New
- Home
- How to Use the Website
- Privacy Policy
- Privacy Policy
- New
Privacy Statement
Article 1 (Purpose of personal information management)
- ① Invest KOREA collects a minimum amount of personal information to provide services to our clients and resolve their complaints.
- ② The purpose of the management of the personal information files that are registered and disclosed by Invest KOREA in accordance with Article 32 of the Personal Information Protection Act shall be as follows:
Number | Name of personal information file | Grounds for operation | Purpose of management |
---|---|---|---|
1 | Invest KOREA subscriber | Consent from a subject of information | Foreign investment magazine subscription |
2 | Online investment consultation inquirer | Consent from a subject of information | Providing answers to online investment consultation |
3 | Recommended Information emailing service user | Consent from a subject of information | Providing recommended information mailing service |
4 | IKMP project participating company | Consent from a subject of information | IKMP project support |
5 | IKMP Inquiry user | Consent from a subject of information | Providing answers to IKMP Inquiry |
6 | Invest KOREA investor member | Consent from a subject of information | Invest KOREA investor member management |
Article 2 (Management and retention period of personal information)
- ① During the retention period of the personal information in accordance with the Act or when collecting personal information from a subject of information, Invest KOREA shall manage and retain the personal information within the management and retention period to which the subject of information consented.
- ② The management and retention period of the personal information shall be as follows:
Number | Name of the personal information file | Grounds for operation | Purpose of operation | Management and Retention period |
---|---|---|---|---|
1 | Invest KOREA subscriber | Consent from a subject of information | Foreign investment magazine subscription | 2 years from the date on which the subscription began or until the member unsubscribes from Invest KOREA |
2 | Online investment consultation inquirer | Consent from a subject of information | Providing answers to online investment consultation | 2 years |
3 | Recommended Information emailing service user | Consent from a subject of information | Providing recommended information mailing service | 2 years |
4 | IKMP project participating company | Consent from a subject of information | IKMP project support | 2 years |
5 | KMP Inquiry user | Consent from a subject of information | Providing answers to IKMP Inquiry | 2 years |
6 | Invest KOREA investor member | Consent from a subject of information | Invest KOREA investor member management | 2 years |
Article 3 (Items for processing the personal information)
Number | Name of the personal information file | Items for the personal information |
---|---|---|
1 | Invest KOREA subscriber |
|
2 | Online investment consultation inquirer |
|
3 | Recommended information mailing service user |
|
4 | IKMP project participating comapny |
|
5 | IKMP Inquiry User |
|
6 | Invest KOREA Investor member |
|
- ② Please note that the site might automatically recognize and collect your personal information stated below.
- - Invest Korea website: IP address, browser cookies, log data and traffic
Article 4 (Registration status of personal information files)
- ① Invest KOREA manages personal information within the scope prescribed by the Privacy Statement, such as conducting the business falling under the jurisdiction of Invest KOREA or handling civil affairs, and it also manages the personal information files pursuant to Article 32 of the Personal Information Protection Act.
- ② Click on the "Read Personal Information File Management Ledger" link below for details on individual personal information file that can be acquired in privacy protection portal.
- ※ For details, → Open Privacy Protection Portal (www.privacy.go.kr) → Go to Civil Affairs → Click on Request Disclosure of Personal Information → Search List of Personal Information Files→ Input "KOTRA" for institution name.
- [Read Personal Information File Management Ledger]
Article 5 (Providing personal information to a third party)
- 1. Where Invest KOREA has obtained separate consent of the subject of information;
- 2. When special regulations exist in any other Act.
- 3. Where it is deemed obviously necessary for physical safety and property interests of the subject of information or a third person when the subject of information or his or her legal representative cannot give prior consent because he or she is unable to express his or her intention or by reason of his or her unidentified address, etc.;
- 4. Where using personal information for any purpose other than the intended purpose or a failure to provide a third person with such information makes it impossible to perform affairs provided for in any other Act, and this has undergone deliberation and resolution by the Protection Committee;
- 5. Where it is necessary for providing a foreign government or international organization with personal information in order to implement a treaty or any other international agreement;
- 6. Where it is necessary for investigating a crime, and instituting and sustaining a public prosecution;
- 7. Where it is necessary for a court to perform its judicial affairs; and
- 8. Where it is necessary for executing a punishment, care and custody or protective disposition.
