TOP
TOP
Article 1 (Overview)
In accordance with Article 30 of the Personal Information Protection Act and Article 27-2 of the Information and Communication Network Utilization Promotion and Information Protection Act, STX Ocean Service (hereinafter referred to as the "Company") establishes and discloses the following personal information processing policy to protect members' personal information and to promptly and smoothly deal with related grievances.
The company places great importance on the protection of members' personal information and complies with personal information protection laws and subordinate laws such as the Personal Information Protection Act and the Information and Communication Network Utilization Promotion Act.
Through the personal information processing policy, the company will inform you of the use and method of personal information provided by members and what measures are being taken to protect personal information.
The company has prepared a procedure to click the "agree" or "disagree" button on the use of personal information collection or the contents of the terms and conditions of use on the site, and if you click the "agree" button, it is considered to have agreed to collect personal information.
The company can change its personal information processing policy if changes occur due to amendments to related laws, internal policies, or changes to the site, and if it changes the personal information processing policy, it will be notified through the site.
Article 2 (Contents of Personal Information Processing Policy)
1. Purpose of processing personal information
2. Processing and Retention Period of Personal Information
3. Provision of personal information to third parties
4. consignment of personal information processing
5. Rights, obligations, and methods of exercise of members and legal representatives
6. Personal information items and collection methods to be processed
7. destruction of personal information
8. Measures to ensure the safety of personal information
9. Matters concerning the installation, operation, and rejection of automatic personal information collection devices
10. a person in charge of personal information protection
11. Request for access to personal information
12. Remedies for infringement of rights and interests
13. Changes to personal information processing policy
Article 3 (Purpose of Processing Personal Information)
The company processes personal information for the following purposes.
The personal information being processed will not be used for any purpose other than the following purposes, and if the purpose of use is changed, necessary measures required by the law will be implemented, such as obtaining separate consent pursuant to Article 18 (3) of the Personal Information Protection Act and Article 22 (1) of the Information and Communication Network Utilization Promotion and Information Protection Act.
① Proceeding and supporting the recruitment process
- Purpose of collection: Check the current status of recruitment support, manage recruitment support, and communicate smoothly with job applicants
- Collection details: Name, contact information, email, date of birth, application, veterans status (if applicable), resume image, address, sailor's notebook (if applicable), demarcation number (if applicable), academic background (school name, department, period, rider, graduation class, credit), military service (if applicable, class, period of service, rank, exemption), language (foreign name, type of exam, score/series, acquisition date, conversation level), qualification and license (qualification/license name, grade, acquisition date, expiration date, issuing institution, note), overseas stay (if applicable, country, period of stay, reason for stay, note), experience (if applicable, company name, service period, final position, reason for retirement), self-introduction letter, career description (if applicable, work name, region, department, most senior position, service period, final salary, performance project, proof of employment), current position and treatment (if applicable, position, final promotion date, annual salary), desired position and treatment (if applicable, desired position, desired salary, employment available, boarding and land experience (if applicable, ship name, ship type, position, total tonnage, date of departure, boarding experience certificate)
② Application for online consultation with Audit Team
- Purpose of collection: Create a fair and transparent corporate culture, receive consultations and inquiries related to corporate ethics, collect opinions and improvement proposals related to ethical management to strengthen corporate sustainability, review inquiries from counselors, and provide answers and progress
- Collections: Name (or anonymous selection), email, contact, title, content, attachment
Article 4 (Period of Processing and Retention of Personal Information)
The company holds and uses personal information within the period of use, or the period of use when collecting personal information from members pursuant to laws and regulations. The period of retention and use of each personal information is as follows.
① Member personal information: Until the purpose is achieved or the consent of the member is withdrawn
② Information related to the provision of goods or services: 5 years after the termination of the contract and settlement relationship for the supply of goods or services
Article 5 (Provided by a third party of personal information)
The company shall process the personal information of the members only within the scope notified in Article 3 (Purpose of Processing Personal Information), and shall provide personal information to a third party only if it falls under Articles 17 and 18 of the Personal Information Protection Act and Article 24-2 of the Information and Communication Network Utilization Promotion and Information Protection Act, such as the consent of the members and the special provisions of the Act.
Article 6 (Consignment of Personal Information Processing)
① The company entrusts the personal information processing work as follows for smooth personal information processing.
② In accordance with Article 26 of the Personal Information Protection Act and Article 25 of the Information and Communication Network Utilization Promotion and Information Protection Act, the company stipulates matters concerning responsibilities such as prohibition of processing personal information, technical and administrative protection measures, re-entrustment restrictions, supervision of trustees, and compensation for damages in documents such as contracts, and supervises whether the trustee handles personal information safely.
③ If the contents of the consignment work or the trustee changes, we will disclose it without delay through this personal information processing policy.
