Privacy Policy
Privacy Policy
1. Purpose of Processing Personal Information
The Institute processes personal information for the following purposes and does not use it for any purposes other than those stated below.
- User registration and management
- Handling inquiries and consultations
- Providing notices and service-related information
- Conducting research and evaluation activities
- Statistical analysis for service improvement
2. Categories of Personal Information Collected
The Institute collects and uses the following personal information.
| Category | Details |
|---|---|
| Required | Name, email address, contact number, affiliation |
| Optional | Position, address, and other information provided by the user |
| Automatically Collected | IP address, cookies, access logs, usage history, etc. |
※ The categories may change depending on service operations, and any changes will be announced separately.
3. Retention and Use Period of Personal Information
The Institute retains and uses personal information for the period stipulated by law or the period agreed upon by the user.
| Category | Retention Period |
|---|---|
| Membership Information | Until account deletion |
| Inquiry/Consultation Records | 3 years |
| Service Usage Records | 1 year |
| Others | As required by applicable laws and regulations |
4. Provision of Personal Information to Third Parties
The Institute does not provide personal information to third parties in principle. However, exceptions apply in the following cases.
- When prior consent has been obtained from the user
- When required by law
- When requested by investigative authorities in accordance with legal procedures
5. Entrustment of Personal Information Processing
The Institute may entrust personal information processing to external parties when necessary for smooth service operation, and supervises them in accordance with applicable laws.
- Service Provider: (to be specified if applicable)
- Scope of Work: Website operation, system maintenance, etc.
※ Any changes to service providers will be announced on the website.
6. Rights of Users and Legal Representatives
Users may exercise the following rights at any time.
- Request access to personal information
- Request correction or deletion of personal information
- Request suspension of personal information processing
Requests can be made in writing or by email, and the Institute will respond without delay.
7. Procedures and Methods for Destruction of Personal Information
The Institute promptly destroys personal information once the retention period expires or the purpose of processing is achieved.
| Procedure | Selection of items for destruction in accordance with internal policies and immediate disposal |
|---|---|
| Method |
Electronic files: Permanently deleted using irreversible technical methods Documents: Shredded or incinerated |
8. Measures to Ensure Security of Personal Information
The Institute implements the following measures to protect personal information.
- Management and minimization of access rights
- Maintenance of access logs for personal data processing systems
- Encryption and installation of security programs
- Regular security inspections and staff training
9. Use of Cookies
The Institute may use cookies to provide customized services. Users may refuse cookie storage through browser settings.
10. Data Protection Officer
| Name | Eun-Soo Kim |
|---|---|
| Position | Director |
| Contact | +82-31-212-0234 |
| kafti@kafti.or.kr |
11. Changes to this Privacy Policy
This policy may be updated in accordance with applicable laws and internal policies, and any changes will be announced on the website.
Effective Date: April 2, 2026