NHN DoctorTour Co., Ltd. (hereinafter referred to as the "Company") is doing its best to protect the personal information of its users and is doing its best to protect the personal information provided to the Company online while using the Company's services. Accordingly, the Company complies with the personal information protection regulations and guidelines under the Act on Promotion of Information and Communications Network Utilization and Information Protection, etc., the Personal Information Protection Act, and related laws. Through the Privacy Policy, the Company informs users of the purpose and method of using the personal information provided by users and what measures are being taken to protect personal information.
The Company discloses the Privacy Policy on the first screen of the website of the hotel operated by the Company (Anteroom Seoul, www.anteroom-seoul.com hereinafter referred to as the 'Website') so that users can easily view it at all times.
The Company's personal information protection policy may be changed from time to time due to changes in government laws and guidelines or changes in the company's internal policies, and the Company has established necessary procedures for continuous improvement of the privacy policy. In addition, when the personal information protection policy is revised, the Company immediately posts the changes on the website and assigns a revision date so that users can easily recognize the revised matters. Users are advised to check from time to time when visiting the site.
The company's website can be used at any time without user registration. The Company collects personal information of users in order to provide them with customized services and improved quality services. The Company does not disclose the user's personal information without the user's prior consent.
Article 2 Items of Personal Information to be Processed and Method of Collection
When developing new services or expanding contents, the Company may more efficiently prioritize services to be developed based on the personal information provided by existing users to the Company, and provide reasonable selection of contents that users need.
The scope of personal information collected and used by the Company is as follows.
| classification | entry | purpose | period | |
|---|---|---|---|---|
| Membership | essential | Name (Korean), e-mail, contact information (mobile phone number) | Identity verification and provision of member services | Until withdrawal of membership |
| choice | Gender, date of birth | |||
| Room Reservation & Admission | essential | Name (Korean and English), e-mail, region (based on passport), reservation information (length of stay, room type, number of people), customer preference, passport number (foreigner/Korean), gender, contact information (mobile phone number, phone number), payment information (card type, card number, expiration date, owner's name), license plate number | Identity verification, booking and customer service | 5 years after stay |
| choice | ||||
| Online Room Reservation | essential | Name (Korean and English), e-mail, contact information (mobile phone number, phone number), payment information (card type, card number, expiration date), guest information (name, e-mail, mobile phone number) | Hotel Reservations & Customer Service | • Delete after 30 days from the date of termination of use to handle civil complaints such as consultation • Delete after 30 days to handle complaints such as consultation when requesting withdrawal of membership (However, if necessary to comply with legal obligations, until the period prescribed by law) |
| choice | ||||
| Facility rental | essential | Name, contact information, social security number | Issuance of tax invoice | Immediate destruction after the purpose is achieved |
| choice | ||||
| Receiving customer inquiries | essential | Name (Korean/English), e-mail, contact information (mobile phone number), credit card number | Providing guidance and services for inquiries | 3 years from the date of consent to collection and use |
| choice | ||||
| Minors Accommodation | essential | Minors: Name, contact information, gender, family relation certificate Description Guardians: Accommodation agreement, name, contact information, address, copy of ID, family relation certificate | Confirmation of guardian (legal representative) | 3 years from the date of consent to collection and use |
| choice |
The Company does not collect personal information from children under the age of 14 in order to comply with the Juvenile Protection Act for members who can stay overnight, and obtains the consent of the legal representative when collecting information on minors under the age of 14 related to other hotel businesses.
Article 4 Processing and Retention Period of Personal Information
The Company collects and processes personal information within the scope specified in Article 2 Items and Methods of Collecting Personal Information, and destroys the collected personal information after the purpose of using personal information is achieved.
Notwithstanding the principle of immediate destruction when the above purpose of collecting personal information is achieved, if it is necessary to retain it for a certain period of time due to the handling of disputes related to transactions in accordance with relevant laws and internal regulations, it will be retained for a certain period of time as follows.
- Records on contract or withdrawal of subscription: 5 years
- Records on payment and supply of goods: 5 years
- Records on consumer complaints or dispute resolution: 3 years
• The Company retains personal information until the purpose of collection or provision is achieved, and destroys personal information without delay when the purpose is achieved or the agreed period ends. The specific time of destruction is as follows.
• Destruction method
The Company uses users' personal information within the scope notified in 'Items of Personal Information to be Processed and Collection Methods' in Article 2 above, and does not use the user's personal information beyond the scope without the user's prior consent or disclose the user's personal information to the outside in principle. However, exceptions are made in the following cases.
• In the event of a complete succession or transfer of the rights and obligations of the service provider, such as a sale, merger or acquisition, the Company shall notify the customer in detail of the justifiable reasons and procedures in advance, and give the customer the option to withdraw consent to the customer's personal information.
