Privacy Policy
Article 1 (Purpose)
HelloSEO (hereinafter referred to as 'the Company') establishes the following Privacy Policy (hereinafter referred to as 'this Policy') in order to protect the personal information (hereinafter referred to as 'Personal Information') of individuals (hereinafter referred to as 'Users' or 'Individuals') using the services provided by the Company (hereinafter referred to as 'Company Services'), in compliance with the Personal Information Protection Act, Act on Promotion of Information and Communications Network Utilization and Information Protection, etc. (hereinafter referred to as 'Information Network Act'), and other relevant laws, and to promptly and smoothly handle any grievances related to the protection of Users' personal information.
Article 2 (Principles of Processing Personal Information)
In accordance with the relevant laws and this Policy, the Company may collect Users' personal information, which may be provided to third parties only with the Individual's consent. However, in cases legally mandated, the Company may provide collected personal information to third parties without prior consent of the Individual.
Article 3 (Disclosure of this Policy)
The Company publicly discloses this Policy through the first screen of the Company's website or a linked screen, so that Users can easily access it at any time. When disclosing this Policy as per the foregoing, the Company shall use font size, color, etc., to facilitate easy recognition by Users.
Article 4 (Amendment of this Policy)
This Policy may be amended according to changes in laws, guidelines, notifications, or changes in government or Company Service policies or content. If the Company amends this Policy, it will announce the amendment by one or more of the following methods:
Posting on the homepage operated by the Company
Notification through written, facsimile, email, or a similar method
The Company will announce any changes to this Policy at least 7 days prior to the effective date. However, significant changes in User rights will be announced at least 30 days in advance.
Article 5 (Information for Membership Registration)
The Company collects the following information for User membership registration to the Company Services:
Article 6 (Information for Service Usage and Checking Misuse)
The Company collects the following information for statistical/analytical purposes related to the use of services and to identify and analyze misuse. (Misuse refers to activities such as repeated re-registration after membership withdrawal, cancellation after product purchase, and other activities that illicitly or unlawfully gain economic benefits such as discounts, event benefits, etc., prohibited activities stated in terms of service, identity theft, and other illicit and unlawful activities.)
Article 7 (Method of Personal Information Collection)
The Company collects personal information through the following methods:
When the User enters personal information on the Company's website
When the User enters personal information through services provided outside of the Company's website, such as applications
When the User enters personal information in response to emails sent by the Company
When the User enters personal information during consultations at customer service centers, activities on boards, etc.
Article 8 (Use of Personal Information)
The Company uses personal information in the following cases:
When necessary for Company operations, such as delivering notices
For service improvement, such as responding to inquiries and handling complaints
For providing Company services
For measures and sanctions against actions that disrupt the smooth operation of the services, including use restriction measures against members who violate laws and Company terms, prevention of misuse
For marketing purposes, such as event and promotion notifications
Article 9 (Retention and Usage Period of Personal Information)
The Company retains and uses personal information for a period necessary for the collection and use of personal information.
Notwithstanding the foregoing, the Company, according to its internal policy, retains records of service misuse for a maximum of 1 year from the date of membership withdrawal for the purpose of preventing re-registration and misuse.
Article 10 (Legal Basis for Retention and Use of Personal Information)
The Company retains and uses personal information as follows, in accordance with relevant laws:
According to the Act on Consumer Protection in Electronic Commerce, etc., retention information and period:
Records on contracts or subscription withdrawal: 5 years
Records on payment and supply of goods, etc.: 5 years
Records on consumer complaints or dispute handling: 3 years
Records on labeling/advertising: 6 months
According to the Protection of Communications Secrets Act, retention information and period:
Web log record materials: 3 months
According to the Electronic Financial Transactions Act, retention information and period:
Records of electronic financial transactions: 5 years
According to the Act on the Protection and Use of Location Information:
Records on personal location information: 6 months
Article 11 (Principle of Disposal of Personal Information)
In principle, the Company immediately disposes of the personal information when the purpose of processing personal information is achieved, and the retention and use period has elapsed, and when personal information is no longer necessary.
Article 12 (Procedure for Disposal of Personal Information)
Information entered by Users for membership registration, etc., is transferred to a separate DB (in the case of paper, a separate document box) after the purpose of information processing is achieved, and is stored for a certain period as per internal policy and other related laws (refer to retention and use period) before disposal. The Company disposes of personal information after approval by the personal information protection officer.
Article 13 (Method of Disposal of Personal Information)
The Company deletes personal information stored in electronic file formats using a technical method that makes the records irrecoverable, and personal information printed on paper is shredded or incinerated.
