The English version provided in this service is a reference translation for the convenience of users. In the event of any discrepancy in content or interpretation between the English and Korean versions, the Korean version shall prevail.
Table of Contents
Nurimedia Co., Ltd. (hereinafter "Company") places great importance on the protection of users' personal information and always endeavors to protect customers' personal information. The Company complies with the Personal Information Protection Act and other relevant laws and regulations, and has established and publicly discloses this Privacy Policy to protect users' personal information and to promptly and smoothly handle related grievances. This Privacy Policy may be amended in accordance with changes in laws or the Company's internal policies, and any amendments will be announced through the website or other means.
The Company provides the same services to members of DBpia and KRpia, so users may freely use both DBpia and KRpia with a single website registration. However, DBpia OpenAPI members must register separately.
The Company provides users with procedures to choose whether to consent to the contents of the Privacy Policy or Terms of Service, and selecting consent shall be deemed as consent to the collection of personal information.
The Company collects and uses personal information for the following purposes, including member management and service provision. Collected information shall not be used for purposes other than those publicly disclosed in advance, and shall not be provided externally except with the user's prior consent or as required by law. If the purpose of use changes, the Company will notify users of the change and take necessary measures such as obtaining separate consent.
a. The Company collects only the essential information necessary for basic service provision, and obtains separate consent when collecting information to provide services tailored to users' preferences and needs.
However, in order to protect the personal information of children under the age of 14 (hereinafter "Children"), the Company does not, in principle, collect personal information of Children that requires the consent of a legal representative. However, if the consent of a legal representative has been obtained, the Company may collect and use Children's personal information.
| Category | Purpose | Items | Legal Basis | Retention & Use Period | |
|---|---|---|---|---|---|
| DBpia | General Member Registration | Confirming membership intent, age verification, user identity verification, user identification, confirming membership withdrawal intent | - Required: Name, User ID, Password, Phone number, Date of birth, Email | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | Destroyed upon membership withdrawal or withdrawal of consent Records of fraudulent use retained for 1 year after withdrawal, then destroyed (Personal Information Protection Act Art. 15(1)(6) (Legitimate interest)) |
| DBpia | General Member Registration | Providing personalized services | - Optional: Gender, occupation & affiliation, semester info (undergraduate/graduate), institutional affiliation status, institution name (if applicable), major subjects, subjects of interest, promotional email subscription status | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed upon membership withdrawal or withdrawal of consent Records of fraudulent use retained for 1 year after withdrawal, then destroyed (Personal Information Protection Act Art. 15(1)(6) (Legitimate interest)) |
| DBpia | Author Member Registration | Confirming membership intent, age verification, user identity verification, user identification, confirming membership withdrawal intent | - Required: User ID, Password, Name (Korean), Name (English), Phone number, Date of birth, Email, Affiliated institution | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia | Author Member Registration | Providing personalized services | - Optional: Author email, department, research field, career history, gender, occupation & affiliation, semester info (undergraduate/graduate), institutional affiliation status, institution name (if applicable), major subjects, subjects of interest, promotional email subscription status | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia | SNS (Naver) Registration | Confirming membership intent, age verification, user identity verification, user identification, confirming membership withdrawal intent | - Required: Name, Email, Whether aged 14 or older | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia | SNS (Naver) Registration | Providing personalized services | - Optional: Gender, occupation & affiliation, semester info (undergraduate/graduate), institutional affiliation status, institution name (if applicable), major subjects, subjects of interest, promotional email subscription status | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia | SNS (Google) Registration | Confirming membership intent, age verification, user identity verification, user identification, confirming membership withdrawal intent | - Required: Name, Email, Whether aged 14 or older | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia | SNS (Google) Registration | Providing personalized services | - Optional: Gender, occupation & affiliation, semester info (undergraduate/graduate), institutional affiliation status, institution name (if applicable), major subjects, subjects of interest, promotional email subscription status | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia | SNS (KakaoTalk) Registration | Confirming membership intent, age verification, user identity verification, user identification, confirming membership withdrawal intent | - Required: Profile info (nickname), Email, KakaoTalk account (phone number), Whether aged 14 or older | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia | SNS (KakaoTalk) Registration | Providing personalized services | - Optional: KakaoTalk Plus Friend