Article 6 (Entrustment of the personal information processing)
-
① Invest KOREA entrusts the following affairs related to the processing of personal information to smoothly process the personal information:
Entrustment of the personal information processing : Number,Entrusted affairs,Company Name,Tel.,Hours Number Entrusted affairs Company Name Tel. Hours Result of inspection on entrusted
company1 Operation and maintenance of the KOTRA information system SYSONE Co., Ltd. 02-6090-6800 09:00~18:00 Appropriate 2 System maintenance NEO PLUS 02-2082-0500 09:00~18:00 Appropriate 3 Operation of the customer information center UCESS PARTNERS inc. 02-3439-7653 09:00~18:00 Appropriate - ② When concluding a consignment contract, Invest KOREA specifies matters related to responsibilities such as prohibition of processing of personal information other than the purpose of performing entrusted work, technical and administrative protective measures, restrictions on re-entrustment, management and supervision of the entrusted companies, compensation for damages, etc. in documents, and supervises whether the entrusteed companies handle personal information safely in accordance with the 「Article 26 of Personal Information Protection Act」.
- ③ If there is a change in the content of the entrusted work or entrusted companies, we will disclose such change without delay in this privacy policy.
Article 7 (Destruction procedure and method of personal information)
- ① Invest KOREA, in principle, shall destroy personal information without delay in case where its management purpose is achieved. Provided, this shall not apply where the personal information must be preserved pursuant to any other statute. The procedure, period and method of destruction is as follows.
- ② Where personal information must be preserved pursuant to other laws even though the holding period of the personal information to which a subject of information consented expires or the purpose thereof is achieved, Invest KOREA moves said personal information (or personal information files) to a separate database (DB) or save the personal information in a separate physical place.
- ③ Invest KOREA's procedure, period and method of destruction is as follows;
- When the holding period of personal information expires, Invest Korea shall destroy the personal information without delay after the retention period of the personal information expires.
- When personal information files become unnecessary due to achieving the purpose of management, closing services, or terminating business, Invest KOREA destroys the personal information without delay from the date on which its management is deemed to be unnecessary.
- 1. Information in electronic files will be destroyed by using a technological method making records impossible to be recycled.
- 2. Personal information printed on paper will be destroyed by shredding with a shredder or incinerating.
Article 8 (Rights and duties of subject of information and how to exercise them)
-
① A subject of information shall exercise the following rights in regards to the protection of the personal information at any time:
- 1. Request for inspection of the personal information
- 2. Request for correction where there is an error
- 3. Request for deletion
- 4. Request for suspension of the processing.
- ② The subject of information shall exercise his rights in accordance with Section 1 by submitting the document as provided by Annex 8. Enforcement Ordinance of the Personal Information Protection Act via mail, e-mail or fax and Invest KOREA shall respond to the request without delay.
- ③ If the subject of information of the personal information requests for correction or deletion of his personal information, Invest KOREA shall not use or provide the personal information of the subject until such modification or deletion is completed.
- ④ The subject of information shall present his legal representative or agent to exercise his rights as provided by Section 1. In such case, the subject of information is required to submit the power of attorney in accordance with Annex 11. Enforcement Ordinance of the Personal Information Protection Act.
- ⑤ The request for suspending the process and inspection of the personal information could be limited in accordance with Article 35.5 and Article 37.2 of the Personal Information Protection Act.
- ⑥ For correction and deletion of personal information, if other Acts stipulate the particular personal information be collected, the subject of information shall not request for deletion thereof.
-
⑦ When a user rightfully requests to access, correct, delete his/her personal information, or suspend its processing, Invest KOREA will first make sure the individual making the request is the user or his/her legal representative.
* Provide any identification cards (certificate of resident registration, driver’s license, passport, etc.) to identify himself.
* If the requested person is the legal representative, any identification cards and power of attorney to identify that he is the legal representative of the subject of information.
