Doosan Mobility Innovation Co., Ltd. (the “Company”) considers as highly important the personal information of the Members who use the Doosan Mobility Innovation Online Store website (the “Website”). Accordingly, the Company complies with the Personal Information Protection Act, the Act on Promotion of Information and Communication Network Utilization and Information Protection, etc., and all other applicable laws and regulations on personal information protection.

The Company also uses standard security procedures and practices appropriate to the nature of the information in an effort to protect information from unauthorized access, destruction, use, modification or disclosure.  The Company also requires its service providers to implement and maintain reasonable security procedures and practices appropriate to the nature of the information the Company shares with them.  No data transmission over the Internet or any wireless network can be guaranteed to be 100% secure.  As a result, while the Company strives to protect the Users’ personal information, the Company cannot and does not guarantee or warrant the security of any information the User transmits to or from the Website or the Service, and the User does so at his, her or its own risk.

1. Scope of Personal Information Being Collected

  1. The Company collects personal information of the Members by lawful and fair means.
  2. The Company collects personal information by classifying it as either required or optional.
  3. Collection of personal information is limited to the minimum extent necessary to provide the service. Sensitive information (such as information on the Member’s race, religion, ideology, native place, place of birth, political orientation and criminal records, health and sex life, etc.), whose disclosure may cause violation of basic human rights, will not be collected.
  4. The Company does not collect resident registration numbers unless such collection is permitted by law.

2. Purpose of Collection and Use of Personal Information

  1. The Company will collect and use the personal information collected from the Members during the use of service after registration for the following purposes.
Purpose of Collection and Use of Personal Information
Member Category Items to be Collected Purpose of Collection/Use Retention Period
Individual Required Encrypted identification number (CI), information to confirm no duplicate registration (DI) name, email, password
  • For Member identification purposes to allow use of membership service
  • To facilitate communication of membership benefits, change of terms, notification, confirmation of Member’s intent, and complaint processing and similar information.
  • Development of new services, provision of tailored services, advertisement, and statistical analysis on the use of services
  • So long as the Member retains its membership eligibility and as otherwise required by law.
  • So long as the Company is authorized or required under the Privacy Policy to retain personal information (However, DI will be retained so long as necessary to facilitate Website management).
Optional Mobile phone number and address
  • Enforcement of product purchase agreements (payment/refund, order, delivery, confirmation of order) and compliance with legal obligations
  • Marketing of products, promotions and events through SMS, eDM, DM and TM
  • For additional service benefits (such as gift offers and discount coupons)
  • So long as the Member retains its membership eligibility and as otherwise required by law.
  • So long as the Company is authorized or required under the Privacy Policy to retain personal information.
  • However, account information obtained for purposes of making refunds will be retained for six (6) months after completion of payment and will be deleted thereafter.
Corporate Required CI, DI, company name, name of contact person, business registration number, company phone number, email, password
  • For Member identification purposes to allow use of membership service
  • To facilitate communication of membership benefits, change of terms, notification, confirmation of Member’s intent, and complaint processing and similar information.
  • Development of new services, provision of tailored services, advertisement, and statistical analysis on the use of services
  • So long as the Member retains its membership eligibility and as otherwise required by law.
  • So long as the Company is authorized or required under the Privacy Policy to retain personal information (However, DI will be retained so long as necessary to facilitate Website management).
Optional Mobile phone number and address
  • Enforcement of product purchase agreements (payment/refund, order, delivery, confirmation of order) and compliance with legal obligations
  • Marketing of products, promotions and events through SMS, eDM, DM and TM
  • For additional service benefits (such as gift offers and discount coupons)
  • So long as the Member retains its membership eligibility and as otherwise required by law.
  • So long as the Company is authorized or required under the Privacy Policy to retain personal information.
  • However, account information obtained for purposes of making refunds will be retained for six months after completion of payment and will be deleted thereafter.

*Payment information: Card information, bank account information

  1. The following personal information can be automatically created and collected during the process of using the Website:
    1. IP address, cookie, MAC address, service use history, visit history, inquiry call history, etc.

