Conativics Website Privacy Policy

Written by Conativics on April 5, 2024

announcementcompliance

A photo of a wooden desk with phone, glasses, pencil, and succulent plant placed on in

Privacy Policy for Conativics Website

Conativics is a digital product company registered in the Republic of Korea.

Conativics establishes and discloses this privacy policy as follows in accordance with the laws of the Republic of Korea, Article 30 of the Personal Information Protection Act.

Conativics complies to the privacy policy in order to protect the personal information of data subjects and to promptly and smoothly handle related complaints.

Article 1. Purpose of Processing Personal Information

Conativics processes personal information for the following purposes. The personal information being processed will not be used for purposes other than those set forth below. If the purpose of use is changed, Conativics will take necessary measures, such as obtaining separate consent, in accordance with Article 18 of the Personal Information Protection Act.

  • Handling Inquiries and Complaints
    • Conativics processes personal information for the purposes of collecting the inquirer’s unique identifier and contact information, confirming the details of the inquiry, contacting and notifying the individual for fact-finding, and providing notice of the results of such handling.

Article 2. Retention and Processing Period of Personal Information

Conativics processes and retains personal information within the retention and use period prescribed by applicable laws and regulations, or within the retention and use period to which the data subject has consented at the time of collection.

The retention and processing periods for each category are as follows:

  • Handling Inquiries and Complaints
    • 3 years from the completion of consultation or from the last inquiry

Provided, however, that where any of the following circumstances apply, the information will be retained until the relevant circumstance has ended:

  • Where an investigation or inquiry is in progress due to a violation of applicable laws and regulations, until such investigation or inquiry is concluded
  • Where a creditor–debtor relationship remains due to the use of the website, until settlement of the relevant creditor–debtor relationship is completed

Article 3. Provision of Personal Information to Third Parties

Conativics processes the personal information of data subjects only within the scope stated in Article 1, and provides personal information to third parties only in cases that fall under Articles 17 and 18 of the Personal Information Protection Act, such as where the data subject has provided consent or where there is a specific provision under applicable laws.

Conativics provides personal information to third parties as follows:

  • Business Partners
    • None

Article 4. Rights and Obligations of Data Subjects and Legal Representatives, and How to Exercise Such Rights

Data subjects may exercise, at any time, their rights against Conativics, including requests for access to, correction of, deletion of, or suspension of processing of their personal information.

The rights under Paragraph 1 may be exercised against Conativics in writing, by post, by e-mail, or by other means in accordance with Article 41(1) of the Enforcement Decree of the Personal Information Protection Act, and Conativics will take action without delay.

The rights under Paragraph 1 may be exercised through a representative, such as the data subject’s legal representative or a person authorized by delegation. In such cases, a power of attorney in the form set forth in Attached Form No. 11 of the “Public Notice on Personal Information Processing Methods (Notice No. 2020-7)” must be submitted.

Requests for access to personal information and for suspension of processing may be restricted pursuant to Article 35(4) and Article 37(2) of the Personal Information Protection Act.

Requests for correction or deletion of personal information may not be granted where the relevant personal information is explicitly designated as subject to collection under other applicable laws and regulations.

In responding to requests for access, correction, deletion, or suspension of processing pursuant to the data subject’s rights, Conativics will verify whether the requester is the data subject or a duly authorized representative.

Article 5. Items of Personal Information Processed

Conativics processes the following items of personal information:

  • Handling Inquiries and Complaints
    • Required
      • Inquirer’s name
      • Inquirer’s email address
      • Details of the inquiry
    • Optional
      • None
  • Preventing fraudulent or malicious use of contact form
    • Required
      • IP address
      • Web browser user agent
    • Optional
      • None

During the course of using the internet service, the following items of personal information may be automatically generated and collected by the system:

  • Records of service use and access logs (e.g., timestamp)

Article 6. Destruction of Personal Information

Conativics will destroy personal information without delay when such personal information becomes unnecessary, such as upon the expiration of the retention period or the achievement of the purpose of processing.

Where personal information must be retained continuously in accordance with other applicable laws and regulations, despite the expiration of the retention period consented to by the data subject or the achievement of the purpose of processing, Conativics will retain such personal information by transferring it to a separate database (DB) or storing it in a different location.

The procedures and methods for destruction of personal information are as follows:

  • Destruction Procedure
    • Conativics selects the personal information for which grounds for destruction have arisen and destroys such personal information upon approval by Conativics’ Chief Privacy Officer (or person in charge of personal information protection).
  • Destruction Method
    • Conativics destroys personal information recorded and stored in electronic file form in a manner that renders the records irrecoverable, and destroys personal information recorded and stored in paper documents by shredding or incineration.

