Megazone PoPs Privacy Policy

MegaZone Cloud Co., Ltd. (hereinafter referred to as the “Company”) is doing its best to protect users’ personal information and rights, and is complying with the Personal Information Protection Act and other related laws to smoothly handle complaints related to users’ personal information. The Company provides information on procedures and standards for personal information processing and methods for handling complaints through its Personal Information Processing Policy, and makes it easy to check revisions through version management when revisions are made.

Article 1 (Purpose of processing personal information)

The company collects personal information for the following purposes. The personal information being processed will not be used for purposes other than the following, and if the purpose of use changes, necessary measures such as obtaining separate consent will be taken.

1. Purpose of processing personal information

Article 2 (Items of personal information collected)

The company collects and processes the following personal information.

1. Personal information items collected to provide services

2. Information automatically collected while using the service

3. The company does not collect personal information of children under the age of 14.

Article 3 (Processing and retention period of personal information)

The company processes and retains personal information in accordance with the retention and use period of personal information stipulated by law or the retention and use period of personal information agreed upon by the user.

1. The processing and retention period for each personal information is as follows.

2. The mandatory retention period according to relevant laws is as follows:

Article 4 (Entrustment and overseas transfer of personal information)

In order to ensure smooth business operations, the company entrusts personal information processing tasks to domestic and foreign entities as follows.
‍
1. Details of domestic entrustment of personal information

2. Details of overseas consignment of personal information

3. The company requires the trustee to take technical and administrative protective measures to safely process users’ personal information, such as safe processing of personal information, management of personal information access or access records, prohibition of use for purposes other than the intended purpose, restriction of re-entrustment of entrusted work, and encryption, and regularly manages and supervises whether the trustee is safely managing personal information.

Article 5 (Provision of personal information to third parties)

The company processes users' personal information only within the scope specified in the "Purpose of Personal Information Processing" and may provide personal information if the customer consents or if information is requested in accordance with procedures stipulated by law.

1. Provision of personal information to third parties (when providing integrated authentication services to Megazone Group companies)

Article 6 (Destruction of personal information)

The company destroys personal information without delay when the personal information becomes unnecessary, such as when the retention period for personal information expires or the processing purpose is achieved.

1. In cases where the retention period for personal information agreed upon by the data subject has expired or the purpose of processing has been achieved, but personal information must be retained in accordance with other laws and regulations, the personal information will be transferred to a separate database (DB) or stored in a different location.

2. The procedures and methods for destroying personal information are as follows.

1) Personal information saved in electronic file format is permanently deleted so that the records cannot be reproduced.
2) Personal information recorded and stored in paper documents shall be shredded or incinerated.

Article 7 (Measures to ensure the security of personal information)

The company is taking the following measures to ensure the security of personal information.

1. Management measures: Establishment and implementation of internal management plan, regular employee training, etc.
2. Technical measures: Management of access rights to personal information processing systems, storage of access records, safety measures to prevent forgery and falsification, installation of access control systems, encryption of unique identification information, installation of security programs, etc.
3. Physical measures: Access control to computer rooms, archives, etc.

Article 8 (Matters concerning installation, operation and refusal of automatic personal information collection devices)

1. The company uses ‘cookies’ to store and periodically retrieve usage information in order to provide personalized services to users.

2. Cookies are small pieces of information that the server (http) used to operate the website sends to the user's computer browser and are also stored on the hard disk of the user's PC computer.

1) Purpose of cookie use: Cookies are used to provide optimized information to users by identifying the visit and usage patterns, popular search terms, and whether or not the access is secure for each service and website visited by the user.
2) Cookie installation/operation and rejection: You can reject cookie storage by setting options in the Tools > Internet Options > Privacy menu at the top of the web browser.
3) If you refuse to store cookies, you may experience difficulties using customized services.
4) How to reject cookie settings
ⅰ) Internet Explorer: Tools > Internet Options > Privacy > Advanced Privacy Settings > Set Cookie Level
ⅱ) Chrome: Settings > Privacy and Security > Delete Internet Usage History > Set Cookie Level
ⅲ) Safari: Preferences > Privacy > Set Cookies and Website Data Level
iv) Microsoft Edge: Settings > Cookies and site permissions > Manage and delete cookies and site data > Set cookie level

Article 9 (Personal Information Protection Manager and Department in Charge)

The company is responsible for the overall management of personal information processing, and has designated a personal information protection officer as follows to handle complaints and provide remedies for damages from information subjects related to personal information processing. The following measures are being taken to ensure the safety of personal information.

1. Personal information protection manager and department in charge

Article 10 (Rights and obligations of users and legal representatives and methods of exercising them)

1. Users may exercise their rights regarding the protection of personal information regarding the following items at any time by contacting the reception/processing department listed in the Personal Information Rights Guarantee below.
‍
1) Request to view personal information
2) Request for correction in case of errors, etc.
3) Request for deletion
4) Request for suspension of processing

2. When exercising the rights under Paragraph 1, the Company will take action without delay in accordance with the Personal Information Protection Act.
‍
3. If a user requests correction or deletion of personal information due to errors, etc., the company will not use or provide the personal information until the correction or deletion is completed.

4. The rights under Paragraph 1 may be exercised through the user's legal representative or authorized person, etc. In this case, a power of attorney in the format of Appendix 11 of the Notice on Personal Information Processing Methods (No. 2020-7) must be submitted.

5. If there are special provisions in the law, requests to view personal information and suspend processing may be rejected.

6. Requests for correction or deletion of personal information cannot be made if the personal information is specified as a collection target in other laws.

7. When requesting access, correction/deletion, or suspension of processing in accordance with the user's rights, the company verifies whether the person making the request is the user or a legitimate agent.

Article 11 (Department responsible for processing requests for access to personal information, etc.)

Users can check the department below to view, correct, delete, or suspend processing of their personal information in accordance with the Personal Information Protection Act.
The company will endeavor to ensure that users' exercise of their rights is processed promptly.

Article 12 (Methods of relief for infringement of user rights)

If you need to report or consult about a personal information infringement, please contact the following organizations.

Article 13 (Responsibility for Link Sites)

The Company may provide users with links to other companies' websites or materials. In this case, the Company has no control over external sites and materials, and therefore cannot be held responsible for or guarantee the usefulness of services or materials provided through external sites. Therefore, if you click on a link included in the Company and move to a page on another site, please check the reliability of that site, and since the privacy policy of the site you have visited is unrelated to the Company, please check the policy of the newly visited site.

Article 14 (Changes to Personal Information Processing Policy)

If there are additions, deletions, or corrections to the personal information processing policy in accordance with related laws and policies, we will notify you without delay through the website, and you can check the previous version of the personal information processing policy through the relevant page.

This Privacy Policy applies from 05 August 2024.

You can check the previous privacy policy below.