“Sonic Lab Co., Ltd.” values customers’ personal information and complies with the Act on Promotion of Information and Communications Network Utilization and Information Protection. Through its personal information handling policy, we inform how the personal information you provided to us is being used for what purpose and what measures are being taken to protect it. If the Company revises its personal information handling policy, you will be notified through the web site.
1. Items of personal information to be handled and collection methods
2. Purpose of processing personal information
3. Provision of personal information to a third party
4. Entrustment of personal information handling
5. Retention and use period of personal information
6. Procedures and methods of destroying personal information
7. Rights of users and legal representatives and how to exercise them
8. Installation/operation and refusal of automatic personal information collection devices
9. Technical/administrative protection measures for personal information
10. Contact information of personal information manager and processor
11. Remedy for infringement of rights and interests
12. Others
13. Changes to personal information processing policy
1. Personal information items collected
The Company collects the following personal information for services and consultation.
a. Collected items: company name, personal name, email, phone number, country, record of service use.
b. Optional items: Information stated in the application for service or information provided by the customer, other than personal identification information
2. Purpose of collecting and using personal information
The company uses the collected personal information for the following purposes.
a. Fulfilling service provision contract and providing customer service
b. Utilization for marketing and advertising
c. Obtaining information on access frequency or statistics on use of service by members
d. Working out statistics, conducting scientific researches, and keeping the record for public use
3. Provision of personal information to a third party
The Company will use personal information of users within the scope notified in “2. Purpose of collecting and using personal information“ and, without the user’s prior consent, it will not in principle deviate from the scope or disclose the user’s personal information. However, exceptions apply in the following cases:
a. When users consent to disclosure in advance; or
b. When such disclosure is requested by an investigative agency under the statutory authority or in accordance with the investigation procedures or protocols as prescribed in the law.
4. Outsourcing personal information handling work
The Company currently does not contract out personal information handling to any third party, and if it needs to be outsourced in the future, we will notify you through the web site and update the content of this Personal Information Handling Policy as appropriate.
5. Retention and use period of personal information
In principle, users' personal information will be destroyed immediately once the purpose of collecting and using personal information is achieved.
However, if it is necessary to retain information for the Company's internal policy relating to, for example, dispute resolution or identity verification, the following information will be retained for the specified period and for the reasons as follows.
a. Retained items: company name, personal name, email, phone number (mobile phone number), country
b. Legal ground for retention: Act on the Use and Protection of Credit Information
c. Retention period: three years
※ Records of collection/processing and use of credit information: three years (Act on Use and Protection of Credit Information)
6. Procedures and methods for destroying personal information
In principle, users' personal information will be destroyed immediately once the purpose of collecting and using personal information is achieved.
We destroy users’ personal information in the following procedures and methods:
a. Destruction procedure
Information entered by users for customer inquiries, etc. is, after the purpose is achieved, transferred to a separate DB and stored there for a certain period of time (see retention and use period) before finally destruction, depending on the reason for information protection according to internal policies and other relevant laws.
This personal information will not be used for any purpose other than it is retained for, unless otherwise required by law.
b. Method of destruction
Personal information printed out on hard copies will be destroyed in the method of shredding or incineration.
Personal information stored in electronic file format will be deleted using technical methods that render the content irrecoverable.
7. How to exercise rights of users and legal representatives
Users and their legal representatives may at any time request that their registered personal information be deleted.
To request confirmation and/or deletion of your personal information that has been registered, please contact the personal information manager in writing, by phone or e-mail, and appropriate actions will be taken promptly. The Company will ensure that the personal information deleted at the request of the user or legal representative is processed in accordance with “5. Retention and use period of personal information” and thereafter no longer disclosed or used for any other purpose.
8. Installation/operation and refusal of automatic personal information collection devices
The Company operates ‘cookies’ that occasionally store and locate user information. A cookie is a very small text file that the server used for operating the web site sends to the user's browser and is stored on the user's computer hard disk. If you refuse to install cookies, there may be inconvenience for you in using the service or difficulties for us in providing the service.
a. Purpose of using cookies
Cookies are used to provide optimized information and targeted marketing services to users by identifying their visit records and usage patterns, popular search terms, secure access status, news editing, and number of users for each of the Company's services and web sites visited by users.
b. How to refuse cookie settings
Users have the option to install cookies. That is, users can allow all cookies, confirm each time a cookie is saved, or refuse to save all cookies by setting options in the web browser. To refuse cookie settings, you can select the options in the web browser to allow all cookies, confirm each time you save a cookie, or refuse to save all cookies.
9. 개인정보의 기술적/관리적 보호 대책
회사는 이용자들의 개인정보를 취급함에 있어 개인정보가 분실, 도난, 누출, 변조 또는 훼손되지 않도록 안전성 확보를 위하여 다음과 같은 기술적/관리적 대책을 강구하고 있습니다.
가. 개인정보의 암호화 및 해킹 등에 대비한 대책
The Company is committed to safeguarding the members' personal information against leakage or damage by hacking attempts or computer virus infection.
To address potential damage to personal information, we back up data on a regular basis and use the latest antivirus program to prevent users' personal information or data from being leaked or damaged. We also use encrypted communication to ensure safe transmission of personal information over the network.
b. Restriction of access to personal information processing system
The Company uses an intrusion prevention system to control unauthorized access from the outside, and strives to equip itself with all possible technical devices to ensure security systematically.
c. Minimization of personnel scope and staff training
The Company's personnel handling personal information is limited to the person in charge of processing, and to this end, separate passwords are provided and updated regularly. Compliance with the personal information handling policy is always emphasized through regular training for those in charge of processing.
d. Operation of a dedicated personal information protection unit
Through an in-house personal information protection unit, we monitor the implementation status of the personal information handling policy and whether the information processors are in compliance. If any problems are identified, we make our best efforts to immediately correct them. However, the Company is not responsible for any problems arising from leakage of personal information attributable to negligence on the user's part
10. Civil service regarding personal information
In order to protect the personal information of the customers and handle personal information related complaints, the Company will designate the relevant department and personal information manager as listed below and provide prompt and sufficient responses to any issues from users.
Personal information manager and processor: Management Support Team Contact number: 070-8633-3088 Email: yj.kang@soniclab.co.kr
11. Remedy for infringement of rights and interests
If users need to report or consult about other personal information infringements, please contact the following entities.
a. Personal Information Infringement Reporting Center: http://privacy.kisa.or.kr / 02.405.5118
b. Information Protection Mark Certification Committee: www.eprivacy.or.kr / 02.580.0533~4
c. National Police Agency Cyber Safety Bureau: www.ctrc.go.kr / 02.3150.2659
12. Miscellaneous
Please be advised that this Personal Information Handling Policy does not apply to the collection of personal information by web sites that are linked to the Company’s web site.
13. Revision of personal information processing policy
If there are any additions, deletions or modifications to the current personal information processing policy, we will notify you through ‘Advisory’ on the web site at least seven days prior to the revision. Announcement date: December 1, 2022 Enforcement date: December 1, 2022
English 
Korean