In order to protect the freedom and rights of data subjects, "Nexen Tire Co., Ltd." (hereinafter referred to as the "Company") legally processes and safely manages personal information in accordance with the Personal Information Protection Act and related Acts and subordinate statutes.
In accordance with Article 30 of the Personal Information Protection Act, the personal information processing policy is established and disclosed as follows to guide the procedures and standards for processing and protecting personal information, and to promptly and smoothly deal with related grievances, the personal information processing policy is established and disclosed as follows.
Article 1. Purpose of personal information processing
The personal information processed by the company will not be used for any purpose other than the following purposes, and if the purpose of use is changed, necessary measures will be taken, such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.
- Membership registration and management
: Confirmation of membership intentions, identification by providing membership services, customer consultation, delivery and confirmation of various notices
- Use for marketing and other advertisements (selected)
: Provide opportunities to participate in events, notifications of location exchanges, store guidance, product introductions, car and tire information
- Luxury warranty system service provided
: Enpera Offers Winter Luxury Guarantee System Benefits
- 1:1 Customer Inquiries
: Customer consultation, complaint handling, complaint handling
- Subscribe to Newsletter
: Send Newsletters
- Subscribe to the newsletter
: Send company magazine
- Apply for Magazine
: Subscribe to Magazine (Booklet)
- A reader's opinion
: Collection of readers' opinions
- Quiz entry
: Use it to ship products when winning a Hello Nexen quiz event
Article 2. Personal information processing and retention period
The company holds and maintains personal information that has been agreed upon when collecting personal information from the information subject or from the information subject according to the law, and processes and retains personal information within the period of use.
- The retention and usage period of each personal information is as follows.
-
Use in advertising such as membership registration and management/marketing/Providing luxury guarantee system services: Until withdrawal of membership
※ Provided, That where an investigation, investigation, etc. is in progress due to a violation of relevant statutes, until the relevant investigation and investigation are completed
- 1:1 Customer Inquiry: 2 years from the date of collection
- Subscribe to newsletter/company magazine subscription: Until subscription is terminated
- Application for Magazine: Until the purpose of use is achieved
- Reader's opinion: Until the purpose of use is achieved
- Quiz entry: Destroy without delay after achieving the purpose of use
-
However, if the company needs to preserve it according to the provisions of the relevant laws and regulations, it will keep some personal information for the period set by the relevant laws and regulations as follows.
- Records on transactions, such as labeling and advertising, contract details, performance, etc., under Article 6 of the Enforcement Decree of the Consumer Protection Act on Electronic Commerce, etc
- Display and advertising records: 6 months
- Record of withdrawal of contract or subscription, payment and supply of goods, etc.: 5 years
- Record of consumer complaints or dispute settlement: 3 years
- Storage of data confirming the fact of communication under Article 15-2 of the Communications Secret Protection Act
- Computer communications, Internet log records, access point tracking data: 3 months
Article 3. Provision of personal information to a third party
-
The company processes the personal information of the data subject only within the scope specified for the purpose of processing the personal information, and provides personal information to third parties
only if they fall under Articles 17 and 18 of the Personal Information Protection Act, such as the consent of the data subject and special provisions of the Act, and does not provide personal information of the data subject to third parties other than that.
- The company may provide personal information to related organizations without the consent of the data subject in the event of an emergency such as a disaster, an infectious disease, an event or accident that poses an urgent life or physical risk, or an urgent loss of property.
Article 4. Outsourcing personal information processing
- The company entrusts the personal information processing work as follows for smooth personal information processing.
|
Outsource
|
Detail of Outsourced work
|
Third Party Links
|
|
NICE Evaluation Information Co., Ltd
|
Identification for membership registration
|
|
|
The Digilog Co., Ltd
|
Home page development and operation management
|
Dow Technology Co., Ltd.: Texting agency
Amazon Web Services, Inc.: Data archiving and backup, infrastructure management
|
|
Planning for Daetong Co., Ltd
|
Company magazine Production and subscriber management
|
IronT Lab Co., Ltd.: System maintenance
DMA & IPG Co., Ltd.: Shipping agency
|
- In accordance with Article 26 of the Personal Information Protection Act, the company stipulates matters concerning responsibilities such as prohibition of processing personal information other than the purpose of performing consignment work, technical and administrative protection measures, re-entrustment restrictions, management and supervision of trustees, and compensation for damages in documents such as contracts,
and supervises whether the trustee handles personal information safely.
