Privacy Policy
We guarantee your data privacy
Privacy Policy
Article 1 (Purpose)
HelloSEO (hereinafter referred to as 'the Company') establishes the following Privacy Policy (hereinafter referred to as 'this Policy') in order to protect the personal information (hereinafter referred to as 'Personal Information') of individuals (hereinafter referred to as 'Users' or 'Individuals') using the services provided by the Company (hereinafter referred to as 'Company Services'), in compliance with the Personal Information Protection Act, Act on Promotion of Information and Communications Network Utilization and Information Protection, etc. (hereinafter referred to as 'Information Network Act'), and other relevant laws, and to promptly and smoothly handle any grievances related to the protection of Users' personal information.
Article 2 (Principles of Processing Personal Information)
In accordance with the relevant laws and this Policy, the Company may collect Users' personal information, which may be provided to third parties only with the Individual's consent. However, in cases legally mandated, the Company may provide collected personal information to third parties without prior consent of the Individual.
Article 3 (Disclosure of this Policy)
The Company publicly discloses this Policy through the first screen of the Company's website or a linked screen, so that Users can easily access it at any time. When disclosing this Policy as per the foregoing, the Company shall use font size, color, etc., to facilitate easy recognition by Users.
Article 4 (Amendment of this Policy)
This Policy may be amended according to changes in laws, guidelines, notifications, or changes in government or Company Service policies or content. If the Company amends this Policy, it will announce the amendment by one or more of the following methods:
Posting on the homepage operated by the Company
Notification through written, facsimile, email, or a similar method
The Company will announce any changes to this Policy at least 7 days prior to the effective date. However, significant changes in User rights will be announced at least 30 days in advance.
Article 5 (Information for Membership Registration)
The Company collects the following information for User membership registration to the Company Services:
Article 6 (Information for Service Usage and Checking Misuse)
The Company collects the following information for statistical/analytical purposes related to the use of services and to identify and analyze misuse. (Misuse refers to activities such as repeated re-registration after membership withdrawal, cancellation after product purchase, and other activities that illicitly or unlawfully gain economic benefits such as discounts, event benefits, etc., prohibited activities stated in terms of service, identity theft, and other illicit and unlawful activities.)
Article 7 (Method of Personal Information Collection)
The Company collects personal information through the following methods:
When the User enters personal information on the Company's website
When the User enters personal information through services provided outside of the Company's website, such as applications
When the User enters personal information in response to emails sent by the Company
When the User enters personal information during consultations at customer service centers, activities on boards, etc.
Article 8 (Use of Personal Information)
The Company uses personal information in the following cases:
When necessary for Company operations, such as delivering notices
For service improvement, such as responding to inquiries and handling complaints
For providing Company services
For measures and sanctions against actions that disrupt the smooth operation of the services, including use restriction measures against members who violate laws and Company terms, prevention of misuse
For marketing purposes, such as event and promotion notifications
Article 9 (Retention and Usage Period of Personal Information)
The Company retains and uses personal information for a period necessary for the collection and use of personal information.
Notwithstanding the foregoing, the Company, according to its internal policy, retains records of service misuse for a maximum of 1 year from the date of membership withdrawal for the purpose of preventing re-registration and misuse.
Article 10 (Legal Basis for Retention and Use of Personal Information)
The Company retains and uses personal information as follows, in accordance with relevant laws:
According to the Act on Consumer Protection in Electronic Commerce, etc., retention information and period:
Records on contracts or subscription withdrawal: 5 years
Records on payment and supply of goods, etc.: 5 years
Records on consumer complaints or dispute handling: 3 years
Records on labeling/advertising: 6 months
According to the Protection of Communications Secrets Act, retention information and period:
Web log record materials: 3 months
According to the Electronic Financial Transactions Act, retention information and period:
Records of electronic financial transactions: 5 years
According to the Act on the Protection and Use of Location Information:
Records on personal location information: 6 months
Article 11 (Principle of Disposal of Personal Information)
In principle, the Company immediately disposes of the personal information when the purpose of processing personal information is achieved, and the retention and use period has elapsed, and when personal information is no longer necessary.
Article 12 (Procedure for Disposal of Personal Information)
Information entered by Users for membership registration, etc., is transferred to a separate DB (in the case of paper, a separate document box) after the purpose of information processing is achieved, and is stored for a certain period as per internal policy and other related laws (refer to retention and use period) before disposal. The Company disposes of personal information after approval by the personal information protection officer.
