In accordance with the Personal Information Protection Act, to the home site of Contrix Lab Inc. (“http://www.contrixlab.com/wp2018”) and to the service site of 3DCRAFTS (“http://www.3dcrafts.net”), the following policies are in place to protect the rights and interests of users and personal information related.

The company will notify you through the website announcement (or individual notice) when revising the personal information processing policy.

This policy will be effective on February 05, 2015.

1. Purpose of Collection and Use of Personal Information

① The Company handles personal information for the following purposes. The processed personal information will not be used for purposes other than the following purposes. If the purpose of use is changed, we will implement necessary measures such as receiving consent in accordance with Article 18 of the Personal Information Protection Act.

A. 3DCrafts Solution, 3D Scanning: Process personal information for the purpose of sending detailed quotes for 3D scans.
B.  Affiliate / Inquiries: We will process your personal information for business partnership and product inquiries and customer consultation.

② Company collects personal information in the following way.

– Homepage, written form, email, affiliation / inquiry

2. Purposes of collection and use of personal information

① The Company shall process and retain personal information within the period of using and maintaining the personal information that is agreed upon when the personal information is collected from the period of using or using the personal information according to the statute.

② Each personal information processing and retention period is as follows.

A. Free Quote: 3DCrafts Solutions, 3D Scanning processes personal information for the purpose of sending detailed quotes.
B. Affiliate / Inquiries: We process personal information for business partnership and service inquiries and customer consultation.
C. All. Retention period of personal information: 2 years

3. Matters concerning third party provision of personal information

① In principle, the Company processes personal information of the user within the scope specified in Article 1 (Purpose of Personal Information), and does not process it beyond the original scope without providing prior consent of the user or provide it to a third party. However, personal information can be processed in the following cases.

– If the user agrees to provide and disclose third parties in advance
– When it is required to be provided by laws and ordinances.
– If it is extremely difficult to obtain normal consent for economic / technical reasons as personal information necessary for the implementation of contracts for the provision of services
– If you use it by processing it into a state that can not be specified to identify an individual
② When providing personal information to a third party, we will inform you about the person to be provided, the purpose of use, the personal information item to be provided, and the period of possession and use through the personal information handling policy.

③ However, if the user does not consent to the disclosure and disclosure of the third party, it may be disadvantageous to limit the service provided by the company or to obtain information (business inquiry).

4. Commitment to personal information processing

The company does not entrust personal information. When it consigns personal information, it notices at least 15 days before announcement and amends personal information policy.

5. Rights, duties and methods of events

① The information subject can exercise the right of privacy protection at any time with respect to the company.

A. Personal information request
B. request correction, if there is an error.
C. Deletion request
D. Request to stop processing
② The exercise of the rights pursuant to Paragraph (1) may be made through written, e-mail, fax (FAX), etc. in accordance with the Form 8 of the Enforcement Regulations of the Personal Information Protection Act.

③ When a subject requests correction or deletion of personal information, the company will not use or provide the personal information until the correction or deletion is completed.

(4) The exercise of rights under Paragraph (1) may be made through a legal representative of the information entity or an agent such as a person who has been delegated. In this case, you must submit a power of attorney according to Form 11 of the Enforcement Regulations of the Personal Information Protection Act.

6. Creating an item of personal information to process

① The company processes the following personal information items.

A 3D Scanning Free Quote

– Required items: Name, contact information (IP address, cookie, service history, access log)
– Optional: Email
B. Contact Us

– Required items: Name, Contact
– Optional: Email

7. Destruction of personal information

① In principle, if the purpose of processing personal information is accomplished, the company will destroy the personal information without delay after the retention period of two years. The procedures, deadlines and methods of destruction are as follows.

– Destruction procedure

The information entered by the user is transferred to a separate DB after completion of the purpose (separate documents in the case of paper) and is stored or temporarily destroyed after a certain period of time according to internal policies and other related laws. At this time, the personal information transferred to the DB is not used for other purposes unless it is under the law.

– Destruction period

In the case where the personal information of the user has elapsed, within 5 days from the end of the period of holding the personal information, if the personal information such as accomplishing the purpose of processing personal information, abolishing the service, We will destroy the personal information within 5 days from the day when it is recognized that the processing of the personal information is unnecessary.

– Destruction method

Information in the form of electronic files is a technical method that can not reproduce records. Personal information printed on paper is crushed by crusher or destroyed by incineration.

8. Matters concerning installation / operation and refusal of automatic collection of personal information

① In principle, if the purpose of processing personal information is accomplished, the company will destroy the personal information without delay after the retention period of two years. The procedures, deadlines and methods of destruction are as follows.

A. What is a cookie?

– The company uses “cookies” to store and retrieve information from users in order to provide personalized and customized services.
– A cookie is a very small text file sent to the user’s browser by the server used to run the website and stored on the user’s computer’s hard disk. When a user visits a website, the website server is used to maintain the preferences of the user by reading the contents of the cookies stored on the user’s hard disk and provide customized services.
– Cookies do not automatically collect information that personally identifies you, and you can refuse or delete these cookies at any time.

B. The purpose of the company’s use of cookies

– It is used to provide optimized and customized information including advertisement to users by grasping the types of visits and usage of each service and websites visited by users, popular queries, security access, and size of users.

