Privacy policy
Welcome.
Thank you for visiting the Systemever.com online site. YoungLimWon Soft-Lab complies with the Personal Information Protection Act.
YoungLimWon Soft-Lab Co., Ltd. (hereinafter referred to as the “Company”) has established the following “Personal Information Processing Policy” in order to protect the personal information of information subjects in accordance with relevant laws such as the “Personal Information Protection Act” and to promptly and smoothly handle complaints related thereto. Established and disclosed.
This personal information processing policy applies to the use of all services of YoungLimWon Soft-Lab Co., Ltd., and also applies to the sites below owned by YoungLimWon Soft-Lab Co., Ltd. This privacy policy contains the following contents.
- System Ever: https://www.systemever.kr
- System Ever Nonprofit: http://www.systemevernpo.co.kr
- Online Education Center: https://www.ksystemedu.co.kr
- Evertime: https://www.evertime.co.kr
- EverPayroll: https://www.everpayroll.co.kr
- Flex Studio: https://flextudio.com
- Everon: https://everonone.com
- AS application site: https://erpnewas.ksystem.co.kr
Article 1. Purpose of processing personal information
The company processes personal information for the following purposes. The personal information being processed will not be used for purposes other than the following, and if the purpose of use changes, necessary measures will be taken, such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.
① Membership registration and management
Personal information for the purpose of confirming intention to become a member, identifying and authenticating oneself in accordance with the provision of membership services, maintaining and managing membership qualifications, preventing illegal use of services, various notices and notices, handling grievances, and preserving records for dispute mediation, etc. We use information.
② Service provision
a) Personal information is used for purposes related to consultation services and content provision, such as quotation/introduction inquiries.
b) Personal information is used for after-sales service (technical support)-related purposes.
③ Utilization in marketing and advertising
Developing new services (products) and providing customized services, providing event and advertising information and providing participation opportunities, providing services and posting advertisements according to demographic characteristics, verifying the effectiveness of services, determining access frequency, or member Personal information is used for the purpose of statistics on service use.
Article 2. Items and collection methods of personal information processed
① The company processes the following personal information items.
a) We collect the following minimum personal information for membership registration, smooth customer consultation, and provision of various services.
∙ Required items: Company name, company location, person in charge (name), email address, location information through GPS and Wi-Fi information of mobile phone terminal
∙ Optional items: Industry, company size, department, Position, duties, solutions of interest, type of business purpose.
b) We collect the following personal information to apply for after-sales service.
∙ Required items: company name, person in charge (name), email address, phone number, access log (IP address, cookie, date and time of visit, service use record, bad use record)
c) The following information may be automatically generated and collected during service use or business processing.
∙ Required items: Access log (IP address, cookie, date and time of visit, service use record, bad use record)
d) The following information may be collected to provide event and advertising information and participation opportunities.
∙ Optional items: Company name, company location, industry, company size, name of person in charge, department, position, phone number, email, homepage, solution of interest, previous usage experience.
② The company collects essential information to provide services to information subjects through online input and other methods.
b) During the consultation process for ERP introduction, the personal information of the information subject may be collected through web pages, e-mail, chat, and phone.
a) If the information subject agrees to the collection of personal information and enters the information directly during membership registration and service use, the personal information is collected.
c) Personal information may be collected in writing at offline events, seminars, etc.
f) We do not collect sensitive personal information (race and ethnicity, ideology and creed, place of origin and domicile, political inclination and criminal record, health status and sexual life, etc.) that may infringe on the basic human rights of the information subject. If collection is unavoidable, the information subject We will definitely seek their prior consent. And under no circumstances will the information you enter be used for any purpose other than the purpose previously disclosed to the information subjects, and will not be leaked to outside parties.
d) Generated information such as device information may be automatically generated and collected during the use of PC web and mobile web/apps. (Access IP information, cookies, service use records, access logs)
e) After connecting with a service support representative during customer consultation, the call is recorded to improve service quality.
Article 3. Processing and retention period of personal information
The company processes and retains personal information within the personal information retention/use period in accordance with the law or within the personal information retention/use period agreed upon when collecting personal information from the information subject.
