1. What is the Privacy Policy?
UHC (hereinafter referred to as “the Company”) collects, uses, and provides personal information based on the user’s consent and actively guarantees the user’s rights (self-determination of personal information).
The Company complies with the relevant laws and privacy protection regulations and guidelines that information and communication service providers must follow in the Republic of Korea.
The “Privacy Policy” refers to the guidelines the Company must follow to protect the valuable personal information of users and ensure that they can use the service with peace of mind.
2. Collection and Use of Personal Information
Users can access most of the content freely without separate membership registration. However, to use features exclusive to registered members, essential information must be provided.
Specifically, during the use of the service, information about the user may be automatically generated and collected, or the unique information of the user’s device may be securely converted to prevent the original values from being identified. Location information may also be collected during service use, and location-based services provided by UHC are regulated in detail in the “Location Information Use Terms and Conditions.”
The company only collects the minimum amount of information during the membership registration process or service usage. However, additional personal information may be collected during individual service usage, event participation, and prize application. If additional personal information is collected, users will be informed of the “items of personal information collected, the purpose of collection and use, and the retention period of the personal information” and consent will be obtained at the time of collection.
[Collection of Personal Information Items, Purpose, and Retention Period]
1) Membership Registration (The same collection applies when using third-party service accounts such as Kakao, Facebook, etc., instead of the service’s own account)
Purpose of Collection and Use: User identification for service usage
Items Collected: ID (email address), password, name, phone number, date of birth/gender
Category: Mandatory
Retention and Use Period: Until membership cancellation
2) Customer Inquiries
Purpose of Collection and Use: Identity verification, handling customer requests and responses, consultation, complaints, and grievance handling
Items Collected: Name, ID (email address), phone number, consultation details, and personal information necessary for the consultation
Category: Mandatory
Retention and Use Period: 3 years
3) Member Reservation
Purpose of Collection and Use: Contract fulfillment and service provision, electronic financial service user identification, prevention of illegal or fraudulent use
Items Collected:
• Payment Information: Credit card information, payment records
• Reservation Information: Reservation date, payment amount, company name
• Reservation Maker (Buyer): Name, ID (email address), phone number, date of birth/gender
• Guest (Visitor) (if necessary): Name, ID (email address), phone number, date of birth/gender
Category: Mandatory
Retention and Use Period: 5 years
4) Information Generated and Collected during Service Use
Purpose of Collection and Use: Prevent fraudulent use, analyze for service improvement, provide personalized recommendations based on user interests and preferences
Items Collected: Most recent login date, IP address, location information, cookies, purchase logs, event logs, transaction records, visit history, content service usage history
Category: Mandatory
Retention and Use Period: Until membership cancellation
5) Member Marketing
Purpose of Collection and Use: Collection for promotions, events, benefit notifications, providing personalized services, marketing statistics and analysis
Items Collected: Name, ID (email address), phone number, date of birth/gender
Category: Optional
Retention and Use Period: Until membership cancellation or withdrawal of consent
3. Provision of Personal Information
1) Provision of Personal Information to Third Parties
Recipient | Purpose of Provision | Items Provided | Retention/Usage Period |
|---|---|---|---|
Hyeonginjae Korean Medicine Clinic | Provision of reserved/purchased products/services and performance of contracts (verification of user and usage information), handling of complaints, and resolution of consumer disputes | - Reservation holder (purchaser): Name, ID (email address), mobile phone number, date of birth/gender - Stay information: Reservation agency, check-in/check-out information | Until the purpose of use of personal information is achieved. However, if preservation is necessary in accordance with relevant laws, it will be retained until that time and destroyed without delay thereafter. |
2) Entrustment of Personal Information Processing
Entrusted Company | Entrusted Task |
|---|---|
Toss Payments | Payment for products and services |
4. Disposal of Personal Information
After the purpose of collecting and using the user’s personal information has been fulfilled, the relevant information will be immediately destroyed. However, information that must be stored under applicable laws will be retained for the period specified by the law and then destroyed. Personal information that is stored separately for management purposes will not be used for any other purposes. When disposing of personal information, if it is in electronic file format, it will be completely deleted using technical methods to prevent recovery or restoration. In the case of records, printed materials, or written documents, they will be shredded or incinerated for disposal.
5. Other Matters
1) The Company regards the user’s personal information as the most valuable asset and makes the following efforts in handling personal information.
The user’s personal information is transmitted through encrypted communication channels, and important information such as passwords is stored in an encrypted format. To prevent personal information from being leaked or damaged by hacking or computer viruses, the system is installed in areas with restricted access. The company has installed systems to detect and block intrusions by hackers, providing 24-hour monitoring. Additionally, antivirus programs are installed to prevent the system from being infected by the latest malware or viruses. The company is also continuously researching new hacking and security technologies and applying them to the service.
2) User and Legal Guardian’s Rights and Methods of Exercise
Users can view, modify, or delete their personal information from their membership profile at any time and can request access to their personal information.
Users can request the suspension of personal data processing at any time, and in cases where there are special legal provisions, the request to suspend processing may be refused.
Users can withdraw their consent to the collection and use of personal information, such as by ‘membership cancellation,’ at any time.
For children under the age of 14, the legal guardian has the right to view, modify, delete, or request the suspension of processing of the child’s personal information and withdraw consent for the collection and use of such information.
If a user requests correction of personal information due to errors, the relevant personal data will not be used or provided until the correction is completed. If incorrect information has already been provided to a third party, the correction results will be promptly notified to the third party to ensure correction.
Users and legal guardians can process these rights directly through the ‘Member Information’ page or request them via ‘1:1 Inquiry.’
6. Inquiries Regarding Personal Information
If you have any inquiries related to personal information, please feel free to contact us using the contact information below.
Personal Information Protection Officer
• Name: 이대한
• Department: Future Growth Department / DT Division
• Email: service.uhc@urbanhost.co.kr
• Contact: 1544-6009
