forinner (hereinafter referred to as the "Company" or "Site") complies with the provisions of the 「Personal Information Protection Act」 and related laws and regulations to protect the freedom and rights of information subjects, and processes personal information lawfully and manages it securely.
Accordingly, in accordance with Article 30 of the 「Personal Information Protection Act」, we establish and disclose a privacy policy as follows to inform information subjects of the procedures and standards for processing personal information and to promptly and smoothly handle related grievances.
The Company collects personal information for the following purposes, and does not use the collected personal information for purposes other than the following purposes. If the purpose of use is changed, we will take necessary measures, such as obtaining separate consent in accordance with Article 18 of the 「Personal Information Protection Act」.
1) Member Management
Identification of oneself, confirmation of one's intention, response to customer inquiries, introduction of new information and delivery of notices regarding the use of membership services
2) Service Development and Marketing/Advertising Utilization
Providing customized services, providing service guidance and recommendations, statistics and access frequency analysis for service improvement and new service development, advertising based on statistical characteristics, event information and providing opportunities to participate
The Company collects personal information for the following purposes, and does not use the collected personal information for purposes other than the following purposes. If the purpose of use is changed, we will take necessary measures, such as obtaining separate consent in accordance with Article 18 of the 「Personal Information Protection Act」.
A. Items of personal information collected
Category | Items |
|---|---|
Membership Registration | Required) Name, Activity Name, Password, Mobile Phone Number, Email |
Information collected in the process of using the service or processing business | IP Address, Cookies, Visit Date, Service Usage Records, Bad Usage Records, Advertising ID, Access Environment, Device Information (OS Version, Model Name) |
B. Method of collecting personal information
Website, service usage, event application, customer center inquiry
C. Collection of Unique Identification Information
- None
"Company" uses personal information within the scope notified in 1. Purpose of Collection and Use of Personal Information, and does not use it beyond this scope without the prior consent of the user.
A. Processing Entrustment
"Company" entrusts personal information as follows to improve services, and stipulates necessary matters to ensure that personal information is managed safely when entrusting contracts in accordance with relevant laws and regulations. We will notify you through a notice or privacy policy when changes occur.
Consignee | Details of Entrusted Work | Retention and Use Period |
|---|---|---|
Amazon Web Services | Providing a system development and operation environment for service provision | Until the member withdraws or the consignment contract ends |
“Company” entrusts part of the personal information processing work of users to overseas businesses as follows. Users can refuse the overseas transfer of personal information by withdrawing their membership. However, in that case, you may not be able to receive the services provided by the company.
Consignee | Items of personal information transferred | Country of personal information transfer and method of transfer | Purpose of use of personal information by the transferee | Retention and use period of personal information by the transferee |
|---|---|---|---|---|
MailChimp | Name, email, company name | USA / Transmission via network when sending mail | Providing a newsletter and marketing content delivery system | When the member withdraws / When the contract ends, it is destroyed |
Braze | Name, email, phone number, job search area, job category, job, years of experience, career | USA / Transmission via network when signing up for membership and updating related information | Newsletter, recommended position, marketing content sending | When the member withdraws / When the contract ends, it is destroyed |
Zendesk | Name, email, phone number | USA / Transmission via network when using customer inquiry service | Customer inquiry management | When the member withdraws / When the contract ends, it is destroyed |
B. In the following cases, personal information may be provided or used through reasonable procedures.
1) If the user agrees to the provision to a third party during the use of the service
Recipient of Personal Information | Purpose of Use of Personal Information by the Recipient | Items of Personal Information Provided | Retention and Use Period of Personal Information by the Recipient |
|---|---|---|---|
Google (Simple Authentication) | User authentication for information inquiry | Name, date of birth, contact information | Destroy immediately after user authentication |
2) However, this is an exception if required by law or if there is a request from an investigative agency in accordance with the procedures and methods prescribed by law for investigative purposes.
"Site" retains and uses users' personal information only for the period during which services are provided from the date of membership registration. If you withdraw your consent to the collection and use of personal information, the personal information will be destroyed without delay when the purpose of collection and use is achieved or the period of use ends.
However, in the following cases, it is retained for the specified reasons and periods.