Article 7 (Rights, Duties, and Methods of Exercise of Members and Legal Agents)
① A member may exercise the following personal information protection rights against the company at any time.
1. Request for access to personal information
2. Request correction if there is an error, etc
3. Request for deletion
4. Request to stop processing
② The exercise of rights under paragraph (1) may be made to the company in writing, e-mail, fax, etc. in accordance with attached Form 8 of the Enforcement Rules of the Personal Information Protection Act, and the company will take measures without delay.
③ If a member requests correction or deletion of errors in personal information, the company will not use or provide such personal information until the correction or deletion is completed.
④ The exercise of rights under paragraph (1) may be done through an agent, such as a member's legal representative or a person who has been delegated. In this case, you must submit a power of attorney in accordance with Form 11 of the Enforcement Regulations of the Personal Information Protection Act.
⑤ Members shall not infringe on the personal information and privacy of the members themselves or others handled by the company in violation of related laws such as the Personal Information Protection Act.
Article 8 (Personal Information Items and Collection Methods to be Processed)
① The company is processing the following personal information items.
1. employment support
Personal information required for hiring applications, such as name, contact information, email, date of birth, resume image, address, etc
2. Application for Audit Team Consultation
Name (or anonymous selection), email, contact, title, content, attachment
3. In the process of using the Internet service, the following personal information items can be automatically generated and collected.
IP address, cookie, MAC address, service usage record, visit record, bad usage record, etc
② The company collects personal information in the following ways.
1. Recruitment application form received
2. Audit team online consultation received
3. Automatically generated during Internet service use
Article 9 (Destruction of Personal Information)
① The company will destroy the personal information without delay when it becomes unnecessary, such as the expiration of the personal information retention period and the achievement of the processing purpose.
② If the personal information must be preserved in accordance with other laws and regulations despite the expiration of the personal information retention period agreed by the members or the purpose of processing has been achieved, the personal information shall be transferred to a separate database (DB) or stored differently.
③ The procedures and methods for destroying personal information are as follows.
1. procedure for destruction
The company selects the personal information in which the reason for destruction occurred and destroys the personal information with the approval of the personal information protection manager.
2. Method of destruction
Personal information recorded and stored in the form of electronic files is destroyed, and personal information recorded and stored in paper documents is destroyed by grinding or incinerating with a shredder.
Article 10 (Measures to ensure the safety of personal information)
The company is taking the following administrative, technical, and physical measures to ensure the safety of its members' personal information.
① Management measures: Establishment and implementation of internal management plans, regular employee training, etc
② Technical measures: Management of access rights of personal information processing systems, etc., installation of access control systems, encryption of unique identification information, prevention of tampering, installation and update of security programs
③ Physical measures: Control access by preparing computer rooms, data storage rooms, etc. and installing locks, etc
Article 11 (Matters concerning the installation, operation, and rejection of automatic personal information collection devices)
① The company uses "cookies" that store usage information and call it up from time to time to provide individual customized services to users.
② Cookies are a small amount of information sent by the server (http) used to run the website to the user's computer browser and are also stored on the hard disk in the user's PC computer.
1. Purpose of use of cookies: It is used to provide optimized information to users by identifying the type of visit and use of each service and website visited by users, popular search terms, security access, etc.
2. Install and operate cookies and deny: You can deny saving cookies by setting options on Tools > Internet Options > Privacy menu at the top of the web browser.
3. Refusing to save cookies may cause difficulties in using customized services.
Article 12 (Personal Information Protection Officer)
① The company is in charge of handling personal information and designates a person in charge of personal information protection as follows for the handling of complaints and damage relief of information subjects related to personal information processing.
a person in charge of personal information protection
Name and title telephone number
Hong Gil-dong Website Manager 051-461-2000
② Members can contact the person in charge of personal information protection and the department in charge of all personal information protection inquiries, complaint handling, and damage relief that occurred while using the company's service. We will respond and process your inquiries without delay.
Article 13 (Request for access to personal information)
A member may request the department under Article 12 (1) to access personal information under Article 35 of the Personal Information Protection Act and Article 30 (2) of the Information and Communication Network Utilization Promotion and Information Protection Act. The company will endeavor to promptly process a member's request for access to personal information.
Article 14 (Method of Relief for Infringement of Rights and Interests)
Members can inquire about damage relief and counseling for personal information infringement through the agency below.
Personal Information Infringement Reporting Center (http://privacy.kisa.or.kr / 118 without country code)
Cyber Investigation Division of Supreme Prosecutors' Office (http://www.spo.go.kr / 1301 without country number)
Cyber Investigation Bureau of the National Police Agency (https://ecrm.cyber.go.kr / 182)
The personal information processing policy will be applied from March 20, 2025.