알림
뒤로

Privacy Policy

Privacy Policy

Privacy Policy

Pizza Innovation Co., Ltd. (hereinafter referred to as the “Company”) establishes and discloses this Privacy Policy in accordance with Article 30 of the Personal Information Protection Act to protect the personal information of data subjects and to handle related complaints promptly and smoothly.


Article 1 (Purpose of Processing Personal Information)

The Company processes personal information for the following purposes. The personal information being processed will not be used for purposes other than those listed below. If the purpose of use changes, the Company will take necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.


Article 2 (Retention and Use Period of Personal Information)

   1.    The Company processes and retains personal information within the period permitted by relevant laws or within the retention and usage period agreed upon by the data subject at the time of collection.

   2.    The specific processing and retention periods for each category of personal information are as follows:


1. Website Membership Registration and Management

Personal information will be retained until the user withdraws from the business/organization website.

However, in the following cases, the information will be retained until the reason is resolved:

  • If an investigation related to a violation of relevant laws is in progress, until the investigation is concluded.
  • If there are outstanding obligations such as unpaid fees due to website usage, until the obligations are settled.

2. Provision of Goods or Services

Until the delivery of goods/services and completion of payment and settlement.

However, in the following cases, the information will be retained until the respective period ends:

  • Records in accordance with the Act on Consumer Protection in Electronic Commerce, etc.:
    o Records of advertisements and product descriptions: 6 months
    o Records of contracts, cancellations, payments, and supply of goods: 5 years
    o  Records of consumer complaints or dispute resolution: 3 years
  •  Records required by the Protection of Communications Secrets Act, Article 41:
    o Records such as subscriber telecommunications date/time, start/end time, recipient number, usage volume, and base station location: 1 year
    o Computer communication, internet log data, and IP tracking data: 3 months


Article 3 (Provision of Personal Information to Third Parties)

1.    The Company processes personal information within the scope specified in Article 1 (Purpose of Processing Personal Information) and provides such information to third parties only with the data subject’s consent or when required by law under Article 17 of the Personal Information Protection Act.


2.    The Company may provide personal information to third parties as follows:

  • Recipient: (e.g., OOO Card Co., Ltd.)
  • Purpose of Use: (e.g., joint promotional events, co-branded credit card issuance)
  • Items Provided: (e.g., name, address, phone number, email address, card payment account details)
  • Retention and Use Period: (e.g., during the validity of the credit card agreement)


Article 4 (Entrustment of Personal Information Processing)

1.    The Company outsources personal information processing as follows:
     1. Call Center Operations

  • Entrusted party: OOO CS Center
  • Details: Responding to calls, guiding departments and staff

2. A/S Center Operations

  • Entrusted party: OOO Electronics
  • Details: Providing product A/S to customers
    2. Upon concluding an outsourcing contract, the Company stipulates items such as prohibition of processing for other purposes, technical and managerial protective measures, re-entrustment restrictions, and damage compensation responsibilities, in accordance with Article 25 of the Personal Information Protection Act.
    3.    If there are changes in the outsourced tasks or entrusted parties, such changes will be disclosed immediately through this policy.


Article 5 (Rights of Users and Legal Representatives and How to Exercise Them)

1.    Data subjects can exercise the following rights at any time:

  • Request access to personal data
  • Request correction of errors
  • Request deletion
  • Request suspension of processing

2.    These rights can be exercised via written request, telephone, email, or fax, and the Company will promptly take necessary action.

3.    If correction or deletion is requested, the Company will not use or provide the personal data until the change is completed.

4.    These rights may also be exercised by legal representatives or delegated agents with proper authorization.

5.    Data subjects must not infringe upon the privacy or personal data of themselves or others in violation of laws.


Article 6 (Items of Personal Information Processed)

1.    Website Membership Management

  • Required: Name, date of birth, ID, password, address, phone number, gender, email, i-PIN number
  • Optional: Marital status, areas of interest

2.    Product or Service Provision

  • Required: Name, birth date, ID, password, address, phone, email, i-PIN, card number, bank info
  • Optional: Interests, purchase history

3.    Automatically Collected During Use

  • IP address, cookies, MAC address, service usage records, visit logs, improper usage logs


Article 7 (Destruction of Personal Information)

1.    The Company promptly destroys personal information when it becomes unnecessary due to expiration or fulfillment of its processing purpose.

2.    If retention is required by other laws even after consented period ends, data will be stored separately.

3.    Destruction Methods:

  • Electronic files: Deleted using irreversible methods such as low-level formatting
  • Paper documents: Shredded or incinerated


Article 8 (Measures to Ensure Security of Personal Information)

To secure safety of personal information, the Company implements:

  • Administrative: Internal management plans, regular employee training
  • Technical: Access control systems, encryption of unique identifiers, security programs
  • Physical: Access restrictions to server rooms and archives


Article 9 (Cookies and Refusal of Automatic Collection Tools)

1.    The Company uses cookies to provide personalized services.

2.    Cookies are stored on the user’s hard disk by the web server and can store data such as:

  • visited services, usage patterns, popular keywords, secure logins

3.    Refusal of Cookies: Users can disable cookies via browser settings.

  • Refusing cookies may limit use of personalized services.


Article 10 (Personal Information Protection Officer)
  • Chief Privacy Officer:
    o Name: Kim Cheolmin
    o Position: OOO
    o  Contact: 02-354-2021
  • Responsible Department:
    o Name: OOO Team
    o Contact Person: Kim Cheolmin
    o Phone: 02-354-2021

Data subjects may contact the above for any inquiries or complaints.


Article 11 (Request for Access to Personal Information)

Requests for data access under Article 35 of the Act may be submitted to:

  • Department: OOO
  • Contact: Kim Cheolmin / 02-354-2021


Article 12 (Remedies for Rights Infringement)

Data subjects may seek remedy from the following institutions:

  • Personal Information Infringement Report Center (KISA):
    o    privacy.kisa.or.kr / 118
  • Personal Information Dispute Mediation Committee:
    o    www.kopico.go.kr / 1833-6972
  • Supreme Prosecutors’ Office Cyber Crime Investigation: 02-3480-3573
  • Korean National Police Cyber Bureau: 182 / cyberbureau.police.go.kr


Article 13 (Enforcement and Changes to Privacy Policy)

This Privacy Policy is effective from June 29, 2023.