• In the case of providing or sharing other personal information, the Company shall notify the customer in advance of the target of the partnership, the items and reasons for the personal information to be provided, and the deadline for the protection and management of the information, and obtain their consent, and if the customer does not agree, the information will not be provided or shared with the partner. In addition, if the partnership is changed or terminated, the same procedure will be followed to notify the customer or obtain their consent
• When we believe in good faith that it is required by law (e.g., when requested by a government agency in accordance with lawful process under applicable law, etc.)
• When the provision of personal information is required by laws or administrative actions (e.g., when requested by a government agency in accordance with the due process of law)
• The Company shall provide the following information to the parties to the transaction with the consent of the customer to the extent necessary for the smooth provision of services.
The Company may entrust the processing of users' personal information to an external professional company in order to improve the service.
In the event that we entrust the processing of personal information, we will notify users of this fact in advance. In addition, through consignment contracts, etc., the service provider's strict compliance with instructions related to the protection of personal information, confidentiality of personal information, prohibition of provision of personal information to third parties, and liability in the event of an accident are clearly stipulated, and the contents of the contract will be kept in writing or electronically.
| classification | purpose | period |
|---|---|---|
| SANHWA Information Technology | Operation and management of hotel reservation service | Until withdrawal of membership |
| SK Broadband | Web Fax Service | Up to 1 year after receipt |
The Company takes the following technical, administrative, and physical measures to ensure the safety of customers' personal information so that it is not lost, stolen, leaked, altered, or damaged in the processing of customers' personal information.
staffMinimize the designation of personal information handlers and conduct regular training.
planEstablishment and implementation of internal management plan for the safe processing of personal information.
In order to protect customers' personal information and to be in charge of collecting opinions and handling complaints regarding personal information, the Company has designated the relevant department and the person in charge of personal information protection as follows.
| category | Chief Privacy Officer | Personal Information Protection Officer | Grievance Handling Department |
|---|---|---|---|
| Statement | Byungsoo Cho | Park Geun-hyung | Lee Junha |
| Belong | Data Security Team | Data Security Team | Operations Division |
| Position | CISO/CPO | Teammates | manager |
| telephone | 02-542-2300 | ||
| info@anteroom.co.kr | |||
Go to fixed image information processing equipment operation and processing guidelines
Article 13 Remedies for Infringement of Rights and Interests of Information SubjectsUsers may apply for dispute resolution or consultation to the Personal Information Dispute Mediation Committee and the Personal Information Infringement Report Center of the Korea Internet & Security Agency in order to receive relief from personal information infringement. For other personal information infringement reports and consultations, please contact the following organizations.
If there is any addition, deletion, or modification of the contents due to the enactment or revision of laws, changes in government policies, changes in the company's internal policies, or changes in security technology, we will notify the contents of the changes through the website without delay
NHN DoctorTour Co., Ltd. (hereinafter referred to as the "Company") informs you of the purpose and method of using and managing the image information processed by the Company through the Image Information Processing Equipment Operation and Management Policy.
Basis for installation of image information processing equipment and purpose of installationIn accordance with Article 25(1) of the Personal Information Protection Act, the Company installs and operates visual information processing equipment for the following purposes.
| category | Number of installations | Installation location and shooting range |
|---|---|---|
| Anteroom Hotel | 66 cars | Main facilities in the building, such as parking lot and floor corridor |
In order to protect your video information and handle complaints related to personal image information, we have the following person in charge of personal image information management and access authority.
| category | name | position | Belong | contact |
|---|---|---|---|---|
| Administrative Officer | Jaeyu Han | exaggeration | Facilities Team | 02-542-2300 |
| Recording Time | Retention Period | Storage location |
|---|---|---|
| 24 hours | 30 days from the date of filming | Facilities Team Office |
| category | Consignee | Representative |
|---|---|---|
| elevator | OTIS Elevator | Han Sung-il |
If the information subject wishes to view, confirm the existence or delete the personal image information, he or she may request the person in charge of personal image information management at any time. However, it is limited to the personal image information that the information subject has photographed and the personal image information that is clearly necessary for the benefit of the information subject's life, body, or property. You can check it by contacting the person in charge of management in advance (Paragraph 3) and visiting the department in charge.
The video information processed by the company is safely managed through encryption measures. In addition, the Company differentially grants access rights to personal information as an administrative measure for the protection of personal image information, and records and manages the date and time of creation of personal image information, the purpose of viewing, the reader, and the date and time of viewing in order to prevent forgery and falsification of personal image information. In addition, a locking device is installed for the safe physical storage of personal image information.
This Video Information Processing Equipment Operation and Management Policy was established on September 3, 2015, and if there is any addition, deletion, or modification of the contents due to changes in laws and regulations or security technology, the reason for the change and the contents will be notified on the Company's website at least 7 days before the implementation.
Announcement Date: November 29, 2024 / Effective Date: December 06, 2024