Privacy Policy
Company places a high value on your personal information and is committed to protecting it.
Therefore, the Company complies with relevant laws and has established a privacy policy and made it public on the Company's website so that members can easily access it at any time.
The privacy policy disclosed by the Company may be changed from time to time in accordance with the Company's policy, and in the event of significant changes, the Company shall notify members through the Company's website so that members can check the changes.
1. General Rules
① “Personal information” shall refer to information about a living individual, including information that can identify a specific individual through name, mobile phone number, etc. (including information that can be easily combined with other information to identify a specific individual even if the information alone cannot identify a specific individual).
② The Company complies with applicable laws to safely process personal information of its valuable members. Through the Privacy Policy, the company shall inform members of the purpose and manner in which the personal information that members provide is used and what measures are being taken to protect personal information.
③ The Company posts the Privacy Policy on the first screen of the Company's website so that members can easily view it at any time.
④ In order to continuously improve the privacy policy, the Company has established procedures for revising the privacy policy.
2. Collection and Use of Personal Information
Members can freely access most of the contents without a separate membership registration process.
① Personal information items collected and used for the service
|
Purpose of collection |
Items to be collected |
Retention and use period |
|
|
Members |
- Confirmation of intent for membership registration and identification of members - Performance of contract and provision of services - Statistics and analysis of product and service usage performance information - Improvement and recommendation of products and services, prevention of illegal and fraudulent use |
Email address, password, name, Phone number |
- Destroy without delay 5 days after request for withdrawal - In accordance with company policy, records of unauthorized use of the service are kept for one year from the time of membership withdrawal and then destroyed to prevent unauthorized registration and use. - Provided that, if it is required to be preserved for a certain period of time in accordance with relevant laws, it shall be destroyed after that period of time. |
|
- Simple login - Member identification, fulfillment of contract and provision of services |
Shop.app: email address, mobile phone number |
||
|
Delivery of ordered goods |
Delivery information (recipient's name, recipient's shipping address, recipient's mobile phone number) |
||
|
Payment for product purchases |
- For simple payment: Payment method - For credit card payment: Card name, card authorization number |
||
|
CS consultation for handling member's complaints |
email address, name, mobile phone number, order number, home phone number |
Securely store for 3 years and destroy in accordance with relevant laws |
|
|
Non-members |
- Payment and refund of ordered products - Customer consultation and handling of complaints and civil affairs - Statistics and analysis of product and service usage performance information - Improvement and recommendation of products and services, prevention of illegal and fraudulent use |
Contact information (email address or mobile phone number), delivery information (recipient's name, recipient's shipping address, recipient's mobile phone number) |
- Destroy without delay when the purpose of use is fulfilled - In accordance with company policy, records of unauthorized use of the service are kept for one year from the time of use to prevent unauthorized subscription and use, and then destroyed. - Provided that, if it is required to be preserved for a certain period of time in accordance with relevant laws, it shall be destroyed after that period of time. |
|
Payment for product purchases |
- For simple payment: Payment method - For credit card payment: Card name, card authorization number |
||
|
Handling CS consultation for non-member complaints |
Name of the customer, customer's mobile phone number, home phone number, order number, address, email address |
Securely store for 3 years and destroy in accordance with relevant laws |
|
|
CS consultation for handling complaints of third parties (recipients of the products) |
Name, mobile phone number, home phone number, address, and email address of the recipient of the product |
② Items of Personal Information Collected and Used for Marketing and Advertising
A. The Company collects and uses the following items with consent from a member.
③ The Company may collect personal information through the following methods:
A. Website, written materials, customer center, event entry, telephone, fax, consultation bulletin board, e-mail
B. Collection through generation information collection tool
④ The Company recognizes the importance of protecting children's personal information in the online environment. The Company accepts membership only from a person whose age is 14 years or older who does not require the consent of a legal representative.
3. Provision of personal information for a third party
① The Company shall not provide personal information to a third party without the consent of the member, or for purposes other than those for which it was provided, except in cases where there are special provisions in laws. Provided that, exceptions may be made in the following cases.
A. In the event that consent is obtained from the member
B. In the event that there are special provisions in the law or if it is inevitable to comply with the obligations under the law
C. In the event that it is clearly recognized as necessary for the urgent interests of life, body, or property of a principal of information or a third party
D. In the event that it is necessary to achieve the legitimate interests of the Company and clearly overrides member’s rights
E. In the event that it is urgently necessary for the safety and well-being of the public, including public health, etc.
F. In the event that it does not unreasonably infringe on your interests to the extent that it is reasonably related to the purpose of collecting and necessary measures have been taken to ensure safety.
② In other cases where it is necessary to provide personal information to a third party, the company may provide personal information to a third party with the consent of a member through due process. In this case, personal information shall be provided only to those who have consented, the information provided shall not be used outside of the stated purpose of use, and members’ information shall be managed securely in accordance with laws related to personal information protection.