① Membership registration and management
a) Membership registration on the SystemEver Portal website: Until membership withdrawal
. Education Center membership registration: Until membership withdrawal
② Service provision
a) Inquiry about ERP introduction through website, application for phone consultation for quotation: Until consent is withdrawn
b) System management diagnosis: Until consent is withdrawn
. Inquiries regarding adoption through the Flextudio website: Until consent is withdrawn
. Technical support: If consent is not explicitly withdrawn, retained until the end of the maintenance service contract
. EverOnOne membership registration: Until membership withdrawal
③ Use in marketing and advertising
a) Survey: Until consent is withdrawn (re-consent every 2 years)
b) Provision of product information, event invitations, event and advertising information, and information on participation opportunities: Until consent is withdrawn (re-consent every two years)
④ Notwithstanding the company’s personal information processing policy, information that must be kept in accordance with the relevant laws and regulations below will be kept for the period specified by law.
a) Personal information related to the use of Communications Secrets Protection Act services (login records): 3 months
b) Law on consumer protection in electronic commerce, etc.
Records on contracts or cancellation of subscription, etc.: 5 years
Records on payment and supply of goods, etc.: 5 years
Records on handling of consumer complaints or disputes (including chat and consultation details): 3 year
⑤ The company may contact the information subject only with personal information collected with the information subject’s consent, such as phone number (landline phone, mobile phone), mobile phone, email, text, messenger, fax, and postal mail.
Article 4. Matters related to provision of personal information to third parties and entrustment of personal information processing
① The company does not provide personal information to outside parties without the prior consent of the information subject.
② Personal information required to fulfill a contract regarding the provision of the company’s services, in cases where it is clearly difficult to obtain normal consent due to economic or technical reasons, the Credit Information Use and Protection Act, Framework Act on Telecommunications, and Telecommunications Personal information may be provided exceptionally only in cases where there are special provisions in relevant laws such as the Business Act, Local Tax Act, Consumer Protection Act, and Criminal Procedure Act.
③ The company provides the following personal information to third parties, and when providing personal information to third parties, the company requests the recipient to restrict the purpose and method of use or take measures to ensure safety.
Recipient | YoungLimWon Soft-Lab’s subsidiaries and major partners |
---|---|
Personal information items provided | Company name, industry, company size, name of person in charge, department, title, phone number, email, company location, solution of interest, previous usage experience |
Purpose of use by the recipient | -ERP service provision and technical support -ERP construction and training advisory services -Marketing/sales work -Notification talk service |
Retention and use period of the recipient | Until consent to personal information is withdrawn |
④ When concluding a consignment contract, in accordance with Article 26 of the Personal Information Protection Act, the company enters into the contract matters relating to responsibilities such as prohibition of processing personal information for purposes other than the purpose of performing consignment work, technical and managerial protection measures, restrictions on re-entrustment, management and supervision of the consignee, and compensation for damages. etc. are specified in the document, and we supervise whether the trustee handles personal information safely.
In addition, if the contents of the entrusted work or the trustee changes, we will disclose it through this personal information processing policy without delay.
Article 5. Matters regarding overseas transfer of personal information
In order to provide convenient services to information subjects and ensure smooth processing of personal information, the company is transferring some of its personal information processing tasks overseas.
Transfer recipient | |
---|---|
Adobe (used as a platform for SaaS marketing solutions) |
Personal information items transferred
Company name, name, department, position, phone number, email, consultation information, service use record (access log, access IP, cookie) Transfer country, transfer date and method-Country of transfer: United States -Address: 345 Park Avenue San Jose, CA 95110-2704 Until consent to personal information is withdrawn |
Zendesk (used as Younglimwon omni-channel customer support platform) |
Personal information items transferred
Company name, person in charge, email, phone number, service use records (access log, access IP, cookies) Transfer country, transfer date and method-Relocation country: United States, -Address: 1019 Market St San Francisco, CA 94103 Until consent to personal information is withdrawn |
Microsoft (Used as a cloud computing platform for Younglimwon ERP, Everrun, Evertime, and Everpayroll) |
Personal information items transferred
Name, phone number, email, password, service use records (access log, access IP, cookies) Transfer country, transfer date and method-Country of transfer: United States -Address: Microsoft Visitor Center 15010 NE 36th St. Redmond, WA 98052 Until the information subject withdraws membership or withdraws consent to personal information |
Users may apply for refusal of overseas transfer through the personal information protection manager or person in charge in Article 10 below. However, since overseas relocation is essential for service operation, use of the service may be restricted if you refuse the transfer.
Article 6. Matters pertaining to the rights of information subjects and legal representatives and how to exercise them
① Information subjects (including legal representatives) may exercise the following rights related to personal information protection at any time.
