'HireVisa' operated by 'Hire Diversity Co., Ltd.' (hereinafter referred to as the 'Company') has established and operates the following privacy policy in order to protect the personal information and rights of users and to promptly handle grievances and complaints related thereto in accordance with Article 30 of the Personal Information Protection Act. Our company is committed to complying with and practicing the responsibilities and obligations stipulated by the relevant laws and regulations.
Effective Date : 2025-05-12
Table of Contents
Article 1 Collection and Use of Personal Information
Article 2 Handling of Sensitive Information
Article 3 Handling of Personal Information of Children Under the Age of 14
Article 4 Refusal to Install and Operate Automatic Personal Information Collection Devices
Article 5 Retention, Utilization Period and Destruction of Personal Information
Article 6 Consignment of Personal Information Processing
Article 7 Provision of Personal Information to Third Parties
Article 8 Overseas Transfer of Personal Information
Article 9 Measures to secure the safety of personal information
Article 10 Rights of users and legal representatives and how to exercise them
Article 11 Remedies for infringement of the rights and interests of the personal information manager and users
Article 12 Changes to the Privacy Policy
Article 1. Information on the collection and use of personal information
1. The Company collects the minimum amount of personal information necessary to use the Service.
2. The Company handles users' personal information as follows.
Collection and Use of Personal Information
•
The Company may collect additional personal information with the consent of the user to provide various services.
Unique identification information
Purpose of collection | Required items | Retention and use period |
Receiving applications for insurance business, reviewing the appropriateness of documents, and accepting insurance business | Passport number | Until withdrawal of membership or termination of additional service provision |
Receiving applications for alien registration cards, reviewing the appropriateness of documents, issuing alien registration cards, and providing buyer visa services | Passport number | Until withdrawal of membership or termination of additional services |
Non-members
Purpose of collection | Required fields | Retention and usage period |
Request for free consultation | Email | Up to 3 months from the date of collection |
To receive and respond to university agreement inquiries | Name of contact person, school name, company email, contact number | Up to 3 months from the date of collection |
Receiving recruitment applications and managing the screening process | Name, phone number, email, resume, portfolio | 3 years from the date of collection or until withdrawal of consent |
To provide referrals to our services | Email | From the date of collection until 3 months |
Marketing
Purpose of collection | Required | Retention and use period |
To send service promotion and marketing information | Email, mobile phone number | Until withdrawal of membership or withdrawal of consent |
Processing of personal information and unique identification information without consent
•
The Company shall notify the information subject of personal information that can be processed without the consent of the information subject in accordance with the method prescribed by the Presidential Decree, such as by e-mail, of the items and the legal basis for processing.
Purpose of Collection | Collected items | Period of Retention and Use | Grounds |
Identification and management of members for the provision of HireVisa services | Name, email, password | Until withdrawal of membership | Performance of contract |
Receiving and responding to member inquiries related to the HireVisa service | Name, email, inquiry | Until membership withdrawal | To fulfill the contract |
Receiving applications for Alien Registration Card, reviewing the adequacy of documents, issuing Alien Registration Card, and providing HireVisa service | Name, email, date of birth, gender, mobile phone number, nationality, address and place of stay in Korea | Until withdrawal | Fulfillment of contract |
Payment and refund for the service | Email, payment information | For as long as required by applicable laws and regulations | To fulfill the contract |
Receiving applications for insurance business, reviewing the appropriateness of documents, and accepting applications for insurance business | Name, mobile phone number | Until withdrawal of membership | Contract fulfillment |
Inquiries regarding extension of period of stay, change of status of residence, and other visa administrative inquiries | Name, email, mobile phone number, inquiry details | Until withdrawal of membership or as long as required by relevant laws and regulations | Contract execution |
Article 2. Handling of Sensitive Information
The Company does not collect sensitive personal information of users.
Article 3. Handling of personal information of children under 14 years of age
The Company does not provide its services to children under the age of 14 and does not collect personal information about them.
Article 4. Installation/Operation of Automatic Personal Information Collection Devices and Processing and Rejection of Behavioral Information
1. The Company uses 'cookies' that store and retrieve usage information from time to time to provide users with individually customized services.
2. Cookies are small amounts of information sent to the user's computer browser by the server used to operate the website and are stored on the hard disk of the user's PC computer.
