FIMSA 2021 8th FIMSA Congress

PRIVACY

<‘FIMSA 2021’> (‘fimsa2021.org’ hereinafter ‘FIMSA 2021′) can protect users’ personal information and rights and interests in accordance with the Personal Information Protection Act and smoothly handle user complaints related to personal information. So, we have the following policy.

<‘FIMSA 2021’>(‘FIMSA 2021’) will notify the company through website notice (or individual notice) when revising the privacy policy.

This policy will take effect on July 1, 2021.

1. Purpose of processing personal information <‘FIMSA 2021’> (‘fimsa2021.org’hereinafter referred to as FIMSA 2021’) processes personal information for the following purposes. The processed personal information is not used for purposes other than the following purposes, and prior consent will be sought when the purpose of use is changed.

a. Homepage membership registration and management

Personal information is processed for the purpose of confirming the intention to sign up as a member, identification and authentication according to the provision of membership services, maintenance and management of membership qualifications, various notices and notifications, and handling of grievances.

b. Civil affairs processing

Personal information is processed for the purpose of contacting and notifying for fact-finding and notification of processing results.

All. Provision of goods or services

Personal information is processed for the purpose of payment and settlement.

a. Use in marketing and advertising

Personal information is processed for the purpose of providing event and advertising information, providing opportunities for participation, identifying access frequencies, or statistics on members’ service use.

2. Personal information file status

1.Personal information file name: FIMSA 2021-member information

-Personal information items: Non-personal information items: ID, password, name (Korean, English, Chinese characters), date of birth, gender, mobile phone, e-mail, year of membership, affiliation, department, position, member classification, doctor’s license number, work address , Work place phone number, work place fax, homepage, academic information, master’s information, doctoral information, research field, education field, photo, access IP information, cookie, service use record, access log

-Collection method: Homepage

-Basis for retention: Society member management, payment of annual fees, guidance for various events, notification of processing results, etc.

-Retention period: When the site operation ends

-Related laws: Records on member complaints or dispute settlement: 3 years, Records on payment and supply of goods: 5 years

3. Processing and retention period of personal information

① FIMSA 2021 processes and retains personal information within the period of retention and use of personal information in accordance with the laws or the period of use and retention of personal information agreed upon when collecting personal information from the data subject.

② Each personal information processing and retention period is as follows.

1. Homepage membership registration and management

Personal information related to’ homepage membership registration and management’ is retained and used for the above purpose of use from the date of consent for collection and use to’ semi-permanent’.

-Retention basis: for member management

-Relevant laws: Records on consumer complaints or dispute settlement: 3 years

2) Records on payment and supply of goods: 5 years

-Exception reason: When a member requests deletion or withdrawal

4. Matters concerning the provision of personal information to a third party

① (‘www.fimsa2021.org’ hereinafter ‘FIMSA 2021’) shall only store personal information in cases falling under Articles 17 and 18 of the Personal Information Protection Act, such as the consent of the information subject and special provisions of the law. Provided to third parties.

② (‘www.fimsa2021.org’) provides personal information to third parties as follows.

1. Fluid6 Design

-Person who receives personal information: Fluid6 Design

-Purpose of using personal information of the recipient: Online member information management

-Recipient’s personal information usage items: ID, password, name (Korean, English, and Chinese characters), date of birth, gender, mobile phone, e-mail, year of membership, affiliation, department, position, member classification, doctor’s license number, work address, workplace phone number, workplace fax, homepage, academic information, master’s information, doctoral information, research field, education field, photo, access IP information, cookie, service use record, access log

-Retention of the recipient: Period of use: At the end of site operation

5. Consignment of personal information processing

① FIMSA 2021 (‘Academic Society’) entrusts the following personal information processing tasks for smooth personal information processing.