- If the contents of the consignment work or the trustee changes, we will disclose it without delay through this personal information processing policy.
Article 5. Personal Information Items to be Processed
The Company is processing the following personal information items to the minimum extent necessary to provide services.
|
Classification
|
Items collected
|
Purpose of Processing
|
Retention and period of use
|
|
Membership and management
|
General consumer
|
[mandatory]
Name, ID, mobile phone number, email address
|
· Membership registration and management
· Use for marketing and other advertisements (selected)
|
Until the withdrawal of membership
※However, if an investigation, investigation, etc. is in progress due to a violation of related laws and regulations, until the relevant investigation and investigation are completed
|
|
[selections]
Vehicle name and model year, tire replacement timing, tire product name
|
|
Dealership
|
[mandatory]
Customer name, representative name, subscriber name, ID, mobile phone number, email address
|
|
[optional]
Business number, company contact information, vehicle name and year, tire replacement time, tire product name
|
|
Luxury warranty system service provided
|
[mandatory]
Purchase product, purchase date, purchase agency, vehicle number, luxury warranty number
|
· Enpera, Winter Luxury Guarantee System Benefits
|
Until the withdrawal of membership
※However, if an investigation, investigation, etc. is in progress due to a violation of related laws and regulations, until the relevant investigation and investigation are completed
|
|
1:1 Customer Inquiries
|
[mandatory]
Name, address, phone number, e-mail
|
· Customer consultation
· Complaint Handling
· Complaint handling
|
2 years from the date of collection
|
|
[optional]
attached file
|
|
Subscribe to Newsletter
|
[mandatory]
Name, Customer Classification, Email Address
|
· Send Newsletter
|
Until the subscription is terminated
|
|
[optional]
Customer/School/ Institutional Name
|
|
Subscribe to Company Magazine
|
[mandatory]
Name, Customer Classification, Phone Number, Address
|
· Send Company Magazine
|
Until the subscription is terminated
|
|
[optional]
Customer/School/ Institutional Name
|
|
Subscribe to Magazine
|
[mandatory]
Name, address
|
· Subscribe to Magazine
|
Until the purpose of use is achieved
|
|
Subscriber opinion
|
[mandatory]
Name, e-mail
|
· Collection of Subscriber opinions
|
Until the purpose of use is achieved
|
|
Request a quiz
|
[mandatory]
Name, phone number
|
· Use it to ship products when winning a Hello Nexen quiz event
|
Destroy after achieving the purpose of use
|
Article 6. Destruction of personal information
- When personal information becomes unnecessary, such as the expiration of the personal information retention period and the achievement of the processing purpose, the company will destroy the personal information without delay.
- If the personal information must be preserved in accordance with other laws and regulations despite the expiration of the personal information retention period agreed by the data subject or the purpose of processing has been achieved, the personal information shall be moved to a separate database (DB) or stored differently.
- The procedures and methods for destroying personal information are as follows.
- Procedure for destruction
The company selects the personal information in which the reason for destruction occurred and destroys the personal information with the approval of the company's personal information protection manager.
- Method of destruction
The company destroys personal information recorded and stored in the form of electronic files so that the records cannot be reproduced, and the personal information recorded and stored in paper documents is pulverized or incinerated with a grinder.
Article 7. Rights, Duties, and Methods of Exercise of Data Subjects and Legal Agents
- The data subject may exercise the right to view, correct, delete, and suspend personal information at any time to the company.
- The exercise of rights under paragraph (1) may be made to the company in writing, e-mail, or fax in accordance with Article 41 (1) of the Enforcement Decree of the Personal Information Protection Act,
and the company will take action without delay.
- The data subject can inquire, modify, and delete personal information directly from the website 'My Information > Member Information' at any time.
- The data subject can withdraw the collection and use of personal information through "membership withdrawal" at any time.
- The exercise of rights under paragraph (1) may be carried out through an agent, such as a legal representative of the data subject or a person who has been delegated. In such cases, a power of attorney shall be submitted in the attached Form of the Notice on the Method of Processing Personal Information.