* [Annex 8. Enforcement Ordinance of the Personal Information Protection Act] Request for inspecting, modifying, deleting and suspending the process of the personal information [Download]
* [Annex 11. Enforcement Ordinance of the Personal Information Protection Act] Power of Attorney [Download]
- ⑧ Procedures for inspecting, correcting, deleting and suspending the personal information are as follows:
Article 9 (Measures for securing the safety of personal information)
-
1. Esablishment and enforcement of internal managment plan
Invest KOREA establishes and enforces an internal management plan in accordance with 'Measures for securing the safety of personal information.' -
2. Minimizing the number of personal information managers and education
Invest KOREA appoints personal information managers to the least possible extent and enforces measures to manage the personal information. -
3. Restrictions on access to personal information
Invest KOREA takes measures necessary for controlling the access to personal information by granting, changing and cancelling authority to access the database that manages personal information, and controls access without permission from the outside by using intrusion prevention system. -
4. Preservation of access records and prevention of conterfeit and alteration
Invest KOREA keeps and manages records of accessing (web log, summary data, etc.) the personal information management system not less than one year. Provided, where the personal information management system manages personal information of over 50,000 subjects of information or handles identification information or sensitive informtion, the relevant personal information is kept and managed for 2 years and more. -
5. Encryption of personal information
Personal informaiton of users is saved and managed in an encrypted manner. Also, in case of important data, separate security technologies including encryption upon saving and sending. -
6. Installation of security program and periodic inspection and renewal
Invest KOREA installs security programs to prevent personal information from leakage or corruption, and renews and inspects on a regular basis. - 7. Invest KOREA has a separate physical place for the personal information system that keeps personal information controlling the entrance of the unauthorized, and established and manages entrance control measures relating to the matter.
Article 10 (Installing, operating, and refusing installation of automatic data collection tools)
- 1. Microsoft Edge: click the 'Tools' menu at the top of your browser window → click 'Internet options' → select the 'Privacy' tab → set cookie handling level by adjusting the slider
- 2. Chrome: click the 'Settings' menu in the top-right corner of your browser window → click 'Show advanced settings' → click 'Content settings' in the 'Privacy' section → set cookie handling level
Article 11 (Persons in charge of personal information protection)
Position (Duties & Responsibilities) | Division | Name | Contact |
---|---|---|---|
Person in charge of personal information protection | Digital Trade-Investment Division | Director Jeonghun Lee | Tel. : 82-2-3460-7400 |
Person in charge of personal information protection by sector | Investment Planning Department | Director-General Kim Byeongho | Tel. : 02-3460-7824 |
Person in charge of personal information protection by sector | Investment PR Team | Assistant Manager Shin Jiin |
Tel. : 02-3460-7842 Fax : 02-3460-7840 E-mail : jiin.shin@kotra.or.kr |
Article 12 (Installing, operating, and refusing installation of automatic data collection tools)
- 1. Internet Exlporer: click the 'Tools' menu at the top of your browser window → click 'Internet options' → select the 'Privacy' tab → set cookie handling level by adjusting the slider
- 2. Chrome: click the 'Settings' menu in the top-right corner of your browser window → click 'Show advanced settings' → click 'Content settings' in the 'Privacy' section → set cookie handling level
Article 13 (Remedies for infringement on rights and interests)
-
Personal Information Infringement Report Center (Run by the Korea Internet & Security Agency)
- Description : Report infringement on the personal information, request for consultation
- Website : http://privacy.kisa.or.kr
- Tel : 118 (without area code)
- Address : (58324) 9 Jinheung-gil, Naju, Jeollanam-do, 3F Personal Information Infringement Notification Center
-
Personal Information Dispute Mediation Committee
- Duties: personal information dispute mediation, collective dispute mediation (civil resolution)
- Website : http://www.kopico.go.kr
- Tel : 1833-6972
- Address: (03171) Level 4, Government Complex Seoul, 209 Sejong-daero, Jongno-gu, Seoul
-
SPO Cybercrime Investigation Department
- 1301 (http://www.spo.go.kr, cid@spo.go.kr)
- National Police Agency Cyber Bureau
Article 14 (Amendment to personal information management policy)
② Please find below the previous personal information protection policies:
