HOME > Privacy Statement / GDPR Privacy Policy

English/영문

Privacy Statement
All private information handled by InnoGate is collected, retained and managed in accordance with the relevant Acts.

The Personal Information Protection Act suggests general norms for the processing of the personal information. InnoGate shall treat the collected and retained information in compliance with the Act in a legal and appropriate manner in order to conduct public affairs properly and to protect the rights and interests of the users.

InnoGate respects the rights and interests of the users including the request for inspecting, correcting, deleting and suspending the personal information processing regulated by the relevant Act. The users shall file for an administrative appeal in accordance with the Administrative Appeals Act for the infringements on their rights and interests.

InnoGate established the following regulations for the processing of the personal information and shall disclose them to protect the personal information and rights and interests in accordance with Article 30 of the Personal Information Protection Act and smoothly handle the grievances of the users related to their personal information.
Article 1 (Purpose of the personal information processing)
  • ①InnoGate collects a minimum amount of personal information to provide services to attendees and resolve their complaints.
  • ② The purpose of the processing of the personal information files that are registered and disclosed by InnoGate in accordance with Article 32 of the Personal Information Protection Act shall be as follows:
Name of personal information file Ground for operation Personal information items registered in a personal information file Retention period
InnoGate
Attendees Information
Consent from the information provider -Name(KOR/ENG)
-Country of Residence
-Company Name
-E-mail Address
-Contact Information
1 year
Article 2 (Period of Managing and Retaining Personal Information)
  • (1) InnoGate Homepage shall manage and retain personal information during the period for managing and retaining the personal information as specified by laws and regulations or as agreed upon during collection from an owner of information.
  • (2)The period of managing and retaining respective personal information shall be as follows.
    • 1. Signing for membership and its management: Within 1 year or until withdrawal from membership Until pertinent reasons cease to exist if pertaining to the following reasons
      a) Until pertinent investigations and inquiries are concluded if ongoing due to violation of related laws and regulations
    • 2. Handling civil petition: 3 years following conclusion of managing civil complaints
Article 3 (Provision of Personal Information to a Third Party)
  • (1) InnoGate Homepage shall manage the personal information of an owner of information within a scope as specified in Article 1 (Purpose of Managing Personal Information) and provide personal information to a third party only if it pertains to Article 17 of the Personal Information Protection Act stipulating the consent by an owner of information and special legal provisions.
  • (2)InnoGate Homepage shall provide the following personal information to a third party.
A recipient of personal information Purposes for which a recipient of personal information uses such information Items of personal information to provide Period for which a recipient of personal information holds and uses such information
Partnering(Matching) Partners Partnering/Matching(for Video Conference) Name, Contact Information, E-mail 1 year
Article 4 (Entrustment of the personal information processing)
① InnoGate entrusts the following affairs related to the processing of the personal information to smoothly process the personal information:
Entrusted affairs Company Name Contact Info. Hours
Operation and maintenance of the site MICEHUB +82-2-6464-7222 09:00-18:00
-Partnering/Matching Operation (for Video Conference)
-PR, Program Information
InnoGate Operating Agency
Article 5 (Rights and duties of the information players and how to exercise them)
  • ① An information player shall exercise the following rights in regards to the protection of the personal information at any time:
    • 1. Request for inspection of the personal information
    • 2. Request for correction where there is an error
    • 3. Request for deletion
    • 4. Request for suspension of the processing.
  • ② The information player shall exercise his rights in accordance with Section 1 by submitting the document as provided by Annex 8. Enforcement Ordinance of the Personal Information Protection Act via mail, e-mail or fax and InnoGate shall respond to the request without delay.
  • ③ If the information player of the personal information requests for correction or deletion of his personal information, InnoGate shall not use or provide the personal information of the player until such modification or deletion is completed.
  • ④ The information player shall present his legal representative or agent to exercise his rights as provided by Section 1. In such case, the information player is required to submit the power of attorney in accordance with Annex 11. Enforcement Ordinance of the Personal Information Protection Act.
  • ⑤ The request for suspending the process and inspection of the personal information could be limited in accordance with Article 35.5 and Article 37.2 of the Personal Information Protection Act.
  • ⑥ For correction and deletion of personal information, if other Acts stipulate the particular personal information be collected, the information player shall not request for deletion thereof.
  • ⑦ When a user rightfully requests to access, correct, delete his/her personal information, or suspend its processing, InnoGate will first make sure the individual making the request is the user or his/her legal representative.
    • * Provide any identification cards (certificate of resident registration, driver’s license, passport, etc.) to identify himself.
    • * If the requested person is the legal representative, any identification cards and power of attorney to identify that he is the legal representative of the information player.
    • * [Annex 8. Enforcement Ordinance of the Personal Information Protection Act] Request for inspecting, modifying, deleting and suspending the process of the personal information
    • * [Annex 11. Enforcement Ordinance of the Personal Information Protection Act] Power of Attorney
  • ⑧ Procedures for inspecting, correcting, deleting and suspending the personal information are as follows:
Article 6 (Items for processing the personal information)
InnoGate processes the following items for the personal information:
Name of the personal information file Items for the personal information
InnoGate Attendees Information -Name(KOR/ENG)
-Country of Residence
-Company Name
-E-mail Address
-Contact Information
Please note that the site might automatically recognize and collect your personal information stated below.
InnoGate website: IP address, browser cookies, log data and traffic
Article 7 (Procedures and methods of destructing the personal information)
