LUMOS
Privacy Policy
주식회사 루모스(이하 ‘회사’)은 개인정보보호법 제30조에 따라 정보주체의 개인정보 보호 및 권익을 보호하고 개인정보와 관련한 정보주체의 고충을 원활하게 처리할 수 있도록 다음과 같이 개인정보 처리방침을 수립 공개합니다.
[주요 개인정보 처리 표시]
일반 개인정보 수집
이름
이메일
휴대폰 번호 등
개인정보의 제공
개인정보 위탁
상담 이메일 발송 업체 등
개인정보 고충처리 부서
부서명: 경영팀 (info@llumos.co)
개인정보의 처리 목적
홈페이지 회원 가입 및 관리
재화 또는 서비스 제공
문의 및 상담
개인정보 보호 인증
국내 정보보호 관리체계 인증(ISMS)
국제 정보보호 관리체계 인증(ISO270011, 27701)
Article 1. Purpose of Processing Personal Information
LUMOS processes personal information for the following purposes. Processed personal information will not be used for any purpose other than those specified below. In the event that the purpose of use changes, LUMOS will take necessary measures, such as obtaining separate consent, in accordance with the Personal Information Protection Act.
A. Website Membership Registration and Management
Personal information is processed for the purposes of confirming membership registration intent, providing recruitment-related information, delivering announcements, and contacting users regarding recruitment and website usage.
B. Provision of Goods or Services
Personal information is processed for the purposes of service delivery, invoice delivery, content provision, customized service delivery, identity verification, age verification, payment and settlement of fees, and debt collection.
C. Marketing and Advertising
Personal information is processed for the purposes of developing new services (or products) and providing customized services, delivering event and promotional information along with opportunities to participate, providing services and placing advertisements based on demographic characteristics, and analyzing connection frequencies or statistics on members' service usage. In such cases, LUMOS will comply with relevant laws, including obtaining separate necessary consent.
D. Grievance Handling
Personal information is processed for the purposes of verifying the identity of the complainant, confirming the reported issue, contacting and notifying for fact-finding investigations, and notifying the results of the handling process.
제 2조. 개인정보의 처리 및 보유 기간
① 회사는 법령에 따른 개인정보 보유·이용기간 또는 정보주체로부터 개인정보를 수집시에 동의 받은 개인정보 보유, 이용기간 내에서 개인정보를 처리, 보유합니다.
② 각각의 개인정보 처리 및 보유 기간은 다음과 같습니다.
홈페이지 회원 가입 및 관리 : 사업자/단체 홈페이지 탈퇴시까지 다만, 다음의 사유에 해당하는 경우에는 해당 사유 종료시까지
관계 법령 위반에 따른 수사․조사 등이 진행중인 경우에는 해당 수사․조사 종료시까지
서비스 이용에 따른 채권․채무관계 잔존시에는 해당 채권․채무관계 정산시까지
재화 또는 서비스 제공 : 재화․서비스 공급완료 및 요금결제․정산 완료시까지 다만, 다음의 사유에 해당하는 경우에는 해당 기간 종료시까지
「전자상거래 등에서의 소비자 보호에 관한 법률」에 따른 표시․광고, 계약내용 및 이행 등 거래에 관한 기록
표시․광고에 관한 기록 : 6개월
계약 또는 청약철회, 대금결제, 재화 등의 공급기록 : 5년
소비자 불만 또는 분쟁처리에 관한 기록 : 3년
「통신비밀보호법」제41조에 따른 통신사실확인자료 보관
컴퓨터통신, 인터넷 로그기록자료, 접속지 추적자료 : 3개월
부가가치세법
세금계산서, 영수증 등 거래내역 관련 정보: 5년
제 3조. 개인정보의 제 3자 제공
① 회사는 정보주체의 개인정보를 제1조(개인정보의 처리 목적)에서 명시한 범위 내에서만 처리하며, 정보주체의 동의, 법률의 특별한 규정 등 개인정보 보호법 제17조에 해당하는 경우에만 개인정보를 제3자에게 제공합니다.
※ 예외사항 : 정보주체가 사전에 동의하거나 타 볍령의 규정에 의거한 경우
제 4조. 정보주체와 법정대리인의 권리·의무 및 그 행사 방법
① 정보주체는 회사에 대해 언제든지 개인정보 열람, 정정, 삭제, 처리정지 요구 등의 권리를 행사할 수 있습니다.
② 제1항에 따른 권리 행사는 회사에 대해 개인정보 보호법 시행령 제41조 제1항에 따라 서면, 전자우편, 모사전송(FAX) 등을 통하여 하실 수 있으며 회사는 이에 대해 지체 없이 조치하겠습니다.
③ 정보주체가 개인정보의 오류 등에 대한 정정 또는 삭제를 요구한 경우에는 회사는 정정 또는 삭제를 완료할 때까지 당해 개인정보를 이용하거나 제공하지 않습니다.
④ 제1항에 따른 권리 행사는 정보주체의 법정대리인이나 위임을 받은 자 등 대리인을 통하여 하실 수 있습니다. 이 경우 개인정보 보호법 시행규칙 별지 제11호 서식에 따른 위임장을 제출하셔야 합니다.
⑤ 개인정보 열람 및 처리정지 요구는 개인정보보호법 제35조 제4항, 제37조 제2항에 의하여 정보주체의 권리가 제한될 수 있습니다.
⑥ 개인정보의 정정 및 삭제 요구는 다른 법령에서 그 개인정보가 수집 대상으로 명시되어 있는 경우에는 그 삭제를 요구할 수 없습니다.