- 2023. 06. 15 ~ 2023. 08. 09 Guidelines
- 2023. 02. 13 ~ 2023. 06. 14 Guidelines
- 2022. 12. 27 ~ 2023. 02. 12 Guidelines
- 2022. 07. 18 ~ 2022. 12. 26 Guidelines
- 2022. 05. 19 ~ 2022. 07. 17 Guidelines
- 2022. 05. 03 ~ 2022. 05. 18 Guidelines
- 2022. 01. 07 ~ 2022. 05. 02 Guidelines
- 2021. 09. 01 ~ 2022. 01. 06 Guidelines
- 2021. 02. 05 ~ 2021. 08. 31 Guidelines
- 2020. 09. 22 ~ 2021. 02. 04 Guidelines
- 2020. 06. 03 ~ 2020. 09. 21 Guidelines
- 2018. 09. 03 ~ 2020. 06. 02 Guidelines
- 2017. 06. 02 ~ 2018. 09. 02 Guidelines
- 2016. 02. 11 ~ 2017. 06. 01 Guidelines
- 2015. 08. 01 ~ 2016. 02. 10 Guidelines
- 2014. 03. 27 ~ 2015. 07. 31 Guidelines
- 2012. 02. 01 ~ 2014. 03. 26 Guidelines
1. Controller
A controller is responsible for the collection and processing of your personal data in accordance with the General Data Protection Regulation (GDPR) as well as further applicable data protection laws. Please find your controller and its contact information here, depending on where you are.2. Data protection officer
We have appointed a Data Protection Officer in accordance with Art. 37 of the GDPR. If there is anything you are unsure about regarding this Policy or our data protection of your personal data, feel free to contact our Data Protection Officer by emailing dpo@kotra-frankfurt.de at any time.3. How we collect your personal data
4. What type of personal data we have
- Contact information – We may collect contact information including the name of your organisation, job title, and nationality to communicate with you in accordance with the contract, services or any business opportunities.
- Requests/Claim data – We may gather your contact information and details of your comments, requests or any other issues you’ve raised regarding our services.
- Financial data – We may collect your financial data such as bank account number for financial transactions.
- Registration data – Based on the record of your visits to events such as business meetings and exhibitions, we may collect your contact information that includes the name of your organisation, your job title and nationality for our reference to host upcoming events.
- The personal data that we process may include any other personal data that is provided to us during the course of our services.
- When you visit our website, we collect and store information that your browser automatically transmits to us such as IP address, date and time of your access, your browser type, operating system type, and cookie-related data. For more information about our use of Cookies, please see 9. Cookies.
- To provide you with an acceptable service, we may collect your information about dietary which is classed as special category data with your explicit consent.
5. How we process your personal data
- To contact you or communicate with you concerning our services or business administration
- To respond to your requests, inquiries or concerns regarding our services
- To provide international business matchmaking services which may include supporting the business trip and setting up meetings for foreign and Korean companies
- To facilitate the exhibitions, conventions or events and to provide you with information and services associated with the events
- To contact you with regard to business opportunities which we believe might interest you
- To send you our newsletter or information at irregular intervals to inform you about news on our services as well as on the services of our affiliated companies
- To send you surveys with the purpose of requesting your feedback about our events (We send surveys to all event participants instead of specific persons. Participation in surveys is voluntary, not mandatory.)
- To pay a bill or compensation to you
- To ensure our website stays securely by preventing, detecting, mitigating and investigating fraud and security breaches
- To ensure the performance of our website
- To ensure that the content of our website is presented in the most effective manner for you and your computer
6. Legal basis for the processing of personal data
Where KOTRA is processing personal data for the performance of its functions, the primary legal bases under the GDPR are as follows:- Where the processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract in accordance with Art. 6 (1) (b) of the GDPR. (i.e. when you register for our services, responding to your request about our services);
- Where the processing is necessary for the legitimate interests pursued by KOTRA or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data in accordance with Art. 6 (1) (f) of the GDPR. (i.e. sending thank you letters or surveys after the event, preventing or detecting security issues);
- Where we have obtained a data subject’s consent to the processing in accordance with Art. 6 (1) (a) of the GDPR. (i.e. sending the newsletters);
- Where the processing is necessary to comply with legal obligations in accordance with Art. 6 (1) (c) of the GDPR.
