A company whose utmost priority is human health and well-being

Privacy Policy

1. Purpose of processing personal information

Firson Co., Ltd. (http://www.firson.co.kr//here in after the company) processes personal information for the following purposes only:

- Identification, authentication, etc., for the provision of services to customers

2. Processing and retention period of personal information

When collecting personal information from an information subject, the company processes/retains personal information within the period of personal information retention/use, or within the period of personal information retention/use under statutes.

3. Rights and obligations of the information subject and legal representatives, and methods of exercise thereof

The user may exercise the following rights as a personal information subject:
The information subject may exercise any of the following privacy-related rights with the company at any time:

A. Request to view personal information
B. Request for correction if there is an error, etc.
C. Request for deletion
D. Request for suspension of processing

4. Creating items for personal information to be processed

The company processes the following privacy items:

- Required items: e-mail, mobile phone number, password, login ID, date of birth, name, service use record, access log, cookie, access IP information
- Optional items: company phone number, position, department, company name

5. Destruction of personal information

In principle, the company destroys personal information without delay once the personal information processing purpose is achieved. Procedures, deadlines, and methods of destruction are as follows:

-Destruction procedure
The information entered by the user is transferred to a separate DB after achieving the purpose (separate documents in the case of paper) and destroyed after being retained for a certain period of time or immediately in accordance with internal policy and other related laws. At this time, the personal information transferred to the DB is not used for any other purpose than those required by law.

- Destruction period
The user's personal information is destroyed within 5 days from the end of the retention period, and within 5 days from the date on which the personal information is deemed unnecessary due to the achievement of the purpose, abolition of the service, or termination of the project.

6. Matters concerning the installation, operation, and rejection of automatic personal information collection devices

① The company uses cookies to store usage information and to provide individual customized services.
② Cookies are small amounts of information sent to users' computer browsers by servers (http) used to operate websites, and can be stored on their PCs' hard disks.
A. Purpose of using cookies: They are used to provide optimized information to users by identifying visits and types of websites, popular search words, security access, etc.
B. Installation/Operation and denial of cookies: You can refuse to save cookies through the Tools menu at the top of web browser > Internet Options > Privacy menu, setting options.
C. Refusing to save cookies can cause difficulties in using customized services.

7. Personal Information Protection Officer

① The company is responsible for the processing of personal information, and designates a person in charge of personal information protection as follows for the handling of complaints and damage relief of information subjects related to the processing of personal information.

▶ Personal Information Protection Officer

▶ Personal Information Protection Office
Department name:
Person in charge:

② Information subjects can contact the person in charge and department in charge of personal information protection inquiries, complaints handling, damage relief, etc., caused by using the company's services or businesses.
The company will respond to and handle inquiries from information subjects without delay.

8. Change in personal information processing policy

This personal information processing policy will be applied from the effective date, and if there are additions, deletions, or corrections in accordance with statutes and policies, these will be notified through notice seven days before the implementation of the changes.

9. Measures to secure the safety of personal information

According to Article 29 of the Personal Information Protection Act, the company takes the technical/management and physical measures necessary to secure safety as follows:

A. In-house audit is conducted regularly (once a quarter) to secure stability related to personal information handling.
B. The company's policy is to designate the duty of personal information handling to a minimum number of employees.
C. An internal management plan is under operation for safe handling of personal information.

10. Relief methods for infringement on the rights and interests of information subjects

The following institutions are separate entities from the company, so please contact them if you are not satisfied with the company's handling of complaints and damage relief results or if you need further assistance.

▶ Personal Information Infringement Reporting Center (operated by Korea Internet Promotion Agency)
- Responsibilities: Personal information infringement report processing and consultation
- Website: privacy.kisa.or.kr
- Phone: (No area code) 118
- Address: (58324) 3rd floor, Jinheung-9gil (301-2 Bitgaram-dong), Naju-si, Jeollanam-do

▶ Personal Information Dispute Mediation Committee
- Personal information dispute settlement application, collective dispute settlement (civil resolution)
- Website: www.kopico.go.kr
- Phone: (No area code) 1833-6972
- Address: (03171) Seoul Government Complex 4th floor, 209 Sejong-daero, Jongno-gu, Seoul

▶ Prosecution Service's Cybercrime Investigation Team: 02-3480-3573 (www.spo.go.kr)

▶ National Police Agency Cyber Safety Bureau: 182 (http://cyberbureau.police.go.kr)

[Change in Privacy Policy]

This privacy policy will be effective from July 1, 2021.