⑦ 회사는 정보주체 권리에 따른 열람의 요구, 정정·삭제의 요구, 처리정지의 요구 시 열람 등 요구를 한 자가 본인이거나 정당한 대리인인지를 확인합니다.
Article 5. Categories of Personal Information Processed
LUMOS processes the following categories of personal information.
Account Registration
Required: Name, User ID, Password, Mobile Phone Number, Email Address, Company Name (Job Title)
Optional: None
Marketing and Advertising Purposes
Required: Name, User ID, Mobile Phone Number, Email Address
Optional: None
Job Applicant Information
Required: Name, Mobile Phone Number, Email Address
Optional: Cover letter, resume, educational background, photo, video, certifications, work experience, foreign language proficiency, attachments, and other information voluntarily provided by the applicant.
The following information may be automatically generated and collected during the use of online services:
IP address, cookies, MAC address, service usage history, access logs, and records of unauthorized or improper service use.
Article 6. Destruction of Personal Information
① LUMOS shall destroy personal information without delay when it becomes unnecessary, such as upon the expiration of the retention period or the achievement of the purpose of processing.
② If personal information must be continuously preserved in accordance with other laws and regulations despite the expiration of the retention period consented to by the data subject or the achievement of the processing purpose, the company shall transfer the personal information to a separate database (DB) or store it in a different location.
③ The procedures and methods for destroying personal information are as follows:
Destruction Procedure: LUMOS identifies the personal information that has met the criteria for destruction and destroys the personal information with the approval of the company's Privacy Officer.
Destruction Method: LUMOS destroys personal information recorded and stored in the form of electronic files using methods such as a low-level format to ensure the records cannot be reproduced, while personal information recorded and stored on paper documents is shredded or incinerated.
Article 7. Measures to Ensure the Safety of Personal Information
LUMOS takes the following measures to ensure the safety of personal information.
① LUMOS establishes an internal management plan for personal information protection, including matters regarding the designation of a Chief Privacy Officer and the establishment and operation of a privacy protection organization, and reviews annually whether the plan is being executed effectively.
② LUMOS controls access to personal information by managing access permissions to the database systems that process personal information, and prevents unauthorized access from both internal and external sources.
③ LUMOS maintains and manages records of access to the personal information processing system by personnel handling personal information. To prevent misuse, abuse, loss, forgery, or alteration of personal information, LUMOS regularly inspects these access logs and securely stores them to prevent tampering, theft, or loss.
④ LUMOS maintains a separate physical storage area for personal information and has established and operates entry control procedures for this facility.
Article 8. Installation, Operation, and Rejection of Automatic Personal Information Collection Devices
① LUMOS uses "cookies" to store and retrieve user information periodically in order to provide individualized, customized services.
② Cookies are small pieces of information sent by the server (HTTP) used to run the website to the user's computer browser, and they may be stored on the hard drive of the user's PC.
A. Purpose of Cookie Use: Cookies are used to provide optimized information to users by analyzing visit history, usage patterns, popular search terms, and secure connection status for each service and website visited by the user.
B. Installation, Operation, and Rejection of Cookies: Users can refuse to store cookies by configuring the settings under [Tools > Internet Options > Privacy] in the web browser's top menu.
C. Refusing to store cookies may result in difficulties using customized services.
Article 9. Chief Privacy Officer
① LUMOS designates a Chief Privacy Officer as follows to take overall responsibility for the processing of personal information, handle complaints, and provide remedies for information subjects regarding personal information processing.
▶ Chief Privacy Officer
Name: Jisoo Park
Contact: info@llumos.co
※ This connects to the Privacy Department.
▶ Privacy Department
Department: Privacy Department
Contact: info@llumos.co
② Information subjects may contact the Chief Privacy Officer and the designated department regarding any privacy inquiries, complaint handling, or remediation efforts arising from the use of LUMOS's services (or business activities). LUMOS will respond to and process all inquiries without delay.
Article 10 (Remedies for Rights Infringement)
Data subjects may contact the following organizations to inquire about damage relief and counseling regarding personal information infringement.
[The organizations listed below are separate entities from LUMOS. Please contact them if you are not satisfied with the results of LUMOS's internal personal information complaint handling or damage relief, or if you require more detailed assistance.]
▶ Personal Information Infringement Report Center (operated by the Korea Internet & Security Agency)
Responsibilities: Reporting personal information infringement, requesting counseling
Website: privacy.kisa.or.kr
Phone: 118 (no area code required)
Address: Personal Information Infringement Report Center, 3rd Floor, 9 Jinheung-gil, Naju-si, Jeollanam-do (301-2 Bitgaram-dong), 58324, Republic of Korea
▶ Personal Information Dispute Mediation Committee
Responsibilities: Applications for personal information dispute mediation, collective dispute mediation (civil resolution)
Website: www.kopico.go.kr
Phone: 1833-6972 (no area code required)
Address: 4th Floor, Government Complex Seoul, 209 Sejong-daero, Jongno-gu, Seoul, 03171, Republic of Korea
▶ Cybercrime Investigation Division, Supreme Prosecutors' Office: 02-3480-3573 (www.spo.go.kr)
▶ Cybercrime Reporting System, National Police Agency: 182 (no area code required) (ecrm.cyber.go.kr)
Article 11: Changes to the Privacy Policy
① This privacy policy is effective as of the implementation date. Any additions, deletions, or modifications made in accordance with relevant laws and regulations will be announced through official notices.
Implementation Date: January 31, 2024
② Previous versions of the privacy policy can be accessed below.
Home