Privacy Statement

 Privacy Statement

The 'Block Stack' (hereinafter referred to as the "Company") is a personal information protection regulation in accordance with relevant laws and regulations that information communication service providers must comply with, such as the Communication Secrets Protection Act, the Telecommunications Business Act, and the Act on Promotion of Information and Communication Network Utilization and Information Protection. We are committed to protecting the rights and interests of users by establishing a privacy policy in accordance with applicable laws and regulations.

Items of personal information collected

 First, the company collects the following personal information at the time of the first service subscription to provide various services when signing up for the service.

Second, the following information may be generated and collected in the process of using the service, such as the unique identification number, user name or nickname, and device unique number (device ID or IMEI) provided by the platform operator's service.

User status information, date and time of visit, service usage record, bad usage record, etc. Third, credit card information, carrier information, purchase history and gift certificate number, and other payment related information when necessary for payment in the process of using free / paid service May be collected and the customer's paid content

 When requesting recovery and refund, additional personal information such as e-mail address, purchase details, and proof of real name and family relations may be collected to confirm facts paid by someone other than the person for smooth customer consultation.

I. How to collect personal information

 The company collects personal information in the following ways. Gather automatically through the platform that is related to service provision with our company or collect through voluntary provision of users during service subscription or use

Purpose of collecting and using personal information

 Provision of game basic functions

 The company provides services such as inviting, presenting, recommending, and viewing rankings to the user's friends provided by the platform operator through the unique identification number of the user account. In addition, the device's unique number (device ID or UDID, IMEI) can be collected and stored at the time of user registration to be used to identify whether the user account is normal.

I. Execution of contracts related to service provision and payment of charges according to service provision Free or paid content delivery, delivery of goods through purchase or billing, etc., identity verification, purchase and payment, collection of charges

II. Member Management

 User identification related to the use of the membership system service, user identification related to the provision of the game service, personal identification, and defective members (Article 6, paragraph 1 to 13, paragraph 1, 3, 4, 5, 7, 8, Prevention of illegal use and unauthorized use of members who have been terminated due to the violation or violation of subparagraph 9), confirmation of intention to join, limit number of subscriptions and subscriptions, record keeping for identity verification and dispute settlement, complaint handling, complaint handling, etc. relay

III. Development of new services and utilization in marketing / advertising

 Development of new services and provision of customized services, service provision and advertisement display according to statistical characteristics, validation of services, event and advertisement information provision and participation opportunities, access frequency identification, statistics on member service use

 Sharing and provision of personal information

 The company uses the user's personal information within the scope notified in the “Purpose and Use of Personal Information”, and does not use the user beyond the scope or disclose the user's personal information to the outside without the user's prior consent. . However, in the following cases, personal information may be used and provided with caution.

I. If users agree to the disclosure in advance:

Before collecting information, providing information, and entrusting the user, the user is notified of who the company's affiliates are, and how and how they are protected / managed, and goes through the process of obtaining consent.If the user does not agree, additional information is collected or We do not share with affiliates.

When providing personal information with the consent of users, the recipient and purpose of use are as follows.

Recipient and purpose of use

 The company uses the collected personal information for the following purposes.

I. Provision of payment settlement contents according to contract execution and service provision for service provision, delivery of goods or bills, etc., identity verification, purchase and payment, and charge collection

II. Member Management

 Membership service use and identity verification according to the limited identity verification system, personal identification, prevention of unauthorized use of unauthorized members, prevention of unauthorized use, intention to join

 Checking, limiting the number of subscriptions and subscriptions, keeping records for mediation of disputes, handling complaints such as complaint handling, and delivering notices

Ill. Development of new services and use for marketing and advertising Development of new services and provision of customized services, provision of services according to statistical characteristics, publication of advertisements, validation of services, provision of event and advertisement information and participation opportunities, identification of access frequency, membership Statistics on service use.

Entrustment of handling personal information

 In order to improve the service, the company can entrust personal information, and can notify of changes as relevant matters progress.

Retention and use period of personal information

 In principle, personal information of users is destroyed without delay when the purpose of collecting and using personal information is achieved. However, the following information is retained for the period specified for the following reasons.

I. Reason for retaining information according to company internal policy

-Records of fraudulent use (Reason for preservation: Prevention of fraudulent use, Retention period: 1 year)

I. Reasons for retaining information under relevant laws

 If it is necessary to preserve it in accordance with the provisions of the relevant laws, such as the Consumer Protection Act in commercial law, e-commerce, etc., the company keeps the member information for a certain period determined by the relevant laws. In this case, the company uses the information it keeps only for the purpose of storage and the retention period is as follows.

-Records of contract or withdrawal of subscription

(Reason for preservation: Act on Consumer Protection in Electronic Commerce, Retention Period: 5 years)

-Records on payment and supply of goods, etc.