7. How we share your personal data with others
- KOTRA headquarters in Korea
- Other business partners and Korean companies
- Sponsors, co-organisers and attendees of our events
- External service providers who facilitate or support our events
- External operators of our websites and applications
- Travel agencies or hotels in connection with supporting your business trips
- Korean governments and external examiners if you are appointed as an Honorary Ambassador of Foreign Investment Promotion for Korea
- Law enforcement agencies, courts, government agencies or public authorities, intergovernmental or supranational bodies
- Third parties who are involved in judicial proceedings, in particular, if they submit a legal order, court order or equivalent legal order to us.
8. International transfers of personal data
9. Cookies
10. Security
We have implemented technical and organisational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised access or disclosure of personal data. We restrict access to your personal data to those who need to know that information to provide benefits or services to you. In addition, we train our employees to help them be well aware of risks associated with data security and confidentiality.11. Data retention
We strive to keep our processing activities with respect to your personal data as limited as possible. Your personal data will be retained only for as long as we need it to fulfil the purpose for which we have collected it and, if applicable, as long as required by statutory retention requirements. In case of consent, your personal data will be at the latest deleted without undue delay after the withdrawal of such consent.12. Your rights
You have the rights, at any time:- without giving reasons according to Art. 15 of the GDPR to obtain information about your data stored with us. With the exception of any connection fees charged by your provider, you will not incur any costs as a result of the inquiry;
- to have the data rectified in accordance with Art. 16 of the GDPR;
- to have the data erased in accordance with Art. 17 of the GDPR;
- to obtain from the controller restriction of processing in accordance with Art. 18 of the GDPR;
- to object to the processing for sending newsletters according to Art. 21 (2) of the GDPR;
- to object to other forms of processing of your personal data in accordance with Art. 21 (1) of the GDPR;
- to withdraw any consent to the collection and use of data given to us at any time, without affecting the lawfulness of processing based on consent before its withdrawal in accordance with Art. 7 (3) of the GDPR;
- to receive your personal data in a machine-readable format and to transmit them to another person responsible in accordance with Art. 20 of the GDPR;
13. Links to other websites
Region | Controller | Contact Information | |
---|---|---|---|
Austria | KOTRA Vienna |
Address | Mariahilferstrasse 77-79/1/3, (Generali Center, 3rd Fl.) A-1060, Vienna, Austria |
Telephone | (43-1)586-3876 | ||
Data Protection Manager | dpm_Austria@kotra.or.kr | ||
Belgium | KOTRA Brussels |
Address | Rond-point Schuman 11, 1040 Brussels, Belgium |
Telephone | (32-2)205-2142 | ||
Data Protection Manager | dpm_Belgium@kotra.or.kr | ||
Bulgaria | KOTRA Sofia |
Address | Floor 1, Interpred-WTC, 36 Dragan Tsankov Blvd., sofia 1057, Bulgaria |
Telephone | (359-2)969-5030 | ||
Data Protection Manager | info@kotra-sofia.org | ||
Croatia | KOTRA Zagreb |
Address | Radnička cesta 52/Ⅷ, 10000, Zagreb, Croatia |
