Privacy > Secar

Privacy

Privacy Policy

Hans & Buyer Co., Ltd. (hereinafter referred to as the "Company") is the Protection of Communications Secrets Act, the Telecommunications Business Act, the Act on Promotion of Information and Communication Network Utilization and Information Protection, the Personal Information Protection Act, and the government Comply with the personal information protection regulations in the relevant laws and regulations to be followed by information and communication service providers such as the personal information protection guidelines, and We are doing our best to protect the rights and interests of users. The company's personal information processing policy contains the following contents.

1. Items of personal information to be collected and methods of collection

The company collects the following personal information for membership registration, smooth customer consultation, and provision of various services.

When registering as a general member necessary Whether necessary
Collection Item Device ID, mobile phone number( )
Collection purpose member specific
Use term Until membership withdrawal
When applying for service necessary Whether necessary
collection Item Vehicle type, detailed model, option, vehicle number, mileage, color, accident occurrence and history, mission, sphereMethod of purchase, vehicle pros and cons, name and mobile phone number, email address, and address
collection purpose Used to calculate vehicle value for auction/direct transaction/provision service
Use term Until the customer's request for deletion or withdrawal of membership
Dealer member and business/overseas buyer When signing up necessary Whether necessary
collection Item Desired ID, password, name, title, front and back of the photo of the business employee ID card, the validity period of the business employee ID card, trading business experience, association name, affiliated trading company, affiliated trading complex, affiliated trading company phone number, hand phone number, e-mail address, profile picture, greeting, sign-up path, reason for signing up, and the sale line you are using Compulsory issuance of cash receipts, tax invoices or cash receipts according to the business type designation Information necessary for issuing a certificate, dealer profile background photo (optional), trade name, representative, business registration number, corporate registration number, business type, item, location of business, passport number registration, residence card
collection purpose Provided as a reference material before selecting dealers and businesses for general members
Use term Until membership withdrawal
Generated and collected when using the service Information collection Item IP Address, visit date, service use record, bad use record, cookie
collection purpose Service usage statistics, illegal/unauthorized use prevention
2. Purpose and use of personal information

The company uses the collected personal information for the following purposes.
A. Fulfillment of contracts related to service provision and provision of fee settlement contents according to service provision, delivery of goods or sending invoices, identification, purchase and payment of charges, collection of charges, auctions, direct sales, various agency services
B. Member management
Membership service use and limited identity verification, personal identification, prevention of illegal use and unauthorized use of bad members, confirmation of intention to join, limit the number of subscriptions and subscriptions, record retention for dispute settlement, complaint handling, etc. Communication
C. New service development and marketing
Development of new services and provision of customized services, provision of services and advertisements according to statistical characteristics, verification of service effectiveness, provision of event and advertisement information, identification of access frequency, statistics on user's service use, offline sales and sales members and advertisements Evaluation and feedback on dealer members/businesses from the management and operation teams
D. Classification of the purpose of use of collected personal information
Name, ID, password, duplicate registration confirmation information (DI), i-PIN number (when using i-PIN), user unique identifier: used for identification procedures according to membership service use, e-mail address, Contact information (phone number, mobile phone number): Delivering notices, confirming the person's intention, handling complaints, securing a smooth communication path, such as user classification, sending newsletters, Date of birth: Prevention of subscription under the age of 14, date of birth, gender, address: statistical analysis of member's service use, address used for marketing and advertising, Vehicle information (vehicle number, type year, etc.), business address: tax invoice issuance company name, business name, business registration number, business address, business phone number, association name, business fax number, Salesperson ID No.: Dealer member service, mobile app notification service provided, customized service provided according to statistical characteristics Location information (mobile user): Used car sales search vehicle number using the current location, Vehicle registration certificate: Confirmation of the user's vehicle, smooth provision of used vehicle diagnosis service and handling of inquiries
- Name, ID, password, duplicate registration confirmation information (DI): Used for identification procedures according to membership service use
- Device ID, mobile phone number: Used for general member login
- Desired ID, password: Used for dealer/business/overseas buyer member login
- User vehicle information (vehicle number, type year, etc.): Used for price calculation of dealers/business owners/overseas buyer members
- Front and back of the photo of the business employee card, the expiration date of the business employee card, the business experience in the business, the subsidiary of the subsidiary, the subsidiary of the subsidiary, and the telephone number of the subsidiary of the subsidiary.
- E-mail address, contact information (phone number, mobile phone number): Delivering notices and confirming their intentions, handling complaints, securing a smooth communication path, such as user classification, and sending newsletters
- Name, title, profile picture, greeting, dealer/business owner profile page background photo: Dealer/business member profile page exposure
- Sign-up route, sign-up reason: Statistical analysis of member's service sign-up, used for marketing and advertisement
- Information necessary for issuing tax invoices or cash receipts: Issuance of tax invoices and cash receipts
- User, representative, business registration number, corporate registration number, business type, item, place of business, office phone number, fax number, mailing address: purpose for member management