subscription, gender, occupation & affiliation, semester info (undergraduate/graduate), institution name, major subjects, subjects of interest, promotional email subscription status | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia | SNS (Apple) Registration | Confirming membership intent, age verification, user identity verification, user identification, confirming membership withdrawal intent | - Required: Name, Email | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia | SNS (Apple) Registration | Providing personalized services | - Optional: Gender, occupation & affiliation, semester info (undergraduate/graduate), institutional affiliation status, institution name (if applicable), major subjects, subjects of interest, promotional email subscription status | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia | Promotional & Marketing Email Subscription | Sending promotional and marketing communications | - Optional: Email | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia | Enterprise/Group Subscription & Free Trial Application | Verifying institutional eligibility for subscription, handling subscription inquiries, sending responses | - Required: Name, Email, Company name, Address, Contact number | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 1 year |
| DBpia | Trial Application (Public Institutions / Enterprises) | Verifying trial eligibility, handling trial and contract inquiries, sending responses | - Required: Organization/company name, Address, Applicant name, Contact number, Email, Department, Representative account ID, Representative account password | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 1 year |
| DBpia | Trial Application (Public Institutions / Enterprises) | Processing [institutional/school authentication] for trial and handling inquiries | - Optional: Business name, IP range (start ~ end), related inquiries | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 1 year |
| DBpia | Trial Application (Schools / Libraries) | Verifying trial eligibility, handling trial and contract inquiries, sending responses | - Required: School/library name, Applicant name, Contact number, Email | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 1 year |
| DBpia | Trial Application (Schools / Libraries) | Processing [institutional/school authentication] for trial and handling inquiries | - Optional: IP range (start ~ end), related inquiries | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 1 year |
| DBpia | 1:1 Inquiry | Understanding and responding to inquiries | - Required: Email, Phone number, Subject, Content | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | 3 years (E-Commerce Act Art. 6) |
| DBpia | 1:1 Inquiry | Understanding and responding to inquiries | - Optional: Attached files | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 3 years (E-Commerce Act Art. 6) |
| DBpia | DBpia Subscription / Contract Inquiry | Sending service brochure emails, providing guidance on free trial applications | - Required: Name, Email, Contact number, Company/institution name | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed immediately upon withdrawal of consent, or destroyed after 1 year |
| DBpia | DBpia Subscription / Contract Inquiry | Sending our newsletter, marketing activities related to subscription services | - Required: Company/institution name, Email address, Contact number | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed immediately upon withdrawal of consent, or destroyed after 1 year |
| DBpia | DBpia Money Purchase | Providing payment/refund services, processing orders and service provision | - Required: Name, User ID, Payment information (payment method, payment date, payment code) | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | 5 years (E-Commerce Act Art. 6) |
| DBpia | Education Application (ZOOM Service) | Confirming attendance at DBpia user education - (Mobile phone number) Providing prizes through lottery among attendees |
- Required: Name, Email, School name, Major/department, Grade (affiliation type), Student ID, Contact number | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 1 month after end of education |
| DBpia | Education Application (ZOOM Service) | Providing information on and opportunities to participate in future education and events | - Optional: Name, Email, Grade, Contact number | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Retained for up to 6 months after end of education, then destroyed |
| DBpia | Arcaloot (Convergence Research Group Support Program) | Application for and announcement of winners of the 'Convergence Research Group Support Program' | - Required: Name, User ID, Contact (email/mobile), Highest degree, Affiliated institution, Major academic field, Research experience, Research title, Research objective, Research plan, Research group operation plan | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | Retained for 2 months after winner announcement, then destroyed |
| DBpia | Bibliography Management Program Subscription Application | Managing subscriber information | - Required: Name, Email, Affiliated company/institution name | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Retained for 3 months from date of collection, then destroyed |
| DBpia | Bibliography Management Program Subscription Application | Managing subscriber information | - Optional: Contact person email, Contact person phone number | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Retained for 3 months from date of collection, then destroyed |
| DBpia | Bibliography Management Program Citation Format Addition Request | Managing applicant information | - Required: Name, Email, Phone number, Academic society/institution or school/major information | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Retained until citation format is registered, then destroyed ※ If the requested format is not built, immediately deleted |
