Six Paths Meditation Privacy Policy
In accordance with Article 30 of the Personal Information Protection Act, the Development Team of Six Paths Meditation establishes and discloses the following personal information processing policy to protect the personal information of users and to promptly and smoothly handle grievances related thereto.
If the Development Team revises the personal information processing policy, users will be informed through a website notice (or individual notice).
○ This Privacy Policy is effective as of Jan 15, 2024.
Article 1 (Purpose of Processing Personal Information)
The Development Team processes personal information for the following purposes. The personal information processed will not be used for any purpose other than the following purposes, and if the purpose of use is changed, necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act will be taken.
1. Service membership and management
Personal information is processed for the purpose of confirming the intention to establish the membership, identifying and authenticating the person in accordance with the provision of membership services, and maintaining and managing the membership.
2. Provision of services
We process personal information for the purpose of providing services, providing contents, and providing customized services.
Article 2 (Processing and Retention Period of Personal Information)
1. The Development Team shall process and retain personal information within the processing and retention period in accordance with the laws and regulations or the processing and retention period agreed upon when collecting personal information from the user.
2. Each personal information processing and retention period is as follows.
(1) Provision of goods or services
Personal information related to the provision of goods or services will be retained and used for the above purposes for 1 year after the end of service, beginning from the date of consent to collect and use said information.
Article 3 (Items of Personal Information Processed)
1. The Development Team processes the following items of personal information.
(1) Service membership and management
Required items: email, mobile phone number, password, name, date of birth, and gender.
Article 4 (Provision of Personal Information to Third Parties)
1. The Development Team processes personal information only within the scope specified in Article 1 (Purpose of Processing Personal Information) and provides personal information to third parties only in cases falling under Articles 17 and 18 of the Personal Information Protection Act, including consent of the user and special provisions of the law.
Article 5 (Consignment of Personal Information Processing)
1. For the smooth processing of personal information the Development Team consigns personal information processing tasks as follow.
2. When concluding a consignment contract, the Development Team shall specify in documents such as contracts the prohibition of processing personal information other than for the purpose of performing consignment work, technical and administrative protection measures, restrictions on re-consignment, management and supervision of the consignee, and responsibilities such as compensation for damages in accordance with Article 26 of the Personal Information Protection Act. Moreover, the Development Team shall supervise whether the consignee processes personal information safely.
3. If the contents of the consignment work or the consignee are changed, we will disclose it through this privacy policy without delay.
Article 6 (Procedure and Method of the Destruction of Personal Information)
1. The Development Team shall destroy personal information without delay when the personal information becomes unnecessary. This includes the expiration of the personal information retention period or the achievement of the purpose of processing.
2. If the personal information retention period agreed to by the user has elapsed or the purpose of processing has been achieved, but the personal information must continue to be preserved in accordance with other laws and regulations, the personal information shall be transferred to a separate database or preserved in a different storage location.
3. The procedures and methods for destroying personal information are as follows.
(1) Procedure for destruction
The Development Team selects the personal information for which the reason for destruction has occurred, and destroys this personal information with the approval of the Development Team’s personal information protection officer.
(2) Method of destruction
Information in the form of electronic files is destroyed using technical methods that do not allow the records to be reproduced.
Personal information printed on paper shall be destroyed by shredding or incineration.
Article 7 (Rights and Obligations of the User and Legal Representative, and Methods of Exercise)
1. The user may exercise the right to view, correct, delete, or request suspension of the processing of personal information at any time against the Development Team.
2. The exercise of the rights under Paragraph 1 may be made in writing, e-mail, facsimile transmission (FAX), etc. to the Development Team in accordance with Article 41 (1) of the Enforcement Decree of the Personal Information Protection Act, and the Development Team will take action without delay.
3. Exercising the rights as stated in Paragraph 1 may be done through an agent such as the user’s legal representative or one who has been delegated, in which case, a power of attorney in accordance with the form of Attachment 11 to the Notification on the Method of Processing Personal Information (No. 2020-7) must be submitted.
4. Requests for access to personal information and suspension of processing may restrict the rights of the user in accordance with Article 35 (4) and Article 37 (2) of the Personal Information Protection Act.