1. Homepage management of FIMSA 2021

-Consignee (Consignee): Fluid6 Design

-Contents of consigned work: Identification and delivery of notices according to the use of membership service

-Consignment period: When the site operation ends

② FIMSA 2021 (‘fimsa2021.org’ hereinafter ‘the Society’) prohibits the processing of personal information other than the purpose of performing consignment in accordance with Article 25 of the Personal Information Protection Act when consigning contracts, technical and administrative protection measures, restrictions on re-consignment, and The management, supervision, and liability for damages are specified in documents such as contracts and supervised whether the trustee handles personal information safely.

③ If the contents of the consignment business or the consignee change, we will disclose it through this personal information processing policy without delay.

6. Rights and obligations of the information subject and how to exercise the user as a personal information subject, the user can exercise the following rights.

① The data subject may exercise the following personal information protection rights at any time for FIMSA 2021 (“fimsa2021.org” or “FIMSA 2021”).

1. Request to view personal information

2. Request for correction if there is an error

3. Request for deletion

4. Request to stop processing

② The exercise of rights pursuant to Paragraph 1 shall be done in writing, e-mail, fax, etc. in accordance with the form of Attachment No. 8 of the Enforcement Regulations of the Personal Information Protection Act for FIMSA 2021 (‘fimsa2021.org’ or ‘FIMSA 2021’) (‘fimsa2021.org’ hereinafter ‘the Society’) will take action without delay.

③ If the data subject requests correction or deletion of errors in personal information, (‘fimsa2021.org’ hereinafter ‘the Society’) will use the personal information until the correction or deletion is completed. Or do not provide.

④ The exercise of rights pursuant to Paragraph 1 can be done through an agent such as the legal representative of the information subject or a person who has been delegated. In this case, you must submit a power of attorney in accordance with the form of Attachment No. 11 of the Enforcement Regulations of the Personal Information Protection Act.

7. Create items of personal information to be processed

① FIMSA 2021 (‘fimsa2021.org’ or ‘the society’) is processing the following personal information items.

1. Homepage membership registration and management

-Required items: ID, password, name (Korean, English, Chinese characters), date of birth, gender, mobile phone, e-mail, year of membership, affiliation, department, position, membership classification, doctor’s license number, work address, workplace phone number, workplace Fax, homepage, academic information, master’s information, doctoral information, research field, education field, photo, access IP information, cookie, service use record, access log

-Optional: Photo

8. Destruction of personal information FIMSA 2021 (‘Academic Society’) in principle destroys the personal information without delay when the purpose of processing personal information is achieved. The procedure, deadline, and method of destruction are as follows.

-Destruction Procedure The information entered by the user is transferred to a separate DB (separate document in the case of paper) after the purpose is achieved, and is destroyed after a certain period of storage or immediately in accordance with internal policies and other related laws. At this time, the personal information transferred to the DB will not be used for other purposes unless it is required by law.

-If the personal information of the user who has been destroyed has elapsed, within 5 days from the end of the retention period, the personal information has become unnecessary, such as achieving the purpose of processing personal information, abolishing the service, and terminating the business. When it is deemed unnecessary to process personal information, the personal information will be destroyed within 5 days.

-Destruction method Information in the form of electronic files uses a technical method that cannot reproduce the record. Personal information printed on paper is destroyed by shredding or incineration.

9. Measures to ensure the safety of personal information FIMSA 2021 (‘Academic Society’) is taking technical, administrative and physical measures necessary to ensure safety as follows in accordance with Article 29 of the Personal Information Protection Act.

1. Minimization and training of personnel handling personal information

We are implementing measures to manage personal information by designating employees who handle personal information and minimizing them by limiting them to the person in charge.

2. Conduct regular self-audit

We conduct our own audits on a regular basis (quarterly) to ensure the safety of handling personal information.

3. Establishment and implementation of an internal management plan

We have established and implemented an internal management plan for the safe processing of personal information.

4. Encryption of personal information

The user’s personal information is encrypted and stored and managed, so only the person can know it, and for important data, separate security functions such as encrypting files and transmission data or using a file lock function are used.