1. Request to view personal information
2. Request for correction if there are errors, etc.
3. Request for deletion
4. Request for suspension of processing
5. Withdrawal of consent
② The exercise of the rights pursuant to the above can be done through writing, e-mail, facsimile (FAX), etc. after filling out the ‘Personal Information (View, Correction/Deletion, Processing Suspension) Request Form’ attached below, and the Company responds accordingly. We will take action without delay.
Attachment 1 Form: Request for personal information (viewing, correction/deletion, suspension of processing)
③ If the information subject requests correction or deletion of errors in personal information, the personal information will not be used or provided until processing is completed. In this case, if incorrect personal information is used or provided, we will correct it without delay.
④ Rights under paragraph 1 may be exercised through an agent, such as the information subject’s legal representative or a person authorized to do so. In this case, you must submit a ‘power of attorney’ in accordance with the form attached to the Enforcement Rules of the Personal Information Protection Act, Appendix 11, attached below.
Attachment 2 Form: Power of Attorney
⑤ Requests to view and suspend personal information processing may limit the information subject’s rights pursuant to Article 35, Paragraph 4 and Article 37, Paragraph 2 of the Personal Information Protection Act.
⑥ Requests for correction and deletion of personal information cannot be requested if the personal information is specified as a collection target in other laws and regulations.
⑦ When requesting access, requesting correction or deletion, or requesting suspension of processing in accordance with the rights of the information subject, we confirm whether the person making the request is the person himself or a legitimate agent.
1. Verify identity by verifying identification documents such as resident registration card, driver’s license, passport, etc. or public certificates.
2. If requested through an agent, submit a power of attorney from the information subject and a copy of identification documents such as resident registration card, driver’s license, passport, etc. Confirm that you are a legitimate agent authorized by the information subject.
⑧ If a request is received for viewing, correcting, deleting, or suspending processing of the information subject’s personal information, the request will be processed within 10 days from the date of receipt of the ‘Personal Information (viewing, correction/deletion, and suspension of processing) request’. The results are notified to the information subject. If the information subject’s viewing is postponed or refused due to reasons specified in the Personal Information Protection Act, a notice of personal information (viewing, partial viewing, postponement of viewing, refusal of viewing) will be sent, explaining the reason for the postponement or refusal and how to raise an objection. If you refuse to view personal information without justifiable reasons, you may raise an objection to the person in charge of personal information protection.
⑨ Personal information deleted at the request of the information subject is processed in accordance with the personal information destruction procedures and methods set forth in Article 8.
Article 7. Matters pertaining to the installation, operation, and refusal of automatic personal information collection devices
① The company operates ‘cookies’ that frequently store and retrieve the information subject’s information. A cookie is a small amount of information that the server used by the company to operate the website sends to the information subject’s browser and is sometimes stored on the information subject’s computer hard disk.
② The company uses cookies for the following purposes.
1. Used to determine whether to activate pop-ups.
2. Used to set the default domain address for domain access to use the service.
③ The information subject has the option to install cookies. Therefore, the information subject can allow all cookies by setting options in the web browser, confirm each time a cookie is saved, or refuse to save all cookies.
※ How to refuse cookie settings
Example) To refuse cookie settings, you can allow all cookies by selecting the options of the web browser you are using, confirm each time you save cookies, or refuse to save all cookies.
– Example of setting method (for Internet Explorer): Tools at the top of the web browser > Internet Options > Personal Information > Advanced > Select Allow or Block Cookies.
Article 8. Matters regarding destruction of personal information
① In principle, when the purpose of processing personal information has been achieved, the company destroys the relevant personal information without delay.
② If personal information must continue to be preserved pursuant to other laws and regulations despite the expiration of the personal information retention period consented to by the information subject or the purpose of processing has been achieved, the personal information shall be transferred or stored in a separate database (DB). They are preserved in different locations, and the grounds for preservation are made public by posting them on the website.
③ The procedures and methods for destroying personal information are as follows.
1. Destruction procedure
Unnecessary personal information is handled as follows under the responsibility of the personal information protection manager and in accordance with internal guidelines and procedures.
-If the personal information retention period has expired, the personal information of the information subject is returned within 5 days from the end of the retention period when the personal information becomes unnecessary, such as the achievement of the purpose of processing the personal information, abolition of the relevant service, or termination of business. In this case, personal information will be destroyed within 5 days from the date when processing of personal information is deemed unnecessary.