| DBpia | Bibliography Management Program Citation Format Addition Request | Managing applicant information | - Optional: Journal name, Paper writing format page URL | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Retained until citation format is registered, then destroyed ※ If the requested format is not built, immediately deleted |
| DBpia | SNS Appearance Application | Selecting participants and providing filming guidance | - Required: Affiliated school, Major, Affiliated lab, Name, Contact number, Email | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed within 1 year after filming |
| DBpia | Event Participation | Managing event participants, selecting winners, event notification | - Required: User ID, Name, Contact number ※ Items collected may vary depending on the event's collection purpose. Notice will be provided via consent form at the time of collection. |
Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 1 month after end of event |
| DBpia | Tax and Public Charges Processing | Processing tax and public charges pursuant to the Income Tax Act | - Required: Copy of ID (Resident registration number) | Income Tax Act Art. 21 (Miscellaneous income), Art. 127 (Withholding obligation), Art. 164 (Submission of payment statements) | Destroyed immediately upon processing of taxes and public charges |
| DBpia | Product Delivery | Product delivery and delivery notification | - Required: Contact number, Address, Name | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 1 month after product delivery |
| DBpia OpenAPI | General Member Registration | Identity verification for handling inquiries related to service use, member authentication, delivery of notices, confirmation of user intent, securing communication channel for complaint handling | - Required: Full name, User ID, Password, Email address | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | Destroyed upon membership withdrawal or withdrawal of consent Records of fraudulent use retained for 1 year after withdrawal, then destroyed (Personal Information Protection Act Art. 15(1)(6) (Legitimate interest)) |
| DBpia OpenAPI | General Member Registration | Delivering notices, confirming user intent, securing communication channel for complaint handling; providing latest information on new full texts, services, and events | - Optional: Mobile phone number, Information notification subscription status | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed upon membership withdrawal or withdrawal of consent |
| DBpia OpenAPI | Inquiry (Q&A) | Understanding and responding to inquiries | - Required: Full name, Email, Contact number, Q&A password | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | 3 years (E-Commerce Act Art. 6) |
| DBpia OpenAPI | API Key Issuance | Key issuance and service provision | - Required: Using organization name, Domain, IP Address, Subscription status, Usage environment | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | Destroyed upon membership withdrawal or withdrawal of consent |
| KRpia | General Member Registration | Identity verification for handling inquiries related to service use, member authentication, delivery of notices, confirmation of user intent, securing communication channel for complaint handling | - Required: Full name, User ID, Password, Date of birth, Email | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | Destroyed upon membership withdrawal or withdrawal of consent Records of fraudulent use retained for 1 year after withdrawal, then destroyed (Personal Information Protection Act Art. 15(1)(6) (Legitimate interest)) |
| KRpia | General Member Registration | Providing personalized services | - Optional: Mobile phone number, Promotional email subscription status, Survey items (how they found us, occupation, topics of interest) | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Destroyed upon membership withdrawal or withdrawal of consent Records of fraudulent use retained for 1 year after withdrawal, then destroyed (Personal Information Protection Act Art. 15(1)(6) (Legitimate interest)) |
| KRpia | Contract & Trial Inquiry | Identity verification for member service use | - Required: Name, Mobile phone number, Email, Group/corporate name | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 1 year |
| KRpia | Contract & Trial Inquiry | Verifying eligibility for group/corporate subscription | - Optional (contract inquiry): Phone number, Group/corporate name, Company brochure - Optional (trial): Group/corporate address, Requested IP range (start ~ end) |
Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 1 year |
| KRpia | License Purchase | Providing payment/refund services, processing orders and service provision | - Required: Name, User ID, Payment information (payment method, payment date, payment code) | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | 5 years (E-Commerce Act Art. 6) |
| KRpia | Q&A | Processing inquiries, sending responses, user identity verification | - Required: Member User ID (when logged in), Type, Subject, Email, Password, Content | Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | 3 years (E-Commerce Act Art. 6) |
| KRpia | Event Participation | Event participation and winner selection | - Required: Name, User ID, Contact (email address/mobile number) ※ Items collected may vary depending on the event's collection purpose. Notice will be provided via consent form at the time of collection. |
Personal Information Protection Act Art. 15(1)(1) (Data subject's consent) | Retained until 2 months after winner announcement and prize delivery, then destroyed |
| Publisher / Institution Information System | Contract Information Provision | Providing institutional contract status and statistical services | - Required: User ID | Personal Information Protection Act Art. 15(1)(4) (Performance of contract) | Upon contract termination |
b. The Company uses personal information for analyzing service usage records and access frequency, compiling statistics on service use, and providing customized services based on service analysis and statistics.