③ A member may refuse to consent to the provision of personal information to a third party, and withdraw your consent to the provision of personal information to a third party at any time. In the event of refusal to consent, a member can still use the membership service, but the use/provision of services based on third-party provision may be restricted.
4. Consignment of personal information processing
① The Company may consign the processing of a member’s personal information to an outside party for the purpose of improving its services, and shall ensure that personal information is managed safely in accordance with the provisions of relevant laws.
가. Post matters related to the consignee, scope of consignment, etc. through the website
나. In the event of consignment contract, the Company shall comply with the service provider's instructions regarding personal information protection, obtain the consent of the consignor in advance when re-consigning, maintain the confidentiality of personal information, prohibit the provision of personal information to a third party and bear responsibility in the event of an accident, the period of consignment, and the return or destruction, etc. of personal information after the completion of processing, and store the contents of the contract in writing or electronically.
다. In the event of a change in contents of the consigned work or the consignee, the Company shall disclose it through this Privacy Policy without delay.
|
Consignee |
Consigned works |
|
DHL |
Third-party logistics agency service International product delivery, delivery product location check and return collection service |
|
Shopify |
Developing new services (products) and providing customized services, sending information for events and advertisement, and providing participation opportunities |
|
Channel Corp. |
Providing customer consultation solutions and sending notification talks |
|
Shopify Inc. |
Building and maintaining computerized system |
|
Shopify Inc. |
Processing payments such as credit card and cash payments, etc. which are necessary for product payment |
|
Google LLC |
5. Processing and retention period of personal information
① The Company shall retain and use your personal information for the period agreed upon. Provided that, a member’s personal information shall be destroyed in accordance with the Company's policy when the purpose of collecting or providing it is fulfilled, or when a member requests to withdraw from the Company in accordance with the procedures set forth in the Company's Terms of Use. Provided that, in the event of any of the following cases, the Company shall keep and use your personal information until the stated period.
A. In the event that the Company is required to keep personal information by law
B. In the event that personal information is required to be kept by company policy
ㄱ. Records on prevention of unauthorized use (ID, email, mobile phone number)
a. Grounds for retention: Exclusion from fraudulent transactions
b. Retention period: Store for 1 year from membership withdrawal and then destroy
6. Procedure and method of destruction of personal information
① The Company shall, in principle, destroy personal information without delay after the retention period of personal information has elapsed or the purpose of personal information processing has been achieved.
② Personal information is destroyed in a way that cannot be reproduced. Information that is obligated to be preserved by law shall also be destroyed in a way that cannot be reproduced without delay after the applicable period. Personal information stored in the form of electronic files shall be deleted using technical methods that make it impossible to reproduce the records, and personal information printed on paper shall be destroyed by shredding or incineration.
7. Member's Rights, Obligations, and Methods of Exercise
① Members may request correction, withdrawal of consent, deletion, or access to their personal information at any time. Provided that, in the event of withdrawal of consent or deletion, you may be restricted from using some or all of the services. To view and correct your personal information, please log in to the website, click “Modify Member Information>Profile” and send an e-mail request to the Personal information protection officer (privacy@mardimercredi.com), and we will respond without delay.
② The Company shall take necessary measures to make it easier to withdraw consent to the collection of personal information (withdrawal of membership) than the method of collecting personal information.
③ Members shall be requested to keep their personal information up to date and accurately to prevent any untoward incidents. A member shall be responsible for any accidents caused by inaccurate information entered by the member him/herself, and in the event of entering false information, such as stealing other people's information, a member may lose your membership
④ Along with the right to privacy, a member shall also have the obligation to protect him/herself and not infringe on others' information. Please be careful not to disclose your personal information, including passwords, and be careful not to damage the personal information of others, including posts. If you fail to fulfill these responsibilities and damage the privacy and dignity of others, you may be punished under applicable laws.
8. Posts
① The Company shall value your posts and do its best to protect them from being altered, damaged, or deleted. Provided that, this shall not be the case in the following cases.
A. Posts that defame others by spreading false facts for the purpose of slandering others
B. Disclosing the identity of others without their consent, infringing on rights such as the company's copyright or the copyright of a third party, or post containing other content that is different from the subject matter of the bulletin board
C. In order to promote a desirable bulletin board culture, the Company may delete certain parts of the personal information of others or modify it with symbols, etc. without their consent.
D. In other cases, the Company may delete the post after an explicit or individual warning.(e.g: profanity, spammy posts, etc.).
② Fundamentally, all rights and responsibilities related to the post shall belong to the author. In addition, information voluntarily disclosed through posts is difficult to be protected by the Company, so please think carefully before disclosing information.
9. Installation/operation and rejection of automatic personal information collection devices
① What are cookies?