2. Destruction method
– Personal information in electronic form uses a technical method that does not allow the record to be reproduced.
-Personal information printed on paper is destroyed by shredding or incineration.
Article 9. Matters concerning measures to ensure the safety of personal information
The company is taking the following administrative, technical, and physical measures to ensure the safety of personal information.
① Establishment and implementation of an internal management plan
We are establishing and implementing an internal management plan for the safe processing of personal information.
② Minimization and training of personal information handlers
Only the number of people in charge of handling personal information are designated and managed, and regular training is provided.
③ Restriction of access to personal information We
control access to personal information by granting, changing, and deleting access rights to the database system that processes personal information, and use an intrusion prevention system to control unauthorized access from outside. .
④ Encryption of personal information
The important personal information and password of the information subject are encrypted and managed. In addition, we apply separate security functions such as encrypting important data when storing and transmitting it.
⑤ Technical measures against hacking, etc.
To prevent leakage and damage of personal information due to hacking or computer viruses, install security programs, update and inspect them periodically, install systems in areas with controlled access from the outside, and monitor technically and physically. and is blocking.
⑥ Access control for unauthorized persons
We have a separate physical storage location for the personal information system that stores personal information, and we have established and operated access control procedures for this.
⑦ Personal information protection detection solution operation
In preparation for cases where executives and employees possess personal information, the above solution is introduced to detect and encrypt or delete personal information, and is constantly monitored and controlled centrally.
Article 10. Personal information protection officer and contact information
① The company is responsible for the overall management of personal information processing, and designates a personal information protection manager and person in charge as follows to handle complaints and provide relief for damage from
division | Personal information protection officer |
Personal Information Protection Manager |
|
---|---|---|---|
name | Ho, Ung-gi | Kim, Yu-kyung | Choi, Myung-shin |
Affiliation and position | Future Value Realization Headquarters/Executive Director | External Cooperation Office/Manager | External Cooperation Office |
privacy@ksystem.co.kr |
② For all personal information protection-related inquiries, complaint handling, damage relief, etc. that arise while using the company’s services, please contact the personal information protection manager or person in charge.
③ The information subject may request to view personal information pursuant to Article 35 of the Personal Information Protection Act to the personal information protection officer and person in charge. The company will strive to promptly process the information subject’s request to view personal information.
Article 11. Remedy for infringement of rights and interests of information subjects
① In order to receive relief from personal information infringement, the information subject may apply for dispute resolution, consultation, etc. to the Personal Information Dispute Mediation Committee, the Korea Internet & Security Agency Personal Information Infringement Reporting Center, etc.
② The organizations below are separate from the company. If you are not satisfied with the company’s own personal information complaint handling and damage relief results, or if you need more detailed assistance, please contact us.
Personal Information Dispute Mediation Committee: 1833-6972 ( www.kopico.go.kr )
Personal Information Infringement Reporting Center: (without area code) 118 ( privacy.kisa.or.kr )
Supreme Prosecutors’ Office Cyber Investigation Division: (without area code) 1301 ( www.kopico.kr) spo.go.kr )
National Police Agency Cyber Investigation Bureau: (without area code) 182 ( cyberbureau.police.go.kr )
③ In addition, a person whose rights or interests have been infringed upon by the company’s disposition or omission in response to the information subject’s request for viewing, correction, deletion, or suspension of processing of personal information may request an administrative trial in accordance with the Administrative Appeals Act. . Please refer to the telephone number information of
the Central Administrative Appeals Commission ( www.simpan.go.kr )
Article 12. Matters regarding changes to personal information processing policy
① This personal information processing policy will be applied as of March 12, 2024 , and if there are additions, deletions, or corrections of changes in accordance with laws and policies, we will notify you through notices on the website.
Announcement date: March 5, 2024
Effective date: March 12, 2024
② You can check the previous personal information processing policy below.
Applies from 2024.02.27 to 2024.03.11 Applies
from 2024.01.17 to 2024.02.26 Applies from 2023.07.10
to 2024.01.16 Applies from 2023.04.17
to 2023.07.09 Applies from 2022.11.14 to 2023.04.16
202 Applicable from
2.04.29 to 2022.11.13
2021.07. 30 ~ 2022.04.28 Applicable
2021.01.06 ~ 2021.07.29 Applicable
2020.06.11 ~ 2021.01.05 Applicable
2019.12.16 ~ 2020.06.10 Applicable
2018.11.17 ~ 2019.12.15 Applicable