3. Retention of Personal Information

  1. The Company will process and retain collected personal information until the Member requests membership cancellation, in which case the collected personal information will be immediately processed so that it cannot be viewed or used.
  2. The Company shall retain and use personal information only for the period and purposes set forth in the Act on Consumer Protection in Electronic Commerce etc., the Electronic Financial Transactions Act, and the Protection of Communications Secrets Act. The retention periods required under these laws are as follows:
    1. The Act on Consumer Protection in Electronic Commerce etc.
      Records on sales contracts or membership withdrawal: 5 years
      Records on payments and supply of goods and services: 5 years
      Records on consumer complaints or dispute settlements: 3 years
    2. The Electronic Financial Transactions Act
      Records on financial transactions: 5 years
    3. The Protection of Communications Secrets Act
      Login information: 3 months

4. Procedures and Methods of Destroying Personal Information

  1. Destruction procedure: The Company will destroy personal information within five (5) days following the end of the relevant retention period, and if retention of personal information becomes unnecessary for reasons such as completed use of personal information, cessation of the relevant service or the termination of business, personal information will be destroyed within five (5) days following the day on which the use of personal information is deemed unnecessary.
  2. Destruction Method
    A. Personal information stored in paper format: shredded or incinerated
    B. Personal information stored in electronic format: to be permanently and irrevocably deleted
  3. Pursuant to a policy relating to the retention period of personal information, the Company separately stores and manages personal information of Members who have not used the Services for one (1) year or more.

5. Installation, Operation and Rejection of Software for Automatic Collection of Personal Information

  1. The Company uses “cookies,” which stores and constantly seeks Members’ information. Cookies are information in small quantity that are transmitted by the server that operates the Website to the User’s browser; cookies are stored in the hard-disk of the User’s computer.
  2. The Members can select whether to allow the use of cookies. By setting options of the web browser, Users may either allow all cookies, require confirmation every time cookies are stored, or refuse all cookies. However, if Members reject storage of cookies, some services that require login may not be available.

6. Personal Information Protection for Children under 14 Years of Age

The Company does not collect personal information of children under the age of fourteen (14), Children of this age or below are not eligible for membership.

7. Delegation of Personal Information Processing Services

The Company delegates some membership services to outside service providers. The Company closely monitors and supervises these service providers to ensure that the personal information is securely processed pursuant to relevant laws and regulations using commercially reasonable measures to prevent unauthorized access, disclosure or use. Personal information shared with outside service providers is as follows:

Personal Information Protection for Children under 14 Years of Age
Recipient Purposes of Disclosure
Doosan Corporation Information & Communications Information processing and maintenance
Eximbay Online purchase and payment processing

8. Provision of Personal Information to Third Parties

The Company uses personal information of the Members only within the scope specified in Article 2 (Purpose of Collection and Use of Personal Information) hereof and do not provide personal information to a third party without Members’ consent or unless required by a special regulation or pursuant to Article 17 and 18 of Personal Information Protection Act.

9. Member Rights and Ways to Exercise Such Rights

  1. Members can at any time make a request to view, modify, or withdraw their consent relating to the collection and use of their personal information. Members may contact the Company’s personal information management department via letter, phone call, or email, and the Company will respond promptly.
  2. If a Member requests correction of an error in personal information, the Company will not use or provide such information until the correction is completed.
  3. As for any personal information that is terminated or deleted upon request by the Member or his or her legal guardian, the Company processes such information in accordance with the Privacy Policy and does not use or otherwise make available such information for any other purpose.

10. Personal Information Protection Officer and Manager

  1. In order to protect Members’ personal information and handle complaints related to personal information, the Company designates the following person as the Personal Information Protection Officer and Personal Information Manager:

Personal Information Protection Officer
- Name : DooSoon Lee
- Affiliation : Doosan Mobility Innovation
- Job Title : CEO
- Email : dmi@doosan.com
- Phone : +82 31-270-1703

Personal Information Manager
- Name : JiYoung Kim
- Affiliation : Doosan Mobility Innovation Business Execution Team
- Job Title : Team Leader
- Email : jiyoung9.kim@doosan.com
- Phone : +82 31-270-1701

11. Announcement Due to Policy Revision

In case of any addition, deletion or modification of any information in this Privacy Policy, the Company shall publicly disclose the reason for and details of such change on the Website at least thirty (30) days before the effective date of such revised Privacy Policy. In case of any other change, the Company shall publicly disclose the reason for and details of such change at least one (1) week prior to the effectiveness of such change.

Notice regarding Third-Party Links on the Website

The Website or the Service may contain links to websites operated and maintained by third parties over which the Company has no control.  Privacy policies on such linked websites may be different from the Company’s Privacy Policy.  You will access such linked websites at your own risk.  We encourage you to review the privacy policy of any such linked website you visit to understand that website’s collection, storage, and use of your information.

[Addendum] 1. (Date of Enforcement) These Privacy Policy will be enforced on August 28, 2018.