Privacy policy

Privacy Policy

MFRC (hereinafter referred to as "the Company") establishes and discloses this Privacy Policy in accordance with Article 30 of the Personal Information Protection Act of South Korea, which governs the handling of personal information in South Korea, to protect the personal information of data subjects and to ensure that any complaints related to this matter are processed promptly and smoothly.

Article 1 (Purpose of Processing Personal Information)
The Company processes personal information for the following purposes. The personal information being processed will not be used for any purpose other than those specified below, and in the event of a change in the purpose of use, necessary measures such as obtaining separate consent will be implemented in accordance with Article 18 of the Personal Information Protection Act.
①Service Provision
Personal information is processed for the purposes of providing services, sending contracts and invoices, delivering content, and providing customized services.
② Inquiry Handling
The Company collects personal information to process inquiries made by users, verify their identity, and respond to their requests. The information provided by users, including their name, affiliation, contact information, and inquiry content, is deemed as consent for information provision.

Article 2 (Retention and Duration of Personal Information)
The Company processes and retains personal information within the periods prescribed by relevant laws or the duration of consent obtained from data subjects. The retention periods for personal information are as follows:
① For the provision of goods or services: Until the completion of the provision of goods or services.
② Records related to consumer complaints or dispute resolution: 3 years.

Article 3 (Provision of Personal Information to Third Parties)
① The Company processes personal information only within the scope specified in Article 1 (Purpose of Processing Personal Information) and provides it to third parties only with the consent of the data subject or in cases permitted by special provisions of law as stipulated in Article 17 of the Personal Information Protection Act.
② The Company does not currently provide personal information to third parties.

Article 4 (Outsourcing of Personal Information Processing)
① The Company does not outsource any personal information processing tasks to ensure smooth processing.

Article 5 (Rights of Users and Legal Representatives)
① Data subjects may exercise the following rights related to the protection of personal information at any time:
- Request to access personal information
- Request for correction in case of errors
- Request for deletion
② Rights under paragraph 1 can be exercised by contacting the Company via written communication, telephone, or email, and the Company will take prompt action.
③ If a data subject requests correction or deletion of their personal information, the Company will refrain from using or providing the relevant personal information until the correction or deletion is completed.
④ Rights may also be exercised through a legal representative or an authorized agent. In such cases, a power of attorney as per the Personal Information Protection Act Enforcement Rules must be submitted.

Article 6 (Items of Personal Information Processed)
The Company processes the following personal information items:
① Name, telephone number, email address, and inquiry content
② Automatically collected items during internet service use: IP address, cookies, service usage records, visit records, etc.

Article 7 (Destruction of Personal Information)
① The Company will promptly destroy personal information that is no longer necessary due to the expiration of the retention period or the achievement of processing purposes.
② The Company will select personal information for destruction and obtain approval from the personal information protection officer before proceeding with the destruction. Electronic files will be destroyed in a manner that prevents recovery (e.g., using low-level formatting), while paper documents will be shredded or incinerated.

Article 8 (Measures to Ensure the Safety of Personal Information)
The Company takes the following measures to ensure the safety of personal information:
① Administrative measures: Establishment and implementation of internal management plans, regular employee training, etc.
② Technical measures: Access control management and installation of security programs.
③ Physical measures: Access control to data storage rooms and computer rooms.

Article 9 (Personal Information Protection Officer)
The Company has appointed a personal information protection officer who is responsible for overseeing personal information processing and addressing any complaints or issues related to personal information.
① Name: Eom Jae-geun
② Position: Research Director
③ Contact: +82-55-855-7529, mfrc@afdex.com

Article 10 (Enforcement and Modification of the Privacy Policy)
This Privacy Policy is effective from November 1, 2024.