Privacy policy
OHMC implements and complies with the following privacy policy to protect the privacy and rights of information subjects in accordance with Article 30 of the Personal Information Protection Act and to smoothly handle users’ grievances related to personal information.
[Purpose of collection and use of personal information]
-Use of information for online inquiry consultation.
[Personal information items collected]
1. Collection items: Name, mobile phone number, email
2. Personal information collection method: Website
[Personal information processing and retention period]
-After the purpose of collecting and using personal information is achieved, the relevant information is destroyed without delay.
[Matters regarding procedures and methods for destroying personal information]
1. Personal information is destroyed with the approval of the personal information protection officer when a reason for destruction occurs.
2. Information in the form of electronic files is destroyed so that it cannot be reproduced, and information recorded in paper documents is shredded or incinerated.
[Matters regarding measures to ensure the safety of personal information]
-Perform regular self-audits
We conduct regular self-audits to ensure the stability of personal information processing.
2. Establishment and implementation of an internal management plan
We establish and implement an internal management plan to safely process personal information. 3. Encryption of Personal Information
Important personal information required by law is encrypted, stored and managed, and only the user can access it. Important data uses separate security features such as encrypting files and transmission data or using file locking functions.
4. Technical measures against hacking, etc.
In order to prevent personal information leakage and damage due to hacking or computer viruses, we install security programs and conduct periodic updates and inspections. We install systems in areas with controlled access from the outside and monitor and block them technically and physically.
5. Restriction of access to personal information
We take necessary measures to control access to personal information by granting, changing, and deleting access rights to the database system that processes personal information, and we control unauthorized access from the outside using an intrusion prevention system.
6. Storage of access records and prevention of forgery and falsification
We store and manage records of access to the personal information processing system for at least one year, and use security features to prevent forgery, falsification, theft, and loss of access records. 7. Use of locking devices for document security
Documents containing personal information, auxiliary storage media, etc. are stored in a safe place with a locking device.
8. Access control for unauthorized persons
We have established and are operating access control procedures for the physical storage location where personal information is stored separately.
[Matters regarding the rights, obligations, and exercise methods of information subjects and legal representatives]
Information subjects may request to view personal information, request correction in case of errors, request deletion, request suspension of processing, and exercise their rights related to personal information protection at any time.
1. Users and legal representatives may view or modify their own registered personal information or that of children under the age of 14 at any time, and may refuse consent or request cancellation of membership (withdrawal of membership) if they do not agree to our processing of personal information. However, in such cases, it may be difficult to use some or all of the services.
2. To view or modify personal information of users or children under the age of 14, please contact the personal information manager in writing, by phone, or by email, and we will take action without delay. 3. If a user requests correction of errors in personal information, the personal information will not be used or provided until the correction is completed. In addition, if incorrect personal information has already been provided to a third party, the results of the correction process will be notified to the third party without delay to ensure that the correction is made.
4. Personal information that has been terminated or deleted at the request of the user or legal representative will be processed in accordance with the provisions of “Article 2 (Processing and Retention Period of Personal Information)” and will not be viewed or used for any other purpose.
[Right to refuse consent and disadvantages of refusing consent]
– The data subject has the right to refuse consent to the collection and use of personal information. However, if consent to required items is refused, there may be restrictions on the use of the service.
[Collection of sensitive information and unique identification information]
– We do not collect sensitive information such as health information or unique identification information such as resident registration numbers.
[Provision of personal information to third parties]
– The Company does not provide the collected information to third parties without the consent of the data subject in accordance with the law. However, if required by law, we may only provide this information with the separate consent of the data subject.
[Entrustment of Personal Information Processing]
The company may outsource personal information processing to external parties for service improvement. In such cases, necessary provisions are included in outsourcing agreements to ensure the safe management of personal information.
[Privacy Officer]
Name: Sungbae Kim
Contact: 02-540-0962
Email :cs@ohmckorea.com
[About changes to the Privacy Policy]
This Privacy Policy is effective as of March 1, 2025.