3. The Company collects and uses behavioral information in the process of using the service to provide customized services and benefits optimized for the information subject, online customized advertisements, etc.
Purpose of use of automatically collected personal information
•
Compliance with relevant laws and regulations
The Company is obligated to keep the user's access record (login) to comply with relevant laws and regulations.
Information on automatic collection of personal information and how to refuse
•
Installation, operation, and rejection of automatic personal information collection devices: You can reject the storage of cookies or collection of behavioral information in the following ways.
•
[Web]
◦
However, changing cookie settings may affect the use of some services, such as automatic login to the website.
▪
Blocking/Allowing Customized Ads via Web Browser
•
(1) Internet Explorer (Internet Explorer 11 for Windows 10)
◦
In Internet Explorer, select the Tools button and then select Internet Options
◦
Select the Privacy tab, select Advanced under Settings, and then select Block or accept cookies
•
(2) Microsoft Edge
◦
In Edge, click the "..." sign in the top right corner, then click Settings.
◦
Click "Privacy, search, and services" on the left side of the Settings page, then select whether and at what level you want to "Do Not Track" in the "Do Not Track" section.
◦
Select "Always use "Strict" tracking protection when searching InPrivate".
◦
In the "Privacy" section below, select whether or not to "Send Do Not Track requests.
•
(3) Chrome browser
◦
In Chrome, click the top right '⋮' sign (chrome customize and control), then click Show settings.
◦
At the bottom of the settings page, click "Show advanced settings" and in the "Privacy" section, click Content settings.
◦
In the Cookies section, check the box for "Block third-party cookies and site data".
•
Other
◦
The Company collects only the minimum behavioral information necessary for online personalized advertising and does not collect sensitive behavioral information that may clearly infringe on the rights, interests, or privacy of individuals, such as ideas, beliefs, family and kinship relationships, education, medical history, and other social activities.
◦
We do not collect behavioral information for the purpose of personalized advertising from children we know are under the age of 14 or from online services whose primary users are children under the age of 14, and we do not provide personalized advertising to children we know are under the age of 14.
◦
Data subjects can contact us below to ask questions about their behavioral data, exercise their right to opt-out, or file a complaint.
◦
Contact: official@hirediversity.club
Article 5. Retention, use period and destruction of personal information
The Company shall destroy the personal information without delay when the personal information becomes unnecessary, such as the expiration of the personal information retention period or the achievement of the purpose of processing.
User Information
(1) The Company shall delete all personal information of users when the purpose of collecting personal information is achieved.
Procedures and methods of destruction of personal information
(1) Destruction Procedure
•
The Company selects the personal information for which the reason for destruction has occurred and destroys the personal information with the approval of the person in charge of personal information protection.
(2) Method of destruction
•
The Company destroys personal information recorded and stored in the form of electronic files so that the records cannot be reproduced, and destroys personal information recorded and stored in paper documents by shredding or incineration.
Mandatory retention periods under applicable laws
The grounds for retention and the items of personal information to be retained are as follows.
•
Items to be preserved: card name, card number, account number, IP, browser, and device information
Purpose of retention | Grounds Act | Retention Period |
Records of contract or subscription withdrawal | Act on Consumer Protection in Electronic Commerce, etc. | 5 years |
Records on payment and supply of goods, etc. | Act on Consumer Protection in Electronic Commerce, etc. | 5 years |
Records on handling consumer complaints or disputes | Act on Consumer Protection in Electronic Commerce, etc. | 3 years |
Records on display/advertising | Act on Consumer Protection in Electronic Commerce, etc. | 6 months |
Books and supporting documents for all transactions prescribed by tax laws | National Taxation Act | 5 years |
Record retention of access | Communications Secrets Protection Act | 3 months |
Article 6. Consignment of personal information processing
The Company consigns some personal information processing tasks to ensure the smooth processing of personal information, and when entering into a consignment contract, the Company supervises whether the consignee safely processes personal information in accordance with relevant laws and regulations. If the contents of the consignment or the consignee are added or changed, we will disclose it without delay through the prior consent notice in accordance with the relevant laws and regulations or through this Privacy Policy.