  • ① InnoGate, in principle, shall delete the personal information without delay if its purpose to process the personal information is achieved. However, it shall not be applied for the personal information that needs to be preserved in accordance with other Acts. The procedures, terms and methods of destructing the personal information are as follows:
    • A. Procedures
      Any unnecessary personal information and personal information file shall be destroyed in accordance with the below procedure of the inside policy under the responsibility of the person in charge of the personal information.
      Destruction of the personal information.
      The personal information shall be destroyed without delay from the end date of its holding period.
      Destruction of the personal information file
      If the personal information file becomes unnecessary due to the achievement of the processing of the personal information file, abolition of the relevant service and the end of the business, the personal information file shall be destroyed without delay from the day that recognizes the processing of the personal information is no longer needed.
    • B. Methods
      Electronic data shall be destroyed by using technical methods to make it impossible to restore such data.
      Paper documents that contain the personal information shall be shredded or incinerated.
Article 8 (Measures to secure the safety of the personal information)
InnoGate shall implement the following technical, managerial and physical measures to secure the safety of the personal information in accordance with Article 29 of the Personal Information Protection Act.
  • 1. Minimum number of staff in charge of the personal information processing and training InnoGate shall designate the minimum number of staff to handle the personal information.
  • 2. Restricted access to the personal information
    InnoGate shall carry out necessary measures to restrict access to the personal information through empowerment, change and cancellation of access authorities for the database system that processes the personal information. It shall also operate intrusion prevention systems to deny any unauthorized external access.
  • 3. Preservation of the access records
    InnoGate shall store access records (weblog data, summarized information, etc.) to the personal information data system for at least six months.
  • 4. Encryption of the personal information
    The personal information of the users are stored and managed in an encrypted manner. InnoGate also implements special security measures including encrypting important data when storing or transferring.
  • 5. Installation and periodic updates of computer security programs
    InnoGate shall install and periodically update the computer security programs to prevent the personal information from leakage and damage due to hacking or computer viruses.
  • 6. Access control of the unauthorized personnel
    InnoGate shall operate a separate physical storage facility for its personal information data systems and establish and operate relevant access control procedures.
Article 9 (Persons in charge of personal information protection)
InnoGate has designated the folowing persons to be in charge of protecting personal information and settleing related complaints (in accordance with Article 31 (1) of the Personal Information Protection Act):
Director Manager Officer
Head of Trade-Investment
Date
Lyu Jae Won
Tel : +82-2-3460-7400
Global Job-Creation Department
Director-General
Keunhyung Park
Tel : +82-2-3460-7380
Start-up Support Team
Junho Kim
Tel: +82-2-3460-7378
Article 10 (Request for inspection of the personal information)
  • ① An information player shall request for the inspection of the personal information in accordance with Article 35 of the Personal Information Protection Act via the following team. KOTRA shall strive to swiftly handle the request of the information player for the inspection of the personal information.
    • ▶ Department in charge
      Team/Officer : Start-up Support Team / Junho Kim
      Contact : Tel. +82-2-3460-7378 / E-mail jh.kim@kotra.or.kr / Fax +82-2-3460-7371
  • ② Apart from the Team mentioned in Section 1, the information player shall be able to request for the inspection of the personal information via the website (www.privacy.go.kr) of the Privacy Information Protection Portal run by the Ministry of Government Administration and Home Affairs.
    • ▶ Privacy Information Protection Portal → Civil affairs on the personal information → Request for the inspection of the personal information (real name authentication via public I-pin service is required.)
Article 11 (Remedies for infringement on rights and interests)
An information player shall consult the following organizations for remedies regarding the infringement on the personal information.
  • ▶ Personal Information Infringement Report Center (Run by the Korea Internet & Security Agency)
    • Description: Report infringement on the personal information, request for consultation
    • Website : http://privacy.kisa.or.kr
    • Tel: 118 (without area code)
    • Address: (58324) 9 Jinheung-gil, Naju, Jeollanam-do, 3F Personal Information Infringement Notification Center
  • ▶ Personal Information Dispute Mediation Committee
    • Duties: personal information dispute mediation, collective dispute mediation (civil resolution)
    • Website : www.kopico.go.kr
    • Tel: 1833-6972
    • Address: (03171) Level 4, Government Complex Seoul, 209 Sejong-daero, Jongno-gu, Seoul
  • ▶ SPO Cybercrime Investigation Department: 1301 (www.spo.go.kr, cid@spo.go.kr)
  • ▶ National Police Agency Cyber Bureau: 182 (http://cyberbureau.police.go.kr)
Also, the information player reserves the right to demand administrative appeals in accordance with the Administrative Appeals Act for any infringement on rights and interests occurred due to the nonfeasance or measures taken by the head of a public institution for the request of the information player for inspection, modification, deletion or suspension of the personal information processing.
☞ Please refer to the telephone numbers via the website (www.simpan.go.kr)of the Central Administrative Appeals Commission
Article 12 (Installing, operating, and refusing installation of automatic data collection tools)
InnoGate may use HTTP cookies, a tool that automatically collects and stores data about its users. A cookie is a small piece of data sent from an organization's web server to a user's web browser, and can be stored on the user's computer hard drive. When a user logs into InnoGate's website, InnoGate's web server can read the cookies on the user's web browser, collect new information about the user, and provide services without requiring any additional data input (e.g., name) by the user. Cookies only identify individual computers, not the persons using the computer. Also, users can choose whether or not to install cookies. Therefore, by changing the setting, users can select whether to allow cookies to be stored on their web browsers at all times, to be asked for permission every time before InnoGate's web server sends cookies, or refuse to receive cookies entirely. However, should you refuse to install cookies, you may experience difficulty in using the InnoGate website, especially in accessing certain servies that require user login.

