Privacy Policy
Article 1 [Purpose)
MINDLINK GAMES (hereinafter referred to as “Company”) protects the information (hereinafter “personal information”) of individuals (hereinafter “users” or “individuals”) who use the services (hereinafter “Company Services”) that the Company seeks to provide. In order to comply with related laws such as the Republic Act No. 10173, also known as the Data Privacy Act of 2012 (hereinafter referred to as the ‘Data Privacy Act’), and to promptly and smoothly handle service users’ grievances related to personal information protection, as follows: Together, we establish a personal information processing policy (hereinafter referred to as “this policy”).
Article 2 (Principles of personal information processing)
In accordance with personal information-related laws and this policy, the company may collect users’ personal information, and the collected personal information may be provided to third parties only with the individual’s consent. However, if legally enforced by laws, regulations, etc., the company may provide the collected user’s personal information to a third party without the individual’s prior consent.
Article 3 (Disclosure of this policy)
- The company discloses this policy through the first screen of the company website or a link to the first screen so that users can easily check this policy at any time.
- When disclosing this policy in accordance with Paragraph 1, the Company uses font size, color, etc. to enable users to easily check this policy.
Article 4 (Changes to this policy)
- This policy may be revised in accordance with changes in personal information-related laws, guidelines, notices, or policies or contents of government or company services.
- If the company revises this policy in accordance with Paragraph 1, it will announce it in one or more of the following ways.
- A method of making announcements through the notice section on the first screen of the company’s Internet homepage or through a separate window.
- Method of notifying users in writing, facsimile, e-mail, or similar methods
- The company will announce the notice in Paragraph 2 at least 7 days prior to the effective date of the revision of this policy. However, if there are significant changes to user rights, notice will be provided at least 30 days in advance.
Article 5 (Information for membership registration)
The company collects the following information to enable users to register for the company’s services.
- Required information collected: email address, password, name, nickname, date of birth and mobile phone number
Article 6 (Information for identity verification)
The company collects the following information to verify the user’s identity.
- Required collected information: mobile phone number, email address, name, date of birth, gender, identity verification value (CI, DI), mobile carrier, and domestic/foreigner status
Article 7 (Information for legal representative consent)
If consent from a legal representative is required, the company collects the following information to obtain consent from the legal representative.
- Required collected information: Guardian’s name, guardian’s date of birth, guardian’s gender, guardian’s domestic/foreign status, guardian’s mobile phone number, guardian’s mobile carrier information, and guardian’s identity verification value (CI, DI)
Article 8 (Information for payment services)
The company collects the following information to provide the company’s payment services to users.
- Required collected information: card number, card password, expiration date, 6-digit date of birth (yy/mm/dd), bank name and account number
Article 9 (Information for issuing cash receipts)
The company collects the following information to issue users’ cash receipts.
- Required collected information: name of person to whom cash receipt is issued, date of birth of person to issue cash receipt, address of person to issue cash receipt, mobile phone number, and cash receipt card number
Article 10 (Information for providing company services)
The company collects the following information to provide the company’s services to users.
- Required collected information: ID, email address, name, date of birth and contact information
- Optional collected information: (when paying for physical products) name, phone number, address, (when paying for mobile products) phone number, and (when processing taxes and fees) name, resident registration number, phone number, address, email address
Article 11 (Information to confirm service use and illegal use)
The company collects the following information for statistics and analysis of users’ use of the service and for confirmation and analysis of illegal use. (Fraudulent use refers to acts that illegally or illegally receive economic benefits such as discount coupons and event benefits provided by the company, such as repeatedly re-registering after withdrawing membership or canceling purchases after purchasing products, etc., acts prohibited by the Terms of Use, etc. , refers to illegal and illegal acts such as identity theft, etc.)
- Required collected information: service usage records, cookies, access point information, and device information
Article 12 (Method of collecting personal information)
The company collects users’ personal information in the following ways.
- How users enter their personal information on the company’s website
- A method in which users enter their personal information through services other than the website provided by the company, such as applications
- A method entered by users in the process of using the company’s services, such as customer service consultations and bulletin board activities.
Article 13 (Use of personal information)
The company uses personal information in the following cases.
- When necessary for company operation, such as delivery of notices
- To improve services for users, such as responding to usage inquiries and handling complaints
- To provide the company’s services
- To prevent and sanction actions that interfere with the smooth operation of the service, including restricting the use of members who violate laws and company terms and conditions, and fraudulent use.
- For new service development
- For marketing purposes such as event and event information
- For demographic analysis and analysis of service visit and usage records
- For the formation of relationships between users based on personal information and interests
Article 14 (Retention and use period of personal information)
- The company retains and uses users’ personal information only for as long as necessary to fulfill the purposes for which it was collected, as outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. This may include retaining your data to comply with legal obligations, resolve disputes, and enforce our agreements.