(Reason for preservation: Act on Consumer Protection in Electronic Commerce, Retention Period: 5 years)

-Records of consumer complaints or disputes

(Reason for preservation: Act on Consumer Protection in Electronic Commerce, etc., Retention Period: 3 years)

-Records of identification (reason of preservation: information and communication network

 Act on Promotion of Use and Information Protection, Retention Period: 6 months)

-Records of visits (reason of preservation: Communication Secrets Protection Act, retention period: 3 months)

Procedure and method of destroying personal information

 In principle, personal information of users is destroyed without delay when the purpose of collecting and using personal information is achieved. The company's personal information destruction procedure and method are as follows.

I. Destruction procedure

-The information entered by the user for service subscription, etc. is transferred to a separate DB after the purpose is achieved, according to the reasons for information protection according to internal policies and other related laws (refer to retention and usage period)

It is stored for a certain period of time and then destroyed.

-This personal information will not be used for any purpose other than that held unless it is required by law.

II. Method of destruction

-Personal information printed on paper is destroyed by shredding or incineration.

-Personal information stored in the form of electronic files is deleted using a technical method that cannot reproduce the records.

Rights of users and legal representatives and how to exercise them

 Users and legal representatives can view or modify the personal information of their registered children or children under the age of 14 at any time through the platform provider or the app store operator, and request the termination of the service by logging out and deleting the application.

To view and correct personal information of users or children under the age of 14, you can directly view, correct or withdraw by clicking “Delete Account” through the platform provider or the App Store operator. However, if you want to check the personal information that the company does not have, you can verify your identity against the information recorded in the company by checking the subscription history of the platform provider or app store provider that provides the game service and providing personal information. Must be able to.

If the user requests correction of errors in personal information, the personal information will not be used or provided until the correction is completed. In addition, if incorrect personal information has already been provided to a third party, we will notify the third party without delay of the result of the correction, so that the correction will be made.

The company is terminated at the request of the user or legal representative

 Or, the deleted personal information is “5. Personal information is retained and used for a period of time ”and is processed so that it cannot be viewed or used for other purposes.

Matters concerning installation / operation and rejection of automatic personal information collection device

 The company can automatically collect the device identification number (device ID or UDID, IMEI) when the user runs the application for game services to generate account information.

In addition, to provide basic functions such as friend registration or friend recommendation, a unique identification number and a unique identification number related to a friend list can be automatically collected from the platform user.

If the user does not automatically collect this unique identification number or device identification number, we cannot normally use our game services because we cannot provide game services such as inviting friends or gifts.

Technical / administrative protection measures for personal information

 In handling personal information of users, the company is taking the following technical / management measures to ensure safety so that personal information is not lost, stolen, leaked, tampered with or damaged.

I. Countermeasures against hacking

 The company is doing its best to prevent the leakage or damage of members' personal information by hacking or computer viruses.

In case of damage to personal information, data is backed up frequently, and users' personal information or data is prevented from being leaked or damaged, and personal information can be safely transmitted over the network through encrypted communication. And using the intrusion prevention system

 We are controlling unauthorized access from the outside, and we are trying to equip all possible technical devices to secure security systematically.

II. Minimization and training of handling staff

 Employees handling personal information related to the company are limited to the person in charge and regularly updated by giving a separate password for this, and through regular training for the person in charge, the company always emphasizes compliance with the privacy policy.

Ill. Operation of a dedicated personal information protection organization

 The company checks the implementation of the personal information handling policy and the compliance of the person in charge through an in-house personal information protection organization, etc., and strives to correct and correct any problems immediately.

However, the company is not responsible for any problems caused by leakage of personal information for reasons other than the user's negligence or the company's intention or negligence.

Contact information of personal information manager and person in charge

 You can report any complaints related to the protection of personal information arising from using the company's services to the person in charge of personal information management or the department in charge.

The company will promptly respond to users' reports.

Contact person: adventureking@naver.com

If you need to report or consult about other personal information infringement, please contact the following organizations.

-Personal Information Infringement Report Center (www.118.or.kr / 118)

-Information Security Mark Certification Committee (www.eprivacy.or.kr / 02-580-0533 ~ 4)

-Supreme Prosecutors' Office, Advanced Crime Investigation Division (http://www.spo.go.kr / 02-3480-2000)

-Police Agency Cyber ​​Terror Response Center (www.ctrc.go.kr / 02-392-0330)

Notice

 If there is any addition, deletion, or modification of the contents of the current privacy policy, we will announce it through Naver Cafe (https://cafe.naver.com/adventurekinggame) or within the game service at least 7 days before the effective date.

Announcement date: May 01, 2020

Effective Date: May 01, 2020