[How to install cookies]
  • 1. Internet Exlporer: click the 'Tools' menu at the top of your browser window → click 'Internet options' → select the 'Privacy' tab → set cookie handling level by adjusting the slider
  • 2. Chrome: click the 'Settings' menu in the top-right corner of your browser window → click 'Show advanced settings' → click 'Content settings' in the 'Privacy' section → set cookie handling level
GDPR Privacy Policy
The Korea Trade-Investment Promotion Agency (“KOTRA”, “We”, “Our”, “Us”) is committed to respecting the privacy of users and providing safe and secure user experience.

This GDPR Privacy Policy (“Policy”) informs you about the personal data we collect when you use our website and services (collectively the “Services”) and only applies to individuals residing in the European Union (EU), or to individuals who use services carried out by KOTRA within the EU.

Below, you will find information on how we use your personal data, for which purposes your personal data is used, with whom it is shared and what control and information rights you may have.
1. Controller
A controller is responsible for the collection and processing of your personal data in accordance with the General Data Protection Regulation (GDPR) as well as further applicable data protection laws. Please find your controller and its contact information here, depending on where you are.
2. Data protection officer
We have appointed a Data Protection Officer in accordance with Art. 37 of the GDPR. If there is anything you are unsure about regarding this Policy or our data protection of your personal data, feel free to contact our Data Protection Officer by emailing dpo@kotra-frankfurt.de at any time.
3. How we collect your personal data
We generally collect your personal data directly from you, when, for example, you submit an inquiry, attend events or seminars, use or engage in our services or provide us with your contacts.
From time to time, we may gain access to your business contact details via recognized business data providers or an official website of your organization. We may also receive your contact details through our primary contacts at your organization if they think you may benefit from our services. As we work closely with other organizations, public agencies or governments of South Korea, we may also receive information about you from them.
When you visit our website, computer and technology information (e.g. browser type, IP address, unique device ID, etc.) is automatically collected via your browsers.
4. What type of personal data we have
We do not collect more information than we need to fulfil our purposes mentioned in this Policy and will not retain it for longer than is necessary. The types of personal data we collect and share depend on the nature of your relationship with us and the requirements of applicable laws.
  • Contact information: We may collect contact information including the name of your organization, job title, and nationality to communicate with you in accordance with the contract, services or any business opportunities.
  • Requests/Claim data: We may gather your contact information and details of your comments, requests or any other issues you’ve raised regarding our services.
  • Registration data: Based on the record of your visits to events such as business meetings and exhibitions, we may collect your contact information that includes the name of your organization, your job title and nationality for our reference to host upcoming events.
  • The personal data that we process may include any other personal data that is provided to us during the course of our services.
  • When you visit our website, we collect and store information that your browser automatically transmits to us such as IP address, date and time of your access, your browser type, operating system type, and cookie-related data. For more information about our use of Cookies, please see 9. Cookies.
  • To provide you with an acceptable service, we may collect your information about dietary which is classed as special category data with your explicit consent.
5. How we process your personal data
As KOTRA is a public agency of South Korea, we process personal data for a number of different purposes that arise from our missions to contribute to the development of the national economy through global business support activities.

We may process your personal data for the following purposes:
  • To contact you or communicate with you concerning our services or business administration
  • To respond to your requests, inquiries or concerns regarding our services
  • To provide international business matchmaking services which may include supporting the business trip and setting up meetings for foreign and Korean companies
  • To facilitate the exhibitions, conventions or events and to provide you with information and services associated with the events
  • To contact you with regard to business opportunities which we believe might interest you
  • To send you our newsletter or information at irregular intervals to inform you about news on our services as well as on the services of our affiliated companies
  • To send you surveys with the purpose of requesting your feedback about our events (We send surveys to all event participants instead of specific persons. Participation in surveys is voluntary, not mandatory.)
  • To pay a bill or compensation to you

For visitors to our website
The information collected automatically when you visit our website will be processed for the following purposes:
  • To ensure our website stays securely by preventing, detecting, mitigating and investigating fraud and security breaches
  • To ensure the performance of our website
  • To ensure that the content of our website is presented in the most effective manner for you and your computer

The provision of your personal data will generally be voluntary and there is no statutory nor contractual obligation to provide your personal data. We generally do not contractually require the provision of your personal data but note that in any event, non-provision of personal data might exclude you from using some of our services or parts thereof.