All. Installing / operating cookies

– The user has the option of installing cookies. Therefore, you can allow all cookies by setting options in your web browser, check each time a cookie is saved, or refuse to save all cookies.
– However, if you refuse to store cookies, some services may be difficult to use.
– How to specify whether to allow installation of cookies (for Internet Explorer):
① Select [Internet Options] from the [Tools] menu.
② Click [Privacy tab][Privacy level].

9. Measures to ensure the safety of personal information

① The Company, pursuant to Article 29 of the Personal Information Protection Act, has the following technical, administrative and physical measures to ensure safety.

A. Minimization and training of personal information handling staff

Employees who deal with personal information are designated and limited to the person in charge, and measures are taken to minimize personal information.

B. Perform regular self-audits

We conduct our own audits regularly (quarterly) to ensure the safety of handling personal information.

C. Establishment and enforcement of internal management plan

We have established and implemented an internal management plan for the safe handling of personal information.

D. Encryption of personal information

The personal information of the user is encrypted and stored and managed so that only the user can know it, and the important data is using the separate security function such as encrypting the file and transmission data or using the file lock function.

E.. Technical measures against hacking

The Company installs a security program to prevent leakage and damage of personal information caused by hacking or computer viruses, periodically updates and inspects, installs the system in an area controlled from outside and technically and physically monitors and blocks them.

F. Restrict access to personal information

We take necessary measures to control access to personal information through granting, modifying, and deleting access rights to the database system that processes personal information. We also control unauthorized access from outside by using an intrusion prevention system.

G. Keep your connection history and prevent forgery

We maintain and manage the records of access to the personal information processing system for at least six months and use the security function to prevent forgery, theft or loss of access records.

H. Use locks for document security

We keep documents with personal information and auxiliary storage media in safe place with lock.

I. Access control to unauthorized persons

We have set up a separate physical storage area for personal information and set up access control procedures.

10. Personal Information Protection Officer

① The Company is responsible for the handling of personal information, and has designated the person responsible for the protection of personal information as follows for the complaint handling and damage relief of information subject related to personal information processing.

Privacy Officer

– Department name: Internet business department
– Contact person: Young Jin Kim
– Contact: +82 505-365-1357, totozul@contrixlab.com
Privacy Officer

– Department name: Internet business department
– Contact person: Young Jin Kim
– Contact:+82 505-365-1357, totozul@contrixlab.com

② The information subject can inquire about personal information protection related complaints, complaints handling, damage relief, etc. that occurred while using the company’s service (or business) to the person in charge of personal information protection and the department in charge. The company will answer and handle inquiries of the information subject without delay.

11. Personal Information Request

① The information subject can request the reading of personal information pursuant to Article 35 of the Personal Information Protection Act to the following department. The Company will endeavor to promptly process inquiries regarding personal information of information subjects.

Request for personal information inquiry, processing department

– Department name: Business headquarters
– Contact information: +82 505-365-1357

12. Rights Infringement Remedies

The information subject can inquire about damage prevention, consultation, etc. about the infringement of personal information to the following organizations. Please contact us if you are not satisfied with the company’s own personal information complaints, the results of the damage relief, or need further assistance.

Personal Information Infringement Notification Center (operated by Korea Internet & Security Agency)

– Provisional affairs: Complaints of personal information infringement, consultation
– Homepage: privacy.kisa.or.kr
– Telephone: (without area code) 118
– Address: (138-950) Seongpa-gu, Songpa-gu, Seoul 135 Korea Internet & Security Agency Personal Information Infringement Complaints Center
Personal Information Dispute Resolution Committee (Korea Internet & Security Agency)

– Jurisdiction: Personal information dispute settlement application, collective dispute settlement (civil settlement)
– Homepage: privacy.kisa.or.kr
– Telephone: (without area code) 118
– Address: (138-950) Seongpa-gu, Songpa-gu, Seoul 135 Korea Internet & Security Agency Personal Information Infringement Complaints Center
Supreme Prosecutors’ Office Cyber ​​Crime Division: 02-3480-3573 (www.spo.go.kr)

Cyber ​​Crime Division, National Police Agency: 1566-0112 (www.netan.go.kr)

13. Duty of Notification

This personal information processing policy will be effective from the effective date. If there is any addition, deletion or correction of the change according to the laws and policies, it will be announced from 7 days before the change.

A. Privacy Policy Version Number: v1.1
B. Privacy Policy Enforcement Date: 2015-02-05
C. Privacy Policy Last updated: 2017-01-25

Unauthorized collection of e-mail information

Article 50-2 of the Act on Promotion of Information Network Usage and Information Protection, etc. (Prohibition of Unauthorized Collection of E-mail Addresses, etc.)

① Anyone should not collect e-mail addresses using a program or other technical device that automatically collects e-mail addresses from the Internet homepage without the prior consent of the operator or administrator of the Internet home page.
(2) No person shall sell or distribute e-mail addresses collected in violation of Paragraph (1).
③ Anyone should not use this information for the purpose of knowing that it is an e-mail address prohibited from collection, sale and distribution pursuant to Paragraphs 1 and 2 above.

Article 74 (Penalty)

① A person who falls under the following item shall be punished by imprisonment for not more than one year or a fine of not more than 10 million won.

5. Any person who collects, sells, distributes or uses information to send e-mail addresses in violation of Article 50-2.