3. Sharing personal information and providing it to a third party

The company uses the user's personal information within the scope notified in "2. Purpose of Collection and Use of Personal Information", and exceeds the scope without prior consent of the user.
We do not use or disclose your personal information to the outside in principle.
However, the following cases are exceptions.
- The user has agreed to the disclosure in advance or when it is very difficult for economic/technical reasons to obtain normal consent with personal information necessary for the fulfillment of contracts related to service provision.
- If it is judged in good faith that it is required by other laws (e.g., if there is a request from the government/investigation agency in accordance with the relevant laws and regulations)
- Provision of user's personal information to a third party for the purpose necessary for service use (separately confirm user's consent) In the case of transferring or succeeding the rights and obligations of the service provider due to all or part of the business transfer, merger or acquisition, etc., the fact shall be notified in detail in advance,
We give you the option of withdrawing consent for collection/use of personal information.
Please note that there may be cases where a third party may collect personal information that the user has entered through online bulletin boards, etc.
The company does not take any responsibility for the personal information that the user himself puts through the bulletin board.

Service name My car sales (auction / direct transaction / agency) service (general member) Used car purchase information service (dealer member/business operator/overseas buyer)
Recipient Affiliated Dealer Member / Operator of Hans & Buyer Co., Ltd. and Buyer / Dealer Member who produced vehicle quotation while being an overseas buyer / Dealer member / Operator whose customer selected a sales request among operators Members who uploaded a vehicle that received a sales request
Personal information items Region and contact information, vehicle type and vehicle number, additional information on the seller's vehicle (vehicle type, detailed model, option, vehicle number, mileage, color, accident occurrence and history, mission, purchase method, vehicle strengths and weaknesses, detailed models and options) Name, affiliated business, region, profile picture, contact information, user, representative, business registration number, corporate registration number, passport number, domestic residence card, business type, item, location of business, office phone number, fax number, mailing address: member Purpose for management
purpose of use Used for the purpose of evaluating the seller's vehicle valuation and responding to sales requests over the phone If you have any questions to the dealer/business member after requesting sales, use it for the purpose of requesting consultation.
Usage period Provided upon consent after customer request for sales, and deleted within 60 days from the end of service use Provided upon consent of the dealer/business/overseas buyer member after receiving the sales request, and deleted within 60 days from the end of service use
4.Retention and use period of personal information

The company retains and uses the user's personal information while the user uses the service as a member, and when the user requests withdrawal from membership, when the purpose of collection and use of personal information is achieved, the retention and use period has ended, or business abolition, etc. In the event of any reason, the information will be destroyed without delay.
However, the following information is retained for the specified period for the following reasons.
The company performs account dormancy (withdrawal) if the user does not log in for more than 12 months.