Our services are not intended for use by children. Under applicable national laws, we do not knowingly collect personal data from users who are considered children. According to our User Agreement, children are not permitted to use our services.
6. Legal basis for the processing of personal data
Where KOTRA is processing personal data for the performance of its functions, the primary legal bases under the GDPR are as follows:
  • Where the processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract in accordance with Art. 6 (1) (b) of the GDPR. (i.e. when you register for our services, responding to your request about our services);
  • Where the processing is necessary for the legitimate interests pursued by KOTRA or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data in accordance with Art. 6 (1) (f) of the GDPR. (i.e. sending thank you letters or surveys after the event, preventing or detecting security issues);
  • Where we have obtained a data subject’s consent to the processing in accordance with Art. 6 (1) (a) of the GDPR. (i.e. sending the newsletters);
  • Where the processing is necessary to comply with legal obligations in accordance with Art. 6 (1) (c) of the GDPR.
7. How we share your personal data with others
We do not sell or disclose your personal data to third parties for their marketing or advertising purposes without your consent. We only disclose your personal data when it is necessary for the purposes mentioned in this Policy or when we have obtained your consent.
Third party service providers may access to your personal data on a need to know basis for the purpose of providing services on behalf of us. They cannot do anything with your personal data without our permission. They will not share your personal data with any organisation apart from us, nor will they keep your personal data for longer than the period we instruct.
When necessary, we share your personal data with the following data processors and recipients as far as necessary for the purposes described in this Policy:
  • KOTRA headquarters in Korea
  • Other business partners and Korean companies
  • Sponsors, co-organisers and attendees of our events
  • External service providers who facilitate or support our events
  • External operators of our websites and applications
  • Law enforcement agencies, courts, government agencies or public authorities, intergovernmental or supranational bodies
  • Third parties who are involved in judicial proceedings, in particular, if they submit a legal order, court order or equivalent legal order to us.
8. International transfers of personal data
As KOTRA is a public agency of South Korea, your personal data may be transferred to South Korea for the purposes mentioned in this Policy. As South Korea has not sought nor received “adequacy decision” from the European Commission, we use Standard Contractual Clauses adopted by the European Commission to provide appropriate safeguards for the transfer of your personal data.
Given the nature of KOTRA’s missions and functions, we may also disclose your personal data to recipients overseas. To ensure an adequate level of data protection when transferring your personal data from the European Economic Area (EEA) to third countries (outside the EEA), we will only transfer your personal data on the basis of an adequacy decision or appropriate safeguards such as Standard Contractual Clauses adopted by the European Commission. Upon request, we will provide you with a copy of the relevant information.
9. Cookies
Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work or work more efficiently. We use cookies that are necessary for the operation of this website to enhance your experience when you use our website. You can control your cookies through the browser settings. Please visit the browser developer’s website if you want to find out how to manage your cookies on your browser.
If you want to know more about cookies, please visit www.aboutcookies.org or www.allaboutcookies.org.
10. Security
We have implemented technical and organizational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized access or disclosure of personal data. We restrict access to your personal data to those who need to know that information to provide benefits or services to you. In addition, we train our employees to help them be well aware of risks associated with data security and confidentiality.
11. Data retention
We strive to keep our processing activities with respect to your personal data as limited as possible. Your personal data will be retained only for as long as we need it to fulfil the purpose for which we have collected it and, if applicable, as long as required by statutory retention requirements. In case of consent, your personal data will be at the latest deleted without undue delay after the withdrawal of such consent.
12. Your rights
You have the rights, at any time:
  • without giving reasons according to Art. 15 of the GDPR to obtain information about your data stored with us. With the exception of any connection fees charged by your provider, you will not incur any costs as a result of the inquiry;
  • to have the data rectified in accordance with Art. 16 of the GDPR;
  • to have the data erased in accordance with Art. 17 of the GDPR;
  • to obtain from the controller restriction of processing in accordance with Art. 18 of the GDPR;
  • to object to the processing for sending newsletters according to Art. 21 (2) of the GDPR;
  • to object to other forms of processing of your personal data in accordance with Art. 21 (1) of the GDPR;
  • to withdraw any consent to the collection and use of data given to us at any time, without affecting the lawfulness of processing based on consent before its withdrawal in accordance with Art. 7 (3) of the GDPR;
  • to receive your personal data in a machine-readable format and to transmit them to another person responsible in accordance with Art. 20 of the GDPR;
If you would like to exercise any of these rights, you can contact the Data Protection Officer or Data Protection Manager responsible for your region. You can find the contact information of our Data Protection Managers and Data Protection Officer here.
No cost will be charged for any response to acceptable requests. If for some reasons the request is denied, we will provide an explanation as to why the request has been denied.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes for the period we hold your data.
We take any complaints we receive from you very seriously. We encourage people to bring it to our attention if they think that our collection or use of information is unfair, misleading or inappropriate. We also welcome any suggestions for improving our procedures.

