AboutServicesContact
← Back to Home

PRORE Solution (hereinafter "the Company") complies with relevant laws and regulations, including the Personal Information Protection Act (개인정보 보호법) and the Act on Promotion of Information and Communications Network Utilization and Information Protection (정보통신망 이용촉진 및 정보보호 등에 관한 법률), and has established and disclosed this Privacy Policy to safely process users' personal information. This policy applies to personal information processed on the website (prore.co.kr) operated by the Company.

Article 1 (Purpose of Processing Personal Information)

The Company processes personal information for the following purposes. If the purpose of use changes, the Company will take necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.

  1. Responding to inquiries: Responding to business partnerships, general inquiries, product demo requests, and career inquiries
  2. Service improvement: Improving service quality through website usage statistics analysis
  3. Preventing unauthorized use: Detecting and blocking unauthorized access attempts
  4. Fulfilling legal obligations

Article 2 (Personal Information Collected and Collection Methods)

1. Information provided by users (when making inquiries):

  • Required items: Email address
  • Optional items: Name, organization/company, position, contact information, inquiry content

2. Automatically collected information:

  • IP address, cookies, MAC address
  • Access logs, access date/time, service usage records
  • Browser type, OS, device information
  • Unauthorized use records

3. Collection methods:

  • Voluntary provision when users use the inquiry function on the website
  • Automatically generated during service use

Article 3 (Processing and Retention Period of Personal Information)

1. The Company processes and retains personal information within the retention and use period prescribed by law or the period agreed upon when collecting personal information from the data subject.

2. Processing and retention period for each type of personal information:

  • Inquiry response information: 1 year after response completion
  • Automatically collected logs: 1 year
  • However, if retention is required by relevant laws, the information will be retained for the applicable period

3. Retention under applicable laws:

  • Protection of Communications Secrets Act: Access records for 3 months
  • Act on Consumer Protection in Electronic Commerce: Records of labeling/advertising for 6 months, records of contracts or withdrawal of subscription for 5 years

Article 4 (Provision of Personal Information to Third Parties)

1. The Company processes personal information of data subjects only within the scope specified in Article 1 (Purpose of Processing Personal Information) and provides personal information to third parties only when the requirements of Articles 17 and 18 of the Personal Information Protection Act are met, such as consent from the data subject or special provisions of law.

2. The Company currently does not provide users' personal information to third parties.

3. If provision to third parties becomes necessary in the future, the Company will obtain prior consent from data subjects.

Article 5 (Entrustment of Personal Information Processing)

The Company entrusts personal information processing as follows for smooth service provision and safe processing of personal information.

Trustee Entrusted Tasks Retention Period
Vercel Inc. Website hosting and server operation Until termination of entrustment contract
Google LLC Website statistics analysis (Google Analytics) 26 months

When concluding entrustment contracts, the Company specifies matters concerning prohibition of personal information processing other than for the purpose of performing entrusted tasks, technical and administrative protective measures, restrictions on re-entrustment, management and supervision of trustees, and liability including damages in documents such as contracts in accordance with Article 26 of the Personal Information Protection Act, and supervises whether trustees safely process personal information.

Article 6 (Transfer of Personal Information Overseas)

1. The Company transfers personal information overseas as follows:

  • Personal information items transferred: IP address, cookies, access logs, information provided during inquiries
  • Country of transfer: United States
  • Date and method of transfer: Automatic transmission through information and communication networks when using the service
  • Recipients: Vercel Inc. (https://vercel.com), Google LLC (https://google.com)
  • Purpose of use and retention period: For the purpose of performing entrusted tasks specified in Article 5 of this policy, until termination of entrustment contract

2. Data subjects have the right to refuse the overseas transfer of personal information. However, refusal may result in restrictions on the use of some services.

Article 7 (Rights and Obligations of Data Subjects and How to Exercise Them)

1. Data subjects may exercise the following rights against the Company at any time:

  • Request to access personal information
  • Request for correction in case of errors
  • Request for deletion
  • Request to suspend processing

2. Rights may be exercised against the Company in writing, by email, etc. in accordance with Article 41, Paragraph 1 of the Enforcement Decree of the Personal Information Protection Act, and the Company will take action without delay.

3. Rights may be exercised through an agent such as a legal representative or an authorized person. In this case, a power of attorney according to Form No. 11 of the Notice on Personal Information Processing Methods (No. 2020-7) must be submitted.

