Last Updated : 2024-08-06
At Oksuro, we are committed to protecting and respecting your privacy. We work hard to keep your information safe and want you to use your data safely. We follow strict procedures about how we store and use personal information and limit who can see that information to prevent it from being accessed by unauthorized persons.
1. Privacy Policy
This Privacy Policy sets out the basis on which we process and use personal information we receive and collect from website visitors and members. Please read this Privacy Policy carefully to understand our practices regarding your personal information and how we will process it. ‘Website’ means the Oksuro Site.
2. Purpose of Use of Personal Information
We may collect personal information (such as Name and E-mail) when you submit inquiries, register for membership, or use other services. This personal information will not be used for purposes other than the one for which it was provided. The personal information you provide to us is used for contacting you, providing business-related information, responding to inquiries, sending electronic mail or materials, and managing membership accounts.
3. Personal Information Collection Items
This website collects the following personal information items via Google login to provide and manage your membership:
- Name: The full name of the user.
- Given Name: The first name of the user.
- Family Name: The last name of the user.
- Picture: URL of the user’s profile picture.
- Email: The user’s email address.
- Locale: The user’s locale or regional setting.
4. Legal Basis for Processing
Under GDPR, the processing of personal data involves the following legal bases:
- Consent: Obtained from the user before collecting their data.
- Contractual Necessity: For fulfilling membership services.
- Legitimate Interests: For improving services and ensuring security.
5. Personal Information Retention and Use Period
We process and retain personal information within the period specified by laws and regulations or the period agreed upon when collecting personal information from the data subject. When the purpose of collecting or providing personal information has been achieved, the user’s personal information is destroyed without delay.
- Retention Period
- Retain for 3 years after responding to Contact Us inquiries for the purposes of handling follow-up questions or potential disputes.
- Personal data will be deleted or blocked immediately when it is no longer necessary for storage purposes and there is no longer a legal obligation to retain it.
- Anonymized data for statistical purposes may be retained indefinitely.
- For the duration of the membership period and up to 30 days after account deletion.
6. Destruction of Personal Information
When personal information becomes unnecessary, such as the expiration of the retention period and the achievement of the purpose of processing, we destroy the personal information without delay. If personal information must be retained due to other laws and regulations, even after the agreed retention period has expired or the purpose of processing is fulfilled, it will be moved to a separate database (DB) or stored in a different location for preservation.
- Procedure for Destruction
- The company selects personal information for disposal when the reasons for disposal arise, and with the approval of our Data Protection Officer, we dispose of the personal information.
- Methods of Disposal
- Electronic files containing information are secured with technical methods to prevent record reproduction.
- Personal information printed on paper is destroyed by shredding or incineration.
7. Prohibition of Disclosure and Provision of Personal Information to Third Parties
We appropriately manage personal information provided by you and do not disclose personal information to third parties except in the following cases:
- After obtaining the customer’s consent.
- In the case of disclosure to a third party entrusted by our company to implement the service desired by the customer.
- When it is required in accordance with laws and regulations.
8. User Rights and Data Protection
As a user, you have rights under GDPR, including the right to access your data, correct inaccuracies, request deletion, restrict processing, and data portability. To exercise these rights, please contact us at hello@oksuro.com.
9. Responding to Requests for Disclosure, Correction, or Deletion
If users wish to disclose, correct, or delete their personal information, we will respond after confirming their identity.
10. Membership Withdrawal
Members can withdraw their membership at any time. Upon withdrawal, all personal data associated with the membership will be stored for 30 days and then destroyed, unless retention is required by applicable laws and regulations. To withdraw membership, you can delete your account immediately on your account page. For further assistance, please contact us at hello@oksuro.com.
11. Personal Information Protection Department
Under the Data Protection Act (DPA) and the General Data Protection Regulation (GDPR), we have a legal obligation to protect collected personal information. For the purposes of the DPA and GDPR, we serve as the ‘data controller’ and are responsible for the overall management of personal information. We have designated a specific individual to handle complaints and provide relief for damages to data subjects related to the processing of personal information.
- Department: STUDIO-JT CX
- Data manager: JEONG JAE WOOK
- Email: hello@oksuro.com
- Address : 49, Centum dong-ro, Haeundae-gu, Busan