1) If it is necessary to preserve it in accordance with the provisions of the Commercial Act and other related laws, transaction records and minimum basic information are retained for the retention period prescribed by law. In this case, the company uses the stored information only for the purpose of storage.
① Records related to contracts or withdrawal of subscription: 5 years
② Records on payment and supply of goods, etc.: 5 years
③ Records on consumer complaints or dispute resolution: 3 years
④ Records on illegal use, etc.: 5 years
⑤ Website visit records (login records, access records): 1 year
2) Upon request for membership withdrawal, the company, in principle, destroys personal information without delay at the same time as processing the withdrawal. However, if a member who has a history of support through the company withdraws, the company retains the support details and personal information related to the support details for 5 years after withdrawal for the following reasons:
① To prevent collusion with companies even after the job has been completed through the company, and to prevent participation in the company's illegal use
② It is necessary to keep the member's support information to complete the performance of the contract with the company regarding the provision of the company's services
3) If the retention period is notified in advance and the retention period has not expired, and if individual consent has been obtained, it is retained for the agreed period.
In principle, the company uses and provides personal information only within the scope consented to by the user. However, personal information may be additionally used and provided without the consent of the user in accordance with Article 15, Paragraph 3 or Article 17, Paragraph 4 of the 「Personal Information Protection Act」. In this case, the company will consider the following matters for the additional use and provision of personal information without the consent of the information subject.
1) Whether it is related to the original purpose of collection
2) Whether the possibility of predicting the additional use or provision of personal information is possible in light of the circumstances or processing practices of collecting personal information
3) Whether the user's interests are unreasonably infringed
4) Whether measures necessary to ensure safety, such as pseudonymization or encryption, have been taken
If the additional use and provision of personal information occurs continuously, we will disclose the judgment criteria for the above matters and check whether the criteria are met.
The company may pseudonymize the collected personal information so that it is impossible to identify a specific individual if necessary for statistical compilation, scientific research, or preservation of public records.
In the case of processing, entrusting, and providing pseudonymized information to a third party in accordance with Articles 28-2 through 38-7 of the 「Personal Information Protection Act」, this will be disclosed through this privacy policy.
In this case, the company will pseudonymize at least the minimum items, separate and manage pseudonymized information so that it is not re-identified, and take necessary protective measures.
In principle, the user's personal information is destroyed without delay when the purpose of collecting and using personal information is achieved. The personal information destruction procedure and method of "Company" are as follows.
1) Destruction procedure
Information entered by the user for membership registration, etc. is transferred to a separate DB (a separate document box in the case of paper) after the purpose is achieved, and is destroyed after being stored for a certain period according to internal policies and other related laws and regulations due to information protection reasons. Personal information transferred to a separate DB is not used for any other purpose unless required by law.
2) Destruction method
Personal information printed on paper is destroyed by shredding or incineration. Personal information stored in electronic file format is deleted using technical methods that cannot reproduce the records.
1) What is a cookie?
It is a small text file sent by a server used to operate a website to the user's browser and stored on the user's hard disk.
2) Purpose of using cookies
The information collected by "Site" through cookies is the same as "2. Items of Personal Information Collected and Method of Collection", and is not used for purposes other than "1. Purpose of Collection and Use of Personal Information".
3) Cookie installation, operation and refusal
Users have the right to choose whether to install cookies. By setting options in your web browser, you can allow all cookies, confirm each time a cookie is saved, or refuse the storage of all cookies.
- [How to set (Microsoft Edge)]: Tools Menu - Settings - Cookies and Site Permissions - Manage and Delete Cookies and Site Data
- [How to set (Chrome)]: Settings Menu - Show Advanced Settings - Privacy and Security - Site Settings - Cookie and Site Data Settings
- [How to set (Firefox)]: Options Menu - Privacy and Security - Cookie and Site Data Settings
- [How to set (Safari)]: Preferences Menu - Privacy Tab - Cookie and Website Data Level Settings
However, if you refuse to store cookies, there may be difficulties in using some services that require login.
1) The Company collects and uses behavioral information to provide optimized customized services, benefits, and online customized advertisements to the information subject during the service use process.
- Behavioral information collection tool: Google Analytics, Amplitude, Braze
- Method of collecting behavioral information: Automatic collection when visiting, searching, and running web/app sites
- Items of behavioral information collected and processed: Advertising identifier, service visit and use records
- Retention and use period: Retained and used for up to 2 years from the date of collection
2) The Company allows online customized advertising operators to collect and process behavioral information.
