1. Purpose
Cresent (hereinafter referred to as the ‘Company’) establishes and discloses this Privacy Policy (hereinafter referred to as ‘this Policy’) in compliance with the Personal Information Protection Act, the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc. (hereinafter referred to as the ‘Information and Communications Network Act’), and other relevant laws and regulations, to protect the personal information of individuals (hereinafter referred to as ‘Users’ or ‘Data Subjects’) who use the services provided by the Company (hereinafter referred to as ‘Company Services’) and to promptly and smoothly handle related grievances. The Act on Promotion of Information and Communications Network Utilization and Information Protection, etc. (hereinafter referred to as the ‘Information and Communications Network Act’), and other relevant laws and regulations. The Company hereby establishes and discloses the following Personal Information Processing Policy (hereinafter referred to as the ‘Policy’).
2. Principles for Processing Personal Information
The company adheres to the following principles in accordance with personal information laws and regulations, and this policy.
Principle of Purpose Specificity and Minimum Collection: Personal information is collected only to the minimum extent necessary for the purposes specified at the time of collection. Principle of Prohibition of Use Beyond Specified Purposes: Collected personal information is not used for any purpose other than those previously notified. Principle of Accuracy and Timeliness: Personal information is managed in an accurate and up-to-date state. Principle of Ensuring Security: Necessary technical and administrative measures are implemented to ensure the secure processing of personal information. Principle of Disclosure: Matters concerning personal information processing, including this policy, are disclosed in a manner easily understandable to users. Principle of Anonymization/Pseudonymization and Minimization of Privacy Intrusion: We consider anonymization or pseudonymization when necessary to achieve the purpose. Principle of Accountability: The company assumes responsibility for implementing the above principles.
The company processes users' personal information lawfully and fairly in accordance with the above principles. Please note that personal information may be provided without the data subject's consent when required by law.
3. Public Disclosure of This Policy
The Company shall post this policy on the ‘Privacy Policy’ page within the Company's website and services so that users may review it at any time. This policy shall be displayed using font size, color, and other means to ensure users can easily review it.
4. Amendment of This Policy
This policy may be amended in accordance with changes to personal information-related laws, regulations, guidelines, or notices, or changes to the Company's policies or service content. When amending this policy, the Company shall notify users by one or more of the following methods:
a. Announcement on the Company's homepage, main page, or separate pop-up b. Notification to users via email, written notice, facsimile transmission (fax), or similar methods
The notice under Paragraph 2 shall be provided at least 7 days before the effective date. If the change significantly affects the rights of users, notice shall be provided at least 30 days prior.
5. Information for Membership Registration
The Company collects the following information for membership registration and account management of its services.
Required Information: Email address, password (stored encrypted), name, nickname, date of birth, (optional) mobile phone number
※ Required items for service operation are specified on the sign-up screen. Failure to provide required items may restrict membership registration.