- The right of the data subject to request the suspension of reading and processing of personal information may be restricted under Articles 35 (4) and 37 (2) of the Personal Information Protection Act.
- If the personal information is specified as a collection target in other laws, the deletion of the personal information cannot be requested.
- The company verifies whether the person who made the request for access, correction or deletion, or access according to the rights of the data subject is the person or a legitimate agent.
- The data subject may request the following departments to view personal information under Article 35 of the Personal Information Protection Act.
- Department in charge of personal information protection: Information protection team
- E-Mail: security@nexentire.com
- Phone: (without extension) 1577-2781
Article 8. Safeguards to ensure the safety of personal information
The company is taking the following measures to ensure the safety of personal information.
- Management measures: Establishment and implementation of internal management plans, regular training, etc
- Technical measures
Management of access rights to personal information processing systems, etc., installation of access control systems, encryption of unique identification information, installation of security programs, etc
- Physical measures: Control access to computer rooms, data storage rooms, etc
Article 9. Installation and operation of an automatic personal information collection system and the denial thereof
- In order to provide individual customized services to data subjects, the company uses cookies that store usage information and call them up from time to time.
- A cookie is a small amount of information sent by a server used to operate a website to a computer browser of the data subject, and is also stored on a hard disk in the data subject's PC computer.
- Purpose of use of cookies
It is used to provide optimized information to the data subject by identifying the visit, usage type, and security access to each service and website visited by the data subject.
The data subject has the option to install cookies. Therefore, the data subject can allow all cookies by setting options in a web browser, go through verification whenever cookies
are saved, or refuse to save all cookies.
-
Installation, operation, and denial of cookies
As a way to deny cookie settings, you can allow all cookies, go through a check each time you save them, or deny all cookies by selecting the options in the web browser that the data subject uses.
▶Allow/Block Cookies in Web Browser
- Chrome: Web Browser Settings > Privacy and Security > Delete Internet Usage History
▶Allow/block cookies from your mobile browser
- Chrome: Mobile Browser Settings > Privacy and Security > Delete Internet Usage History
- Safari: Mobile Device Settings > Safari > Advanced > Block All Cookies
- Samsung Internet : Mobile Browser Settings > Internet Usage History > Delete Internet Usage History
Article 10. Chief privacy officer
- The company designates a person in charge of personal information protection as follows in order to protect the personal information of the data subject and to handle complaints related to personal information.
- Director of Personal Information Security: Kim In
- Position: Information Security Team / CISO, CPO
- E-mail : security@nexentire.com
- Phone : (without extension) 1577-2781
- The data subject may inquire about personal information protection related inquiries, complaint handling, damage relief, etc. that occurred while using the company's service to the following departments.
- Department in charge of personal information protection: Information Security team
- E-mail : security@nexentire.com
- Phone : (without extension) 1577-2781
Article 11. Remedies for infringements of rights
The data subject can inquire about the following institutions for damage relief and counseling for personal information infringement.
(The following institutions are separate from the company, and if you are not satisfied with the company's own personal information complaint handling and damage relief results or need more detailed help, please contact us.)
▶ Personal Information Infringement Reporting Center (operated by the Korea Internet & Security Agency)
- Affairs under jurisdiction: Report of infringement of personal information, request for consultation
- Home page: privacy.kisa.or.kr
- Phone: without extension 118
▶ Personal Information Dispute Mediation Committee
- Affairs under jurisdiction: Application for dispute mediation of personal information, collective dispute mediation (civil settlement)
- Home page: www.kopico.go.kr
- Phone: without extension 1833-6972
▶ Cybercrime Investigation Division, Supreme Prosecutor’s Office: (without extension) 1301 (www.spo.go.kr )
▶ Cyber Security Division, National Police Agency: 182 (without extension) (ecrm.cyber.go.kr )
Article 12. Changes to the privacy policy
- Version number of this personal information processing policy: v2024-1.0
- Date of enforcement of this personal information processing policy: October 8, 2024
The previous privacy policy can be found below.
Financial Date: May 27, 2022
[View previous personal information policy]
Revised date: July 29, 2005
[View previous personal information policy]