- Information automatically generated and collected during service use: IP address, OS information, browser information, cookies, visit date and time, service usage records, records of fraudulent use
c. The Company uses personal information for: imposing usage restrictions on members who violate laws or the Company's Terms of Service; preventing and sanctioning acts that interfere with smooth operation of the service including fraudulent use; preventing account theft and fraudulent transactions; delivering notices such as amendments to Terms; preserving records for dispute resolution; and handling user complaints and protecting users.
- For records of fraudulent use for the prevention of fraudulent activity: retained for 1 year
d. In principle, users' personal information is immediately destroyed once the purpose of collection and use has been achieved. However, if it is necessary to retain the information in accordance with relevant laws such as the Commercial Act and the Act on Consumer Protection in Electronic Commerce, the Company retains member information for the period prescribed by such laws. In such cases, the Company uses retained information only for the purpose of retention, and the retention periods are as follows:
| Content | Retention Period | Legal Basis | |
|---|---|---|---|
| Records of display and advertising | 6 months |
|
|
| Records of contracts or withdrawal of offers, payment, and supply of goods/services | 5 years | ||
| Records of consumer complaints or dispute resolution | 3 years | ||
| Books and supporting documents for all transactions under tax law | 5 years | Framework Act on National Taxes Art. 85-3 (Keeping and preserving books, etc.) | |
| Computer network and internet log records, access tracking data | 3 months | Protection of Communications Secrets Act Art. 15-2 (Cooperation obligations of telecommunications carriers) |
e. For mobile app services, the Company accesses information on users' smartphones as described below. There are no mandatory access items; optional access items require separate consent when using the relevant service. (Refusal of optional items does not restrict service use.)
| Service | Mobile OS | Permission (Optional) | Purpose |
|---|---|---|---|
| DBpia | Android, iOS | Notifications | Provision of PUSH notification service |
| DBpia | Android, iOS | Location | Content access via institutional/school authentication |
| DBpia | Android, iOS | Storage | Content download |
In principle, the Company does not provide users' personal information to external parties. However, exceptions may be made in the following cases:
a. Where the user's prior consent has been obtained
b. Where required by law, or where investigative authorities request information in accordance with procedures and methods prescribed by law for investigative purposes
※ When applying for the Convergence Research Group Support Program or user education, personal information may be provided to third parties at the request of the school or affiliated institution.
Recipient: [List of schools or affiliated institutions]
Third party's purpose of use: Identification of participants in the Convergence Research Group Support Program / user education
Personal information items provided: Name, Email, School name, Major/department, Grade and affiliation type, Student ID, Contact number, Affiliated company/institution name
Recipient's retention and use period: Retained until 1 month after the purpose is achieved, then destroyed
※ When participating in events, personal information may be provided to third parties for the purpose of sending prizes to winners.