The Company uses “cookies” to store and retrieve information about you from time to time. A cookie is a small amount of information that a website sends to your computer browser.
② Purpose of using cookies
A. To provide differentiated information according to individual interests
B. Analyze the frequency of access or visiting time, etc. and identify your preferences and interests to improve targeted marketing and services.
③ Installation, operation, and rejection of cookies
A. Cookies identify your computer but do not identify you personally. You also have the right to choose matters about cookies.
B. By going to the Tools > Internet Options tab at the top of your browser, you can choose to: accept all cookies, have us send you a notification when a cookie is placed, or refuse all cookies
C. If you choose to reject cookies, you may have difficulty using some services, such as services that require login, etc.
④ In the process of using the Service, we collect the following behavioral information without identifying individuals in order to provide customized services and benefits, providing online customized advertisements, etc.optimized for the principals of information.
(1) Information on Collection, Use, and Provision of Behavioral Information
|
Classification |
Details |
|
|
Items of Behavioral Information Collected |
Browsing history, visit history, service usage history including product orders and payments, IP address, user device information (device make, model, operating system, browser information), advertising identifier |
|
|
Method of Collecting Behavioral Information |
Automatically collected and transmitted based on cookies when accessing the website |
|
|
Purpose of Collecting Behavioral Information |
Statistics and analysis of service usage performance, improvement of services and development of related new services, provision of customized product recommendation services, customized advertising, provision of customized benefits and product/service information, and measurement of advertising performance |
|
|
Retention and Use Period of Behavioral Information |
|
Storing and processing for 24 months from the time of collection |
(2) Providing Behavioral Information
|
Classification |
Details |
|
Recipients of Behavioral Information |
Shopify |
|
Items of behavioral information provided |
Browsing history, visit history, service usage history including product orders and payments, IP address, user device information (device make, model, operating system, browser information), advertising identifier |
|
Purpose of use by the recipient of behavioral information |
Providing customized advertisements to users |
⑤ Users can block the collection of behavioral information for the purpose of customized advertising at any time through the following methods. Provided that, even if you block the collection of behavioral information, you may be exposed to advertisements that are less relevant to you.
(1) In the event of blocking the collection of behavioral information in a web browser
|
Chrome |
On the right top corner of your web browser, click More > Settings > Privacy and security > Cookies and other site data |
|
Edge |
On the right top corner of your web browser, click Settings & more > Settings > Cookies & site permissions > Cookies & stored data |
|
Safari |
Safari > Preferences > Privacy > Cookies and Website Data |
10. Matters concerning measures to ensure safety, including technical and administrative protection measures for personal information
① Technical measures
A. The Company encrypts and stores important personal information to protect your personal information.
B. The Company uses the latest antivirus program to prevent leakage or damage of members' personal information or data by computer viruses, etc.
C. The Company encrypts personal information and authentication information with a secure encryption algorithm when transmitting and receiving them on the network.
D. The Company uses an intrusion prevention system (firewall) to control unauthorized access from the outside to prevent leakage of information due to hacking, etc. and strives to equip all possible technical devices to ensure systemic security.
② Administrative Measures
A. The Company shall do its best to verify your identity in the best possible way when handling your personal information, such as by requesting to reissue your password, etc. and to ensure that the information is handled safely.
B. The Company shall limit access to personal information to those who perform personal information management duties, such as the personal information protection officer, and others who are required to process personal information in the course of their work, and always emphasizes compliance with the obligation to protect personal information through regular training for employees who process personal information.
③ In addition to the Company's efforts as described above, you must be careful not to expose your personal information, such as your ID and password, on the Internet or leak such to others. The Company is not responsible for any leakage of your personal information, such as your ID and password, due to your own carelessness or negligence in managing it.
④ Therefore, it is recommended that only you use your ID and password, change your password frequently, and use a password that is difficult for others to infer by combining English letters, numbers, and special characters.
⑤ We also recommend that you always log out and close your web browser when you are finished using the Service. This is especially necessary to protect your personal information if you share your computer with others or use the Service in a public place.
11. Privacy Officer and Contact Information
The Company has designated a person in charge of personal information protection to protect your personal information and handle complaints related to personal information. For all complaints related to personal information protection arising from using the Company's services, please contact the following person in charge of personal information protection and the department in charge.
① Personal information protection officer
A. Name: WON DOHEE
B. Department: Information Security Team
C. E-mail: privacy@mardimercredi.com
D. Working hours: Weekdays 9:00 ~ 18:00 (Lunch break: 13:00 ~ 14:00), based on Korea Standard Time (KST).
② For complaints related to personal information protection, please use e-mail.
12. Duty to Notify
In the event of any additions, deletions, or modifications to the current privacy policy due to changes in laws, policies, or security technology, etc., we shall notify you through the ‘Notices' on the website at least 7 days before the revised privacy policy is implemented.