A. Reasons for information retention according to the company's internal policy
- Record of illegal use
Preservation reason: Prevention of illegal use
Retention period: 5 years
B. Reasons for information retention in accordance with relevant laws
If it is necessary to preserve it in accordance with the provisions of related laws, such as the Commercial Act, the Consumer Protection Act in Electronic Commerce, etc., the company keeps the member information for a certain period specified in the related laws. In this case, the company only uses the information it keeps for the purpose of storage, and the retention period is as follows.
- Records on contract or subscription withdrawal, etc.
Reason for retention: Act on Consumer Protection in Electronic Commerce, etc.
Retention period: 5 years
- Records on payment and supply of goods, etc.
Reason for retention: Act on Consumer Protection in Electronic Commerce, etc.
Period: 5 years
- Records on consumer complaints or dispute settlement
Reason for retention: Act on Consumer Protection in Electronic Commerce, etc.
Retention period: 3 years
- Records on identification
Reason for retention: Act on Promotion of Information and Communication Utilization and Information Protection, etc.
Retention period: 6 months
- Records of visits
Reason for retention: Protection of Communications Secrets Act
Retention period: 3 months

5. Personal information destruction procedure and method

Unless the company has to preserve personal information according to other laws, the purpose of collection and use of the collected user's personal information is achieved, or the user cancels membership.
If requested, it will be destroyed without delay so that it cannot be viewed or used for any future purpose. However, there are exceptions such as “5. Period of retention and use of personal information A and B”.

The company's personal information destruction procedures and methods are as follows.
A. Destruction procedure
The information entered by the user for membership registration, etc., is transferred to a separate DB (separate filing cabinet in the case of paper) after the purpose is achieved, and according to the reasons for information protection in accordance with internal policies and other related laws (see 5. Retention and use period)
It is destroyed after being stored for a certain period.
The personal information will not be used for any purpose other than retention unless required by law.
B. How to destroy
Personal information printed on paper is shredded with a shredder or destroyed by incineration, and personal information stored in the form of electronic files is deleted using a technical method that cannot reproduce the record.

6. Protection of personal information of children under the age of 14
  1. On the site operated by the company, children under the age of 14 cannot sign up for membership.
7. User's rights and how to exercise them

Users can view and delete their registered personal information at any time.
However, in such a case, it may be difficult to use part or all of the service.
Users can request withdrawal of their consent to the provision of personal information at any time.
To cancel the user's subscription (withdrawal of consent), click'Membership Withdrawal' and go through the identity verification process, and then you can directly view, correct or withdraw.
Or, if you contact the person in charge of personal information protection in writing, by phone or e-mail, we will take action without delay.
If a user requests correction of errors in personal information, the personal information will not be used or provided until the correction is completed. In addition, if incorrect personal information has already been provided to a third party, the result of the correction will be notified to the third party without delay so that the correction can be made.
The Company handles personal information canceled or deleted at the request of a user or legal representative as specified in "5. Retention and Use Period of Personal Information"
It is processed so that it cannot be viewed or used for any other purpose.

8. Matters concerning the installation/operation and rejection of automatic personal information collection devices

The company uses'cookies' that store users' information and retrieve them from time to time in order to provide specialized customized services to users. Cookies are a small amount of information sent to the user's computer browser by the server (HTTP) used to operate the website, and may be stored on the hard disk of the user's PC computer.
A. Purpose of use of cookies
It is used to provide optimized information to users by identifying whether users log in to each service and website of the company visited by users.
B. Installation/operation and rejection of cookies
Users have the option of installing cookies. Therefore, the user may allow all cookies by setting options in the web browser, check each time a cookie is saved, or refuse to save all cookies.
To reject the cookie setting, you can either allow all cookies by selecting the option of the web browser used by the user, or go through a confirmation every time a cookie is saved, or You can refuse to store all cookies.

- For Internet Explorer
“Tools” menu at the top of the web browser> “Internet Options” menu> “Personal Information” tab> Personal settings - For Chrome
Select the icon “” at the top right of the web browser> Select “Settings”> Select “Show advanced settings” at the bottom of the screen> “Content Settings” button in the privacy section> Set directly in the Cookies section
However, if you refuse to store cookies, some services of the company that require login may be difficult to use.