5. Technical measures against hacking, etc.

FIMSA 2021 (‘Academic Society’) installs a security program to prevent leakage and damage of personal information due to hacking or computer viruses, periodically updates and checks, installs a system in an area where access is controlled from outside Monitoring and blocking.

6. Restricted access to personal information

We take necessary measures to control access to personal information by granting, changing, and canceling access rights to the database system that processes personal information, and we control unauthorized access from outside by using an intrusion prevention system.

7. Storage of access records and prevention of forgery

We store and manage records of access to the personal information processing system for at least 6 months, and use security functions to prevent forgery, theft, and loss of access records.

10. Personal information protection officer preparation

① FIMSA 2021 (‘fimsa2021.org’ hereinafter ‘FIMSA 2021’) is responsible for the handling of personal information, and for the handling of complaints and damage relief of the data subject related to personal information processing, personal information is as follows. A person in charge of protection is designated.

▶ Personal Information Protection Officer

Name: Sojung Kim

Position: Director

Contact: 051-742-8407, [email protected]

※ It is connected to the department in charge of personal information protection.

▶ Department in charge of personal information protection

Name: Sojung Kim

Position: Director

Contact: 051-742-8407, [email protected]

② The information subject shall contact the person in charge of personal information protection and the department in charge of all personal information protection related inquiries, complaints, damage relief, etc. You can contact us. FIMSA 2021 (“fimsa2021.org” or ‘FIMSA 2021) will respond to and process inquiries from the data subject without delay.

11. Request for access to personal information ① The subject of information can request access to personal information pursuant to Article 35 of the Personal Information Protection Act to the following departments. FIMSA 2021 (“fimsa2021.org” or ‘The Society’) will endeavor to expedite the request for access to personal information of the data subject.

▶ Personal information access request reception and processing department

Name: Jessie Kim

Position: Assistant Manager

Contact: 051-742-8407, [email protected]

② In addition to the department for receiving and processing a request for access in Paragraph 1, the information subject may request personal information access through the “Comprehensive Personal Information Protection Support Portal” website (www.privacy.go.kr) of the Ministry of Public Administration and Security.

▶ Ministry of Public Administration and Security’s Personal Information Protection Comprehensive Support Portal → Complaint for personal information → Request for personal information access (I-PIN is required for identification)

12. Request to view personal information

The organizations below are separate from the name of the business operator/organization, and if you are not satisfied with the results of FIMSA 2021 (‘fimsa2021.org’ or the ‘Academic Society’)’s own personal information complaint handling, or if you need more detailed help, please contact us. Please do it.

▶ Personal Information Infringement Report Center (operated by Korea Internet & Security Agency)

-Responsible business: Report of personal information infringement, request for consultation

-Homepage: privacy.kisa.or.kr

-Phone: (without area code) 118

-Address: (138-950) Personal Information Infringement Report Center, Korea Internet & Security Agency, 135 Jung-daero, Songpa-gu, Seoul

▶ Personal Information Dispute Mediation Committee (operated by Korea Internet & Security Agency)

-Jurisdiction: Personal information dispute mediation application, collective dispute mediation (civil settlement)

-Homepage: privacy.kisa.or.kr

-Phone: (without area code) 118

-Address: (138-950) Personal Information Infringement Report Center, Korea Internet & Security Agency, 135 Jung-daero, Songpa-gu, Seoul

▶ Supreme Prosecutors’ Office Cyber Crime Investigation Division: 02-3480-3573 (www.spo.go.kr)

▶ National Police Agency Cyber Crime Investigation Division: 1566-0112 (www.netan.go.kr)

13. Changes to the privacy policy

① This personal information processing policy will be applied from the effective date, and if there is any addition, deletion or correction of changes in accordance with laws and policies, it will be notified through the notice from 7 days before the enforcement of the changes.

Ⓒ FIMSA 2022