4. Requests for access to and suspension of processing of personal information may be restricted under Article 35, Paragraph 4 and Article 37, Paragraph 2 of the Personal Information Protection Act.

5. When exercising rights, the Company verifies whether the person is the data subject or a legitimate representative.

Article 8 (Destruction of Personal Information)

1. The Company destroys personal information without delay when it becomes unnecessary, such as when the retention period has expired or the purpose of processing has been achieved.

2. If personal information must be retained under other laws despite the expiration of the retention period agreed upon by the data subject or achievement of the processing purpose, the personal information will be moved to a separate database (DB) or stored in a different location.

3. Procedures and methods for destruction of personal information:

  • Destruction procedure: Personal information that needs to be destroyed is selected, and personal information is destroyed with the approval of the Company's personal information protection officer.
  • Destruction method: Information in electronic file format is permanently deleted using technical methods that make records irrecoverable, and personal information printed on paper is destroyed by shredding or incineration.

Article 9 (Measures to Ensure Safety of Personal Information)

The Company takes the following technical, administrative, and physical measures necessary to ensure safety in accordance with Article 29 of the Personal Information Protection Act:

1. Administrative measures

  • Establishment and implementation of internal management plan
  • Regular self-audit
  • Minimization and training of employees handling personal information

2. Technical measures

  • Management of access rights to personal information processing systems
  • Installation of access control systems
  • Encryption of unique identification information
  • Installation and update of security programs

3. Physical measures

  • Access control to data storage rooms

Article 10 (Use of Cookies)

1. The Company uses "cookies" that store and retrieve usage information to provide personalized services to users.

2. Purpose of using cookies: Maintaining user settings, improving services through visit statistics analysis

3. Installation, operation, and rejection of cookies:

  • Users have the option to accept or reject cookies.
  • By setting options in the web browser, users can allow all cookies, go through confirmation whenever cookies are stored, or refuse to store all cookies.
  • How to set:
    • Chrome: Settings > Privacy and Security > Cookies and other site data
    • Safari: Preferences > Privacy > Cookies and website data
    • Edge: Settings > Cookies and site permissions > Manage cookies and site data
    • Firefox: Settings > Privacy & Security > Cookies and Site Data

4. Refusing to store cookies may cause difficulties in using some services.

Article 11 (Personal Information Protection Officer)

1. The Company has designated a Personal Information Protection Officer as follows to take overall responsibility for personal information processing and to handle complaints and damage relief of data subjects related to personal information processing.

Personal Information Protection Officer

Name: Jeon Ilju (전일주)

Position: Personal Information Protection Officer

Contact: prore0606@prore.co.kr

2. Data subjects may contact the Personal Information Protection Officer regarding all personal information protection inquiries, complaint handling, and damage relief arising from using the Company's services. The Company will respond to and process inquiries from data subjects without delay.

Article 12 (Remedies for Rights Infringement)

Data subjects may apply for dispute resolution or consultation to the Personal Information Dispute Mediation Committee (개인정보분쟁조정위원회), Korea Internet & Security Agency Personal Information Infringement Report Center (한국인터넷진흥원 개인정보침해신고센터), etc. to receive relief for personal information infringement. For other reports and consultations on personal information infringement, please contact the following organizations:

  • Personal Information Dispute Mediation Committee: 1833-6972 (www.kopico.go.kr)
  • Personal Information Infringement Report Center: 118 (privacy.kisa.or.kr)
  • Supreme Prosecutors' Office: 1301 (www.spo.go.kr)
  • National Police Agency: 182 (cyberbureau.police.go.kr)

Persons whose rights or interests have been infringed by the disposition or omission of the head of a public institution in response to requests under Article 35 (Access to Personal Information), Article 36 (Correction and Deletion of Personal Information), and Article 37 (Suspension of Processing of Personal Information) of the Personal Information Protection Act may file an administrative appeal as prescribed by the Administrative Appeals Act.

Article 13 (Operation and Management of Video Information Processing Equipment)

The Company does not install or operate video information processing equipment.

Article 14 (Changes to the Privacy Policy)

1. This policy is effective from the effective date, and if there are additions, deletions, or corrections of changes in accordance with laws and policies, the changes will be announced through notices 7 days before the implementation of the changes.

2. However, if there are significant changes to the rights of data subjects, notice will be given at least 30 days in advance.