- Notwithstanding the preceding paragraph, the Company, in accordance with its internal policy, retains records of unauthorized use of the service for up to one year from the time of membership withdrawal to prevent unauthorized registration and use.
Article 15 (Retention and use period of personal information in accordance with laws)
The company retains and uses personal information as follows in accordance with relevant laws and regulations.
- Information retained and retention period in accordance with the Act on Consumer Protection in Electronic Commerce, etc.
- Records on contracts or subscription withdrawals, etc.: 5 years
- Records of payment and supply of goods, etc.: 5 years
- Records of consumer complaints or dispute resolution: 3 years
- Records of labeling and advertising: 6 months
- Information retained and retention period in accordance with the Communications Secrets Protection Act
- Website log record data: 3 months
- Information and retention period according to the Electronic Financial Transactions Act
- Records of electronic financial transactions: 5 years
- Act on the Protection and Use of Location Information, etc.
- Records of personal location information: 6 months
Article 16 (Principle of destruction of personal information)
In principle, when personal information is no longer needed, such as when the purpose of processing a user’s personal information has been achieved or when the retention/use period has expired, the company destroys the information without delay.
Article 17 (Right to Request Data Deletion)
You have the right to request the deletion of your personal data. Upon receiving and verifying your request, we will delete your personal data from our records, unless an exception applies.
Article 18 (Method of Requesting Data Deletion)
- To request the deletion of your personal data, please contact us at:
i. Company: MindLink Games
ii. Email: [email protected]
iii. Address: 539, 5F, 398, Seocho-daero, Seocho-gu, Seoul, South Korea.
iv. Contact Number: +070-8064-6583
- Please include the following information in your request:
i. Your full name
ii. The email address associated with your account
iii. A clear statement that you wish to have your personal data deleted
iv. Verification of Request
To protect your privacy and security, we will take reasonable steps to verify your identity before processing your request for data deletion. This may include requesting additional information from you.
Article 19 (Exceptions to Data Deletion)
Certain data may not be deleted if it is necessary for:
- Complying with a legal obligation
- Protecting against malicious, deceptive, fraudulent, or illegal activity
- Enforcing our agreements, including our Terms of Service
- Resolving disputes
- Completing a transaction or providing goods or services you requested
- Confirmation of Deletion
- Once your request has been processed, we will provide confirmation that your personal data has been deleted. Please note that it may take up to [specific timeframe, e.g., 30 days] to complete the deletion process.
Article 20 (Personal Information Destruction Procedure)
- The information entered by the user for membership registration, etc. is transferred to a separate DB (in the case of paper, a separate file box) after the purpose of personal information processing is achieved (retention and use period) in accordance with the internal policy and other relevant laws and regulations for information protection reasons. (Reference) It is stored for a certain period of time and then destroyed.
- The company destroys personal information that has grounds for destruction through the approval process of the personal information protection manager.
Article 21 (Method of destroying personal information)
The company deletes personal information stored in electronic file format using technical methods that render the record unrecoverable, and personal information printed on paper is destroyed by shredding or incineration.
Article 22 (Measures to transmit advertising information)
- When transmitting advertising information for commercial purposes using electronic transmission media, the company obtains the user’s explicit prior consent. However, prior consent will not be obtained in any of the following cases:
- If the company collects contact information directly from the recipient through a transaction relationship for goods, etc., and if the company intends to transmit for-profit advertising information about goods of the same type as those processed and transacted with the recipient within 6 months from the end of the transaction
- When a telephone solicitation seller pursuant to the Act on Door-to-Door Sales, etc. informs the recipient of the source of personal information collection and makes a telephone solicitation.
- Notwithstanding the preceding paragraph, if the recipient expresses an intention to refuse receipt or withdraws prior consent, the Company will not transmit advertising information for commercial purposes and will notify the recipient of the processing results for refusal to receive receipt or withdrawal of consent.
- Notwithstanding Paragraph 1, if the Company transmits advertising information for commercial purposes using electronic transmission media between 9:00 PM and 8:00 AM the next day, separate prior consent is obtained from the recipient.
- When transmitting advertising information for commercial purposes using electronic transmission media, the company specifically discloses the following information in the advertising information.
- Company name and contact information
- Indication of matters regarding refusal to receive or withdrawal of consent to receive.
- When transmitting advertising information for commercial purposes using electronic transmission media, the Company will not take any of the following measures.
- Measures to avoid or prevent recipients of advertising information from opting out of receiving it or withdrawing their consent to receive it.
- A measure to automatically create the recipient’s contact information, such as a phone number or e-mail address, by combining numbers, symbols, or letters
- Measures to automatically register phone numbers or e-mail addresses for the purpose of transmitting commercial advertising information
- Various measures to hide the identity of the transmitter of advertising information or the source of advertisement transmission
- Various measures to induce a response by deceiving recipients for the purpose of transmitting advertising information for commercial purposes
Article 23 (Withdrawal of personal information inquiry and collection consent)
- Users and their legal representatives can view or modify their registered personal information at any time and request withdrawal of consent to personal information collection.
