Privacy Policy


The "Company" values the protection of members' personal information and complies with relevant laws such as the "Act on Promotion of Information and Communications Network Utilization and Information Protection", the "Personal Information Protection Act", the "Act on the Protection and Use of Location Information", and guidelines established by relevant institutions.

Through this Privacy Policy, the "Company" informs users about how their personal information is used and what measures are taken to protect it.

1. Items and Methods of Collecting and Using Personal Information

The personal information items collected and used by the Company and the methods of collection are as follows:
1)Items collected and used:
* Customer name, email, contact number, vehicle type, residence, inquiry details
2) Method of collection: Information provided through the "Contact Us" form
Users may refuse to provide personal information. However, refusal may limit partial or full access to the service.

2. Purpose of Collection and Use of Personal Information
The Company distinguishes between items that require user consent and those that do not. The purposes of use for each item are as follows:

[Items Requiring User Consent]
① User ID: Personal identification for content provision
② User name: Personal identification for content provision
③ Password: User verification

[Items Not Requiring User Consent]
① Access records (e.g., visit time): Service quality improvement, contract fulfillment, and dispute resolution

3. Retention and Use Period of Personal Information
Personal information collected with user consent will be retained and used while the user retains membership. Upon membership cancellation, the data will be irreversibly deleted from the disk and rendered inaccessible.
However, in case of identity theft or for the protection of victims, user IDs may be temporarily retained for up to 14 days after cancellation and then irreversibly deleted. Exceptions apply in the following cases:
1) When preservation is required by law, such as the Commercial Act:
* Records on contracts or withdrawal of subscription
• Reason: Consumer Protection in Electronic Commerce Act
• Period: 5 years
* Records on payment and supply of goods
• Reason: Consumer Protection in Electronic Commerce Act
• Period: 5 years
* Records on consumer complaints or dispute resolution
• Reason: Consumer Protection in Electronic Commerce Act
• Period: 3 years
* Access logs, IP information, service usage records
• Reason: Protection of Communications Secrets Act
• Period: 3 months

2) When separate user consent has been obtained

4. Sharing and Provision of Personal Information

The Company uses personal information within the scope notified at the time of collection and does not disclose it externally without prior user consent. Exceptions include:
1. When the user has agreed in advance
2. When the user violates the terms of service or policies posted on the website
3. When disclosure is deemed necessary for legal action due to damage caused to others
4. When required by law or by official requests from courts, investigative agencies, or administrative authorities
5.Procedures and Methods for Destroying Personal Information
Personal information is destroyed without delay once the purpose of its use is fulfilled. The procedures and methods are as follows:
1) Destruction Procedure
Information collected for membership or inquiries is retained per internal policies and laws, then destroyed once the purpose is achieved.
2) Destruction Method
① Printed personal information is shredded or incinerated.
② Electronic files are deleted using technical methods that make recovery impossible.

6. Rights of Members and Legal Representatives and How to Exercise Them
Members or their legal representatives may withdraw consent for the use of personal information at any time (e.g., by deleting their account). Users can also view or correct their personal information, or that of minors under 14 (by legal representatives).

If a correction is requested, the information will not be used or provided until the correction is completed. If it has already been provided to a third party, the corrected data will be promptly shared.
Deleted personal information is handled per "3. Retention and Use Period" and will not be accessed or used for any other purpose.

7. Technical and Managerial Protection of Personal Information
To ensure that personal information is not lost, stolen, leaked, altered, or damaged, the Company takes the following measures:
* Regular backups and virus protection
* Encryption technologies for secure transmission
* Intrusion prevention systems for unauthorized access
* Access to personal data is restricted to authorized personnel only
* Regular password changes and training to ensure compliance
* Internal audits and immediate corrective action when issues are found


8. Contact Information of the Personal Information Manager
Personal Information Manager
Name: Kim Ok-soo
Department: HeninHen
Position: Manager
Phone: +82-2-422-0745

9. Customer Service for Personal Information Inquiries
The Company collects opinions and handles complaints related to personal information. Users may submit complaints via phone or inquiry form based on the contact details listed above.
Users may also contact the following organizations for help:
* [ePrivacy Certification Committee](http://www.eprivacy.or.kr) | FAX: +82-2-580-0529 * [Korea Internet & Security Agency (KISA)](http://www.kopico.or.kr) | Phone: 02-1336 --- 10. Miscellaneous
The Company's Privacy Policy may be revised due to legal or policy changes. Any changes will be announced via the service's main page or other accessible means at least 7 days before enforcement.

11. Supplementary Provisions
This policy is effective from September 1, 2015.

Let me know if you’d like it formatted for a website or as a downloadable document (PDF, DOCX, etc.).