Personal Information Processing Outsourcing and Trustees
Trustee | Outsourcing |
Amazon Web Service | Use of Cloud Services and IDC |
OpenAI OpCo, LLC | Passport Copy OCR Analysis |
Jotform Inc. | University Agreement Inquiry |
DaouTech Co. | Fax documents to government offices (Enfax) |
EZTask Inc. | Reviewing submissions for appropriateness |
Doodlin Corporation | Provide recruitment application platform (Greeting) |
Whattime Corporation | Provided free consultation application platform for HireVisa visa consultation service (Whattime) |
Channel Corporation | Provides inquiry platform |
CodeStates Corporation | Provides introduction letter for the service |
Toss Payments | Payments and refunds for the HireVisa service |
Section 7. Provision of Personal Information to Third Parties
The Company processes the personal information of the information subject only within the scope specified in 'Article 1 Guidance on the Collection and Use of Personal Information' and provides personal information to third parties only with the prior consent of the user or when special requirements of relevant laws and regulations arise.
Information provided to third parties with prior consent
Recipients | Purpose of Provision | Items to be provided | Retention and use period |
Issuance and management of foreign student visas | Name, e-mail, date of birth, gender, address and place of stay in Korea, Alien Registration Card application documents, passport | Until the end of the foreign student's stay or until the end of the contract with the agreement university/foreign language school |
Information provided to third parties without prior consent in accordance with relevant laws and regulations
(1) When necessary for statistical compilation, academic research or market research and provided in a form that does not identify a specific individual
(2) When requested by national authorities in accordance with relevant laws and regulations
(3) For the purpose of criminal investigations or at the request of the Information and Communication Ethics Committee
(4) When requested in accordance with the procedures set forth in other relevant laws and regulations.
Recipient | Purpose of Provision | Items to be provided | Retention and usage period | Grounds |
National Health Insurance Service | Management of health insurance premium charges under the National Health Insurance Act | Name, cell phone number, passport, alien registration card | Until the period in accordance with the relevant laws and regulations | Statutory obligations (Act: Article 14, Article 69 of the National Health Insurance Act) |
Provision of personal information in case of emergency
•
In the event of an emergency, such as a disaster, infectious disease, an event or accident that poses an imminent danger to life or body, or an imminent loss of property, personal information may be provided to related organizations without the consent of the information subject.Emergency situations are based on the "Guidelines for Handling and Protecting Personal Information in Emergency Situations" jointly announced by relevant government departments.
Article 8. Overseas Transfer of Personal Information
The Company does not provide personal information to other businesses outside of Korea. However, the Company transfers personal information processing to overseas countries as follows to fulfill contracts related to the provision of information and communication services and to improve user convenience.
•
Methods, procedures, and effects of refusing the transfer of personal information: Refer to your rights and how to exercise them
Personal Information Transferred Overseas
Purpose | Item | When and how | Retention period | Entities and countries | Contact |
Passport copy OCR analysis | Passport number | Transmitted over an encrypted network when providing services | Until the end of the contract or until you withdraw your membership, whichever comes first, or until we stop providing the Services | OpenAI OpCo, LLC / United States | privacy@openai.com |
To receive university agreement inquiries | Name of contact person, school name, company email, contact number | Transmitted through an encrypted network when providing the service | Up to 3 months from the date of collection or termination of the contract, whichever comes first | Jotform Inc. / United States | privacy@jotform.com |
International Transfer of Personal Information without Consent
•
The Company shall notify the information subject of personal information that may be transferred overseas without the consent of the information subject in accordance with the method prescribed by the Presidential Decree, such as by e-mail, of the items and the legal basis for processing.
Article 9. Measures to ensure the safety of personal information
The Company is committed to safely managing your personal information so that it is not lost, stolen, leaked, altered or damaged, and takes necessary technical, administrative and physical measures.
Minimization and training of employees handling personal information
We take measures to manage personal information by minimizing the number of employees who handle personal information and conducting periodic personal information protection training.
Establishment and implementation of internal management plan
We have established and implemented an internal management plan to ensure the safe handling of personal information.
Retention of access records and prevention of falsification
We keep and manage records (web logs, summary information, etc.) accessed to the personal information processing system for at least one year to facilitate response in the event of a personal information infringement incident, and use security functions to prevent access records from being falsified, stolen, or lost.