Article 14 (Transmission of Advertising Information)
When transmitting advertising information for profit-making purposes using electronic transmission media, the Company obtains explicit prior consent from the User. However, prior consent is not required in any of the following cases:
When the Company collects contact information directly from the recipient through transactions of goods, etc., and intends to send advertising information for profit-making purposes related to the same type of goods, etc., within 6 months from the date of transaction completion
When a telemarketing salesperson under the Door-to-Door Sales Act notifies the source of personal information collection and conducts telemarketing
Despite the foregoing, if the recipient indicates a refusal to receive or withdraws prior consent, the Company does not send advertising information for profit-making purposes and notifies the processing results of the refusal to receive and withdrawal of consent. The Company obtains separate prior consent from the recipient to transmit advertising information for profit-making purposes using electronic transmission media from 9 PM to 8 AM the next day. When transmitting advertising information for profit-making purposes using electronic transmission media, the Company clearly indicates the following in the advertising information:
Company name and contact information
Indication of matters related to refusal to receive or withdrawal of consent
The Company does not take any of the following actions when transmitting advertising information for profit-making purposes:
Actions to avoid or obstruct the refusal to receive or withdrawal of consent by the recipient of advertising information
Actions to automatically generate phone numbers, email addresses, or other contact information of the recipient by combining numbers, symbols, or characters
Actions to automatically register phone numbers or email addresses for the purpose of transmitting advertising information for profit-making purposes
Various actions to hide the identity of the advertiser or the source of advertising transmission
Various actions to deceive the recipient for the purpose of transmitting advertising information for profit-making purposes and induce a response
Article 15 (Protection of Children's Personal Information)
The Company allows membership registration only for Users aged 14 and over to protect the personal information of children under the age of 14. Notwithstanding the foregoing, if the User is a child under the age of 14, the Company obtains consent for the collection, use, and provision of the child's personal information from the child's legal representative. In the case of the foregoing, the Company additionally collects the legal representative's name, date of birth, gender, duplicate registration check information (ID), and mobile phone number.
Article 16 (Inquiry and Withdrawal of Consent for Personal Information Collection)
Users and legal representatives can inquire or modify their registered personal information at any time, and request withdrawal of consent for personal information collection. Users and legal representatives can contact the personal information protection officer or manager in writing, by phone, or email address to withdraw consent for the collection of their registration information, and the Company will take immediate action.
Article 17 (Correction of Personal Information, etc.)
Users can request correction of errors in personal information to the Company through the method of the preceding article. Until the correction of personal information is completed, the Company does not use or provide personal information, and if incorrect personal information has already been provided to a third party, the Company will notify the third party of the correction results without delay to ensure correction.
Article 18 (User's Obligations)
Users are responsible for keeping their personal information up to date and bear responsibility for any issues arising from inaccurate information input. Membership registration using someone else's personal information may result in loss of user status or punishment under relevant personal information protection laws. Users are responsible for maintaining the security of their email addresses, passwords, etc., and cannot transfer or lend them to third parties.
Article 19 (Company's Personal Information Management)
The Company takes necessary technical and managerial protective measures to ensure that Users' personal information is not lost, stolen, leaked, altered, or damaged in processing personal information.
Article 20 (Treatment of Deleted Information)
The Company processes personal information that has been terminated or deleted at the request of the User or legal representative in accordance with the "Retention and Use Period of Personal Information" collected by the Company and does not use or view it for any other purposes.
Article 21 (Encryption of Passwords)
Users' passwords are stored and managed after one-way encryption, and verification and changes of personal information are possible only by the individual who knows the password.
Article 22 (Measures Against Hacking, etc.)
The Company does its utmost to prevent Users' personal information from being leaked or damaged by hacking, computer viruses, or intrusion into information and communication networks. The Company uses the latest antivirus programs to prevent leakage or damage of Users' personal information and data. The Company uses an intrusion prevention system to ensure security against possible situations. The Company ensures the safe transmission of sensitive personal information (if collected and retained) on the network through encrypted communication, etc.
Article 23 (Minimization of Personal Information Processing and Education)
The Company limits the number of personal information handlers to a minimum and emphasizes compliance with laws and internal policies through managerial measures such as education for personal information processors.
Article 24 (Measures for Leakage of Personal Information, etc.)
If the Company becomes aware of the loss, theft, or leakage of personal information (hereinafter referred to as "Leakage, etc."), it immediately informs the relevant Users of all the following matters and reports to the Korea Communications Commission or the Korea Internet & Security Agency.
Items of personal information that were leaked, etc.
The time when the leak, etc., occurred
Measures that Users can take
Countermeasures taken by the provider of information and communication services
Departments and contact information where Users can submit consultations
Article 25 (Exceptions to Measures for Leakage of Personal Information, etc.)
