Weverse Company Inc. (hereinafter referred to as the “Company”) holds the personal data of its Weverse Shop service (hereinafter referred to as the “Service”) users (hereinafter referred to as the “Members”) to the upmost importance. Therefore, the Company has a strict privacy policy. Through this privacy policy (hereinafter referred to as the “Privacy Policy”), we inform our Members of the purpose and manner for which their personal data is being used and security measures the Company implements to safeguard the personal data. This Privacy Policy may be amended pursuant to changes in the applicable laws, regulations, and/or the Company’s policy, so please check the Privacy Policy from time to time for possible changes when using the Service.
Privacy Policy will take effect for Weverse Shop.
[Required data collection]
Product purchase
- Purpose of collecting and using personal data : Upon purchasing products
- Types of personal information : Customer information (Name, email. and mobile phone number)
- Duration of keeping and usage personal information : Period of keeping personal information according to the relevant laws or 3 months after deleting the account
- Purpose of collecting and using personal data : Entering shipping address for purchasing products
- Types of personal information : Recipient information (Name, mobile phone number, and address)
- Duration of keeping and usage personal information : Period of keeping personal information according to the relevant laws or 3 months after deleting the account
- Purpose of collecting and using personal data : For identity verification (to prevent fraudulent and duplicate purchases and abuses while purchasing and using Weverse membership), Weverse membership service operation and analysis, and use in statistics
- Types of personal information : Name, address, mobile phone number, and gender (optional)
- Duration of keeping and usage personal information : Until the expiration of Weverse Membership; the termination of Weverse Membership due to the deletion of Weverse Account service; or etc
- Purpose of collecting and using personal data : Handling customer inquiries
- Types of personal information : Email, and the details of the customer inquiries, mobile phone number
- Duration of keeping and usage personal information : Stored for 3 years after the customer inquiry in accordance with relevant laws.
- Purpose of collecting and using personal data : Service usage, customer service, confirmation and prevention of fraudulent usage, and analysis and statistics
- Types of personal information : Cookies, service usage history (date of log-in, IP address, fraudulent usage, etc), device information (unique device identifiers and OS version)
- Duration of keeping and usage personal information : Period of keeping personal information according to the relevant laws or 3 months after deleting the account
- Purpose of collecting and using personal data : Confirmation of raffle entries and shipping of event prizes for the event operation
- Types of personal information :
- (event prize shipping) Name, date of birth, mobile phone number, and address
- (Operation) Name, date of birth, mobile phone number, and social media account
- Duration of keeping and usage personal information : Retain the data for a year after the event ends. Data of participants who did not win the event are disposed within 7 days of the winner announcement
Promotional information
- Purpose of collecting and using personal data : Sending promotional information regarding the service
- Types of personal information : Email and push notifications
- Duration of keeping and usage personal information : Period of keeping personal information according to the relevant laws or 3 months after deleting the account
③ The Company collects personal data of the Members as above, but it does not collect sensitive personal data (e.g., race and ethnicity, ideology and beliefs, birthplace and domicile, political views and criminal record, health status and sex life) that may infringe upon the basic human rights of the Members and particular identification data.
④ The Company asks for permission to access the stored data or functions within a Member’s mobile device when the Members use the Service through a mobile application. When required, the Company asks for such permission in the form of either access that is necessary no matter what to provide the Service and access that is not, which can later be changed by the Member through the “Settings” option on their mobile device.
⑤ The Service is not intended for children (i.e., under 14 years old for Koreans and under 16 years old for foreigners). If the Company becomes aware that the collected personal data is from a child, we will delete the personal data and close the subject user’s account. If you believe that the Company has collected personal data from a child, please contact privacy@weverseshop.io.
② The Company can provide the personal information for the Members’ service usage by getting the Members’ consent or by other legal means as below.
② In accordance with the restrictions and requirements under the relevant laws and regulations, the Members may exercise their rights relating to their personal data against the Company. For example, in Korea, a Member may request the Company to suspend its processing of his/her personal data, delete his/her personal data, and/or revoke consent to the Company’s collection/use of his/her personal data.
③ Should there are errors with the information entered, the members can request to correct their information. However, if the information before and after the correction shows that no errors were present at the time of request and if the members committed fraud by making the corrections, the Company will revoke the corrections and notify the reasons immediately.
④ Data subjects may exercise their rights set forth in this Article by contacting support@weverseshop.io or privacy@weverseshop.io
- Keep the submitted personal information when subscribing to the service for three months after the service withdrawal to prevent fraudulent activities
- The company retains certain information to adhere to the relevant law.
③ The company separately stores personal information of inactive accounts (inactive longer than a year after signing up) in accordance with the Weverse Shop user’s agreement. The personal information stored separately is disposed of after retaining it for four years.
The company shall notify the inactive subscriber at least 30 days prior to the end of validation date. Notification contents are as follows:
- The fact that personal information is disposed of, or the fact that personal information is separately stored and managed
- Date of the disposal
- Content of personal information disposed of
(1) Operation of cookies
① Provide differentiated information depending on the individual’s area of interest.