- Users and their legal representatives may withdraw their consent to the collection of their subscription information, etc. by contacting the personal information protection manager or person in charge in writing, by phone, or by e-mail, and the company will take action without delay.
Article 24 (Change of personal information, etc.)
- Users may request the company to correct errors in personal information through the methods provided above.
- In the case of the preceding paragraph, the company will not use or provide personal information until the correction of personal information is completed. If incorrect personal information has already been provided to a third party, the company will notify the third party of the result of the correction without delay and the correction will be made. I will do my best.
Article 25 (User Obligations)
- Users must keep their personal information up to date, and they are responsible for any problems that arise from entering inaccurate information.
- If you register as a member using someone else’s personal information, you may lose your user status or be punished under relevant personal information protection laws and regulations.
- Users are responsible for maintaining the security of their e-mail address, password, etc., and may not transfer or rent it to a third party.
Article 26 (Protection of personal information transferred overseas)
- The Company does not enter into international contracts regarding users’ personal information that violate relevant laws and regulations, such as the Personal Information Protection Act and Data Privacy Act.
- The company obtains the user’s consent to provide, entrust processing, or store (hereinafter referred to as “transfer”) the user’s personal information overseas (including when it is inquired). However, if all of the matters in each subparagraph of Paragraph 3 of this Article are disclosed in accordance with relevant laws and regulations such as the Data Privacy Act, or are notified to users through methods prescribed by Presidential Decree, such as e-mail, consent procedures for entrusting and storing personal information may not be required. .
- In order to obtain consent pursuant to the main text of Paragraph 2 of this Article, the Company shall notify the user of all of the following matters in advance.
- Personal information items transferred
- Country to which personal information is transferred, date and method of transfer
- Name of the person to whom personal information is transferred (if a corporation, the name and contact information of the person in charge of information management)
- Purpose of use and retention/use period of personal information by the person receiving personal information transfer
- When transferring personal information overseas with consent pursuant to the main text of Paragraph 2 of this Article, the Company takes protective measures in accordance with relevant laws and regulations, such as the Data Privacy Act.
Article 27 (Matters regarding installation, operation and refusal of automatic personal information collection devices)
- The company uses an automatic personal information collection device (hereinafter referred to as “cookies”) to store and frequently retrieve usage information in order to provide individualized services to users. Cookies are a small amount of information that the server (http) used to run the website sends to the user’s web browser (including PC and mobile) and are sometimes stored in the user’s storage space.
- Users have the option to install cookies. Therefore, users can allow all cookies by setting options in their web browser, confirm each time a cookie is saved, or refuse to save all cookies.
- However, if you refuse to store cookies, you may have difficulty using some of the company’s services that require login.
Article 28 (How to specify permission to install cookies)
You can allow cookies, block cookies, etc. through your web browser option settings.
- Edge: Settings menu at the top right of the web browser > Cookies and site permissions > Manage and delete cookies and site data
- Chrome: Settings menu at the top right of the web browser > Privacy and security > Cookies and other site data
- Whale: Settings menu at the top right of the web browser > Privacy > Cookies and other site data
Article 29 (Designation of the company’s personal information protection officer)
- In order to protect users’ personal information and handle complaints related to personal information, the company designates relevant departments and a personal information protection officer as follows.
- Personal Information Protection Officer
- Name: Kwon Sang-hyeon
- Position: Manager
- Phone number: 01099489452
- Email: [email protected]
Article 30 (Methods of relief for infringement of rights)
- In order to receive relief from personal information infringement, the information subject may apply for dispute resolution or consultation to the Personal Information Dispute Mediation Committee, the Korea Internet & Security Agency’s Personal Information Infringement Reporting Center, etc. For other personal information infringement reports and consultations, please contact the organizations below.
- Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr)
- Personal Information Infringement Reporting Center: (without area code) 118 (privacy.kisa.or.kr)
- Supreme Prosecutors’ Office: (without area code) 1301 (www.spo.go.kr)
- National Police Agency: (without area code) 182 (ecrm.cyber.go.kr)
- The company guarantees the information subject’s right to self-determination of personal information and strives to provide consultation and relief for damage caused by personal information infringement. If you need to report or consult, please contact the department in charge in Paragraph 1.
- Dispositions made by the head of a public institution in response to requests pursuant to the provisions of Article 35 (view of personal information), Article 36 (correction/deletion of personal information), and Article 37 (suspension of processing of personal information, etc.) of the Data Privacy Act. Or, a person whose rights or interests have been infringed due to an omission may request an administrative trial in accordance with the provisions of the Administrative Appeals Act.
- Central Administrative Appeals Commission: (without area code) 110 (www.simpan.go.kr)
Supplementary provisions Article 1 This policy comes into effect from 2024.02.01.