contact details
  2. - In case the installation and management are outsourced, the outsourced firm's name and contact details

A sign shall be installed at a location within the shooting range where it can be easily noticed, in a manner that anyone can understand. The size of the sign shall be 40cm ⅹ 30cm. However, the size may be changed depending on the condition of the location.

05. Data Subject’s Request to Review

A data subject may request to view and verify the existence of (hereafter referred to as “review") his or her own personal visual data that the Company handles.

When the Company receives a review request, it shall take necessary measures without delay and may verify the identity of the requestor, or his or her legitimate representative by asking the requestor to submit a document that identifies the requestor, such as a resident registration card, driver’s license or passport.
The Company may refuse a data subject’s review request in any of the following cases, in which case written notification shall be sent to the data subject, within 10 days, stating reasons for the rejection and procedures for filing an protest:

  1. - The personal visual information has been destroyed as the retention period expired.
  2. - There is a justifiable reason for rejecting the data subject's review request.

06. Management of Visual Information

When personal visual information is used or provided to a third party for any purposes other than the collection thereof in accordance with the data subject's consent or the provisions of relevant laws and regulations, the following details shall be recorded and maintained on the "Personal Visual Data Management Records":

  1. - Name of personal visual data file;
  2. - Name of the person who uses or receives the information;
  3. - Purpose of the use or provision;
  4. - Statutory grounds of the use or provision, if any;
  5. - Period of the use or provision, if there is a period of time specified for which it can be used or provided;
  6. - And form of the use or provision.

In the case of destruction of personal visual information, it is required to record the following details on the "Personal Visual Data Management Records":

  1. - Personal visual data item to be destroyed
  2. - Date of destroying the personal visual data (in case of automatic deletion for which the deletion timing is pre-determined, its deletion cycle)
  3. - Personnel in charge of destruction of personal visual information

07. Retention and Destruction

The Company destroys personal visual information collected without delay, when the retention period set forth in the Policy has expired. However, this does not apply if there are special provisions in other applicable laws.

The destruction methods of personal visual information are as follows:
Output (pictures, for example) containing personal visual information shall be shredded or incinerated.
Personal visual information in the form of electromagnetic video file shall be deleted permanently with an unrecoverable technical method.

08. Technical, Administrative and Physical Measures to Protect Personal Information

The Company restricts access to personal visual information collected by and processed with visual data processing equipment to minimum designated personnel, such as officers responsible for managing such information and administrators in charge of maintaining it.
The places where personal visual information transmitted by the processing equipment is viewed and played are designated as restricted access areas to control access to the areas as well as viewing and playing of such data by people other than authorized personnel.
The Company modifies or deletes, without delay, the authorizations of those whose access authorizations have been changed for personnel reasons such as transfer or retirement.

When processing or transmitting personal visual data or personal video files, the Company takes necessary measures, including password setting, to ensure security, so that it will not be lost, stolen, leaked, damaged or altered.

To prevent alteration or forgery of personal visual information, the Company checks whether the visual data processing equipment is properly running on a regular basis.
Date of Announcement: February 28, 2014
Date of Enforcement: February 28, 2014


Up