Privacy Policy

ARETE Consulting GmbH (hereinafter referred to as 'the Company') establishes and discloses the following privacy processing guidelines to protect the personal information of information subjects in accordance with laws related to personal information protection and to handle related complaints quickly and smoothly.

Article 1 (Purpose of Processing Personal Information)

This site allows free access to content without a separate membership registration procedure. However, the Company processes the following personal information. The personal information being processed will not be used for purposes other than the following, and if the purpose of use changes, necessary measures such as obtaining separate consent will be implemented in accordance with Article 18 of the Personal Information Protection Act.

Items automatically collected by computer: IP address, cookies, MAC address, service usage records, visit records, bad usage records, etc.

Article 2 (Processing and Retention Period of Personal Information)

  1. The Company processes and retains personal information within the personal information retention and usage period in accordance with laws or the personal information retention and usage period agreed upon when collecting personal information from the information subject.
  2. The personal information processing and retention period is as follows. However, even if the purpose of collecting or using personal information is achieved, the personal information of the user can be retained if there is a need to preserve it according to relevant laws.
  3. Until the purpose is achieved

Article 3 (Provision of Personal Information to Third Parties)

In principle, the Company does not provide the customer's personal information to third parties. However, the following cases are exceptions:

  1. When the customer's consent is obtained
  2. When it is recognized as clearly necessary for the imminent life, body, or property interests of the information subject or a third party as the information subject or their legal representative is unable to express their intention or cannot receive prior consent due to unknown address, etc.
  3. When provided in a form that cannot identify a specific individual as it is necessary for statistics preparation, academic research, etc.
  4. When there are special provisions in other laws or it is inevitable to comply with legal obligations

Article 4 (Consignment of Personal Information Processing)

  1. The Company is consigning personal information processing tasks as follows for smooth personal information business processing:

    • Consignee (Trustee): KINX
    • Content of specialized work: Server management and maintenance
    • Retention and usage period: Until the purpose is achieved or the contract ends
  2. When concluding a consignment contract, the Company specifies matters concerning responsibilities such as prohibition of personal information processing other than the purpose of performing consignment tasks, technical/managerial protection measures, restrictions on re-consignment, management and supervision of the trustee, and compensation for damages in documents such as contracts, and supervises whether the trustee processes personal information safely.
  3. If the content of the consignment task or the trustee changes, we will disclose it through this privacy policy without delay.

Article 5 (Rights and Obligations of Information Subjects and How to Exercise Them)

  1. Information subjects can exercise the following personal information protection-related rights against the Company at any time:

    1. Request for personal information inspection
    2. Request for correction in case of errors, etc.
    3. Request for deletion
    4. Request for suspension of processing
  2. The exercise of rights according to Paragraph 1 (hereinafter referred to as "Request for Inspection, etc.") can be made to the department below. The Company will strive to ensure that the requests for personal information inspection, etc. of the information subject and their legal representative are processed quickly.
    • Department / Person in Charge of Personal Information Inspection Requests
      • Name: JAHYUN YUON
      • Contact: design@aretede.com
  3. The exercise of rights according to Paragraph 1 can be made through a representative such as the legal representative of the information subject or an authorized person. In this case, a power of attorney according to Attachment No. 11 of the Enforcement Rules of the Personal Information Protection Act must be submitted.
  4. The information subject must not violate the personal information of themselves or others or their privacy being processed by the Company by violating related laws such as the Personal Information Protection Act.

Article 6 (Personal Information Items Processed)

The Company is processing the following personal information items. In the process of using internet services, the following personal information items may be automatically generated and collected:

  • IP address, cookies, MAC address, service usage records, visit records, bad usage records, etc.

Article 7 (Destruction of Personal Information)

  1. The Company destroys the corresponding personal information without delay when it becomes unnecessary, such as the passage of the personal information retention period or the achievement of the processing purpose.
  2. If the personal information must be continuously preserved in accordance with other laws even though the personal information retention period agreed upon by the information subject has passed or the purpose of processing has been achieved, the personal information will be moved to a separate database (DB) or preserved in a different storage location.
  3. The procedure and method of personal information destruction are as follows:
    1. Destruction procedure: The Company selects personal information for which a reason for destruction occurred and destroys the personal information after receiving approval from the Company's personal information protection officer.
    2. Destruction method: Personal information recorded and stored in the form of electronic files is destroyed using methods such as Low Level Format so that the record cannot be reproduced, and personal information recorded and stored in paper documents is destroyed by shredding with a shredder or incineration.

Article 8 (Measures to Ensure the Safety of Personal Information)

The Company is taking the following measures to ensure the safety of personal information:

  • Managerial measures: Establishment and implementation of internal management plans, regular employee education, etc.
  • Technical measures: Management of access rights to personal information processing systems, etc., installation of access control systems, encryption of unique identification information, etc., installation of security programs
  • Physical measures: Access control for computer rooms, data storage rooms, etc.

Article 9 (Installation, Operation, and Refusal of Automatic Personal Information Collection Devices)

The Company automatically collects cookies to support website use and provide related services. Cookies are small text files sent by the server operating the website to the user's browser and stored on the information subject's computer. The information subject can refuse the storage of cookies, but in this case, the website use may be inconvenient or it may be difficult to use some services. For details related to cookies, please check the Cookie Policy.

Article 10 (Personal Information Protection Officer)

  1. The Company is responsible for overall work related to personal information processing and designates a personal information protection officer as follows for handling complaints and damage relief of information subjects related to personal information processing:

    Personal Information Protection Officer

  2. Information subjects can inquire about all personal information protection-related inquiries, complaint processing, damage relief, etc., that occurred while using the Company's services (or business) to the personal information protection officer and department in charge. The Company will provide answers and processing for the information subject's inquiries without delay.

Article 11 (Request for Personal Information Inspection)

The information subject can request inspection of personal information according to Article 35 of the Personal Information Protection Act from the department below. The Company will strive to ensure that the request for personal information inspection of the information subject is processed quickly.

  • Department / Person in Charge of Personal Information Inspection Requests

Article 12 (Method for Relief from Infringement of Rights)

The information subject can inquire with the institutions below for damage relief, consultation, etc., for personal information infringement.
The institutions below are separate from the Company, so please contact them if you are not satisfied with the Company's own personal information complaint handling or damage relief results or if you need more detailed help.

  • Personal Information Infringement Reporting Center (operated by Korea Internet & Security Agency)

    • Responsibility: Reporting facts of personal information infringement, application for consultation
    • Homepage: privacy.kisa.or.kr
    • Phone: 118

Article 13 (Changes to the Privacy Policy)

  1. This privacy policy is applied from June 14, 2018.

  2. If there are any additions, deletions, or modifications to the contents of this privacy policy due to the enactment or revision of laws, changes in government policies, changes in internal company policies, or changes in security technology, we will notify the reasons and contents of the changes through the Company's website.