9. Technical/administrative protection measures for personal information
  1. The company takes the following technical/administrative measures to ensure safety so that personal information is not lost, stolen, leaked, altered, or damaged in processing user's personal information.
  2. Personal information encryption User's main personal information is encrypted and stored, by encrypting files and transmission data, users' personal information is not leaked even in case of an accident that may occur. Is managed to prevent it.
  3. Countermeasures against hacking The company is doing its best to prevent the leakage or damage of users' personal information by hacking or computer viruses. In preparation for damage to personal information, data are backed up from time to time, and users' personal information or data are prevented from being leaked or damaged by using the latest anti-virus program, so that personal information can be safely transmitted over the network through encrypted communication, etc. I'm doing it. In addition, we use a 24-hour intrusion prevention system to control unauthorized access from outside, and strive to equip all possible technical devices to secure systemic security.
  4. Minimization of handling staff and training The company's personal information-related processing staff is limited to the person in charge, and a separate password is given for this and is regularly updated, and the compliance of the personal information processing policy is always emphasized through frequent training for the person in charge. In addition, prior to the handling of the user's personal information, the internal procedures to prevent information leakage on the user's personal information through a security pledge and to establish relevant circumstances and to monitor compliance and compliance. Are prepared.
  5. Operation of a dedicated personal information protection organization Through the in-house personal information protection organization, etc., the implementation of the personal information processing policy and compliance with the person in charge can be checked, and if a problem is found, it can be corrected and corrected immediately. I'm working hard to make it.
  6. However, fundamentally, the user's own efforts are also important to the security management of personal information. Online service has the right to access personal information only to the person who knows the ID and password, and is also responsible for maintaining and managing the password. You must configure your password with content that only you can know, and avoid the use of passwords that can be easily stolen by others, such as part of your social security number or phone number.
  7. In addition, if you access the company's service from a shared PC and move to another site while logged in, or if the service use is terminated, Be sure to close the browser.
  8. If not, there is a risk that the user's personal information, including ID, password, and social security number, will be easily leaked to others through the browser.
  9. The company is not responsible for any problems caused by the leakage of personal information such as ID, password, resident registration number, etc. due to the user's carelessness or problems on the Internet. Although the Company has fulfilled its obligations to protect personal information, the Company shall not be held liable for damages not attributable to the Company, such as the user's negligence or accidents in areas not managed by the Company.
10. Contact information of the person in charge of personal information protection and the person in charge
  1. The company appoints a person in charge of personal information protection and a person in charge of collecting opinions and handling complaints about personal information
    1. Name :
    2. Part :
    3. E-MAIL:
  2. In addition, if your personal information is infringed and you need to report or consult about it, you can contact the following organizations for help.
    1. Personal Dispute Mediation Committee (http://www.1336.or.kr / 1336)
    2. Information Protection Mark Certification Committee ( http://www.eprivacy.or.kr / 02-580-0533~4 )
    3. Internet Crime Investigation Center, Supreme Prosecutors' Office ( http://icic.sppo.go.kr / 02-3480-3600 )
    4. National Police Agency Cyber Terror Response Center ( http://www.ctrc.go.kr / 02-392-0330 )
11. Responsibility for Linked Sites
  1. We inform you that this "Welcome Buyer Privacy Policy" does not apply to the collection of personal information by websites linked to the site operated by the company.
12. Notification obligation
  1. If there is any addition, deletion or modification of the current privacy policy, the reason for the change and the content will be notified through the'Notice' on the website from at least 7 days before the revision.
  2. The contents of this Privacy Policy may change from time to time, so please check it every time you visit the site.
  3. However, changes that are important to the user's valuable rights or obligations will be notified at least 30 days in advance.
    1. Personal information processing policy version number: Ver1.0
    2. Effective date of personal information handling policy: 2022 month day
    3. Date of notification of changes to the personal information handling policy: 2022 month day