Notwithstanding the foregoing article, if the Company has a legitimate reason, such as not knowing the contact information of the User, it may take measures to replace the notification of the preceding article by posting on the Company's website for 30 days or more.
Article 26 (Protection of Personal Information Transferred Overseas)
The Company does not enter into international agreements containing matters that violate the Personal Information Protection Act and other related laws regarding Users' personal information. The Company obtains the consent of Users when providing, entrusting processing, or storing (hereinafter referred to as "Transfer") Users' personal information overseas (including cases where it is accessible). However, if all the items in each item of the following paragraph are disclosed according to the Personal Information Protection Act and other related laws or notified to Users by email or other methods prescribed by Presidential Decree, the consent procedure for processing entrustment/storage may not be required. When seeking consent according to the foregoing paragraph, the Company preliminarily notifies the User of all the following matters:
Items of personal information to be transferred
The country, time, and method of transfer of personal information
The name of the person receiving the personal information (in the case of a corporation, its name and contact information of the information management officer)
The purpose of use and retention/use period of the person receiving the personal information
When the Company transfers personal information overseas after obtaining consent according to the foregoing paragraph, it takes protective measures as prescribed by the Personal Information Protection Act and related laws.
Article 27 (Installation, Operation, and Rejection of Automatic Personal Information Collection Devices)
The Company uses personal information automatic collection devices (hereinafter referred to as 'cookies') that store and retrieve usage information from time to time to provide individual customized services to Users. Cookies are small pieces of information sent by the server (http) used to operate the website to the User's web browser (including PCs and mobile devices) and may also be stored in the User's storage space. Users have the option of installing cookies. Therefore, Users can allow all cookies, check each time a cookie is stored, or refuse to store all cookies by setting options in the web browser. However, if you refuse to store cookies, there may be difficulties in using some of the services provided by the Company that require login.
Article 28 (Method of Specifying Permission for Cookie Installation)
You can set cookie permissions, such as cookie acceptance and blocking, through the web browser option settings.
Edge: Settings menu on the top right of the web browser > Cookies and site permissions > Manage and delete cookies and site data
Chrome: Settings menu on the top right of the web browser > Privacy and security > Cookies and other site data
Whale: Settings menu on the top right of the web browser > Privacy protection > Cookies and other site data
Article 29 (Designation of Company's Personal Information Protection Officer)
The Company designates the following departments and personal information protection officers to protect Users' personal information and handle complaints related to personal information.
Personal Information Protection Officer
Name: Kim Su-hyeong
Position: Management Team
Email: top1023aa@gmail.com
Article 30 (Remedies for Infringement of Rights)
Subjects of information can apply for dispute resolution or consultation, etc., to the Personal Information Dispute Mediation Committee, the Personal Information Infringement Report Center of the Korea Internet & Security Agency, etc., to receive remedies for personal information infringement. For other reports and consultations on personal information infringement, please contact the following institutions.
Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr)
Personal Information Infringement Report Center: (without area code) 118 (privacy.kisa.or.kr)
Supreme Prosecutors' Office: (without area code) 1301 (www.spo.go.kr)
National Police Agency: (without area code) 182 (ecrm.cyber.go.kr)
The Company guarantees the self-determination rights of subjects of information regarding personal information and strives to provide consultations and remedies for personal information infringement. If you need a report or consultation, please contact the department responsible for the first paragraph.
Subjects of information who have suffered infringement of rights or interests due to dispositions or inaction by the head of a public institution according to Articles 35 (Access to Personal Information), 36 (Correction·Deletion of Personal Information), and 37 (Suspension of Processing, etc., of Personal Information) of the Personal Information Protection Act can file administrative appeals according to the Administrative Appeals Act.
Central Administrative Appeals Commission: (without area code) 110 (www.simpan.go.kr)
Addendum
This Policy shall be implemented from January 21, 2024.
개인정보처리방침
제1조(목적)
헬로에스이오(이하 ‘회사'라고 함)는 회사가 제공하고자 하는 서비스(이하 ‘회사 서비스’)를 이용하는 개인(이하 ‘이용자’ 또는 ‘개인’)의 정보(이하 ‘개인정보’)를 보호하기 위해, 개인정보보호법, 정보통신망 이용촉진 및 정보보호 등에 관한 법률(이하 '정보통신망법') 등 관련 법령을 준수하고, 서비스 이용자의 개인정보 보호 관련한 고충을 신속하고 원활하게 처리할 수 있도록 하기 위하여 다음과 같이 개인정보처리방침(이하 ‘본 방침’)을 수립합니다.
제2조(개인정보 처리의 원칙)
개인정보 관련 법령 및 본 방침에 따라 회사는 이용자의 개인정보를 수집할 수 있으며 수집된 개인정보는 개인의 동의가 있는 경우에 한해 제3자에게 제공될 수 있습니다. 단, 법령의 규정 등에 의해 적법하게 강제되는 경우 회사는 수집한 이용자의 개인정보를 사전에 개인의 동의 없이 제3자에게 제공할 수도 있습니다.