Recipient: [Giftshow Biz]
Third party's purpose of use: Sending prizes to winners
Personal information items provided: Contact number
Recipient's retention and use period: Retained until 1 month after the end of the event period, then destroyed
a. The Company consigns personal information processing tasks as follows for smooth personal information business operations. When entering into consignment agreements, the Company specifies in the contract and other documents matters including prohibition of personal information processing beyond the scope of the consigned tasks, technical and administrative protective measures, restrictions on re-consignment, supervision and oversight of data processors, and liability including damages. The Company supervises whether data processors handle personal information safely.
| Data Processor | Consigned Tasks | Sub-processors & Sub-consignment Tasks |
|---|---|---|
| KG Inicis | Payment processing agency for mobile phone, credit card, bank transfer payments; handling payment-related inquiries | KG Inicis – Privacy Policy |
| PayPal | Payment processing for international card transactions | PayPal – Privacy Policy |
| Daou Technology | SMS sending agency | Daou Technology – Privacy Policy |
| AWS | Cloud service provision | AWS – Privacy Policy |
| Megazone Cloud | Cloud service operation | Megazone Cloud – Privacy Policy |
| iWAS (In-house) |
Service site operation and maintenance | |
| MBI Solution | Operation of customer support system (HappyTalk) | MBI Solution – Privacy Policy |
| SK Broadband | Call recording service provision | SK Broadband – Privacy Policy |
| Toss Payments | PG company (payment processing) | Toss Payments – Privacy Policy |
| Allinpeople | KakaoTalk notification message sending agency (Aligo service) | Allinpeople – Privacy Policy |
| PortOne | Integrated payment gateway | PortOne – Privacy Policy |
| Woongjin | Inbound customer consultation and CS processing | Woongjin - Privacy Policy |
| Recatch | Operation of inquiry form system (Recatch) | Recatch - Privacy Policy |
| Stibee | Operation of email sending system (Stibee) | Stibee - Privacy Policy |
| Escom Information Systems | Content DB construction | |
| Channel Corporation | Operation of customer support system (Channel Talk) | Channel Talk – Privacy Policy |
| Worksphere LLC | Operation and inquiry processing for recruitment homepage and recruitment management system (NineHire) | NineHire - Privacy Policy |
b. When entering into consignment agreements, the Company specifies in the contract and other documents matters including prohibition of personal information processing beyond the scope of consigned tasks, technical and administrative protective measures, restrictions on re-consignment, supervision and oversight of data processors, and liability including damages in accordance with relevant laws. The Company supervises whether data processors handle personal information safely.
| Legal Basis for Overseas Transfer |
Recipient | Recipient's Purpose | Destination Country | Transfer Date & Method | Items Transferred | Purpose & Retention Period |
|---|---|---|---|---|---|---|
| Personal Information Protection Act Art. 28-8(1)(3) |
Paypal (paypal@generalagent.co.kr) |
Payment processing for international card transactions | USA | At the time of service use (payment) | Payment information | Payment processing; until membership withdrawal or termination of consignment agreement |
※ When overseas transfer of personal information occurs, you may refuse to use the payment service. If you refuse, you will not be able to use the payment service and your personal information will not be transferred overseas.
a. Users and legal representatives may log in at any time to view or modify registered personal information. They may also withdraw consent to the collection and use of personal information through 'Membership Withdrawal,' etc.
b. Non-member users may request the Company to modify or delete personal information after going through a prescribed identity verification procedure.
c. If a user or legal representative requests correction of an error in personal information, the Company shall not use or provide the relevant personal information until the correction is completed. If incorrect personal information has already been provided to a third party, the Company shall promptly notify the third party of the correction result so that the correction is made.
Personal information access requests and other related matters are handled by the 'Privacy Protection Department' described in [10. Chief Privacy Officer and Personal Information Access].
The Company destroys personal information without delay when it becomes unnecessary, such as when the retention period for personal information has expired or when the processing purpose has been achieved.
If personal information must continue to be retained in accordance with internal policies or other laws notwithstanding the expiration of the retention period agreed upon with the user or the achievement of the processing purpose, the relevant personal information is transferred to a separate database (DB) or stored in a different location.
a. Destruction Procedure
Information entered by users for membership registration, etc., is destroyed without delay after the purpose has been achieved. However, if it is necessary to retain information for a certain period pursuant to internal policies or other relevant laws for information protection purposes, the information is transferred to a separate DB (or a separate document box in the case of paper documents) and destroyed after the retention period. Personal information transferred separately is not used for any purpose other than as required by law.
※ Items of personal information retained pursuant to other laws and the retention basis can be found in Section 2 'Items Collected, Use, Purposes, and Retention Periods.'
b. Destruction Method
1) Personal information printed on paper is destroyed by shredding or incineration.
