Article 2. Retention, Use, and Disposal of Personal Information1. The Company primarily stores personally identifiable information only on the user's mobile device and only stores non-identifiable attribute data (such as DID, authentication type, and authentication time) on the MYKEEPiN service server.2. If a user no longer wishes to use the service and uninstalls the app, the personal information stored on the device will be deleted.3. In cases where retention of personal information is required by relevant laws, the Company may retain personal information for the period defined by those laws. In such cases, the Company will use the retained information only for the specified purpose and will delete it after the retention period defined by the law.- Records of visits: 3 months (Telecommunications Privacy Protection Act)
4. Methods of Disposal- Personal information stored in electronic file format will be deleted using technical methods that prevent recovery.
Article 3. Provision of Personal Information to Third PartiesThe Company will use personal information only within the scope disclosed in the "Purpose of Collection and Use of Personal Information" section of this Privacy Policy or as specified in the service terms and conditions. The Company will not use personal information beyond this scope or provide it to third parties, except in the following cases where user consent is obtained or as allowed by law.1. Telecommunications Providers① Recipients: SK Telecom, KT Corporation, LG Uplus② Purpose of Use: Prevention of fraudulent use through identity verification (certificate issuance/renewal/deletion, service provision)③ Personal Information Provided: Mobile phone number, name, date of birth, gender, CI④ Retention and Use Period: Until the app is deleted (Information is encrypted and stored on the user's device; the service does not store personal information)2. Using Institutions① Recipients: Institutions selected by the user to verify the consistency of the user’s electronic signature information and verification data using the certificate issued by the Company.② Purpose of Use: Use of certificate service, prevention of fraudulent use through signer identification, member identification, and customer service.③ Personal Information Provided: Mobile phone number, name, date of birth, gender, telecom provider information, user identifier (CI).④ Retention and Use Period: Until the app is deleted (Information is encrypted and stored on the user's device, and the service does not store personal information. However, information may be retained for the period required by relevant laws.)3. Agencies① Recipients: Agencies or intermediaries that provide or facilitate certification tasks, such as certificate signing and related services, under an agency or partnership agreement with the "Company," or that mediate services between the "Using Institutions" and the "Company" for the provision of the "Service."② Purpose of Use: Intermediation of certificate services.③ Personal Information Provided: Mobile phone number, name, date of birth, gender, telecom provider information, user identifier (CI), certificate information.④ Retention and Use Period: Until the app is deleted (Information is encrypted and stored on the user's device as a certificate, and the service does not store personal information. However, if required by relevant laws, the information may be retained for the period specified by law.)Third-Party Disclosure OverviewMetaFi, Galaxia Money Tree Co., Ltd., ComicsV Co., MagicEq, Donyu Co., Deli in CVS, Fraud Prevention, Kookon Co., Korea Credit View, Flybit Exchange, MYKEEPiN Wallet※ Specific details regarding each recipient and purpose are available for review.Article 4. Rights and Obligations of the Data Subject and How to Exercise Them- Users have the right to view, modify, or request the deletion of their personal information, as well as request the termination of membership, at any time.
2. When users modify their personal information, the updated information will be immediately reflected on the user's device. Additionally, if the personal information has been provided to third parties, the modifications will be updated for them as well.Article 5. Installation and Operation of Automatic Collection Devices and RefusalThe Company uses automatic data collection devices such as cookies to store and retrieve information about you. Cookies are small text files sent from the website's server to your browser and stored on your computer’s hard drive. The Company uses cookies for the following purposes:① Analyzing access frequency or visit times, identifying user preferences and interests, tracking user behavior, and providing target marketing and customized services. You have the option to accept or refuse cookies by adjusting your browser settings.② Cookie Refusal Method: You can select settings in your web browser to accept all cookies, check cookies before they are stored, or refuse all cookies.For example, in Internet Explorer: Tools > Internet Options > PrivacyArticle 6. Technical and Administrative Measures for the Protection of Personal InformationThe Company implements the following technical and administrative measures to ensure the security of personal information and prevent loss, theft, leakage, alteration, or destruction:1. MYKEEPiN App Security① Access to the MYKEEPiN mobile app is secured through biometric authentication or PIN code authentication. The private key used for coin transactions is securely stored in the device's Secure Enclave (S.E.), ensuring high security.2. Measures Against Hacking① Personal information is stored only on the user's device and can be accessed only after the user grants permission.3. Minimization and Training of Personnel① The Company limits the handling of personal information to authorized personnel, who are assigned unique passwords that are regularly updated. Personnel undergo regular training to ensure compliance with the Privacy Policy.Article 7. Privacy Protection Officer and Remedies for Rights Violations1. Privacy Officer and DepartmentThe Company has designated a Privacy Officer to oversee personal information processing, handle user complaints, and provide remedies related to personal information processing.- Position: Privacy Protection Officer- Name: Kim Deok-Hyun- Email: [email protected]- Phone: 1899-9942 (Excluding lunch hours, weekends, and public holidays
)2. Remedies for Privacy ViolationsUsers can request dispute resolution or consultations regarding personal information violations from the Personal Information Dispute Mediation Committee, the Korea Internet & Security Agency (KISA) Personal Information Infringement Report Center, or other relevant agencies.- Privacy Infringement Reporting Center: 118 (https://privacy.kisa.or.kr/)- Cybercrime Investigation Division: 1301 (https://cybercid.spo.go.kr/)- Cyber Terrorism Response Center: 182 (https://ecrm.police.go.kr/)Article 8. Changes to the Privacy PolicyAny additions, deletions, or modifications to this Privacy Policy will be announced at least 7 days prior to implementation via the service or website.Article 9. Notification of Privacy PolicyPrivacy Policy Announcement Date: 2022. 1. 24Privacy Policy Effective Date: 2022. 2. 1