Blog한국어로 보기
Welcome, SMART-FMEA users!
We, EMFOCUS CO., LTD (with “SMART-FMEA”, "We", "Us", "Our"), respect your privacy and protecting your personal information is our top priority. Most importantly, we do not sell, rent, or disclose your personal information to anyone. This privacy policy (“Privacy Policy”) is designed to help you understand how we collect, use, and protect the information we receive from visitors to the SMART-FMEA website (“Website”) and users of SMART-FMEA ("SMART-FMEA ").
The Privacy Policy is open to the public at all times so that you may read the full text of the Privacy Policy whenever you need to do so. Any changes to the Privacy Policy will be notified to
Effective: September 28, 2021
PURPOSE
We may collect and use your personal information for the following purposes only. Any changes to the Privacy Policy will be notified to you to ensure that you understand the details of and reasons for such changes.
① Upon registration
- We use your information to verify, authorize your identification, prevent fraudulent use of SMART-FMEA, notify any change on SMART-FMEA, or comply with applicable laws and legal obligations.
② While you're using SMART-FMEA
- We use your information to confirm identity and age verification, provide SMART-FMEA, send invoices and contents, and process payments.
③ For marketing and ads
- We use your information to provide few features on SMART-FMEA, offer event participation, and process your usage analysis.
PERIOD FOR RETENTION AND USE OF YOUR PERSONAL INFORMATION
① SMART-FMEA will use and archive the information that you have agreed to provide to us by relevant laws and regulations.
② Each personal information processing and retention period is as follows.
| Category | Purpose | Operation | Items to be provided | Period of retention |
| Personal information | Use of SMART-FMEA | Upon your consent | Email, password, name, company, phone, department, position, country | Until you delete your account on SMART-FMEA |
DISCLOSURE OF COLLECTED INFORMATION
① When disclosure is required by the Korean laws: Articles 17 and 18 of the Personal Information Protection Act.
② We do not disclose personal information with a 3rd party except the following:
A. When the users consent to disclose in advance
B. Disclosure is required by the other Korean laws
C. When you are unable to consent due to an unknown address or it is determined disclosure is necessary for your safety or profit of your property.
D. When personal information is provided in a form in which a specific individual cannot be identified as necessary for statistical purposes and academic research purposes.
E. When it is impossible to perform the tasks under the jurisdiction prescribed by other laws unless disclosing your personal information and has undergone deliberation and resolution by the Personal Information Protection Committee.
F. Where it is necessary to provide to foreign governments or international organizations for the implementation of treaties or other international agreements.
G. When necessary for the investigation of crimes and filing and maintaining prosecution.
H. When necessary for the court's judicial affairs.
I. If it is necessary for the execution of punishment, custody, and protective disposition.
AUTHORIZED 3RD PARTY
① SMART-FMEA entrusts personal information processing tasks as follows.
| Authorized 3rd Party | Authorized Item | Authorization Period |
| Gabia | Information system operation | Until you delete your account or consignment service is terminated |
| NHN KCP | Purchase and payment (domestic, Korea) | Until you delete your account or consignment service is terminated |
| Paypal, Stripe | Purchase and payment (overseas) | Until you delete your account or consignment service is terminated |
| Tawk.to | Customer support and sales, marketing support | Until you delete your account or consignment service is terminated |
② When signing a consignment contract, according to Article 26 of the Personal Information Protection Act, SMART-FMEA prohibits the processing of personal information other than the purpose of performing consignment, technical and administrative protective measures, restrictions on re-consignment, management and supervision of the consignee, and liability for damages. It is specified in documents such as contracts and supervises whether the trustee handles personal information safely.
③ We do not provide personal information to foreign business operators other than the listed authorized 3rd parties above. We manage and supervise outsourced work so that it can be safely managed.
④ If the contents of the consignment business or the authorized 3rd parties change, we will disclose it through this Privacy Policy immediately.
YOUR RIGHTS AND OBLIGATIONS OF THE INFORMATION AND METHODS
You may exercise the following rights as a subject of personal information.
① The information subject may exercise rights such as viewing, correcting, deleting, and stopping the processing of personal information at any time.
② The exercise of rights under paragraph (1) can be carried out in writing, e-mail, fax, etc. under Article 41 Paragraph 1 of the Enforcement Decree of the Personal Information Protection Act, and we will take action without delay.
③ The exercise of rights under paragraph (1) can be carried out through agents, such as those delegated by the information subject. In this case, you must submit a power of attorney under the form of Attachment 11 of the Enforcement Regulations of the Personal Information Protection Act.
④ The right of the information subject may be restricted according to Article 35, Clause 5, Article 37, Clause 2 of the Personal Information Protection Act.
⑤ You cannot request correction or deletion of your personal information if your personal information is stated as a target for collection in other statutes.
⑥ We confirm whether the person who made the request, such as a request for access according to the rights of the subject of the information, a request for correction or deletion, or a request for suspension of processing, is the person who made the request or a legitimate agent.
DELETION OF PERSONAL DATA
SMART-FMEA deletes your personal information once all processing, necessary for the purpose described in the Privacy Policy, is accomplished.
① Deletion Procedure
- The information entered by the user is transferred to a separate DB after the purpose is achieved (separate documents in the case of paper) and stored for a certain period or immediately destroyed according to internal policies and other related laws. At this time, the personal information transferred to the DB is not used for other purposes unless it is required by law.