5. A request for correction or deletion of personal information cannot be made if the personal information is specified as the subject of collection in another law.
6. The Development Team shall verify whether the person making the request for access, correction, deletion, or suspension of processing in accordance with the rights of the user is that person or a legitimate representative.
Article 8 (Measures to Ensure the Safety of Personal Information)
The Development Team takes the following measures to ensure the safety of personal information.
1. Minimization and training of employees handling personal information.
We take measures to manage personal information by designating employees who handle personal information and minimizing them by limiting them to those in charge.
2. Technical measures against hacking, etc.
In order to prevent leaks and damage of personal information due to hacking or computer viruses, the Development Team installs security programs, periodically updates and inspects them, installs systems in areas with controlled access from the outside, and monitors and blocks them technically and physically.
3. Restriction of access to personal information
We take necessary measures to control access to personal information by granting, changing, and canceling access rights to the database system that processes personal information, and control unauthorized access from the outside using an intrusion prevention system.
4. Use of locks for document security
Documents containing personal information and auxiliary storage media are stored in a safe place with a lock.
5. Access control for unauthorized persons
We set aside a separate physical storage location for personal information and establish and operate access control procedures for it.
Article 9 (Installation and Operation of Devices that Automatically Collect Personal Information and Refusal Thereof)
The Development Team does not use cookies that intermittently store and retrieve information of the user.
Article 10 (Personal Information Protection Officer)
1. The Development Team shall be responsible for the processing of personal information in general, and shall designate a person in charge of personal information protection to handle complaints and damage relief of users related to the processing of personal information. They are as follows.
▶ Personal information officer
Person in charge: Wangmo Seo (Ven. Jeongdo)
Position: Director, Jonghak Research Institute of Dongguk University’s Institute of Buddhist Studies
Contact: 02-2260-3127, [email protected]
▶ Department in charge of personal information protection
Department name: Jonghak Researh Institute of Dongguk University’s Institute of Buddhist Studies
Person in charge: Jonghak Research Institute’s full time researcher
Contact : 02-6713-5141, [email protected]
2. The user may contact the personal information protection officer and the department in charge for all personal information protection-related inquiries, complaints, damage relief, etc. that occur while using the service (or business) of the Development Team. The Development Team will answer and process the user’s inquiries without delay in consultation with the Jonghak Research Institute.
Article 11 (Departments to Receive and Process Requests for Access to Personal Information)
Users may make a request for access to personal information pursuant to Article 35 of the Personal Information Protection Act to the following departments.
The Development Team will endeavor to promptly process the user's request for access to personal information.
▶ Department for receiving and processing requests for access to personal information
Department name: Jonghak Research Institute of Dongguk University’s Institute of Buddhist Studies
Person in charge : Wangmo Seo (Ven. Jeongdo)
Contact : 02-2260-3127, [email protected]
Article 12 (Remedies for Infringement of Rights and Interests of Users)
The user may apply for dispute resolution or consultation with the Personal Information Dispute Mediation Committee or the Personal Information Infringement Reporting Center of the Korea Internet & Security Agency in order to receive relief due to personal information infringement. In addition, please contact the following organizations for reporting and counseling on other personal information infringement.
1. Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr)
2. Personal Information Infringement Reporting Center: (without area code) 118 (privacy.kisa.or.kr)
3. Supreme Public Prosecutors' Office: 1301 (without area code) (www.spo.go.kr)
4. National Police Agency: (without area code) 182 (ecrm.cyber.go.kr)
A person whose rights or interests have been infringed by a disposition or omission made by the head of a public institution in response to a request pursuant to the provisions of Article 35 (Access to Personal Information), Article 36 (Correction or Deletion of Personal Information), or Article 37 (Suspension of Personal Information Processing, etc.) of the Personal Information Protection Act may file an administrative appeal as provided in the Administrative Appeals Act.
For more information on administrative appeals, please refer to the website of the Central Administrative Appeals Commission (www.simpan.go.kr).
Article 13 (Change of Privacy Policy)
1. This privacy policy will be applied from Jan 15, 2024, and if there are any additions, deletions, or corrections to the contents in accordance with laws and policies, we will notify you through a notice 7 days before the implementation of the changes.