제3조(본 방침의 공개)
제4조(본 방침의 변경)
제5조(회원 가입을 위한 정보)
회사는 이용자의 회사 서비스에 대한 회원가입을 위하여 다음과 같은 정보를 수집합니다.
제6조(서비스 이용 및 부정 이용 확인을 위한 정보)
회사는 이용자의 서비스 이용에 따른 통계∙분석 및 부정이용의 확인∙분석을 위하여 다음과 같은 정보를 수집합니다. (부정이용이란 회원탈퇴 후 재가입, 상품구매 후 구매취소 등을 반복적으로 행하는 등 회사가 제공하는 할인쿠폰, 이벤트 혜택 등의 경제상 이익을 불·편법적으로 수취하는 행위, 이용약관 등에서 금지하고 있는 행위, 명의도용 등의 불·편법행위 등을 말합니다.)
제7조(개인정보 수집 방법)
회사는 다음과 같은 방법으로 이용자의 개인정보를 수집합니다.
제8조(개인정보의 이용)
회사는 개인정보를 다음 각 호의 경우에 이용합니다.
제9조(개인정보의 보유 및 이용기간)
제10조(법령에 따른 개인정보의 보유 및 이용기간)
회사는 관계법령에 따라 다음과 같이 개인정보를 보유 및 이용합니다.
제11조(개인정보의 파기원칙)
회사는 원칙적으로 이용자의 개인정보 처리 목적의 달성, 보유·이용기간의 경과 등 개인정보가 필요하지 않을 경우에는 해당 정보를 지체 없이 파기합니다.
제12조(개인정보파기절차)
제13조(개인정보파기방법)
회사는 전자적 파일형태로 저장된 개인정보는 기록을 재생할 수 없는 기술적 방법을 사용하여 삭제하며, 종이로 출력된 개인정보는 분쇄기로 분쇄하거나 소각 등을 통하여 파기합니다.
제14조(광고성 정보의 전송 조치)
제15조(아동의 개인정보보호)
제16조(개인정보 조회 및 수집동의 철회)
제17조(개인정보 정보변경 등)
제18조(이용자의 의무)
제19조(회사의 개인정보 관리)
회사는 이용자의 개인정보를 처리함에 있어 개인정보가 분실, 도난, 유출, 변조, 훼손 등이 되지 아니하도록 안전성을 확보하기 위하여 필요한 기술적·관리적 보호대책을 강구하고 있습니다.
제20조(삭제된 정보의 처리)
회사는 이용자 혹은 법정 대리인의 요청에 의해 해지 또는 삭제된 개인정보는 회사가 수집하는 "개인정보의 보유 및 이용기간"에 명시된 바에 따라 처리하고 그 외의 용도로 열람 또는 이용할 수 없도록 처리하고 있습니다.
제21조(비밀번호의 암호화)
이용자의 비밀번호는 일방향 암호화하여 저장 및 관리되고 있으며, 개인정보의 확인, 변경은 비밀번호를 알고 있는 본인에 의해서만 가능합니다.
제22조(해킹 등에 대비한 대책)
제23조(개인정보 처리 최소화 및 교육)
회사는 개인정보 관련 처리 담당자를 최소한으로 제한하며, 개인정보 처리자에 대한 교육 등 관리적 조치를 통해 법령 및 내부방침 등의 준수를 강조하고 있습니다.
제24조(개인정보 유출 등에 대한 조치)
회사는 개인정보의 분실·도난·유출(이하 "유출 등"이라 한다) 사실을 안 때에는 지체 없이 다음 각 호의 모든 사항을 해당 이용자에게 알리고 방송통신위원회 또는 한국인터넷진흥원에 신고합니다.
제25조(개인정보 유출 등에 대한 조치의 예외)
회사는 전조에도 불구하고 이용자의 연락처를 알 수 없는 등 정당한 사유가 있는 경우에는 회사의 홈페이지에 30일 이상 게시하는 방법으로 전조의 통지를 갈음하는 조치를 취할 수 있습니다.
제26조(국외 이전 개인정보의 보호)
제27조(개인정보 자동 수집 장치의 설치·운영 및 거부에 관한 사항)
제28조(쿠키 설치 허용 지정 방법)
웹브라우저 옵션 설정을 통해 쿠키 허용, 쿠키 차단 등의 설정을 할 수 있습니다.
제29조(회사의 개인정보 보호 책임자 지정)
제30조(권익침해에 대한 구제방법)
부칙
제1조 본 방침은 2024.01.21부터 시행됩니다.