We ask that you first submit any such complaints directly to the Data Protection Officer or Data Protection Manager in your country. If you aren't satisfied with our response or have concerns about how we process your personal data, you have the right to lodge a complaint with the appropriate data protection authority in your region.
13. Links to other websites
You may find links to other websites on our websites. We recommend that you read the privacy policies on the other websites you visit. This Policy does not cover how other websites collect and process personal data.
처리하는 개인정보의 항목호
Region Controller Contact Information

Austria

KOTRA
Vienna

Address

Mariahilferstrasse 77-79/1/3, (Generali Center, 3rd Fl.) A-1060,
Vienna, Austria

Telephone

(43-1)586-3876

Data Protection

Manager

dpm_Austria@kotra.or.kr

Belgium

KOTRA
Brussels

Address

Rond-point Schuman 11, 1040 Brussels, Belgium

Telephone

(32-2)205-2142

Data Protection

Manager

dpm_Belgium@kotra.or.kr

Bulgaria

KOTRA
Sofia

Address

Floor 1, Interpred-WTC, 36 Dragan Tsankov Blvd., sofia 1057, Bulgaria

Telephone

(359-2)969-5030

Data Protection

Manager

info@kotra-sofia.org

Croatia

KOTRA
Zagreb

Address

Radnička cesta 52/Ⅷ, 10000, Zagreb, Croatia

Telephone

(385-1)4815-102

Data Protection

Manager

dpm_Croatia@kotra.or.kr

Czech
Republic

KOTRA
Praha

Address

Panorama Business Center, Skretova 12, 120 00, Praha 2, Czech Republic

Telephone

(420)245-005-650

Data Protection

Manager

dpm_Czech@kotra.or.kr

Denmark

KOTRA
Copenhagen

Address

Holbergsgade 14, 3rd Floor DK-1057, Copenhagen, Denmark

Telephone

(45)3312-6658

Data Protection

Manager

info@kotra.dk

Finland

KOTRA
Helsinki

Address

Salomonkatu 17 A, 3 Krs D, 00100 Helsinki, Finland

Telephone

(358-9)682-9490

Data Protection

Manager

helsinki@kotra.or.kr

France

KOTRA
Paris

Address

19 Avenue de l'Opéra, 75001 Paris, France

Telephone

(33-1)5535-8888

Data Protection

Manager

dpm_France@kotra.or.kr

Germany
(Frankfurt)

KOTRA
Frankfurt

Address

MesseTurm 33.OG, Friedrich-Ebert-Anlage 49, 60308 Frankfurt am Main, Germany

Telephone

(49-69)242-9920

Data Protection

Manager

frankfurt@kotra.or.kr

Germany
(Hamburg)

KOTRA
Hamburg

Address

Axel-Springer-Platz 3, Haus B, 20355 Hamburg, Germany

Telephone

(49-40)3405-740

Data Protection

Manager

info@kotra.de

Germany
(München)

KOTRA
München

Address

Tal 12, D-80331 Munich, Germany

Telephone

(49-89)2424-2630

Data Protection

Manager

munich@kotra.or.kr

Greece

KOTRA
Athens

Address

6th Fl., 5 Chatzigianni Mexi Str., GR-11528, Athens, Greece

Telephone

(30-210)654-3623

Data Protection

Manager

dpm_Greece@kotra.or.kr

Hungary

KOTRA
Budapest

Address

H1123, 3F, KOTRA, Alkotas U. 50, Budapest, Hungary

Telephone

(36-1)201-6368

Data Protection

Manager

dpm_Hungary@kotra.or.kr

Italy

KOTRA
Milano

Address

Via Larga 2 - 20122, Milano, Italy

Telephone

(39)02-795813

Data Protection

Manager

kotramil@kotra.it

Poland

KOTRA
Warsaw

Address

KOTRA, 21th Fl. Warsaw Financial Center, Emilii Plater 53, 00-113, Warsaw, Poland

Telephone

(48-22)520-6230

Data Protection

Manager

biuro@kotra.pl

Romania

KOTRA
Bucuresti

Address

Baneasa Business & Technology Park, Soseaua Bucuresti – Ploiesti nr. 42-44, Sector 1, Romania Cladirea A, Aripa A1, Et. 1

Telephone

(40-21)233-2171~3

Data Protection

Manager

kotra@kotra.ro

Slovakia

KOTRA
Bratislava

Address

2nd Floor, Cintorinska 2333/9, 811 08 Bratislava, Slovak Republic

Telephone

(421-2)2129-3450

Data Protection

Manager

dpm_Slovakia@kotra.or.kr

Spain

KOTRA
Madrid

Address

Paseo de la Castellana 95, Torre Europa 95, Planta 9 B, 28046 Madrid, Spain

Telephone

(34-91)556-6241

Data Protection

Manager

dpm_Spain@kotra.or.kr

Sweden

KOTRA
Stockholm

Address

KOTRA, Svardvagen 11C, SE-182 33 Danderyd, Sweden

Telephone

(46-8)30-8090

Data Protection

Manager

stockholm@kotra.nu

The
Netherlands

KOTRA
Amsterdam

Address

WTC Amsterdam, C tower 12F Strawinskylaan 1253, 1077XX Amsterdam, The Netherlands

Telephone

(31-20)673-0555

Data Protection

Manager

info@koreatradecenter.nl

United
Kingdom

KOTRA
London

Address

1st Floor, Brettenham House North, 12-13 Lancaster Place, London WC2E 7EN, United Kingdom