Encryption of personal information
Users' personal information is encrypted and stored and managed.
Technical measures against hacking, etc.
The Company installs security programs and periodically updates and inspects them to prevent leakage and damage of personal information due to hacking or computer viruses. In addition, the Company installs systems in areas with controlled access from the outside and monitors and blocks them technically and physically.
Restriction of access control to personal information
The Company takes measures to control access to personal information by granting, changing, or canceling access rights to the personal information processing system that processes personal information.
Article 10. Rights of users and legal representatives and how to exercise them
The Company has established the following exercise methods to protect the personal information rights of users (or their legal representatives).
User's Rights and Methods of Exercise
(1) View/Modify: HireVisa App > My Page > Settings
(2) Withdrawal of membership: Here Visa App > My Page > Settings > Delete Account
(3) Methods and procedures for refusing to transfer personal information: Request to stop overseas transfer through the Customer Center, My Page Effect of refusal: Inability to use the Alien Registration Card OCR analysis service
(4) In addition, you may request the suspension of processing and deletion of personal information by writing, e-mail, etc.
(5) If you request the correction or deletion of errors in your personal information, the Company will not use or provide the personal information until the correction or deletion is completed.
(6) A request for the correction or deletion of personal information shall not require the deletion of such personal information if the personal information is specified as the subject of collection in other laws and regulations.
(7) The Company shall verify the identity of the person making the request for access, correction, deletion, or suspension of processing in accordance with the user's rights.
Rights of legal representatives and how to exercise them
(1) When a user's rights (access, correction, suspension of processing, deletion) are exercised by a representative, such as a legal representative or a person authorized by the user, a power of attorney in the form of Annex 11 of the Notification on the Method of Processing Personal Information must be submitted.
(2) The Company shall verify whether the person making the request is a legitimate representative when requesting access, correction, deletion, or suspension of processing in accordance with the user's rights.
Article 11. Personal information protection officer and remedies for infringement of user rights and interests
1. The Company shall be responsible for the processing of personal information in general, and shall designate a person in charge of personal information protection as follows to handle user complaints and remedies for damages related to the processing of personal information.
2. Users may request to view their personal information. The Company will endeavor to promptly process the user's request for access to personal information.
Personal Information Protection Officer
Name: SHIM HWAYUNG
Position: CEO
Contact : official@hirediversity.club
Role of the Personal Information Protection Officer
Users may contact the person in charge of personal information protection for all personal information protection-related inquiries, complaints, and damage relief arising from the use of the Service. The Company will respond to and handle your inquiries without delay.
Organizations that can help with infringement of rights and interests
If you need further assistance regarding infringement of your rights and interests, please contact the following organizations.
(1) Personal Information Infringement Report Center (operated by the Korea Internet & Security Agency)
•
Responsibilities: Reporting personal information infringement and requesting consultation
•
Homepage: privacy.kisa.or.kr
•
Phone: (without area code) 118
•
Address: Personal Information Infringement Reporting Center, 3F, 9, Jinheung-gil, Naju-si, Jeollanam-do (301-2, Light Garam-dong), Korea (58324)
(2)Personal Information Dispute Mediation Committee
•
Responsibilities: Personal information dispute mediation application, collective dispute mediation (civil resolution)
•
Homepage: www.kopico.go.kr
•
Telephone : (without area code) 1833-6972
•
Address: 4F, Government Complex, 209 Sejong-daero, Jongno-gu, Seoul, 03171, Korea
(3) Cybercrime Investigation Division of the Supreme Prosecutors' Office
•
Phone : (without area code)1301
•
Homepage: www.spo.go.kr
(4) National Police Agency Cyber Security Bureau
•
Telephone: 182
•
Homepage: ecrm.police.go.kr
In addition, a person whose rights or interests have been infringed due to a disposition or omission made by the head of a public institution in response to a request for access, correction or deletion of personal information or suspension of processing may file an administrative appeal in accordance with the Administrative Appeals Act.
•
Central Administrative Appeals Committee: (www.simpan.go.kr) for phone number information
Article 12. Changes to the Privacy Policy
The Privacy Policy shall be applied from the effective date, and if there are any additions, deletions, or corrections to the Privacy Policy in accordance with relevant laws and policies, we will notify you through the website without delay.