Article 7. Measures to Ensure the Security of Personal Information

Conativics takes the following measures to ensure the security of personal information:

  • Administrative Measures
    • Establishment and implementation of an internal information security management plan
  • Technical Measures
    • Management of access rights to personal information processing systems, encryption of unique identifier, etc.
  • Physical Measures
    • Access control for data processing equipment, storage media, and related facilities

Article 8. Matters Concerning the Installation, Operation, and Refusal of Automatic Personal Information Collection Devices

Conativics uses “cookies,” which store and periodically retrieve usage information, in order to (i) provide services to users properly, (ii) prevent fraudulent or abusive use, and (iii) optionally provide individualized and personalized services.

Cookies are small amounts of information sent by the server used to operate the website to the user’s computer browser, and may also be stored in the storage space of the user’s device.

  • Purpose of Using Cookies
    • Collection and operation of cookies that are essential for visiting and using the website, such as managing traffic and protecting sites from malicious use.
  • Installation, Operation, and Refusal of Cookies
    • Users may refuse the storage of cookies by changing the settings in the options provided by their web browser.
    • Where optional “non-essential” cookies are used in addition to strictly necessary “essential” cookies, users may refuse the use of such non-essential cookies through the “Cookie Consent Banner” displayed at the bottom of the website.
    • If users refuse to store essential cookies, they may experience difficulties in using the website.

Article 9. Chief Privacy Officer

Conativics is responsible for overseeing matters relating to the processing of personal information and, in order to handle complaints from data subjects and provide remedies for harm in connection with the processing of personal information, has designated the Chief Privacy Officer as set forth below.

Data subjects may contact the Chief Privacy Officer and the responsible department regarding any inquiries, complaint handling, or remedies for harm related to personal information protection that arise in the course of using Conativics’ services or business. Conativics will respond to and handle such inquiries without delay.

Chief Privacy Officer

  • Name: Joseph Kim
  • Title/Position: Customer Privacy Representative
  • E-mail: support (at) conativics.com

Department in Charge of Personal Information Protection

  • Department Name: Customer Support
  • Contact Person: Joseph Kim
  • E-mail: support (at) conativics.com

Article 10. Criteria for Determining Additional Use and Provision

Pursuant to Article 15(3) and Article 17(4) of the Personal Information Protection Act, Conativics may additionally use or provide personal information without the consent of the data subject, within a scope that is reasonably related to the original purpose of collection, after considering the matters set forth in Article 14-2 of the Enforcement Decree of the Personal Information Protection Act.

Accordingly, in order for Conativics to additionally use or provide personal information without the data subject’s consent, Conativics considers the following:

  • Whether the purpose of the additional use or provision is related to the original purpose of collection
  • Whether such additional use or provision is foreseeable in light of the circumstances under which the personal information was collected or prevailing processing practices
  • Whether the additional use or provision unfairly infringes upon the interests of the data subject
  • Whether necessary measures to ensure security have been implemented, such as pseudonymization or encryption
  • Where it is deemed clearly necessary to protect the urgent life, body, or property interests of the data subject or a third party
  • Where it is unavoidable for a public institution to perform its duties under applicable laws and regulations
  • Where there is a special provision in law, or where it is unavoidable to comply with statutory obligations

Article 11. Request for Access to Personal Information

Data subjects may request access to their personal information pursuant to Article 35 of the Personal Information Protection Act by contacting the department below. Lorem Ipsum will endeavor to ensure that such requests are processed promptly.

Department Responsible for Receiving and Processing Requests for Access to Personal Information

  • Department Name: Customer Support
  • Contact Person: Joseph Kim
  • E-mail: support (at) conativics.com

Article 12. Remedies for Infringement of Rights and Interests

Data subjects may apply for dispute resolution or consultation in order to obtain remedies for damage caused by personal information infringement through the Personal Information Dispute Mediation Committee, the Personal Information Infringement Report Center of the Korea Internet & Security Agency (KISA), and other relevant bodies.

However, if a data subject contacts such specialized bodies directly before first contacting the personal information controller, it may make prompt and effective remedies more difficult.

Accordingly, data subjects are advised to first contact the personal information controller, and to contact the relevant specialized body only if the matter cannot be resolved through such inquiry or remedy process.

Article 13. Amendments to This Privacy Policy

This Privacy Policy shall take effect as of January 1, 2026