Telephone

(44-20)7520-5300

Data Protection

Manager

kotra@kotra.co.uk

All other
countries
within the
EU

KOTRA
EUROPE
HEAD OFFICE

Address

MesseTurm 33.OG, Friedrich-Ebert-Anlage 49, 60308 Frankfurt am Main, Germany

Telephone

(49-69)242-9920

Data Protection

Officer

dpo@kotra-frankfurt.de

All other
countries
outside the
EU

KOTRA
Headquarters
in Korea

Address

13, Heolleung-ro, Seocho-gu, Seoul, Korea

Telephone

(82)1600-7119

Data Protection

Manager

dpm_HQ@kotra.or.kr

Korean/한글
이노게이트는 개인정보 보호법 제30조에 따라 정보주체의 개인정보를 보호하고 이와 관련한 고충을 신속하고 원활하게 처리할 수 있도록 하기 위하여 다음과 같이 개인정보 처리지침을 수립∙공개합니다.
제1조(개인정보의 처리목적)
  • ① 이노게이트는 다음의 목적을 위하여 개인정보를 처리합니다. 처리하고 있는 개인정보는 다음의 목적 이외의 용도로는 이용되지 않으며, 이용 목적이 변경되는 경우에는 개인정보 보호법 제18조에 따라 별도의 동의를 받는 등 필요한 조치를 이행할 예정입니다.
    • 1. 홈페이지 회원 가입 및 관리
      회원 가입의사 확인, 서비스 제공에 따른 본인 식별∙인증, 회원자격 유지∙관리, 제한적 본인확인제 시행에 따른 본인확인, 서비스 부정이용 방지, 각종 고지∙통지, 고충처리 등을 목적으로 개인정보를 처리합니다.
    • 2. 민원사무 처리
      민원인의 신원 확인, 민원사항 확인, 사실조사를 위한 연락∙통지, 처리결과 통보 등의 목적으로 개인정보를 처리합니다.
  • ② 이노게이트가 개인정보 보호법 제32조에 따라 등록∙공개하는 개인정보파일의 처리목적은 다음과 같습니다.
개인정보파일의 명칭 운영근거 / 처리목적 개인정보파일에 기록되는 개인정보항목 보유기간
이노게이트 홈페이지 참가자 정보 정보주체의 동의 - 성명(한글/영문)
- 거주국
- 소속(기업명)
- 이메일주소
- 연락처
1년
제2조(개인정보의 처리 및 보유기간)
  • ① 이노게이트 홈페이지는 법령에 따른 개인정보 보유∙이용기간 또는 정보주체로부터 개인정보를 수집시에 동의받은 개인정보 보유∙이용기간 내에서 개인정보를 처리∙보유합니다.
  • ② 각각의 개인정보 처리 및 보유 기간은 다음과 같습니다.
    • 1. 홈페이지 회원 가입 및 관리 : 1년 이내 또는 회원탈퇴시 까지 다만, 다음의 사유에 해당하는 경우에는 해당 사유 종료시까지
      1) 관계 법령 위반에 따른 수사∙조사 등이 진행중인 경우에는 해당 수사∙조사 종료시까지
    • 2. 민원사무 처리 : 민원처리 종료 후 3년
제3조(개인정보의 제3자 제공)
  • ① 이노게이트 홈페이지는 정보주체의 개인정보를 제1조(개인정보의 처리 목적)에서 명시한 범위 내에서만 처리하며, 정보주체의 동의, 법률의 특별한 규정 등 개인정보 보호법 제17조에 해당하는 경우에만 개인정보를 제3자에게 제공합니다.
  • ② 이노게이트 홈페이지는 다음과 같이 개인정보를 제3자에게 제공하고 있습니다.
제공받는자 제공 목적 제공하는 항목 보유기간
파트너링/매칭된 상대 기업 파트너링/매칭
(1:1 화상상담)
이름, 연락처, E-Mail 1년
제4조(개인정보 처리의 위탁)
  • ① 이노게이트 홈페이지는 원활한 개인정보 업무처리를 위하여 다음과 같이 개인정보 처리업무를 위탁하고 있습니다.
위탁업무 수탁업체명 전화 근무시간 관리현황 점검결과
홈페이지 유지보수 ㈜마이스허브 02-6464-7222 09:00-18:00 적정
파트너링/매칭 운영
홍보‧프로그램 안내
행사 운영 대행사
(추가 예정)
  • ② 이노게이트 홈페이지는 위탁계약 시 개인정보 보호 관련 법규의 준수, 개인정보에 관한 3자 제공 금지 및 책임부담 등을 명확히 규정하여 계약내용을 보관하고 있으며, 업체 변경 시 공지사항 및 개인정보 처리방침을 통해 고지하겠습니다.
제5조(정보주체와 법정대리인의 권리∙의무 및 행사방법)
  • ① 정보주체는 이노게이트 홈페이지에 대해 언제든지 개인정보 열람, 오류 등이 있을 경우 정정, 삭제, 처리정지 요구 등의 권리를 행사할 수 있습니다.
