skipnavigation




Privacy Policy for the Web Site Users

Privacy Policy for the Web Site Users

All personal information handled by Gimhae City (“City”) are collected, stored, used or destroyed by consent of the information provider or in accordance with the applicable laws. The City has the following privacy policy (“Policy”) to protect personal information and rights of the users of the City’s web site (“User”) and to ensure uninterrupted handling of the Users’ predicament with relation to their personal information pursuant to Article 30 of the Personal Information Protection Act and Article 31 of the Enforcement Decree of the same Act. The City will notify Users of any changes made to the Policy either personally or by posting the notification on its web site. Unless stated otherwise, the Policy applies to all personal information handled by the City. If other privacy policy is established or enforced by any of the City’s teams to perform jobs assigned thereto, it will be posted on the web site of the corresponding team.

Article 1. Purpose of Personal Information Management

The City processes User’s personal information for the following purposes. Processed information will not be used for any purposes other than for the following purposes. The City will seek prior consent of the Users who are the subject of the personal information before any change to the intended use is implemented.

1. Website membership management

Personal information is processed to confirm the User’s intention to be a registered member, identify or certify User identity in relation to its provision of membership services, maintain or manage membership status, verify User ID to comply with the Limited Verification of Identities policy, prevent unauthorized use of service, acquire consent of a legal agent if the User is under the age of 14, give public announcement or notice, and handle customer complaints.

2. Complaint Handling

The City processes personal information to verify the complaining person’s identification, review complaints, contact or notify the complaining persons to investigate the cause of the complaints and notify complaint review results.

Article 2. Personal Information Processing and Retention Period

In principle, the City processes personal information within the scope set forth in Article 1 (Purpose of Personal Information Management). The City does not process personal information outside the said scope, and shall not disclose the same to a 3rd party. The City processes the following types of personal information:

Types of Personal Information Processed

  • Required items: Name, ID, password, address, mobile number, telephone number, eMail address
  • Optional items: Nickname, occupation, the last educational background, matter of interest

Article 3. Provision of Personal Information to Third Party

The City posts the collected data, legal basis, purpose of processing, retention period, the team dealing with the viewing requests, person in charge etc when it collects personal information. Your personal information retained by the City is processed legitimately and appropriately to protect your rights and interest. Users’ personal information is destroyed in principle when the purpose of processing of such information is achieved. However, the following information is retained during the term as stated in the personal information file.

The personal information file collected and retained by the City can be viewed in the following way:

  • 1) Visit the privacy support portal (www.privacy.go.kr)
  • 2) Go to ‘Complaint’ ⇒ ‘Request for viewing of personal information’ ⇒ ‘Search personal file list’
  • 3) Enter ‘Gimhae City’ in the name of authority to search

Information to be retained:

  • 1) When consent to such is obtained from the subject of the information;
  • 2) When stipulated by a special clause in a law or it is inevitable to comply with the legal obligation;
  • 3) When matters stipulated by laws and regulations may only is carried out with the use of personal information;
  • 4) When the subject of information or his/her legal agent is unable to express his/her opinion or when the City cannot obtain his/her prior consent due to the provision of an incorrect address, or when the provision of personal information is clearly required to save the life or protect property of the subject of information or a third party;
    5. When personal information is provided in such a way that a specific individual cannot be identified, or when it is required for the purpose of compiling statistics or facilitating academic research;
  • 5) When it is necessary to provide personal information to a foreign intelligence agency or international organization for the execution of an international treaty or agreement;
  • 6) When it is necessary for the investigation of a crime, prosecution of a case, or in support of a public action;
  • 7) When it is necessary for the proceedings of a court;
  • 8) When it is necessary for the execution of sentence, protective custody or protective disposition.

Article 4. Entrustment of Personal Information Processing

In principle, the City does not entrust your personal information to third parties for processing without notification. When signing an entrustment contract pursuant to Article 26 of the Personal Information Protection Act, the City shall ensure that personal information shall not be lost, stolen, leaked, altered or damaged, and supervise and educate the trustee, and inform you of such entrustment through the City’s web site.

Entrusted parties:

  • IActz Company Limited is entrusted with the maintenance of the City’s web site program.
  • Iworks Company Limited is entrusted with the maintenance of the City’s web server

Article 5. Rights and Obligations of the Subject of Information, and its Exercise

Each User is entitled to exercise the following rights. A legal agent of the User under the age of 14 may request an inspection, change, removal, or suspension from processing of his or her personal information.