Article 13 (Method of Disposal of Personal Information)
The Company deletes personal information stored in electronic file formats using a technical method that makes the records irrecoverable, and personal information printed on paper is shredded or incinerated.
Article 14 (Transmission of Advertising Information)
When transmitting advertising information for profit-making purposes using electronic transmission media, the Company obtains explicit prior consent from the User. However, prior consent is not required in any of the following cases:
When the Company collects contact information directly from the recipient through transactions of goods, etc., and intends to send advertising information for profit-making purposes related to the same type of goods, etc., within 6 months from the date of transaction completion
When a telemarketing salesperson under the Door-to-Door Sales Act notifies the source of personal information collection and conducts telemarketing
Despite the foregoing, if the recipient indicates a refusal to receive or withdraws prior consent, the Company does not send advertising information for profit-making purposes and notifies the processing results of the refusal to receive and withdrawal of consent. The Company obtains separate prior consent from the recipient to transmit advertising information for profit-making purposes using electronic transmission media from 9 PM to 8 AM the next day. When transmitting advertising information for profit-making purposes using electronic transmission media, the Company clearly indicates the following in the advertising information:
Company name and contact information
Indication of matters related to refusal to receive or withdrawal of consent
The Company does not take any of the following actions when transmitting advertising information for profit-making purposes:
Actions to avoid or obstruct the refusal to receive or withdrawal of consent by the recipient of advertising information
Actions to automatically generate phone numbers, email addresses, or other contact information of the recipient by combining numbers, symbols, or characters
Actions to automatically register phone numbers or email addresses for the purpose of transmitting advertising information for profit-making purposes
Various actions to hide the identity of the advertiser or the source of advertising transmission
Various actions to deceive the recipient for the purpose of transmitting advertising information for profit-making purposes and induce a response
Article 15 (Protection of Children's Personal Information)
The Company allows membership registration only for Users aged 14 and over to protect the personal information of children under the age of 14. Notwithstanding the foregoing, if the User is a child under the age of 14, the Company obtains consent for the collection, use, and provision of the child's personal information from the child's legal representative. In the case of the foregoing, the Company additionally collects the legal representative's name, date of birth, gender, duplicate registration check information (ID), and mobile phone number.
Article 16 (Inquiry and Withdrawal of Consent for Personal Information Collection)
Users and legal representatives can inquire or modify their registered personal information at any time, and request withdrawal of consent for personal information collection. Users and legal representatives can contact the personal information protection officer or manager in writing, by phone, or email address to withdraw consent for the collection of their registration information, and the Company will take immediate action.
Article 17 (Correction of Personal Information, etc.)
Users can request correction of errors in personal information to the Company through the method of the preceding article. Until the correction of personal information is completed, the Company does not use or provide personal information, and if incorrect personal information has already been provided to a third party, the Company will notify the third party of the correction results without delay to ensure correction.
Article 18 (User's Obligations)
Users are responsible for keeping their personal information up to date and bear responsibility for any issues arising from inaccurate information input. Membership registration using someone else's personal information may result in loss of user status or punishment under relevant personal information protection laws. Users are responsible for maintaining the security of their email addresses, passwords, etc., and cannot transfer or lend them to third parties.
Article 19 (Company's Personal Information Management)
The Company takes necessary technical and managerial protective measures to ensure that Users' personal information is not lost, stolen, leaked, altered, or damaged in processing personal information.
Article 20 (Treatment of Deleted Information)
The Company processes personal information that has been terminated or deleted at the request of the User or legal representative in accordance with the "Retention and Use Period of Personal Information" collected by the Company and does not use or view it for any other purposes.
Article 21 (Encryption of Passwords)
Users' passwords are stored and managed after one-way encryption, and verification and changes of personal information are possible only by the individual who knows the password.
Article 22 (Measures Against Hacking, etc.)
The Company does its utmost to prevent Users' personal information from being leaked or damaged by hacking, computer viruses, or intrusion into information and communication networks. The Company uses the latest antivirus programs to prevent leakage or damage of Users' personal information and data. The Company uses an intrusion prevention system to ensure security against possible situations. The Company ensures the safe transmission of sensitive personal information (if collected and retained) on the network through encrypted communication, etc.
Article 23 (Minimization of Personal Information Processing and Education)
The Company limits the number of personal information handlers to a minimum and emphasizes compliance with laws and internal policies through managerial measures such as education for personal information processors.