② Deletion Period
- If the personal information of users has elapsed, within 5 days from the end of the retention period, when the personal information becomes unnecessary, such as achievement of the purpose of processing personal information, the abolition of the service, termination of business, etc. The personal information will be destroyed within 5 days from the date it is recognized as unnecessary to process the information.
③ Deletion Method
A. Electronic records will be discarded in an irreversible manner using technical methods.
B. Paper records will be either shredded or incinerated.
MATTERS CONCERNING THE INSTALLATION, OPERATION, AND REJECTION OF AUTOMATIC PERSONAL INFORMATION COLLECTION DEVICES
① To provide you with SMART-FMEA, we use Cookies saved on your personal computer (“PC”) and retrieved whenever required for any PC-based services.
② Cookies are small text files of information sent to your browser by the website operating server (SMART-FMEA.com), which are then stored on the hard drive of your PC.
A. Purpose: We collect and use your information from your cookies as well, only for the Collection and Use of Personal Information under applicable data protection law.
B. Blocking and disabling cookies: You can disable cookies on your browser settings; [More] on the top of browser > [Setting] > [Privacy and Security] > [Cookies].
C. If you limit the ability of websites and applications to set cookies, SMART-FMEA will no longer be personalized to you.
③ We automatically collect information on the type of device you use, operating system version, and device-specific identifiers when you use SMART-FMEA. We may also collect your credit card information, carrier information, promotional code or gift certificate numbers, or other information required for payment processing when you use paid Services.
④ Mobile Analytics: We use mobile analytics software to allow us to better understand the functionality of our application on your phone. This software may record information such as how often you use the application, the events that occur within the application, aggregated usage, performance data, and technical issues.
CONTACT US
① We are responsible for the handling of personal information and appoints the person in charge of personal information protection as follows for handling complaints and remedies for damages related to personal information processing.
A. Privacy Protection Officer
- Chief Officer: Ki-Hyeong Park
- Position: CTO
- Contacts: +82 31-500-4875, privacy@smart-fmea.com
※ You may contact our Privacy Protection Responsible Department.
B. Privacy Protection Responsible Department
- Dept.: Management
- Manager: Se-Kyeong Kim
- Contacts: +82 31-500-4875, privacy@smart-fmea.com
② Your inquires, reports and feedbacks do matter to us. Please feel free to contact the Privacy Protection Officer or Responsible Department for all your complaints, inquiries, comments or requests concerning your information in connection with SMART-FMEA.
③ We will endeavor to provide you with a timely and satisfactory response.
CHANGES TO OUR PRIVACY POLICY
① This Privacy Policy will be applied from the effective date, and if there is any addition, deletion or correction of changes by-laws and policies, it will be notified through a notice from 7 days before the enforcement of the changes.
SECURITY PRACTICES
We are taking technical, administrative, and physical measures necessary to secure safety as follows under Article 29 of the Personal Information Protection Act.
① Security Audits
- We conduct our audits on regularly (quarterly) to ensure the safety of handling your personal information.
② Minimization and training of personnel handling personal information We designate the responsible employees who may have access to your personal information to minimize the unnecessary exposure of your personal information and protect your data safely.
③ Resource Managements
- We have resource management policies and procedures to handle your personal information reliably and securely.
④ Incident Measures
- We have currently-running systems to prevent any possible leakage and damage of your personal information due to incidents such as hacking or computer viruses. We also conduct periodic updates and checks on the systems while placing strict controls by monitoring them and blocking external accesses technically and physically.
⑤ Data Encryption
- We store and manage your password and Important Data defined under the Personal Information Protection Act by encryption, which allows only you to have access. In addition to encryption, we use security systems such as AWS GuardDuty and automatically locks your file when unauthorized access is detected.
⑥ Retention and Forgery Prevention of Access Records
- We retain your access records for 2 years at least to prevent forgery, theft, or loss.
⑦ Access to Personal Information
- Unauthorized access shall not be allowed to enter the Database System for your personal information, and we place strict controls over authorizations as well as changes and expiries of the authorities. We use Intrusion Prevention Systems (IPS) to protect your personal information from unpermitted access.
⑧ Document Securities
- For the documents and storage devices containing your personal information, we mandatorily store them to a safe place with a locking system.
⑨ Access control for unauthorized persons
- Storage for your personal information has been established in physical servers separately. We implement and operate access controls policies over the servers.
OTHER ORGANIZATIONS
You may direct questions or complaints to the following organizations if reporting the violation of privacy protection is needed.
A. KISA Report Center for Personal Information Breach
- In charge of : receiving complaints regarding infringement of personal information
- Website : https://privacy.kisa.or.kr
- Contact : (Toll free) 118
- Address : 3F, 9, Jinheung-gil, Naju-si, Jeollanam-do, Republic of Korea (Zip Code: 58324)
B. Personal Information Dispute Mediation Committee
- In charge of : mediating disputes between individual data subjects and processors, or collective complaints (
- Website : www.kopico.go.kr
- Contact : (Toll free) 1833-6972
- Address: 209, Sejong-daero, Jongno-gu, Seoul, Republic of Korea (Zip Code: 03171)
C. Cyber Crime Investigation, Supreme Prosecutors' Office : (Toll free) 1301
D. Cyber Terror Response Center, National Police Agency : (Toll free) 182 (http://cyberbureau.police.go.kr)