- Advertising operators who intend to collect and process behavioral information: Airbridge, Meta, Google, Naver, Kakao, Linkedin, X (Twitter), Apple
- Method of collecting behavioral information: Automatic collection when visiting, searching, and running web/app sites
- Items of behavioral information collected and processed: Advertising identifier, service visit and use records
- Retention and use period: Retained and used for up to 2 years from the date of collection
3) The method of exercising user control rights is as follows, and inquiries and remedies related to behavioral information follow the provisions set forth in 15. Personal Information Processing Department and Civil Service.
Category | Type | Content |
|---|---|---|
Web Browser | Microsoft Edge | Settings → Privacy, Search and Services → Tracking Prevention → Always use "Strict" tracking prevention when searching InPrivate → Privacy → Send Do Not Track requests |
Chrome | Settings → Advanced → Privacy and Security → Content Settings → Cookies → Block third-party cookies | |
Safari | Preferences → Prevent cross-site tracking and block all cookies | |
Mobile | Android | Google Settings → Account → Select Google Account → Select Ads → Uncheck Ad Personalization (May vary depending on OS version) |
iOS | iOS: iPhone Settings → Select Privacy → Select Ads → Uncheck Limit Ad Tracking (May vary depending on OS version) |
1) Personal information encryption
Users' personal information is protected by a password, and files and various data are protected through separate security functions through encryption or file lock functions.
2) Measures to prepare for hacking, etc.
All data is stored in a data center where high-level security is maintained. Access to personal information data is restricted by dividing user access rights, and it is not stored in personal PCs or offline spaces where external intrusion is feared.
3) Education of personal information processing staff
Personal information-related processing personnel are composed of a minimum number of people, and regular training is conducted on acquiring new security technologies and obligations to protect personal information, and security is maintained through internal audit procedures.
4) Personal ID and password management
"Company" is making its best efforts to protect users' personal information. However, the company is not responsible for problems caused by the leakage of personal information such as email (or account information set by the user through linking with external services such as Google), passwords, and the risks of the Internet.
"Site" may include various banners and links. In many cases, it is connected to pages of other sites, and this is an action to comply with the contract with the advertiser or to clarify the source of the content provided. If you click on a link included in the "Site" and move to the page of another site, the privacy policy of that site is not related to "Site", so please review the policy of the newly visited site.
"Company" determines that children under the age of 14 are not users of the service considering the purpose of the service, and does not accept membership registration from children under the age of 14.
Even if you do not sign up for membership on the "Site", you can view most of the content except for personal information and the main information on your resume that you do not wish to disclose.
Users and legal representatives can at any time view, disclose, non-disclose, modify, and delete their own information or the information of the relevant minor that is registered. Users and legal representatives can process personal information inquiries/corrections/cancellation of membership (withdrawal of consent) through "Member Information Management", and if you contact the personal information protection officer by e-mail, we will take action after going through the identity verification process.
If the user requests correction of an error in personal information, we will not use or provide the relevant personal information until the correction is completed. In addition, if incorrect personal information has already been provided to a third party, we will notify the third party of the correction processing result without delay so that the correction can be made.
"Company" processes personal information that has been canceled or deleted at the user's request in accordance with the provisions specified in "4. Retention and Use Period of Personal Information", and processes it so that it cannot be viewed or used for other purposes.
"Company" designates the personal information processing department and contact information as follows to protect the personal information of users and to handle grievances related to personal information.
Personal Information Processing Department |
|---|
Department: Information Management Team |
If you need consultation on other personal information, you can contact the following institutions.
Category | Contact |
|---|---|
Personal Information Infringement Reporting Center | privacy.kisa.or.kr / Without area code 118 |
Supreme Prosecutor's Office Cyber Investigation Department | www.spo.go.kr / Without area code 1301 |
National Police Agency Cyber Crime Reporting System (ECRM) | ecrm.police.go.kr / Without area code 182 |
Personal Information Dispute Mediation Committee | www.kopico.go.kr / 1833-6972 |
This privacy policy will be implemented from October 01, 2024, and will apply equally to members who have signed up before this policy was established.