Telephone | (385-1)4815-102 | ||
Data Protection Manager | dpm_Croatia@kotra.or.kr | ||
Czech Republic |
KOTRA Praha |
Address | Panorama Business Center, Skretova 12, 120 00, Praha 2, Czech Republic |
Telephone | (420)245-005-650 | ||
Data Protection Manager | dpm_Czech@kotra.or.kr | ||
Denmark | KOTRA Copenhagen |
Address | Holbergsgade 14, 3rd Floor DK-1057, Copenhagen, Denmark |
Telephone | (45)3312-6658 | ||
Data Protection Manager | info@kotra.dk | ||
Finland | KOTRA Helsinki |
Address | Salomonkatu 17 A, 3 Krs D, 00100 Helsinki, Finland |
Telephone | (358-9)682-9490 | ||
Data Protection Manager | helsinki@kotra.or.kr | ||
France | KOTRA Paris |
Address | 19 Avenue de l'Opéra, 75001 Paris, France |
Telephone | (33-1)5535-8888 | ||
Data Protection Manager | paris@kotra.or.kr | ||
Germany (Frankfurt) |
KOTRA Frankfurt |
Address | MesseTurm 33.OG, Friedrich-Ebert-Anlage 49, 60308 Frankfurt am Main, Germany |
Telephone | (49-69)242-9920 | ||
Data Protection Manager | frankfurt@kotra.or.kr | ||
Germany (Hamburg) |
KOTRA Hamburg |
Address | Axel-Springer-Platz 3, Haus B, 20355 Hamburg, Germany |
Telephone | (49-40)3405-740 | ||
Data Protection Manager | info@kotra.de | ||
Germany (München) |
KOTRA München |
Address | Tal 12, D-80331 Munich, Germany |
Telephone | (49-89)2424-2630 | ||
Data Protection Manager | munich@kotra.or.kr | ||
Greece | KOTRA Athens |
Address | 6th Fl., 5 Chatzigianni Mexi Str., GR-11528, Athens, Greece |
Telephone | (30-210)654-3623 | ||
Data Protection Manager | dpm_Greece@kotra.or.kr | ||
Hungary | KOTRA Budapest |
Address | H1123, 3F, KOTRA, Alkotas U. 50, Budapest, Hungary |
Telephone | (36-1)799-5400 | ||
Data Protection Manager | dpm_Hungary@kotra.or.kr | ||
Italy | KOTRA Milano |
Address | Via Larga 2 - 20122, Milano, Italy |
Telephone | (39)02-795813 | ||
Data Protection Manager | kotramil@kotra.it | ||
Poland | KOTRA Warsaw |
Address | KOTRA, Warsaw Financial Center 9th Floor, Emilii Plater 53, 00-113 Warsaw, Poland |
Telephone | (48-22)520-6230 | ||
Data Protection Manager | biuro@kotra.pl | ||
Romania | KOTRA Bucuresti |
Address | Baneasa Business & Technology Park, Soseaua Bucuresti – Ploiesti nr. 42-44, Sector 1, Romania Cladirea A, Aripa A1, Et. 1 |
Telephone | (40-21)233-2171~3 | ||
Data Protection Manager | bucharest@kotra.ro | ||
Slovakia | KOTRA Bratislava |
Address | 2nd Floor, Cintorinska 2333/9, 811 08 Bratislava, Slovak Republic |
Telephone | (421-2)2129-3450 | ||
Data Protection Manager | dpm_Slovakia@kotra.or.kr | ||
Spain | KOTRA Madrid |
Address | Paseo de la Castellana 95, Torre Europa 95, Planta 9 B, 28046 Madrid, Spain |
Telephone | (34-91)556-6241 | ||
Data Protection Manager | dpm_Spain@kotra.or.kr | ||
Sweden | KOTRA Stockholm |
Address | KOTRA, Svardvagen 11C, SE-182 33 Danderyd, Sweden |
Telephone | (46-8)30-8090 | ||
Data Protection Manager | sto_ktc@kotra.or.kr | ||
The Netherlands |
KOTRA Amsterdam |
Address | WTC Amsterdam, C tower 12F Strawinskylaan 1253, 1077XX Amsterdam, The Netherlands |
Telephone | (31-20)673-0555 | ||
Data Protection Manager | info@koreatradecenter.nl | ||
All other countries within the EU |
KOTRA EUROPE HEAD OFFICE |
Address | MesseTurm 33.OG, Friedrich-Ebert-Anlage 49, 60308 Frankfurt am Main, Germany |
Telephone | (49-69)242-9920 | ||
Data Protection Officer | dpo@kotra-frankfurt.de | ||
All other countries outside the EU |
KOTRA Headquarters in Korea |
Address | 13, Heolleung-ro, Seocho-gu, Seoul, Korea |
Telephone | (82)1600-7119 | ||
Data Protection Manager | dpm_HQ@kotra.or.kr |