1) Request for inspection of personal information

A User may request to inspect his/her personal information under Article 35 (Inspection of Personal Information) of the Personal Information Protection Act, provided that a restriction may be placed on such request if one of the following is the case under Article 35 (4) of the same Act:

  • i. Where an inspection is prohibited or restricted by law
  • ii. Grade evaluation or the selection of newly enrolled students at schools of each level under the Elementary and Secondary Education Act and the Higher Education Act, lifelong education centers under the Lifelong Education Act, and other higher education institutions established under other laws;
  • iii. Where such inspection may cause serious inconvenience to a public institution carrying out the following affairs:
    • a. The imposition, collection or refund of taxes
    • b. Grade evaluation or the selection of newly enrolled students at schools of each level under the Elementary and Secondary Education Act and the Higher Education Act, lifelong education centers under the Lifelong Education Act, and other higher education institutions established under other laws
    • c. Tests of academic ability, functions and employment, and evaluations of qualifications
    • d. Assessments or decisions in progress in connection with the calculation etc. of compensation of benefits
    • e. Auditing and investigation in progress under other laws

2) Request for correction or deletion of personal information

A User may request the correction or deletion of his/her personal information under Article 36 (Correction or Deletion of Personal Information) of the Personal Information Protection Act, provided that such request may be rejected if other laws stipulate the collection of such information.

3) Request for suspension of processing personal information

A User may request the suspension of processing of his/her personal information under Article 37 (Suspension, etc from Managing Personal Information) of the Personal Information Protection Act, provided that such request may be rejected if one of the following is the case, under Article 37 (2) of the Personal Information Protection Act:

  • a. Where there exists a special provision in a law or when personal information processing is inevitable in order to comply with statutory obligations;
  • b. Where it is feared that a person's life and body may be harmed, or a person's property and other interests may be unduly infringed upon;
  • c. Where a public institution is unable to carry out its affairs as stipulated by or under other laws unless it processes personal information;
  • d. Where it is difficult to execute a contract signed with the User, including the provision of a specific service(s), without the processing of personal information, due to the User’s failure to express his/her intention to cancel the said contract.

Article 6. Procedure and Method of Destruction of Personal Information

When the retention of the User’s personal information becomes unnecessary due to the achievement of the purpose of processing the User's personal information, the City shall, in principle, destroy that personal information immediately.

The procedure and method of destruction are as follows.

1) Destruction procedure

Personal information entered by the User is stored in the City’s DB after it has achieved the purpose of processing (if it is provided in a paper, it will be filed as a separate hard copy) for a retention period pursuant to the internal policy and the applicable laws before it is destroyed. Personal information stored in DB is not used for purposes other than intended or allowed by law.

2) Destruction method

The destruction of personal information contained in a hard copy shall be carried out using a shredder or an incinerator. The destruction of personal information recorded and stored in DB shall be carried out in an irrecoverable way.

Article 7. Safety Measures for Personal Information

The following technical, administrative and physical measures are taken by the City to ensure safety of personal information under Article 29 of the Personal Information Protection Act:

1) Limiting the personnel allowed to handle personal information and providing training

The City restricts access to the personal information of its Users to the designated personnel.

2) Codification of personal information

Password of the User is codified before it is saved and managed in such a way that no other person knows the password than the User. Important items are codified for transmission, storing and handling using encryption or file lock mechanism.

3) Technical measures as Anti-hacking measures

The City strives to prevent any leakage of or damage to its Users’ personal information caused by hacking or a computer virus. All data are backed up periodically to prevent any damage to the stored personal information. In addition, the City prohibits any unauthorized access from outside and strives to take all available measures to ensure security of its system.

4) Limited access to personal information

Access to the database system processing your personal information is limited to the authorized personnel. Suitable measures such as granting, changing or cancelling of the access authority are in place to control access to personal information. In addition the firewall system is in place to control unauthorized access from outside.

5) Storage of Access Records and Prevention of Forging or Falsifying Logs

The City stores and manages records of access to personal information systems for at least 6 months and uses security programs to prevent such access records from being forged or falsified, stolen or lost.

6) Control of Unauthorized Access

The City has a separate storage place where personal information is physically stored, and establishes and implements a process of controlling access to such place.

Article 8. Officials in Charge of Personal Information

The City appoints a personal information manager and working-level officer in order to protect personal information and handle any complaints related to the personal information in accordance with Article 31(1) of the Personal Information Protection Act and Article 32 (Affairs and eligibility of personal information manager) of the Enforcement Decree of the same Act as follows:

Personal Information Manager: JUNG, Young Soon, Director of Security Administration

  • Telephone : 1577-9400
  • eMail : gh_webmaster@korea.kr

Working-level Officer: PARK, Seong Mook, IT Communication Division

  • Telephone: 055-330-3254
  • eMail: mook4757@korea.kr

Article 9. Revision of the Policy on Handling Personal Information

This Policy shall take effect on the date of enforcement. The City will put up a public information notice on amendments to this Policy if caused by the applicable laws or the public policy before they take effect.

Article 10. Redress of Infringements of Rights

In the event of an infringement of a User’ss personal information, a complaint may be submitted to the Personal Information Dispute Meditation Committee or to the Personal Information Infringement Report Center of the Korea Internet Security Agency (KISA). A User may contact the following agencies to report or consult on matters concerning the infringement of personal information:

  • (KISA-run) Personal Information Dispute Meditation Committee (Phone: 118) (Extension 2 for ARS)
  • ePrivacy iSafe: 02-580-0533~4
  • The Internet Crime Investigation Center of the Supreme Prosecutors' Office:02-3480-2000
  • The Internet Crime Investigation Center of the National Police Agency: 02-392-0330


top