2) Personal information stored in electronic file format is destroyed using a technical method that makes recovery of the record impossible.
The Company makes every effort to securely manage users' personal information and protects personal information safely in accordance with relevant laws including the Personal Information Protection Act.
a) Administrative Measures
1. Establishment and implementation of an internal management plan
- An internal management plan for the protection of personal information is established and implemented for the safe processing of personal information within the Company.
2. Minimization of personnel handling personal information and training
- Personnel handling personal information are designated and managed to the minimum necessary, and privacy protection training is conducted for safe management.
b) Technical Measures
1. Access restriction on personal information
- Necessary measures are taken for access control of personal information through the granting, changing, and revocation of access rights to database systems processing personal information.
- Unauthorized external access is controlled using intrusion prevention systems, and efforts are made to equip all possible technical devices to ensure system security.
2. Encryption of personal information
- Personal information is securely stored and managed through encryption, etc.
- When transmitting personal information, encrypted communications, etc., are used to ensure that personal information is transmitted safely over the network.
3. Prevention of malicious programs, etc.
- The Company takes measures to prevent members' personal information from being leaked or damaged due to hacking or computer viruses, etc.
- Data is regularly backed up in preparation for damage to personal information, and the latest antivirus programs are used to prevent users' personal information or data from being leaked or damaged.
c) Physical Measures
1. Access control for protected areas such as computer rooms and data storage rooms
- Server rooms and other facilities storing important information are designated as protected areas with controlled access.
※ The Company is not responsible for problems arising from the leakage of personal information such as User IDs and passwords due to the user's own negligence.
a. The Company uses 'cookies' for the convenience of users and system operation. Cookies are small pieces of information sent by a website to the user's web browser and stored on the user's computer hard drive. Cookies identify the user's computer but do not personally identify the user. They are used to analyze the frequency of access or visit times of members and non-members, understand users' preferences and interests, and use them as a basis for targeted marketing and service improvements.
b. Users have a choice regarding cookies. Through the settings or options menu of their web browser, users may allow or block all cookies, or require confirmation each time a cookie is saved. However, if a user refuses to allow cookies to be installed, there may be difficulties in providing the service.
<How to set cookie installation preferences in a web browser>
- Chrome: Web browser Settings > Privacy and Security > Clear browsing data
- Edge: Web browser Settings > Cookies and site permissions > Manage and delete cookies and site data
<How to set cookie installation preferences in a mobile browser>
- Chrome: Mobile browser Settings > Privacy and Security > Clear browsing data
- Safari: Mobile device Settings > Safari > Advanced > Block All Cookies
- Samsung Internet: Mobile browser Settings > Browsing data > Delete browsing data
a. The Company has designated a Chief Privacy Officer and a dedicated department as follows to handle users' inquiries and complaints regarding personal information.
| Category | Chief Privacy Officer | Privacy Protection Department |
|---|---|---|
| Name | Lim Myung Suk | Yeom Jeong-wan |
| Title / Position | Chief Privacy Officer | Head, Information Security Team |
| dbpia@nurimedia.co.kr | dbpia@nurimedia.co.kr | |
| Phone | 02)707-0496 | 02)707-0496 |
b. Users may contact the Chief Privacy Officer or the person in charge regarding personal information inquiries, complaint handling, damage relief, personal information access requests, and other matters arising from using the Company's services. The Company will respond to and process users' inquiries without delay.
If users' personal information has been infringed and they need to report or consult, they may contact the following institutions for assistance.
a. Personal Information Dispute Mediation Committee: (No area code) 1833-6972 (https://www.kopico.go.kr)
b. Personal Information Infringement Report Center: (No area code) 118 (privacy.kisa.or.kr)
c. Supreme Prosecutors' Office Cyber Investigation Division: (No area code) 1301 (www.spo.go.kr)
d. National Police Agency Cyber Investigation Bureau: (No area code) 182 (ecrm.police.go.kr)
a. This Privacy Policy shall take effect from March 10, 2026.
b. The previous Privacy Policy can be accessed below.
List of Schools or Affiliated Institutions