  • ② 제1항에 따른 권리 행사는 개인정보보호법 시행규칙 별지 제8호 서식에 따라 작성 후 서면, 전자우편, 모사전송(FAX) 등을 통하여 하실 수 있으며, 기관은 이에 대해 지체 없이 조치하겠습니다.
  • ③ 정보주체가 개인정보의 오류 등에 대한 정정 또는 삭제를 요구한 경우에는 정정 또는 삭제를 완료할 때까지 당해 개인정보를 이용하거나 제공하지 않습니다.
  • ④ 제1항에 따른 권리 행사는 정보주체의 법정대리인이나 위임을 받은 자 등 대리인을 통하여 하실 수 있습니다. 이 경우 개인정보보호법시행규칙 별지 제11호 서식에 따른 위임장을 제출하셔야 합니다.
  • ⑤ 개인정보 열람 및 처리정지 요구는 개인정보보호법 제35조 제5항, 제37조 제2항에 의하여 정보주체의 권리가 제한 될 수 있습니다.
  • ⑥ 개인정보의 정정 및 삭제 요구는 다른 법령에서 그 개인정보가 수집 대상으로 명시되어 있는 경우에는 그 삭제를 요구할 수 없습니다.
  • ⑦ 정보주체 권리에 따른 열람의 요구, 정정·삭제의 요구, 처리정지의 요구 시 열람 등 요구를 한 자가 본인이거나 정당한 대리인인지를 확인합니다.
    본인을 확인할 수 있는 신분증(주민등록증, 운전면허증, 여권 등)을 제시
    대리인의 경우 대리인을 확인할 수 있는 신분증과 위임장 제시
    [개인정보보호법 시행규칙 별지 제8호] 개인정보(열람, 정정·삭제, 처리정지) 요구서
    [개인정보보호법 시행규칙 별지 제11호] 위임장
  • ⑧ 개인정보 열람, 정정·삭제, 처리정지 청구는 아래와 같은 절차로 처리됩니다.
제6조(처리하는 개인정보 항목)
이노게이트 홈페이지는 다음의 개인정보 항목을 처리하고 있습니다.
개인정보파일의명칭 항목
이노게이트 홈페이지 참가자 정보 성명(한글/영문),거주국,소속(기업명),이메일주소,연락처 등
*인터넷 서비스 이용과정에서 아래 개인정보 항목이 자동으로 생성되어 수집될 수 있습니다.
- 쿠키정보, IP 주소, 서비스 이용기록, 방문기록 등
제7조(개인정보의 파기)
이노게이트는 원칙적으로 개인정보 처리목적이 달성된 경우에는 지체 없이 해당 개인정보를 파기합니다.
다만, 다른 법률에 따라 보존하여야하는 경우에는 그러하지 않습니다. 파기의 절차, 기한 및 방법은 다음과 같습니다.
  • 가. 파기절차 불필요한 개인정보 및 개인정보파일은 개인정보 보호책임자의 책임 하에 내부방침 절차에 따라 다음과 같이 처리하고 있습니다.
    • - 개인정보의 파기
      보유기간이 경과한 개인정보는 종료일로부터 지체 없이 파기합니다.
    • - 개인정보파일의 파기
      개인정보파일의 처리 목적 달성, 해당 서비스의 폐지, 사업의 종료 등 그 개인정보파일이 불필요하게 되었을 때에는 개인정보의 처리가 불필요한 것으로 인정되는 날로부터 지체 없이 그 개인정보파일을 파기합니다.
  • 나. 파기방법
    • 1) 전자적 형태의 정보는 기록을 재생할 수 없는 기술적 방법을 사용합니다.
    • 2) 종이에 출력된 개인정보는 분쇄기로 분쇄하거나 소각을 통하여 파기합니다.
제8조(개인정보의 안전성 확보조치)
이노게이트 홈페이지는 「개인정보보호법」 제29조에 따라 다음과 같이 안전성 확보에 필요한 기술적, 관리적, 물리적 조치를 하고 있습니다.
  • 1. 개인정보 취급 담당자의 최소화 및 교육
    개인정보를 취급하는 담당자를 지정하고 최소화하여 개인정보를 관리하는 대책을 시행하고 있습니다.
  • 2. 개인정보에 대한 접근 제한
    개인정보를 처리하는 데이터베이스시스템에 대한 접근권한의 부여, 변경, 말소를 통하여 개인정보에 대한 접근통제를 위하여 필요한 조치를 하고 있으며 침입차단시스템을 이용하여 외부로부터의 무단 접근을 통제하고 있습니다.
  • 3. 접속기록의 보관
    개인정보처리시스템에 접속한 기록(웹 로그, 요약정보 등)을 최소 6개월 이상 보관·관리하고 있습니다.
  • 4. 개인정보의 암호화
    이용자의 개인정보는 암호화 되어 저장 및 관리되고 있습니다. 또한 중요한 데이터는 저장 및 전송 시 암호화하여 사용하는 등의 별도 보안기능을 사용하고 있습니다.
  • 5. 보안프로그램 설치 및 주기적 점검·갱신
    해킹이나 컴퓨터 바이러스 등에 의한 개인정보 유출 및 훼손을 막기 위하여 보안프로그램을 설치하고 주기적으로 갱신·점검하고 있습니다.
  • 6. 비인가자에 대한 출입 통제