Article 24 (Measures for Leakage of Personal Information, etc.)
If the Company becomes aware of the loss, theft, or leakage of personal information (hereinafter referred to as "Leakage, etc."), it immediately informs the relevant Users of all the following matters and reports to the Korea Communications Commission or the Korea Internet & Security Agency.
Items of personal information that were leaked, etc.
The time when the leak, etc., occurred
Measures that Users can take
Countermeasures taken by the provider of information and communication services
Departments and contact information where Users can submit consultations
Article 25 (Exceptions to Measures for Leakage of Personal Information, etc.)
Notwithstanding the foregoing article, if the Company has a legitimate reason, such as not knowing the contact information of the User, it may take measures to replace the notification of the preceding article by posting on the Company's website for 30 days or more.
Article 26 (Protection of Personal Information Transferred Overseas)
The Company does not enter into international agreements containing matters that violate the Personal Information Protection Act and other related laws regarding Users' personal information. The Company obtains the consent of Users when providing, entrusting processing, or storing (hereinafter referred to as "Transfer") Users' personal information overseas (including cases where it is accessible). However, if all the items in each item of the following paragraph are disclosed according to the Personal Information Protection Act and other related laws or notified to Users by email or other methods prescribed by Presidential Decree, the consent procedure for processing entrustment/storage may not be required. When seeking consent according to the foregoing paragraph, the Company preliminarily notifies the User of all the following matters:
Items of personal information to be transferred
The country, time, and method of transfer of personal information
The name of the person receiving the personal information (in the case of a corporation, its name and contact information of the information management officer)
The purpose of use and retention/use period of the person receiving the personal information
When the Company transfers personal information overseas after obtaining consent according to the foregoing paragraph, it takes protective measures as prescribed by the Personal Information Protection Act and related laws.
Article 27 (Installation, Operation, and Rejection of Automatic Personal Information Collection Devices)
The Company uses personal information automatic collection devices (hereinafter referred to as 'cookies') that store and retrieve usage information from time to time to provide individual customized services to Users. Cookies are small pieces of information sent by the server (http) used to operate the website to the User's web browser (including PCs and mobile devices) and may also be stored in the User's storage space. Users have the option of installing cookies. Therefore, Users can allow all cookies, check each time a cookie is stored, or refuse to store all cookies by setting options in the web browser. However, if you refuse to store cookies, there may be difficulties in using some of the services provided by the Company that require login.
Article 28 (Method of Specifying Permission for Cookie Installation)
You can set cookie permissions, such as cookie acceptance and blocking, through the web browser option settings.
Edge: Settings menu on the top right of the web browser > Cookies and site permissions > Manage and delete cookies and site data
Chrome: Settings menu on the top right of the web browser > Privacy and security > Cookies and other site data
Whale: Settings menu on the top right of the web browser > Privacy protection > Cookies and other site data
Article 29 (Designation of Company's Personal Information Protection Officer)
The Company designates the following departments and personal information protection officers to protect Users' personal information and handle complaints related to personal information.
Personal Information Protection Officer
Article 30 (Remedies for Infringement of Rights)
Subjects of information can apply for dispute resolution or consultation, etc., to the Personal Information Dispute Mediation Committee, the Personal Information Infringement Report Center of the Korea Internet & Security Agency, etc., to receive remedies for personal information infringement. For other reports and consultations on personal information infringement, please contact the following institutions.
Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr)
Personal Information Infringement Report Center: (without area code) 118 (privacy.kisa.or.kr)
Supreme Prosecutors' Office: (without area code) 1301 (www.spo.go.kr)
National Police Agency: (without area code) 182 (ecrm.cyber.go.kr)
The Company guarantees the self-determination rights of subjects of information regarding personal information and strives to provide consultations and remedies for personal information infringement. If you need a report or consultation, please contact the department responsible for the first paragraph.
Subjects of information who have suffered infringement of rights or interests due to dispositions or inaction by the head of a public institution according to Articles 35 (Access to Personal Information), 36 (Correction·Deletion of Personal Information), and 37 (Suspension of Processing, etc., of Personal Information) of the Personal Information Protection Act can file administrative appeals according to the Administrative Appeals Act.
Central Administrative Appeals Commission: (without area code) 110 (www.simpan.go.kr)
Addendum
This Policy shall be implemented from January 21, 2024.