Privacy Policy

In order to protect the personal information of the information subject in accordance with Article 30 of the Personal Information Protection Act, Osteoniq (the "Company") establishes and publishes the Privacy Policy as follows:

Article 1 (For the purpose of processing personal information)

The company processes personal information for the following purposes: Personal information processing is not used for purposes other than the following, and if the purpose of use is changed, the necessary measures will be implemented, such as obtaining separate consent under Article 18 of the Privacy Act.

• ① Identifying the person who uses the service and identifying his or her real name
• ② Securing communication channels for further investigation of product-related medical information and product contribution
• ③ Handling consumer complaints
• ④ R&D and improvement of products

Article 2 (Process and retention period of personal information)

• ① The company processes and retains personal information within the period of personal information possession and use in accordance with the Act or within the period of personal information possession and utilization, which is agreed upon when collecting personal information from the information subject.
• ② Each person's personal information processing and retention period is as follows. - Identify yourself and identify your real name based on service use: 3 years
  • - Records on consumer complaint or dispute handling: 5 years from the end of the dispute settlement
  • - Cases related to medical information and product donation: 5 years
  • - Product R& Improvement: Until the goal is achieved (in case of product R&D and improvement, only abstracted information is available that cannot be specified by individuals after five years)

Article 3 (the rights, duties and methods of exercise of the information subject)

• ① The information subject may exercise the following personal information protection related rights to the company at any time.
  • a. Request for personal information access
  • b. Request correction in case of errors, etc.
  • c. Request for deletion
  • d. Request for suspension of processing
• ② The right under paragraph 1 can be exercised through written, e-mail, or FAX in accordance with the Enforcement Regulations of the Personal Information Protection Act No.8. The company will take action without delay.
• ③ If the information subject asks for correction or deletion of personal information errors, the company does not use or provide the personal information until correction or deletion is completed.
• ④ The exercise of rights pursuant to paragraph 1 may be conducted through an agent, such as a legal representative of the information subject or a person entrusted with it. In this case, you must submit a letter of attorney according to the form No. 11 attached to the Enforcement Rules of the Personal Information Protection Act

Article 4 (Personal information items handled)

• The company processes the following personal information items:
  • 1. Identifying yourself and providing product-related services Name, phone number, email address, job
  • 2. The following personal information items can be automatically generated and collected during the service use process through the Internet. IP address, cookie, MAC address, service use record, visit record, defect use record, etc.

Article 5 (The destruction of personal information)

• ① When personal information becomes unnecessary, such as the expiration of the personal information retention period and achievement of the purpose of processing, the company destroys the personal information without delay.
• ② In the event that personal information is kept after the period of personal information possession agreed by the information subject or if it is necessary to preserve the personal information according to other statutes, the personal information is moved to a separate database (DB) or stored in different places.
• ③ The procedures and methods for personal information destruction are as follows.
  • a. Abolition procedure
    The company selects personal information for reasons of destruction and destroys personal information after obtaining approval from the company's personal information protection manager.
  • b. Demolition method
    The company destroys personal information recorded and stored in electronic file form so that records cannot be replayed. Personal information recorded and stored in paper documents is destroyed by grinding or incineration with a shredder.

Article 6 (On the Installation, Operation and Denial of Automatic Personal Information Collection Devices)

• ① The company uses 'cookie' to save and retrieve usage information from time to time for stable homepage operation.
• ② Cookies are a small amount of information sent to your computer browser by the server that is used to operate the website and are sometimes stored on a hard disk on your PC computer.
  • a. The purpose of cookies is to identify each service visited by the user and the types of visits and use of the websites to ensure stable website operation.
  • b. Installing, operating, and rejecting cookies: Tools at the top of the Web browser>Internet Options>Set options in the Privacy menu to deny cookies storage.
• ③ There is no difficulty or disadvantage in using the website even if the user refuses to save the cookies.

Article 7 (Measures to secure the safety of personal information)

The company takes the following steps to ensure the safety of personal information.

• ① Management measures: establishment and implementation of internal management plans, regular employee training, etc.
• ② Technical measures: management of access authority, installation of access control system, encryption of unique identification information, installation of security program
• ③ Physical actions: Access control for computer rooms, data storage rooms, etc.

Article 8 (Personal Information Protection Officer)

• ① The company is responsible for handling personal information and designates the person in charge of personal information protection as follows to deal with complaints and remedy damages by the information subjects related to the processing of personal information.
  • - Name: Director HyunJun Choi
  • - Member: Management Dept.
  • - Contact: privacy@osteonic.com
• ② The information subject can contact the personal information protection manager about all personal information protection inquiries, complaint handling, damage relief, etc. generated while using the company's services. The company will respond and process inquiries from the information subject without delay.

Article 9 (Change personal information processing policy)

1. This Privacy Policy is effective from Dec 1, 2019