② Engage in targeted marketing by determining the Members’ preferences and areas of interesting based on an analysis of how often Members and non-Members visited the website and/or used the Service.
③ Provide personalized service to Members on their next visit/use by tracking content that the Members showed an interest in.
④ Use as criteria in deciding whether and how to improve the Service by analyzing the customers’ habits.
(2) Members’ options regarding cookies
By adjusting the web browser, the Members can choose whether to accept all cookies, to be notified when cookies are installed, or deny all cookies; provided, however, if a Member refuses to install cookies, he/she cannot use some of the services that require the Member to log in.
Below are the steps for changing the settings for installation of cookies on Internet Explorer:
① Under the [Tools] menu, select [Internet Options].
② Click the [Privacy] tab.
③ In the [Settings] section in the [Privacy] tab, the user can select the cookies setting by moving the slider. (Moving the slider to the top will block cookies from all websites and moving the slider to the bottom will allow cookies from all websites.)
(3) Cookies will expire once the user closes the browser or logs out of the browser.
① A Member’s personal data is protected by password and encrypted information. Even with these safety measures, there is still a high possibility that a Member’s password or personal data may be leaked to others if a Member accesses the Internet in a public area or through other means. As such, what is most important is to thoroughly protect the personal data of the Members as much as possible. Therefore, all Members should also be careful not to leak or provide their personal data to others, and take responsibility in managing their personal data. The Company is not responsible for problems that may arise from the Member’s own negligence or the inherent dangers of using the internet.
② Fundamentally, the Members’ personal data is protected by password and encrypted information. Files and transferred data are encrypted and important data is protected by separate security features.
③ The Company uses anti-virus software to prevent damages that arise from computer viruses and regularly updates the software.
④ To prevent leakage or damage of Members’ personal data from hackings, computer viruses, and other sources of intrusion, the Company maintains a 24-hour intrusion detection and intrusion prevention system that monitors possible threats from outside sources.
(2) The Company recognizes the importance of protecting personal data, so we limit the number of employees who process personal data to only those that are necessary. The Chief Privacy Officer (CPO) regularly educates/trains these employees to ensure the protection of the Members’ personal data. Also, the Company regularly reviews the relevant employees’ compliance with the provisions of this Privacy Policy, and where a violation is found, the Company orders the employees to correct/improve the violation and take any other necessary measures.
In Korea, if a dispute arises between the Member and the Company with respect to personal data-related matters, the Member may contact any one of the following agencies and seek consultation regarding a possible privacy violation.
Korea Internet & Security Agency | http://privacy.kisa.or.kr | 118 |
Personal Information Dispute Mediation Committee | http://www.kopico.go.kr | 1833-6972 |
Cyber Criminal Investigation, Supreme Prosecutor’s Office | http://www.spo.go.kr | 1303 |
Cyber Terror Response Center of the National Police Agency | http://cyber.go.kr | 182 |
Any Member who has any questions, comments, or complaints relating to his/her personal data, please reach out to one of the contacts listed below through email or by phone. The Company will make every effort to respond promptly and with sincerity.
Chief Privacy Officer | |
---|---|
Name | Ryeo Sung Koo |
Phone Number | 1544-0790 |
privacy@weverseshop.io |
Department responsible for processing complaints | |
---|---|
Name of Department | Commerce Business Department |
Phone Number | 1544-0790 |
privacy@weverseshop.io |
If there are any changes to the tasks to be outsourced or the list of Outsourced Processors, they will be reflected in this Privacy Policy without delay.
Privacy Policy version number: V3.0
Effective date: 2022.09.01
Previous Privacy Policy v2.9(Effective date 2021.09.08)
Previous Privacy Policy v2.8(Effective date 2021.07.30)
Previous Privacy Policy v2.7(Effective date 2021.06.11)
Previous Privacy Policy v2.6(Effective date 2021.03.10)
Previous Privacy Policy v2.5(Effective date 2021.02.22)
Previous Privacy Policy v2.4(Effective date 2021.01.07)
Previous Privacy Policy v2.3(Effective date 2020.07.01)
Previous Privacy Policy v2.2(Effective date 2020.04.06)
Previous Privacy Policy v2.1(Effective date 2020.03.09)
Previous Privacy Policy v2.0(Effective date 2020.01.13)
Previous Privacy Policy v1.9(Effective date 2019.11.27)
Previous Privacy Policy v1.8(Effective date 2019.10.21)
Previous Privacy Policy v1.7(Effective date 2019.09.02)
Previous Privacy Policy v1.6(Effective date 2019.08.01)
Previous Privacy Policy v1.5(Effective date 2019.07.15)
Previous Privacy Policy v1.4(Effective date 2019.06.21)
Previous Privacy Policy v1.3 (Effective date 2019.06.03)