    개인정보를 보관하고 있는 개인정보시스템의 물리적 보관 장소를 별도로 두고 이에 대해 출입통제 절차를 수립, 운영하고 있습니다.
제9조 개인정보 보호책임자
이노게이트 홈페이지는 개인정보를 보호하고 개인정보와 관련한 불만을 처리하기 위하여 아래와 같이 개인정보 보호책임자 및 분야별 개인정보 보호담당자를 지정하고 있습니다. (개인정보보호법 제31조 제1항에 따른 개인정보 보호책임자)
구분/부서명/성명/연락처
개인정보 보호책임자 무역기반본부 류재원 본부장 전화 : 02-3460-7400
개인정보 보호관리자 글로벌일자리실 박근형 실장 전화 : 02-3460-7380
개인정보 보호담당자 스타트업지원팀 김준호 과장 전화 : 02-3460-7378
제10조 개인정보 열람청구
  • ① 정보주체는 개인정보보호법 제35조에 따른 개인정보의 열람 청구를 아래의 부서에 할 수 있습니다. 이노게이트 홈페이지는 정보주체의 개인정보 열람청구가 신속하게 처리되도록 노력하겠습니다.
    • ▶ 개인정보 열람청구 접수·처리부서
      부서명/담당자 : 스타트업지원팀 / 김준호 과장
      연락처 : 전화 02-3460-7378 / 이메일 jh.kim@kotra.or.kr
  • ② 정보주체는 제1항의 열람청구 접수·처리부서 이외에, 행정안전부의 ‘개인정보보호 종합지원 포털’ 웹사이트(www.privacy.go.kr)를 통하여서도 개인정보 열람청구를 할 수 있습니다.
    • ▶ 행정안전부 개인정보보호 종합지원 포털 → 개인정보 민원 → 개인정보 열람등 요구 (공공아이핀을 통한 실명인증 필요)
제11조 권익침해 구제방법
정보주체는 아래의 기관에 대해 개인정보 침해에 대한 피해구제, 상담 등을 문의할 수 있습니다.
  • ▶ 개인정보 침해신고센터 (한국인터넷진흥원 운영)
    • 소관업무 : 개인정보 침해사실 신고, 상담 신청
    • 홈페이지 : privacy.kisa.or.kr
    • 전화 : (국번없이) 118
    • 주소 : (58324) 전남 나주시 진흥길 9(빛가람동 301-2) 3층 개인정보침해 신고센터
  • ▶ 개인정보 분쟁조정위원회
    • 소관업무 : 개인정보 분쟁조정신청, 집단분쟁조정 (민사적 해결)
    • 홈페이지 : www.kopico.go.kr
    • 전화 : 1833-6972
    • 주소 : (03171) 서울시 종로구 세종대로 209 정부서울청사 4층 개인정보 분쟁조정위원회
  • ▶ 대검찰청 사이버수사과 : 1301 (www.spo.go.kr, cid@spo.go.kr)
  • ▶ 경찰청 사이버안전국 : 182 (cyberbureau.police.go.kr)
또한, 개인정보의 열람, 정정·삭제, 처리정지 등에 대한 정보주체자의 요구에 대하여 공공기 관의 장이 행한 처분 또는 부작위로 인하여 권리 또는 이익을 침해 받은 자는 행정심판법이 정하는 바에 따라 행정심판을 청구할 수 있습니다.
☞ 중앙행정심판위원회(www.simpan.go.kr)의 전화번호 안내 참조
제12조 개인정보를 자동으로 수집하는 장치의 설치·운영 및 그 거부에 관한 사항
이노게이트 홈페이지는 이용자에 대한 정보를 저장하고 수시로 찾아내는 '쿠키(COOKIE, 인터넷 접속정보파일 등 개인정보 자동수집 장치)'를 사용할 수 있습니다. 쿠키란 기관의 웹사이트를 운영하는데 이용되는 서버가 이용자의 브라우저에 보내는 소량의 정보로서 이용자의 컴퓨터의 하드디스크에 저장되기도 합니다. 이용자가 웹사이트에 접속을 하면 기관의 컴퓨터는 이용자의 브라우저에 있는 쿠키의 내용을 읽고, 이용자의 추가정보를 귀하의 컴퓨터에서 찾아 접속에 따른 성명 등의 추가 입력 없이 서비스를 제공할 수 있습니다. 쿠키는 이용자의 컴퓨터는 식별하지만 귀하를 개인적으로 식별하지는 않습니다. 또한, 이용자는 쿠키 설치에 대한 선택권을 가지고 있습니다. 따라서 이용자는 웹 브라우저에서 옵션을 설정함으로써 모든 쿠키를 허용하거나, 쿠키가 저장될 때마다 확인을 거치거나, 모든 쿠키의 저장을 거부할 수도 있습니다. 다만, 쿠키 설치를 거부할 경우 웹 사용이 불편해지며 로그인이 필요한 일부 서비스 이용에 어려움이 있을 수 있습니다.

▶ 설정 방법의 예
  • 1. 인터넷 익스플로러(Internet Explorer)의 경우
    - 웹 브라우저 상단의 도구 메뉴 ▷ 인터넷 옵션 ▷ 개인정보 ▷ 쿠키 차단 수준 설정
  • 2. 크롬(Chrome)의 경우
    - 웹 브라우저 우측의 설정 메뉴 ▷ 화면 하단의 고급 설정 표시 ▷ 개인정보의 콘텐츠 설정 버튼 ▷ 쿠키 차단 수준 설정