Sugar Lane Baking Studio (hereinafter referred to as the “Company”) protects users’ personal information in accordance with the “Personal Information Protection Act” and has established and operated the “Personal Information Handling Policy” as follows.

Purpose of processing personal information
The purpose of collecting personal information by the company is to provide optimized services, and the collected personal information is not used for purposes other than the specified purpose. We may collect additional information necessary for payment, product delivery, and refund according to service use.

Processing and retention period of personal information
Records on display advertisements
Preservation Basis: Act on Consumer Protection in Electronic Commerce, Etc.
Retention period: 6 months
Records on contract or subscription withdrawal
Preservation Basis: Act on Consumer Protection in Electronic Commerce, Etc.
Retention period: 5 years
Records on payment and supply of goods
Preservation Basis: Act on Consumer Protection in Electronic Commerce, Etc.
Retention period: 5 years
Records on consumer complaints or dispute resolution
Preservation Basis: Act on Consumer Protection in Electronic Commerce, Etc.
Retention period: 3 years
Records on the collection, processing and use of credit information
Preservation Basis: Act on the Use and Protection of Credit Information
Retention period: 3 years
Retention of records related to identity verification
Preservation Basis: Article 44-5 of the Act on Promotion of Information and Communications Network Utilization and Information Protection and Article 29 of the Enforcement Decree
Retention period: 6 months
Retention of records of access
Preservation Basis: Article 15-2 of the Communications Secret Protection Act and Article 41 of the Enforcement Decree
Retention period: 3 months

Provision of Personal Information to Third Parties
In principle, the company processes users’ personal information within the scope specified in Article 1, and provides personal information to third parties only when it falls under Article 17 of the Personal Information Protection Act, such as the consent of the information subject and special provisions of the law. However, exceptions are made in the following cases – When orders and payments are made through the services provided by the company, related information is provided to the product delivery company within the necessary range for smooth communication and delivery between transaction parties, such as consultation. provide.

Consignment of personal information processing
For smooth personal information processing, the company outsources personal information processing as follows.
Trustee: KG Inisys
Details of entrusted work: Electronic payment service
Period of retention and use of personal information: Until membership withdrawal or end of consignment contract

Personal information collection items
The items the company collects include: name, e-mail address and phone number. The method of collection is membership registration information at the time of membership registration.

Measures to secure the stability of personal information
The company is taking the following measures to ensure the safety of personal information.

Administrative measures: establishment and implementation of internal management plans, and regular training for employees and employees
Technical measures: Management of access rights such as password setting of personal information processing system, installation of security programs such as vaccine software, encryption of files in which personal information is stored
Physical measures: Access control of places where personal information is stored and stored

Matters concerning the installation, operation and rejection of the automatic personal information collection device
The company uses “cookies” to store and retrieve usage information from time to time to provide users with individually customized services. A cookie is a small amount of information that the server sends to the user’s computer browser to operate the website and is also stored on the hard disk of the user’s PC computer. The purpose of using cookies is to provide optimized information by identifying the types of visits and use of each service and website that the user has visited, and whether or not to access BoA. You can refuse the installation and operation of cookies. However, if you refuse to store cookies, you may experience difficulties in using customized services.

Privacy Officer
The other personal information protection officers in Article 31 Paragraph 1 of the Personal Information Protection Act are as follows: Hanbit Cho (Position: Representative)

Changes to the Privacy Policy
This privacy policy is effective from May 21, 2022.