Home > privacy policy

Privacy policy

"Galleria Jang" (hereinafter "the Company") regards your personal information and abides by the Act on Promotion of Information Network Usage and Information Protection.
The Company will disclose the personal information provided through the Personal Information Protection Policy to the purpose and the manner in which it is used and the measures taken to protect personal information.
The company will notify you through the website announcement (or individual announcement) when revising the privacy policy.
Ο Privacy Policy Notice Date : February 10, 2017
Ο This policy will be effective on : February 10, 2017

Consent to collect personal informationThe Company shall establish a procedure by which you can click the "I Agree" button or the "I Disagree" button on the contents of the Company's privacy policy or Terms of Use and click the "Agree" I agree with you.

Protecting Children's Privacy Ο The company obtains the consent of the legal representative when collecting personal information of children under 14 years old.
Ο A legal representative of a child under the age of 14 years may request the viewing, correction and withdrawal of the child's personal information. If such a request is made, the company will take necessary measures without delay.

Items of Personal Information Collected The company collects the following personal information for membership registration, consultation, service application, and so on.
Ο Collection items  : Name, date of birth, gender, login ID, password, home phone number, home address, mobile phone number, email, occupation, marital status, social security number, service usage history, access log, cookie, connection IP information, payment record
Ο How to collect personal information : Homepage (membership, bulletin board, etc.), delivery request

Purpose of Collection and Use of Personal InformationThe Company uses the collected personal information for the following purposes.
Ο Settlement of fees for contract implementation and service provision
Providing content, purchasing and payment, shipment or billing
Ο Member Management
Access to membership service, we need to check personal identification, prevention of unauthorized use of bad member and prevention of unauthorized use, membership confirmation, the identity of the legal representative of a child  in case of collecting personal information under the age of 14, delivery the notice
Ο Marketing and Advertising
Statistics on events such as advertising information transmission, frequency of access or use of services by members
However, we do not collect sensitive personal information (such as race, ethnicity, ideology, creed, hometown and homeland, political orientation and criminal record, health status, and sex life) that may be of concern to your basic human rights violations.

Period of Retention and Use of Personal Information Ο Personal information will be destroyed when the purpose of collecting personal information or the purposes for which it was received is accomplished as follows.
- In the case of membership information, when a member withdraws from membership or is expelled from membership
- In the case of payment information, the completion date of the payment or the expiration of the due date
- In the case of delivery information, when the goods or services are delivered or provided (except when it is necessary to preserve them according to the provisions of the Commercial Act, etc.)
Ο Despite the above retention period, we will accept your consent if we need to keep it.

Procedures and Methods of Destroying Personal Information As a general rule, after the purpose of collecting and using personal information is achieved, the Company will destroy the information without delay. The procedure and method of destruction are as follows.
Ο Destruction procedure
The information entered by the member for membership, etc., is transferred to a separate DB after the purpose has been accomplished (in the case of paper, a separate document box). According to the internal policy and other relevant laws and regulations, Period is saved and discarded. Personal information transferred to a separate DB will not be used for any other purpose other than that held by law unless otherwise required by law.
Ο Destruction method
- Personal information stored in an electronic file is deleted using a technical method that can not play the record.

Providing Personal Information The company does not provide the user's personal information to the outside in principle. However, except as follows.
- If the users have agreed in advance.
- In accordance with the provisions of the Act, or for the purpose of investigation, if the investigation agency is required by the procedures and methods prescribed in the Act.
Outsourcing the Processing of Collected Personal Information

The Company may entrust your personal information to an external entity for the purpose of improving the service. Ο We will notify you in advance if we consign the handling of personal information.
Ο In the case of entrusting the processing of personal information, it stipulates strictly the instructions of the service provider regarding the protection of personal information, the confidentiality of personal information, the prohibition of third party provision, We will keep the contents in writing or electronically.
- Outsourcee : [Name of the courier]
- Outsourced work : [Delivery details] e.g. Delivery of goods
- Outsourcee : [Name of PG company]
- Outsourced work : [PG company details] e.g. purchase and payment

Users’ Rights and Legal Representatives and How to Exercise the Rights You may view or modify your registered personal information at any time and may ask you to terminate your subscription.
In order to view or modify the personal information of users, you must click "Leave membership" to cancel the membership change (or "Revise membership information") (consent withdrawal) Or you can leave.
Or, if you contact the person in charge of personal information management, please contact us by phone or e-mail and we will take action without delay.
If you request correction of errors in your personal information, we will not use or provide your personal information until you have completed the correction. Also, if wrong personal information is already provided to a third party, we will notify the third party without delay and correct the result of the correction.
The Company will treat personal information that has been terminated or deleted at the user's request as described in the "Retention and Use Period of Personal Information Collected by the Company" and is prohibited from being viewed or accessed for any other purpose.

Technical Measures to Protect Personal Information In handling your personal information, the Company takes the following technical measures to ensure that personal information is not lost, stolen, leaked, altered, or damaged.
Ο Your personal information is protected by a password. Encrypting files and transferring data or using a file lock (Lock), important data is protected by separate security features.
Ο The company uses vaccine programs to take measures to prevent damage from computer viruses. Vaccine programs are updated periodically, and if sudden viruses appear, we provide them as soon as they become available to prevent personal information from being compromised.
Ο The company adopts a security device (SSL or SET) that can securely transmit personal information on the network using a cryptographic algorithm.
Ο In order to prevent your personal information from being leaked by hacking or the like, we use a device to block the intrusion from the outside. Each server is equipped with an intrusion detection system to monitor intrusion for 24 hours.

Installation · Operation and Refusal of Automatic Collection of Personal Information The company operates 'cookies' that store and find your information from time to time. A cookie is a small text file sent to your browser by the server used to run one's website and stored on your computer's hard disk.
The company uses cookies for the following purposes :
▶ Purpose of using cookie
- Provide targeted marketing and personalized services by analyzing the frequency and duration of membership and non-member visits, identifying user's tastes and areas of interest, tracking traces, participating in various events, and checking the number of visits.
You have the option of installing cookies. Therefore, you can allow all cookies by setting options in your web browser, check each time a cookie is saved, or refuse to save all cookies.
▶ How to decline cookie setting
For Example: To decline cookie settings, you can accept all cookies by selecting the option of your web browser, check each time you save cookies, or refuse to save all cookies.
Example of setting method (for Internet explorer)
: Tools> Internet Options> Privacy at the top of your web browser
However, if you refuse to install cookies, it may be difficult to provide services.

Complaints about Personal Information In order to protect customer's personal information and to deal with complaints related to personal information, the Company designates the relevant department and personal information manager as follows.
Chief Privacy Officer : Jang, Eun Bae
Phone : 010-2649-0911 (82-10-2649-0911)
E-mail : davidchang@gmail.com
You may declare any privacy complaints that may arise as a result of your use of the Company's services to the person in charge of Personal Information Management or your department. The Company will respond promptly and adequately to the reports of users.
If you need to report or consult about other privacy infringement, please contact the following organizations.
1. The Personal Dispute Mediation Committee (www.1336.or.kr/1336)
2. Information Protection Mark Certification Committee (www.eprivacy.or.kr/02-580-0533-4)
3. Internet Crime Investigation Center (http://icic.sppo.go.kr/02-3480-3600)
4. The Cyber ​​Terror Response Center (www.ctrc.go.kr/02-392-0330)