Established: March 4, 2025 / Effective: March 20, 2025
Metown Inc. (hereinafter "Company") strives to protect users' personal information and comply with relevant laws. This Privacy Policy regulates matters related to the collection, use, storage, and protection of personal information in connection with the use of EVOVA 3D Showroom and the Company's neural rendering technology and other online solutions (hereinafter "Service") in accordance with Article 30 of the Personal Information Protection Act.
1. The "Company" collects and uses users' personal information for the following purposes to provide and operate the service smoothly.
2. The personal information being processed will not be used for purposes other than the following, and if the purpose of use is changed, necessary measures will be taken, such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.
a. Website Membership Registration and Management:
Personal information is processed for the purpose of verifying membership registration intent, identifying/authenticating for membership services, maintaining and managing membership qualifications, verifying identity in accordance with the limited real-name system, preventing service misuse, verifying legal guardian consent for processing personal information of children under 14, and various notifications, notices, and grievance handling.
b. Provision of Goods or Services:
Personal information is processed for the purpose of goods delivery, service provision, sending contracts and invoices, analyzing service usage patterns, providing user-customized content, identity verification, age verification, payment and settlement, debt collection, and information processing for compliance with relevant laws and regulations.
c. Grievance Handling:
Personal information is processed for the purpose of verifying the identity of complainants, verifying complaints, contacting and notifying for fact-finding, and notifying processing results.
1. The "Company" may collect the following personal information in the process of providing services.
a. Required Collection Items
1) Corporate/business name, representative name 2) Business registration number, corporate registration number, business address, industry type, business type, tax invoice management email 3) User name, email address, goods delivery address, contact information 4) Service usage records, access logs, payment details
b. Optional Collection Items
1) User's service usage preferences, marketing consent 2) Other information voluntarily provided by users
1. The "Company" destroys personal information without delay after the purpose of use has been achieved.
2. However, in the following cases, it may be retained for a certain period in accordance with the law.
a. Website Membership Registration and Management: Until cancellation of business/organization website membership
1) However, in cases corresponding to the following reasons, until the termination of the corresponding reason
a) Until the completion of investigation or inquiry in case of an ongoing investigation or inquiry due to violation of relevant laws
b) Until settlement of credit and debt relations remaining from website use
b. Provision of Goods or Services: Until completion of supply of goods/services and payment/settlement
1) However, in cases corresponding to the following reasons, until the termination of the corresponding reason
key 'agreements.privacy.section3.b.a1 (en)' returned an object instead of string.
(1) Records related to display/advertisements: 6 months
(2) Records of contracts or withdrawal of subscription, payment, and supply of goods: 5 years
(3) Records of consumer complaints or dispute handling: 3 years
key 'agreements.privacy.section3.b.a2 (en)' returned an object instead of string.
(1) Subscriber's telecommunication time, start/end time, counterpart subscriber number, usage frequency, transmission base station location tracking data: 1 year
(2) Computer communication/internet log records, access point tracking data: 3 months
1. The "Company" does not provide users' personal information to third parties in principle.
2. However, it may be provided exceptionally in the following cases.
a. When the user has consented in advance
b. When required by law
c. When unavoidable for contract fulfillment (e.g., payment processing, delivery)
1. The "Company" may outsource some tasks to external companies to provide better services.
2. When concluding outsourcing contracts, the "Company" specifies matters such as prohibition of personal information processing other than the purpose of performing the outsourced work, technical and administrative protection measures, restrictions on re-outsourcing, management and supervision of trustees, and liability for damages in documents such as contracts in accordance with Article 25 of the Personal Information Protection Act, and supervises whether trustees process personal information safely.
3. The outsourcing companies and outsourcing details are as follows.
| Trustee | Outsourced Tasks | Retention and Use Period |
|---|---|---|
| Payment Gateway (PG) | Payment processing and settlement | Service provision period |
| Cloud Service Provider | Data storage and management | Service provision period |
| Customer Support Center | Customer inquiry response | Service provision period |
1. Users may request access, correction, deletion, and suspension of processing of personal information at any time.
2. Requests related to personal information can be applied through the customer center (website customer center and cs@metown.co.kr), and the "Company" will promptly take measures in accordance with relevant laws.
3. When a user requests deletion of personal information, it will be immediately deleted, excluding information that must be retained for a period specified by relevant laws.
1. The "Company" destroys the relevant personal information without delay when personal information becomes unnecessary, such as the expiration of the retention period or achievement of the processing purpose.
2. Even if the retention period of personal information consented to by the data subject has expired or the purpose of processing has been achieved, if it is necessary to continue to preserve the personal information in accordance with other laws, the personal information will be moved to a separate database (DB) or preserved in a different storage location.
3. The procedures and methods for destroying personal information are as follows.
a. Destruction procedure: The Company selects personal information for which causes for destruction have occurred and destroys the personal information after obtaining approval from the Company's personal information protection officer.
b. Destruction method: The Company destroys electronic files of personal information recorded and stored using methods such as low-level formatting so that records cannot be reproduced, and personal information recorded and stored in paper documents is destroyed by shredding or incineration.
1. The "Company" applies the latest security technologies and administrative measures to protect users' personal information.
a. Technical measures: Restriction of access to personal information, application of security software, encrypted storage
b. Administrative measures: Implementation of internal security training, management of access rights to personal information
c. Physical measures: Access control to server rooms and data storage locations
1. The "Company" may use cookies for the convenience of service users.
2. Users can refuse cookie storage through their web browser settings.
a. Setting method example (Chrome) - Settings > Privacy and security > Cookies and other site data > Cookie blocking settings
1. Inquiries and complaints related to personal information protection can be submitted to the following contact.
a. Personal Information Protection Officer: Sangbin Jeon
b. Email: cs@metown.co.kr
c. Phone: 02-6380-0315
d. Users may contact the following agencies if they need to report or consult about personal information infringement.
e. Personal Information Protection Committee: www.privacy.go.kr
f. Cyber Bureau of Investigation of the National Police Agency: https://ecrm.cyber.go.kr
1. This Privacy Policy may be changed in accordance with relevant laws and internal operational policies. 2. When changing the Privacy Policy, the "Company" will notify the changes at least 7 days in advance through the website or email. 3. In case of significant changes (e.g., changes to personal information collection items), the "Company" may notify users at least 30 days in advance and obtain consent again.
1. This Privacy Policy is effective from March 20, 2025.